Security Directory

K

Kristensson i Skåne AB

kiskane.se

0

Kristensson i Skåne AB is a specialized consulting firm founded in 2014, focusing on IT and information security, project management, and strategic IT management. The company targets businesses in regulated sectors requiring tailored IT security solutions. Their website reflects a professional small business with a consistent brand and clear contact information, though lacking formal privacy and cookie policies. Technically, the website is built on WordPress using modern frameworks like Bootstrap and jQuery, with moderate performance and good mobile optimization. Analytics are implemented via Plausible, indicating a privacy-conscious approach with minimal tracking. However, the absence of security headers and formal privacy compliance mechanisms suggests room for improvement in security posture. Security-wise, the site uses HTTPS but lacks visible security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the provided content. The domain registration aligns well with the business claims, supporting legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices. The risk level is moderate with recommendations to implement privacy and cookie policies, add security headers, and establish incident response contacts to improve compliance and trust.

Roxtec International AB is a global leader in manufacturing flexible sealing solutions for cables and pipes, serving multiple demanding industries worldwide. Their website reflects a mature digital presence with comprehensive product information, engineering tools, and customer support services. The company emphasizes safety, quality, and innovation, supported by ISO 27001 certification and a strong privacy compliance framework. Technically, the site leverages modern technologies including Azure hosting, Google Tag Manager, and OneTrust for cookie consent, ensuring good performance and user experience. Security posture is robust with HTTPS enforcement and monitoring tools, though some HTTP security headers could be enhanced. Overall, Roxtec demonstrates a professional, trustworthy, and compliant online presence aligned with their market leadership.

P

Pactumize

pactumize.com

0

Pactumize is a Swedish legal technology company specializing in contract drafting automation and digital negotiation solutions. Their platform targets legal teams and business users who require efficient, remote contract management and negotiation capabilities. The website reflects a niche market position with a SaaS business model offering free trials and demos to attract users. Technically, the site employs modern frontend technologies such as Vue.js and Tailwind CSS, integrates analytics and tracking tools like Google Analytics and FullStory, and implements standard security measures including HTTPS and reCAPTCHA. However, explicit security policies and terms of service are absent, which could be improved to enhance trust and compliance. Overall, the website is professionally designed, mobile-optimized, and provides clear navigation and relevant content, supporting a positive user experience.

O

Ortelius

ortelius.com

0

Ortelius is a Swedish technology consultancy specializing in data readiness and Enterprise AI solutions. The company positions itself as a bridge between business, technology, and subject matter expertise to enable reliable AI-driven business growth. Their services include data infrastructure assessment, digital capabilities development, and AI strategy alignment. The website reflects a professional and focused approach targeting enterprises aiming for digital transformation and AI adoption. Technically, the site is built on WordPress with modern plugins and frameworks such as Elementor and WPForms, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy. The site lacks explicit terms of service and detailed security or incident response policies, which could be areas for enhancement.

C

Cloudmore AB

cloudmore.com

0

Cloudmore AB operates a sophisticated digital commerce platform tailored for managed service providers (MSPs) and related technology sectors. The platform focuses on subscription management, billing automation, and scalable integration solutions that help MSPs streamline operations and enhance customer experience. Positioned as a B2B SaaS provider, Cloudmore targets MSPs, CSPs, distributors, and telcos, offering a comprehensive suite of tools to unify sales, billing, and service delivery processes. The website reflects a mature digital presence with consistent branding and professional content, supported by HubSpot CMS and marketing technologies.

B

Bharat Forge Kilsta

bfkilsta.com

0

Bharat Forge Kilsta is a well-established manufacturing company specializing in heavy forged automotive and transportation components, with a rich history dating back to 1646. As part of the global Bharat Forge Group, it leverages Swedish craftsmanship combined with advanced technology to serve both local and international markets. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some areas like explicit security policies and incident response contacts could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting the company's legitimacy.

Ö

Östersunds kommun

ostersund.se

0

Östersunds kommun operates as the official municipal government website for the city of Östersund, Sweden, providing comprehensive information and services related to education, care, culture, infrastructure, business, and politics. The website targets residents and visitors, offering e-services, news updates, and contact channels to facilitate community engagement and service delivery. The site holds a strong market position as a trusted government portal with consistent branding and clear communication of municipal functions. Technically, the website is built on the SiteVision CMS platform, utilizing jQuery and standard web technologies. It demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The presence of cookie consent mechanisms and Google site verification indicates a reasonable level of digital maturity. From a security perspective, the site uses HTTPS and includes some security best practices such as CSRF token placeholders and cookie consent. However, it lacks explicit security headers, published security policies, and incident response contacts, which are areas for improvement. Tracking is performed via Vizzit analytics, with moderate user tracking levels. Overall, the website is professional, trustworthy, and well-suited for its public sector role. Strategic enhancements in security policy transparency and technical security controls would further strengthen its posture and compliance.

C

The Compadres + Cordovan |

cordovan.se

0

The website 'The Compadres + Cordovan' is a minimalistic single-page site primarily featuring a fullscreen video background and a single call-to-action button linking to gritti.se. There is no detailed business description, contact information, or policy documentation present. The site is built on WordPress using the Divi theme and includes standard JavaScript libraries such as jQuery and MediaElement.js. HTTPS is enabled, but no advanced security headers are detected. The absence of privacy, cookie, and terms of service policies, as well as contact details, indicates low privacy compliance and business transparency. Overall, the site appears to be a small-scale or early-stage project with limited digital maturity and security posture.

