Security Directory

M

MTP (Międzynarodowe Targi Poznańskie) implied

greenpact.pl

0

GREENPACT is a professional event platform dedicated to ESG and sustainable development in Central Europe, organized under the auspices of Międzynarodowe Targi Poznańskie (MTP). The website presents a well-structured, content-rich platform with clear navigation, targeting businesses, government, and non-profit stakeholders interested in ESG topics. The technical infrastructure leverages modern web technologies including AngularJS and Google Analytics, hosted by OVH SAS, ensuring reliable performance and moderate loading speeds. Security posture is adequate with HTTPS usage and consent management scripts, though improvements in security headers and explicit policies are recommended. Overall, the website demonstrates a credible and trustworthy presence with strong partner integration and a clear business focus.

S

Szkoła ESG

szkolaesg.pl

0

Szkoła ESG is a Polish educational platform specializing in ESG (Environmental, Social, Governance) training and workshops, targeting both large enterprises and SMEs. It operates in partnership with the Krajowa Izba Gospodarcza and ADN Akademia, offering certified online courses and bespoke training solutions to prepare companies for sustainable development and compliance with EU regulations such as CSRD and ESRS. The website is professionally designed, well-structured, and features detailed expert profiles, enhancing its credibility and market positioning. Technically, the site is built on WordPress with WooCommerce for e-commerce functionality, leveraging modern libraries such as jQuery, Google Tag Manager, and MailerLite for marketing automation. It is hosted by OVH SAS with DNSSEC enabled and uses HTTPS with strong SSL configuration, indicating a mature digital infrastructure. Accessibility and SEO optimizations are well implemented, contributing to a positive user experience. From a security perspective, the site employs HTTPS, DNSSEC, and Google reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. Privacy compliance is partial, with a cookie consent mechanism present but no dedicated privacy policy page found. Overall, Szkoła ESG presents a trustworthy and professional online presence with strong business credibility and technical maturity. Strategic improvements in privacy and security policy transparency would further strengthen its security posture and compliance standing.

E

ESG standard

esgstandard.pl

0

ESGstandard.pl is a Polish platform dedicated to supporting small and medium enterprises (SMEs) in implementing sustainable development practices and ESG reporting. The platform is backed by the Krajowa Izba Gospodarcza (National Chamber of Commerce) and offers a comprehensive suite of services including ESG reporting tools, voluntary standards (VSME), educational materials, and consulting services. The website is professionally designed, well-structured, and provides multiple resources and contact options to engage SMEs and larger companies with complex supply chains. Technically, the site is built on WordPress with Elementor and uses modern plugins for SEO, accessibility, and GDPR compliance. Security posture is strong with HTTPS, DNSSEC, and reCAPTCHA integration. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the platform demonstrates a mature digital presence suitable for its business goals.

U

UCB Pharma Sp. z o.o.

ucb.pl

0

UCB Pharma Sp. z o.o. is a pharmaceutical company operating in Poland, focused on providing prescription medicines and patient support for serious diseases. The company is part of the global UCB group and targets patients, healthcare professionals, and pharmacies. The website is professionally designed using Drupal CMS, with good mobile optimization and accessibility features. It employs modern analytics and cookie consent tools to ensure compliance and user tracking moderation. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Overall, the website reflects a trustworthy and credible business presence in the healthcare sector.

Teva Poland operates as a pharmaceutical company specializing in generic and specialty medicines, positioning itself as a global leader in generic drug manufacturing. The website is professionally designed, targeting patients, healthcare professionals, and pharmacies in Poland. It offers comprehensive information about products, corporate responsibility, and patient support initiatives. The digital infrastructure leverages modern JavaScript libraries and analytics tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be enhanced. The absence of WHOIS data is due to registry privacy policies, which is common and justified for such enterprises. Overall, the website reflects a mature, trustworthy business presence with moderate tracking and compliance adherence.

S

Servier

servier.pl

0

Servier Polska operates as a pharmaceutical company in Poland, providing healthcare products and services primarily targeting healthcare professionals and patients. The website reflects a corporate presence with basic content and design elements, including the use of Font Awesome Pro icons. The domain is well-established since 1998 and secured with DNSSEC, indicating a legitimate and trustworthy entity. However, the website lacks visible privacy, cookie, and terms of service policies, as well as explicit contact information, which limits transparency and user trust. Technically, the site uses modern iconography but lacks evidence of advanced frameworks or analytics tools. Security posture is moderate with HTTPS and DNSSEC enabled but missing key security headers and policies. Overall, the site is safe for general audiences with no adult or explicit content detected.

S

Sanofi Pasteur

sanofipasteur.pl

0

The domain sanofipasteur.pl currently hosts a parked page with no active business content, serving as a placeholder rather than an operational website. Sanofi Pasteur is a globally recognized healthcare company specializing in vaccines, but this domain does not reflect active digital presence or business operations. The technical infrastructure is minimal, relying on an iframe to a parking service and loading consent management scripts without actual consent banners or policies. Security posture is weak due to lack of DNSSEC, security headers, and HTTPS details. The domain's recent registration date is inconsistent with the established brand history, suggesting this is a newly acquired or reserved domain rather than an official site. Overall, the website lacks essential compliance, contact, and trust indicators.

