Security Directory

D

Dundee and Angus College

dundeeandangus.ac.uk

0

Dundee and Angus College is a well-established further education institution in the United Kingdom, serving the Dundee and Angus regions since 1996. The college offers a broad range of courses and apprenticeships aimed at improving study and employment prospects for a diverse student body. The website reflects a professional and comprehensive digital presence with clear navigation, rich content, and strong branding consistency. The institution positions itself as a key regional educational provider with a focus on student success and community engagement. Technically, the website employs modern JavaScript libraries, analytics, and user engagement tools such as Google Tag Manager, Monsido, Freshchat, and Survicate, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, supporting a positive user experience. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policies and incident response information, which could be improved. Overall, the domain registration and WHOIS data support the legitimacy and trustworthiness of the college. The website scores highly on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a reliable and professional online presence for the institution.

A

Ayuntamiento de Avilés

aviles.es

0

The website aviles.es serves as the official municipal government portal for the city of Avilés in Spain. It provides comprehensive information and services related to local government, culture, social services, education, sports, tourism, and citizen engagement. The site targets residents and visitors, offering multilingual content primarily in Spanish, English, and Asturian. The business model is public sector focused, delivering government services and information digitally. The website demonstrates consistent branding and good content quality, supported by structured data markup and official contact details. Technically, the site is built on the Liferay CMS platform, utilizing modern web technologies including jQuery, React components, FontAwesome icons, and Google Tag Manager for analytics and marketing. The site is mobile optimized and accessible, with good SEO practices evident. Performance is moderate, with room for improvement in loading speed and security headers. From a security perspective, the site enforces HTTPS and uses asynchronous loading for analytics scripts, but lacks visible security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy and cookie policies are not explicitly found, indicating a compliance gap. WHOIS data could not be retrieved due to registry restrictions, limiting domain trust verification. Overall, the website is a trustworthy and professional government portal with solid technical infrastructure but would benefit from enhanced security headers, explicit privacy compliance documentation, and WHOIS transparency to improve trust and compliance posture.

Alation is an enterprise software company specializing in data intelligence and AI-powered data governance platforms. Positioned as a leader in the data governance market, Alation offers a comprehensive suite of products including data cataloging, data lineage, analytics, and AI agents to help organizations scale and accelerate their data initiatives. The company targets large enterprises seeking trusted data solutions to build AI applications and improve data governance. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to enterprise customers. Technically, the website is built on modern frameworks such as Next.js and React, hosted on Vercel, and integrates advanced analytics and consent management tools like Google Tag Manager and OneTrust. The site is optimized for performance, mobile responsiveness, and accessibility, demonstrating a high level of digital maturity. Security best practices are evident through HTTPS enforcement, comprehensive security headers, and a dedicated trust center showcasing certifications like ISO 27001 and SOC 2. From a security perspective, Alation maintains a strong posture with no detected vulnerabilities or exposed sensitive data. The presence of incident response contacts and a data protection officer indicates readiness for compliance and incident management. Privacy compliance is robust, with clear policies and consent mechanisms aligned with GDPR requirements. The only notable concern is the absence of publicly available WHOIS data, which may be due to privacy protection or registrar issues but does not significantly detract from the overall trustworthiness given the company's market presence and transparency. Overall, Alation presents a secure, professional, and trustworthy online presence suitable for its enterprise audience. Strategic recommendations include enhancing transparency around vulnerability disclosures, maintaining up-to-date third-party libraries, and continuing to strengthen incident response communications to further solidify trust and compliance.

P

Patientensicherheit

cirrnet.ch

0

Patientensicherheit operates CIRRNET, a critical incident reporting and reacting network serving as a central institution for local incident reporting systems across Switzerland's healthcare sector. The organization focuses on enhancing patient safety by enabling healthcare facilities to anonymously contribute incident reports to a centralized database, thereby supporting nationwide risk assessment and prevention efforts. CIRRNET's market position is that of a key non-profit healthcare network institution with a medium-sized operational scale and a clear focus on Swiss healthcare providers and medical societies. Technically, the website is built on a modern WordPress platform using Elementor for content management and design, supported by LiteSpeed caching and Matomo analytics for performance and user tracking. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. The infrastructure supports multilingual content in German, French, and Italian, reflecting the Swiss market. From a security perspective, the site employs HTTPS with good SSL configuration and standard security headers, indicating a solid baseline security posture. However, there is no explicit security policy or incident response contact information published, and the cookie policy lacks an active consent mechanism, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. Strategic recommendations include implementing a cookie consent mechanism, publishing a formal security policy and incident response contacts, and enhancing accessibility compliance to further strengthen trust and regulatory adherence.

The Deutscher Pflegerat e.V. is a well-established German non-profit association representing the interests of nursing professionals and midwives at the federal level. Founded in 1998, it serves as a political and professional voice advocating for healthcare policy improvements, professional education, and workforce development. The website offers comprehensive resources including press releases, event information, podcasts, and official documents, targeting healthcare professionals, policymakers, and the public in Germany. Technically, the site uses standard web technologies such as jQuery and Slick Carousel, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and a cookie consent mechanism. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site is professional, trustworthy, and content-rich, supporting the organization's mission effectively.

