Security Directory

K

kABI d.o.o.

bazanekretnina.com

0

Bazanekretnina.com is a regional real estate listing platform primarily serving Serbia, Montenegro, Croatia, Slovenia, Spain, Bosnia and Herzegovina, and Italy. The platform offers a wide range of property types including apartments, houses, land, and commercial spaces for sale and rent. The business is operated by kABI d.o.o., a company established in 2007, indicating a mature presence in the regional real estate market. The website targets individuals and businesses interested in real estate transactions within the Balkan region and selected European countries. It provides multilingual support and advanced search capabilities to enhance user experience. Technically, the website employs modern web technologies including Google Fonts, Font Awesome icons, and JavaScript libraries such as Select2 and Swiper for UI components. The site is mobile optimized and uses structured data (JSON-LD) to improve SEO and search engine visibility. Hosting details are not explicitly identified, but the domain is registered with DNC Holdings, Inc. Performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no visible privacy policy, cookie policy, or terms of service, which are critical for GDPR compliance and user trust. No contact information such as emails or phone numbers is directly available on the analyzed page, which may affect user confidence and support accessibility. Overall, Bazanekretnina.com presents as a professional and regionally focused real estate platform with good content quality and technical implementation. The main risks relate to privacy compliance gaps and limited visible security policies. Strategic improvements in these areas would enhance trustworthiness and regulatory adherence.

A

Agencija „Gerila ADV“

pressek.rs

0

Pressek.rs is a regional Serbian news portal focused on delivering timely and truthful news from Kragujevac and the Šumadija region. Operated by Agencija „Gerila ADV“, the site offers local news, cultural events, sports updates, job listings, and real estate advertisements, targeting residents and stakeholders in the region. The business model relies primarily on advertising and sponsored listings. Technically, the website uses modern web technologies including Google Analytics, Facebook Pixel, Google Fonts, and a CMS platform likely BCMS. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate; HTTPS is used, but DNSSEC is not enabled and security headers are missing. Privacy compliance is weak due to the absence of privacy and cookie policies and lack of consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site is a functional and professional local news outlet with room for improvement in security and privacy compliance.

S

SoftNET

softnet.rs

0

SoftNET is a well-established regional telecommunications provider founded in 1996, offering a broad range of communication services including data transmission, telephony, and system integration primarily targeting businesses in Southeast Europe. The company operates a modern IP network with offices in multiple countries, positioning itself as a reliable partner for multinational corporations. The website reflects a professional and consistent brand image with clear contact information and a multilingual presence. Technically, the site uses a mix of legacy and modern web technologies, including Bootstrap and jQuery, with room for modernization and security improvements. Security posture is moderate; HTTPS is presumably enabled, but DNSSEC is not, and security headers are missing. Cookie consent is implemented, but no explicit privacy policy or terms of service were found, indicating partial privacy compliance. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

K

Kabi d.o.o.

kabi.rs

0

Kabi d.o.o. is a Serbian technology company specializing in comprehensive online business solutions, including advanced web development, CRM and HRM applications, online stores, and digital marketing services. Established since 1994, the company has a strong market presence in Serbia and Slovenia, serving a diverse client base with tailored software and consulting services. Their business model focuses on B2B engagements, leveraging their proprietary BananaCloud platform to deliver integrated business solutions. Technically, the website employs modern web technologies such as Google Analytics, Google Tag Manager, and FontAwesome, supported by a custom CMS (Bananadmin). The site is mobile-optimized with good SEO practices and moderate performance. Hosting details are limited but the domain is registered with a reputable registrar. The website demonstrates a professional design and user experience with clear navigation and relevant content. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with no explicit privacy policy or terms of service found. The WHOIS data aligns with the business profile, showing consistent domain registration and legitimacy. Overall, the website is trustworthy and professional, with room for improvement in privacy documentation and security hardening. Strategic recommendations include enabling DNSSEC, publishing privacy and security policies, and adding security headers to enhance protection and compliance.

E

Einhell d.o.o. Beograd

einhell.rs

0

Einhell d.o.o. Beograd operates a professional and consumer-focused website offering a wide range of power tools, garden equipment, and battery systems primarily targeting hobbyists, gardeners, and professionals in Serbia. The company has an established market presence since 2008 and leverages a modern TYPO3 CMS platform with integrated consent management and analytics tools. The website is well-structured, mobile-optimized, and provides clear navigation and product information. Security measures include HTTPS, anti-robot verification, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the digital infrastructure supports a professional e-commerce experience with moderate tracking and good privacy compliance.

