Security Directory

D

DMI Systems

dmisystems.com.au

0

DMI Systems is an Australian technology company specializing in data cleansing, enrichment, and inter-connectivity solutions primarily for businesses and organizations that manage large volumes of data. The company leverages the Professional Standards Number (PSN) to enable effective linking and reporting across disparate data sources, positioning itself as a leader in the Australian data management sector. The website content and structured data confirm a business-focused approach with a clear value proposition around improving data quality and connectivity. From a technical perspective, the website employs a range of JavaScript libraries including jQuery, Google Tag Manager, and Google Analytics, indicating a moderate level of digital maturity. The site is served over HTTPS with good SSL configuration, though it lacks some modern security headers and cookie consent mechanisms. The site is moderately optimized for mobile and accessibility but could benefit from improvements in these areas. Security posture is generally sound with no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and lack of published security policies or incident response contacts represent areas for improvement. The WHOIS data is unavailable due to privacy protection or malformed queries, but the website's professional presentation and consistent business information suggest legitimacy. Overall, the website presents a trustworthy and professional front for a niche technology business, though enhancements in privacy compliance and security best practices would strengthen its posture and user trust.

R

Rainmaker Live

rainmakerlive.com.au

0

Rainmaker Live operates a professional web-based SaaS platform called Rainmaker MarketPro, which integrates financial market data, research, and editorial content to serve financial professionals and market analysts primarily in Australia. The platform is positioned as a niche market intelligence hub under the parent company Institutional Shareholder Services, reflecting a medium-sized business with a focus on media and financial data services. The website demonstrates consistent branding and a good level of content quality, targeting a specialized audience with subscription-based services. Technically, the site employs a modern JavaScript stack including jQuery, Bootstrap, and various data visualization and export libraries, indicating a mature digital infrastructure. However, mobile optimization and accessibility features are basic and could be improved to enhance user experience across devices. Security-wise, the site enforces HTTPS and uses hCaptcha for bot protection on login forms, but lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected, but the absence of incident response or vulnerability disclosure information suggests room for improvement in security transparency. Overall, the website is safe, professional, and trustworthy, with a moderate security posture and some gaps in privacy compliance. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, improving mobile and accessibility features, and providing clear incident response contacts to strengthen trust and compliance.

I

ISS - Institutional Shareholder Services

aspirecpd.com.au

0

FS Aspire CPD is a professional continuing professional development platform tailored for financial advisers and related professionals in Australia. Powered by Financial Standard and operated under the Institutional Shareholder Services brand, it offers a rich library of CPD content, compliance tracking, and user-friendly administration tools. The platform targets financial advisers, investment managers, superannuation professionals, and industry professionals, positioning itself as a market leader in CPD content delivery within the Australian financial services sector. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies including Google Fonts, Microsoft Clarity for analytics, HubSpot for marketing automation, and Google Tag Manager for tag management. The site is mobile-optimized with good SEO practices and moderate performance. However, it lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. From a security perspective, the site enforces HTTPS and does not expose sensitive data in the HTML. It uses common tracking pixels and marketing tools but lacks visible security policies or incident response contacts. The WHOIS data is limited due to privacy restrictions but aligns with the Australian domain and business focus, indicating legitimacy. Overall, the security posture is good but could be enhanced by adding security headers and formal privacy and cookie policies. The overall risk assessment is moderate with a good trust level based on content quality and business credibility. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, publishing incident response contacts, and establishing a vulnerability disclosure program to strengthen compliance and trust.

M

Money magazine

moneymag.com.au

0

Money magazine is a well-established Australian personal finance media company offering a wide range of financial news, advice, reviews, and multimedia content including podcasts and videos. It targets Australian consumers interested in personal finance, investing, property, superannuation, and insurance. The website demonstrates a strong market position as Australia's longest-running and most-read personal finance magazine with a consistent brand and professional content. Technically, the site uses modern web technologies such as Bootstrap, Google Tag Manager, Microsoft Clarity, and Facebook Pixel, indicating a mature digital infrastructure. The site is mobile optimized and SEO friendly, though accessibility features could be improved. Security posture is strong with HTTPS enforced and secure forms, but explicit security headers and privacy policies are not clearly visible in the provided content. The WHOIS data is privacy protected, which is typical for media companies, but limits domain registration transparency. Overall, the site is trustworthy and professional with extensive content and strong social media presence.

R

Rainmaker Information

rainmaker.com.au

0

Rainmaker Information is a well-established Australian company specializing in providing comprehensive data, research, and market insights for the wealth management sector, including superannuation funds, investment managers, and financial advisers. The company operates under the umbrella of ISS - Institutional Shareholder Services, leveraging over 30 years of industry experience to deliver market-leading intelligence solutions. Their offerings include subscription-based data terminals, research reports, CRM integration, ratings and awards, and professional development services, positioning them as a key player in the Australian financial services market. Technically, the website is built on modern platforms such as Webflow and HubSpot, integrating multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security best practices are observed with HTTPS enforcement, security headers, and form protections like reCAPTCHA, although explicit security policies and incident response information are not publicly disclosed. From a security perspective, the site demonstrates a strong posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with consent mechanisms aligned with GDPR standards. However, the absence of direct contact emails or phone numbers and lack of published incident response or vulnerability disclosure policies suggest areas for improvement in transparency and user trust. Overall, Rainmaker Information presents a professional, trustworthy, and technically sound online presence consistent with its market position. The domain WHOIS data is privacy protected in accordance with auDA policies, which is justified given the nature of the business. Strategic recommendations include enhancing security transparency, publishing incident response and vulnerability disclosure information, and providing clearer direct contact channels to further strengthen trust and compliance.

