Security Directory

I

Institut za islamsku tradiciju Bošnjaka | www.iitb.ba

iitb.ba

0

Institut za islamsku tradiciju Bošnjaka (IITB) is a small, specialized scientific research institute affiliated with the Islamic Community in Bosnia and Herzegovina. The institute focuses on research and preservation of the Islamic tradition of Bosniaks, offering publications, conferences, and educational events primarily targeting the Bosnian-speaking academic and religious community. The website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity and good SEO practices. The site is mobile optimized and provides clear navigation and contact information, including email and phone contacts, as well as social media presence on Facebook, Twitter, and YouTube. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

C

Centar za dijalog - Vesatijja

cdv.ba

0

Centar za dijalog - Vesatijja is a Bosnian non-profit organization dedicated to promoting dialogue culture among Muslims and between different religious and worldview communities. The organization focuses on scientific research, educational projects, and media publications including articles, videos, and PDF releases. Their target audience primarily consists of Bosnian-speaking Muslims and individuals interested in interreligious dialogue and Islamic cultural topics. The website reflects a niche position in the non-profit sector with a clear mission and consistent branding. Technically, the website is built on WordPress 6.8.2 with common plugins such as Contact Form 7 and uses modern web technologies including jQuery and Font Awesome. The site is mobile optimized with good SEO practices and moderate performance. However, it lacks some advanced security headers and privacy compliance features such as cookie consent and privacy policy pages. From a security perspective, the site enforces HTTPS and uses secure contact forms, but it does not implement security headers like Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening. The WHOIS data is consistent with the website's claims, supporting legitimacy. Strategic improvements in privacy policy publication, cookie consent, and security headers would strengthen the site's security posture and user trust.

U

Ured za zekat

zekat.ba

0

The website zekat.ba serves as an informational and transactional platform for Zekat, an Islamic charitable practice, primarily targeting the Bosnian Muslim community. It provides current nisab values, educational content, a Zekat calculator, and facilitates online payments through a partner site. The site is operated by 'Ured za zekat', a non-profit religious organization. The website demonstrates a moderate level of digital maturity with modern JavaScript usage, integration of Google Analytics and Meta Pixel for tracking, and a cookie consent mechanism. However, it lacks explicit privacy and security policies, and no direct contact information is provided on the site. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and incident response information are notable gaps. Overall, the site is functional and trustworthy for its niche audience but would benefit from enhanced transparency and security documentation.

1

1&1 Internet Inc

preporod.info

0

Preporod.info is a Bosnian language online news and community portal focusing on regional news, Islamic community affairs, and cultural topics. The website serves a niche audience interested in Bosnian and Islamic community news, providing regularly updated articles, interviews, and event information. The business operates as a small media outlet with a clear focus on community engagement and information dissemination. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for user tracking. Hosting is provided by HostEurope with a dedicated server setup. The website is mobile optimized and has a good user experience with clear navigation and consistent branding. Security posture is moderate with HTTPS enabled and domain transfer protection active, but lacks DNSSEC and security headers. Privacy and cookie policies are missing, which impacts compliance and user trust. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the domain registration is transparent and consistent with the business profile, registered with a reputable registrar in 2019. The website content is safe for general audiences with no adult or explicit content detected.

R

Radio BIR

bir.ba

0

Radio BIR is a Bosnian Islamic community radio broadcaster offering a diverse range of religious, educational, informational, political, youth, and musical programming. It serves a Bosnian-speaking Muslim audience across multiple regional FM frequencies, positioning itself as a key media outlet within the Islamic community in Bosnia and Herzegovina. The website is built on Joomla CMS and employs common web technologies such as jQuery, Bootstrap, and Font Awesome, reflecting a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content for its target audience. Security posture is moderate; HTTPS is used, but security headers and privacy policies are lacking, indicating room for improvement in compliance and security best practices. Overall, the domain registration data aligns well with the website's claims, supporting its legitimacy.

B

Bošnjačka zajednica kulture

preporod.ba

0

Bošnjačka zajednica kulture is a Bosnian non-profit cultural organization undergoing a rebranding process, including a domain change from preporod.ba to bzk.ba. The website is currently under maintenance with a notice informing visitors about the changes. The technical infrastructure is based on WordPress with several common plugins, including Contact Form 7 and Slider Revolution. Security measures include HTTPS and Google reCAPTCHA, but there is a lack of explicit security headers and privacy policies. Contact information is limited to email addresses under the new domain, with no phone numbers or physical addresses provided on the maintenance page. Overall, the website shows moderate technical maturity but lacks comprehensive privacy and security documentation.

