Security Directory

У

Укрінформ

ukrinform.ua

0

Ukrinform is a well-established Ukrainian national news agency founded in 1918, providing comprehensive news coverage in multiple languages including Ukrainian, Russian, English, German, French, Chinese, Japanese, Spanish, and Polish. The website serves as a primary platform for news dissemination, multimedia content, and event announcements, targeting a broad general audience interested in Ukrainian and global news. The agency holds a strong market position as a trusted media source in Ukraine with a large-scale operation and consistent branding. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and integrates Google Analytics and YouTube for analytics and multimedia content. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforcement, security headers, and CSRF protection, though it lacks explicit cookie consent and a public security policy. WHOIS data confirms the domain's legitimacy and long history, aligning with the agency's founding date. Overall, Ukrinform demonstrates a mature digital presence with high content quality and trustworthiness.

J

Jaguar Україна

jaguar.ua

0

Jaguar Україна is the official localized website for the Jaguar automotive brand in Ukraine, representing a premium luxury car manufacturer with a heritage dating back to 1935. The website serves as a digital showroom and information portal for Jaguar's products and services tailored to the Ukrainian market. The brand is positioned as a leader in luxury transportation with a focus on innovation and design excellence. Technically, the site employs modern JavaScript frameworks such as Vue.js and Nuxt.js, and integrates Google Tag Manager and Analytics for user tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS enforced, but lacks visible security headers and formal security or privacy policies on the main page. No forms or direct contact information were detected in the provided HTML snippet, which may impact user trust and compliance. Overall, the site is professional and consistent with Jaguar's global branding but could improve transparency and compliance documentation.

L

Land Rover Україна

landrover.ua

0

Land Rover Україна is a localized official website representing the Land Rover brand in Ukraine, focusing on luxury SUVs such as Range Rover, Discovery, and Defender. The site targets affluent customers interested in premium automotive products. The business model revolves around showcasing vehicles and facilitating customer engagement through dealer networks. The website demonstrates a good level of digital maturity, employing modern JavaScript frameworks like Nuxt.js and Vue.js, and leveraging CDNs for media and fonts to optimize performance. SEO and mobile responsiveness are well addressed, with extensive hreflang tags supporting internationalization. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers and privacy policies are absent, indicating room for improvement in compliance and security transparency. Overall, the site is professional and trustworthy, but enhancing privacy compliance and security policies would strengthen its risk profile.

В

ВІннер Імпортс Україна, Лтд

ford.ua

0

The website ford.ua is the official online presence of the authorized Ford importer in Ukraine, ВІннер Імпортс Україна, Лтд. It offers a comprehensive portfolio of Ford vehicles including passenger cars, commercial vehicles, and electric models, alongside services such as vehicle servicing, financial products like credit and leasing, and a dealer locator. The site targets Ukrainian consumers and corporate clients, positioning itself as a major player in the Ukrainian automotive market. Technically, the site employs modern web technologies including Tailwind CSS, StimulusJS, and integrates multiple analytics and marketing pixels such as Google Analytics, Facebook Pixel, and TikTok Pixel, indicating a mature digital marketing approach. Security-wise, the site enforces HTTPS and includes CSRF tokens, but lacks explicit security headers and visible security policies, which are areas for improvement. Overall, the site is professional, well-branded, and trustworthy, though it would benefit from enhanced privacy and cookie compliance documentation.

H

Hager Ukraine

hager.ua

0

Hager Ukraine operates as a localized branch of the international Hager Group, specializing in electrical distribution systems, modular equipment, and related electrical products tailored for the Ukrainian market. The website serves primarily as a product catalog and resource portal for electrical professionals and customers, offering product information, downloads, and training resources. The business model is B2B focused, targeting installers, distributors, and industry professionals. The site demonstrates consistent branding aligned with the global Hager identity and maintains a professional online presence. From a technical perspective, the website employs standard modern web technologies including HTML5, CSS3, and JavaScript, with some use of libraries such as Modernizr and Material Icons. The site appears to be custom-built or uses a proprietary CMS tailored for Hager's needs. Performance and mobile optimization are adequate, though accessibility features are basic. SEO is implemented at a basic level with meta tags and canonical links. Security posture is moderate; HTTPS is enforced as indicated by canonical URLs, and a cookie consent mechanism is implemented, reflecting some GDPR awareness. However, no privacy policy or terms of service are found, and no advanced security headers are detected in the provided data. Forms exist for user login and registration but lack visible anti-CSRF tokens or advanced protections in the snippet. No incident response or vulnerability disclosure information is published. Overall, the website is safe, professional, and trustworthy with no adult or questionable content. The domain registration data aligns well with the business claims, supporting legitimacy. Key recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and improving accessibility and compliance documentation to strengthen trust and regulatory adherence.

A

AITO Ukraine

aitoukraine.org

0

AITO Ukraine is a small non-profit organization based in Kyiv, Ukraine, focused on community engagement and information dissemination. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies such as HTML5, CSS3, and JavaScript. The site presents basic content with consistent branding and moderate technical maturity. Security posture is adequate with HTTPS enabled and some script-based security hardening, but lacks important security headers and formal privacy or cookie policies. WHOIS data is unavailable or malformed, limiting domain trust verification. Overall, the website is functional and safe but requires improvements in privacy compliance and contact transparency to enhance trust and security.