R

Rainmaker Information Pty Ltd

selectadviser.com.au

0

SelectAdviser is a well-established Australian online referral network and information portal specializing in financial planners and practices. It offers a comprehensive search engine, educational resources, news, and adviser reviews targeted at individuals and businesses seeking financial planning services in Australia. The website is owned by Rainmaker Information Pty Ltd, a company with a long history dating back to 1992, indicating a mature market presence. The platform positions itself as a trusted intermediary connecting consumers with financial advisers and practices, supported by relevant news and educational content.

M

Money magazine

selectingsuper.com.au

0

Money magazine is a well-established Australian personal finance media outlet providing news, advice, and resources focused on superannuation and retirement planning. The website serves a broad Australian audience interested in financial literacy and investment strategies. It operates a subscription-based business model supplemented by advertising revenue and partnerships. The site demonstrates a mature digital presence with structured data, social media integration, and a responsive design. Technically, the website uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and multiple analytics and advertising platforms. The infrastructure appears stable and moderately performant, with good mobile optimization and SEO practices. The CMS is likely Rainmaker, indicated by API endpoints and script references. From a security perspective, the site enforces HTTPS and uses bot protection via hCaptcha. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no public security or incident response policies are published. Privacy compliance is partially addressed with a clear privacy policy and terms of service, but lacks a cookie consent mechanism. WHOIS data is privacy protected but consistent with a legitimate business. Overall, the website presents a professional and trustworthy front with minor areas for security and privacy improvement. It is suitable for its target audience and business goals.

F

FSiTV

fsitv.com

0

FSiTV operates as a specialized online video platform dedicated to the financial services industry in Australia, under the Financial Standard brand. It offers high-quality video content including shows, event highlights, educational series, and professional profiles, targeting financial services professionals. The platform is well-positioned as a niche media outlet within the Australian finance sector, leveraging its parent brand's reputation. Technically, the website employs a modern JavaScript stack with popular libraries and integrates Google Analytics and advertising services, indicating a mature digital infrastructure. However, mobile optimization and accessibility are basic and could be improved. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks explicit security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap for a site collecting user data via forms and tracking scripts. WHOIS data is unavailable, which raises some concerns about domain registration transparency but does not negate the professional presentation and content quality. Overall, the site is credible and functional but would benefit from enhanced privacy and security disclosures.

EkoLink.cz is a Czech environmental link catalog managed by the civic association BEZK, established since 2000. It serves as a resource hub for environmental, ecological, energy, transport, and societal topics, targeting the general public interested in nature and sustainability. The website aggregates over 1900 categorized links and provides community engagement through link submissions and feedback. Technically, the site uses a custom CMS called Toolkit, hosted on ecn.cz infrastructure, and integrates Google Analytics and Adsense for tracking and monetization. The design and user experience are basic but functional, with moderate SEO and accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal policies. Overall, the domain registration is consistent and legitimate, reflecting a stable and trustworthy non-profit entity.

U

Udržování-hrobů.cz

udrzovani-hrobu.cz

0

Udržování-hrobů.cz is a small local service website focused on providing grave maintenance services in Prague and its surroundings. The site also functions as a blog where the owner shares detailed accounts of maintenance visits. The business model is service-oriented, targeting individuals who cannot regularly visit graves themselves. The website is built on WordPress with common plugins for image galleries and social sharing, and it uses Google Tag Manager for analytics. The technical infrastructure is moderate with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies. The absence of WHOIS data reduces domain trustworthiness, though the site content appears legitimate and professional. Overall, the site is functional and serves its niche well but would benefit from improved compliance and security practices.

H

Hvězdný bazar

hvezdnybazar.cz

0

Hvězdný bazar is a Czech non-profit organization operating a charitable secondhand retail and training workplace for wheelchair users. Established in 2012 and affiliated with the Czech Association of Paraplegics (CZEPA), it offers a mix of physical and online retail through an e-shop and social media channels. The organization focuses on social inclusion, community building, and supporting local producers. Technically, the website is built on WordPress with WooCommerce, employing modern web technologies and standard security measures such as HTTPS and Google reCAPTCHA. While security headers are not explicitly detected, the site shows good security hygiene with no exposed sensitive data. Privacy compliance is mostly addressed with a comprehensive privacy policy and terms of service, though a cookie consent mechanism is absent. Overall, the site is trustworthy, professionally maintained, and serves a clear social mission.

