Security Directory

E

Ecodenta

ecodenta.lt

0

Ecodenta.lt is a Lithuanian-based healthcare e-commerce website specializing in dental care products and services. The company has been established since 2014 and operates primarily in the Lithuanian market. The website is built on WordPress using the WooCommerce plugin and the Divi theme, indicating a standard but effective e-commerce platform. The site is moderately optimized for mobile devices and provides a generally good user experience with clear navigation and professional design. However, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled and cookie consent implemented, but the absence of security headers and incident response information suggests room for improvement. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the site.

The website tavokraujas.lt represents the Vilniaus Universiteto Ligoninės Santaros Klinikų Kraujo centras, a major Lithuanian healthcare institution specializing in blood donation and transfusion services. The site provides comprehensive information about blood donation, donor registration, donor eligibility, and blood donation events. It serves as an important resource for potential donors and healthcare professionals in Lithuania. The business is well-positioned as a trusted healthcare provider with ISO 9001:2015 certification and affiliation with a leading university hospital. Technically, the website uses a variety of established JavaScript libraries and CSS frameworks such as jQuery, Bootstrap, and Owl Carousel to deliver a responsive and user-friendly experience. The site is mobile optimized and features multiple interactive forms for donor registration and event organization. However, there is no evidence of a CMS, and hosting details are not disclosed. From a security perspective, the website uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

Asociacija ,,Padedu augti“ is a Lithuanian non-profit organization dedicated to supporting families with premature and seriously ill newborns. Established in 2011, it provides various services including social support projects, educational initiatives, and direct assistance to hospitals and families. The organization maintains a strong community presence through storytelling, events, and partnerships with healthcare institutions. Their website reflects a well-structured, content-rich platform with clear navigation and engagement tools such as a live chat widget. Technically, the website employs modern web technologies including jQuery, jQuery UI, Fancybox, and Google Fonts, hosted behind Cloudflare DNS and nameservers ensuring reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and formal security policies. From a security and compliance perspective, the site lacks visible privacy and cookie policies, which is a notable compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Contact information is clearly available, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

H

Hittalån.se

xn--hittaln-jxa.se

0

Hittalån.se is a Swedish financial comparison website specializing in loans without UC credit checks and loans for individuals with many credit inquiries. The site provides detailed listings and comparisons of loan providers that use alternative credit checks such as Creditsafe and Dun & Bradstreet, targeting consumers who want to avoid UC inquiries or have weak creditworthiness. The website is built on WordPress with modern performance optimizations including lazy loading and WebP images. It uses Google Analytics and Tag Manager for tracking visitor data. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit privacy or cookie policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content and structure appear professional and focused on legitimate financial services. No contact emails or phone numbers are explicitly provided, which may impact user trust and compliance. Overall, the site serves a niche market in Sweden with a clear business model as an affiliate/comparison platform for loan providers.

T

Testly AB

xn--bst-i-testet-gcb.se

0

Bäst-i-testet.se is a Swedish independent product review and comparison website operated by Testly AB. The site offers comprehensive product tests, expert and user reviews, and buying guides across multiple categories such as electronics, home appliances, and family products. It targets consumers seeking trustworthy and objective information to aid their purchase decisions. The business model relies primarily on affiliate marketing and content publishing. Technically, the website is built on WordPress with modern front-end technologies including Bootstrap and jQuery, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but could be improved by enabling DNSSEC and adding more security headers. Privacy compliance is partial, with a privacy policy and terms of service present but lacking a cookie consent mechanism. Overall, the domain registration is consistent with the business age and operations, indicating legitimacy and trustworthiness.

K

Kökstavlor.se

xn--kkstavlor-07a.se

0

Kökstavlor.se is a Swedish niche affiliate marketing website specializing in kitchen posters and wall art. The site aggregates product information and links to partner retailers such as Designtorget, KitchenTime, Confident Living, and Solhem Inredning, providing users with curated selections and price comparisons. The business model relies on affiliate commissions while maintaining editorial independence and transparency through affiliate disclosures. The website is built on WordPress using Elementor and Yoast SEO, indicating a mature digital infrastructure with good SEO practices and mobile optimization. Security posture is solid with HTTPS enforced and standard security headers, though improvements like DNSSEC and Content-Security-Policy headers are recommended. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. Overall, the site is professional, trustworthy, and well-positioned within its retail niche.

J

Jaroslav Buriánek

vinarstviburiankovi.cz

0

The website represents a small family-owned winery and pension business located in the Czech Republic, specializing in wine production, sales via an e-shop, wine tasting events, and accommodation services. The business has a strong regional presence with awards such as the Grand Prix Vinex 2021 and inclusion in the 2024 Salon of Czech Wines, indicating a reputable market position. The website is professionally designed using Joomla CMS and VirtueMart e-commerce platform, incorporating modern web technologies such as Bootstrap, UIkit, and Google reCAPTCHA for form security. The site is mobile optimized and provides clear navigation and relevant content for its target audience of wine enthusiasts and tourists.