D

DTEK

dtek.com

0

DTEK is a leading private investor and operator in Ukraine's energy sector, positioning itself as a pan-European energy group focused on sustainable and resilient energy solutions. The company targets energy sector stakeholders, investors, and the European energy market, emphasizing its role as the largest private investor in Ukraine's energy industry. The website reflects a professional corporate presence with clear branding and consistent messaging aligned with its business objectives. Technically, the website employs modern digital tools including Google Tag Manager, Cookiebot for consent management, and Facebook SDK for social media integration. The site is HTTPS secured, mobile optimized, and demonstrates good SEO practices, although some accessibility features could be enhanced. The domain is well-established since 2000, with consistent WHOIS data and no privacy protection, indicating transparency. From a security perspective, the site enforces HTTPS and uses clientTransferProhibited status on the domain, but lacks DNSSEC and explicit security headers. Cookie consent is managed effectively via Cookiebot, supporting GDPR compliance. However, no public security policy, incident response contacts, or vulnerability disclosure mechanisms were found, representing areas for improvement. Overall, the website is professional, trustworthy, and compliant with privacy norms, but could benefit from enhanced security policies and transparency to further strengthen its security posture and user trust.

ANSWEAR.ua is a large European e-commerce platform specializing in branded clothing, footwear, and accessories for women, men, and children. The company operates in Ukraine and 11 other European countries, offering a wide range of premium, sports, and lifestyle brands. Founded in 2015, ANSWEAR.com S.A. is publicly listed on the Warsaw Stock Exchange, reflecting its established market presence and business credibility. The website provides a comprehensive shopping experience with free delivery options, a loyalty program, and secure online payment methods. Technically, the site leverages modern web technologies including React and Redux, integrates analytics and marketing tools like Google Tag Manager and Braze, and maintains good performance and mobile optimization. Security posture is solid with HTTPS enforcement and error monitoring via Sentry, though some security headers could be improved. Privacy compliance is basic, with no explicit privacy or cookie policies detected in the provided content. Overall, the website is professional, trustworthy, and well-positioned in the e-commerce retail sector.

Z

Zentiva

zentiva.ua

0

Zentiva is a well-established pharmaceutical company operating primarily in Ukraine and across Europe, providing medicine development, manufacturing, and distribution services. The website reflects a multinational presence with multiple subsidiaries and country-specific sites, indicating a broad market reach and a strong corporate structure. The content is professionally presented, targeting healthcare professionals and the general public, emphasizing health and wellbeing. Technically, the site uses modern web technologies including Google Tag Manager and Cookiebot for compliance and analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not found. Overall, the site demonstrates good privacy compliance and business credibility, with no signs of malicious or suspicious activity.

A

Allbridge

allbridge.io

0

Allbridge is a technology company specializing in cross-chain token bridging and stablecoin swapping services, targeting cryptocurrency users and blockchain developers. The company positions itself as a secure and fast solution provider in the decentralized finance ecosystem. Founded in 2021 and based in Ukraine, Allbridge operates a modern Angular-based website with a focus on user experience and technical robustness. The platform leverages Cloudflare for domain registration and DNS services, ensuring reliable hosting and security. The website includes cookie consent mechanisms and integrates analytics tools such as Google Tag Manager and LinkedIn Insight for marketing and user behavior tracking. However, explicit privacy policies, terms of service, and security policies are not found in the scanned content, which represents an area for improvement. The domain registration details are consistent with the company's branding and business claims, supporting legitimacy and trustworthiness.

B

Boosty Labs

boostylabs.com

0

Boosty Labs is a medium-sized technology company specializing in Web3 and blockchain software development, AI/ML integration, fintech, and cloud computing services. Founded in 2017 and based in Ukraine, the company serves startups and enterprises globally, boasting over 150 skilled engineers and a portfolio of 500+ projects. Their market position is strengthened by partnerships with industry leaders such as McKinsey, ConsenSys, and Ledger. Technically, the website is built on WordPress with a modern tech stack including Google Tag Manager, analytics, and marketing pixels, hosted on AWS infrastructure. Security posture is good with HTTPS and reCAPTCHA implemented, but lacks some security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional, trustworthy, and content-rich, but could improve transparency and security practices.

K

Kumeka Team

kumekateam.com

0

Kumeka Team is a newly founded (2024) community hub and accelerator focused on the Solana blockchain ecosystem in Ukraine. They provide educational programs, hackathon support, grants facilitation, and networking opportunities to developers, startup founders, and students. The website is professionally designed using modern web technologies such as React and Next.js, hosted via Cloudflare, and optimized for performance and mobile devices. Security posture is good with HTTPS and domain transfer protection, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-positioned in its niche but would benefit from enhanced compliance and security disclosures.

H

Hacken

hacken.io

0

Hacken is a specialized blockchain security and compliance company established in 2017, serving Web3 enterprises, regulators, and digital asset platforms. They offer a comprehensive suite of services including smart contract audits, penetration testing, compliance advisory, and proof of reserves, positioning themselves as a trusted partner in the evolving crypto regulatory landscape. Their market position is reinforced by ISO 27001 certification and partnerships with industry regulators. Technically, the website is built on modern frameworks like Next.js, employs Cloudflare DNS, and integrates advanced analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and bot protection, though DNSSEC is not enabled. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Hacken demonstrates a high level of professionalism, trustworthiness, and technical sophistication.