I

Islamska zajednica u Bosni i Hercegovini

islamskazajednica.ba

0

Islamska zajednica u Bosni i Hercegovini operates as the official religious authority for Muslims in Bosnia and Herzegovina, providing religious guidance, news, educational content, and community services. The website serves a Bosnian-speaking audience including local and diaspora communities, offering structured information about religious offices, events, and educational resources. The organization holds a strong market position as a government-recognized non-profit religious entity. Technically, the website is built on Joomla CMS with a modern tech stack including jQuery, Bootstrap, and Mootools. It is mobile responsive and provides a good user experience with clear navigation and relevant content. Performance is moderate, and SEO practices are adequately implemented. However, accessibility features are basic and could be improved. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks several important security headers such as Content-Security-Policy and HSTS. No exposed sensitive data or vulnerable libraries were detected, but the absence of explicit privacy and cookie policies indicates compliance gaps, especially regarding GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and providing clear incident response contacts to improve user trust and regulatory compliance.

T

TS-Yhtymä

ts-yhtyma.fi

0

TS-Yhtymä is a Finnish regional media and communications group based in Turku, specializing in publishing, communication, and printing services. The company has a well-established online presence with a website that clearly communicates its business focus and provides access to corporate documents such as annual reports. The website is built on WordPress and integrates modern tools such as Google Tag Manager and a consent management platform to comply with GDPR requirements. The technical infrastructure is standard for a medium-sized media company, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and consent mechanisms in place, though security headers are not visibly implemented. The domain registration data is consistent with the business identity, showing a long-standing registration since 2003, reinforcing legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

The Volkshochschule Südlicher Breisgau operates as a regional adult education provider in Germany, offering a broad range of courses across multiple program areas including languages, health, culture, and professional development. The institution targets local citizens of all ages, emphasizing inclusivity and accessibility. Their website reflects a well-structured educational platform with clear course offerings and community engagement. Technically, the site is built on a proprietary CMS (CMX), uses modern web technologies, and is mobile-optimized with good accessibility features. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but missing cookie consent mechanisms. Overall, the site is professional, trustworthy, and serves its educational mission effectively.

V

Volkshochschule Wiesental

vhs-wiesental.de

0

Volkshochschule Wiesental operates as a regional adult education provider in Germany, offering a broad range of courses including languages, health, IT, integration, and youth education. The website reflects a well-structured educational institution with a clear target audience of adults, parents, and children. Their market position is that of a trusted community learning center with a consistent brand presence and active social media engagement. Technically, the site is built on TYPO3 CMS with modern libraries like jQuery and Bootstrap, hosted on kasserver.com, and demonstrates good mobile responsiveness and SEO practices. Security posture is moderate with HTTPS usage but lacks explicit security headers and incident response policies. Privacy compliance is basic with a GDPR-aligned privacy policy but no cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

V

Volkshochschule Oberes Nagoldtal

vhson.de

0

Volkshochschule Oberes Nagoldtal is a regional adult education institution based in Nagold, Germany, offering a broad range of courses including vocational training, online courses, youth art programs, and corporate training. The website serves as a comprehensive portal for course information, registration, and participant login, targeting the general public interested in continuing education. The institution holds certifications such as AZAV, indicating recognized quality standards in vocational training. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery and FontAwesome, with additional accessibility support via the eyeAble tool. The site is hosted on servers associated with kasserver.com and employs HTTPS with a secure SSL configuration. Performance and mobile optimization are good, and the site includes a cookie consent mechanism compliant with GDPR. From a security perspective, the site enforces HTTPS and secure login forms, but lacks publicly available security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's regional and organizational identity, supporting legitimacy. Overall, the site demonstrates a solid security posture with room for improvement in formal security documentation and headers. The risk profile is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include publishing a security policy, adding incident response contacts, and enhancing HTTP security headers to further strengthen the security posture and user trust.

Volkshochschule Bodenseekreis is a regional adult education provider in Germany offering a broad range of courses and events across multiple disciplines including culture, health, languages, and digital skills. The website is well-structured, content-rich, and targets a general audience interested in lifelong learning. Technically, the site uses a proprietary CMS (CMX) with modern JavaScript and CSS, delivering a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some improvements in security headers and explicit policies could enhance trust. Privacy compliance is mostly met with a clear privacy policy and terms of service, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its educational mission effectively.