Č

Česká společnost pro míšní léze ČLS JEP

sciday.cz

0

The website sciday.cz represents a non-profit initiative by the Czech Spinal Cord Injury Society (Česká společnost pro míšní léze ČLS JEP) focused on raising awareness about spinal cord injuries and promoting the International Spinal Cord Injury Day. The site provides educational content, event information, and links to international organizations such as ISCoS. The target audience includes healthcare professionals, patients, and the general public interested in spinal cord injury prevention and care. The organization appears small and specialized within the healthcare non-profit sector in the Czech Republic. Technically, the website uses a modern but simple technology stack including HTML5, CSS3, JavaScript, Bootstrap framework, Google Fonts, and Cloudflare DNS services. The site is mobile optimized with good navigation and content structure, though accessibility features are basic. No CMS or advanced platforms are detected, indicating a custom or lightweight implementation. Performance is moderate with no major issues detected. From a security perspective, the site uses HTTPS and Cloudflare DNS but lacks visible security headers such as CSP or HSTS. No privacy or cookie policies are present, indicating compliance gaps with GDPR. No forms or user data collection mechanisms are detected, reducing risk exposure. The absence of contact information and incident response channels limits transparency and user trust. Overall, the security posture is average with room for improvement in headers and compliance documentation. The overall risk is moderate given the non-commercial nature and limited data collection. Strategic recommendations include implementing security headers, adding privacy and cookie policies, publishing contact information for security and data protection, and enhancing compliance with GDPR. These steps will improve trust, security posture, and regulatory adherence.

C

Centrum Paraple, o.p.s.

aukceproparaple.cz

0

Centrum Paraple, o.p.s. operates a charitable auction platform through Galerie KODL, organizing annual art auctions to raise funds for people with paraplegia and wheelchair users. The website reflects a well-established non-profit entity with a clear mission and target audience of art collectors and philanthropic supporters. The digital infrastructure is built on Bootstrap 3.4.1 and a proprietary CMS (Vizus CMS), with moderate performance and good mobile optimization. Security posture is moderate, with cookie consent implemented but lacking visible security headers and explicit privacy policies. The WHOIS data is unavailable, likely due to privacy protection, but the website content and contact information indicate legitimacy and trustworthiness. Strategic improvements in security headers, privacy policy publication, and SSL configuration are recommended to enhance compliance and security.

C

Centrum Paraple, o.p.s.

golfproparaple.cz

0

Golf pro Paraple is a well-established charitable golf event organized to support individuals with spinal cord injuries through the non-profit organization Centrum Paraple. The website reflects a professional and consistent brand presence with clear communication of its mission and event details. The technical infrastructure is based on Bootstrap and a custom CMS (Vizus CMS), providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements are recommended in security headers and privacy policy transparency. Overall, the site demonstrates a trustworthy and credible presence in the non-profit sector with active social media engagement and clear contact information.

C

Centrum Paraple, o.p.s.

stardanceproparaple.cz

0

Centrum Paraple is a Czech non-profit organization focused on supporting people with spinal cord injuries through social rehabilitation services. The website promotes the StarDance charity event, which is supported by Czech Television and the public, to raise funds and awareness. The organization has a clear market position as a reputable charity with established partnerships and a strong social media presence. Technically, the website uses Bootstrap 3.4.1 and is built on the Vizus CMS platform, offering a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks some security headers and formal privacy and terms policies. WHOIS data is missing, which slightly impacts trust but the site content and contact information support legitimacy. Overall, the site is professional and trustworthy, serving a general audience with safe content.

B

Běh Pro Paraple

behproparaple.cz

0

The website behproparaple.cz represents a Czech charity or event organization focused on supporting paraplegics, likely through a running event called 'Běh Pro Paraple'. The site provides event information, news updates, and user registration capabilities. The business appears to be a small-sized non-profit entity founded in 2014, targeting the general public interested in charitable activities. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and analytics tools such as Google Analytics and Hotjar. The site is hosted by Active24, a Czech hosting provider, and uses HTTPS with a good SSL configuration. However, there is room for improvement in security posture, as no security headers are detected, and no explicit privacy or terms of service policies are published. Cookie consent is implemented via CookieYes, indicating some level of privacy compliance. Overall, the website is professionally designed with good user experience and mobile optimization but lacks some critical compliance and security documentation.

Ekofest.eu is the official website for the Ekofest ecological festival, a well-established non-profit event focused on environmental protection and sustainability in Prague, Czech Republic. The festival has a strong local and national presence with a tradition dating back to 2004. The website serves as an information hub for visitors, participants, and partners, offering event details, multimedia content, and engagement opportunities. The business model centers on community engagement and environmental education, supported by governmental and non-governmental organizations.

Č

Česká Kamenice

ceska-kamenice.cz

0

Česká Kamenice operates an official municipal website providing essential information and services to its residents and visitors. The site offers multilingual support, electronic official boards, forms, cultural calendars, and contact details for municipal officials. It positions itself as a trusted local government portal with a clear focus on community engagement and transparency. The website is well-branded and consistent with government standards, reflecting its role as a public service entity. Technically, the site is built on WordPress with Elementor and several plugins enhancing functionality such as search and listing grids. It uses Google Analytics for traffic insights and implements GDPR-compliant cookie consent mechanisms. The site is hosted likely by Active24, with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some improvements could be made in accessibility and security headers. From a security perspective, the website enforces HTTPS and uses cookie consent tools, but lacks explicit security policies and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-standing registration consistent with a municipal entity. Overall, the website presents a low-risk profile with good compliance and technical maturity for a small government entity. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance its posture.