M

MojeLahve.cz

lahvoteka.cz

0

MojeLahve.cz operates a specialized e-commerce marketplace called Lahvotéka, aggregating over 192 e-shops of Czech and Moravian winemakers offering more than 3600 wines. The platform supports local producers by enabling direct sales to consumers with free shipping across the Czech Republic. The website is well-established since 2010 and targets wine enthusiasts in the Czech market. Technically, the site uses modern web technologies including jQuery, Bootstrap, Google Fonts, and integrates Google Tag Manager and Tawk.to for analytics and live chat support. The platform is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled and secure script usage, but lacks visible security headers and explicit privacy or cookie policies. No WAF or blocking mechanisms were detected, and the domain registration data is consistent and trustworthy.

H

Domovská stránka

helago-sk.sk

0

Helago SK operates as a specialized e-commerce platform serving the Slovak market with a focus on educational, healthcare, and laboratory products. The website offers a broad catalog of simulators, anatomical models, laboratory instruments, and technical teaching aids, targeting educational institutions, healthcare providers, and laboratories. The presence of sister sites in Czech and English indicates a regional market approach. Technically, the site employs modern web technologies including jQuery, Bootstrap 5, Google Tag Manager, and reCAPTCHA, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is basic, lacking a visible privacy policy or terms of service on the main page. Overall, the site is professionally designed with good navigation and content relevance but could improve transparency and contact information availability.

H

Homepage

helago-cz.com

0

Helago-cz.com operates as an e-commerce platform specializing in educational, healthcare, and laboratory equipment, targeting institutions and professionals in these sectors. The website offers a broad catalog of products including simulators, training kits, and laboratory instruments, positioning itself as a niche provider in the education and healthcare markets. Technically, the site employs modern web technologies such as jQuery, Bootstrap 5, and Google Tag Manager, indicating a moderate level of digital maturity. The presence of HTTPS and reCAPTCHA enhances security, though the absence of explicit security headers and privacy policies suggests room for improvement in compliance and security posture. The lack of WHOIS data for the domain is a notable anomaly that impacts trust and legitimacy assessments. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

I

Izzy Trading, s.r.o.

foxii.cz

0

FOXii is a specialized cloud-based service software targeting companies with field service operations, primarily in the Czech and Slovak markets. The platform enables digitalization of service workflows including planning, protocol creation, and technician tracking. The company behind FOXii, Izzy Trading, s.r.o., founded in 2019, presents a professional and consistent online presence with clear contact information and GDPR compliance. Technically, the website uses modern JavaScript libraries and cloud hosting on DigitalOcean, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and reCAPTCHA protections, though some security headers are missing. The site employs comprehensive cookie consent mechanisms and integrates multiple analytics and marketing tools with user consent.

W

WMD d.o.o.

wmd-webprostor.com

0

WMD d.o.o. is a Croatian technology company specializing in web hosting, domain registration, and related web services. The company positions itself as a provider of super fast support available 24/7/365, targeting web developers and businesses seeking reliable hosting and domain solutions. Their market presence includes over 10,000 users across 73 countries, emphasizing experience and customer service. The website content is professional and well-structured, reflecting a mature business model focused on service quality and customer satisfaction. Technically, the website leverages modern web technologies including jQuery, Bootstrap, FontAwesome Pro, and Craft CMS with Formie forms. It integrates Plausible Analytics for privacy-focused tracking and Crisp Live Chat for customer support. The site is mobile optimized and performs well, with HTTPS enforced and CSRF protections in place. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for security enhancements. Security posture is moderate with good practices like HTTPS and domain transfer protection, but lacks published security policies or incident response contacts. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms, which could pose regulatory risks especially under GDPR. The domain WHOIS data is consistent and supports the legitimacy of the business. Overall, WMD d.o.o. presents a credible and professional web presence with strong business credibility and technical implementation. Strategic improvements in privacy compliance and security hardening would enhance trust and regulatory adherence.

The website ravnagora.hr is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2003 under the Croatian registrar CARNET and uses SiteGround as its hosting provider. Due to the blocked content, no business description, contact information, or security policies are available for analysis. The website lacks privacy and cookie policies, terms of service, and any visible security headers or SSL configuration details. This severely limits the ability to assess the website's security posture, compliance, and business credibility. The domain registration data is consistent and indicates a legitimate long-standing domain, but the lack of accessible content and security best practices reduces trustworthiness.