C

Creditreform d.o.o.

creditreform.rs

0

Creditreform d.o.o. is a well-established financial services company operating in Serbia since 1992, specializing in creditworthiness assessment, risk evaluation, debt collection, and market analysis. The company is part of the broader Creditreform network, serving business clients seeking reliable credit and risk information. The website reflects a professional B2B service provider with a clear focus on the Serbian market and regional partnerships. Technically, the site is built on TYPO3 CMS and integrates modern cookie consent management via Cookiebot, ensuring GDPR compliance. The infrastructure is hosted by a local cloud provider, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though improvements in security headers and explicit security policies are recommended. Overall, the website is trustworthy, compliant, and professionally maintained, supporting the company's market position and business credibility.

I

igus

igus.rs

0

igus is a well-established manufacturer specializing in motion plastics, offering a broad range of products including energy chains, plain bearings, and linear technology. The company operates globally with multiple country-specific domains, indicating a strong international market presence. Their website is professionally designed, targeting industrial and manufacturing sectors, and provides direct sales from the manufacturer. The technical infrastructure is modern, leveraging Next.js and React frameworks, ensuring good mobile optimization and user experience. Security posture is adequate with HTTPS enabled, but lacks some advanced security headers and explicit privacy and cookie policies. Analytics usage via piwik.pro indicates moderate user tracking. Overall, the website reflects a credible and professional business with room for improvement in privacy compliance and security best practices.

E

eKonferencije.com

ekonferencije.com

0

eKonferencije.com is a specialized platform focused on providing IT solutions for organizing scientific and professional conferences, seminars, and congresses. The platform offers services such as electronic paper submission, reviewer management, reporting, mass notifications, multimedia content, and participant feedback. It targets academic institutions, conference organizers, researchers, and authors primarily in the Serbian-speaking region. The business operates as a small-sized entity founded in 2012, with a niche market position in academic event management. Technically, the website employs a modern but somewhat dated technology stack including jQuery, Bootstrap, AngularJS, and FontAwesome. Hosting is provided by Bitlab Hosting as inferred from the nameservers. The site is mobile optimized and has a moderate performance profile. SEO and accessibility are basic but functional. The site uses HTTPS but lacks advanced security headers and DNSSEC, indicating room for security enhancements. From a security perspective, the site enforces HTTPS but does not implement DNSSEC or security headers such as CSP or HSTS. There is no visible privacy or cookie policy, nor incident response or vulnerability disclosure information, which are compliance gaps especially under GDPR. Contact information is present but limited. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website is functional and professional with good business credibility but requires improvements in privacy compliance and security posture to enhance trust and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing incident response contacts.

Р

Регулаторно тело за електронске комуникације и поштанске услуге (РАТЕЛ)

ceneusluga.rs

0

The website ceneusluga.rs serves as an official portal operated by the Regulatory Authority for Electronic Communications and Postal Services (RATEL) in Serbia. It provides users with a practical platform to compare prices and offers from various electronic communication operators in Serbia, covering fixed and mobile telephony, internet, television, and postal services. The portal targets the general public and stakeholders interested in telecommunications pricing transparency within Serbia. The business model is informational and regulatory, positioning itself as a trusted government resource. Technically, the website employs a modern frontend stack including Bootstrap 4.1.3, jQuery, jQuery UI, Select2, Google Fonts, and Font Awesome. The site is mobile-optimized and features a responsive design with clear navigation. Performance is moderate, with no significant technical debt detected. However, no CMS or hosting provider information is evident, suggesting a custom-built solution. From a security perspective, the site uses HTTPS but lacks DNSSEC and explicit security headers, which are recommended to enhance security posture. Cookie consent mechanisms are implemented, indicating awareness of privacy compliance, though terms of service and detailed security policies are absent. No critical vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website demonstrates a solid business credibility and a good level of technical implementation, with room for improvement in security best practices and privacy transparency. Strategic recommendations include enabling DNSSEC, adding security headers, publishing incident response policies, and enhancing privacy disclosures to strengthen trust and compliance.

L

Liceulice

liceulice.org

0

Liceulice is a well-established Serbian non-profit organization dedicated to supporting marginalized groups by fostering social and economic inclusion through a social enterprise model. Operating since 2009, it publishes a magazine and runs community support programs funded by donations and subscriptions. The website reflects a mature digital presence with multilingual support, e-commerce capabilities via WooCommerce, and integrated donation mechanisms. Technically, the site is built on WordPress with modern SEO and accessibility features, though some minor security enhancements like DNSSEC and security headers could be improved. Privacy compliance is strong, with clear cookie and privacy policies and consent mechanisms. Overall, the site demonstrates a high level of professionalism and trustworthiness, suitable for its mission and audience.

E

Erste Bank a.d. Novi Sad

erstebank.rs

0

Erste Bank a.d. Novi Sad operates as a major financial institution in Serbia, part of the larger Erste Bank Group serving Central and Eastern Europe. The bank offers a comprehensive range of retail and commercial banking services including payment accounts, loans, savings, insurance, and digital banking solutions targeting individuals, local communities, and SMEs. The website reflects a mature digital presence with a professional design, clear navigation, and mobile optimization. Technically, the site uses modern web technologies, including a proprietary CMS, Google Tag Manager for analytics, and a webchat widget for customer interaction. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved and explicit security policies published. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service in the provided content. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy banking institution.