V

vhs Dossenheim

vhs-dossenheim.de

0

vhs Dossenheim is a small-sized adult education institution based in Germany, offering a variety of courses including languages, culture, health, and professional development. The website serves as an informational and program registration platform targeting the general public interested in continuing education. The institution maintains cooperative partnerships, such as with Volkshochschule Heidelberg e.V., enhancing its educational offerings and regional presence. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, providing a responsive and user-friendly experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms but lacks explicit security headers and documented security policies. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements.

vhs Karlsruhe is a regional adult education institution based in Germany, offering a wide range of courses including languages, health, culture, professional development, and family education. The website is built on TYPO3 CMS with a modern and responsive design, providing good user experience and clear navigation. The technical infrastructure is solid, leveraging modern web technologies and asynchronous script loading for performance. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are important for GDPR compliance. No signs of malicious content or blocking mechanisms were detected, indicating full accessibility. Overall, the site is trustworthy and professionally maintained, serving its educational mission effectively.

S

Städtische Volkshochschule Crailsheim

vhs-crailsheim.de

0

The Städtische Volkshochschule Crailsheim operates as a regional adult education institution in Germany, offering a wide range of courses including languages, health, arts, integration, and professional development. It maintains a solid market position as a trusted public educational provider with integration into the Baden-Württemberg online VHS portal, enhancing its digital reach. The website is well-structured, content-rich, and targets a broad audience including adults, youth, and immigrants seeking language and integration courses. Technically, the website is built on TYPO3 CMS with Bootstrap and jQuery, providing a responsive and accessible user experience. Hosting appears to be with a German provider, and the site uses HTTPS with secure login forms. However, some security best practices such as security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site shows good baseline protections but lacks explicit security policies and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is limited but consistent with the website's German educational nature. Overall, the site is trustworthy and professional but could benefit from enhanced privacy and security disclosures. Strategically, the institution should focus on implementing cookie consent, security headers, and publishing clear security and incident response policies to strengthen trust and compliance. The digital infrastructure is solid but could be modernized with updated libraries and analytics for better user insights and performance monitoring.

V

vhs Filderstadt

vhs-filderstadt.de

0

vhs Filderstadt is a medium-sized non-profit educational institution based in Germany, providing a wide range of adult education and cultural programs including language courses, art school offerings, health and fitness classes, and integration projects. The website is professionally designed using TYPO3 CMS, with good content quality and clear navigation targeting the general public interested in lifelong learning and cultural enrichment. The institution maintains an active social media presence and offers both in-person and online courses, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS usage and secure login forms, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the website is trustworthy, compliant with GDPR, and well-aligned with the organization's mission and community role.

V

Volkshochschule Freiburg e.V.

vhs-freiburg.de

0

Volkshochschule Freiburg e.V. is a well-established adult education provider based in Freiburg, Germany, offering a broad spectrum of courses including languages, culture, health, and professional development. The organization targets adults seeking lifelong learning and integration support, positioning itself as a key regional educational institution with recognized certifications such as AZAV-Quacert and the Alpha-Siegel for accessibility. The website reflects a professional and accessible platform with clear navigation and comprehensive course offerings. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and accessibility tools like Eye-Able. It is hosted on a stable provider with secure HTTPS configuration and demonstrates good mobile optimization and SEO practices. The presence of cookie consent mechanisms and privacy policy pages indicates a strong commitment to GDPR compliance. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security policy and incident response contact information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's identity, showing no suspicious registration patterns, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements could include publishing a dedicated security policy and incident response details to further enhance transparency and trust.

V

Volkshochschule Lörrach & Steinen

vhs-loerrach-steinen.de

0

Volkshochschule Lörrach & Steinen is a regional adult education provider in Germany offering a broad range of courses including languages, health, culture, and professional development. The website serves as an information and registration portal for courses and events, targeting the general public interested in lifelong learning. The institution maintains a solid market position as a trusted non-profit educational entity with partnerships to local foundations and online education platforms. Technically, the website is built on TYPO3 CMS, employs modern web technologies, and integrates accessibility tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable resource for its audience.

V

Volkshochschule Baden-Baden

vhs-baden-baden.de

0

Volkshochschule Baden-Baden is a well-established adult education institution providing a broad range of courses including language, integration, culture, health, and IT skills. The website reflects a community-focused educational service with a clear target audience of adult learners in the Baden-Baden region. The institution maintains a solid market position as a regional educational provider with a medium-sized operational scale. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, enhanced by accessibility tools like Eye-Able and Klaro for cookie consent. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security posture is strong with HTTPS enforced and basic security best practices observed, though there is room for improvement in explicit security headers and published security policies. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and safe, with no indications of adult or questionable content.

