Security Directory

V

Filmski ured Varaždin | Otkrijte Varaždin kao idealnu filmsku destinaciju

varazdinfilmcommission.eu

0

The website www.varazdinfilmcommission.eu represents the Filmski ured Varaždin, a regional film commission promoting Varaždin, Croatia as an ideal destination for film production. The site provides information about film location services and production support, targeting filmmakers and production companies. Technically, the site is built on WordPress using the Divi theme, with plugins for accessibility and email encoding, and includes a cookie consent mechanism. However, the site lacks visible privacy and terms of service policies, and no explicit contact information is provided, which limits user trust and compliance transparency. Security posture is moderate with HTTPS likely enabled but no detected security headers or advanced protections. Overall, the site is functional and professional but could improve in privacy, security, and contact transparency to enhance trust and compliance.

I

Istarski filmski ured

istriafilmcommission.com

0

Istarski filmski ured is a regional film commission established in 2015 under the Istarska kulturna agencija (IKA) to promote and facilitate audiovisual production in the Istria region of Croatia. The website serves as an informational and promotional platform targeting filmmakers and producers, offering services such as location scouting, permit facilitation, and liaison with public and private entities. Technically, the site is built on WordPress using the Divi theme and several plugins for multilingual support, SEO, accessibility, and cookie compliance. The security posture is adequate with HTTPS enabled and some security best practices observed, though there is room for improvement in security headers and incident response visibility. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service. The absence of WHOIS data for the domain is a notable concern, impacting trust and legitimacy assessment. Overall, the site is professional, content-rich, and serves its business purpose well, but could enhance transparency and security practices.

H

Hrvatsko društvo sudskih vještaka i procjenitelja

sudski-vjestaci.hr

0

Hrvatsko društvo sudskih vještaka i procjenitelja (HDSVIP) is a Croatian non-profit professional association dedicated to the advancement of court experts and appraisers. Established in 2004, it serves as a voluntary, non-governmental, and non-partisan organization focused on improving the role and institution of court experts within the judiciary and related institutions. The association is a recognized member of international bodies such as EuroExpert, HUM, and TEGoVA, enhancing its credibility and network. The website provides information about the association's initiatives, news, events, and resources for members and the public. Technically, the website is built using standard HTML5, CSS, and JavaScript with jQuery 1.8.3. It is hosted behind Cloudflare DNS services, suggesting HTTPS usage, although explicit security headers are not visible in the provided data. The site has a moderate performance profile with basic mobile optimization and accessibility features. Navigation is clear and content is professionally presented, targeting professionals in the judiciary and appraisal sectors primarily in Croatia. From a security perspective, the site shows some good practices such as using Cloudflare and secure form submission for member login. However, the use of an outdated jQuery version and absence of visible security headers indicate potential vulnerabilities. There is no visible privacy or cookie policy, which is a compliance gap under GDPR. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is trustworthy and professional but would benefit from updates to its security posture and privacy compliance. Strategic improvements in these areas would enhance user trust and regulatory adherence.

H

Handelsbanken

handelsbanken.se

0

Handelsbanken is a well-established Swedish bank offering a wide range of financial services including mortgages, personal loans, savings, pensions, and private banking. The website reflects a strong market position with a focus on personalized customer service and digital banking solutions. The content is professionally presented, targeting both private individuals and businesses in Sweden. Technically, the site uses modern JavaScript frameworks and analytics tools, ensuring good performance and mobile optimization. Security practices are solid with HTTPS enforcement and user guidance on fraud prevention, although explicit security headers and a public security policy could enhance trust further. The absence of WHOIS data for the www subdomain is likely a technical artifact rather than a legitimacy concern. Overall, the site is trustworthy, compliant with privacy regulations, and provides comprehensive customer support.

H

Handelsbanken

handelsbanken.no

0

Handelsbanken is a well-established personal and private banking institution operating primarily in Norway, with strong ties to its parent company Svenska Handelsbanken AB (publ). The website emphasizes personalized advisory services without sales targets, positioning itself as a trusted and stable bank with Europe's safest commercial bank ranking and the highest customer satisfaction in Norway. The digital presence is modern, mobile-optimized, and content-rich, targeting private banking customers seeking reliable financial services. Technically, the site uses modern JavaScript frameworks and Adobe Analytics for user insights, with good SEO and accessibility practices. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and vulnerability disclosure are absent. WHOIS data is unavailable due to Norid's privacy policies, but the domain's legitimacy is supported by consistent branding and external references.

S

SAB servis s.r.o.

myplann.cz

0

SAB servis s.r.o. operates as a brokerpool providing comprehensive support services for financial advisors and leaders of advisory firms primarily in the Czech Republic. The company emphasizes simplifying the operational life of its clients through education, events, and a suite of tools designed to enhance advisory practices. Their market position is supported by a clear vision and active engagement with their target audience, positioning them as a proactive player in the financial advisory sector. Technically, the website is built on the Solidpixels CMS platform and leverages modern web technologies including Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and a professional design, though some accessibility features could be improved. Performance is moderate, with a well-structured navigation system and clear content presentation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, no advanced security headers were detected, and there is no visible security or incident response policy published. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, though the professional web presence and social media footprint support the company's credibility. Overall, SAB servis presents a trustworthy and professional digital presence with room for improvement in security transparency and domain registration disclosure. Strategic enhancements in security policies and WHOIS transparency would further strengthen their risk posture and trustworthiness.