M

MojaTiskarna.si

mojatiskarna.si

0

MojaTiskarna.si is an established Slovenian online printing service founded in 2011, offering a range of printing solutions including digital, offset, and XXL printing. The website targets businesses, agencies, freelancers, and individual customers seeking professional printing services such as business cards, flyers, banners, and promotional materials. The platform supports B2B and B2C models with features like delivery tracking and customer support via phone. Technically, the site uses older but functional JavaScript libraries like jQuery and Modernizr, with a custom or proprietary CMS. The site is moderately optimized for mobile and SEO, with a responsive design and cookie consent mechanisms in place. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though improvements are recommended in security headers and updating legacy libraries. Privacy compliance is basic but present, with clear privacy and cookie policies. Overall, the website is professional, trustworthy, and well-positioned in its local market niche.

OCHOIMEDIO Tecnología Creativa is a Spanish digital agency specializing in design, web development, multimedia, and digital marketing services targeted primarily at freelancers and small to medium-sized enterprises (SMEs) in Spain. The company leverages government subsidy programs such as KIT Digital to offer cost-effective digital transformation solutions including websites, e-commerce platforms, and social media management. Their market position is that of a niche regional agency focused on helping local businesses increase their digital presence. Technically, the website is built on WordPress using the Divi theme and incorporates modern plugins for SEO, analytics, and GDPR compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS, uses CAPTCHA on contact forms, and includes cookie consent mechanisms, but lacks advanced security headers and explicit security policies. The WHOIS data for the domain is unavailable, which raises some concerns about domain legitimacy, although the website content and contact information appear professional and trustworthy. Overall, the site scores well on content quality and technical implementation but could improve in security transparency and domain registration clarity.

D

Diputación de Cáceres

dip-caceres.es

0

Diputación de Cáceres is the official provincial government institution serving the province of Cáceres, Spain. The website functions as a comprehensive portal providing public services, information, and resources to citizens, public employees, and local government entities. Key services include tax collection, public employment, procurement, and integrity reporting. The site targets local residents and government stakeholders, positioning itself as a trusted government resource. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, Select2, and Toolset Blocks plugins. It employs Google Analytics and Metricool for traffic analysis and uses Yoast SEO for search engine optimization. The site is mobile-optimized, accessible, and uses HTTPS with a valid SSL certificate, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent mechanisms compliant with GDPR, and obfuscated email addresses to reduce spam. However, it lacks visible security headers like CSP or HSTS and does not publish explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML source. Overall, the website is legitimate, professional, and trustworthy, consistent with an official government entity. The absence of WHOIS data due to query restrictions is mitigated by the site's content quality and official social media presence. Strategic recommendations include enhancing security headers, publishing security policies, and adding a security.txt file to improve vulnerability disclosure transparency.

D

Diputación de Badajoz

dip-badajoz.es

0

Diputación de Badajoz is the official provincial government institution serving the Badajoz province in Spain. The website provides comprehensive information about government activities, cultural events, employment services, municipal assistance, and social programs. It targets citizens, local municipalities, and stakeholders within the province. The site is positioned as a key public service portal with a large-scale government operational scope. Technically, the website uses a modern frontend stack including Bootstrap 4.4.1, jQuery 3.4.1, and FontAwesome 5.12.0. The site is mobile responsive and well-structured, though some accessibility and SEO optimizations are basic. Performance is moderate, with no evident blocking or WAF interference. Security posture is adequate with HTTPS enforced and some best practices observed, but lacks explicit security headers such as CSP and HSTS. No privacy or cookie policies were found, indicating room for compliance improvement. No vulnerabilities or malicious content were detected. Overall, the website is trustworthy and professional, but should enhance privacy compliance and security headers to improve its security and regulatory posture. The domain registration aligns well with the official government nature, supporting legitimacy.

J

Junta de Extremadura

juntaex.es

0

Juntaex.es is the official digital portal for the Junta de Extremadura, a regional government entity in Spain. The website provides citizens with streamlined access to public information, administrative procedures, transparency data, and current news relevant to the Extremadura region. It serves as a comprehensive gateway for residents and interested parties to engage with government services and information efficiently. The site is well-structured with thematic navigation and highlights key public services and data. Technically, the website leverages modern web technologies including Liferay CMS, Bootstrap, Swiper.js, and Matomo analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and employs standard web performance practices. Security is implemented with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be enhanced. From a security posture perspective, the site shows good practices such as encrypted connections and no visible sensitive data exposure. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for transparency and trust. Privacy compliance is supported by cookie policies and GDPR-aligned consent, but contact information for privacy or security concerns is not evident. Overall, Juntaex.es is a credible and professional government website with a solid technical foundation and good user experience. Strategic improvements in security transparency and contact availability would further strengthen trust and compliance.

P

Home - philippka

philippka.de

0

The website philippka.de appears to be a professionally designed WordPress site using WooCommerce for e-commerce capabilities and Rank Math PRO for SEO optimization. The site employs performance enhancements such as WP Rocket and EWWW Image Optimizer, indicating a focus on speed and user experience. However, the site lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Contact information is not clearly provided, limiting direct communication channels. The domain WHOIS data shows a 'connect' status with nameservers pointing to DomainControl.com, suggesting the domain is registered but with limited public WHOIS information. Overall, the site is accessible and safe for general audiences but would benefit from improved transparency and compliance documentation.

