Security Directory

P

Play Team

ultra.ba

0

Ultra.ba is a Bosnian lifestyle magazine operated by Play Team, providing content on fashion, beauty, astrology, travel, and entertainment. The website targets a general audience interested in contemporary lifestyle topics and maintains a consistent brand presence with active social media channels. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and moderate performance. Security posture is strong with HTTPS and security headers in place, though privacy compliance is lacking due to missing privacy and cookie policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and contact transparency.

M

Media Marketing

media-marketing.com

0

Media Marketing is an online media publishing platform focused on delivering the latest news, interviews, and insights related to media, communications, marketing, and advertising across Bosnia and Herzegovina and the broader Adriatic region. The website positions itself as a leading source of industry news for marketing professionals and stakeholders in the region. Technically, the site is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and OneSignal for push notifications. The site is mobile optimized and employs caching plugins to enhance performance. Security-wise, the site enforces HTTPS and uses some security-related scripts, but lacks explicit security headers and detailed privacy or cookie policies, which are areas for improvement. The WHOIS data for the domain is unavailable, which reduces transparency and trust, though the active and professional web presence suggests legitimate operation. Overall, the site is a valuable resource for its target audience but should enhance its privacy disclosures and security posture to improve trust and compliance.

L

Led Media

ledmedia.ba

0

Led Media is a leading digital outdoor advertising company operating in Bosnia and Herzegovina, offering digital advertising services primarily targeting local businesses and advertisers. The website is built on WordPress using Elementor, indicating a modern and maintainable technical infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks important security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

F

FBL

fbl.ba

0

The website fbl.ba is a WordPress-based site titled 'FBL' with integration of Google advertising and analytics technologies, including Google Tag Manager and Adsense, with consent mode enabled for privacy compliance. The site appears to be targeted at a general audience in Bosnia and Herzegovina, but lacks explicit business descriptions, contact information, or detailed company data. Technically, the site uses modern web fonts and SEO plugins, providing a moderate level of performance and mobile optimization. Security posture is basic, with no visible security headers or published security policies, and no evidence of vulnerability disclosure or incident response readiness. Privacy compliance is limited to a cookie consent mechanism, but no privacy policy or terms of service are found. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for general audiences.

B

Bonjour.ba

bonjour.ba

0

Bonjour.ba is a regional lifestyle media website focused on Bosnia and Herzegovina, offering content related to fashion, beauty, culture, and weddings. The site targets a Bosnian-speaking audience interested in lifestyle topics and generates revenue primarily through advertising. The website demonstrates a moderate level of digital maturity with the use of modern web technologies, responsive design, and integration of multiple analytics and advertising platforms. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is strong with HTTPS enforced and no obvious vulnerabilities detected. Overall, the site is professional and trustworthy but could improve compliance and transparency aspects.

T

Toyota Bosna i Hercegovina

toyota.ba

0

Toyota Bosna i Hercegovina operates as the official regional representative of Toyota Motor Corporation in Bosnia and Herzegovina, providing automotive sales, customer support, and related services. The website serves as a comprehensive portal for Toyota models, financing options, and dealer information, targeting general consumers interested in Toyota vehicles. The company maintains a strong market position as a trusted automotive brand in the region, leveraging Toyota's global reputation. Technically, the website is built on Adobe Experience Manager, integrating advanced tools such as Adobe Launch for tag management and Datadog RUM for real user monitoring and session replay. The site uses modern JavaScript frameworks and CDN services to optimize performance and user experience. Mobile optimization and SEO practices are well implemented, although accessibility features could be enhanced. From a security perspective, the site enforces HTTPS with strong SSL configuration and employs multiple security headers. Cookie consent mechanisms are in place, reflecting GDPR compliance efforts. However, explicit privacy policies, terms of service, and incident response contacts are not found, representing areas for improvement in transparency and compliance. Overall, the website presents a professional, trustworthy, and technically sound digital presence for Toyota in Bosnia and Herzegovina. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing accessibility, and establishing a vulnerability disclosure program to further strengthen security posture and user trust.

E

Einhell BiH d.o.o.

einhell.ba

0

Einhell BiH d.o.o. operates as the official regional website and e-commerce platform for Einhell power tools and garden equipment in Bosnia and Herzegovina. The company targets DIY enthusiasts, professional craftsmen, and gardeners, offering a wide range of battery-powered tools, stationary machines, and garden tools. The website emphasizes brand partnerships with high-profile entities such as Mercedes-AMG PETRONAS F1 Team and FC Bayern, enhancing its market credibility. The business model focuses on direct sales, customer support, and brand promotion within the region.

