Security Directory

V

Vinnumálastofnun

vinnumalastofnun.is

0

Vinnumálastofnun is an Icelandic government agency responsible for administering unemployment and parental leave benefits, as well as providing labor market information and advisory services to immigrants. The website serves as an official portal for these services, targeting individuals, employers, and immigrants within Iceland. It holds a strong market position as the official authority in its domain, with a history dating back to 2002. Technically, the website is built using modern web technologies including React and Next.js, hosted on AWS infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some minor improvements could be made in performance and security headers. Analytics are implemented via plausible.io, indicating a privacy-conscious approach to user tracking. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML content. However, DNSSEC is not enabled, and no explicit security policies or vulnerability disclosure mechanisms are found. The WHOIS data confirms the domain's legitimacy and consistency with the claimed government entity. Overall, the website is professional, trustworthy, and serves its purpose effectively. Strategic recommendations include enhancing privacy compliance by publishing clear privacy and cookie policies, enabling DNSSEC, and adding security headers and incident response information to strengthen security posture.

L

Ljósmæðrafélag Íslands (implied)

ljosmodir.is

0

Ljosmodir.is is a professional Icelandic educational website dedicated to pregnancy, childbirth, and postpartum care. It serves parents, midwives, and interested individuals by providing comprehensive information, Q&A with midwives, and useful tools such as a due date calculator. The site is associated with the Icelandic Midwives Association, enhancing its credibility and trustworthiness. Technically, the site uses modern web technologies including Next.js and Prismic CMS, ensuring good performance, mobile optimization, and SEO. Security posture is adequate with HTTPS implied, but lacks visible security headers and explicit cookie consent mechanisms. WHOIS data for the domain is unavailable, which slightly reduces trust but does not detract significantly given the professional content and affiliations. Overall, the site is a reliable resource with room for improvement in security and privacy compliance.

The website itf-tkd.shop is a parked domain currently offered for sale via the Sedo domain marketplace. It contains minimal content, primarily advertising the domain sale and providing generic information in German. There is no active business or service presence on the site. The technical infrastructure relies on standard HTML5, CSS normalization, and Google Ads for monetization. The domain is registered through Spaceship, Inc. in Iceland, but the WHOIS data shows a creation date in the future (2025), indicating possible data inconsistency or placeholder registration. Security posture is minimal with no advanced headers or policies implemented, and privacy compliance is basic with only a Sedo privacy policy link available. Overall, the site lacks business credibility and trust indicators.

A

AFS á Íslandi

afs.is

0

AFS á Íslandi is a non-profit organization dedicated to facilitating international student exchange programs, volunteer opportunities, and cultural literacy initiatives in Iceland. The website presents a professional and comprehensive digital presence, targeting students, host families, volunteers, and educational institutions. It is part of the global AFS network, promoting cross-cultural understanding and global citizenship. The site is well-structured, mobile-optimized, and rich in content, including program details, testimonials, and calls to action for applications and hosting.

F

Frenk.ai

frenk.ai

0

Frenk.ai is a newly founded fintech startup (2025) specializing in AI-driven financial advisory services delivered through an interactive gamified platform. The company targets individuals seeking to improve their financial decision-making and literacy. The website presents a professional and modern design with clear calls to action for joining a waitlist for early access. Technically, the site uses Bootstrap for responsive design, Cloudflare for DNS, and Google Analytics for user tracking. The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS enforced and secure form handling, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is partially addressed with a privacy policy and GDPR mention, but no cookie consent mechanism is present. Business credibility is supported by clear contact information and EU data protection claims. Overall, the site is trustworthy and well-positioned for a fintech startup but can enhance security and privacy practices.

The website etherscan.io is currently inaccessible due to a Cloudflare Turnstile security challenge page, which blocks direct content access. Etherscan.io is a well-known blockchain explorer service primarily serving the Ethereum ecosystem, providing users with transaction tracking, smart contract verification, and blockchain analytics. The domain is mature, created in 2015, and uses privacy protection for WHOIS data, which is common in the blockchain industry to protect registrant privacy. The technical infrastructure includes Cloudflare's security services, indicating a strong perimeter defense. However, due to the blocking, no direct content, policies, or contact information could be extracted or analyzed. The security posture at the network edge is strong, but internal security and compliance details are not visible. Overall, the site appears legitimate and professionally managed but requires bypassing the WAF challenge for full analysis.

M

Mubs Inc

mubs.inc

0

Mubs Inc is a small digital product studio founded in 2021 and operated by Mubashar Iqbal, focusing on AI, web3, and blockchain product development. The website presents a professional and modern design built on Next.js and React, optimized for mobile and fast loading. However, it lacks critical compliance documents such as privacy and cookie policies, and does not provide contact information, which limits trust and transparency. The domain is privacy protected but registered with a reputable registrar, consistent with a small technology business. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the site is safe and suitable for a general audience with no adult content.