F

Forum za odgovorno poslovanje

odgovornoposlovanje.rs

0

Forum za odgovorno poslovanje is a Serbian non-profit organization that brings together leading companies committed to responsible business practices and sustainable development. Established in 2014, it serves as a platform to promote corporate social responsibility (CSR) principles and encourage active business sector participation in societal development. The website provides news, reports, and event information relevant to CSR and sustainability topics, targeting businesses and stakeholders interested in these areas. The forum maintains an active presence on major social media platforms and offers newsletter subscriptions to engage its audience.

A

AKKA Studio

akka.studio

0

AKKA Studio is a specialized design and development studio focused on the crypto and Web3 sector, offering services including design, branding, frontend development, and growth analytics. The company positions itself as a trusted partner for Web3 projects, with a portfolio of notable clients and testimonials supporting its credibility. The website is professionally designed, mobile-optimized, and hosted on Webflow, indicating a modern digital infrastructure. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy policies, which are areas for improvement. Overall, the business appears legitimate and well-positioned in its niche, though privacy and compliance enhancements are recommended.

The Regulatory Authority for Electronic Communications and Postal Services (RATEL) of Serbia operates as a government regulatory body overseeing electronic communications and postal services. The website serves as an official portal providing regulatory information, public consultations, licensing, and consumer services. It targets operators, service providers, and the general public within Serbia. The domain is well-established since 2008, reflecting a mature presence in the regulatory sector. Technically, the website employs modern web technologies including JavaScript libraries such as Swiper.js and mmenu.js, and integrates Google reCAPTCHA for form security. The site is built on a Laravel-based backend inferred from CSRF tokens and form structures. It is mobile-optimized with good performance and basic accessibility features. SEO is basic but functional with meta tags and Open Graph data. Security posture is solid with HTTPS enforced, CSRF protection, and cookie consent mechanisms. However, some security headers like Content-Security-Policy and X-Frame-Options are missing, which could be improved. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. Overall, RATEL's website is professional, trustworthy, and aligned with its government regulatory role. It provides clear contact information and links to partner portals, enhancing transparency and user engagement. Strategic improvements in security headers and accessibility would further strengthen its digital maturity.

B

BitLab d.o.o.

eankete.com

0

eAnkete.com is a Serbian-based SaaS platform operated by BitLab d.o.o., specializing in creating customizable surveys, electronic forms, and tests. The platform targets businesses, educational institutions, and HR departments seeking efficient data collection and analysis tools. The website is professionally designed with a focus on usability and mobile responsiveness, supporting multiple languages relevant to the regional market. Technically, the site uses Bootstrap, jQuery, and Font Awesome, hosted on BitLab's infrastructure with HTTPS enabled but lacks DNSSEC and security headers. Security posture is moderate with no visible vulnerabilities but missing key policies such as privacy and cookie notices. Contact information is limited to social media and a contact/help page, with no direct emails or phone numbers disclosed. Overall, the domain registration is consistent with the business profile, indicating legitimacy and stable operation since 2015.

mojenovosti.com is a regional Serbian-language news portal established in 2013, focusing on Republika Srpska, Serbia, and the ex-Yugoslav region. It offers a broad range of news categories including politics, economy, culture, sports, and multimedia content. The site encourages user-generated content and provides advertising services, positioning itself as a small but active media outlet in its market niche. Technically, the website uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Google Adsense for monetization. Hosting is provided by BitLab, a regional hosting provider, which aligns with the website's regional focus. Security posture is moderate with HTTPS enabled but lacks advanced security headers and policies. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. Contact information is available but limited to basic email, phone, and physical address. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.

S

Smart kolektiv

smartkolektiv.org

0

Smart kolektiv is a well-established non-profit organization based in Serbia, focused on promoting corporate social responsibility (CSR), social innovation, and supporting civil society organizations and social entrepreneurs. Founded in 2003, it has built a strong market position as a pioneer in CSR development in Serbia, offering educational programs, consultancy, and networking services. The website reflects a professional and consistent brand image, with clear navigation and multilingual support. Technically, the site is built on WordPress using modern plugins and frameworks, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enabled and domain protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a clear privacy policy, but lacks a cookie consent mechanism and vulnerability disclosure. Overall, the website is trustworthy and serves its target audience effectively.

eNovosti.info is a Serbian language online news portal established in 2007, targeting audiences primarily in Republika Srpska and Serbia. It offers a wide range of news categories including politics, sports, culture, economy, and entertainment. The site is monetized primarily through Google Adsense advertising and uses Google Analytics for visitor tracking. The portal is powered by BitLab CMS and hosted by BitLab services, indicating a partnership with a local technology provider. The website demonstrates good content quality and user experience with clear navigation and mobile optimization, but lacks critical privacy and security features such as HTTPS and privacy policies.