@

@levelsio.com | techno optimist wear

makeeuropegreatagain.co

0

The website levelsio.com is an e-commerce platform specializing in branded apparel and merchandise themed around techno optimism and European identity. It offers a niche collection of products such as organic cotton t-shirts, hats, hoodies, mugs, and stickers. The business appears to be small-sized, founded in 2017, and operates primarily online with a focused target audience interested in techno optimism and European culture. The site is powered by the Fourthwall platform and hosted via Cloudflare, indicating a modern and scalable technical infrastructure. Technically, the website employs a robust stack including Google Tag Manager, Google Analytics, Microsoft Clarity, Facebook Pixel, TikTok Analytics, Klaviyo for marketing, Stripe for payments, and Google reCAPTCHA Enterprise for bot protection. The site is mobile-optimized, fast-loading, and uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and some recommended security headers are missing, which could be improved to enhance security posture. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent mechanisms, and bot protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and appear GDPR compliant, though no explicit security policy or incident response information is published. The domain WHOIS data is consistent and legitimate, with no privacy protection, indicating transparency. Overall, the website is professionally designed, secure, and compliant with privacy regulations, serving a niche retail market effectively. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen trust and security posture.

L

LUX-IDent s.r.o.

lux-ident.com

0

LUX-IDent s.r.o. is a leading RFID transponder manufacturer based in Central Europe, specializing in RFID inlays and transponders across multiple frequency bands. The company operates under the parent company HID Global and serves various industries including animal ID, access control, and logistics. Their website is professionally designed, content-rich, and well-structured, targeting business customers requiring RFID solutions. Technically, the site is built on WordPress with common plugins and uses HTTPS with Google Analytics for tracking. Security posture is generally good with enforced HTTPS and no visible vulnerabilities, though security headers and explicit security policies are lacking. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessment. Overall, the website presents a credible business front but would benefit from improved transparency and security practices.

W

Weidmüller Lanškroun s.r.o.

weidmueller-lanskroun.com

0

Weidmüller Lanškroun s.r.o. is a manufacturing subsidiary of the multinational Weidmüller Holding Co&KGaA, specializing in the production of precise spare parts, tools, molds, and providing metal and plastic pressing along with simple automation solutions. The company targets industrial clients requiring high-quality manufacturing services. The website reflects a professional and consistent brand image with clear contact details and partner affiliations, positioning the company as a reliable manufacturing entity within its sector. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Active24 infrastructure. The site is mobile optimized with good navigation and moderate performance. However, no CMS or advanced frameworks were detected, indicating a straightforward static or custom-built site. From a security perspective, the site uses HTTPS (implied by domain status and typical practice), but lacks visible security headers and does not implement DNSSEC. There is no privacy or cookie policy present, which is a compliance gap. No incident response or security policy information is provided. No forms are present on the main page, reducing attack surface but also limiting user interaction. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its security posture and regulatory adherence.

SOMA is a manufacturing company specializing in the production of flexo presses, with a history spanning approximately 25 years. The company positions itself as a top global manufacturer in its niche, emphasizing unique technology development. The website reflects a professional and consistent brand image targeted at businesses requiring specialized industrial equipment. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Smartlook, and integrates Google Maps API for location services. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the website is legitimate and professional but would benefit from enhanced security and privacy disclosures.

S

SANELA spol. s r.o.

sanela.cz

0

SANELA spol. s r.o. is a Czech-based company specializing in sanitary technology products, including stainless steel sanitary equipment, RFID payment systems, and smart sanitary water and energy management solutions. The company targets business and institutional customers requiring advanced sanitary technology solutions. The website reflects a medium-sized manufacturing business with a consistent brand presence and a professional digital footprint. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google Tag Manager and Analytics for tracking, and uses a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and includes reCAPTCHA for forms, but lacks explicit security headers and incident response information. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility.

O

ORPA Papír a.s.

orpa.cz

0

ORPA Papír a.s. is a well-established Czech manufacturer specializing in paper-based tubular packaging solutions, including Tubusbox and paper tubes, serving food and industrial sectors. With over 140 years of tradition and multiple ISO and industry certifications, the company positions itself as a reliable and quality-focused packaging partner. The website reflects a professional and modern digital presence with rich multimedia content, clear navigation, and multilingual support. Technically, the site uses modern frameworks and tracking technologies with appropriate consent mechanisms, hosted by a reputable Czech provider. Security posture is good with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration data aligns well with the company's history and location, supporting legitimacy.

