Security Directory

F

Fachverband Elektro- und Informationstechnik Hessen/Rheinland-Pfalz

liv-fehr.de

0

The Fachverband Elektro- und Informationstechnik Hessen/Rheinland-Pfalz (FEHR) operates as a regional trade association providing comprehensive support, consulting, and training services to entrepreneurs and businesses in the electro-technology sector within Hessen and Rheinland-Pfalz, Germany. The website serves as an information hub offering access to legal advice, technical consultations, training seminars, and member benefits, targeting local industry professionals and companies. The association maintains a strong market position as a trusted regional entity with a consistent brand presence and active member engagement. Technically, the website is built on TYPO3 CMS and integrates modern web technologies including Usercentrics for consent management, Google Analytics, Google Tag Manager, and TikTok Pixel for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Hosting and DNS are managed via DomainControl (GoDaddy), indicating a professional infrastructure. From a security perspective, the site enforces HTTPS and uses a consent management platform to comply with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly implemented, and no public security or incident response policies are published. No vulnerabilities or sensitive data exposures were detected. The WHOIS data aligns with the website's legitimacy, showing consistent domain registration without privacy protection, appropriate for a trade association. Overall, the website demonstrates a good balance of content quality, technical implementation, security posture, privacy compliance, and business credibility, scoring an overall AI rating of 82. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would further enhance trust and resilience.

N

NFE Norddeutscher Fachverband Elektro- und Informationstechnik e.V.

nfe.de

0

NFE Norddeutscher Fachverband Elektro- und Informationstechnik e.V. is a well-established regional association representing approximately 350 medium-sized companies in the electrical and information technology sectors in Hamburg. The organization provides advocacy, certification, training, and networking services to its members, positioning itself as a key industry stakeholder in the region. The website reflects a professional and member-focused approach with clear communication of benefits and services. Technically, the site is built on TYPO3 CMS with Bootstrap, ensuring responsive design and good accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

E

E-Handwerke Berlin/Brandenburg

eh-bb.de

0

E-Handwerke Berlin/Brandenburg is a regional trade association focused on supporting electrical craftsmen and professionals in the Berlin and Brandenburg regions. The organization provides certification services such as E-Check, training seminars, apprenticeship support, and member services. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeted at trade professionals and apprentices. Technically, the site is built on TYPO3 CMS, hosted by SchlundTech, and uses modern tracking and consent management tools, including Usercentrics and Google Tag Manager. The site is mobile optimized and performs moderately well. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the domain registration and hosting align well with the business purpose, indicating legitimacy and trustworthiness.

L

Landesinnungsverband für das Bayerische Elektrohandwerk

elektroverband-bayern.de

0

The Landesinnungsverband für das Bayerische Elektrohandwerk is a regional trade association representing the Bavarian electrical craft sector. It provides member services including training, certification (E-Marke), public relations, and a platform for news and events. The website targets professionals, trainees, and stakeholders in the electrical industry within Bavaria, positioning itself as an authoritative and trusted organization in this niche. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates a consent management platform (Usercentrics) alongside analytics tools such as Google Analytics and TikTok Pixel. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place; however, there is room for improvement in publishing explicit security policies and implementing additional HTTP security headers. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency. The site is free from blocking mechanisms or WAF challenges, enabling full content accessibility.

F

Fachverband Elektro- und Informationstechnik Baden-Württemberg

fv-eit-bw.de

0

The Fachverband Elektro- und Informationstechnik Baden-Württemberg is a regional industry association focused on the electrical and information technology sectors in Baden-Württemberg, Germany. It provides its members with industry news, training, networking opportunities, and advocacy services. The website reflects a professional and well-structured digital presence, targeting professionals and businesses within the regional energy and technology sectors. The association maintains a strong market position as a trusted regional body with a clear focus on quality and member services. Technically, the website is built on TYPO3 CMS and integrates modern technologies including Usercentrics for consent management, Google Analytics, and TikTok Pixel for analytics and marketing. The site is hosted on a domain controlled by DomainControl, likely GoDaddy, and shows good mobile optimization and SEO practices. Performance is moderate with no critical technical issues detected. From a security perspective, the website uses HTTPS with SSL and implements privacy best practices such as IP anonymization and cookie consent mechanisms. However, it lacks explicit security headers and does not provide visible security or incident response policies. No vulnerabilities or suspicious content were detected. Overall, the security posture is good but could be improved with additional headers and documented policies. The overall risk assessment is low with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining regular audits of third-party scripts to ensure ongoing compliance and security.