M

mCloud doo

sdgs4all.rs

0

The website 'Održivi razvoj za sve' is a Serbian platform dedicated to facilitating public dialogue and information sharing on the Sustainable Development Goals (Agenda 2030) within Serbia. It operates as a non-profit initiative, supported by multiple partner organizations, and targets policymakers, NGOs, and the general public interested in sustainable development. The platform offers resources such as news, newsletters, e-learning modules, and document repositories to support its mission. Technically, the site is built on WordPress 6.8.2, utilizing modern web technologies including jQuery, OwlCarousel, FontAwesome, and Slider Revolution. It employs Matomo analytics for user tracking, indicating a privacy-conscious approach. The website is mobile-optimized with good SEO practices and moderate performance. However, there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and some recommended security headers. There is no publicly available security policy or incident response information, and no vulnerability disclosure mechanism is present. Cookie consent is implemented, but no explicit privacy policy page was found, which is a compliance gap. Overall, the website presents a professional and trustworthy front for its niche non-profit mission. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing privacy and security policies, and improving accessibility features to strengthen compliance and user trust.

Indikatori.rs is a Serbian national government portal managed by the Republic Statistical Office, designed to aggregate and provide access to various statistical indicators from multiple sources. The platform aims to facilitate easy access to indicator data, quality reports, metadata, and comparative statistics for Serbia and other countries. The website is funded by the European Union and targets data producers and users including government entities and researchers. Technically, the site uses Bootstrap and jQuery for frontend presentation, with a moderate performance and good mobile optimization. Security posture is moderate with HTTPS assumed but lacking DNSSEC and security headers. No privacy or cookie policies are present, which impacts compliance. The domain registration is consistent and legitimate, with no suspicious patterns. Overall, the site is professional and trustworthy but could improve privacy and security practices.

M

mCloud doo

certrs.org

0

CERT RS is a governmental Computer Emergency Response Team website focused on cybersecurity incident response and awareness in Serbia. The site is built on WordPress with common plugins such as WooCommerce and GiveWP, indicating some donation or e-commerce capabilities. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. The domain is expired, which poses a significant risk to service continuity and trust. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the website serves an important governmental function but requires improvements in domain management, security practices, and privacy compliance.

O

ORION TELEKOM d.o.o.

tickets.rs

0

Tickets.rs is an established online ticketing platform operated by ORION TELEKOM d.o.o., founded in 2008 and serving primarily the Serbian market. The platform offers online ticket sales for a variety of entertainment events including concerts, theater performances, festivals, and sports events. The website demonstrates a professional design with good user experience and clear navigation, targeting a broad audience interested in cultural and sports events. Technically, the site is built using Angular 9, integrates Google Maps and Google Analytics, and employs modern UI components such as Material Design and Swiper.js for carousels. While HTTPS is enforced and no sensitive data is exposed, the site lacks DNSSEC and visible security headers, which are recommended for enhanced security. Privacy compliance is weak as no explicit privacy or cookie policies were found, and no consent mechanisms are implemented. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the site is functional and trustworthy but would benefit from improved privacy and security practices.

K

Kliping - Agencija za praćenje i analizu medija - Beograd

kliping.rs

0

Kliping is a Serbian media monitoring and analysis agency established in 2008, providing comprehensive press clipping, social media monitoring, detailed media analysis, and translation services. The company targets PR and marketing professionals and businesses seeking efficient media insights. Their digital presence is built on WordPress with Elementor, integrating modern tracking and analytics tools such as Google Analytics and Facebook Pixel. The website is professionally designed, mobile-optimized, and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some advanced security headers and DNSSEC. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

M

MOL Group

molmove.rs

0

MOLMOVE.rs is a digital loyalty and customer engagement platform operated under the MOL Group umbrella, a prominent energy and transportation company in Central and Eastern Europe. The website serves as a portal for customers in Serbia to access loyalty benefits, download mobile applications, and engage with MOL's services. The platform leverages Salesforce Experience Cloud technology, integrating multiple payment and analytics providers to deliver a seamless user experience. The site is professionally designed, mobile-optimized, and consistent with MOL Group branding, targeting regional customers and loyalty program members.

