Security Directory

O

Ogden City

ogdencity.com

0

Ogden City operates an official municipal government website serving residents, businesses, and visitors of Ogden, Utah. The site provides comprehensive access to city services, community resources, government agendas, and contact information. It maintains a consistent brand presence and integrates social media channels to engage the community. The website is built on a CivicPlus CMS platform and leverages modern JavaScript libraries and analytics tools to monitor performance and user engagement. While the site is well-structured and professionally designed, it lacks some advanced privacy compliance features such as explicit cookie consent and published security policies. The absence of WHOIS data is typical for government domains due to privacy protections and does not detract from the site's legitimacy. Overall, the site demonstrates a solid digital infrastructure suitable for a government entity.

T

The Seattle Public Library

spl.org

0

The Seattle Public Library operates as a large, government-affiliated public library system serving the Seattle community. It provides free access to a wide range of books, media, online resources, and community programs. The website reflects a professional and comprehensive digital presence with clear navigation, rich content, and multiple service offerings tailored to a broad audience including families, students, and adults. The library's market position is strong as a key public service institution in the region. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Typekit fonts, and integrates Google Analytics and Google Translate for enhanced user experience and accessibility. The site is mobile-optimized and accessible, with good SEO practices evident in metadata and structured navigation. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and secure forms but lacks some advanced security headers and a cookie consent mechanism, which are recommended for enhanced protection and compliance. The absence of WHOIS data limits domain trust analysis, but the website's professional appearance and clear contact information mitigate concerns. No vulnerabilities or exposed sensitive data were detected. Overall, the site is trustworthy, safe, and well-maintained, serving its public service mission effectively. Strategic improvements in security headers, privacy compliance, and transparency around incident response would further strengthen its posture.

U

University of Washington

washington.edu

0

The University of Washington website serves as the official digital presence of a major public research university in the United States. It offers comprehensive information about academic programs, research initiatives, campus news, and community engagement. The site targets students, faculty, staff, alumni, and the general public, providing resources and updates relevant to these groups. The university holds a strong market position as a leading educational institution with a broad range of services including continuing education and online learning. Technically, the website is built on WordPress and leverages a modern technology stack including jQuery, Backbone.js, and multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers could be improved. Performance is moderate, with a well-structured and professional design that supports a positive user experience. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts for analytics and marketing. However, it lacks some recommended security headers like Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a gap. WHOIS data is unavailable due to .edu domain restrictions, but the site’s branding and content strongly indicate legitimacy. Overall, the University of Washington website is a high-quality, trustworthy platform that effectively supports its educational mission. Strategic improvements in security headers and privacy consent mechanisms would enhance its security posture and compliance. The site’s extensive use of analytics and marketing tools suggests a mature digital strategy, balanced with a professional and user-friendly design.

B

Buffer

buffer.com

0

Buffer is a well-established social media management platform founded in 1996, offering a comprehensive suite of tools for content creation, publishing, analytics, engagement, and team collaboration. The company targets small businesses and social media professionals, positioning itself as a trusted and user-friendly SaaS solution with over 190,000 active users. The website reflects a mature digital presence with excellent design, clear navigation, and strong branding consistency. Technically, Buffer employs modern web technologies including React and Next.js, hosted behind Cloudflare, ensuring fast performance and robust security. The site implements comprehensive cookie consent mechanisms aligned with GDPR requirements and uses multiple analytics and marketing tools responsibly. Security posture is strong with HTTPS, security headers, and CSRF protections, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, Buffer demonstrates high business credibility and digital maturity, with minor recommendations to enhance security transparency and DNS security. The website content is safe for general audiences and free from adult or questionable material.

The website web3.career is currently inaccessible due to a Cloudflare security challenge page that requires human verification via Turnstile captcha. No actual business content, metadata, or contact information is available for analysis. The site appears to be protected by Cloudflare's security mechanisms, which block automated access and obscure the underlying content. Consequently, no meaningful insights about the business, its services, or security posture can be derived from the provided data. The technical infrastructure is limited to Cloudflare's challenge platform and analytics beacon, with no visible CMS or frameworks. Security headers and SSL configuration details are not available. Overall, the site cannot be properly evaluated until the security challenge is passed and full content is accessible.

D

Dojo Bali

dojobali.org

0

Dojo Bali is a small hospitality business operating a coworking and coliving space in Canggu, Bali, Indonesia. The company has been active since 2015 and has built a community-focused coworking environment targeting digital nomads and entrepreneurs. The website reflects a professional and consistent brand with good content quality and a clear business model centered on coworking memberships and coliving accommodations. Technically, the site is built on WordPress using the Divi theme, with modern SEO and analytics tools integrated. However, the site lacks explicit privacy and cookie policies, and no security headers were detected, which are areas for improvement. The domain registration data is consistent and trustworthy, with no privacy protection used and a domain age appropriate for the business history. Overall, the website is safe, accessible, and moderately secure but would benefit from enhanced privacy compliance and security hardening.