A

Arbeitsgemeinschaft Medienwerbung GmbH im Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke

e-check.de

0

The website www.elektrohandwerk.de is a professionally maintained information portal affiliated with the German electrical trade association (ZVEH). It focuses on promoting the E-CHECK service, which provides electrical safety inspections and energy efficiency advice primarily for private homeowners, tenants, landlords, and property managers. The site offers comprehensive content on electrical safety, damage prevention, energy saving, and comfort enhancements, positioning itself as an authoritative resource in the energy sector within Germany. Technically, the site is built on TYPO3 CMS, uses modern JavaScript and CSS technologies, and integrates a consent management platform (Usercentrics) alongside Google Tag Manager and TikTok analytics for tracking, all implemented with GDPR compliance in mind. Security-wise, the site enforces HTTPS and uses consent-based tracking but lacks explicit security headers and published security policies or incident response information. Overall, the site is trustworthy, well-branded, and user-friendly, with moderate to good performance and mobile optimization.

C

Comité du Risque Systémique

cdrs.lu

0

The website cdrs.lu represents the Comité du Risque Systémique, an institutional entity likely focused on systemic risk in Luxembourg. The site is primarily informational, presented in French, and built on WordPress using the Divi theme. The technical infrastructure is standard for a small institutional website, with moderate performance and basic mobile optimization. However, the site lacks critical privacy and security policies, contact information, and advanced security headers, which limits its compliance and trustworthiness. No WAF or blocking mechanisms were detected, indicating full accessibility. The WHOIS data shows Luxembourg-based name servers consistent with the domain's country code but lacks detailed registrant information, limiting full legitimacy assessment. Overall, the site is safe and suitable for general audiences but requires improvements in privacy, security, and contact transparency to enhance trust and compliance.

E

Eurener

eurener.com

0

Eurener is a Spanish photovoltaic module manufacturer specializing in high-quality, durable solar panels primarily targeting the European residential and commercial markets. The company emphasizes sustainability, advanced solar technologies, and premium design, supported by industry certifications and awards such as the TOP Brand seal and Ecovadis platinum medal. The website is built on WordPress with Elementor, featuring modern web technologies and multilingual support, providing a professional user experience with good navigation and mobile optimization. Security posture is adequate with HTTPS and domain registration protections, but lacks advanced DNS security and explicit security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website reflects a credible and established business with room for improvement in privacy and security transparency.

H

Heckert Solar Shop

heckertsolar.com

0

Heckert Solar Shop is a German-based e-commerce and service provider specializing in photovoltaic modules, storage systems, inverters, and related solar technology products. The company targets a broad audience including private consumers, professional partners, investors, and commercial clients. The website demonstrates a professional and consistent brand presence with a good range of products and services, positioning itself as a reliable expert in the solar energy sector. Technically, the site is built on the Shopware platform, uses modern JavaScript libraries, and integrates multiple advertising and analytics tools, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protection statuses, but lacks advanced DNS security and explicit security policies. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms policies. Overall, the website is trustworthy and well-maintained but could improve transparency and security documentation.

E

Ecodenta

ecodenta.lt

0

Ecodenta.lt is a Lithuanian-based healthcare e-commerce website specializing in dental care products and services. The company has been established since 2014 and operates primarily in the Lithuanian market. The website is built on WordPress using the WooCommerce plugin and the Divi theme, indicating a standard but effective e-commerce platform. The site is moderately optimized for mobile devices and provides a generally good user experience with clear navigation and professional design. However, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled and cookie consent implemented, but the absence of security headers and incident response information suggests room for improvement. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the site.

The website tavokraujas.lt represents the Vilniaus Universiteto Ligoninės Santaros Klinikų Kraujo centras, a major Lithuanian healthcare institution specializing in blood donation and transfusion services. The site provides comprehensive information about blood donation, donor registration, donor eligibility, and blood donation events. It serves as an important resource for potential donors and healthcare professionals in Lithuania. The business is well-positioned as a trusted healthcare provider with ISO 9001:2015 certification and affiliation with a leading university hospital. Technically, the website uses a variety of established JavaScript libraries and CSS frameworks such as jQuery, Bootstrap, and Owl Carousel to deliver a responsive and user-friendly experience. The site is mobile optimized and features multiple interactive forms for donor registration and event organization. However, there is no evidence of a CMS, and hosting details are not disclosed. From a security perspective, the website uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