K

Kozák Svitavy, s.r.o.

kozak-svitavy.cz

0

Kozák Svitavy, s.r.o. operates a wholesale e-commerce platform specializing in candles, home and garden accessories, and related decorative products. The website targets wholesale customers primarily in the Czech Republic, offering a broad product range including seasonal and floristry items. The business model focuses on B2B sales through an online portal, positioning itself as a regional supplier with a clear product focus. The website content is professionally presented in Czech, with clear navigation and relevant business information, including contact details and ethical reporting channels. Technically, the site is built on ASP.NET WebForms with Kentico CMS, utilizing common JavaScript libraries such as jQuery, bxSlider, and fancyBox. Google Analytics and Google Tag Manager are employed for user tracking and analytics. The site shows moderate performance and good mobile optimization but lacks some advanced accessibility features. Security measures include HTTPS and CSRF tokens, but there is an absence of security headers and cookie consent mechanisms, indicating room for improvement in security posture and privacy compliance. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. The website provides clear contact information and an ethical whistleblowing email, which are positive trust signals. Overall, the security posture is moderate but could be enhanced by implementing security headers, cookie consent, and publishing a vulnerability disclosure policy. The overall risk assessment suggests the website is functional and legitimate for its business purpose but would benefit from improved transparency in domain registration and enhanced privacy and security practices. Strategic recommendations include verifying domain registration details, implementing GDPR-compliant cookie consent, adding security headers, and establishing a formal security policy to strengthen trust and compliance.

The website vakzlin.cz is currently inaccessible, returning a 403 Forbidden error page served by an nginx web server. This prevents any meaningful analysis of the site's content, business model, or security posture. The domain is registered since 1999 with the registrar REG-ACTIVE24 and uses name servers consistent with this provider, indicating a legitimate registration history. However, the lack of accessible content and absence of metadata, contact information, or policies severely limits the ability to assess the company's operations or compliance status. Technically, the site is hosted on Active24 infrastructure but lacks visible security headers or HTTPS confirmation. The security posture cannot be evaluated due to the blocked content. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user and security experience.

V

VOŠPS a SPgŠ Kroměříž

ped-km.cz

0

VOŠPS a SPgŠ Kroměříž is an educational institution based in the Czech Republic offering secondary and higher vocational education focused on pedagogical professions. The website targets students, parents, and educational professionals seeking meaningful pathways into teaching careers. It provides comprehensive information about study programs, admissions, school events, and additional educational services. The institution maintains a consistent brand presence and clear communication channels including phone, email, and social media. Technically, the website is built on the iCard.cz platform using Bootstrap 3.3.2 and Vue.js 3.2.45, with modern UI components and responsive design. It integrates Google Tag Manager for analytics and employs a robust cookie consent mechanism supporting GDPR compliance with multi-language support. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent best practices. However, no explicit security headers were detected, and there is no visible security policy or incident response information. The WHOIS data for the domain is missing, which reduces domain trustworthiness but the website content and contact details appear legitimate and professional. Overall, the website is well-structured, content-rich, and compliant with privacy regulations, making it a trustworthy source for educational information. The main risk lies in the lack of domain registration transparency and some missing security best practices. Strategic improvements in security headers and domain registration visibility are recommended.

L

Little Greta

littlegreta.co.uk

0

Little Greta is a well-established European strategic creative agency founded in 2003, with a domain registered since 2011. The company offers a comprehensive range of services including strategy, design, communication, and digital solutions, targeting businesses seeking creative consultancy. The website reflects a professional and award-winning agency with a strong market position in the media sector. Technically, the site is built on WordPress with modern integrations such as Yoast SEO, Google Analytics, Hotjar, and Smartlook, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit security policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in privacy and security transparency.

E

EKOME, spol. s.r.o.

ekome.cz

0

EKOME, spol. s.r.o. is a Czech company specializing in environmental emission measurements and ecological consulting, with a focus on stationary pollution sources and workplace risk factors. The company holds multiple accreditations and authorizations from the Ministry of the Environment, indicating a reputable position in its sector. Their website reflects a professional service provider targeting businesses and organizations requiring environmental compliance and consulting services. Technically, the website is built on WordPress with modern plugins and demonstrates good SEO and privacy compliance, including GDPR and cookie consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. The absence of WHOIS data limits full trust assessment but the visible business information and certifications support legitimacy.

A

Avenir Financial Group

avenirgroup.cz

0

Avenir Financial Group is a Czech Republic based financial advisory company with over 20 years of experience among its founders. The company offers a comprehensive range of financial services including insurance, investment, real estate, mortgage advisory, and vehicle financing. Their business model focuses on providing clients with access to a broad portfolio of vetted financial institutions and products, emphasizing fair and quality service. The website reflects a mature digital presence built on Joomla CMS with Bootstrap and jQuery, featuring a cookie consent mechanism and Google Analytics integration with IP anonymization. Contact information and partner affiliations are clearly presented, enhancing business credibility. However, the absence of WHOIS data limits domain trust evaluation. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, user-friendly, and compliant with privacy regulations, targeting clients seeking financial and insurance services in the Czech market.