L

LANACO

techhosted.ba

0

TechHosted is a well-established annual IT conference organized by LANACO, a prominent technology company in Bosnia and Herzegovina. The conference serves as a key platform for IT professionals, business leaders, and students to connect, share knowledge, and explore innovative technologies. With a decade-long history, TechHosted has positioned itself as a leading event in the regional IT industry, supported by reputable partners and media outlets. The website reflects a professional and modern digital presence with strong branding and clear communication of its services and event details. Technically, the website employs modern web technologies including jQuery, HTML5 video, and SVG graphics, alongside robust analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The site is optimized for performance, mobile responsiveness, and SEO, providing a smooth user experience. Security practices include HTTPS enforcement and secure form handling, although formal security policies and incident response contacts are not publicly documented. From a security perspective, the site demonstrates good baseline protections with no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed through a cookie consent banner and a privacy policy page, indicating awareness of GDPR requirements. However, the absence of a published security policy or vulnerability disclosure mechanism suggests room for improvement in transparency and incident readiness. Overall, TechHosted presents a trustworthy and credible online presence aligned with its business objectives. Strategic recommendations include enhancing security documentation, publishing incident response contacts, and implementing additional security headers to further strengthen the security posture and user trust.

L

LANACO

tehnoloskicentar.ba

0

LANACO Tehnološki centar is a prominent technology hub located in Banja Luka, Bosnia and Herzegovina, operated by LANACO, the largest private IT system integrator in the country. The center hosts a Tier 4 standard data center, conference facilities, and an educational center offering IT courses and seminars. The website reflects a professional and consistent brand image targeting businesses and IT professionals in the region. Technically, the site uses modern web technologies including Bootstrap and Google Analytics, with moderate performance and good mobile optimization. Security posture is moderate but lacks visible security headers and published privacy or cookie policies, indicating room for improvement in compliance and security best practices. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is a reliable digital presence for LANACO's technology center but should enhance privacy and security disclosures to improve trust and compliance.

L

LANACO

station-24.com

0

Station24 is a specialized software solution developed by LANACO, targeting the hospitality industry in Bosnia and Herzegovina and surrounding regions. The platform offers comprehensive modules for order management, administration, kitchen display, and loyalty programs, aiming to streamline restaurant and cafe operations. The website presents a professional image with detailed product descriptions, client testimonials, and partner logos, reflecting a medium-sized business with a solid regional presence. Technically, the site employs modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA v3, ensuring functional and secure user interactions. Security posture is generally good with HTTPS enforced and spam protection on forms, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, though terms of service and security policies are absent. Overall, the website is trustworthy, well-structured, and serves its target audience effectively.

L

LANACO

careoll.com

0

Careoll.com is a healthcare-focused digital platform developed by LANACO, offering comprehensive medical software solutions tailored for clinics, laboratories, wellness centers, and other healthcare institutions primarily in the Balkan region. The platform automates medical and administrative processes, enhancing productivity and enabling healthcare providers to focus more on patient care. The website demonstrates a professional market position with multiple product offerings and integration capabilities, supported by testimonials and multi-location contact information. Technically, the website employs modern web technologies including jQuery and Swiper.js, with good mobile optimization and SEO practices. Hosting and DNS are managed under LANACO's infrastructure, though DNSSEC is not enabled. Security measures include HTTPS and CSRF protection on forms, but lack advanced HTTP security headers and cookie consent mechanisms, indicating room for improvement in compliance and security hardening. The security posture is moderate, with no critical vulnerabilities detected but missing some best practices such as DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent or GDPR explicit indicators. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, Careoll.com presents a credible and professional digital healthcare solution with a solid business foundation and moderate technical maturity. Strategic improvements in security and privacy compliance would enhance trust and regulatory adherence.

L

Lanaco

eduisonline.com

0

Eduis, operated by Lanaco, offers a comprehensive cloud-based school management system tailored for K12 and higher education institutions. The platform supports over 500,000 users worldwide and integrates with Microsoft Office 365 to enhance educational workflows. The website demonstrates a mature digital presence with professional design, clear navigation, and relevant content targeting educational stakeholders including school staff, parents, and students. Technically, the site uses modern JavaScript libraries and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and cookie consent implemented, though improvements are recommended in DNSSEC deployment and security headers. Privacy compliance is addressed with a clear privacy policy and cookie banner, supporting GDPR requirements. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate business.

L

LANACO

ecoone.ba

0

EcoOne.ba is a professional business software website offering cloud-based ERP and accounting solutions primarily targeting small and medium enterprises in Bosnia and Herzegovina. The platform emphasizes accessibility, security, and ease of use, providing multiple packages tailored to different business needs. The website is well-structured, uses modern web technologies, and includes essential privacy and cookie policies, reflecting a mature digital presence. Security posture is adequate with HTTPS and data center security claims, though explicit security headers and incident response policies are not publicly documented. Overall, the site presents a trustworthy and professional image suitable for its target market.

L

LANACO

lanaco.com

0

LANACO is a well-established technology company based in Bosnia and Herzegovina, specializing in innovative software solutions, platforms, data infrastructure, communication systems, cloud services, hosting, and education. The company targets business and technology users in the region, offering a diversified portfolio that positions it as a key player in the local technology market. The website reflects a mature digital presence with professional design, clear navigation, and compliance with privacy regulations including GDPR. Technically, the site is built on WordPress with modern plugins and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of public WHOIS data slightly reduces trust but is offset by consistent branding and active social media engagement. Overall, LANACO presents a credible and professional online presence aligned with its business objectives.