Asociacija ,,Padedu augti“ is a Lithuanian non-profit organization dedicated to supporting families with premature and seriously ill newborns. Established in 2011, it provides various services including social support projects, educational initiatives, and direct assistance to hospitals and families. The organization maintains a strong community presence through storytelling, events, and partnerships with healthcare institutions. Their website reflects a well-structured, content-rich platform with clear navigation and engagement tools such as a live chat widget. Technically, the website employs modern web technologies including jQuery, jQuery UI, Fancybox, and Google Fonts, hosted behind Cloudflare DNS and nameservers ensuring reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and formal security policies. From a security and compliance perspective, the site lacks visible privacy and cookie policies, which is a notable compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Contact information is clearly available, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

H

Hittalån.se

xn--hittaln-jxa.se

0

Hittalån.se is a Swedish financial comparison website specializing in loans without UC credit checks and loans for individuals with many credit inquiries. The site provides detailed listings and comparisons of loan providers that use alternative credit checks such as Creditsafe and Dun & Bradstreet, targeting consumers who want to avoid UC inquiries or have weak creditworthiness. The website is built on WordPress with modern performance optimizations including lazy loading and WebP images. It uses Google Analytics and Tag Manager for tracking visitor data. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit privacy or cookie policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content and structure appear professional and focused on legitimate financial services. No contact emails or phone numbers are explicitly provided, which may impact user trust and compliance. Overall, the site serves a niche market in Sweden with a clear business model as an affiliate/comparison platform for loan providers.

T

Testly AB

xn--bst-i-testet-gcb.se

0

Bäst-i-testet.se is a Swedish independent product review and comparison website operated by Testly AB. The site offers comprehensive product tests, expert and user reviews, and buying guides across multiple categories such as electronics, home appliances, and family products. It targets consumers seeking trustworthy and objective information to aid their purchase decisions. The business model relies primarily on affiliate marketing and content publishing. Technically, the website is built on WordPress with modern front-end technologies including Bootstrap and jQuery, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but could be improved by enabling DNSSEC and adding more security headers. Privacy compliance is partial, with a privacy policy and terms of service present but lacking a cookie consent mechanism. Overall, the domain registration is consistent with the business age and operations, indicating legitimacy and trustworthiness.

K

Kökstavlor.se

xn--kkstavlor-07a.se

0

Kökstavlor.se is a Swedish niche affiliate marketing website specializing in kitchen posters and wall art. The site aggregates product information and links to partner retailers such as Designtorget, KitchenTime, Confident Living, and Solhem Inredning, providing users with curated selections and price comparisons. The business model relies on affiliate commissions while maintaining editorial independence and transparency through affiliate disclosures. The website is built on WordPress using Elementor and Yoast SEO, indicating a mature digital infrastructure with good SEO practices and mobile optimization. Security posture is solid with HTTPS enforced and standard security headers, though improvements like DNSSEC and Content-Security-Policy headers are recommended. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. Overall, the site is professional, trustworthy, and well-positioned within its retail niche.

J

Jaroslav Buriánek

vinarstviburiankovi.cz

0

The website represents a small family-owned winery and pension business located in the Czech Republic, specializing in wine production, sales via an e-shop, wine tasting events, and accommodation services. The business has a strong regional presence with awards such as the Grand Prix Vinex 2021 and inclusion in the 2024 Salon of Czech Wines, indicating a reputable market position. The website is professionally designed using Joomla CMS and VirtueMart e-commerce platform, incorporating modern web technologies such as Bootstrap, UIkit, and Google reCAPTCHA for form security. The site is mobile optimized and provides clear navigation and relevant content for its target audience of wine enthusiasts and tourists.

M

MojeLahve.cz

lahvoteka.cz

0

MojeLahve.cz operates a specialized e-commerce marketplace called Lahvotéka, aggregating over 192 e-shops of Czech and Moravian winemakers offering more than 3600 wines. The platform supports local producers by enabling direct sales to consumers with free shipping across the Czech Republic. The website is well-established since 2010 and targets wine enthusiasts in the Czech market. Technically, the site uses modern web technologies including jQuery, Bootstrap, Google Fonts, and integrates Google Tag Manager and Tawk.to for analytics and live chat support. The platform is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled and secure script usage, but lacks visible security headers and explicit privacy or cookie policies. No WAF or blocking mechanisms were detected, and the domain registration data is consistent and trustworthy.

H

Domovská stránka

helago-sk.sk

0

Helago SK operates as a specialized e-commerce platform serving the Slovak market with a focus on educational, healthcare, and laboratory products. The website offers a broad catalog of simulators, anatomical models, laboratory instruments, and technical teaching aids, targeting educational institutions, healthcare providers, and laboratories. The presence of sister sites in Czech and English indicates a regional market approach. Technically, the site employs modern web technologies including jQuery, Bootstrap 5, Google Tag Manager, and reCAPTCHA, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is basic, lacking a visible privacy policy or terms of service on the main page. Overall, the site is professionally designed with good navigation and content relevance but could improve transparency and contact information availability.