R

Remote OK

remoteok.com

0

Remote OK is a well-established online platform specializing in remote job listings across various sectors such as programming, design, sales, and customer support. Founded in 2014, it has grown to become a leading job board with over one million remote job listings, targeting remote workers and employers globally. The platform offers premium services, job posting options, and APIs to enhance user experience and business reach. Technically, the website employs modern web technologies including jQuery, Stripe for payments, Google reCAPTCHA for spam prevention, and structured data for SEO optimization. Hosting and DNS services are provided by Cloudflare, ensuring reliable performance and security. Security posture is solid with HTTPS enforcement and spam protection, though improvements like DNSSEC and explicit security policies could enhance trust further. Privacy and cookie policies are not explicitly found, indicating an area for compliance improvement. Overall, the site is professional, secure, and trustworthy, serving a broad audience of remote job seekers and employers.

@

@levelsio.com | techno optimist wear

levelsio.com

0

The website levelsio.com operates as a niche e-commerce platform specializing in techno optimism themed merchandise, including apparel and accessories. Founded in 2017, it targets a small but dedicated audience interested in technology-positive lifestyle products. The business leverages the Fourthwall e-commerce platform for its online store, integrating modern payment processing and analytics tools. The site demonstrates a good level of digital maturity with fast performance, mobile optimization, and consistent branding. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Technically, the site uses a modern tech stack including HTML5, CSS3, JavaScript, Google Tag Manager, Microsoft Clarity, and Stripe for payments. Hosting and DNS are managed via Cloudflare, providing robust infrastructure and security. The site employs HTTPS with excellent SSL configuration and some security best practices such as reCAPTCHA Enterprise for bot protection. However, DNSSEC is not enabled, and explicit security headers like Content-Security-Policy are not evident. From a security perspective, the site is well-protected against common threats but could improve by publishing formal privacy, cookie, and security policies, as well as a vulnerability disclosure mechanism. No critical vulnerabilities or exposed sensitive data were detected. The absence of contact information and data protection officer details limits transparency and trust. Overall, levelsio.com is a professionally designed and secure e-commerce site with moderate privacy compliance and business credibility. Strategic improvements in privacy documentation and user consent mechanisms would enhance its trustworthiness and compliance posture.

X

X Corp.

levels.io

0

The website represents a verified personal profile (@levelsio) on the X.com platform, owned by X Corp. The profile highlights multiple business ventures generating significant monthly revenues, targeting a broad audience of tech enthusiasts and entrepreneurs. The digital infrastructure is modern, leveraging React, Tailwind CSS, and Google Identity Services, ensuring a responsive and user-friendly experience. Security measures are robust, with HTTPS enforced and multiple security headers present, although DNSSEC is not enabled. Privacy and cookie policies are comprehensive and accessible, indicating good compliance with GDPR and related regulations. Overall, the site is trustworthy, professional, and well-maintained, with no critical security or content issues detected.

G

Golf Channel

golfchannel.com

0

Golf Channel is a prominent media brand specializing in golf-related content including live streams, news, videos, and podcasts. It operates under the NBC Sports Group umbrella, targeting golf enthusiasts and sports fans primarily in the United States. The website offers a rich multimedia experience with integrated live streaming and extensive editorial content, positioning itself as a leading golf media outlet. Technically, the site employs modern technologies such as JW Player for video streaming, OneTrust for cookie consent, and various advertising and analytics platforms, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, implements key security headers, and maintains privacy compliance with GDPR indicators, although it lacks a public security policy or incident response contact. The WHOIS data is unavailable or privacy protected, which is common for large media brands but slightly reduces transparency. Overall, the site is professional, secure, and trustworthy with excellent content quality and user experience.

N

NBCUNIVERSAL MEDIA

peacocktv.com

0

NBCUniversal Media is a leading global media and entertainment company specializing in the development, production, and marketing of entertainment, news, and information to a worldwide audience. As a subsidiary of Comcast Corporation, NBCUniversal holds a strong market position with diversified services including sports broadcasting, theme parks, and film production. The website reflects a mature digital presence with rich multimedia content and consistent branding across social media platforms. Technically, the site is built on Drupal 10 and integrates modern analytics and consent management tools, indicating a robust infrastructure. Security posture is generally strong with HTTPS and cookie consent mechanisms, though explicit security headers and detailed privacy policies are not evident in the provided content. The absence of WHOIS data for the domain www.nbcuniversal.com is notable and warrants further investigation to confirm domain registration legitimacy. Overall, the site demonstrates high professionalism and trustworthiness, suitable for its enterprise scale and industry.

A

AiSDR

aisdr.com

0

AiSDR is a technology company specializing in AI-powered sales outreach solutions. Their platform enables sales teams to identify prospects with high purchase intent and engage them through personalized, multichannel communications including email, LinkedIn, and SMS. The company targets enterprises and sales professionals seeking to improve lead generation and meeting booking efficiency. The website reflects a mature SaaS business model with a focus on AI-driven automation and integration with popular CRM systems like HubSpot. Technically, the site is built on WordPress with advanced performance optimizations using NitroPack and integrates multiple marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, and Visual Website Optimizer. Security posture is strong with HTTPS enforced and domain locking, though DNSSEC is not enabled. However, the site lacks published privacy and cookie policies, which is a compliance gap. No direct company contact emails or phone numbers are provided, with contact primarily via embedded HubSpot forms. Overall, the website is professional, well-branded, and trustworthy, serving a clear business purpose in the AI sales outreach market.