K

KÜS

kues.de

0

KÜS is a well-established German organization specializing in vehicle and traffic safety services. The company operates multiple subsidiaries covering vehicle inspections, technical assessments, automotive expertise, training, data services, and safety consulting. Their market position is strong with a nationwide presence and a large team of vehicle inspection engineers. The website reflects a professional and consistent brand image with clear navigation and relevant content for their target audience of vehicle owners and automotive professionals. Technically, the site is built on WordPress with Elementor, uses modern libraries, and implements cookie consent mechanisms, indicating a moderate to good digital maturity. Security posture is solid with HTTPS and cookie consent, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy and professionally maintained, supporting KÜS's business credibility in the transportation sector.

Experian Information Solutions, Inc. operates a comprehensive Income & Employment Verification Fulfillment Portal branded as Experian Verify. The portal serves multiple user groups including employees, commercial verifiers, social service verifiers, and employers, providing secure, consent-driven access to employment and income data. Experian is a globally recognized leader in credit reporting and data analytics, positioning this service as a critical component of its employer services portfolio. The website demonstrates a mature digital presence with clear navigation, professional design, and extensive use of modern marketing and analytics technologies. Security measures such as HTTPS, Google reCAPTCHA, and secure login portals are implemented, though explicit security headers are not confirmed in the provided data. Privacy compliance is robust with comprehensive policies and consent mechanisms in place. The absence of WHOIS data is unusual but does not detract significantly from the overall legitimacy given the brand and content quality.

W

Webhosting Franken

webhosting-franken.de

0

Webhosting Franken is a German-based web hosting provider specializing in high-performance NGINX hosting solutions, managed root and virtual servers, and classic PHP hosting. The company targets startups, small to medium businesses, and enterprises seeking reliable, secure, and eco-friendly hosting services. Their offerings emphasize speed, security, and customer service, supported by ISO 27001 certified data centers and 100% renewable energy usage. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site leverages modern technologies including NGINX, PHP versions 5.2 through 8.4, Apache2, NodeJS, and Matomo for analytics. The use of UKit framework ensures responsive design and good accessibility. Security best practices are evident with free SSL certificates, DDoS protection, app firewalls, and daily backups. However, some security headers could be explicitly implemented and documented. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. The security posture is robust with no visible vulnerabilities or exposed sensitive data. The domain WHOIS data is partially obscured due to DENIC privacy policies but shows consistent branding and active maintenance. No WAF or blocking mechanisms interfere with content access. Overall, the site scores high on content quality, technical implementation, security, privacy, and business credibility, making it a trustworthy and professional hosting provider. Strategic recommendations include enhancing security header implementation, publishing an incident response contact or security.txt file, and continuing to maintain transparency in privacy and security policies to further strengthen trust and compliance.

P

Pflegeausbildungsfonds Niedersachsen GmbH

abf-nds.de

0

Pflegeausbildungsfonds Niedersachsen GmbH operates a specialized online portal (PABF-Meldeportal) for reporting related to nursing education funding in Lower Saxony, Germany. The website serves a niche government-related audience, providing secure login access for fund administrators and stakeholders. The business is positioned as a small, essential entity within the government sector, focusing on nursing education funding administration. The portal is built on a custom platform powered by GRÜN eVEWA3, utilizing legacy and modern web technologies such as Bootstrap and jQuery. The site is mobile responsive and includes standard security features like HTTPS, CSRF tokens, and captcha for password resets. However, it uses an outdated jQuery version, which poses potential security risks. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and explicit security policies are absent. Overall, the website demonstrates a moderate level of digital maturity with room for technical and security improvements.

F

Freiwilligenakademie Niedersachsen

freiwilligenakademie.de

0

Freiwilligenakademie Niedersachsen is a non-profit organization dedicated to promoting and supporting volunteer engagement across the German state of Niedersachsen. It offers a broad range of educational and training programs for volunteers and coordinators, supported by state funding. The website is professionally designed using TYPO3 CMS, featuring responsive design and clear navigation, targeting volunteers, associations, and local government entities. Technically, the site uses modern web technologies and is well optimized for mobile devices, though some security headers and cookie consent mechanisms could be improved. Security posture is solid with HTTPS enabled and no visible vulnerabilities, but lacks explicit security policies or incident response information. Overall, the domain and website content are consistent and trustworthy for a small-sized non-profit entity.

S

Studo GmbH

studo.com

0

Studo GmbH is a medium-sized technology company specializing in digital solutions for students and universities primarily in the DACH region and Slovenia. Their flagship product, the Studo App, supports over 500,000 students daily and offers a suite of modules aimed at improving academic communication, administration, and student engagement. The company positions itself as a trusted partner for universities, emphasizing quality, sustainability, and personal collaboration. Their market presence is reinforced by partnerships with over 50 universities and student unions and multiple industry certifications including TÜV SÜD and ISO standards. Technically, the website is well-constructed with modern web technologies, hosted on Cloudflare, and uses privacy-conscious analytics (Piwik PRO). The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced, domain transfer protection, and annual accessibility audits. However, DNSSEC is not enabled, and some security headers are not explicitly detected. Privacy compliance is good with a comprehensive privacy policy and GDPR adherence, though no explicit cookie consent mechanism was found. Overall, the security posture is robust with no visible vulnerabilities or exposed sensitive data. The company demonstrates a mature approach to data protection and software quality, supported by certifications and awards. The domain WHOIS data is consistent and supports the legitimacy of the business. The website content is safe for general audiences and professionally presented. Strategic recommendations include enabling DNSSEC, implementing a cookie consent banner, publishing a security.txt file, and adding more explicit security headers to further enhance trust and compliance.