N

Nestro

cng.ba

0

The website cng.ba represents Nestro, a company promoting compressed natural gas (CNG) as an alternative fuel in Bosnia and Herzegovina. The site provides detailed information about CNG technology, its economic and environmental benefits, and locations of CNG fueling stations. The business targets vehicle owners and operators interested in cleaner and cost-effective fuel options, positioning itself as a regional energy provider with a focus on sustainable transportation solutions. Technically, the website uses modern frontend technologies including Tailwind CSS and AOS for animations, with responsive design optimized for mobile devices. The site is served over HTTPS, ensuring secure communication, but lacks advanced security headers and privacy compliance documentation. Security posture is moderate with no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, as well as limited contact information, indicates compliance gaps. Overall, the website is professional and informative but would benefit from enhanced security and privacy measures to improve trust and regulatory adherence.

X

XY Asocijacija

spolnozdravlje.ba

0

Spolnozdravlje.ba is a non-profit educational website operated by XY Asocijacija, focused on sexual and reproductive health education, family planning, relationships, and health rights primarily targeting the population of Bosnia and Herzegovina. The platform offers a wide range of informational content, guides, and resources for both the general public and health professionals, supported by the United Nations Population Fund (UNFPA). The website maintains a consistent brand presence and provides clear contact information, including physical address and social media channels. Technically, the site uses common web technologies such as Bootstrap, jQuery, and Font Awesome, and integrates Google Analytics for user tracking. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Security-wise, HTTPS usage is implied but not explicitly confirmed, and no security headers were detected in the provided data, indicating room for improvement in security posture. Overall, the website is functional, informative, and trustworthy but would benefit from enhanced privacy compliance and security hardening.

I

Institut za populaciju i razvoj

mentalnozdravlje.ba

0

The website mentalnozdravlje.ba represents the Institute for Population and Development, a leading non-profit organization in Bosnia and Herzegovina focused on mental health reform and public health promotion. The site serves as an informational and educational platform, collaborating with government ministries and providing resources related to mental health. The technical infrastructure is based on WordPress with Elementor, using modern web technologies and offering a responsive design. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced compliance and security measures.

I

Institute for population and development

ipdbih.org

0

The Institute for Population and Development (IPD) is a leading non-profit organization in Bosnia and Herzegovina focused on improving public health and promoting sustainable, systemic solutions for healthier lifestyles. Established in 2001, IPD operates with a medium-sized organizational footprint and maintains partnerships with international donors and organizations such as UK Aid, CARE, World Vision, UNFPA, and the Global Fund. Their website serves as a platform for disseminating health-related information, public health projects, and community support initiatives. Technically, the website is built on WordPress with Elementor, incorporating modern web technologies and Google Analytics for user insights. The site is mobile-optimized and presents a professional design with clear navigation.

Y

Young Men Initiative

youngmeninitiative.net

0

Young Men Initiative (YMI) is a well-established non-profit organization operating since 2011, focused on empowering youth in the Balkans region by addressing gender inequalities and promoting healthy lifestyles. The organization offers educational programs, youth leadership camps, and community clubs, supported by a network of regional partners and international donors. Their digital presence is built on a WordPress platform with modern styling using Tailwind CSS, providing a professional and accessible user experience. While the website is well-structured and content-rich, it lacks explicit privacy and cookie policies, which are important for compliance and user trust. Security posture is adequate with HTTPS and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers. Analytics usage is moderate, leveraging Google Analytics and Jetpack, but privacy compliance is limited due to missing consent mechanisms. Overall, YMI presents a credible and trustworthy online presence aligned with its mission, though enhancements in privacy and security policies would strengthen its compliance and user confidence.

O

OPTIMA Grupa d.o.o.

modrica-lubricants.com

0

Rafinerija ulja Modriča, operated by OPTIMA Grupa d.o.o., is a medium-sized regional manufacturer specializing in motor oils, lubricants, base oils, paraffins, and specialized products for extreme conditions. Established in 2022, the company holds a strong market position as the largest regional producer with distribution across more than 22 international markets. Their business model focuses on manufacturing, toll blending, and private label services, targeting automotive and industrial sectors. The website reflects a professional digital presence with clear branding, product information, and multiple contact channels. Technically, the site is built on WordPress with modern libraries and SEO optimizations, hosted via GoDaddy with DNS on european-server.com. Security posture is good with HTTPS and no exposed sensitive data, though improvements are recommended in DNSSEC and security headers. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

R

Rafinerija nafte Brod a.d.

rafinerija.com

0

Rafinerija nafte Brod a.d. is a well-established oil refinery company based in Bosnia and Herzegovina, founded in 1892. It operates as the only domestic company for crude oil processing and production of petroleum derivatives in the country, holding a leading market position. The company offers a range of services including refining, laboratory testing, natural gas trading, and environmental monitoring, supported by a corporate ethics code and safety hotline. The website reflects a professional corporate presence with consistent branding and relevant business content targeting general public and industry stakeholders. Technically, the website uses a legacy technology stack including jQuery 1.11.1 and Bootstrap, with integration of Google Analytics and Raygun for monitoring. The site is mobile optimized and provides a moderate performance experience. However, there is a lack of modern security headers and no visible privacy or cookie policies, indicating gaps in compliance and security best practices. Security posture is moderate with domain registration consistent and legitimate, but the absence of DNSSEC and security headers reduces the overall security score. No incident response or vulnerability disclosure information is provided. The website does not contain any adult or questionable content and is safe for general audiences. Overall, the site is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and modernization of technical components to strengthen its security and compliance posture.