S

Sirma

sirma.com

0

Sirma is a well-established technology company specializing in AI, data, cloud migration, tailored software development, managed IT services, business and IT consulting, cyber security, and system integration. With over 33 years of experience and a presence in more than 170 countries, Sirma serves a broad enterprise audience seeking advanced technology solutions. The company maintains multiple global offices and partners with leading technology providers such as Apple, IBM, Oracle, Microsoft, and VMware. Technically, the website employs modern web technologies including Astro framework, JavaScript libraries like jQuery, Tiny Slider, and Headroom.js, and integrates advanced analytics and tracking tools such as Google Analytics, Amplitude, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good SEO and accessibility features, hosted via GoDaddy with HTTPS enabled. From a security perspective, the site uses HTTPS and Google reCAPTCHA v3 for form protection but lacks DNSSEC and security headers, and does not publish a security policy or incident response contacts. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. No terms of service page was found. Overall, the website is professional, trustworthy, and content-rich, with moderate security posture and privacy compliance. Strategic improvements in DNS security, cookie consent, and security transparency would enhance trust and compliance.

B

Blaukontor für Gestaltung GmbH

walle-aktuell.de

0

Walle-Aktuell is a local community information portal focused on the Walle district in Bremen, Germany. It provides residents and visitors with event listings, local news, business directories, and promotes the community magazine 'ECHT WALLE'. The website is a project of Blaukontor für Gestaltung GmbH, a local design agency. The site is built on TYPO3 CMS, featuring structured data for SEO and clear contact information. The technical infrastructure is modern and supports HTTPS, but lacks some security headers and cookie consent mechanisms. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Security posture is good but could be improved with additional headers and policies. Overall, the site is professional, trustworthy, and safe for general audiences.

GoFor!Artists is a German-based online platform specializing in local artist booking and event entertainment services. Supported by the German Federal Ministry for Economic Affairs and Climate Action (BMWK), it offers a transparent, user-friendly marketplace for event organizers to find and book artists for various occasions including weddings, corporate events, and private parties. The platform emphasizes ease of use, legal compliance, and secure payment processing. Technically, the website is built on modern React and Next.js frameworks, integrating multiple analytics and marketing tools such as Google Tag Manager, HubSpot, and Matomo. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is strong with clear policies and cookie consent mechanisms. However, the WHOIS data is missing or not publicly available, which slightly reduces trust but may be due to privacy protection or recent domain registration. Overall, the site is professional, well-structured, and trustworthy for its business purpose.

T

Trumba Corporation

trumba.com

0

Trumba Corporation operates a well-established SaaS platform specializing in online event calendar and registration software, targeting universities, government agencies, and organizations requiring interactive calendar solutions. The website demonstrates a strong market position with reputable clients and a comprehensive suite of event publishing and promotion tools. Technically, the site is built on ASP.NET with modern JavaScript libraries and integrates multimedia content and third-party badges, reflecting a mature digital infrastructure. Security posture is moderate; HTTPS is implied but lacks visible security headers and cookie consent mechanisms, which are recommended for enhanced protection and compliance. The absence of WHOIS data introduces some uncertainty about domain registration legitimacy, though the website's professional content and trust signals mitigate this concern. Overall, the site is professional, user-friendly, and trustworthy, with room for security and privacy improvements.

C

Coen Siegerink

equi4.com

0

The website www.equi4.com is a small-scale personal or open source project site maintained by Coen Siegerink, focusing on embedded database libraries (Metakit), Tcl/Tk runtime environments (Tclkit), software deployment tools (Starkits), and a disk catalog utility (CatFish). The site targets developers and technical users interested in these niche technologies. The business model appears to be centered around providing open source software and utilities without commercial sales or extensive business infrastructure. Technically, the site is built with basic HTML and CSS, lacking modern frameworks or CMS, and shows moderate performance with basic mobile optimization and accessibility. Security posture is weak due to the absence of HTTPS, security headers, and privacy policies. No contact emails or phone numbers are explicitly provided, only a contact page link. WHOIS data is missing, raising concerns about domain registration legitimacy. Overall, the site is functional but lacks modern security and privacy compliance features.

Rosetta Code is a well-established programming chrestomathy website founded in 2007, providing a collaborative platform for programmers to compare solutions to the same tasks across multiple programming languages. It serves a niche audience of developers and learners seeking to understand language differences and similarities. The site is hosted on the Miraheze platform, leveraging MediaWiki and Semantic MediaWiki technologies, with a moderate performance profile and basic mobile optimization. Security posture is solid with HTTPS enabled and no evident vulnerabilities, though security headers and explicit security policies are absent. Privacy compliance is good, with clear privacy and cookie policies linked to the hosting provider's meta wiki. No direct company contact information or incident response contacts are provided, reflecting its community-driven nature rather than a commercial enterprise. Overall, the site is trustworthy, safe, and professionally maintained.