H

Homepage

helago-cz.com

0

Helago-cz.com operates as an e-commerce platform specializing in educational, healthcare, and laboratory equipment, targeting institutions and professionals in these sectors. The website offers a broad catalog of products including simulators, training kits, and laboratory instruments, positioning itself as a niche provider in the education and healthcare markets. Technically, the site employs modern web technologies such as jQuery, Bootstrap 5, and Google Tag Manager, indicating a moderate level of digital maturity. The presence of HTTPS and reCAPTCHA enhances security, though the absence of explicit security headers and privacy policies suggests room for improvement in compliance and security posture. The lack of WHOIS data for the domain is a notable anomaly that impacts trust and legitimacy assessments. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

I

Izzy Trading, s.r.o.

foxii.cz

0

FOXii is a specialized cloud-based service software targeting companies with field service operations, primarily in the Czech and Slovak markets. The platform enables digitalization of service workflows including planning, protocol creation, and technician tracking. The company behind FOXii, Izzy Trading, s.r.o., founded in 2019, presents a professional and consistent online presence with clear contact information and GDPR compliance. Technically, the website uses modern JavaScript libraries and cloud hosting on DigitalOcean, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and reCAPTCHA protections, though some security headers are missing. The site employs comprehensive cookie consent mechanisms and integrates multiple analytics and marketing tools with user consent.

W

WMD d.o.o.

wmd-webprostor.com

0

WMD d.o.o. is a Croatian technology company specializing in web hosting, domain registration, and related web services. The company positions itself as a provider of super fast support available 24/7/365, targeting web developers and businesses seeking reliable hosting and domain solutions. Their market presence includes over 10,000 users across 73 countries, emphasizing experience and customer service. The website content is professional and well-structured, reflecting a mature business model focused on service quality and customer satisfaction. Technically, the website leverages modern web technologies including jQuery, Bootstrap, FontAwesome Pro, and Craft CMS with Formie forms. It integrates Plausible Analytics for privacy-focused tracking and Crisp Live Chat for customer support. The site is mobile optimized and performs well, with HTTPS enforced and CSRF protections in place. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for security enhancements. Security posture is moderate with good practices like HTTPS and domain transfer protection, but lacks published security policies or incident response contacts. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms, which could pose regulatory risks especially under GDPR. The domain WHOIS data is consistent and supports the legitimacy of the business. Overall, WMD d.o.o. presents a credible and professional web presence with strong business credibility and technical implementation. Strategic improvements in privacy compliance and security hardening would enhance trust and regulatory adherence.

The website ravnagora.hr is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2003 under the Croatian registrar CARNET and uses SiteGround as its hosting provider. Due to the blocked content, no business description, contact information, or security policies are available for analysis. The website lacks privacy and cookie policies, terms of service, and any visible security headers or SSL configuration details. This severely limits the ability to assess the website's security posture, compliance, and business credibility. The domain registration data is consistent and indicates a legitimate long-standing domain, but the lack of accessible content and security best practices reduces trustworthiness.

The website sam.lrv.lt is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page employing Turnstile human verification. This security mechanism blocks direct access to the site's content, resulting in no visible business or organizational information. The domain appears to be associated with the Lithuanian government (lrv.lt), but no WHOIS data could be retrieved to confirm registration details or legitimacy. The lack of accessible content prevents a thorough assessment of the business model, services, or audience. Technically, the site leverages Cloudflare's security and performance services, but no further technology stack or CMS information is available. Security posture is limited to the presence of Cloudflare's WAF, with no additional security headers or policies visible. Privacy and compliance documentation such as privacy policies, cookie consent, or terms of service are absent from the accessible content. Overall, the site’s current state limits any meaningful analysis beyond recognizing the protective security layer in place.

B

Bundesverband Solarwirtschaft (BSW-Solar) e.V.

bsw-solar-shop.de

0

The website www.bsw-solar-shop.de serves as the official online shop for the Bundesverband Solarwirtschaft (BSW-Solar) e.V., a German solar industry association. It offers publications, guides, and studies related to solar thermal energy, photovoltaics, and energy storage. The platform targets investors, members of the association, and other stakeholders interested in solar energy solutions. The business model is primarily e-commerce focused on niche solar energy content, supported by member discounts and campaign information. The site holds a strong position within the German solar energy sector as a trusted source of industry publications. Technically, the website is built on the Magento CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. The site demonstrates good mobile responsiveness and basic accessibility features. Hosting is provided by a German hosting provider (kasserver.com), and the site structure supports clear navigation and SEO best practices. However, some modern security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed), does not expose sensitive data, and avoids vulnerable libraries in the visible code. However, it lacks explicit security headers and published security policies or incident response information. No vulnerability disclosure or security.txt files are present. The site does not appear to use tracking or advertising scripts, which reduces privacy risks but also indicates limited marketing automation. Overall, the website is professional, trustworthy, and focused on its niche market. Security posture is moderate with room for improvement in headers and compliance mechanisms. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. The risk level is low, but strategic improvements in security and privacy transparency are recommended to maintain trust and compliance.