J

Jsmon

jsmon.sh

0

Jsmon is a newly founded technology startup (2024) offering a modern JavaScript security platform focused on continuous external application security and monitoring. The platform aims to provide developers and security teams with advanced scanning, monitoring, and automation capabilities to stay ahead of JavaScript-related threats. The website is professionally designed using Framer and hosted with Cloudfront CDN, indicating a modern technical infrastructure. Analytics and customer engagement tools like Google Analytics and Intercom are integrated, supporting digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

K

Khuga Labs

khuga.io

0

Khuga Labs operates a digital gaming ecosystem called the Khugaverse, integrating multiplayer brawler games, NFT collections, and a community gamification platform. The company targets gamers and NFT enthusiasts with a niche offering that blends gaming and blockchain technology. The website showcases rich multimedia content and links to Steam for game access, indicating a modern digital presence. Technically, the site uses modern JavaScript frameworks and Cloudflare DNS but lacks DNSSEC and security headers, which are areas for improvement. Security posture is moderate with HTTPS enabled but missing key policies and contact information. Overall, the site is professional and engaging but would benefit from enhanced privacy compliance and security transparency.

The website quickkoala.io currently presents minimal accessible content, returning an API error message indicating a missing resource. The domain is registered with privacy protection through a service based in Iceland, with a creation date in 2019, suggesting a small or early-stage business. However, the lack of visible business information, contact details, or policies on the website limits the ability to assess the company's market position or services. Technically, the site appears to be hosted on Amazon AWS infrastructure based on DNS records, but no modern web technologies, frameworks, or CMS platforms are detectable from the provided data. Security posture cannot be fully evaluated due to missing security headers and SSL configuration details. Overall, the website's minimal content and lack of compliance documentation present a low trust profile and high risk for users seeking reliable information or services.

The website at cdn3l.ink is currently non-functional, serving an XML error message indicating a missing index.html file. No business content, metadata, or contact information is available, making it impossible to assess the company's market position or services. The domain is registered through a privacy protection service based in Iceland and hosted on Amazon AWS DNS infrastructure. The lack of accessible content and absence of security headers or policies indicates a very low digital maturity and security posture. Without accessible content, no meaningful privacy or compliance evaluation can be performed. The overall risk is elevated due to the absence of any visible business or security information, which may indicate an inactive or placeholder domain.

W

WiseOx

wiseox.ai

0

WiseOx is a technology startup founded in 2023, offering AI-powered personalized assistants called "mascots" to automate tasks and improve information access for businesses. The website serves primarily as a login portal for existing users and provides a signup call to action for new users. The business model appears to be SaaS-based, targeting companies seeking AI automation solutions. The market position is emerging with a focus on AI assistant technology. Technically, the website uses modern JavaScript modules and CSS for its frontend but lacks advanced SEO metadata and accessibility features. The site is moderately optimized for mobile and performance but does not implement common security headers or DNSSEC, which are areas for improvement. Hosting and domain registration are managed via NameCheap with privacy protection enabled. From a security perspective, the site uses HTTPS (implied by domain and modern web standards) but lacks visible security headers and privacy/cookie policies, which reduces compliance and trustworthiness. No contact or incident response information is provided, limiting transparency. The domain is new but consistent with a startup profile, and privacy protection is justified. No WAF or blocking mechanisms were detected, allowing full content access. Overall, WiseOx presents a basic but functional online presence for a new AI SaaS business. Strategic improvements in security policies, privacy compliance, and contact transparency would enhance trust and compliance posture significantly.

R

Ríkisskattstjóri

skattur.is

0

The website innskraning.rsk.is serves as the official login portal for the Icelandic tax authority (Ríkisskattstjóri). It provides secure authentication mechanisms including electronic identification and web key login, integrating with the national island.is authentication service. The portal targets Icelandic taxpayers and businesses requiring access to tax-related services. The site is branded consistently with government standards and offers a professional user experience with modern web technologies such as Bootstrap and IBM Watson Assistant chat integration. While WHOIS data for the subdomain is unavailable, this is typical for subdomains and does not detract from the site's legitimacy. The portal uses HTTPS and includes CSRF protection tokens in forms, but lacks visible security headers and explicit security or incident response contact information.

R

Ríkisskattstjóri

tollur.is

0

The website www.skatturinn.is serves as the official online portal for the Icelandic government tax and customs authority, Ríkisskattstjóri. It provides comprehensive information and services related to tax assessment, collection, customs clearance, and enforcement including investigation of tax fraud. The site targets individuals, businesses, tax professionals, and customs agents, offering multilingual support including English. The business model is a government service entity focused on public administration and compliance enforcement. The website demonstrates a mature digital infrastructure using Eplica CMS, integrated analytics, and modern JavaScript libraries, supporting a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and some security best practices observed, though some HTTP security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information and certifications enhancing trust. Overall, the site is professional, trustworthy, and well-positioned as a national tax authority portal.