The website at https://www.mistachkin.com/david/ is extremely minimal, containing only a single image linked to an external government court staff page. There is no substantive business information, metadata, or structured data to describe the entity or services. The domain WHOIS data is unavailable, indicating the domain may not be registered or is protected with no public data. The lack of HTTPS, security headers, privacy policies, and contact information reflects a very low digital maturity and security posture. Overall, the site appears to be either a placeholder or a very basic personal page with no clear business presence or compliance measures.

M

Mistachkin Systems

e4.gl

0

The Eagle Project website represents a specialized open-source scripting language and runtime library designed for integration with the Common Language Runtime (CLR). The project is community-driven, offering free support forums, publicly accessible source code repositories, and digitally signed binaries to ensure authenticity. The target audience primarily consists of developers and technical users interested in scripting languages and secure sandbox environments. The website content is informative and technical, with a focus on project history, downloads, and development resources. Technically, the site is hosted on Linode with a straightforward HTML and CSS implementation, lacking modern CMS or advanced frameworks. The site demonstrates moderate performance and basic mobile optimization. The absence of HTTPS enforcement and security headers is a notable gap, although the project emphasizes code signing and sandbox security in its software offerings. No tracking or advertising technologies are present, reflecting a privacy-conscious approach. From a security perspective, the website lacks explicit security policies, incident response contacts, and privacy or cookie policies, which limits compliance with modern data protection regulations. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, aligning with the project's transparency. The digital signing of executables and sandbox contest indicate a security-aware culture, but the website itself could improve its security posture. Overall, the website scores moderately in content quality and business credibility but falls short in privacy compliance and security implementation. Strategic improvements in HTTPS deployment, security headers, and privacy policies would enhance trust and compliance, supporting the project's technical credibility and community engagement.

The Eagle Project website serves as a technical demonstration and sandbox escape contest platform for the Eagle scripting language, an implementation of Tcl for the Common Language Runtime. The site is authored and maintained by Joe Mistachkin and hosted on Microsoft Azure, with a notice about potential shutdown in Fall 2025 due to hosting infrastructure changes. The platform targets developers and security researchers interested in scripting languages and sandbox security testing. It offers live script evaluation with example snippets and encourages community participation in sandbox escape challenges. Technically, the site uses ASP.NET Web Forms and integrates the CodeMirror JavaScript editor for script input. Hosting is on a Windows Server VM within Microsoft Azure. The site shows moderate performance and basic mobile and accessibility support. SEO and metadata are minimal but include valid HTML and CSS validation badges. No modern CMS or analytics tools are detected, indicating a lightweight, custom-built platform. From a security perspective, the site employs sandboxing to isolate script execution, which is central to its contest purpose. However, no security headers or HTTPS status details are provided, and no privacy or cookie policies are present, indicating gaps in compliance and security best practices. The WHOIS data is unavailable, limiting domain trust assessment. The site does not expose sensitive data but could improve in security posture by adding headers, enforcing HTTPS, and publishing policies. Overall, the site is a niche technical resource with good content quality and moderate technical implementation. Security and privacy compliance require improvement. The lack of WHOIS transparency and contact information reduces business credibility. Strategic recommendations include enhancing security headers, publishing privacy and cookie policies, improving mobile and accessibility features, and clarifying domain registration details to build trust.

The website at rabx.de is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content. This prevents any meaningful extraction of business, technical, or security information. The domain uses GoDaddy name servers, but no registrant or business details are available to confirm legitimacy or business operations. Due to the lack of accessible content, no privacy, cookie, or terms of service policies are found, and no contact information is available. The security posture cannot be evaluated, and no technologies or analytics tools are detected. Overall, the site appears inactive or restricted, limiting any assessment of its business or security maturity.

S

Stroka produkt d.o.o.

stroka.si

0

Stroka produkt d.o.o., operating under the brand Skupina stroka.si, is a well-established Slovenian IT service provider founded in 2005. The company offers a broad range of IT solutions including infrastructure management, business software integration (notably PANTHEON), digital workplace services leveraging Office 365, business analytics, custom software development, and digital transformation consulting. Their market position is strengthened by a Microsoft Gold Partner certification and multiple industry awards, reflecting a strong reputation in the Slovenian technology sector. The website content and design reflect a professional and mature digital presence targeting business clients seeking comprehensive IT solutions. Technically, the website is built on the DotNetNuke CMS platform, utilizing modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the company demonstrates a mature digital infrastructure and credible business operations.

Z

Zagreb Film Office

filmzagreb.hr

0

Zagreb Film Office is a municipal entity representing the city of Zagreb, Croatia, as a filming destination. The website serves as an informational and facilitation platform for film industry professionals, providing services such as location scouting and permitting. The site is built on a modern WordPress platform with WooCommerce integration, SEO optimization via Yoast, and Google Analytics tracking, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages found. Overall, the website is professional and trustworthy, suitable for its governmental role.