The website alsikskrpa.cz is a cultural and historical project dedicated to the Hussite military leader Alšík Škrpa. It provides detailed historical narratives, media content including audio, and promotes a museum located at the Pátek castle in the Czech Republic. The target audience includes history enthusiasts and local visitors interested in Hussite history. The business model focuses on cultural heritage promotion and museum visitor engagement, positioning itself as a niche local cultural site. Technically, the website uses a traditional HTML/CSS/JavaScript stack with jQuery and Google Fonts, hosted on a Czech hosting provider inferred from the nameservers. The site is moderately performant, mobile-optimized, and has basic accessibility and SEO features. No CMS or advanced frameworks are detected. The site lacks advanced security headers and HTTPS enforcement is not confirmed from the provided data. From a security perspective, the site shows minimal security posture with no privacy or cookie policies, no security headers, and no vulnerability disclosure mechanisms. Contact information is clearly provided, but no incident response or security contacts are present. There is no evidence of user tracking or analytics, which reduces privacy risks but also limits marketing insights. Overall, the site is safe, with no adult or explicit content, and provides a good user experience with clear navigation and relevant content. However, it lacks important compliance elements such as privacy and cookie policies and could improve its security posture by implementing HTTPS and security headers.

A

Active24

hosting.cz

0

Active24 is a Czech-based web hosting provider offering a range of hosting packages tailored for entrepreneurs, web developers, and businesses. The company provides reliable and secure web hosting services, including domain registration, WordPress hosting, email solutions, SSL certificates, and server offerings such as VPS and dedicated servers. The website is professionally designed, targeting primarily the Czech market with Czech language content and localized services. The business model focuses on subscription-based hosting services with value-added offerings like free domain registration for the first year with hosting purchase. Technically, the website is built on WordPress and leverages modern JavaScript frameworks like Alpine.js, along with performance and tracking tools such as WP Rocket, Google Tag Manager, Metricool, and Iubenda for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site enforces HTTPS with Let’s Encrypt SSL certificates and employs cookie consent mechanisms aligned with GDPR compliance. While explicit security headers are not fully visible in the HTML, the use of Sentry for error monitoring and the absence of exposed sensitive data indicate a mature security posture. However, the lack of publicly visible security policies or incident response contacts suggests room for improvement in transparency. Overall, the domain WHOIS data is not publicly available, likely due to privacy protection or registry policies, which is common for hosting providers. The website content and branding are consistent and trustworthy, with no suspicious indicators detected. The site demonstrates a good balance of content quality, technical implementation, security, privacy compliance, and business credibility, resulting in a strong overall risk profile and digital maturity.

I

InterWay, a. s.

interway.sk

0

InterWay, a. s. is a well-established Slovak IT company with over 26 years of experience providing comprehensive IT infrastructure support, cloud services, cybersecurity consulting, and web application development. The company targets both private and public sector clients, including government ministries, banks, and healthcare institutions, positioning itself as a leading IT solutions provider in Slovakia. Their business model combines service delivery with proprietary products under the WebJET and IwayCloud brands. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and Google Tag Manager, with a proprietary CMS platform (WebJET). The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Performance is moderate, with room for improvement in accessibility and security headers. Analytics usage is moderate and privacy-conscious. From a security perspective, the site uses HTTPS with good SSL configuration and employs CSRF tokens in forms. However, it lacks explicit security policies and incident response contact information, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data aligns well with the company's claims, supporting legitimacy. Overall, InterWay's website demonstrates a strong business presence and technical maturity with good privacy compliance. Strategic improvements in security policy transparency and accessibility would further enhance their security posture and user trust.

V

Výskumný ústav geodézie a kartografie v Bratislave

vugk.sk

0

Výskumný ústav geodézie a kartografie v Bratislave is a Slovak government research institute specializing in geodesy, cartography, and cadastral data services. The website serves as an official portal providing access to various cadastral and geodetic services, including electronic portals and data provision. The target audience includes government entities, professionals in geodesy, and the general public seeking cadastral information. The business model is focused on government research and public service provision, positioning the institute as an authoritative source in its sector. Technically, the website uses a custom CMS (WebJET) with common JavaScript libraries such as jQuery and Bootstrap. The site is moderately optimized for performance and mobile devices, with good accessibility and basic SEO practices. The cookie consent mechanism is implemented, reflecting awareness of GDPR requirements, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and published security policies. No incident response or vulnerability disclosure information is available. The absence of privacy and terms policies represents a compliance gap. Overall, the security posture is moderate but could be improved with standard best practices. The website is trustworthy and professional, with no adult or questionable content. Contact information is clearly provided, including phone numbers and a physical address. No social media or email contacts were found. The site is not blocked by WAF or security challenges, allowing full content access for analysis.