R

Ríkisskattstjóri

rsk.is

0

The website www.skatturinn.is serves as the official online presence of Ríkisskattstjóri, the Icelandic government tax and customs authority. It provides comprehensive information and services related to tax assessment, collection, customs clearance, and compliance monitoring. The site targets individuals, businesses, and tax professionals, offering detailed guidance, self-service portals, and updates on tax regulations and deadlines. The presence of English language sections indicates accommodation for international users. Technically, the site is built on the Eplica CMS platform, leveraging modern web technologies including Google Analytics, Google Tag Manager, and IBM Watson Assistant for enhanced user interaction. The site is mobile-optimized and accessible, with good SEO practices and structured navigation. Security posture is strong with enforced HTTPS and privacy/security policies published, though some HTTP security headers could be improved. The absence of WHOIS data is notable but does not detract from the site's legitimacy given its government affiliation. Overall, the site demonstrates a mature digital infrastructure supporting critical government functions with a high degree of professionalism and trustworthiness.

H

Hugsmiðjan ehf.

eplica.is

0

Eplica.is is the official website for the Eplica web management system, developed and hosted by Hugsmiðjan ehf., an Icelandic technology company. The site primarily serves as an informational portal announcing the end-of-life (EOL) status of the Eplica CMS product, with all development and operations ceasing by the end of January 2025. The business model revolves around providing web content management services to organizations, but the product is now legacy and being phased out. The website targets existing Eplica users and potential clients familiar with the CMS. The company maintains a professional online presence with clear contact details and social media links.

R

Ríkisskattstjóri

skatturinn.is

0

The website www.skatturinn.is serves as the official online presence of Ríkisskattstjóri, the Icelandic national tax and customs authority. It provides comprehensive information and services related to tax assessment, collection, customs duties, and enforcement. The site targets individuals, businesses, tax professionals, and government entities, offering detailed guidance, calculators, forms, and self-service portals. The content is primarily in Icelandic with an English section to accommodate international users. The site is well-structured, professionally designed, and rich in relevant content, reflecting a mature digital presence for a government entity. Technically, the website is built on the Eplica CMS platform and leverages modern JavaScript libraries including jQuery and GSAP for interactive elements. It integrates multiple analytics and tracking tools such as Google Analytics and Siteimprove, and features an IBM Watson Assistant chatbot localized in Icelandic. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured navigation. Performance is moderate, with asynchronous loading of scripts enhancing user experience. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, no explicit security headers were detected in the provided data, suggesting room for improvement in HTTP security configurations. The use of third-party scripts necessitates ongoing vulnerability management. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is available, enhancing trust and transparency. Overall, the website presents a low-risk profile with a high degree of professionalism and compliance. The main concern is the absence of WHOIS data, which is unusual for a government domain but may be due to Icelandic domain registration norms. Strategic recommendations include enhancing HTTP security headers, continuous monitoring of third-party scripts, and improving WHOIS transparency if possible to bolster trust further.

F

Fríorka

friorka.is

0

Fríorka is an Icelandic company specializing in the sale of NIBE heat pumps, offering energy-efficient heating solutions with up to 85% savings. The company targets Icelandic consumers and businesses interested in renewable energy and heat pump technology. Their website provides e-commerce capabilities, product information, and customer support, positioning them as a key player in the local energy sector. Technically, the website is built on WordPress with WooCommerce and the Avada theme, supported by modern tracking and analytics tools such as Google Analytics and Facebook Pixel. The site is hosted by an Icelandic hosting provider, ensuring local presence and performance. Security-wise, the site uses HTTPS and Google reCAPTCHA but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and well-structured but would benefit from improved privacy and security practices.

K

Klad Syndicate

klad.design

0

Klad Syndicate is a multidisciplinary design syndicate founded in 2020, providing comprehensive and long-lasting design solutions. Their services include inspiring, envisioning, creating, launching, supporting, and reimagining projects for their clients. The company positions itself as a niche provider in the creative design sector, targeting individuals and organizations seeking innovative design services. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern JavaScript frameworks such as Alpine.js and FilePond, and is hosted on Vultr. It integrates Google Analytics and Google Ads for tracking and marketing purposes. Security-wise, the website uses HTTPS and has a clientTransferProhibited domain status, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but would benefit from improved security and privacy practices.

I

Instadapp

instadapp.io

0

Instadapp is a technology platform specializing in decentralized finance (DeFi) tools designed to maximize the potential of DeFi protocols for a broad audience. Founded in 2018, it offers multiple products including Instadapp PRO, Lite, Avocado, Fluid, and a governance platform, positioning itself as a mature player in the DeFi ecosystem. The website demonstrates a modern technical infrastructure using Nuxt.js and Tailwind CSS, with excellent mobile optimization and fast performance. Security posture is solid with HTTPS enforced and Cloudflare DNS usage, though DNSSEC is not enabled and no explicit security policies or incident response information are published. Privacy compliance is weak due to absence of privacy and cookie policies, and no contact information is provided. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

C

CrankWheel ehf.