I

INFO WEB s.r.o.

ladnafotografie.cz

0

LADNÁ FOTOGRAFIE is a small local photography studio based in Ladná near Břeclav, Czech Republic, specializing in portrait, still life, product, and other photographic services. The website serves as a professional portfolio showcasing various photographic works and targets local customers seeking photography services. The business is operated by INFO WEB s.r.o., founded in 2019, and maintains an active social media presence on Facebook and Instagram. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various plugins to deliver a visually appealing and responsive user experience. However, the site lacks critical compliance documents such as privacy and cookie policies, and no explicit contact information is provided on the pages analyzed. Security posture is moderate with HTTPS assumed but no security headers detected, and no analytics or tracking scripts are present, indicating minimal user tracking. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security practices.

S

Skypark

skypark.lt

0

Skypark.lt is the online presence of Skypark, the largest trampoline park and entertainment center in Lithuania, offering leisure activities for all age groups across multiple physical locations. The website serves as a landing page directing visitors to specific location subdomains. The business is positioned as a family-friendly entertainment provider with a medium-sized footprint in the hospitality sector, founded in 2014. Technically, the site uses a custom CMS (Greativ), Google Fonts, and Google Analytics with consent management scripts that deny ad and analytics storage by default, indicating some privacy awareness. However, the site lacks visible privacy and cookie policies, contact emails, and security headers, which are areas for improvement. No WAF or blocking mechanisms were detected, and the site content is accessible and safe for general audiences.

The website psaroom.com currently serves as a redirect or domain parking page with minimal accessible content. The domain is registered since 2015 and uses ParkLogic nameservers, a known domain monetization service. There is no visible business information, contact details, or policies on the site, indicating it is not actively used for business purposes. The technical infrastructure is minimal, relying on JavaScript redirects and lacks modern security headers or HTTPS confirmation in the provided data. Security posture is weak due to absence of security best practices and no visible compliance documentation. Overall, the site presents a low trust profile and limited business credibility.

D

Digital Freedom Foundation

documentfreedom.org

0

The Digital Freedom Foundation is a non-profit organization dedicated to promoting digital freedoms through global events such as Software Freedom Day, Hardware Freedom Day, and Document Freedom Day. Their website serves as a hub for event information, resources, and advocacy for open standards and user control over digital data. The organization targets individuals and groups interested in open source, open standards, and digital rights advocacy worldwide. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap and uses Matomo for privacy-conscious analytics. The site is mobile-optimized and provides multilingual support, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses domain transfer protection but lacks DNSSEC and security headers, indicating room for improvement in hardening. Privacy compliance is basic, with cookie consent but no detailed privacy or security policies visible. Overall, the site is professional, trustworthy, and well-aligned with its mission, though it could enhance security and compliance transparency.

K

Knackeriet Coworking Space - Mariatorget - Stockholm

knackeriet.se

0

The website www.knackeriet.se appears to be a Wix-hosted site with minimal content and no visible business or contact information. The domain WHOIS data is missing or the domain is unregistered, raising significant legitimacy concerns. Technically, the site uses standard Wix scripts and polyfills but lacks security headers and privacy policies. There is no evidence of forms or data collection, and no social media or external business links are present. Overall, the site lacks essential trust and compliance indicators, making it unsuitable for business or customer engagement in its current state.

H

H2G Internetagentur AG

h2g.ch

0

H2G Internetagentur AG is a Swiss-based web agency located in Aarau, specializing in consulting, design, development, and hosting of websites and web applications. The company targets businesses and institutions seeking innovative and user-centric digital solutions. Their market position is that of a reputable regional agency with a diverse client base, including international companies and local institutions. The website reflects a professional and modern digital presence with clear service offerings and client references. Technically, the website employs modern web technologies including JavaScript, SVG graphics, and Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Hosting appears to be managed internally or via trusted providers, with HTTPS enforced and minimal tracking. From a security perspective, the site uses HTTPS and respects user privacy by disabling cookies in analytics and honoring Do Not Track signals. However, it lacks some advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. The risk profile is low, with recommendations to enhance security headers and add explicit cookie consent mechanisms to further improve privacy compliance and security posture.