A

ATHENA European University

athenauni.eu

0

ATHENA European University is a consortium focused on providing educational opportunities, mobility programs, research collaboration, and career development within the European higher education sector. The website serves as an information hub targeting students, researchers, and academic stakeholders, offering multi-language support to cater to a diverse European audience. The business model revolves around consortium collaboration and dissemination of educational resources and opportunities. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO and Elementor for content management and SEO optimization. The site integrates external services like YouTube for video content and Tawk.to for live chat support, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, with good SEO practices implemented. From a security perspective, the website enforces HTTPS and includes several important security headers, reflecting a good security posture. However, the absence of explicit privacy policies, terms of service, and incident response information indicates gaps in compliance and transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional and trustworthy, with a solid foundation but room for improvement in privacy compliance and explicit security policy disclosures. Strategic recommendations include publishing comprehensive privacy and terms documents, implementing vulnerability disclosure policies, and enhancing accessibility features to improve compliance and user trust.

Z

Zentrum KlimaAnpassung

zentrum-klimaanpassung.de

0

Zentrum KlimaAnpassung is a German government-affiliated non-profit organization focused on facilitating climate adaptation for municipalities and social institutions. The website provides advisory, educational, funding guidance, and networking services to its target audience. Technically, the site is built on Drupal 10, uses modern web technologies, and implements a cookie consent mechanism via Klaro. Security posture is good with HTTPS enabled and partial security headers present, though some improvements are recommended. The site is professional, well-branded, and trustworthy with active social media presence. However, explicit privacy policy and terms of service pages are not found, which slightly impacts privacy compliance scores.

E

Elektromarken. Starke Partner. e.V.

elektromarken.de

0

Elektromarken. Starke Partner. e.V. is a German association uniting 16 leading electrical brands to promote quality, innovation, and partnerships within the German electrical industry. The organization supports apprentices and master craftsmen through scholarships and recognizes outstanding electrical craft businesses with the ELMAR award. The website is professionally designed using HubSpot CMS, featuring modern technologies and good mobile optimization. Privacy and cookie policies are implemented with GDPR compliance, and the site uses HubSpot analytics and marketing tools for user engagement. Security posture is solid with HTTPS and cookie consent, though some security headers and policies could be improved. Overall, the domain registration and DNS setup are consistent with the business claims, indicating a legitimate and trustworthy entity.

M

Minotaure

minotaure.io

0

Minotaure is a Belgium-based technology company specializing in providing a comprehensive methodological and technological approach to digital project management and website development. Their offerings include UX kits, customizable technical frameworks (Minos and Ariane), and ongoing support services aimed at creating coherent and effective digital ecosystems for organizations. The company targets organizations seeking to build and maintain digital platforms with a focus on user experience and long-term strategy. Technically, the website is built on WordPress 6.8.2, utilizing modern JavaScript libraries such as jQuery, Swiper.js, and Tiny-slider. It integrates Google Tag Manager and Google Analytics for tracking and marketing purposes, alongside a robust cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent controls, with no visible exposed sensitive data or vulnerabilities in the HTML content. However, explicit security headers are not clearly identified and could be improved. The WHOIS data is privacy protected, which is common for small technology providers, and the website content and physical office addresses support the legitimacy of the business. Overall, Minotaure presents a professional, secure, and privacy-conscious digital presence with strong business credibility and technical maturity. Strategic recommendations include enhancing security header implementation, maintaining updated software, and publishing explicit security policies to further strengthen trust and compliance.

T

tixxt

tixxt.dev

0

tixxt.com is a professional website offering enterprise social intranet and collaboration solutions targeted at member organizations and enterprises. The company positions itself as a specialized provider in the technology sector, focusing on boosting internal communication and collaboration. The website is built on a modern WordPress CMS with the Divi theme and integrates tools such as Google Tag Manager and Cookiebot for analytics and cookie consent management. While the technical infrastructure is solid and the website is mobile-optimized with good SEO practices, there is a lack of visible contact information and formal privacy or terms of service policies, which impacts trust and compliance perception. The security posture is adequate with HTTPS enforced and consent mechanisms in place, but could be improved by adding explicit security headers and incident response contacts. The absence of WHOIS data raises some concerns about domain registration transparency, though the website content suggests a legitimate business presence.

O

Občina Zreče

zrece.si

0

Občina Zreče operates a comprehensive municipal website serving the local community in Slovenia. The site provides a broad range of public services including electronic application submissions, online fee payments, local news, event calendars, and project information. The website targets residents and stakeholders of the Zreče municipality, positioning itself as a key digital gateway for local government services. Technically, the site employs modern web technologies such as jQuery and Bootstrap, with responsive design and accessibility features, indicating a moderate to good level of digital maturity. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though it lacks published privacy and cookie policies as well as security headers, which are areas for improvement. Overall, the website is trustworthy and professional, reflecting the municipality's commitment to digital public service delivery.