O

Obys Agency

obys.agency

0

Obys Agency is a boutique digital design agency specializing in creative UI/UX design, branding, interaction design, and web development. Founded in 2018 and originating from Kharkiv, Ukraine, the agency serves a global clientele and has established a strong market position through multiple prestigious design awards such as Awwwards, Red Dot, FWA, CSSDA, and Behance recognitions. Their business model focuses on delivering unique and high-quality design experiences tailored to client needs. The website reflects a professional and consistent brand image with excellent content quality and user experience.

H

Hexagon Agency

hexagon.agency

0

Hexagon Agency is a well-established digital agency based in Ukraine, specializing in brand creation, website design, and app development. Founded in 2015, the agency has built a strong portfolio with over 700 completed projects and more than 50 awards, positioning itself as a reputable player in the creative technology sector. Their website showcases a professional design with rich multimedia content, targeting businesses and organizations seeking comprehensive digital branding and development services. Technically, the site is built on WordPress with modern web technologies and integrates Google Tag Manager for analytics. The hosting is provided by Hosting Ukraine LLC, and DNS is managed via Cloudflare, ensuring good performance and security. However, the site lacks explicit privacy, cookie, and terms of service policies, which impacts its privacy compliance score. Security posture is generally good with HTTPS enabled, but DNSSEC is not activated, and security headers are not evident. Contact information such as emails and phone numbers are not explicitly provided in the analyzed content, which may affect user trust and communication. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to meet compliance standards fully.

ELKO EP is a medium-sized Ukrainian technology and manufacturing company specializing in the production of relays and smart home automation systems. The company targets both residential and commercial customers seeking intelligent building automation solutions. Their website reflects a professional and consistent brand presence with multilingual support and a range of product offerings including configurators and training services. The company maintains a solid market position with a clear focus on smart devices and automation technologies. Technically, the website employs a modern tech stack including jQuery, Foundation framework, and various UI libraries, along with integration of Google Maps API and Smartsupp live chat for customer engagement. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Cookie consent mechanisms are implemented, but privacy compliance could be enhanced. From a security perspective, the site uses HTTPS and form protection mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns well with the website's business claims, supporting legitimacy. Overall, the security posture is moderate with room for improvement in transparency and technical safeguards. The overall risk assessment is low with no critical issues found. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, enhancing privacy compliance, and improving accessibility. These steps will strengthen trust and security culture while supporting compliance with evolving regulations.

Т

ТОВ «АЛКА ПЛАСТ УА»

alcadrain.ua

0

ТОВ «АЛКА ПЛАСТ УА» is a manufacturing company specializing in sanitary technology products including concealed installation systems, drainage channels, siphons, flexible connections, and related accessories. The company operates a professionally designed, multilingual website localized for Ukraine and other countries, reflecting a strong market presence in the sanitary manufacturing sector. The website leverages modern web technologies such as Joomla CMS, Bootstrap, and various JavaScript libraries, indicating a mature digital infrastructure. Analytics and marketing tools like Google Analytics, Facebook Pixel, and Leady tracking are implemented with user consent mechanisms, demonstrating compliance with privacy regulations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers could enhance protection. Overall, the site is well-structured, user-friendly, and trustworthy, supporting the company's business objectives effectively.

Astratex is a medium-sized Ukrainian e-commerce retailer specializing in lingerie, operating under the parent company ASTRATEX a.s. The website currently serves as an announcement platform informing customers of the cessation of sales from December 2, 2024. The site provides basic customer support contact information and instructions for product returns. Technically, the website is built with standard HTML5 and CSS3, uses Google Fonts, and SVG graphics for branding. However, it lacks advanced frameworks, CMS, or analytics integrations, indicating a basic digital maturity level. Security posture is minimal with no detected security headers or privacy policies, and no evident GDPR compliance mechanisms. The site is accessible without WAF or blocking mechanisms, but lacks SEO and accessibility optimizations. Overall, the website is functional but basic, with room for improvement in security, privacy compliance, and technical sophistication.

P

PATON INTERNATIONAL

paton.ua

0

PATON INTERNATIONAL operates a professional e-commerce website specializing in manufacturing and selling welding equipment and accessories primarily targeting the Ukrainian market. The website presents a comprehensive product catalog with detailed product images, pricing, and customer reviews, indicating a mature digital presence. The company positions itself as a leading Ukrainian manufacturer in the welding industry, offering reliable products and customer service. Technically, the website uses a modern tech stack including OpenCart CMS, jQuery, Bootstrap, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Ahrefs Analytics. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

F

Final Level LLC

final-level.com

0

Final Level LLC is a Ukraine-based technology company founded in 2013 that operates a diverse portfolio of online projects including online radio directories, gaming platforms, cloud music services, and encryption tools. The company positions itself as a partner for complex projects with high potential rather than a commercial development or outsourcing firm. Their market presence is global, with projects serving millions of users worldwide. Technically, the website is built with modern HTML5 and CSS3 standards, uses SVG graphics, and hosts DNS on Google Domains, indicating a moderate level of digital maturity. However, the site lacks advanced technical frameworks or CMS indications and has basic SEO and accessibility features. Security posture is moderate; while domain registration protections are in place, the website lacks visible security headers, privacy policies, and cookie consent mechanisms, which are critical for compliance and trust. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

L

litEnglish

litenglish.org

0

litEnglish is a newly established online education platform founded in 2024, focused on providing modern English language courses to Ukrainian speakers. The business model centers on offering both individual and group lessons, including free trial lessons, targeting learners at various proficiency levels. The website is professionally designed using the Tilda platform and hosted with Cloudflare DNS services, ensuring a modern and responsive user experience. Social media integration with Facebook, Instagram, and TikTok supports their marketing and community engagement efforts. However, the site lacks formal privacy and cookie policies, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled and domain transfer protections, but could be improved by adding security headers and incident response information.