The website sam.lrv.lt is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page employing Turnstile human verification. This security mechanism blocks direct access to the site's content, resulting in no visible business or organizational information. The domain appears to be associated with the Lithuanian government (lrv.lt), but no WHOIS data could be retrieved to confirm registration details or legitimacy. The lack of accessible content prevents a thorough assessment of the business model, services, or audience. Technically, the site leverages Cloudflare's security and performance services, but no further technology stack or CMS information is available. Security posture is limited to the presence of Cloudflare's WAF, with no additional security headers or policies visible. Privacy and compliance documentation such as privacy policies, cookie consent, or terms of service are absent from the accessible content. Overall, the site’s current state limits any meaningful analysis beyond recognizing the protective security layer in place.

B

Bundesverband Solarwirtschaft (BSW-Solar) e.V.

bsw-solar-shop.de

0

The website www.bsw-solar-shop.de serves as the official online shop for the Bundesverband Solarwirtschaft (BSW-Solar) e.V., a German solar industry association. It offers publications, guides, and studies related to solar thermal energy, photovoltaics, and energy storage. The platform targets investors, members of the association, and other stakeholders interested in solar energy solutions. The business model is primarily e-commerce focused on niche solar energy content, supported by member discounts and campaign information. The site holds a strong position within the German solar energy sector as a trusted source of industry publications. Technically, the website is built on the Magento CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. The site demonstrates good mobile responsiveness and basic accessibility features. Hosting is provided by a German hosting provider (kasserver.com), and the site structure supports clear navigation and SEO best practices. However, some modern security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed), does not expose sensitive data, and avoids vulnerable libraries in the visible code. However, it lacks explicit security headers and published security policies or incident response information. No vulnerability disclosure or security.txt files are present. The site does not appear to use tracking or advertising scripts, which reduces privacy risks but also indicates limited marketing automation. Overall, the website is professional, trustworthy, and focused on its niche market. Security posture is moderate with room for improvement in headers and compliance mechanisms. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. The risk level is low, but strategic improvements in security and privacy transparency are recommended to maintain trust and compliance.

I

INFO WEB s.r.o.

ladnafotografie.cz

0

LADNÁ FOTOGRAFIE is a small local photography studio based in Ladná near Břeclav, Czech Republic, specializing in portrait, still life, product, and other photographic services. The website serves as a professional portfolio showcasing various photographic works and targets local customers seeking photography services. The business is operated by INFO WEB s.r.o., founded in 2019, and maintains an active social media presence on Facebook and Instagram. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various plugins to deliver a visually appealing and responsive user experience. However, the site lacks critical compliance documents such as privacy and cookie policies, and no explicit contact information is provided on the pages analyzed. Security posture is moderate with HTTPS assumed but no security headers detected, and no analytics or tracking scripts are present, indicating minimal user tracking. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security practices.

S

Skypark

skypark.lt

0

Skypark.lt is the online presence of Skypark, the largest trampoline park and entertainment center in Lithuania, offering leisure activities for all age groups across multiple physical locations. The website serves as a landing page directing visitors to specific location subdomains. The business is positioned as a family-friendly entertainment provider with a medium-sized footprint in the hospitality sector, founded in 2014. Technically, the site uses a custom CMS (Greativ), Google Fonts, and Google Analytics with consent management scripts that deny ad and analytics storage by default, indicating some privacy awareness. However, the site lacks visible privacy and cookie policies, contact emails, and security headers, which are areas for improvement. No WAF or blocking mechanisms were detected, and the site content is accessible and safe for general audiences.

The website psaroom.com currently serves as a redirect or domain parking page with minimal accessible content. The domain is registered since 2015 and uses ParkLogic nameservers, a known domain monetization service. There is no visible business information, contact details, or policies on the site, indicating it is not actively used for business purposes. The technical infrastructure is minimal, relying on JavaScript redirects and lacks modern security headers or HTTPS confirmation in the provided data. Security posture is weak due to absence of security best practices and no visible compliance documentation. Overall, the site presents a low trust profile and limited business credibility.

D

Digital Freedom Foundation

documentfreedom.org

0

The Digital Freedom Foundation is a non-profit organization dedicated to promoting digital freedoms through global events such as Software Freedom Day, Hardware Freedom Day, and Document Freedom Day. Their website serves as a hub for event information, resources, and advocacy for open standards and user control over digital data. The organization targets individuals and groups interested in open source, open standards, and digital rights advocacy worldwide. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap and uses Matomo for privacy-conscious analytics. The site is mobile-optimized and provides multilingual support, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses domain transfer protection but lacks DNSSEC and security headers, indicating room for improvement in hardening. Privacy compliance is basic, with cookie consent but no detailed privacy or security policies visible. Overall, the site is professional, trustworthy, and well-aligned with its mission, though it could enhance security and compliance transparency.