V

Filmski ured Varaždin | Otkrijte Varaždin kao idealnu filmsku destinaciju

varazdinfilmcommission.eu

0

The website www.varazdinfilmcommission.eu represents the Filmski ured Varaždin, a regional film commission promoting Varaždin, Croatia as an ideal destination for film production. The site provides information about film location services and production support, targeting filmmakers and production companies. Technically, the site is built on WordPress using the Divi theme, with plugins for accessibility and email encoding, and includes a cookie consent mechanism. However, the site lacks visible privacy and terms of service policies, and no explicit contact information is provided, which limits user trust and compliance transparency. Security posture is moderate with HTTPS likely enabled but no detected security headers or advanced protections. Overall, the site is functional and professional but could improve in privacy, security, and contact transparency to enhance trust and compliance.

I

Istarski filmski ured

istriafilmcommission.com

0

Istarski filmski ured is a regional film commission established in 2015 under the Istarska kulturna agencija (IKA) to promote and facilitate audiovisual production in the Istria region of Croatia. The website serves as an informational and promotional platform targeting filmmakers and producers, offering services such as location scouting, permit facilitation, and liaison with public and private entities. Technically, the site is built on WordPress using the Divi theme and several plugins for multilingual support, SEO, accessibility, and cookie compliance. The security posture is adequate with HTTPS enabled and some security best practices observed, though there is room for improvement in security headers and incident response visibility. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service. The absence of WHOIS data for the domain is a notable concern, impacting trust and legitimacy assessment. Overall, the site is professional, content-rich, and serves its business purpose well, but could enhance transparency and security practices.

H

Hrvatsko društvo sudskih vještaka i procjenitelja

sudski-vjestaci.hr

0

Hrvatsko društvo sudskih vještaka i procjenitelja (HDSVIP) is a Croatian non-profit professional association dedicated to the advancement of court experts and appraisers. Established in 2004, it serves as a voluntary, non-governmental, and non-partisan organization focused on improving the role and institution of court experts within the judiciary and related institutions. The association is a recognized member of international bodies such as EuroExpert, HUM, and TEGoVA, enhancing its credibility and network. The website provides information about the association's initiatives, news, events, and resources for members and the public. Technically, the website is built using standard HTML5, CSS, and JavaScript with jQuery 1.8.3. It is hosted behind Cloudflare DNS services, suggesting HTTPS usage, although explicit security headers are not visible in the provided data. The site has a moderate performance profile with basic mobile optimization and accessibility features. Navigation is clear and content is professionally presented, targeting professionals in the judiciary and appraisal sectors primarily in Croatia. From a security perspective, the site shows some good practices such as using Cloudflare and secure form submission for member login. However, the use of an outdated jQuery version and absence of visible security headers indicate potential vulnerabilities. There is no visible privacy or cookie policy, which is a compliance gap under GDPR. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is trustworthy and professional but would benefit from updates to its security posture and privacy compliance. Strategic improvements in these areas would enhance user trust and regulatory adherence.

H

Handelsbanken

handelsbanken.se

0

Handelsbanken is a well-established Swedish bank offering a wide range of financial services including mortgages, personal loans, savings, pensions, and private banking. The website reflects a strong market position with a focus on personalized customer service and digital banking solutions. The content is professionally presented, targeting both private individuals and businesses in Sweden. Technically, the site uses modern JavaScript frameworks and analytics tools, ensuring good performance and mobile optimization. Security practices are solid with HTTPS enforcement and user guidance on fraud prevention, although explicit security headers and a public security policy could enhance trust further. The absence of WHOIS data for the www subdomain is likely a technical artifact rather than a legitimacy concern. Overall, the site is trustworthy, compliant with privacy regulations, and provides comprehensive customer support.

H

Handelsbanken

handelsbanken.no

0

Handelsbanken is a well-established personal and private banking institution operating primarily in Norway, with strong ties to its parent company Svenska Handelsbanken AB (publ). The website emphasizes personalized advisory services without sales targets, positioning itself as a trusted and stable bank with Europe's safest commercial bank ranking and the highest customer satisfaction in Norway. The digital presence is modern, mobile-optimized, and content-rich, targeting private banking customers seeking reliable financial services. Technically, the site uses modern JavaScript frameworks and Adobe Analytics for user insights, with good SEO and accessibility practices. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and vulnerability disclosure are absent. WHOIS data is unavailable due to Norid's privacy policies, but the domain's legitimacy is supported by consistent branding and external references.

S

SAB servis s.r.o.

myplann.cz

0

SAB servis s.r.o. operates as a brokerpool providing comprehensive support services for financial advisors and leaders of advisory firms primarily in the Czech Republic. The company emphasizes simplifying the operational life of its clients through education, events, and a suite of tools designed to enhance advisory practices. Their market position is supported by a clear vision and active engagement with their target audience, positioning them as a proactive player in the financial advisory sector. Technically, the website is built on the Solidpixels CMS platform and leverages modern web technologies including Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and a professional design, though some accessibility features could be improved. Performance is moderate, with a well-structured navigation system and clear content presentation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, no advanced security headers were detected, and there is no visible security or incident response policy published. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, though the professional web presence and social media footprint support the company's credibility. Overall, SAB servis presents a trustworthy and professional digital presence with room for improvement in security transparency and domain registration disclosure. Strategic enhancements in security policies and WHOIS transparency would further strengthen their risk posture and trustworthiness.