R

Rafinerija ulja Modriča a.d.

modricaoil.com

0

Rafinerija ulja Modriča a.d. is a well-established company specializing in the production of hydrocracked base oils, lubricants, and functional fluids, serving primarily the Southeast European market. It holds a strong market position as the largest regional producer in its sector and operates under the parent company OPTIMA Grupa d.o.o. The website reflects a professional business with a clear focus on industrial clients and technical support services. Technically, the website uses a traditional tech stack including jQuery and Bootstrap, with integration of Google Analytics and Raygun for monitoring. Mobile optimization and navigation are well implemented, though some technical debt is noted with the use of an outdated jQuery version. Security posture is moderate with HTTPS usage and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but could improve in security and compliance areas.

O

OPTIMA Grupa d.o.o.

optimagrupa.net

0

OPTIMA Grupa d.o.o. is a leading integrated oil company in Bosnia and Herzegovina, operating since 2008. The company manages the entire value chain from crude oil procurement to refining, wholesale, distribution, and retail through its NESTRO gas station network. It holds a strong market position as the largest oil company in the country with subsidiaries including Rafinerija ulja Modriča, Rafinerija nafte Brod, and Nestro Petrol. The website reflects a professional corporate presence with good content quality and consistent branding, targeting both business clients and consumers in the energy sector. Technically, the website uses a custom CMS with Bootstrap, jQuery, and integrates modern analytics and error monitoring tools such as Google Analytics, Google Tag Manager, and Raygun. The site is mobile optimized and provides multilingual support. However, some technical improvements are recommended, including enabling DNSSEC and adding security headers to enhance security posture. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks visible privacy and cookie policies, which impacts GDPR compliance. No incident response or security contact information is provided, and no vulnerability disclosure or security certifications are evident. The use of tracking and advertising tools is moderate but lacks transparency and consent mechanisms. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer incident response information to strengthen its security posture and regulatory adherence.

BitLab d.o.o. is a medium-sized IT company based in Bosnia and Herzegovina, specializing in a broad range of technology services including web development, mobile applications, 3D visualization, hosting, education, and e-commerce. Established in 2015, the company has completed over 500 projects and serves a diverse clientele including government agencies and educational institutions. Their business model focuses on providing comprehensive IT solutions and digital services tailored to client needs, supported by a strong local presence and multilingual website content. Technically, BitLab employs a modern technology stack with popular frameworks and platforms, ensuring good mobile optimization and user experience. However, some areas such as accessibility and SEO could be improved further. Security-wise, the website uses HTTPS and avoids exposing sensitive data but lacks advanced security headers and published security policies, which are recommended for enhanced trust and compliance. Overall, BitLab presents a professional and trustworthy digital presence with room for improvement in privacy compliance and security transparency.

M

MicroMedia

microacademy.ba

0

MicroAcademy is an educational platform specializing in practical courses for design, marketing, and web development, backed by the experienced agency MicroMedia. The website positions itself as a practical academy offering mentorship, real project experience, and employment opportunities for top students, targeting individuals seeking career advancement in digital fields. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile devices, though performance is moderate. Security posture is solid with HTTPS and secure forms, but lacks advanced security headers and visible privacy compliance documentation. Overall, the site is professional, trustworthy, and content-rich, but would benefit from enhanced privacy and security policies to improve compliance and user trust.

P

Peugeot Bosna i Hercegovina

peugeot.ba

0

Peugeot Bosnia and Herzegovina operates an official automotive brand website providing comprehensive information about Peugeot vehicles, including electric and hybrid models, financing options, servicing, and dealer locations. The site targets potential car buyers in Bosnia and Herzegovina and serves as a digital showroom and service portal. The business is positioned as a regional representative of the global Peugeot brand under the Stellantis parent company. Technically, the website leverages Adobe Experience Manager CMS, Google Tag Manager, Adobe Analytics, and GDPR-compliant cookie consent mechanisms, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and well-structured for user experience. Security posture is good with HTTPS enforced and consent management in place, though explicit security policies and vulnerability disclosures are absent. WHOIS data confirms domain legitimacy and consistency with the business identity. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

M

MicroMedia

micromedia.ba

0

MicroMedia is a small, professional full-service digital marketing and creative agency based in Bijeljina, Bosnia and Herzegovina. The company specializes in web design, graphic design, online marketing, and related creative services, targeting businesses seeking to enhance their digital presence. The website reflects a consistent brand image with a well-structured portfolio and clear service offerings. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and user experience, demonstrating a moderate to good level of digital maturity. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

U

UNDP Bosnia and Herzegovina

zelenatranzicija.ba

0

The website 'Zelena tranzicija' is a public information platform dedicated to providing key resources and information on green transition and circular economy, primarily targeting audiences in Bosnia and Herzegovina. It is affiliated with UNDP Bosnia and Herzegovina, which lends credibility and aligns with its mission of sustainability and environmental awareness. The platform uses modern web technologies including Angular and Material Design, ensuring a contemporary user experience with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced, though it lacks advanced security headers and visible privacy or cookie policies. No forms or direct data collection mechanisms are present on the main page, reducing privacy risks but also limiting user engagement. Overall, the site is trustworthy and professionally presented but could improve in privacy compliance and contact transparency.