V

Volkshochschule March

vhsmarch.de

0

Volkshochschule March is a local adult education institution based in March, Germany, offering a wide range of courses in politics, culture, health, languages, and digital skills. The website serves as a portal for course information, registration, and community engagement, targeting adult learners and local residents. The institution holds an EFQM certification, indicating a commitment to quality management. Technically, the website is built on TYPO3 CMS with modern web technologies, providing good mobile responsiveness and accessibility. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and incident response policies are not explicitly published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

V

vhs Karlsruhe Land

vhs-karlsruhe-land.de

0

vhs Karlsruhe Land is a regional adult education provider serving 16 municipalities in the Karlsruhe Land area of Germany. The organization offers a broad range of educational courses, workshops, seminars, and cultural events targeting adults and youth. Their business model focuses on public educational services with a strong regional presence and partnerships with other educational platforms. The website is built on WordPress with modern frontend technologies and demonstrates good digital maturity with mobile optimization and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

S

Brand Identity Design and Visual Communications Design

sparksof.io

0

Sparks of is a brand identity and visual communications design agency based in Helsinki, Finland. The website presents a professional image focused on delivering design services to businesses seeking to establish or enhance their brand presence. The company appears to be a small agency with a clear focus on creative design solutions. The technical infrastructure leverages modern web technologies including Webflow CMS, Google Analytics, Facebook Pixel, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity and compliance with privacy regulations. Security posture is generally good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. The absence of public WHOIS data suggests privacy protection, which is typical for small agencies and does not raise immediate concerns. Overall, the website is well-designed, user-friendly, and trustworthy, but lacks visible contact information and formal privacy or terms of service pages.

E

Evermade

evermade.fi

0

Evermade is a Finnish design and technology agency specializing in creating impactful digital experiences, primarily leveraging WordPress. Positioned as the largest WordPress agency in Finland, Evermade offers services including design, development, digital marketing, and maintenance. Their target audience comprises businesses seeking to enhance their online presence through modern web solutions. Technically, the website is built on WordPress with integrations such as WooCommerce, HubSpot, Google Tag Manager, and Piwik PRO, reflecting a mature digital infrastructure. The site demonstrates good mobile optimization and SEO practices, though some image loading errors were noted. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms via OneTrust, but lacks explicit security headers and published security policies. Overall, the website is professional and trustworthy, with room for improvement in security transparency and accessibility.

M

Maa- ja metsätaloustuottajain Keskusliitto MTK

mtk.fi

0

Maa- ja metsätaloustuottajain Keskusliitto MTK is a professional and advocacy organization serving farmers, forest owners, and rural entrepreneurs in Finland. It holds a central position in representing agricultural and forestry producers, offering key services such as professional representation and support. The website reflects a mature digital presence with a modern CMS (Liferay) and uses contemporary web technologies including React and Google Tag Manager. The site is well-designed, mobile-optimized, and provides a good user experience, although explicit contact and policy pages are not evident in the provided content. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks published security policies or incident response information. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

The website www.traktorpool.fi is currently inaccessible due to a DataDome CAPTCHA security mechanism that blocks direct content access. As a result, no meaningful business information, contact details, or policies are available for analysis. The site appears to be protected by a Web Application Firewall or bot mitigation service, which prevents automated or unauthorized access. This limits the ability to assess the company's market position, services, or technical infrastructure. The minimal HTML content consists solely of CAPTCHA-related scripts and iframe embedding, indicating a strong security posture in terms of bot protection but at the cost of accessibility for analysis. From a technical perspective, the site uses DataDome CAPTCHA technology to mitigate automated access. No other technologies, CMS, or frameworks are detectable due to the blocked content. There is no visible evidence of HTTPS configuration, security headers, or SEO optimization. The lack of privacy, cookie, or terms of service policies suggests compliance gaps. No contact or incident response information is available, limiting trust and transparency. Security posture evaluation is constrained by the lack of accessible content. While the presence of CAPTCHA indicates an effort to prevent automated attacks, the absence of visible security headers, SSL information, or vulnerability disclosures is a concern. The domain uses privacy protection for WHOIS data, which is common but reduces transparency. Overall, the site scores low on content quality, technical implementation, security posture, privacy compliance, and business credibility due to the blocked content. The overall risk assessment is moderate to high due to the inability to verify critical security and compliance aspects. Strategic recommendations include improving accessibility by balancing security with user experience, publishing clear privacy and cookie policies, providing contact and incident response information, and implementing standard security headers and HTTPS. Enhancing transparency and content quality will improve trust and compliance posture.