@

@levelsio.com | techno optimist wear

makeeuropegreatagain.co

0

The website levelsio.com is an e-commerce platform specializing in branded apparel and merchandise themed around techno optimism and European identity. It offers a niche collection of products such as organic cotton t-shirts, hats, hoodies, mugs, and stickers. The business appears to be small-sized, founded in 2017, and operates primarily online with a focused target audience interested in techno optimism and European culture. The site is powered by the Fourthwall platform and hosted via Cloudflare, indicating a modern and scalable technical infrastructure. Technically, the website employs a robust stack including Google Tag Manager, Google Analytics, Microsoft Clarity, Facebook Pixel, TikTok Analytics, Klaviyo for marketing, Stripe for payments, and Google reCAPTCHA Enterprise for bot protection. The site is mobile-optimized, fast-loading, and uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and some recommended security headers are missing, which could be improved to enhance security posture. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent mechanisms, and bot protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and appear GDPR compliant, though no explicit security policy or incident response information is published. The domain WHOIS data is consistent and legitimate, with no privacy protection, indicating transparency. Overall, the website is professionally designed, secure, and compliant with privacy regulations, serving a niche retail market effectively. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen trust and security posture.

L

LUX-IDent s.r.o.

lux-ident.com

0

LUX-IDent s.r.o. is a leading RFID transponder manufacturer based in Central Europe, specializing in RFID inlays and transponders across multiple frequency bands. The company operates under the parent company HID Global and serves various industries including animal ID, access control, and logistics. Their website is professionally designed, content-rich, and well-structured, targeting business customers requiring RFID solutions. Technically, the site is built on WordPress with common plugins and uses HTTPS with Google Analytics for tracking. Security posture is generally good with enforced HTTPS and no visible vulnerabilities, though security headers and explicit security policies are lacking. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessment. Overall, the website presents a credible business front but would benefit from improved transparency and security practices.

W

Weidmüller Lanškroun s.r.o.

weidmueller-lanskroun.com

0

Weidmüller Lanškroun s.r.o. is a manufacturing subsidiary of the multinational Weidmüller Holding Co&KGaA, specializing in the production of precise spare parts, tools, molds, and providing metal and plastic pressing along with simple automation solutions. The company targets industrial clients requiring high-quality manufacturing services. The website reflects a professional and consistent brand image with clear contact details and partner affiliations, positioning the company as a reliable manufacturing entity within its sector. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Active24 infrastructure. The site is mobile optimized with good navigation and moderate performance. However, no CMS or advanced frameworks were detected, indicating a straightforward static or custom-built site. From a security perspective, the site uses HTTPS (implied by domain status and typical practice), but lacks visible security headers and does not implement DNSSEC. There is no privacy or cookie policy present, which is a compliance gap. No incident response or security policy information is provided. No forms are present on the main page, reducing attack surface but also limiting user interaction. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its security posture and regulatory adherence.

SOMA is a manufacturing company specializing in the production of flexo presses, with a history spanning approximately 25 years. The company positions itself as a top global manufacturer in its niche, emphasizing unique technology development. The website reflects a professional and consistent brand image targeted at businesses requiring specialized industrial equipment. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Smartlook, and integrates Google Maps API for location services. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the website is legitimate and professional but would benefit from enhanced security and privacy disclosures.

S

SANELA spol. s r.o.

sanela.cz

0

SANELA spol. s r.o. is a Czech-based company specializing in sanitary technology products, including stainless steel sanitary equipment, RFID payment systems, and smart sanitary water and energy management solutions. The company targets business and institutional customers requiring advanced sanitary technology solutions. The website reflects a medium-sized manufacturing business with a consistent brand presence and a professional digital footprint. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google Tag Manager and Analytics for tracking, and uses a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and includes reCAPTCHA for forms, but lacks explicit security headers and incident response information. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility.

O

ORPA Papír a.s.

orpa.cz

0

ORPA Papír a.s. is a well-established Czech manufacturer specializing in paper-based tubular packaging solutions, including Tubusbox and paper tubes, serving food and industrial sectors. With over 140 years of tradition and multiple ISO and industry certifications, the company positions itself as a reliable and quality-focused packaging partner. The website reflects a professional and modern digital presence with rich multimedia content, clear navigation, and multilingual support. Technically, the site uses modern frameworks and tracking technologies with appropriate consent mechanisms, hosted by a reputable Czech provider. Security posture is good with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration data aligns well with the company's history and location, supporting legitimacy.