M

Mar-Com Rijeka

mar-com.hr

0

Mar-Com Rijeka is a small Croatian IT service company specializing in website creation, IT support, and graphic design with over 20 years of experience. The company targets local businesses and private individuals in Rijeka and surrounding areas, offering modern and affordable IT solutions. Their market position is supported by a portfolio of over 200 successful projects and positive client testimonials. Technically, the website employs modern web technologies such as jQuery, Slick Slider, and Google Fonts, with good mobile optimization and accessibility features including a UserWay widget. Security posture is solid with HTTPS enforced and a cookie consent mechanism in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a small IT service provider.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

visitnovalja.net

0

visitnovalja.net is an established Croatian hospitality platform specializing in private accommodation listings on the island of Pag. The website offers a comprehensive catalog of apartments, rooms, villas, and family hotels with direct contact options for travelers. It targets tourists seeking affordable and diverse lodging options in popular destinations such as Novalja, Stara Novalja, and surrounding areas. The business model focuses on connecting travelers directly with property owners, avoiding intermediaries. Technically, the site uses a custom CMS with common web technologies including jQuery, Bootstrap, and Google services for analytics and bot protection. The site is mobile optimized and provides a user-friendly search experience. Security posture is moderate with HTTPS enabled and reCAPTCHA integration, but lacks advanced security headers and has minor form input issues. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR explicit statements. Overall, the domain registration is consistent and supports the legitimacy of the business. Strategic improvements in security and privacy compliance would enhance trust and user safety.

The website www.zrce.info serves as an informational and booking platform focused on the Zrce beach festival and party scene, providing accommodation and event details. It targets general audiences interested in travel and nightlife at Zrce beach. The site uses basic web technologies including jQuery, Bootstrap, and Google Analytics for tracking visitor behavior. However, the technical infrastructure lacks modern security features such as HTTPS and security headers, which exposes visitors to potential risks. The absence of privacy and cookie policies further indicates low compliance with data protection standards. The WHOIS data is unavailable due to a malformed request response, limiting the ability to verify domain registration legitimacy and ownership details, which reduces trustworthiness. Overall, the site is functional but basic in design and content quality, with significant room for improvement in security and compliance.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

visitpag.net

0

Visitpag.net is an established Croatian online accommodation platform specializing in private rentals on the island of Pag, particularly in Novalja and surrounding areas. The website offers a comprehensive catalog of apartments, rooms, villas, and family hotels with direct booking contact forms, targeting tourists seeking affordable and direct accommodation options. The business operates with a mature domain registered since 2014 and maintains a consistent brand presence with a focus on local hospitality services. Technically, the site uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Google Analytics, providing a moderately optimized user experience including mobile responsiveness. Security posture is basic with HTTPS implied but lacking advanced security headers and best practices, and privacy compliance is minimal with no cookie consent mechanisms despite GDPR applicability. Overall, the site is functional and credible but would benefit from enhanced security and privacy features to improve trust and compliance.

C

Catalystic

catalystic.cz

0

Catalystic.cz is a small, Czech Republic-based independent platform focused on interdisciplinary research, non-formal education, and public outreach related to exponential changes in technology and society. The website presents a clear business model centered on fostering creativity, criticality, and exponentiality through research initiatives, educational programs, and partnerships. The site uses modern web technologies including Three.js for interactive graphics and is hosted on Forpsi servers with Webflow CMS. While the website is well-designed with good navigation and mobile optimization, it lacks critical compliance documents such as privacy and cookie policies, and does not provide incident response or vulnerability disclosure information. Security posture is moderate with HTTPS assumed but no visible security headers or advanced protections. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

B

Brejlando | take-away divadlo

brejlando.cz

0

Brejlando.cz is a Czech-based small media business specializing in delivering experimental theater recordings through virtual reality technology. The website offers users the ability to experience popular Prague theater performances from the comfort of their homes using modern VR technologies. The business appears to have been founded in 2021, consistent with the domain registration date. The website is built using modern frontend technologies such as Bootstrap and Nuxt.js, providing a good user experience with responsive design and clear navigation. However, the site lacks critical privacy and security policies, including privacy, cookie, and terms of service documents, as well as contact information for users or incident response. No analytics or advertising scripts were detected, indicating minimal user tracking. The domain registration data aligns well with the website content and business profile, supporting legitimacy. Overall, the website is safe for general audiences and professionally presented but requires improvements in privacy compliance and security posture.