A

Aarrelehti / Viestimedia Oy

aarrelehti.fi

0

Metsänomistajan Aarre is a Finnish subscription-based forestry magazine published 11 times annually, targeting both novice and experienced forest owners. The website provides subscription options, access to a digital archive, and customer service portals. The business operates under Viestimedia Oy and maintains a professional online presence with clear branding and social media engagement. Technically, the site is built on WordPress with Visual Composer and integrates Google Tag Manager and OneTrust for analytics and cookie consent respectively. Security posture is solid with HTTPS and standard security headers, though explicit security policies and privacy documentation are missing. Overall, the site is well-structured and trustworthy, serving a niche media market in Finland.

K

Koneviesti

koneviesti.fi

0

Koneviesti is a Finnish media brand specializing in news, articles, and technical information related to agricultural and construction machinery. It operates under the parent company Viestimedia Oy and offers subscription-based premium content, a technical data service called Konedata, and a podcast named Konepodi. The website targets professionals and enthusiasts interested in machinery and related industries. Technically, the site is built using modern web technologies including React and Next.js, with integrations for analytics and marketing tools such as Google Tag Manager, BlueConic, and UserReport. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, the website enforces HTTPS, employs multiple security headers, and provides cookie consent mechanisms, reflecting a mature security posture. No critical vulnerabilities or suspicious activities were detected. Overall, the site is professional, trustworthy, and compliant with GDPR and privacy regulations.

L

Landesnetzwerk Weiterbildungsberatung Baden Württemberg

bildung-bringt-weiter.de

0

Landesnetzwerk Weiterbildungsberatung Baden Württemberg (LN WBB) is a regional network providing free, neutral, and personalized continuing education counseling services to individuals in Baden-Württemberg, Germany. The website serves as a portal to locate advisory centers and offers multiple consultation formats including in-person, video, telephone, and online. The network positions itself as a trusted educational resource with a focus on accessibility and quality standards. Technically, the website is built on WordPress with modern plugins for SEO, accessibility, and cookie management, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent implemented, though explicit security policies and headers are lacking. Overall, the website is professional, trustworthy, and well-suited for its target audience, but could improve privacy transparency and security documentation.

D

Discover Financial Services, Inc.

discover.com

0

Discover Financial Services, Inc. operates the website discover.com, providing a comprehensive suite of financial products including credit cards, online banking, personal loans, home loans, and identity theft protection. The company is a division of Capital One, N.A., and holds a strong market position as a large, enterprise-level financial institution. The website targets consumers seeking personal financial services and offers a user-friendly, mobile-optimized experience with clear navigation and professional branding. Technically, the website leverages modern technologies such as Adobe Experience Manager for content management, and integrates multiple analytics and marketing tools including Google Analytics, Adobe Launch, Facebook Pixel, TikTok Pixel, and others. Hosting and performance are optimized with Akamai services, ensuring fast load times and excellent mobile responsiveness. Accessibility and SEO best practices are well implemented. From a security perspective, the site enforces HTTPS, employs multiple security headers, and uses secure login forms. While no critical vulnerabilities were detected, the site could improve transparency by publishing explicit security policies and incident response contacts. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR adherence. The business credibility is high, supported by trust indicators such as FDIC membership, BBB accreditation, and clear corporate information. Overall, discover.com is a professionally managed, secure, and trustworthy financial services website with extensive content and robust technical infrastructure. The absence of WHOIS data is noted but does not detract from the site's legitimacy given the strong brand presence and comprehensive content.

D

Diners Club International Ltd

dinersclub.com

0

Diners Club International Ltd is a well-established financial services company specializing in premium charge and credit card products with a global presence. The website reflects a mature digital presence built on Adobe Experience Manager, offering rich content about cardmember benefits, business solutions, and exclusive privileges. The company leverages modern web technologies and maintains compliance with privacy regulations through Evidon cookie consent mechanisms. Security posture is strong with HTTPS and no visible vulnerabilities, though some security headers and explicit security policies could be improved. The absence of WHOIS data is likely due to privacy protection and does not detract from the brand's legitimacy. Overall, the website is professional, trustworthy, and well-optimized for user experience.

The website olx.ba is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to its content. This prevents extraction of any meaningful business, compliance, or security information from the page. The page title 'Just a moment...' and the presence of Cloudflare challenge scripts confirm that the site is protected by a Web Application Firewall (WAF) which requires human verification before access. Consequently, no privacy policies, contact information, or business details are available for analysis. The technical infrastructure is limited to Cloudflare's security platform with no visible CMS or analytics tools. The security posture cannot be fully assessed due to lack of access, but the presence of Cloudflare indicates some level of protection. Overall, the site cannot be properly evaluated until the WAF challenge is passed and the actual content is accessible.