P

Svi odgovori na jednom mjestu - pressrs.ba

pressrs.ba

0

Pressrs.ba is a Bosnian content portal launched in 2021, providing educational and informational articles across various life topics. The website targets a general audience seeking knowledge and answers to everyday questions. Technically, the site is built on WordPress using the Divi theme, leveraging Google Fonts, Google Tag Manager, and Google Adsense for content delivery and monetization. The site demonstrates moderate digital maturity with good mobile optimization and SEO practices but lacks advanced security headers and explicit privacy or cookie policies. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal policies. Overall, the site is legitimate and functional but would benefit from enhanced privacy compliance and clearer contact information to improve trust and regulatory adherence.

B

BitLab

privreda.org

0

Privreda.org is a regional business portal focused on companies and entrepreneurs in Republika Srpska and the Federation of Bosnia and Herzegovina. Operated by BitLab, the portal provides a categorized business directory, promotional services including company web page creation, advertising on the portal and social media, and additional marketing and hosting services. The website is well-established with a domain age since 2002, indicating a stable market presence. The portal targets local businesses seeking increased visibility and digital presence within the regional market. Technically, the website uses a custom CMS with common web technologies such as jQuery, Bootstrap, Font Awesome, and Slider Revolution. Hosting is provided by BitLab, the same organization listed as the domain registrant, ensuring consistency. The site is moderately performant and mobile optimized, with basic SEO and accessibility features. Advertising is integrated via Google Adsense and Twitter widgets, with minimal user tracking. From a security perspective, the site uses HTTPS and secure form tokens but lacks advanced security headers and DNSSEC. No privacy, cookie, or terms of service policies are published, indicating gaps in compliance and transparency. Incident response and vulnerability disclosure information are absent. The WHOIS data aligns well with the website content and hosting, supporting legitimacy. Overall, the website is a functional and moderately professional business portal with good business credibility but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

B

BitLab d.o.o.

eposao.info

0

ePosao.info is an established online job board platform founded in 2006, primarily serving the Balkan region including Bosnia and Herzegovina, Serbia, Croatia, and Montenegro. The platform facilitates job seekers and employers by providing job listings, candidate searches, and human resource management tools. The website is developed and hosted by BitLab d.o.o., a regional IT service provider. The platform targets a regional audience with multilingual support and a focus on quick and easy recruitment processes. Technically, the website uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Font Awesome, but includes some outdated components like Flash-based upload plugins and older jQuery versions. Security posture is moderate with HTTPS enabled but lacking modern security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from modernization and improved compliance.

Г

Главна служба ревизије РС

gsr-rs.org

0

The website represents the Supreme Audit Office of the Republic of Srpska, a government institution responsible for auditing public sector entities. It provides comprehensive audit reports, recommendations, and statistical data to promote transparency and accountability. The site targets government officials, auditors, and the general public interested in public sector oversight. The business model is a government service institution with a medium organizational size and a history dating back to 2000. Technically, the website is built on WordPress with modern frameworks like Bootstrap and includes accessibility enhancements via the Readabler plugin. It uses Google Tag Manager for analytics and tracking. The site is mobile-optimized and well-structured with good SEO and accessibility features. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. There is no visible security policy or incident response contact information, which could be improved. Privacy compliance is partially met with a privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy, professional, and serves its government audit function well. Strategic improvements in security headers, DNSSEC, and privacy consent would enhance its security posture and compliance.

D

Delegation of the European Union to Bosnia and Herzegovina & European Union Special Representative in Bosnia and Herzegovina

europa.ba

0

The Delegation of the European Union to Bosnia and Herzegovina serves as the official representation of the EU in Bosnia and Herzegovina, providing comprehensive information on EU activities, projects, and policies in the country. The website is professionally designed, well-structured, and targets a broad audience including citizens, media, and stakeholders interested in EU-Bosnia relations. Technically, the site is built on Drupal 10 with modern web standards, ensuring good performance, mobile responsiveness, and accessibility. Security posture is strong with HTTPS enforced and standard security headers likely in place, although explicit security policies and incident response details are not published. Privacy compliance is robust, featuring clear privacy and cookie policies with consent mechanisms aligned with GDPR. The domain is part of the official europa.eu space, managed by EU authorities, ensuring high legitimacy despite the absence of WHOIS details due to privacy policies. Overall, the site reflects a mature, trustworthy, and authoritative EU governmental presence in Bosnia and Herzegovina.