meeting.is

0

CrankWheel ehf. is a technology company specializing in providing instant and effortless screen sharing solutions tailored for inside sales and telesales professionals. Founded in 2014 and based in Iceland, the company offers a SaaS product that enables users to share their screens to any device without requiring setup or downloads for viewers. The website positions CrankWheel as a niche player focused on improving sales presentations and customer engagement through seamless screen sharing technology. The business model revolves around software subscriptions and affiliate marketing partnerships. Technically, the website leverages a modern technology stack including Cloudflare for DNS and CDN services, Google Tag Manager, Adobe DTM, Sentry for crash reporting, and CookieYes for cookie consent management. The site is well-optimized for mobile devices and incorporates multiple analytics and marketing tools such as Google Analytics, Hotjar, Amplitude, and Facebook Pixel. The hosting and infrastructure appear robust with good performance and security practices, although DNSSEC is not enabled. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms like Cloudflare Bot Management and Google reCAPTCHA. Cookie consent is implemented with granular user control, supporting GDPR compliance. However, there is no publicly visible privacy policy, terms of service, or security policy pages, and no vulnerability disclosure or incident response contacts are provided. Security headers are not explicitly detected, and DNSSEC is not enabled, which are areas for improvement. Overall, CrankWheel's website demonstrates a professional and trustworthy online presence with good technical maturity and marketing sophistication. The lack of explicit privacy and security policy documentation slightly reduces privacy compliance scores. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, adding security headers, and providing vulnerability disclosure information to enhance trust and compliance.

The website at apecs.is currently presents a Cloudflare bot verification challenge page, preventing direct access to its main content. This indicates that the site is protected by Cloudflare's security mechanisms to mitigate automated access or attacks. The domain is well aged, created in 2008, and uses Cloudflare DNS services, but lacks DNSSEC and visible security headers. No privacy, cookie, or terms of service policies are present on the accessible page, nor is there any contact or business information. The technical infrastructure includes Google reCAPTCHA v2 for bot verification, but no other advanced technologies or analytics are detected. Overall, the site is inaccessible for meaningful content analysis, resulting in a low AI score and limited insights.

I

International Association for Green Energy

igec25.is

0

The International Green Energy Conference (IGEC25) website represents a professional and well-structured platform for an upcoming international conference focused on green energy and AI, scheduled for October 2025 in Reykjavik, Iceland. The conference is organized by reputable entities including the Arctic Portal and the University of Iceland, supported by multiple sponsors and partners. The site provides comprehensive information about the event agenda, speakers, sponsors, and organizational details, targeting academia, industry professionals, and researchers in the energy sector. Technically, the website is built on Joomla CMS with modern front-end technologies such as Bootstrap, jQuery, and Owl Carousel, ensuring good mobile responsiveness and user experience. Hosting and DNS are managed via Cloudflare, providing reliable performance and security benefits. However, the site lacks DNSSEC and some security headers, which are recommended for enhanced security. From a security perspective, the site uses HTTPS with a valid SSL certificate and includes CSRF tokens in scripts, indicating some security best practices. However, the absence of privacy and cookie policies, as well as vulnerability disclosure and incident response information, represents compliance and transparency gaps. Google Analytics is used for user tracking without visible consent mechanisms, which may raise privacy concerns under GDPR. Overall, the website is trustworthy and professionally presented but would benefit from improved privacy compliance and enhanced security configurations. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and publishing vulnerability disclosure and incident response details to strengthen trust and compliance.

P

Privacy service provided by Withheld for Privacy ehf

onepage.me

0

Onepage.io is a SaaS company offering a website builder platform tailored primarily for German-speaking small businesses and agencies. The platform enables users to create websites, landing pages, funnels, and linktrees with a focus on productivity and ease of use. The company positions itself as a fast and clean alternative to WordPress, emphasizing conversion-optimized templates and a modern editing experience. Technically, the website is built on a modern React-based framework (Next.js) and leverages Cloudflare for DNS and likely CDN services. It integrates multiple marketing and analytics tools such as Microsoft Clarity, Google Tag Manager, LinkedIn Insight Tag, and Hyros, indicating a mature digital marketing infrastructure. Security-wise, the site uses HTTPS with a good SSL configuration and domain transfer protection, but lacks DNSSEC and explicit security policies or incident response contacts. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the scanned content. Overall, the website is professional and trustworthy but could improve transparency and compliance documentation.

A

Arctic Portal

arcticportal.org

0

Arctic Portal is a well-established non-profit gateway providing comprehensive information, data sharing, and consultation services related to the Arctic region. The website offers news, maps, scientific data, governance information, educational resources, and event calendars targeting researchers, policymakers, educators, and Arctic stakeholders. The organization is based in Iceland and has been operational since 2005, positioning itself as a trusted source in the Arctic domain. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap, jQuery, and Font Awesome. It is hosted with domain registration via GoDaddy and DNS managed by Cloudflare. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Google Analytics is used for user behavior tracking, including scroll and download events, indicating moderate user tracking practices. From a security perspective, the site enforces HTTPS and employs domain status locks to protect domain integrity. However, DNSSEC is not enabled, and no security headers were detected, which are areas for improvement. The absence of privacy and cookie policies suggests compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure policies are published, which could impact trust and security readiness. Overall, Arctic Portal demonstrates a solid business and technical foundation with a strong reputation in its niche. To enhance security posture and regulatory compliance, it should implement DNSSEC, security headers, privacy and cookie policies, and publish incident response contacts. These steps will improve trustworthiness and align with best practices for data protection and user privacy.