O

Občina Vitanje

vitanje.si

0

Občina Vitanje operates as the official municipal government website for the Vitanje municipality in Slovenia, providing a range of e-government services including electronic application submissions, online tax payments, local news, event information, and community engagement tools. The site targets residents and visitors, aiming to facilitate digital interaction with municipal authorities and promote local tourism and culture. The business model is typical of a public sector entity focused on service delivery and community information dissemination. The domain's long history since 1999 and consistent Slovenian branding reinforce its legitimacy and established presence. Technically, the website employs a modern yet straightforward technology stack including jQuery, Bootstrap, and TinyMCE, supported by structured data in JSON-LD format for enhanced SEO and accessibility. The site is mobile-optimized with good navigation and content relevance, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. The CMS appears to be a custom or proprietary platform tailored for municipal e-services. From a security perspective, the website enforces HTTPS with excellent SSL configuration and avoids exposing sensitive data. However, it lacks visible security headers and does not publish a formal security policy or incident response contacts. No vulnerability disclosures or security.txt files are present. Privacy compliance is partially met with a comprehensive GDPR policy page but lacks a cookie consent mechanism. Overall, the security posture is solid but could be improved with additional transparency and technical controls. The overall risk assessment is low, with no signs of malicious activity or suspicious domains. Strategic recommendations include implementing cookie consent banners, adding security headers, publishing security policies and incident response contacts, and enhancing accessibility. These improvements would strengthen trust, compliance, and user experience for the municipality's digital presence.

O

Občina Slovenske Konjice

slovenskekonjice.si

0

Občina Slovenske Konjice operates as the official municipal government portal for the Slovenske Konjice region in Slovenia. The website facilitates electronic interactions with the municipality, including submission of applications, online fee payments, and dissemination of local news and events. It targets residents and stakeholders within the municipality, providing essential public services and information. The business model is that of a governmental public service platform, with a strong local market position as the authoritative source for municipal information and services. The domain has been registered since 1999, indicating a well-established online presence.

O

Občina Oplotnica

oplotnica.si

0

Občina Oplotnica is the official municipal government website for the Oplotnica municipality in Slovenia. It provides residents and visitors with comprehensive information about local government officials, public services, community events, and administrative resources. The site targets local citizens and government stakeholders, serving as a key communication channel for municipal updates and services. The business model is that of a government entity focused on public service delivery and community engagement. Technically, the website is built on WordPress CMS, utilizing common plugins for accessibility, UI enhancements, and content management. The site demonstrates good mobile optimization, accessibility features, and moderate performance. It uses HTTPS with a valid SSL certificate, ensuring secure communications. The technical infrastructure is consistent with a small government entity's digital presence. From a security perspective, the site enforces HTTPS and employs reputable plugins but lacks explicit security headers and a published security.txt or incident response contact information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing trust and credibility. Overall, the website is trustworthy, professional, and serves its intended audience well. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance. The domain registration data supports the site's legitimacy and long-standing presence.

O

Občina Dobrna

dobrna.si

0

Občina Dobrna operates as the official municipal government portal for the Dobrna region in Slovenia, providing residents and visitors with comprehensive information about local administration, cultural heritage, tourism, public services, and community news. The website serves as a key communication channel for public notices, tenders, and events, supporting transparency and civic engagement. The business model is typical for a local government entity, focusing on service delivery and community support rather than commercial activities. The site targets local citizens, investors, and tourists, positioning itself as a trusted source of official information and regional promotion. Technically, the website is built on the Joomla CMS platform, leveraging common web technologies such as jQuery, Bootstrap, and Font Awesome. The infrastructure supports responsive design and accessibility features, ensuring usability across devices and for users with disabilities. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and published policies could enhance protection and compliance. From a security perspective, the site shows no signs of blocking or WAF interference, and no critical vulnerabilities were detected in the content or scripts. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests opportunities for improvement in security governance and transparency. Privacy compliance is supported by cookie consent and a data protection page, but a dedicated privacy policy page with comprehensive GDPR details would strengthen compliance. Overall, Občina Dobrna's website is a well-maintained, trustworthy municipal portal with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing formal security and privacy policies, and establishing vulnerability disclosure channels to improve security posture and stakeholder trust.

O

Občina Dobje

dobje.si

0

Občina Dobje is the official municipal government website for the municipality of Dobje pri Planini in Slovenia. It provides residents with public notices, administrative information, citizen services, event calendars, and project updates. The website targets local citizens and functions as a key communication channel for municipal affairs. The business model is governmental public service, with a focus on transparency and community engagement. Technically, the site is built on WordPress CMS with a modern tech stack including jQuery, Swiper.js, and accessibility plugins. The site is mobile-optimized and includes accessibility tools, reflecting a moderate to good level of digital maturity. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with good SSL configuration but lacks some security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is trustworthy and professional, suitable for its governmental role. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance its security posture and compliance standing.