М

Министарство просвјете и културе Републике Српске & Lanaco

eobrazovanje.com

0

The website eobrazovanje.com serves as an official educational portal affiliated with the Ministry of Education and Culture of Republika Srpska and the technology partner Lanaco. It provides educational resources, news, and professional development content targeting teachers, students, parents, and adult learners within the Republika Srpska region. The portal covers multiple education levels including preschool, primary, secondary, and adult education, offering downloadable materials and links to official pedagogical institutions. The site is primarily in Serbian using both Latin and Cyrillic scripts, reflecting its regional focus. Technically, the website is built on Microsoft SharePoint, leveraging a variety of JavaScript libraries such as jQuery, Bootstrap, Font Awesome, and Owl Carousel for UI components and interactivity. The platform is moderately optimized for performance and mobile responsiveness, with basic accessibility features. Hosting appears to be managed or partnered with Lanaco, a known IT company in the region. SEO and metadata are basic but functional. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. The SharePoint form digest mechanism is used to mitigate CSRF risks. No privacy, cookie, or terms of service policies are present, indicating gaps in compliance with GDPR and related privacy regulations. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is a credible and trustworthy government-affiliated educational resource with good content quality and technical implementation. However, it would benefit from improved privacy compliance, enhanced security headers, and clearer contact information to strengthen user trust and regulatory adherence.

BitLab d.o.o. is a medium-sized technology company based in Bosnia and Herzegovina, specializing in IT solutions including web development, mobile applications, 3D visualization, hosting, e-commerce, and education. Established in 2014, the company has a solid market presence with over 500 completed projects and a diverse client base including government and educational institutions. Their business model focuses on providing comprehensive digital services and products to businesses and organizations in the region. Technically, the website demonstrates a modern technology stack with a variety of backend and frontend frameworks, CMS options, and integration of analytics and social sharing tools. The site is mobile optimized and offers a good user experience with clear navigation and professional design. Hosting appears to be managed internally or through affiliated services, with DNSSEC enabled and SSL certificates in use, indicating a secure infrastructure. From a security perspective, the website benefits from HTTPS and DNSSEC but lacks visible security headers and formal security policies such as privacy or cookie policies. No forms or direct data collection mechanisms were detected in the provided content, reducing immediate risk exposure. However, the absence of privacy and cookie policies indicates compliance gaps, especially regarding GDPR and similar regulations. Overall, BitLab d.o.o. presents a trustworthy and professional online presence with strong business credibility and technical implementation. To enhance security posture and compliance, the company should implement security headers, publish privacy and cookie policies, and consider a vulnerability disclosure policy. These steps will improve user trust and regulatory adherence.

A

Antena Radio

antena.ba

0

Antena Radio is a small media company operating an online radio streaming platform targeting general audiences interested in contemporary music. The website provides live streaming, social media integration, and mobile app distribution, positioning itself as a local/regional broadcaster in Bosnia and Herzegovina. The technical infrastructure uses standard web technologies including HTML5, CSS3, JavaScript with jQuery, and integrates Google Analytics and Facebook SDK for tracking and social features. While the site is functional and well-branded, it uses an outdated jQuery version and loads some scripts over HTTP, which introduces security risks. The security posture is moderate with HTTPS enabled but lacks advanced security headers and visible privacy or cookie policies, indicating compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional but would benefit from security and privacy improvements.

I

InterSoft d.o.o. Sarajevo

klix.ba

0

Klix.ba is the most visited and influential news portal in Bosnia and Herzegovina, providing fast and important news from Sarajevo, the country, and the world. The website operates on an advertising-supported business model, leveraging multiple ad networks including Amazon Ads, PubMatic, and Google Ad Manager. The technical infrastructure includes modern JavaScript libraries, consent management via Didomi, and analytics through DotMetrics and Google Analytics. The site is well-optimized for mobile and desktop users with good SEO and accessibility practices. Security posture is solid with HTTPS enforcement, bot protection via reCAPTCHA, and GDPR-compliant consent mechanisms, although a dedicated security policy and incident response information are not publicly available. Overall, Klix.ba presents a professional, trustworthy, and compliant digital presence with a strong market position in the media sector of Bosnia and Herzegovina.

P

ProCredit Bank d.d. Sarajevo

procreditbank.ba

0

ProCredit Bank d.d. Sarajevo is a German-owned financial institution operating in Bosnia and Herzegovina, specializing in retail and SME banking with a strong focus on sustainability and digital innovation. The bank offers a comprehensive range of services including current accounts, savings, loans, and digital banking platforms such as ProBanking and mobile applications. Their market position is strengthened by transparent business ethics, ISO certifications, and a commitment to green financing. Technically, the website is built on modern frameworks like Next.js and React, hosted on Vercel, ensuring fast performance and mobile optimization. Security posture is robust with HTTPS, security headers, and secure forms, complemented by an incident response mechanism via whistleblowing. However, the absence of a cookie consent mechanism and vulnerability disclosure page are notable compliance gaps. Overall, the bank demonstrates a high level of professionalism, trustworthiness, and digital maturity.

NEŠKOVIĆ Group is a well-established company based in Bosnia and Herzegovina, specializing in the wholesale and retail of petroleum products, automotive sales and services, hospitality, and retail markets. The company operates multiple subsidiaries including insurance and auto centers, positioning itself as a regional leader with a broad service portfolio. The website reflects a professional digital presence built on WordPress with WooCommerce and other common plugins, offering a good user experience and clear business information. However, the technical infrastructure shows signs of aging with outdated WordPress versions and missing modern security headers. Security posture is moderate with HTTPS enforced but lacking comprehensive security policies or vulnerability disclosures. Privacy compliance is minimal, with no visible cookie consent or GDPR indicators. Overall, the website and business appear legitimate and trustworthy, but improvements in security and privacy compliance are recommended.