NORD DDB is a Nordic full-service creative agency specializing in igniting brand fame and creating emotional connections to drive business growth. The agency positions itself as the top-ranked Nordic agency with a broad portfolio of award-winning clients and diverse marketing capabilities including strategy, creative, digital, PR, and influencer marketing. The website is built using modern technologies such as Next.js and React, with content managed via DatoCMS. However, the current website content is inaccessible due to a client-side application error, limiting the ability to fully assess the user experience and content quality. Security posture is weak based on the absence of security headers and lack of visible HTTPS confirmation. Privacy and cookie policies are missing, and no contact information is available on the accessible page, which impacts trust and compliance. Minimal user tracking is implemented via Plausible Analytics, indicating some privacy consideration. Overall, the site requires technical fixes and enhanced compliance documentation to improve security and user trust.

M

Merchworld

merchworld.se

0

Merchworld is a Sweden-based e-commerce business specializing in designing, producing, and fulfilling merchandise for artists, bands, companies, and start-ups. They emphasize sustainable production and provide third-party logistics and warehousing services. The website is built on Shopify, leveraging modern e-commerce technologies and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Segment Analytics. Social media presence on Instagram and Facebook supports their brand visibility. The site is well-designed with good navigation and mobile optimization, though cookie consent mechanisms are lacking. Security posture is solid with HTTPS and form protection via hCaptcha, but could benefit from enhanced security headers and explicit incident response policies.

S

Södertälje kommun

sodertalje.se

0

Södertälje kommun operates as the official municipal government website for the Södertälje municipality in Sweden, providing a broad range of public services including education, social support, cultural activities, urban planning, environmental management, and political governance. The website targets local residents and citizens, offering access to e-services, news, and contact information. It holds a strong position as a trusted government entity with a large organizational size and a comprehensive service portfolio. Technically, the website employs modern web technologies such as JavaScript frameworks, Google Fonts, Material Icons, and integrates advanced analytics tools including Microsoft Application Insights, Vizzit Analytics, and Confirmit Digital Feedback. The site is built likely on the Episerver CMS platform, optimized for mobile devices, and includes accessibility features. Performance is moderate with good SEO and structured navigation. From a security standpoint, the site enforces HTTPS, uses cookie consent mechanisms, and integrates telemetry for monitoring. However, explicit security headers and a published security policy or incident response contacts are absent. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with GDPR-aligned policies and cookie management. Overall, the website is professionally maintained, trustworthy, and compliant with relevant privacy regulations. Strategic improvements could include enhanced security header implementation and formal vulnerability disclosure processes to further strengthen security posture.

Medinet is a healthcare portal operated by Medical Networks Scandinavia AB, providing scheduling, on-call, educational, and administrative services primarily for medical professionals in Scandinavia. The website serves as a login gateway to these services and targets healthcare staff requiring access to scheduling and educational resources. The business operates in the healthcare sector with a medium-sized presence in Sweden. Technically, the website uses standard web technologies including JavaScript, HTML5, and CSS3, with some security best practices such as CSRF tokens and HTTPS enforcement. However, it lacks visible privacy and cookie policies, security headers, and vulnerability disclosure mechanisms, which are important for compliance and trust. The site is accessible without WAF or blocking mechanisms and provides clear contact information, enhancing business credibility.

Makewave AB is a specialized technology company focused on providing OSGi middleware solutions, including their flagship Knopflerfish Pro platform and Ubicore service provisioning system. With over a decade of experience, they serve embedded and enterprise markets, offering products, training, and consulting services. The website reflects a professional and consistent brand presence targeting Java and embedded system developers. Technically, the site uses standard web technologies with Google Analytics and Tag Manager for tracking, but lacks advanced frameworks or CMS indications. Security posture is moderate with no visible HTTPS confirmation or security headers, and privacy compliance is weak due to missing policies. Overall, the site is functional and credible but would benefit from enhanced security and compliance measures.

E

EmbeddedArt Group AB

embeddedart.se

0

EmbeddedArt Group AB is a Swedish technology company specializing in embedded systems, underwater technology, and defense-related products and services. Their offerings include underwater sensors, maritime surveillance systems, IoT solutions, and system development services. The company targets defense and marine technology sectors, positioning itself as a niche provider with expertise in embedded and underwater systems. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on their core competencies. Technically, the website uses a custom CMS with older but functional JavaScript libraries such as jQuery 2.1.1, integrated with Google Analytics and Google Tag Manager for tracking. The site is mobile optimized and includes a cookie consent mechanism compliant with GDPR requirements. However, there is no visible evidence of modern security headers or advanced security frameworks implemented. From a security perspective, the site does not show signs of blocking or WAF interference, and no sensitive data is exposed in the HTML. The cookie consent mechanism is robust, but the absence of explicit security policies, incident response contacts, or vulnerability disclosure pages indicates room for improvement in security transparency and readiness. Overall, EmbeddedArt's website demonstrates a moderate to good level of digital maturity with solid business credibility and privacy compliance. Strategic enhancements in security policies, modernizing technical stack, and adding vulnerability disclosure mechanisms would strengthen their security posture and trustworthiness.

ITmaskinen is a Swedish IT consulting company with over 25 years of experience specializing in developing unique IT solutions for businesses of all sizes. Their offerings include .NET web services, mobile app development, WordPress site development, IT hardware/software procurement, and animation services. They also provide coworking office spaces with advisory services. The company positions itself as an experienced and trusted partner in the Nordic IT market, serving clients including municipalities and enterprises. Technically, the website is built on WordPress with modern analytics and tracking tools such as Google Analytics, Hotjar, and Facebook Pixel. Security posture is good with HTTPS and hCaptcha on forms, but lacks published security policies and security headers. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is professional, well-branded, and trustworthy with clear contact information and client testimonials.