M

MOL Group

molplusklub.rs

0

MOL Move is a digital loyalty platform operated under the MOL Group umbrella, targeting customers primarily in Serbia and neighboring countries. The website serves as a portal for loyalty program information, app downloads, and customer support. The business is positioned as a large energy and transportation sector player with a focus on customer engagement through digital means. The platform leverages Salesforce Experience Cloud technology, integrating multiple payment and analytics services to provide a seamless user experience. The website is professionally designed with good mobile optimization and consistent branding aligned with MOL Group standards. Security posture is solid with HTTPS and Content Security Policy in place, though DNSSEC is not enabled and privacy policies are not explicitly presented. The site does not exhibit any adult or questionable content and is fully accessible without WAF or blocking mechanisms. Overall, the website reflects a mature digital presence for a large energy company’s loyalty program, with room for improvement in privacy compliance and security hardening.

M

MOL Serbia d.o.o.

freshcorner.rs

0

Fresh Corner is a retail food and beverage brand operating primarily at Slovnaft gas stations in Serbia, offering coffee, hot dogs, sandwiches, pastries, and hot meals. The company is part of MOL Serbia d.o.o., indicating a connection to the MOL Group, a significant energy sector player. The website is professionally designed with good mobile optimization and clear navigation, targeting general consumers and travelers seeking quick food options at fuel stations. The business model focuses on convenience retail integrated with energy services, positioning Fresh Corner as a recognized local brand with a medium-sized market presence. Technically, the website employs modern web technologies including Google Maps API for location services, Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics. The site uses HTTPS with a valid SSL configuration and includes a cookie consent mechanism compliant with GDPR. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data, indicating room for security enhancements. The site lacks a published security policy or incident response contact, which could improve trust and compliance. From a security perspective, the site demonstrates good practices such as CSRF token usage and cookie consent with detailed categories. Tracking technologies are used responsibly with user consent. No critical vulnerabilities or suspicious domains were found. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the site maintains a good security posture but could benefit from additional security headers and formal security documentation. The overall risk assessment is low, with the site presenting a trustworthy and professional front for its business operations. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing a security policy, and considering a vulnerability disclosure program to further enhance security and compliance posture.

M

MOL Serbia

molserbia.rs

0

MOL Serbia operates as a regional energy and transportation company specializing in fuel retail, wholesale, lubricants, and automotive services. As part of the MOL Group, it maintains a strong market presence in Serbia with a focus on both consumer and business clients. The website reflects a professional corporate identity with clear navigation and relevant content tailored to its audience. Technically, the site uses modern JavaScript frameworks such as Vue.js and integrates common marketing and analytics tools including Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though DNSSEC is not enabled, representing a minor security gap. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and aligned with the business's operational scope.

R

Robert Bosch d.o.o., Srbija

bosch.rs

0

Robert Bosch d.o.o., Srbija operates as a local branch of the global Bosch Group, providing a broad portfolio of technology products and services focused on mobility, home solutions, and industrial applications. The website serves as a comprehensive portal for customers, partners, and job seekers in Serbia, reflecting Bosch's commitment to innovation and sustainability. The company maintains a strong market position as a large multinational with a well-established local presence since 2008. Technically, the website employs modern web technologies including Google Tag Manager for analytics, a custom privacy consent manager, and a Genesys chat widget for customer interaction. The site is well-optimized for mobile devices, features good SEO practices, and uses structured data to enhance search engine understanding. Hosting and CMS details suggest a professional enterprise-grade infrastructure. From a security perspective, the site enforces HTTPS and integrates cookie consent mechanisms aligned with GDPR. However, explicit security headers and published security policies are absent, indicating room for improvement in transparency and defense-in-depth. No vulnerabilities or suspicious content were detected, and the domain registration data supports the site's legitimacy. Overall, the website presents a professional, trustworthy, and user-friendly experience with strong privacy compliance. Strategic enhancements in security policy disclosure and DNSSEC implementation would further strengthen its security posture.

W

Whirlpool Srbija

whirlpool.rs

0

Whirlpool Srbija operates as the Serbian branch of the global Whirlpool Corporation, specializing in retail and support of home appliances. The website serves as a comprehensive portal for product information, customer support, and engagement through recipes and interactive features. The company maintains a strong market position as a recognized multinational brand with a localized presence. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, OneTrust for cookie consent, and New Relic for performance monitoring, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting a positive user experience and business credibility.

CESCI Balkans is a regional non-profit organization dedicated to fostering cross-border cooperation initiatives in the Balkans and Central Europe. The organization provides consultancy, project management, and networking services to regional governments, NGOs, and community stakeholders. Their website reflects a professional and consistent brand presence with clear contact information and active partnerships with European regional bodies. Technically, the website employs standard web technologies such as Bootstrap and jQuery, delivering a responsive and user-friendly experience. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the website lacks visible security headers and privacy-related policies, which are critical for compliance with GDPR and other regulations. The absence of WHOIS data due to privacy protection is typical for such organizations but limits transparency. No signs of security vulnerabilities or malicious content were detected, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website presents a trustworthy and credible front for CESCI Balkans, though enhancements in privacy compliance and security best practices are recommended to strengthen their digital maturity and user trust.