S

scena.ai

scena.ai

0

scena.ai is a technology company specializing in AI-driven interactive video and avatar creation solutions. Their platform enables users to create engaging, multilingual interactive videos and AI avatars with voice cloning capabilities, targeting businesses and organizations in marketing, e-learning, and customer engagement sectors. The company positions itself as an innovative SaaS provider with scenario-based dialogue editing and no-code tools, supported by reputable clients and certifications. Technically, scena.ai employs modern JavaScript libraries and cloud hosting with Cloudflare DNS, integrating analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The website is well-designed, mobile-optimized, and SEO-friendly, providing a professional user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements like enabling DNSSEC and publishing explicit security policies are recommended. Overall, scena.ai demonstrates a mature digital presence with strong business credibility and compliance, suitable for its market niche.

E

Event Engine CMS Ltd

rondayvoo.ai

0

Rondayvoo AI is a small technology company specializing in AI-powered content generation services tailored for event marketing. Their offerings include creating exhibitor profiles, social media posts, email marketing content, and blogs to help event organizers fill content gaps efficiently. The company operates under Event Engine CMS Ltd and targets event professionals seeking automated content solutions. The website is built on WordPress using the Bricks builder theme, incorporating modern web technologies such as Google Fonts, Font Awesome, and GSAP for animations. While the site is generally well-designed and mobile-optimized, some technical issues such as an invalid Google reCAPTCHA key reduce its security posture. Privacy and cookie policies are present but hosted on a related domain, and no direct contact emails or phone numbers are listed, relying instead on a contact form. The domain is privacy protected, consistent with a new startup founded in 2023. Overall, the site demonstrates a moderate level of digital maturity with room for improvement in security and compliance.

1

1984 ehf.

1984hosting.com

0

1984 ehf. is an Icelandic green and ethical web hosting company founded in 2006, emphasizing freedom of speech and privacy. The company offers traditional web hosting, VPS with preconfigured VPN solutions, FreeDNS services, and domain registration. Their market position is that of a niche provider focusing on environmentally friendly and privacy-conscious customers, with a solid Icelandic identity and a user base exceeding 50,000. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies including Bootstrap, jQuery, FontAwesome, and Matomo analytics, delivering moderate performance and good SEO practices.

1

1984 ehf.

1984.is

0

1984 ehf. is a well-established Icelandic web hosting company founded in 2006, offering a range of hosting services including shared hosting, VPS, and DNS services. The company positions itself as a green and customer-friendly hosting provider with competitive pricing and a strong local market presence. Their offerings include automatic WordPress installation, free SSL certificates, and advanced VPN services using Wireguard and OpenVPN. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content primarily in Icelandic. Technical infrastructure leverages modern web technologies such as Bootstrap, jQuery, and Matomo analytics, hosted likely on their own Icelandic infrastructure.

ITS Ísland is an Icelandic organization dedicated to advancing intelligent transportation systems and smart mobility solutions. The website serves as a platform to share news, organize events, and promote collaboration among stakeholders in the transportation sector. Affiliated with ITS Nordic, ITS Ísland positions itself as a key player in Iceland's transportation innovation landscape. The website content is professionally presented, focusing on events such as conferences on future transportation, MaaS, tolling, and drones. The target audience includes industry professionals, government entities, and interested public in Iceland.

F

FastPixel

fastpixel.io

0

FastPixel is a cloud-based WordPress plugin focused on website speed optimization through caching, image optimization, minification, and CDN integration. Backed by the reputable ShortPixel team, it targets WordPress site owners seeking an easy-to-use, all-in-one performance solution. The website demonstrates a modern technical infrastructure leveraging WordPress, Cloudflare DNS, and Google marketing tools. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies are not explicitly published. Overall, the site is professional, trustworthy, and well-positioned in the WordPress optimization market.

G

Government of Iceland

government.is

0

The Government of Iceland's official website serves as a comprehensive portal for information related to the Icelandic government, its ministries, diplomatic missions, and public services. It targets citizens, residents, and international stakeholders seeking authoritative information about government operations and policies. The site is well-positioned as the primary digital presence of the Icelandic government, offering news, publications, and contact avenues. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and accessibility tools like ReadSpeaker. It uses a custom CMS and integrates third-party services for analytics and cookie consent management. The site is mobile-optimized, accessible, and demonstrates good SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS, uses CAPTCHA on contact forms, and includes security analytics. While explicit security headers are not fully documented in the HTML, the site shows adherence to best practices. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR. Overall, the website is trustworthy, professional, and secure, with no indications of malicious activity. The lack of WHOIS data for the subdomain is consistent with Icelandic domain registry practices and does not detract from legitimacy. Strategic recommendations include publishing explicit security policies and a vulnerability disclosure framework to enhance transparency and security posture.