S

S prací v batůžku – Práce na cestách, projekty, osobní blog.

spracivbatuzku.cz

0

The website spracivbatuzku.cz is a personal blog and freelance portfolio operated by Lucie Janíková, focusing on travel experiences, creative projects such as graphic design, illustration, writing, and online lessons. The site targets travel enthusiasts and clients seeking creative freelance services. The business model is small-scale, project and commission-based, with a niche market position as a personal brand. Technically, the site is built on WordPress using Elementor, hosted by Wedos, and employs standard web technologies including jQuery and Font Awesome. Performance and mobile optimization are good, though accessibility and SEO could be improved. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Contact is available via a contact form, with social media presence on Facebook and Instagram. No WAF or blocking mechanisms are detected, and the domain registration is consistent and appropriate for the business age. Overall, the site is professional and trustworthy but could benefit from enhanced privacy compliance and security hardening.

H

Handelsbanken

handelsbanken.ee

0

Handelsbanken is a well-established Swedish bank founded in 1871, recognized as one of the world's strongest banks with a decentralized operational model and strong local presence in Sweden, Norway, the Netherlands, and the UK. The website provides comprehensive information about the bank's services, investor relations, sustainability efforts, and press releases, targeting banking customers, investors, and the general public. The digital infrastructure leverages modern web technologies including JavaScript frameworks and Adobe Analytics for performance and user insights. Security practices include HTTPS enforcement, cookie consent mechanisms, and sandboxed iframes for external content, though explicit security headers are not visible in the provided data. The WHOIS data is incomplete, lacking registrar and creation details, which is unusual but does not detract from the site's legitimacy given the professional content and branding. Overall, the site demonstrates a mature digital presence with strong business credibility and good privacy compliance.

Z

ZB Invest

zbi.hr

0

ZB Invest is a Croatian financial investment company specializing in investment funds and related services. The website provides fund pricing, yield data, calculators, and contact options primarily targeting Croatian investors. The domain is well-established since 2000 and hosted with professional infrastructure including Akamai CDN services. The website uses standard JavaScript libraries for UI and data visualization but lacks modern CMS or frameworks. Security posture is basic with no visible security headers or privacy policies, and no contact information is explicitly provided in the analyzed content. Overall, the site is functional but could improve in privacy compliance and security best practices.

Z

Zagreb nekretnine d.o.o.

zane.hr

0

Zane nekretnine is a well-established Croatian real estate company operating since 1998, offering a comprehensive range of services including property brokerage, valuation, consulting, and market analysis. The company targets a general audience seeking real estate services in Croatia and maintains a professional online presence with a clear and consistent brand. The website is hosted on Akamai infrastructure, uses modern JavaScript libraries for UI components, and implements a cookie consent mechanism compliant with GDPR requirements. Security posture is solid with HTTPS enforced and CSRF protection in forms, though there is room for improvement in security headers and explicit security policies. Overall, the website is accessible, professional, and trustworthy, reflecting the company's long-standing market position.

P

Podravka

podravka.io

0

The website Podravka.io presents a minimalistic landing page with only a logo and no substantive business content or descriptions. The domain is registered since 2017 with privacy protection, which limits transparency about ownership. The site uses Bootstrap 4 for styling and is hosted with Microsoft Azure DNS services. There are no privacy, cookie, or terms of service policies, nor any contact or social media information, indicating a very low digital maturity level. Security posture is weak with no visible security headers or SSL configuration details provided. The lack of business and compliance information reduces trust and credibility significantly.

G

Games Croatia

gamescroatia.com

0

Games Croatia is an official project website dedicated to promoting the gaming industry and innovation within Croatia. The site serves as a hub for information about the project, its partners, public funding opportunities, and activities related to the Croatian games sector. The website targets game developers, industry stakeholders, and governmental bodies interested in fostering growth and collaboration in the gaming ecosystem. The business model appears to be informational and collaborative, supported by public or governmental funding, positioning itself as a niche regional initiative with a focus on technology and innovation. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as HTTPS with HSTS, Google reCAPTCHA for form security, and Google Fonts for typography. The site demonstrates good mobile optimization and a professional design, although some accessibility features could be enhanced. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the website enforces HTTPS and HSTS, uses reCAPTCHA to protect forms, and does not expose sensitive data or vulnerable libraries. However, privacy compliance could be improved by implementing a cookie consent mechanism and publishing explicit security and incident response policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and partner affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy front for the Games Croatia project but would benefit from enhanced privacy compliance and clearer domain registration information to strengthen trust and regulatory adherence.

H

HAVC

filmingincroatia.hr

0

Filming in Croatia is an official film commission program managed by HAVC, promoting Croatia as a prime filming destination with attractive incentive programs and a network of regional film offices. The website serves as a comprehensive resource for film producers and industry professionals, offering detailed information on incentives, locations, crews, and services. The site is well-positioned in the media sector, supported by government affiliation and international memberships, enhancing its credibility and market presence. Technically, the website is built on WordPress with modern SEO and tracking tools, hosted via a reputable registrar and DNS infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Overall, the site demonstrates a professional, trustworthy, and user-friendly digital presence suitable for its target audience.