E

EUROS Osiguranje

eurososiguranje.com

0

EUROS Osiguranje is a local insurance company operating in Bosnia and Herzegovina since 2016, offering a range of insurance products including property, auto, and health insurance. The website presents a professional and well-structured digital presence with clear service offerings targeted at residents and businesses within Bosnia and Herzegovina. The technical infrastructure includes modern web technologies such as Google Analytics and Swiper.js, hosted on DNS servers associated with crohost.net. Security posture is adequate with HTTPS enabled and domain registration protections in place, though DNSSEC is not enabled and security headers are not evident. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced compliance and security measures.

S

Satwork

satwork.net

0

Satwork is a well-established company founded in 2005 specializing in satellite vehicle tracking and fleet management services primarily in Bosnia and Herzegovina and the surrounding region. The company offers a comprehensive suite of GPS-based solutions including fuel consumption control, driver communication, route optimization, and digital tachograph data management. With subsidiaries in Serbia, Montenegro, and Austria, Satwork maintains a strong regional presence and is recognized as a market leader in its domain. The website reflects a professional and consistent brand image with detailed service descriptions and multiple contact points, supporting its credibility and customer engagement. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Font Awesome, and integrates analytics tools like Google Analytics and Google Tag Manager. The site is moderately optimized for performance and mobile devices, with good SEO practices evident. However, there is room for improvement in accessibility and security hardening, particularly by enabling DNSSEC, adding security headers, and publishing privacy and cookie policies. From a security perspective, Satwork demonstrates maturity by holding ISO 9001 and ISO/IEC 27001 certifications, indicating a commitment to quality management and information security. The website uses HTTPS for secure communications, especially on login forms, and implements user-friendly features like password visibility toggling. Nonetheless, the absence of explicit incident response contacts, vulnerability disclosure policies, and cookie consent mechanisms highlights areas for compliance enhancement. Overall, Satwork presents a trustworthy and professional online presence aligned with its business operations. The main risks relate to privacy compliance gaps and security header omissions, which should be addressed to strengthen user trust and regulatory adherence. Strategic improvements in these areas will enhance the company’s digital maturity and security posture, supporting sustained growth and customer confidence.

N

NESTRO PETROL a.d.

nestropetrol.com

0

NESTRO PETROL a.d. operates the largest network of petrol stations in Bosnia and Herzegovina, managing over 80 retail locations under the NESTRO brand. The company offers various loyalty card programs targeting both individual and corporate customers, enhancing customer retention and engagement. The website reflects a mature business with a clear market position supported by its parent company OPTIMA Grupa d.o.o. The digital presence includes interactive maps, promotions, and news updates, catering to a general audience primarily in the Serbian language with options for Russian and English. Technically, the website utilizes a traditional tech stack including jQuery 1.11.1, Bootstrap, and Google Analytics for tracking, alongside Raygun for error monitoring. While the site is mobile optimized and well-structured, some technical debt is evident due to the use of outdated libraries and lack of modern security headers. The absence of DNSSEC and security policies indicates room for improvement in security posture. Security-wise, the domain is well-established with a consistent WHOIS record and clientTransferProhibited status, indicating domain ownership protection. However, the lack of DNSSEC, security headers, and outdated JavaScript libraries present potential vulnerabilities. No explicit privacy or cookie policies were found, which may impact GDPR compliance. The site does not appear to be blocked or protected by a WAF, allowing full content access. Overall, the website is professional and functional with moderate security and privacy compliance. Strategic improvements in security headers, updated libraries, and explicit privacy documentation would enhance trust and compliance. The business is credible with a strong market presence but should address technical and compliance gaps to reduce risk and improve user trust.

I

Imagine 2030

zamisli2030.ba

0

Imagine 2030 is a government and non-profit aligned platform dedicated to promoting and implementing the Sustainable Development Goals (SDGs) in Bosnia and Herzegovina. It serves as a central hub for information dissemination, event promotion, and resource sharing related to Agenda 2030. The platform targets government bodies, local self-governments, businesses, NGOs, and citizens interested in sustainable development. The website is built on WordPress using modern themes and plugins, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

А

Аутопутеви Републике Српске

autoputevirs.com

0

Аутопутеви Републике Српске is a public enterprise responsible for the construction, maintenance, and management of highways and major roads in Republika Srpska, Bosnia and Herzegovina. The website serves as an information portal for infrastructure projects, public procurement, and traffic updates, targeting citizens, drivers, and governmental stakeholders. The company holds a significant position as a key state entity in transportation infrastructure within the region. Technically, the website is built on WordPress, utilizing common plugins such as RevSlider and Contact Form 7, with Google Analytics for traffic monitoring. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some modern security headers and privacy compliance mechanisms are missing, indicating room for improvement in security and GDPR adherence. Security posture is moderate, with HTTPS enforced and domain transfer protection enabled, but lacking DNSSEC and advanced security headers. No vulnerability disclosure or incident response information is publicly available. Overall, the site is trustworthy and professionally maintained but could enhance its security and privacy compliance. The overall risk is low, but strategic improvements in security headers, cookie consent, and transparency policies are recommended to strengthen compliance and user trust.