P

Pavel Leonidov

pavel-leonidov.de

0

Pavel Leonidov operates as a freelance software and web developer based in Stuttgart, Germany, specializing in custom software solutions and web development primarily for small businesses and non-profit organizations. The website serves as a professional portfolio showcasing skills, certifications, and open-source projects, emphasizing affordable and tailored solutions. The business model is focused on individual freelance services with continuous client support and hosting. Technically, the website employs a modern technology stack including PHP, Java, JavaScript, and popular CMS platforms like TYPO3 and WordPress. Hosting is managed via domaincontrol.com nameservers, likely GoDaddy, with AWS mentioned for hosting infrastructure. The site is mobile-optimized and uses Google Analytics with privacy-conscious settings such as IP anonymization and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and includes a cookie consent banner compliant with GDPR. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The site demonstrates good privacy compliance but could improve by adding security policies and vulnerability disclosure information. Overall, the website is professional, trustworthy, and well-structured with a good balance of content quality, technical implementation, and privacy compliance. The risk level is low, with recommendations focusing on enhancing security headers and formalizing security policies to further strengthen the security posture.

O

Oscar Charlie GmbH

oscar-charlie.de

0

Oscar Charlie GmbH is a creative advertising agency based in Stuttgart, Germany, specializing in strategic communication, creative design, and digital product development. The company serves a diverse clientele ranging from local businesses to international market leaders, positioning itself as a trusted creative partner with a strong portfolio and long-term client relationships. The website reflects a professional and consistent brand image, targeting companies and brands seeking innovative marketing solutions. Technically, the site is built on modern frameworks including Next.js and React, integrated with Prismic CMS, and hosted with EuroDNS. It demonstrates excellent performance, mobile optimization, and SEO practices. Security-wise, the website enforces HTTPS, employs security headers, and integrates a cookie consent mechanism via Cookiebot, indicating good privacy compliance. However, explicit security policies and incident response contacts are not present, suggesting room for improvement in transparency and readiness. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

V

Villa Olea

villaolea.eu

0

Villa Olea's website is a password-protected portal likely representing a hospitality or real estate business. The site uses WordPress CMS with standard login forms and basic jQuery libraries. The content is minimal and restricted, with no public business descriptions, contact information, or policies visible. Technically, the site uses HTTPS with valid SSL but lacks important security headers and privacy compliance features. No analytics or advertising scripts are present, indicating minimal tracking or marketing activities. The overall security posture is moderate but could be improved with standard security headers and visible compliance documentation. The domain registration appears legitimate with no suspicious WHOIS patterns, but registrant details are limited. The site’s content is safe with no adult or questionable material detected.

S

Specto, Informacijske tehnologije d.o.o.

specto.si

0

Specto, Informacijske tehnologije d.o.o. is a Slovenian IT development company founded in 2008, specializing in web and mobile application development as well as advanced IT solutions. The company targets businesses seeking custom software solutions to enhance their digital presence and operational efficiency. Their website reflects a professional and consistent brand image with modern design elements and clear service offerings. Technically, the site uses contemporary web technologies including Bootstrap, jQuery, GSAP, and SVG graphics, supported by Google Analytics and Tag Manager for user tracking. However, explicit HTTPS usage is not confirmed in the HTML content, and no security headers or privacy policies are present, indicating room for improvement in security and compliance. The domain registration data is consistent with the company's location and business claims, supporting legitimacy. Overall, the website is well-structured and user-friendly but would benefit from enhanced security practices and privacy compliance documentation.

The website www.t-systems.com is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content. This indicates that access to the site is blocked or restricted, preventing any meaningful content or metadata extraction. The lack of WHOIS data further complicates verification of the domain's registration status and legitimacy. Due to these access restrictions, no business, contact, or security policy information could be obtained. The technical infrastructure appears to lack proper configuration for public access, and no security headers or HTTPS enforcement were detected. Overall, the site’s security posture is weak, and the domain’s legitimacy is questionable based on available data.

W

Webtasy, d.o.o.

dravabike.si

0

Drava Bike is an official regional tourism website promoting the Drava Bike cycling route that spans four countries including Slovenia. The site provides comprehensive information about the cycling stages, accommodations, services, and experiences along the route. It targets cyclists of various skill levels and tourists interested in outdoor activities and cultural experiences. The website is multilingual and includes an online shop hosted on a partner domain. Technically, the site uses modern JavaScript frameworks like Alpine.js and Vite, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS and anonymized Google Analytics tracking, but lacks some security headers and cookie consent mechanisms. Privacy compliance is basic with a privacy policy present but no explicit cookie consent. Overall, the domain registration data is consistent and supports the legitimacy of the business.

S

Slovenia Outdoor giz

slovenia-outdoor.com

0

Slovenia Outdoor giz operates a professional and comprehensive online portal dedicated to promoting outdoor tourism in Slovenia. The website offers extensive information on various outdoor activities such as hiking, cycling, winter sports, water experiences, and adrenaline adventures, targeting tourists and outdoor enthusiasts. It also integrates booking functionalities for experiences and accommodations, positioning itself as a key player in Slovenia's active tourism market. The site is well-branded, multilingual, and maintains a consistent and professional digital presence.