G

Geodetický a kartografický ústav Bratislava

gku.sk

0

Geodetický a kartografický ústav Bratislava is a Slovak government institution specializing in geodetic and cartographic services. It provides key national services including cadastral data management, electronic portals for real estate information, and spatial observation services. The website serves government agencies, municipalities, and geospatial professionals with authoritative data and services. The institution holds a strong market position as the official geodetic authority in Slovakia. Technically, the website is built on a custom CMS (WebJET) and uses common JavaScript libraries such as jQuery and Bootstrap. It is mobile-optimized and accessible, with moderate performance. SEO is basic but functional. Cookie consent and GDPR compliance mechanisms are implemented effectively, reflecting good digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, the absence of security headers and vulnerability disclosure policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the legitimacy of the domain as a government entity with consistent registration details. Overall, the website is professional, trustworthy, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and trustworthiness further.

F

Focus Feedback

focusfeedback.nl

0

Focus Feedback is a Netherlands-based company specializing in customer and employee feedback solutions aimed at enhancing customer and employee excellence. The company provides software tools that enable businesses to gather and analyze feedback to improve loyalty and enthusiasm among customers and employees. The website reflects a professional B2B SaaS model targeting organizations seeking to optimize their customer and employee experience. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WP Rocket caching, and multilingual support via WPML. It integrates analytics and tracking tools such as Google Analytics, Hotjar, and Leadinfo, and employs Cookiebot for GDPR-compliant cookie consent management. Security-wise, the site enforces HTTPS and uses consent mechanisms but lacks explicit security headers and published security policies. No privacy policy or terms of service were found, which is a compliance gap. Overall, the website is well-designed, mobile-optimized, and trustworthy, but could improve transparency and security posture by publishing privacy and security policies and adding security headers.

S

Swiss Life Select

swisslifeselect.cz

0

Swiss Life Select is a financial advisory company operating in the Czech Republic, providing services such as housing loan securing, investment advice, life insurance setup, and pension insurance. The website presents a professional and consistent brand image, targeting individuals seeking comprehensive financial planning. The technical infrastructure includes modern analytics and tracking tools like Google Tag Manager and Adobe Helix RUM, with asynchronous script loading to optimize performance. The site is mobile-optimized and uses HTTPS for secure communication. However, the absence of visible privacy and cookie policies, as well as lack of contact information and WHOIS data, limits full trust assessment. Security posture is generally good with HTTPS and consent management scripts, but could be improved by adding security headers and explicit policies.

S

Slovenská agentúra životného prostredia

zelenyvzdelavacifond.sk

0

Zelený vzdelávací fond (ZVF) is a Slovak government-affiliated environmental education fund established in 2017 under the Slovak Environmental Agency (SAŽP). It focuses on supporting environmental education and awareness activities related to waste management, climate change, and biodiversity protection. The fund is financed by the Environmental Fund and donor resources, targeting children, youth, the general public, and educators within Slovakia. The website provides structured information about grants, supported projects, and final reports, reflecting a niche but important role in Slovakia's environmental policy landscape. Technically, the website uses modern frameworks such as Bootstrap 5 and Highcharts for data visualization, ensuring a responsive and user-friendly experience. The site is moderately optimized for performance and accessibility, with clear navigation and professional design. However, no CMS or hosting provider details are evident, and some SEO and accessibility improvements could be made. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and explicit incident response or vulnerability disclosure policies. The presence of a suspicious external domain embedded as a 1x1 pixel image is a minor concern that should be investigated. Privacy compliance is basic, with privacy and cookie policies present but no active consent mechanism. Overall, the website is trustworthy and professional, serving a government/non-profit function with clear contact information and consistent branding. Strategic recommendations include enhancing security headers, implementing cookie consent mechanisms, removing suspicious external links, and adding incident response information to improve security posture and compliance.

S

Slovenská agentúra životného prostredia

obnovdom.sk

0

The website obnovdom.sk is the official online presence of the Slovenská agentúra životného prostredia (SAŽP), a Slovak government agency focused on environmental matters and managing subsidy programs for home renovations. It provides detailed information, application forms, and statistical data related to the 'Obnov Dom' subsidy program aimed at renovating family homes to improve energy efficiency. The site targets Slovak homeowners and stakeholders involved in these subsidy programs, positioning itself as a trusted government resource. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates analytics tools such as Google Tag Manager and Hotjar for user behavior tracking. The design is responsive and accessible, following the Slovak government design system, ensuring good user experience across devices. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS and loads scripts asynchronously, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were found in the content. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which is a notable gap given the use of tracking technologies. Overall, the website is legitimate, professional, and trustworthy, with strong business credibility as an official government platform. However, improvements in privacy compliance and security policy transparency are recommended to enhance user trust and regulatory adherence.