B

BRAINZ STUDIOS

brainzstudios.cz

0

Brainz Studios is a medium-sized independent group of creative studios based in Prague, Czech Republic, founded in 2018. They offer a broad range of new media services including digital innovation, strategic communication, VR and AR immersive experiences, and brand building. The company operates multiple specialized studios and incubates startups and platforms, positioning itself as a creative and technological leader in the media industry. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Webflow, Vue.js, and GSAP, with integrated analytics and cookie consent mechanisms, indicating good digital maturity. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies are absent. Overall, the site demonstrates high professionalism and trustworthiness, with clear contact information and client endorsements. Recommendations include publishing privacy and security policies and enhancing security headers to further improve compliance and security.

P

PagFerry.com

pagferry.com

0

PagFerry.com is a small Croatian website providing up-to-date ferry schedules, real-time ferry status, weather forecasts, and webcam feeds for the Prizna - Žigljen ferry route. It serves a niche audience of travelers and locals seeking reliable maritime transport information. The website is well-branded and consistent, with a clear focus on transportation services in the Croatian region. Technically, the site leverages modern web technologies including AMP for mobile optimization, jQuery, Bootstrap, and integrates third-party services such as Google Analytics and Facebook SDK for analytics and social media engagement. The site is mobile-friendly and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and registers a service worker, but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data for the domain is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the site is functional and useful but would benefit from enhanced security practices and verified domain registration to improve trustworthiness.

The website pag-apartments.info serves as a regional accommodation portal focused on the Island Pag area in Croatia, offering listings of private apartments, rooms, and houses for vacationers. It facilitates direct booking with accommodation owners and targets tourists seeking lodging options on the island. The business model is a niche hospitality listing platform with a small market presence. Technically, the site is built with legacy HTML and CSS, lacking modern frameworks or CMS, and shows poor mobile optimization and accessibility. Security posture is weak, with no HTTPS detected and absence of security headers or privacy policies. No contact information or incident response details are provided, limiting trust and compliance. Overall, the site is functional for its purpose but requires significant improvements in security, privacy, and technical modernization to enhance user trust and compliance.

BitByte, obrt za IT usluge, is a Croatian small IT service provider specializing in computer servicing, network solutions, website development, and fiscal software hosting. The company targets both private and business customers, emphasizing professional diagnostics, OEM parts, and secure fiscal solutions via Remaris Master hosted in their data center. The website reflects a professional and consistent brand image with clear service offerings and distributor partnerships. Technically, the site is built on WordPress using Elementor and Yoast SEO, with HTTPS and Google reCAPTCHA implemented for security. However, the absence of privacy and cookie policies and limited WHOIS transparency due to GDPR reduce the overall privacy compliance and trust slightly. Security headers are not evident, suggesting room for improvement in security posture. Overall, the site is functional, well-structured, and suitable for its business purpose.

Pag Outdoor is a small Croatian tourism and outdoor activity provider specializing in kayaking and related experiences on the island of Pag. The website is professionally designed using WordPress with Elementor and Astra theme, supporting multiple languages and optimized for SEO with structured data. The technical infrastructure is modern but lacks some security best practices such as security headers and explicit privacy policies. The security posture is moderate with HTTPS enabled but could be improved with additional headers and vulnerability disclosures. The domain WHOIS data is missing, which raises concerns about registration transparency and trustworthiness. Overall, the website serves its business purpose well but should enhance privacy compliance and security transparency to improve trust and compliance.

E

Eesti Hotellide ja Restoranide Liit

ehrl.ee

0

Eesti Hotellide ja Restoranide Liit (EHRL) is the largest professional association representing the hospitality sector in Estonia, including hotels, restaurants, schools, and supporting members. The organization focuses on advocacy, information dissemination, and training to support its members and the broader hospitality industry. The website reflects a mature digital presence with content primarily in Estonian and an English alternative, targeting hospitality businesses and professionals in Estonia. The business model is membership-based, emphasizing industry representation and service provision. The domain age and WHOIS data support the legitimacy and established nature of the organization. Technically, the website is built on WordPress 6.8.2 with common plugins such as Yoast SEO and CookieYes for cookie consent management. It uses modern JavaScript libraries like jQuery and Swiper for UI components. The site is hosted under Zone Media OÜ, a known Estonian registrar and hosting provider. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism, including granular user controls. However, no explicit security headers were detected, and there is no visible security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the HTML content. The site uses tracking tools such as Google Analytics and Facebook Pixel, with moderate user tracking levels and basic privacy compliance. Overall, the website is professional, trustworthy, and aligned with its business purpose. The main risks relate to the absence of a published privacy policy and security headers, which could be improved to enhance compliance and security posture. The site is safe for general audiences with no adult or questionable content.