K

Knackeriet Coworking Space - Mariatorget - Stockholm

knackeriet.se

0

The website www.knackeriet.se appears to be a Wix-hosted site with minimal content and no visible business or contact information. The domain WHOIS data is missing or the domain is unregistered, raising significant legitimacy concerns. Technically, the site uses standard Wix scripts and polyfills but lacks security headers and privacy policies. There is no evidence of forms or data collection, and no social media or external business links are present. Overall, the site lacks essential trust and compliance indicators, making it unsuitable for business or customer engagement in its current state.

H

H2G Internetagentur AG

h2g.ch

0

H2G Internetagentur AG is a Swiss-based web agency located in Aarau, specializing in consulting, design, development, and hosting of websites and web applications. The company targets businesses and institutions seeking innovative and user-centric digital solutions. Their market position is that of a reputable regional agency with a diverse client base, including international companies and local institutions. The website reflects a professional and modern digital presence with clear service offerings and client references. Technically, the website employs modern web technologies including JavaScript, SVG graphics, and Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Hosting appears to be managed internally or via trusted providers, with HTTPS enforced and minimal tracking. From a security perspective, the site uses HTTPS and respects user privacy by disabling cookies in analytics and honoring Do Not Track signals. However, it lacks some advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. The risk profile is low, with recommendations to enhance security headers and add explicit cookie consent mechanisms to further improve privacy compliance and security posture.

M

Mar-Com Rijeka

mar-com.hr

0

Mar-Com Rijeka is a small Croatian IT service company specializing in website creation, IT support, and graphic design with over 20 years of experience. The company targets local businesses and private individuals in Rijeka and surrounding areas, offering modern and affordable IT solutions. Their market position is supported by a portfolio of over 200 successful projects and positive client testimonials. Technically, the website employs modern web technologies such as jQuery, Slick Slider, and Google Fonts, with good mobile optimization and accessibility features including a UserWay widget. Security posture is solid with HTTPS enforced and a cookie consent mechanism in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a small IT service provider.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

visitnovalja.net

0

visitnovalja.net is an established Croatian hospitality platform specializing in private accommodation listings on the island of Pag. The website offers a comprehensive catalog of apartments, rooms, villas, and family hotels with direct contact options for travelers. It targets tourists seeking affordable and diverse lodging options in popular destinations such as Novalja, Stara Novalja, and surrounding areas. The business model focuses on connecting travelers directly with property owners, avoiding intermediaries. Technically, the site uses a custom CMS with common web technologies including jQuery, Bootstrap, and Google services for analytics and bot protection. The site is mobile optimized and provides a user-friendly search experience. Security posture is moderate with HTTPS enabled and reCAPTCHA integration, but lacks advanced security headers and has minor form input issues. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR explicit statements. Overall, the domain registration is consistent and supports the legitimacy of the business. Strategic improvements in security and privacy compliance would enhance trust and user safety.

The website www.zrce.info serves as an informational and booking platform focused on the Zrce beach festival and party scene, providing accommodation and event details. It targets general audiences interested in travel and nightlife at Zrce beach. The site uses basic web technologies including jQuery, Bootstrap, and Google Analytics for tracking visitor behavior. However, the technical infrastructure lacks modern security features such as HTTPS and security headers, which exposes visitors to potential risks. The absence of privacy and cookie policies further indicates low compliance with data protection standards. The WHOIS data is unavailable due to a malformed request response, limiting the ability to verify domain registration legitimacy and ownership details, which reduces trustworthiness. Overall, the site is functional but basic in design and content quality, with significant room for improvement in security and compliance.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

visitpag.net

0

Visitpag.net is an established Croatian online accommodation platform specializing in private rentals on the island of Pag, particularly in Novalja and surrounding areas. The website offers a comprehensive catalog of apartments, rooms, villas, and family hotels with direct booking contact forms, targeting tourists seeking affordable and direct accommodation options. The business operates with a mature domain registered since 2014 and maintains a consistent brand presence with a focus on local hospitality services. Technically, the site uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Google Analytics, providing a moderately optimized user experience including mobile responsiveness. Security posture is basic with HTTPS implied but lacking advanced security headers and best practices, and privacy compliance is minimal with no cookie consent mechanisms despite GDPR applicability. Overall, the site is functional and credible but would benefit from enhanced security and privacy features to improve trust and compliance.

C

Catalystic

catalystic.cz

0

Catalystic.cz is a small, Czech Republic-based independent platform focused on interdisciplinary research, non-formal education, and public outreach related to exponential changes in technology and society. The website presents a clear business model centered on fostering creativity, criticality, and exponentiality through research initiatives, educational programs, and partnerships. The site uses modern web technologies including Three.js for interactive graphics and is hosted on Forpsi servers with Webflow CMS. While the website is well-designed with good navigation and mobile optimization, it lacks critical compliance documents such as privacy and cookie policies, and does not provide incident response or vulnerability disclosure information. Security posture is moderate with HTTPS assumed but no visible security headers or advanced protections. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

B

Brejlando | take-away divadlo

brejlando.cz

0

Brejlando.cz is a Czech-based small media business specializing in delivering experimental theater recordings through virtual reality technology. The website offers users the ability to experience popular Prague theater performances from the comfort of their homes using modern VR technologies. The business appears to have been founded in 2021, consistent with the domain registration date. The website is built using modern frontend technologies such as Bootstrap and Nuxt.js, providing a good user experience with responsive design and clear navigation. However, the site lacks critical privacy and security policies, including privacy, cookie, and terms of service documents, as well as contact information for users or incident response. No analytics or advertising scripts were detected, indicating minimal user tracking. The domain registration data aligns well with the website content and business profile, supporting legitimacy. Overall, the website is safe for general audiences and professionally presented but requires improvements in privacy compliance and security posture.