P

Privacy service provided by Withheld for Privacy ehf

vocalvideo.com

0

Vocal Video is a technology company offering a SaaS platform focused on remote video testimonial collection, editing, and hosting. The platform leverages AI and automation to provide intuitive video editing and motion graphics, targeting businesses and professionals who want to collect video reviews from customers, employees, and experts. The company positions itself as the leading remote video testimonial platform with a free signup option, indicating a growth-oriented business model. Technically, the website is built using the Framer CMS and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and Bing Ads. Hosting and DNS services are provided via Cloudflare, but DNSSEC is not enabled, and security headers are missing, indicating room for security improvements. The website is accessible without WAF or blocking mechanisms, but lacks visible privacy, cookie, and terms of service policies, which impacts privacy compliance scores. The domain is privacy protected but has a legitimate registration history dating back to 2016, consistent with a mature SaaS business. Overall, the website demonstrates good design quality, user experience, and business credibility but requires enhancements in security best practices and privacy compliance documentation.

R

ReturnGO

returngo.ai

0

ReturnGO is a technology company founded in 2020, specializing in providing a SaaS platform for sustainable returns and exchanges management targeted at e-commerce businesses and retailers. Their platform offers self-service portals to streamline product returns, warranty claims, exchanges, tracking, and shipping, aiming to increase revenue and customer retention. The company positions itself as a niche provider in the returns management market with a professional and consistent brand presence. Technically, the website is built on WordPress using the Divi theme, integrated with HubSpot for marketing and analytics, and hosted behind Cloudflare DNS. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. Security posture is adequate with HTTPS and domain transfer lock, but lacks DNSSEC and some HTTP security headers. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service on the homepage. Overall, the website is professional and trustworthy with moderate risk exposure due to missing privacy and security disclosures.

P

Privacy service provided by Withheld for Privacy ehf

about.me

0

About.me is a well-established technology platform founded in 2008 that provides users with the ability to create free, personalized one-page websites quickly and easily. The platform targets a general audience seeking personal branding and online presence solutions. The website demonstrates a professional design with good mobile optimization and clear navigation, supporting a positive user experience. Technically, the site leverages modern analytics and tracking technologies such as Google Analytics, Facebook SDK, and Google Tag Manager, hosted on Cloudflare infrastructure, ensuring reliable performance and security. However, the absence of explicit privacy, cookie, and terms of service pages in the analyzed content indicates gaps in privacy compliance. Security posture is generally good with HTTPS enabled and domain transfer protections, but lacks visible security headers and detailed security policies. The domain WHOIS data shows privacy protection typical for this business type, with a long registration period supporting legitimacy. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy disclosures and security headers to improve compliance and security posture.

E

E.M. StatusPal UG

noticely.io

0

Noticely is a technology startup offering a SaaS platform for hosted status pages and automated incident notifications, targeting small teams and growing companies. The platform emphasizes ease of use, scalability, and fair pricing, positioning itself as a modern alternative in the status communication market. The business is a product of E.M. StatusPal UG, founded in 2025, with a clear focus on technology and customer communication services. The website is professionally designed, mobile-optimized, and integrates modern analytics and consent management tools, reflecting a mature digital infrastructure for a young company. Security posture is solid with HTTPS, privacy protection in domain registration, and cookie consent mechanisms, though there is room for improvement in DNSSEC and security headers. Overall, the site is trustworthy, with transparent business information and active social media presence. Recommendations include enhancing security policies and publishing vulnerability disclosure information to further strengthen trust and compliance.

T

Topic Intelligence™️

topicintelligence.ai

0

Topic Intelligence™️ is a small technology company founded in 2020, offering an AI-driven platform that provides topic-based marketing insights to improve targeting, content strategy, and lead generation. The platform integrates website and cross-channel marketing data to identify high-converting topics, trending industry topics, and user journeys, enabling smarter marketing decisions. The website is professionally designed using WordPress and Elementor, with a focus on clear messaging and user engagement. Technically, the site employs modern tools including Google Analytics, Matomo, Google reCAPTCHA Enterprise, and Stripe for payment processing, indicating a mature digital infrastructure. Security posture is good with HTTPS and form protections, though some security headers and explicit policies are missing. Privacy compliance is basic, lacking cookie consent mechanisms and detailed GDPR indicators. Overall, the site presents a credible and professional business presence with room for improvement in privacy and security transparency.

N

Neocom

neocomapp.com

0

Neocom.ai is a technology startup founded in 2020, offering an AI-native commerce experience platform designed to personalize online shopping through an AI shop agent. The website presents a professional and modern design built with Framer and integrates analytics and cookie consent tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. The domain is privacy protected, which is common for startups, and shows no suspicious registration patterns. Overall, the site is functional and credible but would benefit from enhanced transparency and security disclosures.