G

GlobeCore

mill.globecore.com

0

GlobeCore is a well-established Ukrainian manufacturer specializing in industrial equipment for transformer oil purification, regeneration, and related energy sector applications. The company offers a broad portfolio of products including oil degassing units, filtration systems, bitumen emulsion plants, and specialized equipment for wind turbine maintenance. Their market position is that of a global supplier with a medium-sized operation and a strong focus on innovation and quality. Technically, the website is built on WordPress with modern JavaScript libraries and tracking tools, hosted behind Cloudflare DNS. The site is mobile-optimized and SEO-friendly but lacks explicit privacy and cookie policies, which impacts compliance. Security posture is adequate with HTTPS and domain locking but could be improved by adding security headers and incident response information. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

S

SendPulse

veliks.pulse.is

0

SendPulse is a technology company specializing in marketing automation and landing page building tools, targeting businesses and marketers seeking to create mobile landing pages, Instagram multipage links, and online stores. The website demonstrates a strong market position with multilingual support and integration of modern marketing technologies. The technical infrastructure includes modern JavaScript libraries, Bootstrap framework, and advanced analytics and monitoring tools such as Google Tag Manager, Facebook Pixel, Bing Ads, and New Relic, indicating a mature digital presence. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit privacy and terms policies are not found on the analyzed page. Overall, the website is professional, trustworthy, and well-optimized for performance and SEO.

L

LIRALAND Group

liraland.com

0

LIRALAND Group is a medium-sized technology company based in Ukraine specializing in structural engineering software solutions. Their flagship products include LIRA-FEM for structural analysis and LIRA-CAD for architectural engineering, targeting professionals and students in civil and structural engineering. The company offers software licensing, training, and technical support services, positioning itself as a respected player in the international structural engineering software market. The website is professionally designed with good content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, the website is built on the Bitrix CMS platform, utilizing Bootstrap, jQuery, and various modern web technologies. It integrates Google Analytics and Tag Manager for user tracking and marketing insights. The site employs HTTPS with a strong SSL configuration and uses reCAPTCHA to protect forms, indicating a reasonable security posture. However, the absence of security headers and explicit privacy/cookie consent mechanisms suggests room for improvement in security best practices and GDPR compliance. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data for the domain is a concern, as it limits verification of domain legitimacy and ownership transparency. Despite this, the active social media presence, structured data, and consistent branding support the site's credibility. The company does not publicly disclose a security policy or incident response contacts, which could be enhanced to improve trust and compliance. Overall, the website and business demonstrate a solid foundation with good technical and business maturity. Strategic improvements in privacy compliance, security headers, and domain registration transparency would strengthen their security posture and trustworthiness, reducing potential risks and aligning with best practices.

W

WOOFRIDE

woofride.com

0

WOOFRIDE is a small Ukrainian e-commerce business specializing in manufacturing and selling automotive hammocks designed for transporting pets safely and cleanly. The company targets pet owners, particularly dog owners, who seek practical and comfortable solutions for traveling with their animals. The website is well-structured, localized in Ukrainian, and integrates social media channels such as Facebook and Instagram to engage customers and provide product updates. Technically, the site is built on WordPress with WooCommerce and Elementor, hosted on DigitalOcean, and uses Google Analytics for visitor tracking. While the site employs HTTPS and domain registration protections, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security headers are not fully implemented, representing an area for improvement. Overall, the website presents a professional and trustworthy front for a niche retail business but should enhance privacy and security practices to align with best standards.

T

Trading house Ukraina

thukraina.com

0

Trading house Ukraina is a small business entity founded in 2020 under the initiative of AP Holding, focusing on facilitating trade and economic contacts between Ukraine and the European Union. The company offers a range of services including export-import support, product certification, logistics, co-financing, and representation in the EU market. The website reflects a niche intermediary business model targeting companies engaged in cross-border trade. Technically, the website is built on WordPress with common plugins such as WPBakery, Slider Revolution, and Contact Form 7, and integrates analytics tools like Google Analytics and Yandex Metrika. The site is moderately optimized for performance and mobile devices, with good SEO practices and structured data implementation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not publish security or privacy policies, indicating room for improvement in compliance and security transparency. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Infobus is a professional online platform specializing in the booking of bus, train, and flight tickets across multiple countries. The company targets travelers seeking convenient and fast ticket purchasing options, supported by mobile applications on Android and iOS with strong user ratings. The website is multilingual, catering to a broad international audience, and provides extensive customer service contact options. Technically, the site employs modern web technologies including Bootstrap, Firebase, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies or incident response information, which could be improved. Overall, the platform demonstrates a solid business presence with good technical implementation and moderate privacy compliance.