The website tallinn.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks access to the actual content. The domain is registered to Spin TEK AS, an Estonian company, consistent with the .ee country code top-level domain. The domain was created in 2010, indicating an established presence likely related to government or municipal services. Due to the access block, no business descriptions, contact information, or policies are visible on the site. The technical infrastructure includes Cloudflare security and analytics services, but no CMS or frameworks are detectable from the challenge page. Security posture cannot be fully assessed, but the presence of Cloudflare indicates some level of protection. Privacy and cookie policies are not found, and no contact or incident response information is visible. Overall, the site appears legitimate but inaccessible for detailed analysis.

R

Regional Development Agency DUNEA LLC.

dubrovnik-neretva.eu

0

The website represents the official Representation Office of the Dubrovnik-Neretva Region in Brussels, serving as a liaison and promotional platform for the region within the European Union. It highlights the Regional Development Agency DUNEA, which coordinates sustainable development and project management for the region. The site targets regional stakeholders, investors, EU institutions, and the general public interested in regional development. Technically, the site is built on Joomla CMS with a modern but moderate tech stack including Bootstrap, jQuery, and Revolution Slider, offering good mobile optimization and user experience. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich but would benefit from enhanced privacy and security measures.

Europe Direct Dubrovačko-neretvanske županije operates as a regional EU information center in Croatia, providing citizens with access to EU-related information, events, and services. The website serves as a communication platform to engage the public in discussions about the European Union's future and policies. It is funded by the European Union and acts as a trusted source for regional EU news and resources. The organization targets local citizens and stakeholders interested in EU affairs, promoting transparency and participation.

Die Schlösserstrasse is a regional development association focused on promoting cultural tourism and heritage sites, specifically castles and fortresses in Southeast Austria and Slovenia. The website serves as an information hub for tourists and cultural enthusiasts, offering event announcements, booking options, and educational content. The organization appears to have a solid market position within its niche, supported by regional tourism partners and a network of castles. Technically, the website uses basic web technologies such as jQuery and JavaScript, with moderate performance and basic mobile optimization. Security posture is average, with no HTTPS or security headers information available from the provided data, and no cookie consent mechanism detected despite EU audience relevance. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy, although the website content and partner references suggest a legitimate operation. Overall, the site is professional and trustworthy but would benefit from improved technical and security measures.

Museums.SI is a Slovenian cultural heritage portal operated by Semantika d.o.o., providing comprehensive information about museums, galleries, exhibitions, collections, educational programs, articles, authors, and virtual exhibitions in Slovenia. The website serves as a national platform to promote Slovenian cultural institutions and their activities to the general public and cultural enthusiasts. Technically, the site is built on the DNN CMS platform, utilizing Bootstrap and jQuery libraries, and integrates Google Analytics for visitor tracking. The site is mobile optimized with a moderate performance profile and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a privacy policy available in Slovenian and a cookie consent banner. No contact emails or phone numbers are explicitly provided on the homepage, which may affect direct communication. Overall, the website is professional, trustworthy, and safe for general audiences.

3

Trije gradovi,dve deželi,ena zgodba - 321 Go

321go.si

0

The website www.321go.si is a Slovenian regional or cultural site, likely focused on tourism or local heritage, as indicated by the title 'Trije gradovi,dve deželi,ena zgodba - 321 Go'. The domain was registered in 2019 with a local Slovenian registrar, consistent with the website's regional focus. The site is multilingual, offering Slovenian, English, and German versions. Technically, the site is built on WordPress and uses WPRocket for optimization, with Google Analytics integrated for visitor tracking. However, the site lacks visible privacy and cookie policies, and no contact information is explicitly provided in the analyzed content. Security headers are not detected, and SSL configuration details are not available, though HTTPS is used. Overall, the site presents good design and user experience but has gaps in privacy compliance and security best practices.

P

Pikant

pikant.hr

0

Pikant is a Croatian design and marketing studio providing a broad range of creative and IT services including web design, graphic design, product design, branding, IT support, and marketing consulting. The company positions itself as a regional leader with a focus on quality and client satisfaction, serving businesses primarily in Croatia and the EU. The website is professionally designed, mobile-optimized, and provides clear contact information and client references. Technically, the site uses modern web technologies such as Google Fonts, Revolution Slider, and Cognito Forms for contact management, with Google Analytics for traffic analysis. Security posture is good with HTTPS enabled and secure form handling, though some security headers and cookie consent mechanisms are missing. The WHOIS data is privacy protected due to GDPR, which is justified for this business type. Overall, the website reflects a legitimate, small-sized business with a solid digital presence.