H

Henkel

ceresit.rs

0

The website www.ceresit.rs represents the Serbian online presence of Ceresit, a leading brand under the Henkel group specializing in manufacturing high-quality construction adhesives and related products. The site targets construction professionals and consumers in Serbia, offering products for ceramic tile laying, floor leveling, waterproofing, and thermal insulation. The business is well-established with a domain age of over a decade, reflecting a mature market position. Technically, the website is built on Adobe Experience Manager CMS and employs modern JavaScript libraries, including Adobe Helix RUM and RAQN CIAM for identity management. The site is optimized for performance and mobile devices, with good SEO and accessibility features. Security-wise, HTTPS is enabled, and cookie consent is managed via OneTrust, but some security headers are not explicitly detected, and DNSSEC is not enabled. No privacy policy or terms of service were found in the provided content, which is a compliance gap. Overall, the website is professional, trustworthy, and aligned with the Henkel brand identity.

H

Henkel

pattex.rs

0

Pattex.rs is a professionally designed website representing the Pattex adhesive brand under Henkel, targeting consumers and professionals in Serbia. The site offers product information, project ideas, and sustainability content, supported by modern digital infrastructure including Adobe Experience Manager and analytics tools. The website demonstrates good technical maturity with fast performance, mobile optimization, and accessibility features. Security posture is adequate with HTTPS and cookie consent implemented, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic due to missing explicit privacy and terms policies. Overall, the domain registration is legitimate and consistent with the business purpose, supporting a trustworthy online presence.

Nikon Serbia operates as a localized portal for Nikon's global brand, offering digital cameras, lenses, and photography accessories tailored to the Serbian market. The website serves as a product showcase and informational resource, featuring firmware updates and promotional content. The technical infrastructure leverages modern web technologies including React, Google Tag Manager, Microsoft Application Insights, and OneTrust for cookie consent, indicating a mature digital presence. The site is mobile-optimized and designed with good user experience principles. Security posture is solid with HTTPS enforced and telemetry tools in place, though some security headers and explicit policies are absent. Overall, the domain registration and website content align well, supporting legitimacy and trustworthiness.

P

Paul Bauder GmbH & Co. KG

bauder.rs

0

Bauder d.o.o. Serbia is a subsidiary of Paul Bauder GmbH & Co. KG, a leading European manufacturer specializing in roofing systems including flat, green, and pitched roofs. The company targets construction professionals and building owners in Serbia and the broader European market, offering comprehensive roofing solutions and technical support. The website reflects a professional business presence with detailed product information and local contact points, supporting its market position as a regional leader. Technically, the website is built on TYPO3 CMS with legacy jQuery and modern consent management via Usercentrics. While the site performs moderately well and is mobile optimized, some technical modernization opportunities exist, particularly updating JavaScript libraries and enhancing accessibility features. SEO and content quality are good, supporting effective user engagement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a trustworthy and professional digital presence with moderate technical maturity and good privacy compliance. Strategic improvements in security headers and technical updates would enhance its posture further.

C

Challenge 22 - Animals Now, Vegan Izazov 22 - Sloboda za životinje

vegan-izazov22.com

0

Vegan Izazov 22 is a Serbian-based non-profit initiative promoting a 22-day vegan challenge aimed at encouraging plant-based diets for animal welfare, environmental sustainability, and personal health. The website serves as an educational and community platform offering free access to recipes, mentorship, and expert advice. It has a significant market presence with over one million participants historically and active social media engagement. Technically, the site is built on WordPress using Elementor and integrates modern analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is strong with clear cookie consent and GDPR-aligned policies. Overall, the website is professional, trustworthy, and well-positioned within the non-profit vegan advocacy sector.

B

BeGeVege Festival

begevege-festival.com

0

BeGeVege Festival is a niche event organization focused on promoting veganism, health, sustainability, and animal rights primarily in Serbia. The website serves as an informational and promotional platform for the festival, showcasing event programs, sponsors, and community values. The festival targets individuals interested in a plant-based lifestyle and sustainable living. Technically, the website is built on WordPress using popular plugins such as Elementor and Yoast SEO, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled, but the absence of security headers and privacy policies indicates room for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and registration status. Overall, the website is professional and trustworthy in content but requires enhancements in compliance and security transparency.

U

Udruženje Sloboda za životinje

sloboda-za-zivotinje.org

0

Udruženje Sloboda za životinje is a Serbian non-profit organization dedicated to animal rights, vegan lifestyle promotion, and education on plant-based nutrition. Established in 2003, it has a strong presence in Serbia with a focus on creating a world free from animal exploitation and suffering. The organization engages in direct animal aid, educational campaigns, volunteer programs, and operates an online store for promotional products. Their website reflects a mature digital presence using WordPress and Elementor, with multilingual support and social media integration. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in DNSSEC and security headers are recommended. Overall, the site is trustworthy, professionally maintained, and compliant with privacy regulations.