A

Интернет магазин Aquaterms.com™: Кондиционеры, бойлера, котлы

aquaterms.com

0

Aquaterms.com is an established online retail store founded in 2014, specializing in HVAC, heating, plumbing, and electrical equipment primarily targeting Russian and Ukrainian speaking customers. The website offers a wide range of products including air conditioners, boilers, radiators, pumps, and related accessories. The business operates in the energy and retail sectors with a small company size and a focused e-commerce business model. Technically, the website uses a CMS platform (likely ImageCMS), integrates multiple marketing and analytics tools such as Google Analytics, Yandex Metrica, and JivoSite chat, and employs modern web technologies including SVG icons and responsive design. Security posture is moderate with HTTPS usage and domain transfer protection but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and functional but would benefit from enhanced privacy and security practices.

E

ETERNA LAW

latvia.eterna.law

0

ETERNA LAW is a well-established full-service law firm positioned among the top five in Ukraine, with over 20 years of experience and a team of more than 50 professionals across offices in Ukraine, Latvia, and Cyprus. The firm specializes in supporting Western companies investing in Ukraine and Ukrainian clients with local and international operations, offering a broad range of legal services including arbitration, corporate law, litigation, IT law, and international war-damages compensation. The website reflects a professional and client-oriented approach with comprehensive service descriptions and a clear market position. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized, SEO-friendly, and employs standard web technologies such as jQuery and Google Analytics for tracking. Performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, DNSSEC is not enabled, and some recommended security headers are missing. There is no publicly available security policy or incident response contact, which could be improved to enhance trust and compliance. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Overall, the website presents a trustworthy and professional digital presence for ETERNA LAW, with minor technical and security enhancements recommended to further strengthen its posture and user trust.

B

Borga

borga.ua

0

Borga is a European construction company specializing in fast-assembly and modular buildings, including hangars, warehouses, and supermarkets. The company targets businesses and individuals in Ukraine seeking efficient and reliable building solutions. The website is built on WordPress with WooCommerce integration, leveraging modern web technologies and analytics tools such as Google Tag Manager and New Relic for performance monitoring. Cookie consent is managed via Cookiebot, demonstrating awareness of privacy regulations. However, the site lacks explicit privacy policies and terms of service, which are important for compliance and user trust. Security posture is solid with HTTPS and some security best practices, but could be improved with additional headers and published security policies. Overall, the site presents a professional image with good technical implementation and moderate privacy compliance.

Hilti.ua is the official Ukrainian website of Hilti, a global leader in manufacturing and retailing professional construction tools and services. The site targets construction professionals and businesses in Ukraine, offering localized content and services. The business model is primarily B2B, focusing on sales, tool repair, and customer support. The website demonstrates a good level of digital maturity, leveraging modern JavaScript frameworks (Angular), consent management tools (Didomi), and analytics platforms (Google Analytics, Microsoft Clarity, Datadog RUM). Security posture is strong with HTTPS enforcement, privacy compliance, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not published, representing an area for improvement. Overall, the site is professional, trustworthy, and well-aligned with the Hilti brand.

N

Notino, s.r.o.

notino.ua

0

Notino, s.r.o. operates a large-scale e-commerce platform specializing in perfumes and cosmetics, targeting primarily the Ukrainian market. The website offers a broad assortment of beauty products with fast delivery and additional services such as a mobile app and sample boxes. The company holds a strong market position as a leading online beauty retailer in Ukraine with consistent branding and professional content. Technically, the site leverages modern React frameworks, integrates advanced analytics and monitoring tools like Google Analytics, New Relic, and Bloomreach, and maintains good performance and mobile optimization. Security posture is solid with HTTPS enforcement, security headers, and monitoring, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with clear cookie consent and GDPR-aligned policies. Overall, the website is trustworthy, professionally maintained, and business credible.

P

Public Organization “Support Ukraine Now”

supportukrainenow.org

0

Support Ukraine Now (SUN) is a Ukrainian registered non-profit organization founded in 2022, dedicated to facilitating international support for Ukraine through donations, volunteer matching, and social initiatives. The website serves as an informational and engagement platform targeting foreigners and organizations willing to help Ukraine. It is supported by reputable entities such as Global Shapers and the World Economic Forum, enhancing its credibility. Technically, the website is built on modern frameworks like Next.js and hosted on Vercel, ensuring good performance and mobile optimization. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Security-wise, HTTPS is enforced, but the absence of security headers and DNSSEC indicates room for improvement. Tracking technologies from Google and Facebook are used, implying moderate user tracking. Overall, the site is trustworthy and professional but should enhance privacy compliance and security practices.

H

HexBrain

hexbrain.com

0

HexBrain is a small, specialized web development agency based in Ukraine, founded in 2013. The company focuses on Magento e-commerce development and custom PHP programming, offering a comprehensive range of services including consulting, web design, project management, and system administration. Their market position is strengthened by multiple Magento and Zend certifications and active participation in industry conferences such as Meet Magento. The website content is professional and well-structured, targeting businesses seeking tailored e-commerce solutions. Technically, the website is built on GravCMS using the Foundation framework and jQuery, with Google Analytics integrated for user tracking. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Hosting appears to be managed via NameCheap, consistent with the domain registrar information. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks important security headers and DNSSEC is not enabled, representing areas for improvement. No privacy or cookie policies are published, indicating compliance gaps with GDPR and related regulations. Incident response and vulnerability disclosure mechanisms are absent, which could impact trust and security readiness. Overall, HexBrain presents a credible and professional online presence with solid business credibility and technical implementation. To enhance security posture and regulatory compliance, the company should implement privacy and cookie policies, add security headers, enable DNSSEC, and consider publishing security and incident response information.