K

KCUS

kcus.ba

0

KCUS is the University Clinical Center in Sarajevo, Bosnia and Herzegovina, providing a broad range of healthcare services across multiple specialized clinics. The website serves patients, visitors, and healthcare professionals with detailed information about clinics, contact details, and news. Technically, the site is built on WordPress using Elementor and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good navigation and content quality. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy and cookie policies, indicating room for improvement in compliance and security best practices. Overall, the site is trustworthy and professional but should address privacy and security gaps to enhance user trust and regulatory compliance.

Hydrogroup d.o.o. is a Bosnia and Herzegovina based company specializing in pools, wellness, fountains, and hydromassage pools. Established in 2000, it offers comprehensive services including design, supply, installation, maintenance, and consumables. The company has a solid regional presence with over 350 reference projects and partnerships with leading global brands. The website is built on WordPress with a moderate technical infrastructure including Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and Wordfence plugin, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

O

Općina Ilidža

opcinailidza.ba

0

Općina Ilidža operates as the official municipal government portal for the Ilidža municipality in Bosnia and Herzegovina. The website provides residents and stakeholders with access to public announcements, e-forms, contact information, and details about local governance and services. It serves as a key communication channel between the local government and the community, emphasizing transparency and accessibility. Technically, the website is built on WordPress using the Elementor page builder, leveraging common web technologies such as jQuery and Google Fonts. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. Google Tag Manager is used for analytics and tracking, although privacy disclosures are lacking. From a security perspective, the site enforces HTTPS and includes several important security headers, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of visible privacy and cookie policies, as well as incident response contacts, suggests areas for compliance and security improvement. Overall, the website is a professional and trustworthy government resource with solid technical foundations. Strategic enhancements in privacy compliance and security transparency would further strengthen its risk profile and user trust.

K

Kozmo Shop

kozmoshop.ba

0

Kozmo Shop is a regional e-commerce retailer specializing in cosmetics, makeup, hair care, maternity, fitness, and wellness products primarily serving Bosnia and Herzegovina. The website is professionally designed using the OpenCart platform with the Journal2 theme, featuring a broad product catalog and multiple brand partnerships. The technical infrastructure includes modern JavaScript libraries and integrations with marketing and analytics tools such as Google Analytics, Facebook Pixel, and AdRoll, indicating a mature digital marketing approach. Security posture is solid with HTTPS enforced and cookie consent implemented; however, the absence of security headers and limited contact information represent areas for improvement. No privacy policy or terms of service pages were detected, which may impact compliance and user trust. Overall, the site is accessible without WAF or blocking mechanisms and presents safe content suitable for general audiences.

Grand Hotel Neum is a well-established hospitality business located in Bosnia and Herzegovina, offering a wide range of services including accommodation, wellness, dining, and congress facilities. The website reflects a medium-sized hotel with a strong market position as the largest and most luxurious hotel on the Neum riviera. Technically, the site uses a traditional tech stack with jQuery, Bootstrap, and integrates third-party booking and analytics services. While the site is functional and content-rich, it lacks modern privacy and security compliance features such as privacy and cookie policies, GDPR indicators, and security headers. The domain registration data supports the legitimacy and long-term operation of the business. Overall, the website is professional but could improve in security and privacy compliance to enhance trust and regulatory adherence.

M

McCormick & Company

mccormick.com

0

McCormick & Company is a well-established leader in the spices and seasoning industry, with a history dating back to 1889. The company operates a comprehensive e-commerce platform offering a wide range of seasoning products and culinary content targeted at consumers interested in cooking and recipes. The website reflects a mature digital presence with consistent branding and high-quality content. Technically, the site leverages Shopify as its CMS and e-commerce platform, integrating multiple modern marketing and analytics tools such as Google Tag Manager, New Relic, and various social media pixels. Security practices are robust, with HTTPS enforcement and appropriate security headers, alongside a comprehensive privacy and cookie policy with consent management. However, the WHOIS data for the domain is missing or unavailable, which is unusual for a major brand and may indicate privacy protection or registry issues. Overall, the site demonstrates a strong business and technical foundation with good security posture and compliance.