Sencor is a well-established retail brand specializing in consumer electronics and home appliances, operating primarily in Serbia with a broad European presence through localized sister sites. The website offers a comprehensive catalog of products ranging from televisions and audio-video equipment to kitchen and household appliances, targeting general consumers interested in quality and design. The business model focuses on direct product sales supported by dealer networks and customer service. Technically, the site leverages modern web technologies including Google Tag Manager, Bootstrap, and Kentico CMS, providing a good user experience with responsive design and structured data for SEO. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, DNSSEC is not enabled and security headers are missing, indicating room for improvement. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

M

Merck Sharp & Dohme Srbija

msd.rs

0

Merck Sharp & Dohme Srbija (MSD Srbija) is a well-established pharmaceutical company operating in Serbia as part of the global Merck & Co., Inc. group. The website serves healthcare professionals and patients by providing pharmaceutical information, educational resources, and transparency reports. The company emphasizes ethical business practices and social responsibility. The site is professionally designed, localized primarily in Serbian, and integrates modern web technologies such as WordPress VIP, Yoast SEO, and Google Tag Manager. Privacy and cookie compliance are well implemented with clear policies and consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though additional security headers and policies could enhance protection. Overall, the website reflects a credible and trustworthy corporate presence with strong compliance and user experience.

V

VKF Renzel Bulgarien Produktion EOOD

vkf-renzel.rs

0

VKF Renzel Srbija operates as a specialized retailer and supplier of Point of Sale (PoS) materials and equipment, leveraging over 35 years of industry experience and German quality standards. The company targets retail businesses and brands seeking to enhance product presentation and sales through customized PoS solutions. The website demonstrates a mature digital presence with a comprehensive product catalog, user account features, and integration of modern web technologies including structured data and cookie consent management. However, the domain registration is expired for over five months, which poses a risk to service continuity and trustworthiness. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and DNSSEC. Privacy compliance is partial due to absence of explicit privacy and terms of service documents. Overall, the site is functional and professional but requires domain renewal and enhanced compliance documentation to improve trust and security.

A

A1

boljionline.rs

0

Bolji Online is an educational platform launched in 2024 by A1, a major telecommunications company in Serbia, aimed at promoting safer and more responsible internet use among children, teenagers, and families. The platform offers educational content, interactive games, video courses, and safety helpline information to foster digital literacy and positive online behavior. The website is well-branded, consistent, and targets a Serbian-speaking audience with a focus on education and internet safety. Technically, the website is built on WordPress with modern plugins and frameworks such as Uikit and Google reCAPTCHA for security. SEO practices are well implemented with structured data and meta tags. Performance is moderate with good mobile optimization. However, accessibility features are basic and could be improved. Security posture is solid with HTTPS enforced and spam protection mechanisms in place, but lacks DNSSEC and important security headers. No privacy or cookie policies were found, indicating gaps in privacy compliance. Contact information is limited to a contact form and no direct emails or phone numbers are provided. Overall, the website presents a trustworthy and professional educational resource with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

N

Naša mreža

nasamreza.rs

0

Naša mreža is a Serbian media platform founded in 2018, dedicated to providing free informational and educational content for entrepreneurs and small business owners. The website offers a variety of content types including news, interviews, knowledge base articles, business topics, documents, and video tutorials. It targets entrepreneurs in Serbia, aiming to support their business growth and education through accessible and regularly updated content. The platform maintains a consistent brand presence and leverages social media channels to extend its reach. Technically, the website is built on WordPress CMS, utilizing modern JavaScript libraries such as Alpine.js and Glide.js for UI components. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing, and uses Google reCAPTCHA v3 to protect forms from spam. The site is mobile optimized and demonstrates good SEO practices with proper meta tags and structured data. Performance is moderate, with room for improvement in hosting and caching. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for forms, but lacks DNSSEC for domain security and does not publish a security policy or incident response contacts. Security headers are not fully implemented, and there is no visible cookie consent mechanism or comprehensive privacy policy addressing GDPR compliance. These gaps present moderate risks in privacy compliance and security posture. Overall, Naša mreža is a credible and professional platform with good content quality and business credibility. Strategic improvements in privacy compliance, security headers, and DNS security would enhance its trustworthiness and regulatory adherence.