Nekoweb.org is a niche technology platform offering free static website hosting with a strong emphasis on user freedom, ad-free experience, and community engagement. Founded in 2023 by a group of coders and artists, it targets individuals and small creators who prefer personal websites over social media. The platform supports advanced features such as FTP and Git for donators, custom domains, and API automation, positioning itself as a flexible and user-centric hosting service. The business model relies on donations and optional paid upgrades, fostering a community-driven ecosystem. Technically, Nekoweb.org utilizes modern web standards including HTML5, CSS3, and JavaScript, with Cloudflare providing DNS and registrar services. The site is mobile-optimized with good navigation and basic accessibility features. Security measures include HTTPS enforcement and Cloudflare Turnstile CAPTCHA to mitigate bot traffic, though DNSSEC is not enabled and security headers are minimal. The platform blocks generative AI crawlers to protect user content, reflecting a proactive approach to content security. From a security perspective, the site demonstrates a moderate security posture with room for improvement in DNS security and explicit security policies. Privacy compliance is basic, with a privacy policy and terms of service present but lacking cookie consent mechanisms. Contact information is clearly provided, enhancing business credibility. No adult or questionable content is detected, making the site safe for general audiences. Overall, Nekoweb.org presents a trustworthy and well-maintained service with a clear community focus. Strategic recommendations include enabling DNSSEC, enhancing security headers, publishing a security policy, and implementing cookie consent to improve compliance and security posture. These steps will strengthen user trust and align the platform with best practices in web security and privacy.

D

dimden

dimden.dev

0

The website dimden.dev is a personal portfolio and blog of a Ukrainian programmer known as dimden. It serves as a platform to showcase open source projects, share blog posts, and engage with a community primarily through Discord and Patreon. The site targets programmers, tech enthusiasts, and followers of the author's work. The business model is centered around personal branding, community engagement, and open source contributions, with no direct commercial sales evident. The market position is niche, focusing on a dedicated audience interested in programming and retro-inspired web culture. Technically, the website employs a modern JavaScript-based stack with custom scripts and uses HTTPS with Google Analytics and Tag Manager for tracking. The site is hosted on platforms like Neocities and Nekoweb, with some projects leveraging µWebSockets. Performance is moderate, with basic mobile optimization and accessibility features. SEO is basic but functional, with proper meta tags and Open Graph images. From a security perspective, the site benefits from HTTPS and lacks exposed sensitive data or vulnerable libraries. However, it lacks important security headers such as Content-Security-Policy and Strict-Transport-Security, and does not provide privacy or cookie policies, which impacts compliance. No vulnerability disclosure or incident response information is available. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk is low given the personal nature of the site and absence of sensitive transactions or user data collection. Strategic recommendations include implementing security headers, adding privacy and cookie policies, and establishing a vulnerability disclosure process to enhance trust and compliance.

S

SFG Media

sfg.media

0

SFG Media is an independent online media outlet founded in 2022, focusing on global news, politics, science, and climate issues primarily in the Russian language. The website offers news articles, analytical content, video shorts, and podcasts, targeting a general audience interested in in-depth global affairs. The business model relies on advertising revenue, primarily through Google Adsense, and content distribution via YouTube and Apple Podcasts. Technically, the site uses a custom CMS or platform with modern responsive design, multiple CSS media queries for device adaptation, and structured data for SEO and social media integration. The hosting appears to be managed via sfghost.com, with no major CMS detected.

M

Maje

maje.ua

0

Maje.ua is the official Ukrainian online store for the French premium fashion brand Maje, offering a wide range of clothing, bags, shoes, and accessories. The website targets Ukrainian consumers seeking high-quality, stylish fashion products with convenient delivery across Ukraine. The business model is focused on e-commerce retail with a strong brand presence and social media engagement. Technically, the site employs modern JavaScript libraries and tracking tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and secure forms, though there is room for improvement in security headers and explicit security policies. Privacy compliance is partially met with a privacy policy present but lacking a cookie consent mechanism. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

U

UNITED24 Media

united24media.com

0

UNITED24 Media is a specialized news media organization focused on delivering breaking news and in-depth analysis related to Ukraine. Founded in early 2024 by the Ministry of Digital Transformation of Ukraine, it serves a general audience interested in Ukrainian affairs, including war updates, culture, business, and anti-fake news. The website offers a variety of content types such as articles, photoreports, live broadcasts, and opinion pieces, supported by a subscription model for updates. The organization maintains a consistent brand presence with active social media channels across major platforms, enhancing its reach and engagement. Technically, the website employs modern web technologies including React-based frameworks, Google Tag Manager, Microsoft Clarity for analytics, and Cookiebot for cookie consent management. Hosting is professional, leveraging AWS infrastructure, and the site is optimized for mobile devices with good SEO and accessibility practices. The site uses HTTPS with good SSL configuration but lacks DNSSEC and some security headers, which are recommended for enhanced security. From a security and compliance perspective, the site demonstrates good privacy practices with a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR. However, there is no visible terms of service or explicit security policy and incident response information. The WHOIS data is consistent with the business claims, showing a recent domain registration matching the founding date, with no privacy protection or suspicious patterns. Overall, the security posture is solid but could be improved by enabling DNSSEC and publishing additional security policies. The website content is safe for general audiences, with no adult or questionable content detected. The overall risk assessment is low, with recommendations focusing on enhancing DNS security, security headers, and transparency around security policies to further strengthen trust and compliance.