K

KiKA

kikaninchen.de

0

KiKANiNCHEN is a well-established multimedia preschool platform operated under the KiKA brand, a joint venture of German public broadcasters ARD and ZDF. The website offers a rich variety of children's TV series videos, online games, craft ideas, and songs tailored for toddlers and preschool children, positioning itself as a trusted educational and entertainment resource in the German media landscape. The platform targets young children and their parents, providing a safe and ad-free environment for early online experiences. Technically, the site employs modern web standards including HTML5, CSS, JavaScript, and structured data (JSON-LD) to enhance SEO and accessibility, though mobile optimization and accessibility features are basic and could be improved. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal security policies, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, which is a critical area for improvement given GDPR requirements. Overall, the website demonstrates high business credibility and content quality but should strengthen its privacy and security posture to align with best practices.

Dresden 360 Grad Stadtrundgang is a specialized virtual tourism platform offering immersive 360° city tours of Dresden and its surrounding Elbland region. The website targets tourists and visitors interested in exploring Dresden's cultural and historical highlights through virtual reality experiences. The business operates a small but focused model promoting tourism and event venues with dedicated subdomains for different tour categories. Technically, the site is built on WordPress using the Divi theme, enhanced with Yoast SEO and Borlabs Cookie for GDPR compliance. The infrastructure is modern and mobile-optimized, providing a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though improvements like enabling DNSSEC and adding security headers are recommended. No critical vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the site presents a trustworthy and professional digital presence in the hospitality and tourism sector.

D

Deutsche Wohnen

deutsche-wohnen.com

0

Deutsche Wohnen is a major real estate company operating primarily in Berlin, Germany, focusing on residential property rental and management. The company positions itself as one of the largest landlords in Berlin, providing livable neighborhoods and urgently needed housing. The website reflects a professional and consistent brand image with a clear focus on its core business. Technically, the site uses modern web technologies including JavaScript, Cookiebot for cookie consent management, and Econda for analytics. The site is mobile-optimized and uses HTTPS, ensuring secure communication. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is moderate with a cookie banner present but no explicit privacy policy or terms of service detected in the provided content. The domain WHOIS data is unavailable, which raises some concerns about domain registration transparency, but the website content and branding suggest a legitimate business. Overall, the site is professional and trustworthy with room for improvement in security transparency and privacy documentation.

G

GASAG-Gruppe

gasag-gruppe.de

0

GASAG-Gruppe is a well-established energy company based in Berlin, Germany, with a history dating back to 1847. The company operates primarily in the energy sector, focusing on sustainable and climate-neutral energy solutions including the supply of green gas and electricity, energy services, and renewable energy production. The website reflects a mature digital presence with modern technologies such as Usercentrics for consent management and Google Tag Manager for analytics, hosted on Microsoft Azure DNS infrastructure. The site is professionally designed, mobile-optimized, and provides comprehensive corporate information and navigation. Security posture is strong with HTTPS enforced and consent mechanisms in place, although explicit security policies and incident response contacts are not publicly detailed. Overall, the website and domain registration data indicate a legitimate and credible business with a strong regional market position.

G

GASAG DEALS

gasagdeals.de

0

GASAG DEALS operates a discount and partner deals platform primarily targeting GASAG customers in Germany. The website offers a variety of deals with over 50 partners and discounts up to 50%, positioning itself as a value-added service for energy customers. The business model focuses on customer retention and engagement through exclusive offers. The company appears to be medium-sized with a market presence since 2020, leveraging digital channels and social media for outreach. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Borlabs Cookie for cookie consent management. Hosting is supported by Microsoft Azure DNS infrastructure, indicating a reliable and scalable environment. The site demonstrates good mobile optimization and SEO practices, though performance is moderate and accessibility is basic. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA and Facebook Pixel with consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are missing, and there is no visible security policy or incident response information. Cookie consent is properly implemented, but privacy policy and terms of service are not found, which may impact compliance. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to incomplete privacy and security documentation. Strategic improvements in security headers, privacy disclosures, and incident response readiness would enhance the site's security posture and compliance standing.

Tinexta Infocert international website represents a large digital trust services provider and certification authority, positioned as a market leader in digital trust for businesses, professionals, and individuals. The company operates under the Tinexta group and has been established since 2016. The website is professionally designed using WordPress with modern SEO and page builder tools, targeting an international audience with multilingual support. The technical infrastructure includes AWS DNS hosting and integration with Google Analytics and Tag Manager for analytics and marketing purposes. Security posture is moderate with HTTPS enabled and domain transfer protections, but lacks DNSSEC and explicit security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the site is trustworthy and professional but could improve transparency and security practices.

MUFG Pension & Market Services is a large-scale financial services provider specializing in superannuation fund administration and corporate market services, operating primarily in Australia. As a member of the global MUFG financial group, it leverages extensive expertise and digital platforms to serve major corporations, pension funds, and financial institutions. The website reflects a mature digital presence with structured data, professional branding, and a focus on user experience. Technically, the site employs modern frameworks such as Bootstrap and integrates advanced search and consent management tools, indicating a commitment to digital maturity and compliance. Security posture is strong with HTTPS enforcement, Content-Security-Policy headers, and anti-clickjacking measures, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is trustworthy and well-aligned with corporate standards, with no signs of blocking or WAF interference.