D

Desk Kreativne Europe – Ured MEDIA Hrvatske

mediadesk.hr

0

Desk Kreativne Europe – Ured MEDIA Hrvatske is the official Croatian office supporting the Creative Europe MEDIA sub-programme. It serves Croatian audiovisual creators, film and TV professionals, and video game authors by providing information, organizing workshops, and facilitating access to EU funding opportunities. The website reflects a well-established entity with over 15 years of operation, consistent with its domain age and WHOIS data. The business model is non-profit and government-supported, focusing on cultural and media sector development within Croatia and the EU framework. The target audience includes professionals and organizations in the audiovisual and cultural sectors seeking EU MEDIA programme support. Technically, the website is built on the Webflow CMS platform, utilizing modern web technologies such as jQuery, Google reCAPTCHA, Google Tag Manager, and Plausible Analytics. Hosting and DNS are managed via Cloudflare, ensuring reliable performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with bilingual content in Croatian and English. The presence of accessibility features and cookie consent mechanisms indicates a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms from abuse. However, explicit security headers are not detected in the HTML content, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found. Privacy compliance is supported by visible privacy and cookie policies, with GDPR considerations addressed. Contact information is clearly provided, enhancing trust and transparency. Overall, the website presents a low-risk profile with a strong business credibility and good technical implementation. It effectively serves its niche audience with relevant content and services. Strategic recommendations include enhancing security headers, formalizing incident response policies, and maintaining up-to-date third-party components to sustain security and compliance standards.

F

Fortressa

fortressa.com

0

Fortressa is a technology company providing an app store platform for open-source applications, enabling organizations to replace costly per-seat SaaS products with self-hosted, privacy-focused alternatives. The website presents a clear business model centered on cost savings, data ownership, and customization for businesses seeking control over their software stack. The company appears to be established, with a domain registered since 2004 and a consistent brand presence. Technically, the website uses modern front-end technologies such as Tailwind CSS, Alpine.js, and HTMX, delivering a responsive and user-friendly experience. The site is hosted securely with HTTPS, though some security best practices like DNSSEC and security headers are not fully implemented. Analytics are handled via Shynet, a privacy-conscious alternative, indicating a commitment to user privacy. Security posture is moderate; while HTTPS is enforced and forms include basic anti-bot challenges, the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is partial, with a privacy policy and terms of service present but lacking a cookie consent mechanism. Contact options include email forms and social media, but no phone or physical address is provided. Overall, Fortressa presents a trustworthy and professional online presence with a niche focus on open-source SaaS alternatives. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance their security posture and regulatory alignment.

Arrowloop.com is a domain registered since 2014 under Porkbun LLC with Cloudflare nameservers. The website content is extremely minimal, consisting solely of a placeholder message with no business description, contact information, or policies. This lack of content and transparency limits the ability to assess the company's market position, services, or target audience. Technically, the site uses Cloudflare for DNS and hosting but lacks DNSSEC and security headers, indicating a basic security posture. There is no evidence of privacy or cookie policies, GDPR compliance, or incident response readiness. Overall, the website appears inactive or under development, with poor content quality and minimal technical sophistication.

P

Pro-Link

pro-link.pl

0

Pro-Link is a Polish digital marketing and web development company specializing in building PrestaShop e-commerce stores, SEO/SEM services, hosting, and domain registration. Established in 2004, the company has a solid market presence with a focus on small to medium businesses seeking online store solutions and digital marketing support. Their website reflects a professional and consistent brand image, targeting businesses in Poland. Technically, the site is built on WordPress with modern technologies such as Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security measures include HTTPS and Google reCAPTCHA on contact forms, but lack advanced security headers and DNSSEC. The site complies well with GDPR, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, Pro-Link demonstrates a mature digital infrastructure with room for security enhancements.

P

PRIMALAB d.o.o.

primalab.hr

0

PRIMALAB d.o.o. is a Croatian company specializing in providing comprehensive laboratory and process analytical equipment solutions, including sales, service, calibration, validation, and expert consulting. Established in 2010, the company serves primarily B2B clients in laboratory and industrial process sectors, offering a broad portfolio of reputable brands. The website reflects a mature digital presence built on the DotNetNuke CMS platform, with modern JavaScript libraries and integration of analytics and marketing tools such as Google Analytics and Mailchimp. The site is well-structured, mobile-optimized, and compliant with GDPR and cookie regulations, providing clear contact information and social media links. Security posture is good with HTTPS and Cloudflare DNS, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and the WHOIS data aligns well with the business claims, indicating a trustworthy domain.

M

M-ERA.NET

m-era.net

0

M-ERA.NET is an EU-funded consortium network focused on coordinating European research and innovation programs in materials science and battery technologies, supporting the European Green Deal. The website presents a professional and content-rich platform with detailed information about joint calls, success stories, and consortium activities. The technical infrastructure uses modern JavaScript libraries and frameworks, with a focus on usability and accessibility. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies are not published. WHOIS data is unavailable, which slightly reduces trust but the website's EU funding claims and contact information support legitimacy. Overall, the site is well-maintained and serves its target audience effectively.