A

A1 Srbija doo

a1.rs

0

A1 Srbija is a well-established telecommunications company operating in Serbia since 2012, offering mobile telephony, internet services, and device sales targeting private consumers. The website reflects a mature digital presence with professional design, good mobile optimization, and clear navigation. The company leverages multiple modern technologies including JavaScript frameworks, translation services, and marketing/tracking tools to enhance user experience and marketing reach. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in DNS security and security headers. Privacy compliance is addressed primarily through a comprehensive cookie policy, but explicit privacy and security policies are not prominently available. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

П

Повереник за информације од јавног значаја и заштиту података о личности

poverenik.rs

0

The website represents the official Serbian government authority responsible for public information access and personal data protection. It serves as a regulatory and supervisory body, providing services such as oversight of information access rights, data protection enforcement, educational programs, and publication of reports. The site targets citizens, public institutions, media, and NGOs, positioning itself as a key national regulator in the government sector. The domain is well-established since 2010, consistent with the organization's history. Technically, the site is built on Joomla CMS with modern frameworks like Bootstrap and jQuery, hosted by a reputable Serbian telecom provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with no blocking or WAF interference detected. Security posture is adequate with HTTPS enabled and secure form handling, but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is mostly met with a clear privacy policy and terms of service, but the absence of a cookie consent mechanism is a notable gap. Overall, the website is professional, trustworthy, and credible, reflecting its government status. Strategic improvements in security headers, DNSSEC, and privacy consent would further strengthen its posture and compliance.

The website at pwc.rs currently serves a security challenge page that blocks direct access to content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is registered since 2008 to a Serbian ISP, BeotelNet-ISP d.o.o., but there is no direct evidence that this domain is officially operated by PwC or its Serbian branch. The visible content is minimal, showing only a redirect countdown and a browser integrity check script, with no business or contact information available. The site uses outdated CMS technologies (Joomla 1.5 and WordPress 2.5), which are no longer supported and pose security risks. No privacy, cookie, or terms of service policies are found, and no HTTPS or security headers information is available from the provided data.

D

Datatek d.o.o.

datatek.rs

0

Datatek d.o.o. is a Serbian IT services company established in 2008, specializing in managed IT services, cybersecurity solutions, backup and storage systems, and IT infrastructure support. The company positions itself as a reliable partner for businesses seeking comprehensive IT solutions, leveraging partnerships with leading technology vendors such as Fortinet, Microsoft, IBM, and Lenovo. Their service offerings include managed backup, managed security, system monitoring, and remote work solutions under the FlexWork brand. The website content is professionally presented, targeting businesses requiring secure and efficient IT operations.

A

A1 Srbija

vipmobile.rs

0

A1 Srbija is a well-established telecommunications provider in Serbia, offering a range of mobile telephony services including prepaid and postpaid plans, internet services, and device sales. The company targets private consumers and maintains a strong market presence with consistent branding and a professional online presence. The website is designed with modern technologies and provides a good user experience with mobile optimization and clear navigation. The technical infrastructure includes popular JavaScript libraries and tracking tools, indicating a mature digital setup. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Overall, the domain registration and website content align well, supporting the legitimacy of the business.

Н

Народна банка Србије

nbs.rs

0

The website represents the official online presence of the National Bank of Serbia, the central bank responsible for monetary policy, financial stability, banking supervision, and payment systems in Serbia. It serves a broad audience including citizens, financial institutions, investors, and analysts by providing comprehensive financial data, news, and regulatory information. The site is professionally designed with clear navigation and multilingual support, reflecting a mature digital infrastructure. Technically, the site uses modern web technologies including Bootstrap, jQuery, FontAwesome, and charting libraries like C3.js and D3.js. It is hosted under a domain registered by TELEKOM SRBIJA A.D., indicating a reliable hosting environment. The site is mobile optimized and uses HTTPS, but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. From a security perspective, the site shows good practices such as HTTPS enforcement and secure form handling. However, the absence of privacy and cookie policies, as well as missing security headers, represent compliance and security gaps. No WAF or blocking mechanisms were detected, and the domain registration is consistent and legitimate. Overall, the site is trustworthy and professional but would benefit from improved privacy compliance and enhanced security configurations to align with best practices and regulatory requirements.

I

Institut za evropske studije

ies.rs

0

Institut za evropske studije (IES) is a Serbian academic research institute specializing in European studies, international relations, and political science. The website presents a well-structured platform showcasing research publications, conferences, and academic activities targeting scholars, students, and policy makers. The business model is non-profit and focused on knowledge dissemination and academic collaboration. The domain is well-established since 2010, consistent with the organization's profile. Technically, the website is built on WordPress with common plugins such as Contact Form 7 and social media widgets. The site is moderately optimized for performance and mobile devices, with basic accessibility features. However, SEO and privacy compliance are limited, with no privacy or cookie policies detected. The site uses HTTPS but lacks advanced security headers and DNSSEC. From a security perspective, the site shows a good baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and formal security policies reduces the overall security posture. There is no incident response or vulnerability disclosure information available, which could be improved to enhance trust. Overall, the website is a credible academic platform with good content and user experience but requires improvements in privacy compliance, security best practices, and transparency to meet modern standards and regulations.