B

BRAINZ STUDIOS

brainzstudios.cz

0

Brainz Studios is a medium-sized independent group of creative studios based in Prague, Czech Republic, founded in 2018. They offer a broad range of new media services including digital innovation, strategic communication, VR and AR immersive experiences, and brand building. The company operates multiple specialized studios and incubates startups and platforms, positioning itself as a creative and technological leader in the media industry. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Webflow, Vue.js, and GSAP, with integrated analytics and cookie consent mechanisms, indicating good digital maturity. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies are absent. Overall, the site demonstrates high professionalism and trustworthiness, with clear contact information and client endorsements. Recommendations include publishing privacy and security policies and enhancing security headers to further improve compliance and security.

P

PagFerry.com

pagferry.com

0

PagFerry.com is a small Croatian website providing up-to-date ferry schedules, real-time ferry status, weather forecasts, and webcam feeds for the Prizna - Žigljen ferry route. It serves a niche audience of travelers and locals seeking reliable maritime transport information. The website is well-branded and consistent, with a clear focus on transportation services in the Croatian region. Technically, the site leverages modern web technologies including AMP for mobile optimization, jQuery, Bootstrap, and integrates third-party services such as Google Analytics and Facebook SDK for analytics and social media engagement. The site is mobile-friendly and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and registers a service worker, but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data for the domain is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the site is functional and useful but would benefit from enhanced security practices and verified domain registration to improve trustworthiness.

The website pag-apartments.info serves as a regional accommodation portal focused on the Island Pag area in Croatia, offering listings of private apartments, rooms, and houses for vacationers. It facilitates direct booking with accommodation owners and targets tourists seeking lodging options on the island. The business model is a niche hospitality listing platform with a small market presence. Technically, the site is built with legacy HTML and CSS, lacking modern frameworks or CMS, and shows poor mobile optimization and accessibility. Security posture is weak, with no HTTPS detected and absence of security headers or privacy policies. No contact information or incident response details are provided, limiting trust and compliance. Overall, the site is functional for its purpose but requires significant improvements in security, privacy, and technical modernization to enhance user trust and compliance.

BitByte, obrt za IT usluge, is a Croatian small IT service provider specializing in computer servicing, network solutions, website development, and fiscal software hosting. The company targets both private and business customers, emphasizing professional diagnostics, OEM parts, and secure fiscal solutions via Remaris Master hosted in their data center. The website reflects a professional and consistent brand image with clear service offerings and distributor partnerships. Technically, the site is built on WordPress using Elementor and Yoast SEO, with HTTPS and Google reCAPTCHA implemented for security. However, the absence of privacy and cookie policies and limited WHOIS transparency due to GDPR reduce the overall privacy compliance and trust slightly. Security headers are not evident, suggesting room for improvement in security posture. Overall, the site is functional, well-structured, and suitable for its business purpose.

Pag Outdoor is a small Croatian tourism and outdoor activity provider specializing in kayaking and related experiences on the island of Pag. The website is professionally designed using WordPress with Elementor and Astra theme, supporting multiple languages and optimized for SEO with structured data. The technical infrastructure is modern but lacks some security best practices such as security headers and explicit privacy policies. The security posture is moderate with HTTPS enabled but could be improved with additional headers and vulnerability disclosures. The domain WHOIS data is missing, which raises concerns about registration transparency and trustworthiness. Overall, the website serves its business purpose well but should enhance privacy compliance and security transparency to improve trust and compliance.

E

Eesti Hotellide ja Restoranide Liit

ehrl.ee

0

Eesti Hotellide ja Restoranide Liit (EHRL) is the largest professional association representing the hospitality sector in Estonia, including hotels, restaurants, schools, and supporting members. The organization focuses on advocacy, information dissemination, and training to support its members and the broader hospitality industry. The website reflects a mature digital presence with content primarily in Estonian and an English alternative, targeting hospitality businesses and professionals in Estonia. The business model is membership-based, emphasizing industry representation and service provision. The domain age and WHOIS data support the legitimacy and established nature of the organization. Technically, the website is built on WordPress 6.8.2 with common plugins such as Yoast SEO and CookieYes for cookie consent management. It uses modern JavaScript libraries like jQuery and Swiper for UI components. The site is hosted under Zone Media OÜ, a known Estonian registrar and hosting provider. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism, including granular user controls. However, no explicit security headers were detected, and there is no visible security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the HTML content. The site uses tracking tools such as Google Analytics and Facebook Pixel, with moderate user tracking levels and basic privacy compliance. Overall, the website is professional, trustworthy, and aligned with its business purpose. The main risks relate to the absence of a published privacy policy and security headers, which could be improved to enhance compliance and security posture. The site is safe for general audiences with no adult or questionable content.