The Eagle Project website represents a small, specialized technology entity focused on the development and distribution of the Eagle scripting language, a member of the Tcl family. The project emphasizes security, sandboxing, and integration with the Common Language Runtime, targeting developers and technical users interested in scripting and secure runtime environments. The business model is community-driven with open source code repositories, downloadable binaries, and active community forums. The website content is technical and well-structured but lacks modern web features such as privacy policies and advanced security headers. Technically, the site is hosted by Hurricane Electric and built using older HTML standards with CSS styling. It supports multiple platforms including Windows and cross-platform runtimes like Mono and .NET Core. The site lacks modern CMS or analytics tools and shows basic mobile optimization and accessibility. Digitally signed executables and archives demonstrate good security practices for software distribution, although the website itself does not enforce HTTPS visibly or implement security headers. From a security perspective, the site shows strengths in code signing and authenticity verification but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. No forms or data collection points are present, reducing attack surface but also limiting user engagement. The absence of privacy and cookie policies indicates a gap in compliance with modern data protection regulations. Overall, the website is safe, professional, and trustworthy for its niche audience but would benefit from enhanced privacy compliance, security hardening, and improved technical modernization to increase its security posture and user trust.

W

World Kidney Day 2026

worldkidneyday.org

0

World Kidney Day 2026 is a global health awareness campaign focused on educating the public, health professionals, patients, and researchers about the importance of kidney health. The website serves as a central hub for campaign information, educational resources, interactive quizzes, and global event coordination. It positions itself as a reputable non-profit initiative with a consistent brand and strong social media presence across major platforms. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and a clearly visible privacy policy page, which are areas for improvement. The WHOIS data is privacy protected or unavailable, which is common for non-profit organizations, but the overall legitimacy is supported by professional site design and external social media links. The site does not contain any adult or questionable content and is safe for general audiences.

I

International Society of Nephrology

theisn.org

0

The International Society of Nephrology (ISN) is a globally recognized non-profit professional association dedicated to advancing kidney health worldwide through education, research, advocacy, and collaboration. The organization targets healthcare professionals, researchers, and nephrologists, providing key services such as training, conferences, publications, and global health initiatives. The website reflects a mature and professional digital presence consistent with a large healthcare non-profit entity. Technically, the website is built on WordPress with a modern technology stack including popular plugins and marketing tools such as Google Analytics, Facebook Pixel, and Cookiebot for privacy compliance. The site is mobile-optimized, SEO-friendly, and uses structured data to enhance search visibility. Performance is moderate with good accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. While explicit security headers are not fully evident, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for organizations of this nature, and does not raise immediate concerns. Overall, the security posture is solid but could be improved by adding explicit security headers and publishing a security policy. The overall risk assessment is low, with the website demonstrating strong business credibility, good privacy compliance, and a trustworthy online presence. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and formalizing incident response contacts to further strengthen security and trust.

V

Vox Communications

vox-communications.com

0

Vox Communications is a Croatian media and entertainment company specializing in cinema, TV, and digital advertising services, including event hosting and special projects. The company targets advertisers seeking to leverage CineStar cinema networks and related digital platforms. The website is professionally designed, multilingual, and optimized for SEO, reflecting a medium-sized enterprise with a consistent brand presence. Technically, the site runs on WordPress with modern libraries and Google Tag Manager integration, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled but lacks some security headers and cookie consent mechanisms, representing areas for improvement. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional web presence and business information. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing a vulnerability disclosure policy to strengthen trust and compliance.

G

Globe Trade Centre

gtcgroup.com

0

Globe Trade Centre (GTC) is a leading real estate investor and developer focused on commercial office and retail properties in Central and Eastern Europe (CEE) and South Eastern Europe (SEE). The company emphasizes sustainable business practices and ESG initiatives, targeting investors, tenants, and partners in the real estate sector. The website reflects a mature digital presence with structured investor relations, portfolio showcases, and news updates. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and is built on the Sitecore CMS platform, offering good mobile optimization and accessibility. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks visible security headers and explicit incident response information. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues, though the professional website content suggests legitimacy. Overall, the site scores well on content quality and privacy compliance but should improve transparency on security policies and domain registration verification.

A

Arena Park

arenapark.hr

0

Arena Park is a medium-sized retail shopping center located in Croatia, owned by the parent company NEPI Rockcastle. The website serves as a digital portal for customers to explore stores, promotions, and services offered at the mall. It targets a general audience interested in shopping and leisure activities. The site is built on WordPress with a modern tech stack including Bootstrap and jQuery, optimized for mobile and SEO. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some advanced security headers and policies could be added. Privacy compliance is strong, with clear GDPR cookie management and privacy policies. Overall, the website is professional, trustworthy, and well-maintained, supporting the business's market position as a regional retail hub.

A

Autoportaal OÜ

autoportaal.ee

0

Autoportaal.ee is a well-established Estonian automotive portal founded in 2010, operated by Autoportaal OÜ. The website serves as a marketplace for new and used cars, including rental listings, targeting Estonian consumers interested in buying, selling, or renting vehicles. The business model focuses on providing free ad postings to attract a broad user base. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile optimized and SEO friendly, with comprehensive meta tags and Open Graph data enhancing social media sharing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit privacy and terms of service policies are missing, representing compliance gaps. WHOIS data confirms domain legitimacy with consistent registration details and a long operational history. Overall, the website presents a professional and trustworthy platform in the transportation sector.