N

Najstarejša trta

najstarejsatrta.si

0

The website 'Najstarejša trta' appears to be a small Slovenian site focused on the theme of the oldest vine, likely related to wine or viticulture. The domain is recently registered in 2023 with a Slovenian registrar, consistent with the website's Slovenian language content. The site is built on WordPress, using standard web technologies such as PHP, JavaScript, and CSS, and includes common libraries like Google Fonts and Font Awesome. The technical infrastructure is basic but functional, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and good SSL configuration; however, the absence of security headers and privacy policies indicates room for improvement. No contact or incident response information is provided, which limits transparency and trust. Overall, the site is safe for general audiences and does not contain adult or explicit content.

W

Webtasy, d.o.o.

stajerska.si

0

Štajerska.si is a professionally designed regional tourism website promoting the Štajerska region in Slovenia. It offers comprehensive information on cultural, natural, and wellness experiences, targeting tourists and visitors interested in urban and natural attractions. The website leverages modern technologies such as Nuxt.js, Vue.js, and DatoCMS, ensuring a fast, mobile-optimized, and accessible user experience. Social media integration and event promotion enhance its outreach. Security posture is strong with HTTPS and security headers, though the absence of a cookie consent banner and explicit security policies indicates room for compliance improvement. Overall, the site is trustworthy and well-positioned as a regional tourism marketing platform.

W

Webtasy, d.o.o.

pohorje-slovenija.si

0

Pohorje-slovenija.si is a professionally designed tourism portal dedicated to promoting the Pohorje region in Slovenia. The website offers comprehensive information on outdoor activities such as hiking, biking, and winter sports, alongside accommodation options and cultural highlights. It targets tourists and outdoor enthusiasts seeking nature-based experiences. The site is multilingual and emphasizes accessibility, enhancing its appeal to a broad audience. The business is relatively new, with domain registration in late 2021, and is operated by Webtasy, d.o.o., a Slovenian company consistent with the website's regional focus. Technically, the website employs modern web technologies including Alpine.js, Livewire (Laravel), Google Analytics, and Google Translate integration. It features responsive design, good SEO practices, and accessibility options, indicating a mature digital infrastructure. Hosting and domain registration are managed by Webtasy, d.o.o., ensuring regional consistency. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with good SSL configuration and implements GDPR-compliant cookie consent mechanisms. However, explicit security headers are not visible in the HTML and no dedicated security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were detected. The site integrates Google Analytics for user tracking with moderate tracking levels and basic advertising transparency. Overall, Pohorje-slovenija.si presents a trustworthy, professional, and user-friendly tourism platform with strong content quality and compliance. Strategic improvements in explicit security headers and incident response disclosures would enhance its security posture and trustworthiness further.

M

MBajk

mbajk.si

0

The website www.mbajk.si represents a business entity with an established domain since 2013, indicating a stable presence. The site is built using modern web technologies including Angular 18.2.10, Bootstrap, and integrates Matomo for analytics and Google Maps API for location services. A cookie consent mechanism is implemented via Didomi, reflecting some level of privacy compliance. However, the site lacks visible privacy policy, terms of service, and contact information, which limits transparency and user trust. The technical infrastructure appears moderately optimized with good mobile responsiveness but basic SEO and accessibility features. Security posture is moderate with HTTPS implied but no explicit security headers detected in the HTML content. No forms or direct data collection points are visible, reducing immediate risk but also limiting user engagement. Overall, the site is functional but would benefit from enhanced compliance documentation and security hardening.

D

Dresdner Verkehrsbetriebe AG

dvb.de

0

Dresdner Verkehrsbetriebe AG operates as the primary public transportation provider in Dresden, Germany, offering a comprehensive range of services including tram, bus, ferry, and shared mobility options. The website serves residents and visitors by providing route planning, ticketing, and real-time service updates. The company maintains a strong market position as the main transit operator in the region. Technically, the website employs modern JavaScript libraries, integrates Matomo analytics for privacy-conscious tracking, and uses OpenStreetMap for geographic data. The site is accessible, well-structured, and provides a good user experience with basic mobile optimization and accessibility features. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and a published security policy or incident response contact. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it could improve its security posture by adding missing headers and vulnerability disclosure information.

S

Sächsische Dampfschifffahrt

saechsische-dampfschifffahrt.de

0

Sächsische Dampfschifffahrt operates as a regional transportation and tourism company specializing in river cruises along the Elbe river in Germany. The company offers scheduled cruises, charter events, conference hosting, and onboard gastronomy services, targeting tourists and local travelers interested in scenic river journeys. The website is built on WordPress with multilingual support and employs modern web technologies including JavaScript and CSS. It features a cookie consent mechanism via the Borlabs Cookie plugin and uses Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal security policies. Privacy compliance is partial, with no explicit privacy or terms of service pages detected. Overall, the website is professional, user-friendly, and trustworthy, though improvements in privacy disclosures and security practices are recommended.

Raision seurakunta is a Finnish Evangelical Lutheran Church parish serving the Raisio community in Southwest Finland. The website provides information about religious services, community activities, youth programs, music, and international mission work. It targets local residents and church members, operating as a non-profit religious organization. The site is built on the Liferay CMS platform, utilizing modern web technologies including React, Bootstrap, and Matomo analytics for minimal user tracking. The design is professional, mobile-optimized, and accessible, with clear navigation and relevant content. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the website is trustworthy, compliant with GDPR, and serves its community effectively.