K

Kozák Svitavy, s.r.o.

kozak-svitavy.cz

0

Kozák Svitavy, s.r.o. operates a wholesale e-commerce platform specializing in candles, home and garden accessories, and related decorative products. The website targets wholesale customers primarily in the Czech Republic, offering a broad product range including seasonal and floristry items. The business model focuses on B2B sales through an online portal, positioning itself as a regional supplier with a clear product focus. The website content is professionally presented in Czech, with clear navigation and relevant business information, including contact details and ethical reporting channels. Technically, the site is built on ASP.NET WebForms with Kentico CMS, utilizing common JavaScript libraries such as jQuery, bxSlider, and fancyBox. Google Analytics and Google Tag Manager are employed for user tracking and analytics. The site shows moderate performance and good mobile optimization but lacks some advanced accessibility features. Security measures include HTTPS and CSRF tokens, but there is an absence of security headers and cookie consent mechanisms, indicating room for improvement in security posture and privacy compliance. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. The website provides clear contact information and an ethical whistleblowing email, which are positive trust signals. Overall, the security posture is moderate but could be enhanced by implementing security headers, cookie consent, and publishing a vulnerability disclosure policy. The overall risk assessment suggests the website is functional and legitimate for its business purpose but would benefit from improved transparency in domain registration and enhanced privacy and security practices. Strategic recommendations include verifying domain registration details, implementing GDPR-compliant cookie consent, adding security headers, and establishing a formal security policy to strengthen trust and compliance.

The website vakzlin.cz is currently inaccessible, returning a 403 Forbidden error page served by an nginx web server. This prevents any meaningful analysis of the site's content, business model, or security posture. The domain is registered since 1999 with the registrar REG-ACTIVE24 and uses name servers consistent with this provider, indicating a legitimate registration history. However, the lack of accessible content and absence of metadata, contact information, or policies severely limits the ability to assess the company's operations or compliance status. Technically, the site is hosted on Active24 infrastructure but lacks visible security headers or HTTPS confirmation. The security posture cannot be evaluated due to the blocked content. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user and security experience.

V

VOŠPS a SPgŠ Kroměříž

ped-km.cz

0

VOŠPS a SPgŠ Kroměříž is an educational institution based in the Czech Republic offering secondary and higher vocational education focused on pedagogical professions. The website targets students, parents, and educational professionals seeking meaningful pathways into teaching careers. It provides comprehensive information about study programs, admissions, school events, and additional educational services. The institution maintains a consistent brand presence and clear communication channels including phone, email, and social media. Technically, the website is built on the iCard.cz platform using Bootstrap 3.3.2 and Vue.js 3.2.45, with modern UI components and responsive design. It integrates Google Tag Manager for analytics and employs a robust cookie consent mechanism supporting GDPR compliance with multi-language support. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent best practices. However, no explicit security headers were detected, and there is no visible security policy or incident response information. The WHOIS data for the domain is missing, which reduces domain trustworthiness but the website content and contact details appear legitimate and professional. Overall, the website is well-structured, content-rich, and compliant with privacy regulations, making it a trustworthy source for educational information. The main risk lies in the lack of domain registration transparency and some missing security best practices. Strategic improvements in security headers and domain registration visibility are recommended.

L

Little Greta

littlegreta.co.uk

0

Little Greta is a well-established European strategic creative agency founded in 2003, with a domain registered since 2011. The company offers a comprehensive range of services including strategy, design, communication, and digital solutions, targeting businesses seeking creative consultancy. The website reflects a professional and award-winning agency with a strong market position in the media sector. Technically, the site is built on WordPress with modern integrations such as Yoast SEO, Google Analytics, Hotjar, and Smartlook, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit security policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in privacy and security transparency.

E

EKOME, spol. s.r.o.

ekome.cz

0

EKOME, spol. s.r.o. is a Czech company specializing in environmental emission measurements and ecological consulting, with a focus on stationary pollution sources and workplace risk factors. The company holds multiple accreditations and authorizations from the Ministry of the Environment, indicating a reputable position in its sector. Their website reflects a professional service provider targeting businesses and organizations requiring environmental compliance and consulting services. Technically, the website is built on WordPress with modern plugins and demonstrates good SEO and privacy compliance, including GDPR and cookie consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. The absence of WHOIS data limits full trust assessment but the visible business information and certifications support legitimacy.

A

Avenir Financial Group

avenirgroup.cz

0

Avenir Financial Group is a Czech Republic based financial advisory company with over 20 years of experience among its founders. The company offers a comprehensive range of financial services including insurance, investment, real estate, mortgage advisory, and vehicle financing. Their business model focuses on providing clients with access to a broad portfolio of vetted financial institutions and products, emphasizing fair and quality service. The website reflects a mature digital presence built on Joomla CMS with Bootstrap and jQuery, featuring a cookie consent mechanism and Google Analytics integration with IP anonymization. Contact information and partner affiliations are clearly presented, enhancing business credibility. However, the absence of WHOIS data limits domain trust evaluation. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, user-friendly, and compliant with privacy regulations, targeting clients seeking financial and insurance services in the Czech market.