W

WFB Wirtschaftsförderung Bremen GmbH

ueberseestadt-bremen.de

0

The Überseestadt Bremen website represents a major urban development project managed by the WFB Wirtschaftsförderung Bremen GmbH, a public economic development entity in Bremen, Germany. The site provides comprehensive information about the project, including infrastructure, real estate, business opportunities, cultural events, and community engagement. It targets businesses, residents, and visitors interested in the evolving district. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Matomo analytics, with a responsive design and good accessibility features. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers and cookie consent mechanisms could be improved. The domain registration aligns with the public nature of the project, and no suspicious patterns were detected. Overall, the site is professional, trustworthy, and well-maintained, supporting the project's goals effectively.

BIS Bremerhaven is a regional economic development organization focused on supporting businesses and sustainable growth in the Bremerhaven area of Germany. The website presents a professional and well-structured digital presence, offering information on business services, networking, sustainability initiatives, and sector-specific support. The company targets local businesses, entrepreneurs, and investors, positioning itself as a key regional economic facilitator. Technically, the website uses modern web technologies including JavaScript and Cookiebot for GDPR-compliant cookie management, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published security policies and advanced security headers. Privacy compliance is basic, with no explicit privacy policy or terms of service pages found in the provided content. Overall, the website is trustworthy and professional, with room for improvement in security transparency and privacy documentation.

GoFor!Artists is a professional German-language platform specializing in local artist booking for various events including weddings, birthdays, corporate events, and more. The platform offers a transparent and secure booking process, supported by state funding from the German Federal Ministry of Economics, which adds credibility. The website is well-designed, mobile-optimized, and rich in content, providing users with easy navigation and comprehensive information about artists and event types. Technically, the site leverages modern frameworks such as Next.js and Material-UI, and integrates multiple analytics and marketing tools including Google Tag Manager, Matomo, and HubSpot. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not published. The absence of WHOIS data for the domain is a notable concern, potentially indicating recent registration or privacy protection, which slightly reduces trust. Overall, the platform presents a trustworthy and professional service for event organizers seeking entertainment solutions.

S

Salexor

salexor.com

0

Salexor is a technology-driven SaaS company specializing in AI-powered digital marketing solutions designed to maximize conversion rates and reduce marketing spend. The platform offers a comprehensive suite of products including real-time visitor engagement, AI agents, audience segmentation, email campaigns, automation flows, targeted offers, content management, analytics, mobile apps, and integrations with leading e-commerce and CRM platforms. The company targets businesses primarily in North America and Europe, aiming to enhance digital sales performance and customer engagement. The website is professionally designed, mobile-optimized, and provides clear navigation and detailed product information. Technically, the site leverages modern web technologies such as Webflow CMS, Google Tag Manager, and PureCounter.js, ensuring good performance and user experience. Security posture is solid with HTTPS enforced and secure form handling, though it lacks some security headers and a cookie consent mechanism. WHOIS data is missing or indicates the domain may be newly registered or privacy protected, which slightly impacts trust but is mitigated by the presence of a parent company, Sirma, and detailed contact information. Overall, Salexor presents a credible and mature digital marketing platform with room for improvement in privacy compliance and security transparency.

G

Gransy d.o.o.

idealno.rs

0

Idealno.rs is a Serbian online price comparison platform operated by Gransy d.o.o., established in 2015. The website offers users the ability to compare prices, read product reviews, and access shopping guides, positioning itself as a leading shopping assistant in the Serbian market. The platform targets general online shoppers seeking the best deals and product information. Technically, the website employs modern JavaScript technologies, integrates Google Tag Manager and DoubleClick for analytics and advertising, and uses the Didomi Consent SDK for GDPR-compliant cookie consent. The site is hosted on CDN infrastructure, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS but lacks visible security headers and does not publish a security policy or incident response contacts. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service were found in the provided content. Overall, the domain registration is consistent with the business, showing legitimacy and appropriate domain age. The website is accessible without WAF or blocking mechanisms.

Z

Zone Media OÜ

kuhuviia.ee

0

Kuhuviia.ee is a localized Estonian platform focused on facilitating waste sorting and repair services by providing an interactive map and search functionality for users to find waste disposal points and repair locations. The service is supported by Zone Media OÜ, a local Estonian company, and has been operational since 2014. The platform integrates Google Maps API for geolocation and mapping, and offers user engagement features such as adding new repair points and saving favorites. The website targets general users interested in environmental sustainability and waste management within Estonia. Technically, the website employs a modern JavaScript stack including jQuery, jQuery UI, and Google Maps API, with asynchronous loading of data from a dedicated API. The site is mobile-optimized and provides a good user experience with clear navigation and search autocomplete. However, some minor server-side errors are exposed in the HTML source, and no advanced security headers are implemented, indicating room for improvement in security hardening. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, and exposes a PHP warning which could leak information. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism detected. No direct contact information or incident response contacts are found, which may impact trust and compliance. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk assessment suggests the site is legitimate and functional but would benefit from improvements in security and privacy compliance to enhance trustworthiness and regulatory adherence. Strategic recommendations include fixing server-side errors, enabling DNSSEC, implementing security headers, and adding cookie consent mechanisms to align with GDPR requirements.