T

Toyota Україна

toyota.ua

0

Toyota Україна operates as the official Ukrainian website for Toyota, providing comprehensive information about new and used Toyota vehicles, pricing, and dealer services. The site targets general consumers interested in automotive products and services within Ukraine, positioning itself as a leading automotive brand in the region. The business model focuses on vehicle sales, financing options, and customer engagement through dealer locators and digital tools. The website reflects a mature digital presence with strong branding and consistent messaging aligned with Toyota's global standards. Technically, the website leverages Adobe Experience Manager as its CMS, integrating advanced marketing and analytics technologies such as Adobe Launch, Datadog RUM, Microsoft Clarity, Mixpanel, and Google Analytics. The infrastructure is supported by Toyota Europe's cloud and CDN services, ensuring moderate to good performance and mobile optimization. SEO and accessibility are adequately addressed, though some improvements could be made. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection, indicating a solid baseline security posture. However, explicit security headers and published security policies are absent, and no vulnerability disclosure or incident response information is available publicly. Privacy compliance is partially addressed with cookie consent mechanisms but lacks a visible privacy policy and terms of service, which are critical for GDPR compliance. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to transparency in privacy and security policies and contact information availability. Strategic improvements in these areas would enhance user trust and regulatory compliance.

Т

Товариство з обмеженою відповідальністю Лоандо

loando.ua

0

Loando.ua is a Ukrainian financial comparison portal specializing in online credit offers from various microfinance organizations and banks. It provides users with detailed comparisons, ratings, and reviews of credit providers, facilitating informed borrowing decisions. The platform targets Ukrainian consumers seeking quick and accessible online loans. Technically, the website employs modern web technologies including Bootstrap for responsive design, jQuery for interactivity, and integrates multiple analytics tools such as Google Analytics, Yandex Metrika, and Hotjar for user behavior tracking. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and follows basic best practices but lacks explicit published security policies or incident response information. Privacy compliance is moderate, with a clear privacy policy but no visible cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

D

DevIT Software

devit.software

0

DevIT Software is a specialized IT company focused on software engineering services for the Shopify platform, including app and theme development. As an authorized Shopify partner, they have established a credible market position with over 6,000 app users and a strong presence on the Shopify App Store and Discord Marketplace. Their business model centers on B2B software solutions tailored for Shopify store owners and businesses seeking to enhance their e-commerce capabilities. Technically, the website leverages modern web technologies such as React and Next.js, with hosting and DNS services provided by Cloudflare. The site demonstrates good mobile optimization, SEO practices, and a professional design consistent with their branding. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks important security headers and explicit security policies. There is no visible privacy or cookie policy, nor incident response or vulnerability disclosure information, which are areas for improvement to enhance compliance and trust. Overall, the website is professional and trustworthy with a solid business foundation, but could benefit from enhanced privacy compliance and security best practices to reduce risk and improve user confidence.

Г

Главред

glavred.net

0

Главред is a well-established Ukrainian news media organization founded in 2002, providing timely news coverage across Ukraine and the world, including politics, business, sports, culture, and lifestyle content. The website serves a general audience with a comprehensive editorial approach and maintains a consistent brand presence across multiple social media platforms. The business model centers on news publishing with monetization through advertising and partnerships. Technically, the site employs modern web technologies including Cloudflare DNS/CDN, Google Tag Manager, Matomo, and Gemius analytics, and uses Bootstrap for responsive design. The site is mobile-optimized and SEO-friendly, offering a good user experience with clear navigation and structured content.

Т

ТОВ «ЮФД» та ТОВ «Юкрейніан Фільм Дистриб`юшн»

ufd.ua

0

UFD is a Ukrainian film distribution group comprising companies ТОВ «ЮФД» and ТОВ «Юкрейніан Фільм Дистриб`юшн». They specialize in distributing American, European, and Ukrainian films across Ukraine, maintaining a solid national market position with a focus on cinema partnerships and film catalog management. Their website reflects a professional media business with a clear focus on film releases and industry news. Technically, the website uses legacy JavaScript libraries such as jQuery 1.6.1 and jQuery UI 1.8.9, alongside Google Analytics and Tag Manager for tracking. The CMS appears to be OpenCart, inferred from URL structures. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features and modern frameworks. From a security perspective, HTTPS is enabled, but no advanced security headers are detected. The use of outdated JavaScript libraries introduces potential vulnerabilities. There is no visible cookie consent mechanism or detailed privacy and security policies, indicating partial compliance with GDPR and related regulations. No incident response or vulnerability disclosure information is published. Overall, the website is functional and professional but would benefit from modernization of its technical stack, enhanced security practices, and improved privacy compliance to reduce risk and increase trustworthiness.