B

Boardroom Limited

investorserve.com.au

0

InvestorServe is a secure online portal operated by Boardroom Limited, targeting investors who need to manage their investment portfolios and access statements. The platform emphasizes security through multi-factor authentication and secure login mechanisms. The website is professionally designed with a focus on usability and investor services, reflecting a medium-sized finance sector business based in Australia. Technically, the site uses a modern tech stack including jQuery, Bootstrap, and Google Analytics, with moderate performance and good mobile optimization. Security posture is strong with HTTPS and MFA, though security headers and privacy policies are lacking. Overall, the site is trustworthy and legitimate, though improvements in privacy compliance are recommended.

T

TRANSPETROL, a.s.

transpetrol.sk

0

TRANSPETROL, a.s. is the sole operator of the oil pipeline system in Slovakia, providing critical transit and domestic transportation and storage of crude oil. The company holds a strategic position in the Slovak energy sector, serving primarily the national economy and business partners. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support via Weglot. Security posture is solid with HTTPS, cookie consent, and public fraud warnings, though formal security and incident response policies are not published. Overall, the site demonstrates good compliance with GDPR and transparency in data protection.

Z

Západoslovenská distribučná, a. s.

zsdis.sk

0

Západoslovenská distribučná, a. s. operates as a major electricity distribution company in western Slovakia, serving both households and businesses. The website provides comprehensive information about their services including new connections, changes, disconnections, and e-mobility solutions. The company positions itself as a reliable utility provider with a focus on customer service and regulatory compliance. Technically, the website employs modern JavaScript libraries such as jQuery and Swiper.js, and integrates Cookiebot for cookie consent management, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement and standard security headers, with no critical vulnerabilities detected in the visible content. Privacy compliance is well addressed through detailed cookie policies and consent mechanisms, although explicit security and incident response policies are not publicly available. Overall, the site demonstrates a professional and trustworthy online presence consistent with a large utility provider.

E

Energetika Slovensko, a.s.

zse.sk

0

Energetika Slovensko, a.s., operating under the ZSE brand, is a well-established energy supplier in Slovakia with over 100 years of history. The company provides electricity, gas, photovoltaic solutions, climate control, and electric mobility services to households, businesses, and organizations. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive service offerings. Technically, the site uses modern JavaScript frameworks such as Vue.js, integrates cookie consent management via Cookiebot, and employs Google Tag Manager and Exponea for analytics and marketing. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response information are absent. Privacy compliance is strong with GDPR-aligned policies and consent mechanisms. Overall, the website is trustworthy, user-friendly, and aligned with the company's business claims and market position.

N

NAFTA

nafta.sk

0

NAFTA is a leading Slovak international company specializing in the storage and development of underground natural gas reservoirs, as well as exploration and production of hydrocarbons. It holds a significant market position as the 6th largest gas storage operator in Europe, with operations extending beyond Slovakia into the Czech Republic, Germany, Austria, and Ukraine. The company offers a range of services including gas storage, innovative development projects, and support services in the energy sector. The website reflects a mature digital presence built on Drupal 10, featuring modern technologies and a professional design that supports business stakeholders and customers. Security measures such as HTTPS and security headers are well implemented, although some privacy compliance aspects like explicit cookie consent and incident response information could be improved. Overall, NAFTA demonstrates a strong security posture and credible business representation with comprehensive contact information and transparency.

E

eustream, a.s.

eustream.sk

0

EUSTREAM, a.s. operates the Slovak gas transmission system, serving as a critical energy corridor in Central Europe. The company provides natural gas transportation services interconnected with neighboring countries, focusing on safe, reliable, and ecological gas transmission. Their website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support, targeting energy market participants and stakeholders. Technically, the site uses established libraries like jQuery and Bootstrap, with a CMS platform WebJET, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS usage and cookie consent mechanisms, though explicit security headers and incident response contacts are not evident. Overall, the site demonstrates high professionalism and trustworthiness, supported by consistent WHOIS data and domain age aligning with the company's long history.

S

SPP - distribucia, a.s.

oplyne.info

0

The website oplyne.info serves as an official informational platform powered by SPP - distribucia, a.s., a major Slovak energy company specializing in natural gas distribution. It provides comprehensive content about natural gas usage for households and industries, ecological aspects, and energy-saving calculators. The site targets Slovak consumers interested in natural gas and related technologies, positioning itself as a trusted resource in the energy sector. Technically, the site is built on WordPress with modern frameworks and libraries such as Bootstrap, jQuery, and integrates marketing and analytics tools like Google Tag Manager and Facebook Pixel. The presence of a chatbot and newsletter subscription enhances user engagement and support. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data, although it lacks explicit security policy and incident response pages. Overall, the site demonstrates a mature digital presence with good security posture and compliance, suitable for its business domain.