E

Ebner Media Group GmbH & Co. KG

leatcon.com

0

LEaT con is a prominent networking convention focused on the live entertainment, broadcast, and ProAV industries, held annually in Hamburg, Germany. The event attracts thousands of professionals and hundreds of brands, offering workshops, keynote sessions, and community networking opportunities. The website reflects a mature digital presence with professional branding and comprehensive event information. The parent company, Ebner Media Group GmbH & Co. KG, supports the platform, lending credibility and industry standing. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Usercentrics for GDPR compliance. It uses Google Tag Manager for analytics and tracking, and the site is mobile-optimized with good performance. Security practices include HTTPS enforcement and consent management, though some security headers and incident response information are absent. The security posture is solid but could be improved by adding explicit security policies and vulnerability disclosure mechanisms. The lack of WHOIS data for the domain is a notable gap, slightly reducing trustworthiness but not undermining the overall legitimacy given the professional content and parent company association. Overall, LEaT con's website is a well-constructed, professional platform serving a specialized industry audience with good privacy and security awareness. Strategic improvements in transparency and security documentation would enhance trust and compliance further.

A

Avaamo, Inc.

avaamo.com

0

Avaamo, Inc. is a technology company specializing in advanced conversational AI platforms for enterprises, with a focus on agentic AI that enables businesses to deploy AI agents across customer support, healthcare, workplace, and contact center domains. The company is positioned as a medium-sized enterprise founded in 2014, with a strong market presence in the AI technology sector. Their website reflects a mature digital infrastructure built on WordPress with modern plugins and integrations, supporting a professional and user-friendly experience. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in explicit security headers and incident response disclosures. Overall, Avaamo demonstrates a high level of business credibility and technical sophistication suitable for enterprise clients.

M

memo-media

allfor.events

0

ALL FOR! EVENTS is a professional membership service by memo-media Verlags-GmbH, targeting event planners in the German-speaking market. It offers access to a large database of event industry contacts, project planning tools, personalized research support, and industry publications. The website is built on WordPress with Elementor and integrates HubSpot analytics and marketing tools. The site is well-structured, mobile-optimized, and SEO-friendly. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant. WHOIS data is privacy protected but the domain appears actively managed and legitimate. Overall, the site presents a trustworthy and professional digital presence for its niche market.

D

Deutsche Bank Park

deutschebankpark.de

0

Deutsche Bank Park is a prominent multifunctional arena located in Germany, serving as the home stadium for the Bundesliga football club Eintracht Frankfurt. The venue also hosts a variety of concerts and large-scale events, positioning itself as a key player in the hospitality and entertainment sectors. The website reflects this focus with event listings, promotional content, and branding consistent with the associated football club. Technically, the site is built using modern frameworks such as Gatsby and React, leveraging CDN services for media delivery, which supports a moderate to good performance and mobile optimization. However, some areas such as accessibility and explicit privacy compliance could be improved. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal security policies, which are recommended for enhanced protection. Overall, the site is professional and trustworthy but would benefit from improved privacy and security disclosures to align with best practices.

F

Future of Festivals GmbH

futureoffestivals.com

0

Future of Festivals GmbH operates a professional event and networking platform focused on the festival industry, targeting festival organizers, service providers, associations, decision-makers, and trainees. The website provides comprehensive event information, exhibitor registration, a festival campus for job seekers, and a delegates database, positioning itself as a niche but important player in the festival event sector in Germany. The company was founded in 2019 and maintains a consistent and professional brand presence online. Technically, the website is built on WordPress with a modern plugin ecosystem including Contact Form 7, Cookiebot for consent management, WP Statistics for analytics, and Wistia for video hosting. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Hosting is likely provided by InterNetX GmbH, consistent with WHOIS data. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and suitable for its target audience. Strategic improvements in security headers, incident response transparency, and terms of service publication would enhance trust and compliance further.

P

The biggest Electronic Music Festival in Germany - PAROOKAVILLE

parookaville.com

0

PAROOKAVILLE is a prominent electronic music festival based in Germany, targeting electronic music enthusiasts and festival attendees. The website promotes the event scheduled for July 2026 at Airport Weeze, emphasizing an immersive experience. The business model revolves around event organization and ticket sales, positioning itself as the largest electronic music festival in Germany. Technically, the website is built on TYPO3 CMS, integrates Google Tag Manager for analytics, and uses Usercentrics for cookie consent management, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and lack of published privacy and terms policies indicate room for improvement. The missing WHOIS data raises concerns about domain legitimacy, although the website's professional design and active content suggest operational status. Overall, the site is safe for general audiences with no adult content detected.