The website tallinn.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks access to the actual content. The domain is registered to Spin TEK AS, an Estonian company, consistent with the .ee country code top-level domain. The domain was created in 2010, indicating an established presence likely related to government or municipal services. Due to the access block, no business descriptions, contact information, or policies are visible on the site. The technical infrastructure includes Cloudflare security and analytics services, but no CMS or frameworks are detectable from the challenge page. Security posture cannot be fully assessed, but the presence of Cloudflare indicates some level of protection. Privacy and cookie policies are not found, and no contact or incident response information is visible. Overall, the site appears legitimate but inaccessible for detailed analysis.

R

Regional Development Agency DUNEA LLC.

dubrovnik-neretva.eu

0

The website represents the official Representation Office of the Dubrovnik-Neretva Region in Brussels, serving as a liaison and promotional platform for the region within the European Union. It highlights the Regional Development Agency DUNEA, which coordinates sustainable development and project management for the region. The site targets regional stakeholders, investors, EU institutions, and the general public interested in regional development. Technically, the site is built on Joomla CMS with a modern but moderate tech stack including Bootstrap, jQuery, and Revolution Slider, offering good mobile optimization and user experience. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich but would benefit from enhanced privacy and security measures.

Europe Direct Dubrovačko-neretvanske županije operates as a regional EU information center in Croatia, providing citizens with access to EU-related information, events, and services. The website serves as a communication platform to engage the public in discussions about the European Union's future and policies. It is funded by the European Union and acts as a trusted source for regional EU news and resources. The organization targets local citizens and stakeholders interested in EU affairs, promoting transparency and participation.

Die Schlösserstrasse is a regional development association focused on promoting cultural tourism and heritage sites, specifically castles and fortresses in Southeast Austria and Slovenia. The website serves as an information hub for tourists and cultural enthusiasts, offering event announcements, booking options, and educational content. The organization appears to have a solid market position within its niche, supported by regional tourism partners and a network of castles. Technically, the website uses basic web technologies such as jQuery and JavaScript, with moderate performance and basic mobile optimization. Security posture is average, with no HTTPS or security headers information available from the provided data, and no cookie consent mechanism detected despite EU audience relevance. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy, although the website content and partner references suggest a legitimate operation. Overall, the site is professional and trustworthy but would benefit from improved technical and security measures.

Museums.SI is a Slovenian cultural heritage portal operated by Semantika d.o.o., providing comprehensive information about museums, galleries, exhibitions, collections, educational programs, articles, authors, and virtual exhibitions in Slovenia. The website serves as a national platform to promote Slovenian cultural institutions and their activities to the general public and cultural enthusiasts. Technically, the site is built on the DNN CMS platform, utilizing Bootstrap and jQuery libraries, and integrates Google Analytics for visitor tracking. The site is mobile optimized with a moderate performance profile and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a privacy policy available in Slovenian and a cookie consent banner. No contact emails or phone numbers are explicitly provided on the homepage, which may affect direct communication. Overall, the website is professional, trustworthy, and safe for general audiences.

3

Trije gradovi,dve deželi,ena zgodba - 321 Go

321go.si

0

The website www.321go.si is a Slovenian regional or cultural site, likely focused on tourism or local heritage, as indicated by the title 'Trije gradovi,dve deželi,ena zgodba - 321 Go'. The domain was registered in 2019 with a local Slovenian registrar, consistent with the website's regional focus. The site is multilingual, offering Slovenian, English, and German versions. Technically, the site is built on WordPress and uses WPRocket for optimization, with Google Analytics integrated for visitor tracking. However, the site lacks visible privacy and cookie policies, and no contact information is explicitly provided in the analyzed content. Security headers are not detected, and SSL configuration details are not available, though HTTPS is used. Overall, the site presents good design and user experience but has gaps in privacy compliance and security best practices.

P

Pikant

pikant.hr

0

Pikant is a Croatian design and marketing studio providing a broad range of creative and IT services including web design, graphic design, product design, branding, IT support, and marketing consulting. The company positions itself as a regional leader with a focus on quality and client satisfaction, serving businesses primarily in Croatia and the EU. The website is professionally designed, mobile-optimized, and provides clear contact information and client references. Technically, the site uses modern web technologies such as Google Fonts, Revolution Slider, and Cognito Forms for contact management, with Google Analytics for traffic analysis. Security posture is good with HTTPS enabled and secure form handling, though some security headers and cookie consent mechanisms are missing. The WHOIS data is privacy protected due to GDPR, which is justified for this business type. Overall, the website reflects a legitimate, small-sized business with a solid digital presence.