The website www.sse.sk represents Slovenská elektrizačná prenosová sústava, the Slovak electricity transmission system operator responsible for managing the national electricity grid. It serves as a critical infrastructure entity within Slovakia's energy sector, providing electricity transmission and grid management services. The website is intended for energy sector stakeholders, regulatory bodies, and the general public interested in electricity transmission. Technically, the website is currently inaccessible beyond a security challenge page featuring CAPTCHA and obfuscated JavaScript, indicating the presence of a Web Application Firewall or bot protection mechanism. This limits the ability to fully assess the site's technical maturity, performance, and content quality. The visible technical stack is minimal, with no CMS or frameworks detected, and the site shows poor mobile optimization and accessibility. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are critical for compliance and user trust. The obfuscated JavaScript suggests anti-automation measures but also complicates transparency. No contact or incident response information is available, limiting the ability to assess incident readiness. WHOIS data confirms the domain's legitimacy and alignment with the Slovak energy sector. Overall, the site presents a low risk in terms of content safety but suffers from limited accessibility and transparency due to security controls. Strategic recommendations include improving transparency by publishing privacy and cookie policies, enhancing security headers, enabling HTTPS with strong SSL/TLS, and providing clear contact and incident response information to improve trust and compliance.

S

Slovenská spoločnosť pre techniku prostredia

sstp.sk

0

Slovenská spoločnosť pre techniku prostredia (SSTP) is a Slovak professional association focused on environmental technology and building services engineering. It serves as a voluntary association of scientific and technical professionals and is affiliated with national and international federations such as ZSVTS, REHVA, and ASHRAE. The website provides information about the association's activities, membership, publications, and events, targeting professionals in the energy and environmental technology sectors. Technically, the website uses a custom CMS with common libraries like jQuery and Bootstrap, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit incident response policies. Overall, the site is professional, trustworthy, and compliant with GDPR, though it could improve transparency on security and terms of service.

A

Asociácia pre mládež, vedu a techniku

amavet.sk

0

AMAVET is a Slovak non-profit organization dedicated to informal education and promotion of science and technology among children and youth. It holds a leading position in Slovakia's informal education sector, offering a wide range of activities including science festivals, competitions, summer camps, and club activities. The organization supports young scientists and has a recognized role in nominating candidates for prestigious international science competitions. The website reflects a professional and consistent brand image with good content quality and clear navigation.

O

OnePlus

oneplus.com

0

OnePlus is a globally recognized technology company specializing in the design, manufacture, and sale of smartphones, tablets, wearables, and audio devices. The company operates a direct-to-consumer e-commerce platform with localized websites, including this Finnish version, offering a comprehensive product catalog and community engagement. OnePlus maintains a strong market position as a premium yet accessible brand with a loyal customer base and active online community. Technically, the website leverages modern JavaScript frameworks such as Vue.js and Vuetify, integrates advanced analytics and fraud prevention tools, and demonstrates excellent mobile optimization and accessibility. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policy documentation is limited. Overall, the site reflects a mature digital presence aligned with industry best practices, supporting a high level of trust and user experience.

X

Xiaomi Global

xiaomi.com

0

Xiaomi Global operates as the official international website for Xiaomi Corporation, a leading global technology company specializing in consumer electronics such as smartphones, wearables, smart home devices, and lifestyle products. The website serves as a comprehensive e-commerce and marketing platform targeting a global audience interested in innovative technology products. The site demonstrates a high level of digital maturity, utilizing modern web technologies including React, advanced image formats, and performance monitoring tools to ensure a fast and responsive user experience across devices. Security posture is strong with HTTPS enforcement, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is evident through the presence of privacy and cookie policies with consent mechanisms, aligning with GDPR standards. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence consistent with a large enterprise brand.

F

Flexmail

flxml.eu

0

Flexmail is a Belgium-based email marketing platform offering a comprehensive SaaS solution for businesses to manage and automate their email campaigns. The platform targets small to medium-sized enterprises and marketers seeking effective and personalized email marketing tools. Flexmail positions itself as a leading provider in the Belgian market with a strong focus on campaign management, CRM segmentation, and marketing automation. The website is built on modern technologies such as React and Gatsby, ensuring fast performance and excellent mobile optimization. Security is well addressed with HTTPS enforcement and a strict Content Security Policy. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a professional and trustworthy business with a mature digital presence.

The website mielekoreashop.com is currently non-functional, displaying a database connection error with no accessible content or business information. The domain is registered since 2017 with a long expiry date, indicating a potentially legitimate registration, but the lack of website content and security features severely limits its digital maturity and trustworthiness. There are no visible privacy policies, cookie consent mechanisms, or contact details, which further diminishes compliance and user trust. Technically, the site lacks HTTPS information and security headers, exposing it to potential risks. Overall, the security posture is weak, and the site is not operational, posing a high risk for users and visitors.

M

Miele-outlet

miele-outlet.be

0

Miele-outlet.be is an e-commerce retail website specializing in selling returned or exchanged Miele appliances that have been tested and are in good condition. The website targets consumers in Belgium looking for discounted, high-quality household appliances. The business operates a niche outlet model focusing on refurbished products, leveraging the trusted Miele brand. The website is built on WordPress with WooCommerce, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Cookiebot for cookie consent management. The site demonstrates good digital maturity with responsive design and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and contact information are lacking. Overall, the domain registration and website content are consistent and legitimate, supporting a trustworthy online retail presence.