S

S prací v batůžku – Práce na cestách, projekty, osobní blog.

spracivbatuzku.cz

0

The website spracivbatuzku.cz is a personal blog and freelance portfolio operated by Lucie Janíková, focusing on travel experiences, creative projects such as graphic design, illustration, writing, and online lessons. The site targets travel enthusiasts and clients seeking creative freelance services. The business model is small-scale, project and commission-based, with a niche market position as a personal brand. Technically, the site is built on WordPress using Elementor, hosted by Wedos, and employs standard web technologies including jQuery and Font Awesome. Performance and mobile optimization are good, though accessibility and SEO could be improved. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Contact is available via a contact form, with social media presence on Facebook and Instagram. No WAF or blocking mechanisms are detected, and the domain registration is consistent and appropriate for the business age. Overall, the site is professional and trustworthy but could benefit from enhanced privacy compliance and security hardening.

H

Handelsbanken

handelsbanken.ee

0

Handelsbanken is a well-established Swedish bank founded in 1871, recognized as one of the world's strongest banks with a decentralized operational model and strong local presence in Sweden, Norway, the Netherlands, and the UK. The website provides comprehensive information about the bank's services, investor relations, sustainability efforts, and press releases, targeting banking customers, investors, and the general public. The digital infrastructure leverages modern web technologies including JavaScript frameworks and Adobe Analytics for performance and user insights. Security practices include HTTPS enforcement, cookie consent mechanisms, and sandboxed iframes for external content, though explicit security headers are not visible in the provided data. The WHOIS data is incomplete, lacking registrar and creation details, which is unusual but does not detract from the site's legitimacy given the professional content and branding. Overall, the site demonstrates a mature digital presence with strong business credibility and good privacy compliance.

Z

ZB Invest

zbi.hr

0

ZB Invest is a Croatian financial investment company specializing in investment funds and related services. The website provides fund pricing, yield data, calculators, and contact options primarily targeting Croatian investors. The domain is well-established since 2000 and hosted with professional infrastructure including Akamai CDN services. The website uses standard JavaScript libraries for UI and data visualization but lacks modern CMS or frameworks. Security posture is basic with no visible security headers or privacy policies, and no contact information is explicitly provided in the analyzed content. Overall, the site is functional but could improve in privacy compliance and security best practices.

Z

Zagreb nekretnine d.o.o.

zane.hr

0

Zane nekretnine is a well-established Croatian real estate company operating since 1998, offering a comprehensive range of services including property brokerage, valuation, consulting, and market analysis. The company targets a general audience seeking real estate services in Croatia and maintains a professional online presence with a clear and consistent brand. The website is hosted on Akamai infrastructure, uses modern JavaScript libraries for UI components, and implements a cookie consent mechanism compliant with GDPR requirements. Security posture is solid with HTTPS enforced and CSRF protection in forms, though there is room for improvement in security headers and explicit security policies. Overall, the website is accessible, professional, and trustworthy, reflecting the company's long-standing market position.

P

Podravka

podravka.io

0

The website Podravka.io presents a minimalistic landing page with only a logo and no substantive business content or descriptions. The domain is registered since 2017 with privacy protection, which limits transparency about ownership. The site uses Bootstrap 4 for styling and is hosted with Microsoft Azure DNS services. There are no privacy, cookie, or terms of service policies, nor any contact or social media information, indicating a very low digital maturity level. Security posture is weak with no visible security headers or SSL configuration details provided. The lack of business and compliance information reduces trust and credibility significantly.

G

Games Croatia

gamescroatia.com

0

Games Croatia is an official project website dedicated to promoting the gaming industry and innovation within Croatia. The site serves as a hub for information about the project, its partners, public funding opportunities, and activities related to the Croatian games sector. The website targets game developers, industry stakeholders, and governmental bodies interested in fostering growth and collaboration in the gaming ecosystem. The business model appears to be informational and collaborative, supported by public or governmental funding, positioning itself as a niche regional initiative with a focus on technology and innovation. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as HTTPS with HSTS, Google reCAPTCHA for form security, and Google Fonts for typography. The site demonstrates good mobile optimization and a professional design, although some accessibility features could be enhanced. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the website enforces HTTPS and HSTS, uses reCAPTCHA to protect forms, and does not expose sensitive data or vulnerable libraries. However, privacy compliance could be improved by implementing a cookie consent mechanism and publishing explicit security and incident response policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and partner affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy front for the Games Croatia project but would benefit from enhanced privacy compliance and clearer domain registration information to strengthen trust and regulatory adherence.

H

HAVC

filmingincroatia.hr

0

Filming in Croatia is an official film commission program managed by HAVC, promoting Croatia as a prime filming destination with attractive incentive programs and a network of regional film offices. The website serves as a comprehensive resource for film producers and industry professionals, offering detailed information on incentives, locations, crews, and services. The site is well-positioned in the media sector, supported by government affiliation and international memberships, enhancing its credibility and market presence. Technically, the website is built on WordPress with modern SEO and tracking tools, hosted via a reputable registrar and DNS infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Overall, the site demonstrates a professional, trustworthy, and user-friendly digital presence suitable for its target audience.