Općina Krapinske Toplice operates an official municipal website providing comprehensive information and services to residents and stakeholders of the Krapinske Toplice municipality in Croatia. The site offers detailed administrative content including organizational structure, public notices, procurement, and community engagement resources. The website is positioned as a local government authority portal, serving a small-sized municipality with a focus on transparency and public service. Technically, the site is built on WordPress CMS using Elementor page builder, leveraging modern web technologies such as jQuery and Font Awesome for UI elements. Hosting and domain registration are consistent with a Croatian academic network provider, ensuring local presence and legitimacy. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though improvements in security headers and incident response documentation are recommended. Privacy compliance is supported by clear privacy and cookie policies, though a cookie consent mechanism is absent. Overall, the website is professional, trustworthy, and safe for general audiences, with a good balance of content quality and technical implementation.

R

Razvojna agencija Sotla

ra-sotla.si

0

Razvojna agencija Sotla is a Slovenian regional development agency established in 2003, focusing on regional development programs, entrepreneurship support, and project management primarily in the Obsotelje and Kozjansko regions. The agency operates as a non-profit entity serving local governments, entrepreneurs, and community stakeholders. Their website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to their target audience. Technically, the site is built on WordPress using modern plugins such as Elementor and Events Manager, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and standard security headers present, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, compliant with GDPR cookie requirements, and free from suspicious indicators.

A

Askly OÜ

askly.me

0

Askly OÜ operates a professional SaaS platform providing AI-powered multilingual chat and customer support solutions primarily targeting e-commerce and retail businesses. The website demonstrates a strong market position with numerous notable clients and testimonials, emphasizing ease of use, automation, and enhanced customer engagement. The company leverages modern digital marketing and analytics tools, including Google Analytics, Facebook Pixel, Hotjar, and FullStory, indicating a mature digital infrastructure. The technical implementation is robust, with responsive design, fast performance, and comprehensive SEO and accessibility features. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. WHOIS data is unavailable due to privacy protection, which is typical for SaaS providers, but the website content and business presence support legitimacy. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

B

Baltic Human Rights Society

baltichumanrights.org

0

Baltic Human Rights Society (BHRS) is a non-profit organization dedicated to promoting human rights awareness and education in Latvia and the broader Baltic region. The organization focuses on fostering a culture of human rights through educational initiatives, advocacy, and collaborative projects with regional and international partners. The website reflects a well-structured platform aimed at human rights educators, activists, NGOs, and the general public interested in human rights issues. BHRS maintains partnerships with reputable European and Baltic institutions, enhancing its credibility and regional influence. Technically, the website employs standard web technologies including jQuery and SVG4Everybody for compatibility and user experience enhancements. It features a cookie consent mechanism compliant with GDPR principles, although no advanced security headers or analytics services are detected. The site is mobile-optimized with good navigation and content quality, though SEO and accessibility could be improved. The WHOIS data is unavailable or restricted, which limits domain trust verification but does not detract significantly from the site's legitimacy given the content and partner affiliations. From a security perspective, the site uses HTTPS (assumed from canonical URLs and modern standards) and implements cookie consent with opt-in, indicating privacy awareness. However, the absence of visible security headers and incident response contacts suggests room for improvement in security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the site presents a moderate security maturity level appropriate for a non-profit educational organization. The overall risk assessment is low, with the primary concern being the lack of WHOIS transparency and limited security policy disclosures. Strategic recommendations include enhancing security headers, publishing explicit security and privacy policies, and providing clear contact information for incident response. These steps would improve trust and compliance, supporting BHRS's mission and stakeholder confidence.

C

Cilvēktiesību gids

cilvektiesibugids.lv

0

The website www.cilvektiesibugids.lv is a Latvian human rights guide providing educational content on various human rights topics and everyday situations. It targets the general public interested in human rights education and operates as a non-profit entity. The platform offers thematic articles, rights information, court practice summaries, and interactive tests in Latvian, Russian, and English. Technically, the site uses modern web technologies including self-hosted Matomo analytics for privacy-conscious tracking, Google Fonts, and cookie consent mechanisms. The design is professional, mobile-optimized, and accessible, with clear navigation and multilingual support. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. No vulnerabilities or suspicious content were detected. Overall, the site is trustworthy and serves as a valuable educational resource in the human rights domain.