M

Municipal Museum of the Kalavritan Holocaust

dmko.gr

0

The Municipal Museum of the Kalavritan Holocaust is a small, government-affiliated cultural institution dedicated to preserving and educating about the tragic events of the Kalavritan Holocaust. The website serves as an informative portal offering museum information, digital archives, educational resources, and visitor services. It maintains a consistent brand presence and integrates multilingual support to reach a broader audience. The institution is well-positioned within its niche, supported by partnerships with the Ministry of Culture and related networks. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google reCAPTCHA v3 for form security, cookie consent management, and accessibility tools. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some performance optimizations could be considered. Analytics and tracking are implemented via Google Analytics and Tag Manager with user consent mechanisms. From a security perspective, the site enforces HTTPS and uses CAPTCHA to protect forms, but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is partially addressed through cookie consent but lacks a dedicated privacy policy page, which is a notable gap. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy transparency, security headers, and incident response disclosures would enhance compliance and security posture.

F

Feriköy Protestant Cemetery Initiative

ferikoycemetery.org

0

The Feriköy Protestant Cemetery Initiative is a small non-profit organization dedicated to preserving Istanbul’s main Protestant cemetery as a historic and cultural landmark. Founded in 2018 by scholars affiliated with several research institutes, the Initiative focuses on research, conservation, and public outreach. The website reflects a professional and content-rich platform that serves researchers, historians, and the interested public. Technically, the site is built on WordPress with modern plugins and hosted by SiteGround, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy or cookie policies. The domain registration is privacy protected but consistent with the organization's profile and founding date. Overall, the website is trustworthy and professional but could improve privacy compliance and security best practices.

The Friends of Kensal Green Cemetery is a UK-based registered charity dedicated to the preservation and restoration of the historic Kensal Green Cemetery. The organization operates through community engagement, guided tours, events, and collaboration with the cemetery's owning company. Their market position is that of a niche heritage non-profit with a strong local and historical focus. Technically, the website is built with basic HTML, CSS, and JavaScript, with no detected CMS or advanced frameworks. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and performance enhancements. Security posture is limited, with no visible HTTPS confirmation or security headers, and no public security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and privacy practices.

Z

Zoho

maillist-manage.eu

0

Zoho Campaigns is a component of Zoho Corporation's suite of online marketing tools, focusing on email and social marketing campaigns. The website content analyzed is a specialized explainer page clarifying the email sending domains used by Zoho Campaigns and emphasizing compliance with anti-spam laws. The site targets businesses and marketers who use Zoho's marketing software. Technically, the site uses Zoho's own content delivery networks and tag management services, with basic mobile optimization and SEO practices. Security posture is moderate, with clear abuse contact information but lacking visible security headers and privacy policies. The WHOIS data for the domain www.zoho.com is unavailable, likely due to registry restrictions, but the website's branding and content strongly indicate legitimacy. Overall, the site is functional and professional but could improve transparency and security disclosures.

F

FUNDACIÓN YUSTE

fundacionyuste.org

0

Fundación Yuste operates as a cultural and educational non-profit foundation, likely focused on promoting Spanish heritage and historical preservation related to the Yuste Monastery. The website serves as an official portal providing information about the foundation's activities and events. The technical infrastructure is based on WordPress CMS with several plugins for event management and multilingual content, indicating a moderate level of digital maturity. However, the website lacks visible advanced security measures such as security headers and privacy policies, which suggests room for improvement in security posture. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the site content and structure align with a legitimate cultural foundation. Overall, the website is accessible, safe, and functional but would benefit from enhanced security and privacy compliance to improve trust and user confidence.

M

Marketinška agencija Kainoto

kainoto.com

0

Marketinška agencija Kainoto is a Slovenian marketing agency established in 2002, offering innovative and ethical marketing services including consulting, digital marketing, event organization, and marketing material design. The website reflects a small business with a focus on professional and sustainable marketing solutions. Technically, the site uses an ASP.NET WebForms platform with common libraries such as jQuery and Font Awesome, but lacks advanced modern frameworks. Security posture is moderate with HTTPS likely enabled but missing DNSSEC and security headers, and no visible cookie consent mechanism despite a stated cookie policy. Contact information is limited to a web form, with no direct email or phone numbers displayed. Overall, the site is accessible and functional but could improve in security and privacy compliance to enhance trust and user experience.

E

Experian Employer Services

paperlessemployee.com

0

PaperlessEmployee.com is a web-based employee self-service platform operated by Experian Employer Services, providing employees access to tax documents such as W-2 and ACA forms, pay statements, and tax withholding forms. The platform targets employees of companies that use this service, offering a secure portal for document management. The website content is straightforward and business-focused, though it lacks detailed privacy and contact information. Technically, the site uses a modern JavaScript stack including jQuery, Bootstrap, and ASP.NET MVC frameworks, with session management and error handling implemented. However, the absence of explicit security headers and privacy policies indicates room for improvement in compliance and security posture. The WHOIS data is missing, which raises concerns about domain registration legitimacy despite the association with a reputable parent company. Overall, the site is functional and safe but would benefit from enhanced transparency and security measures.