C

Callebaut

callebaut.com

0

Callebaut is a well-established Belgian chocolate brand with a rich history dating back to 1911. The company offers a comprehensive range of chocolate products and culinary tools targeted primarily at artisans and professional chefs worldwide. Their website reflects a strong commitment to quality, sustainability, and community engagement, including professional training through the Chocolate Academy. Technically, the website is built on Drupal 10, uses modern web technologies, and demonstrates good performance and mobile optimization. Security posture is strong with HTTPS and security headers in place, though there is room for improvement in publishing explicit security policies and incident response information. The absence of WHOIS data is a notable gap but does not detract significantly from the overall legitimacy given the brand's global recognition and consistent online presence.

A

Ardo

ardo.com

0

Ardo is a well-established company specializing in supplying high-quality fresh-frozen vegetables, herbs, and fruits, targeting foodservice, industry, and retail sectors with a strong emphasis on sustainability. The company has a mature online presence with a website built on Drupal 10, integrating modern tracking and consent management tools such as Google Tag Manager and Cookiebot. The website demonstrates good content quality, professional design, and clear navigation, supporting a positive user experience. Security-wise, the site employs HTTPS and domain transfer protections but could enhance security headers and DNSSEC to further strengthen its posture. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned policies. Overall, Ardo presents a credible and trustworthy digital footprint consistent with its business claims.

M

Mlinar

mlinar.hr

0

Mlinar is a well-established Croatian bakery and retail food company with a domain registered since 1999, indicating a mature market presence. The website presents a professional design with consistent branding and clear focus on bakery products and retail services. The technical infrastructure includes modern CSS frameworks and JavaScript libraries, with integration of popular analytics and marketing tools such as Google Analytics and Meta Pixel. Cookie consent is managed via Cookiebot, demonstrating attention to privacy compliance. Security posture is solid with HTTPS and CSRF protections, though some security headers and policies could be improved. Overall, the website is trustworthy and professionally maintained, serving a general audience with safe content.

S

Samsonite

samsonite.com

0

Samsonite.fi is the official Finnish e-commerce website for Samsonite, a globally recognized luggage brand. The site offers a wide range of travel products including suitcases, backpacks, bags, and personalized accessories, targeting consumers in Finland. The business model is retail-focused with a strong emphasis on product personalization and customer service, supported by a comprehensive online platform. The website reflects a mature market position with consistent branding and a professional digital presence.

M

Mission Foods

missionfoods.com

0

Mission Foods is a well-established brand specializing in Mexican food products such as tortillas, chips, wraps, and related items. The company has a strong market presence since 1977 and targets consumers interested in authentic Mexican cuisine and recipes. Their website provides comprehensive product information, recipes, and store locator services, supporting a retail and e-commerce business model. Technically, the website is built on WordPress with modern technologies including Google Tag Manager, Facebook SDK, and various analytics tools, demonstrating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, contributing to a positive user experience. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though explicit security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, WHOIS data is unavailable or privacy protected, which slightly impacts trust but does not outweigh the strong brand and content quality. Overall, the website is professional, secure, and trustworthy with minor areas for security enhancement.

M

Messenger Links Generator

msng.link

0

The website msng.link offers a specialized online utility service that generates direct messaging links for a wide range of popular messenger platforms including WhatsApp, Telegram, Viber, Facebook Messenger, and others. It targets general internet users and businesses who want to facilitate direct communication via messengers. The business model appears to be free usage supported by advertising revenue, primarily through Google Adsense. The site is small in scale and focused on a niche utility function. Technically, the website employs modern web technologies including SvelteKit and Bootstrap for frontend development, and integrates Google Analytics and Adsense for tracking and monetization. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, some SEO and accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks important security headers and does not provide published security policies or incident response contacts. The absence of a cookie consent mechanism despite using tracking scripts indicates partial privacy compliance. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk assessment is low to moderate given the nature of the service and lack of sensitive data handling. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and improving privacy compliance to build greater user trust and regulatory adherence.

P

ProfiCentar

proficentar.ba

0

ProfiCentar is a professional e-commerce retailer specializing in tools and equipment, offering over 3500 items from renowned global brands. The website targets professional users and retail customers primarily in Bosnia and Herzegovina, positioning itself as a leading supplier in the region. The business model focuses on online sales supported by a comprehensive product catalog and customer support via phone and email. Technically, the site is built on WordPress with WooCommerce and Elementor, integrating modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site is well-structured, mobile-optimized, and employs HTTPS with appropriate security headers, reflecting a good digital maturity level. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is solid with no evident vulnerabilities, but the absence of published security policies and incident response contacts suggests room for improvement. Overall, the site is professional and trustworthy, with recommendations to enhance compliance and transparency.