The website putevirs.com represents the official online presence of Јавно предузеће Путеви Републике Српске, a government-owned public enterprise responsible for managing, constructing, maintaining, and protecting the road network in Republika Srpska, Bosnia and Herzegovina. The site provides detailed news, updates, and information about road infrastructure projects and public procurement plans, targeting residents and stakeholders within the region. The business model is focused on public sector infrastructure services, positioning the company as a key entity in transportation within Republika Srpska. From a technical perspective, the website employs legacy JavaScript libraries such as MooTools 1.2.1 and custom scripts, with CSS-based styling. The platform appears to be custom-built or uses an unknown CMS, with basic mobile optimization and accessibility features. Performance is moderate, and SEO optimization is basic, with proper meta tags but no advanced structured data or Open Graph tags detected. Security posture is moderate but shows room for improvement. The domain lacks DNSSEC, modern security headers, and there is no visible enforcement of HTTPS or HSTS. The use of outdated JavaScript libraries may expose the site to vulnerabilities. Privacy and cookie policies are absent, indicating non-compliance with GDPR and related regulations. No incident response or security contact information is provided. Overall, the website is functional and provides relevant content for its audience but lacks modern security and privacy compliance features. The domain registration is consistent and appropriate for the business history, enhancing trustworthiness. Strategic improvements in security headers, privacy policies, and technology modernization are recommended to enhance the site's security and compliance posture.

The website represents the Savez opština i gradova Republike Srpske, a governmental and non-profit organization supporting municipalities and cities in Republika Srpska, Bosnia and Herzegovina. It provides information on organizational structure, program areas, projects, news, and events, targeting local governments and citizens. The site demonstrates a stable market position as a local government representative with strong international partnerships. Technically, the website uses a modern frontend stack including Bootstrap 4, jQuery, Owl Carousel, and integrates third-party services such as Google Analytics and Mailchimp. It enforces HTTPS and uses client-side redirection to ensure secure connections. However, no CMS or hosting provider is explicitly identified, and some security best practices like DNSSEC and security headers are missing. From a security perspective, the site has a moderate posture with HTTPS enforced and domain transfer protection enabled. However, it lacks DNSSEC, explicit security headers, privacy and cookie policies, and incident response contacts. No vulnerabilities or malware indicators were found in the content. The site is safe for general audiences with no adult or questionable content. Overall, the website is professional and credible but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

A

Auto-moto savez Republike Srpske

ams-rs.com

0

Auto-moto savez Republike Srpske is a well-established non-profit organization providing roadside assistance, traffic updates, and membership services primarily in Republika Srpska, Bosnia and Herzegovina, and Europe. The website reflects a mature digital presence with a WordPress-based infrastructure, interactive maps, and live border crossing information. The organization targets local residents and travelers, offering key services such as emergency assistance and safety campaigns. The domain is long-standing and consistent with the organization's identity, enhancing trustworthiness. Technically, the site uses modern web technologies and plugins but lacks advanced security headers and DNSSEC, which could improve its security posture. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap for GDPR and regional regulations. Overall, the website is professional and functional with room for security and compliance improvements.

А

Агенција за безбједност саобраћаја Републике Српске

bslzrs.org

0

The website bslzrs.org represents the Agency for Traffic Safety of Republika Srpska, Bosnia and Herzegovina. It primarily serves as an informational platform for the XIV International Conference on Traffic Safety in Local Communities, providing detailed content about traffic safety statistics, conference agenda, speakers, thematic areas, and organizational committees. The agency operates as a governmental and non-profit entity focused on improving traffic safety through research, awareness, and collaboration with regional and international partners. The website targets professionals, researchers, and government officials involved in traffic safety and local community development. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, Slick Carousel, and Google Maps API integration. It is hosted on Bitlab Hosting and demonstrates moderate performance with good mobile optimization. However, accessibility and SEO optimizations are basic, and no CMS or advanced platforms are detected. The site lacks analytics and tracking scripts, indicating minimal user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No privacy or cookie policies are present, which is a compliance gap. The WHOIS data shows privacy protection and a recent domain registration date, which is somewhat inconsistent with the historical content but not necessarily suspicious. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is professional and trustworthy with good content quality and business credibility. However, it requires improvements in privacy compliance, security headers, and transparency to enhance its security posture and regulatory adherence.

BTGport.net is a regional web hosting and domain registration service provider primarily serving the Balkan region, with services offered in Serbian language. The company offers a range of hosting packages, domain registration, web design, and email hosting solutions targeting small to medium businesses and individual users. The website content reflects a business focused on technology and telecommunications services with a local market presence. Technically, the website uses older technologies such as jQuery 1.2.6 and PHP with MySQL, and mentions a proprietary CMS (BTGcms). The site shows basic mobile optimization and SEO but lacks modern security features such as HTTPS enforcement and security headers. The presence of Google Analytics indicates moderate user tracking without visible privacy compliance mechanisms. Security posture is weak due to outdated libraries, lack of HTTPS, and no visible security headers or incident response information. WHOIS data for the domain is missing or not found, which raises concerns about domain legitimacy and registration status, conflicting with the website's claim of operation since 2003. Overall, the website is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and protect users.