C

coolLabs Technologies Bt.

coolify.io

0

Coolify is an open-source self-hosting platform designed to provide developers and businesses with an alternative to popular cloud deployment services like Heroku, Vercel, and Netlify. Founded in 2021 and operated by coolLabs Technologies Bt., the platform enables deployment of applications, databases, and over 280 services to any server with SSH access, including cloud VPS and personal servers. The business model combines open-source software with paid cloud hosting and sponsorship support, targeting developers and small to medium enterprises seeking control over their deployment infrastructure. Technically, Coolify leverages modern web technologies including the Astro framework, Docker containerization, and Cloudflare for DNS and CDN services. The website is well-optimized for performance, mobile responsiveness, and accessibility, featuring a professional design and clear navigation. The platform supports extensive integrations such as Git repositories and automatic SSL provisioning, enhancing developer experience and operational efficiency. From a security perspective, Coolify enforces HTTPS with automatic Let's Encrypt certificates and implements standard security headers. The domain is registered with privacy protection consistent with the business profile, and the domain age aligns with the company's founding date. However, the site lacks explicit cookie consent mechanisms and published security or incident response policies, which are areas for improvement to enhance compliance and trust. Overall, Coolify presents a strong, trustworthy offering in the self-hosting and deployment space with a solid technical foundation and active community support. Strategic enhancements in privacy compliance and security transparency would further strengthen its market position and user confidence.

C

coolLabs Technologies Bt.

coollabs.io

0

coolLabs Technologies Bt. operates a privacy-focused technology website offering free and open-source applications designed to help users control their digital footprint and enhance online privacy. The company targets a general audience interested in privacy and self-hosting solutions, positioning itself as a niche provider with a strong community presence and open-source ethos. Key services include Coolify, a self-hosting platform, and other privacy-friendly tools such as Fonts and Safetyper. The business model revolves around open-source software, community engagement, and sponsorships. Technically, the website is built using modern frameworks like Astro, hosted with Cloudflare DNS and CDN services, and employs privacy-respecting analytics via Plausible. The site demonstrates good performance, mobile optimization, and accessibility, with a clean and professional design. However, some improvements could be made in security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS with a strong SSL configuration and domain transfer protections. The WHOIS data shows privacy protection consistent with the company's privacy focus and domain age appropriate for its business maturity. No critical vulnerabilities or exposed sensitive data were detected, though the absence of security headers and explicit security policies suggests room for enhancement. Overall, coolLabs presents a trustworthy and professional online presence with a solid technical foundation and privacy-centric approach. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing formal security and incident response policies to further strengthen compliance and user trust.

A

Apps2me

apps2.me

0

Apps2me is a newly launched technology platform focused on providing a store and hosting environment for Telegram mini apps. The platform targets Telegram users and developers interested in mini apps, positioning itself as a niche player in the Telegram ecosystem. The business model revolves around offering a centralized place to explore and add new Telegram mini apps, leveraging the popularity of Telegram's mini app capabilities. The company is small and recently founded in 2024, with domain registration consistent with a startup phase. Technically, the website uses modern web technologies including jQuery 3.7.0 and ES modules for JavaScript, with a responsive design optimized for mobile devices. Hosting is provided by Spaceship, Inc., and the site uses HTTPS, though lacks advanced security headers and DNSSEC. SEO and accessibility are basic but functional. The site includes a cookie consent banner but lacks comprehensive privacy or terms of service documentation. From a security perspective, the site benefits from HTTPS but is missing important security headers and DNSSEC, which reduces its security posture. No incident response or security policies are published, and no contact information is provided, which limits transparency and trust. The WHOIS data shows privacy protection and a recent domain registration, typical for a small tech startup, with no suspicious indicators. Overall, the site is functional and moderately trustworthy but has gaps in privacy compliance and security best practices. Strategic improvements in security headers, privacy policies, and contact transparency would enhance trust and compliance.

B

beige.party

beige.party

0

beige.party is an independent Mastodon social media server launched in 2022, serving a niche community described as friendly weirdos within the Fediverse. It operates on the open-source Mastodon platform version 4.4.7, providing decentralized social networking services without ads or algorithms. The website demonstrates a moderate level of digital maturity with modern web technologies, mobile optimization, and a functional user interface. However, it lacks comprehensive privacy and security policies such as cookie consent and terms of service. Security posture is adequate with HTTPS and domain transfer protection but could be improved by enabling DNSSEC and security headers. Overall, the site is legitimate and trustworthy for its community but would benefit from enhanced compliance and security transparency.

I

Incentivai Inc.

quickchat.ai

0

Quickchat AI, operated by Incentivai Inc., is a technology company offering a no-code platform to create custom AI Agents for businesses, focusing on customer support, e-commerce, and internal knowledge sharing. The platform is positioned as reliable, affordable, and enterprise-ready, with strong customization and integration capabilities. The website demonstrates a mature digital presence with modern technologies such as Astro, React, Google Tag Manager, and PostHog analytics, hosted behind Cloudflare DNS services. Security posture is strong with HTTPS enforced and standard security headers, though DNSSEC is not enabled and no explicit security policy or incident response page is published. Privacy compliance is evidenced by a comprehensive privacy policy and GDPR statements, but lacks an explicit cookie consent mechanism. Business credibility is high with detailed legal documents, case studies, and an affiliate program. Overall, the website is professional, well-structured, and trustworthy.