A

Adriaticket

adriaticket.com

0

Adriaticket is an established online ticketing and event promotion platform primarily serving Croatian and regional markets. Founded in 2012, it offers ticket sales for concerts, festivals, and cultural events, leveraging a custom-built website with AngularJS and Bootstrap frameworks. The platform integrates multiple third-party services including Google Maps, Facebook SDK, and YouTube APIs to enhance user experience. While the website is professionally designed with good navigation and mobile optimization, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but absence of DNSSEC and security headers present areas for improvement. Overall, Adriaticket demonstrates a solid business presence with moderate risk, suitable for general audiences and event attendees.

O

ORION TELEKOM d.o.o.

tickets.rs

0

Tickets.rs is an established online ticketing platform operated by ORION TELEKOM d.o.o., founded in 2008 and serving primarily the Serbian market. The platform offers online ticket sales for a variety of entertainment events including concerts, theater performances, festivals, and sports events. The website demonstrates a professional design with good user experience and clear navigation, targeting a broad audience interested in cultural and sports events. Technically, the site is built using Angular 9, integrates Google Maps and Google Analytics, and employs modern UI components such as Material Design and Swiper.js for carousels. While HTTPS is enforced and no sensitive data is exposed, the site lacks DNSSEC and visible security headers, which are recommended for enhanced security. Privacy compliance is weak as no explicit privacy or cookie policies were found, and no consent mechanisms are implemented. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the site is functional and trustworthy but would benefit from improved privacy and security practices.

Entrio.si is an established online ticketing platform founded in 2012, primarily serving Slovenia and neighboring regions. It offers ticket sales and event promotion services for concerts, festivals, conferences, exhibitions, and theater performances. The platform targets a broad audience interested in cultural and entertainment events, providing a user-friendly interface with multi-language support and social login options. The business operates in the media sector with a medium-sized footprint and maintains consistent branding and good content quality.

M

Ministerstvo práce, sociálnych vecí a rodiny Slovenskej republiky

mpsvr.sk

0

The website www.mpsvr.sk is the official online presence of the Ministry of Labour, Social Affairs and Family of the Slovak Republic. It serves as a comprehensive portal for citizens, employers, and social service providers offering information on employment, social assistance, family benefits, social insurance, and pension systems. The site is authoritative and well-positioned as a government resource with consistent branding and clear contact information. Technically, the site uses a range of JavaScript libraries and the WebJET CMS platform, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and incident response disclosures are recommended. Overall, the site is trustworthy, compliant with GDPR, and free from adult or questionable content, making it suitable for general audiences.

T

The Human Safety Net

thehumansafetynet.org

0

The Human Safety Net website represents a global non-profit network focused on social support and community empowerment. The site aims to connect people to help transform lives, emphasizing humanitarian values. The website's content is well-structured, with consistent branding and a professional design that targets a general audience interested in social good. However, the absence of explicit business model details and contact information limits deeper business insights. Technically, the website employs modern JavaScript libraries such as jQuery and Kaltura for media playback, alongside common analytics and tracking tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site appears moderately optimized for performance and mobile responsiveness, though accessibility features are basic. The lack of detected CMS or hosting provider information suggests a custom or proprietary platform. From a security perspective, the website lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance with GDPR and other regulations. The WHOIS data is incomplete or obscured, which raises concerns about domain registration transparency and trustworthiness. No forms or direct contact channels were found, limiting user engagement and support avenues. Overall, the website is functional and professionally presented but requires improvements in privacy compliance, security best practices, and transparency of domain registration to enhance trust and credibility.

P

Profi Aesthetics

profi-aesthetics.eu

0

Profi Aesthetics is a small graphic design portfolio business based in Germany, showcasing a diverse range of creative projects including artwork, book design, web design, exhibition design, and event campaigns. The website serves primarily as a visual portfolio targeting general audiences interested in graphic design services. The business model focuses on presenting past projects to attract potential clients or collaborators. Technically, the website employs standard web technologies such as HTML5, CSS3, JavaScript, jQuery 1.12.3, and Swiper.js for interactive slideshows. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. However, the use of an outdated jQuery version and lack of modern frameworks or CMS indicates room for technical modernization. From a security perspective, the site lacks visible security headers and explicit HTTPS confirmation from the provided data, which may expose it to certain risks. No privacy or cookie policies are present, indicating non-compliance with GDPR and related regulations. No contact or incident response information is available, limiting transparency and trust. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professionally designed but requires improvements in privacy compliance, security posture, and contact transparency to enhance trustworthiness and regulatory adherence.