S

Smartsolutions

smartsolutions.ua

0

Smartsolutions is a medium-sized Ukrainian company founded in 2000, specializing in legal, tax, and financial solutions, including business and asset protection, anti-piracy efforts, and IT project support. The company targets businesses and IT projects primarily within Ukraine, positioning itself as an established service provider with a professional online presence. The website is built on WordPress and employs modern JavaScript libraries and analytics tools, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of security headers and explicit security policies suggests room for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. Overall, the website is professional and trustworthy, but enhancing privacy and security transparency would strengthen its risk profile.

ANTONOV Company is a well-established Ukrainian aircraft manufacturing and aviation services provider, specializing in cargo and passenger airplanes and air transportation. The company holds a strong market position as a global leader in specialized cargo air transport, particularly for space components and satellite-related shipments. The website reflects a professional and consistent brand image with good content quality and navigation, targeting aviation industry professionals and customers requiring specialized air transport services. Technically, the website is built on a Yii framework with modern JavaScript libraries and is moderately optimized for performance and mobile devices. Security posture is adequate with HTTPS and CSRF protections but lacks advanced security headers and DNSSEC. Privacy and cookie policies are not present, indicating compliance gaps. Overall, the domain registration and WHOIS data support the legitimacy and trustworthiness of the company and website.

M

Mint Type

minttype.com

0

Mint Type is a small independent type foundry based in Ukraine, specializing in the design and sale of multilingual fonts with a focus on Cyrillic character sets. The company operates an e-commerce website offering a library of 96 typefaces, targeting designers and creative professionals seeking versatile font solutions. The website demonstrates consistent branding and a professional presentation, supporting its niche market position. Technically, the website employs standard web technologies including jQuery, jQuery UI, and FontAwesome, with payment processing integrated via Fondy.eu. The site is moderately optimized for performance and mobile use, with basic SEO and accessibility features. Security measures include HTTPS with CSRF tokens, but lack advanced security headers and DNSSEC, indicating room for improvement in security hardening. From a security perspective, the site shows a basic but adequate posture with no evident vulnerabilities or exposed sensitive data. Privacy compliance is basic, with a cookie consent banner and terms of service present, but no dedicated privacy policy or security incident response information. The domain registration is consistent with the business age and shows no suspicious patterns, supporting legitimacy. Overall, Mint Type presents a trustworthy and professional online presence with moderate technical maturity and security posture. Strategic enhancements in security headers, privacy documentation, and accessibility could further strengthen its risk profile and user trust.

Т

Телеканал 1+1 Україна

1plus1.tv

0

1+1.ua is the official website of the Ukrainian TV channel 1+1, a leading media broadcaster founded in 1995. The site offers a wide range of content including TV shows, films, series, news, and video content, targeting a general Ukrainian audience. The business model centers on media broadcasting and digital content distribution, with a strong market position in Ukraine. The website is professionally designed with consistent branding and high-quality content, reflecting the company's established reputation in the media industry. Technically, the site utilizes modern frameworks such as Nuxt.js and Vue.js, integrates multiple analytics and advertising platforms, and maintains good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit privacy and cookie policies. Overall, the site is trustworthy and legitimate, supported by consistent WHOIS data and clear contact information.

S

Sudum (Судум)

sudum.net

0

Sudum is a technology-driven service operating under the 1+1 media group, specializing in protecting copyright and digital content from piracy and unauthorized distribution. The company offers automated monitoring and complaint submission services to safeguard media content online, targeting content owners and media companies primarily in Ukraine. The website reflects a professional and consistent brand image with clear contact information and partner affiliations, positioning Sudum as a credible player in the media copyright protection sector. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google services including reCAPTCHA and Tag Manager for analytics and spam protection, and demonstrates good mobile optimization and SEO practices. However, some security best practices like DNSSEC and security headers are not implemented, and no explicit privacy or cookie policies are published, which could affect compliance and user trust. From a security perspective, the site uses HTTPS and Google reCAPTCHA to secure forms but lacks published security policies and incident response contacts. The domain registration is consistent and legitimate, with a stable history and no suspicious patterns. Overall, the security posture is moderate but could be improved with enhanced transparency and technical controls. The overall risk is low given the business nature and content safety rating as safe. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, implementing security headers, and providing incident response information to enhance compliance and trust.

ТОВ “1+1 Internet” operates as a content distributor and digital advertising provider primarily serving the Ukrainian media market. The company distributes a portfolio of Ukrainian and international TV channels and offers digital advertising campaigns on prominent Ukrainian media websites. The business targets advertisers and media partners seeking to leverage digital platforms for brand promotion and content distribution. The website presents a professional image with clear business descriptions and publicly available financial reports, indicating transparency and operational legitimacy. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with a moderate performance profile and good mobile optimization. However, it lacks advanced technical features such as security headers, analytics integration, and comprehensive SEO metadata. The absence of privacy and cookie policies and contact information limits the site's compliance posture and user trust. From a security perspective, the site is accessible without WAF or blocking mechanisms but shows limited security best practices. No HTTPS or SSL configuration details were provided, and no security policies or incident response contacts are published. This suggests a need for improved security governance and compliance measures to protect user data and enhance trust. Overall, the website is functional and professional but would benefit from enhanced security, privacy compliance, and user engagement features to strengthen its market position and reduce operational risks.