K

Kiwis & Brownies GbR

brezel.io

0

Brezel.io is a German-based small technology company specializing in tailored enterprise software solutions including ERP, CRM, PIM, and DAM systems. Their business model focuses on providing customizable low-code and no-code platforms that enable businesses to digitize and automate complex workflows. The company emphasizes flexibility, security, and modern web technologies, targeting businesses that require bespoke digitalization solutions rather than off-the-shelf products. Their market position is niche but well-defined, with a focus on industrial, hospitality, and membership management sectors. Technically, the website is built on a modern stack including Laravel, Vue.js, and supports a Progressive Web App for cross-device compatibility. The site is mobile optimized and offers good user experience and navigation clarity. However, performance is moderate and accessibility features are basic. The hosting and DNS setup is standard with no DNSSEC enabled, and no CMS detected. From a security perspective, the site implements two-factor authentication and WebAuthn for user login security and includes CSRF tokens. However, it lacks visible HTTP security headers and DNSSEC, and does not publish security or incident response policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms, despite the use of tracking scripts. WHOIS data is consistent and transparent, supporting legitimacy. Overall, the website presents a professional and trustworthy business front with good technical foundations but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

B

Brainz Immersive s. r. o.

immersive.cz

0

Brainz Immersive s. r. o. is a Prague-based immersive creative studio specializing in virtual and augmented reality experiences. Founded in 2019 and part of the BRAINZ STUDIOS group, the company offers a comprehensive suite of services including AR/VR creative development, 360° video production, multi-platform app development, and immersive installations. Their client portfolio includes notable brands such as ŠKODA AUTO, Vogue, and Czech Radio, positioning them as a niche leader in immersive technology solutions for brands and entertainment. The website reflects a professional and modern digital presence with rich multimedia content and clear navigation. Technically, the site uses modern web technologies and frameworks, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Analytics and marketing tracking are implemented via Google Analytics and Facebook Pixel, but without explicit cookie consent mechanisms. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, Brainz Immersive demonstrates a strong market position in immersive technology with a professional online presence but should enhance privacy compliance and security best practices to further strengthen trust and regulatory adherence.

B

BRAINZ DISRUPTIVE

disruptive.cz

0

BRAINZ DISRUPTIVE is a small, independent creative digital studio based in the Czech Republic, founded in 2019. The company focuses on helping brands adapt to future challenges by delivering innovative digital solutions, combining strategic, creative, and technological expertise. Their market position is that of a progressive digital studio emphasizing disruptive strategies and future-oriented services. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern frameworks such as Vue.js and Nuxt.js, with Webflow CSS for styling, and integrates Google Analytics for tracking. However, the site lacks visible privacy and cookie policies, and no explicit contact emails or phone numbers are provided, relying mainly on a contact form. Security posture is moderate with HTTPS usage but missing security headers and incident response information. Overall, the domain registration data is consistent and supports the legitimacy of the business.

C

Christian Kiewaldt & Benjamin Braun GbR

kiwis-and-brownies.de

0

KIWIS & BROWNIES is a small German software development company specializing in custom enterprise software, eCommerce solutions using Magento, and promotional applications to increase reach and lead generation. The company operates primarily in the Gummersbach and Oberberg regions of Germany, targeting local businesses seeking digital transformation and marketing services. Their website reflects a professional and modern digital presence with a focus on clear communication and customer engagement via WhatsApp and downloadable informational materials. Technically, the website employs standard modern web technologies including HTML5, CSS, JavaScript with jQuery, and Google Fonts. The hosting is managed via DomainControl nameservers, and Magento is indicated as the eCommerce platform. The site is moderately optimized for performance and mobile devices, though accessibility features are basic. SEO practices are adequately implemented with meta tags and structured content. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a formal security policy or incident response contacts. The privacy policy is comprehensive and GDPR compliant, but no cookie consent mechanism is present, which is a compliance gap. No vulnerability disclosure or security.txt files are found, limiting transparency in security practices. Overall, the website presents a trustworthy and professional image suitable for its business scope. The risk level is moderate with recommendations to enhance security headers, implement cookie consent, and publish security policies to improve compliance and trust. The domain registration aligns with the business identity, supporting legitimacy.

L

Lesoochranárske zoskupenie VLK

wolf.sk

0

Lesoochranárske zoskupenie VLK is a Slovak non-profit organization dedicated to the protection of natural forests, carnivores, and natural processes through the creation of no-intervention reserves. The organization has a strong grassroots presence with over 25 years of activity, focusing on environmental advocacy, legal interventions, and public education. Their website serves as an information hub for campaigns, petitions, and educational content primarily in Slovak, targeting environmental activists and the general public interested in nature conservation. Technically, the website is built on Drupal CMS with common libraries like jQuery and uses Google Analytics for visitor tracking. While the site is functional and content-rich, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. Contact information is primarily available via a contact page rather than directly on the homepage. Overall, the website reflects a moderate level of digital maturity with room for improvements in security and privacy compliance.