S

Spline, Inc.

spline.design

0

Spline, Inc. is a technology company specializing in web-based 3D design software that enables real-time collaboration for creative teams and developers. Their platform offers tools for 3D modeling, animation, interactive experiences, and easy embedding into web projects. Positioned as an innovative SaaS provider, Spline targets designers and developers seeking accessible and collaborative 3D design solutions. The company was founded in 2019 and operates primarily from Iceland, leveraging modern web technologies and cloud hosting to deliver a performant and user-friendly experience. Their business model includes free browser-based tools, downloadable desktop apps, and enterprise offerings. The website reflects a professional brand with consistent messaging and strong trust signals including testimonials and customer logos.

B

Bandalag sjálfstæðra leikhópa

leikhopar.is

0

The website represents Bandalag sjálfstæðra leikhópa, an Icelandic non-profit association for independent theatre groups. It provides cultural and organizational information, news, and event announcements primarily targeting Icelandic theatre professionals and enthusiasts. The site is built on WordPress with a moderate technical infrastructure using common JavaScript libraries and CSS frameworks. While the content quality and business credibility are good, the site lacks critical privacy and security policies, and no advanced security headers or DNSSEC are implemented. The presence of a suspicious external domain embedded in the HTML raises minor concerns. Overall, the site is functional and informative but requires improvements in security and privacy compliance to enhance trust and protection.

P

Privacyterms.io

termsandconditionstemplate.com

0

Privacyterms.io is a specialized online service providing customizable legal document templates including Privacy Policies, Terms and Conditions, and Disclaimers. The company targets website owners and small to medium businesses seeking compliance with international data protection laws such as GDPR, CalOPPA, and CCPA. Their market position is that of a niche provider offering both free and premium solutions with lawyer-drafted content. Technically, the website is built on WordPress using Oxygen Builder, leveraging modern web technologies and hosted behind Cloudflare for DNS and CDN services. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security-wise, the site enforces HTTPS and domain transfer protections but lacks advanced security headers and explicit incident response policies. No cookie consent mechanism was detected despite cookie usage for analytics. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it could improve security posture and transparency. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing incident response information.

P

Privacy service provided by Withheld for Privacy ehf

allybot.io

0

AllyBot.io is a small technology company founded in 2020 that offers an inclusive language tool integrated as a Slackbot. The website targets Slack users and teams aiming to promote inclusive language and foster allyship within their organizations. The business model is SaaS-based, focusing on delivering value through Slack integration. The company uses privacy protection for domain registration, which is common for startups in the tech sector. The website is professionally designed with good content relevance and user experience, optimized for mobile devices. Technically, the site uses HTTPS with a reputable registrar and hosting provider, but lacks advanced security headers and formal privacy or cookie policies. No direct contact emails or phone numbers are provided, only contact forms. There is no evidence of vulnerability disclosure or incident response policies published on the site.

A

Adapex Inc

adapex.io

0

Adapex Inc is a technology company specializing in advanced monetization solutions for digital publishers and advertisers. Leveraging AI technology developed in collaboration with Nasdaq AI suite contributors and allied with Datrix, Adapex offers a comprehensive suite of products and services including the M4 Tech Suite and data refinery solutions. The company positions itself as an industry leader with a strong focus on transparency, innovation, and partnership, supported by industry awards and a professional online presence. Technically, the website is built on WordPress with Elementor, integrates multiple analytics and consent management tools, and uses Cloudflare for DNS and CDN services. Security posture is good with HTTPS and consent mechanisms but could be enhanced by enabling DNSSEC and publishing security policies. Overall, the website is accessible, well-designed, and compliant with GDPR consent requirements, though explicit privacy and terms of service pages were not found in the provided content.

H

Heilsuvera

heilsuvera.is

0

Heilsuvera is a public health information portal serving the Icelandic population, providing health-related content and secure access to personal medical records. The website targets the general public and healthcare service users, positioning itself as a trusted national health resource. The platform supports multiple languages and integrates secure login functionality for personalized services. Technically, the site employs modern web technologies including Google Tag Manager, CookieHub for cookie consent, LiveChat for user support, and Google Analytics for traffic analysis. Hosting appears to be on Microsoft Azure, inferred from cookie data. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, though explicit security headers are not detected. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service pages. WHOIS data is missing, which raises concerns about domain registration transparency but does not detract from the site's apparent legitimacy as a government or public health entity. Overall, the site is professionally designed, accessible, and trustworthy, though improvements in privacy disclosures and domain registration transparency are recommended.

S

Safetravel

safetravel.is

0

Safetravel is a reputable non-profit organization dedicated to providing official travel safety information and emergency support services in Iceland. Operated by ICE-SAR, the Icelandic Association for Search and Rescue, the website serves as a critical resource for travelers, offering real-time travel conditions, safety tips, travel plan submissions, and emergency alerts. The organization maintains a strong market position as the authoritative source for safe travel in Iceland, supported by a robust digital presence including a dedicated mobile app and multilingual content.