R

Roche Polska

roche.pl

0

Roche Polska is a leading healthcare company in Poland, providing innovative solutions in health protection. The website reflects a professional and consistent brand image aligned with Roche's global identity. The target audience includes healthcare professionals and patients within Poland. Technically, the site is built using modern frameworks such as Gatsby and React, offering good mobile optimization and accessibility. However, there is a lack of visible privacy and cookie policies, security headers, and explicit contact information, which are areas for improvement. The security posture is moderate with no detected blocking or WAF interference, but the absence of security best practices lowers the overall security score. Overall, the website is credible and trustworthy but could enhance compliance and security transparency.

N

Novo Nordisk

novonordisk.pl

0

Novo Nordisk Polska is the Polish branch of Novo Nordisk, a leading global healthcare company specializing in innovative therapies for chronic diseases such as diabetes, obesity, haemophilia, and menopause. The website serves Polish patients, healthcare professionals, and job seekers, providing comprehensive information about the company's scientific approach, heritage, and business activities. The company holds a strong market position with over 100 years of history and operates as an enterprise-level pharmaceutical business.

N

Novartis Poland

novartis.pl

0

Novartis Poland operates as a regional branch of the global healthcare giant Novartis AG, providing innovative pharmaceutical solutions including oncology, rare disease treatments, and advanced therapies such as gene and cell therapy. The website reflects a mature digital presence with professional design, localized content in Polish, and integration of modern web technologies and analytics tools. The security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response information are absent. WHOIS data is unavailable for the queried domain, which may be due to privacy protection or query limitations, but the website's branding and social media presence strongly support its legitimacy. Overall, the site demonstrates a high level of professionalism and compliance with privacy regulations.

E

Eli Lilly and Company

lilly.pl

0

Eli Lilly and Company operates the localized Polish website www.lilly.com/pl to provide information about its pharmaceutical products, therapeutic areas, and corporate responsibility. The site targets healthcare professionals and patients in Poland, offering detailed content about the company's values, products, and safety information. The website demonstrates a mature digital infrastructure using modern JavaScript frameworks and includes comprehensive privacy and cookie consent mechanisms, reflecting compliance with GDPR and local regulations. Security posture is good with HTTPS and consent management, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-maintained, supporting Eli Lilly's market position as a leading pharmaceutical enterprise.

C

Chiesi Poland

chiesi.pl

0

Chiesi Poland operates as a pharmaceutical company specializing in therapeutic areas such as respiratory health, neonatology, transplantology, and pediatrics. The company is part of the international Chiesi Group and demonstrates a commitment to corporate social responsibility, sustainability, and ethical business practices, evidenced by its B Corp certification. The website serves healthcare professionals, patients, and partners in Poland, providing product information, corporate news, and resources. Technically, the website employs a range of JavaScript libraries including jQuery, bxSlider, and Colorbox, alongside Google Maps API and OneTrust for cookie consent management. Accessibility is enhanced through the integration of AccessiWay. The site is mobile optimized and presents a professional design with clear navigation, although SEO metadata and structured data are minimal. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, but lacks visible security headers and does not publish a security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain trust verification, but the professional content and corporate branding support legitimacy. Overall, the website is well-constructed and compliant with privacy regulations, but could improve transparency around security policies and domain registration details to enhance trust and security posture.

B

Boehringer Ingelheim

boehringer-ingelheim.pl

0

Boehringer Ingelheim is a leading pharmaceutical company focused on innovation and improving health for humans and animals. The website is professionally designed, multilingual, and provides comprehensive information about the company’s mission, products, and sustainability efforts. Technically, the site uses modern web standards, structured data, and is mobile optimized, reflecting a mature digital presence. Security posture is strong with HTTPS and no obvious vulnerabilities, though explicit security policies and cookie consent mechanisms could be improved. The WHOIS data is unavailable, which is unusual for a company of this size, but the website content and external references strongly support legitimacy. Overall, the site represents a trustworthy and professional corporate presence.

Biogen Poland Sp. z o.o. operates as a local subsidiary of the global biotechnology leader Biogen, focusing on innovative therapies in neurology, neuropsychiatry, immunology, and rare diseases. The website targets Polish users with comprehensive information about the company, its therapeutic areas, career opportunities, and corporate responsibility. The digital infrastructure is built on Adobe Experience Manager, leveraging modern web technologies including jQuery, Cookiebot for consent management, and Google Analytics for user insights. The site is well-structured, mobile-optimized, and compliant with GDPR regulations, featuring clear cookie and privacy policies. Security posture is strong with HTTPS enforced and secure cookie practices, though some security headers could be improved. WHOIS data is unavailable due to registry restrictions, but the site’s professional presentation and linkage to Biogen’s global domains support its legitimacy.

A

AstraZeneca

astrazeneca.pl

0

AstraZeneca Poland's website serves as a comprehensive corporate portal providing information about the company's pharmaceutical products, clinical trials, innovations, and sustainability initiatives targeted at Polish audiences including healthcare professionals and patients. The site reflects AstraZeneca's position as a leading global biopharmaceutical company with a strong focus on innovation and patient care. Technically, the website is built on Adobe Experience Manager CMS, hosted on AWS infrastructure, and employs modern analytics and tag management tools such as Adobe Analytics and Tealium. The site is mobile-optimized, accessible, and SEO-friendly, with a consistent and professional design. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response disclosures could be improved. The absence of WHOIS data for the domain is notable but does not detract from the site's legitimacy given its corporate branding and linkage to official AstraZeneca domains. Overall, the website demonstrates a mature digital presence aligned with enterprise standards.

A

Angelini Pharma Polska Sp. z o.o.

angelini.pl

0

Angelini Pharma Polska Sp. z o.o. is a Polish subsidiary of the Italian Angelini S.p.a., specializing in pharmaceutical production and distribution with a focus on therapeutic areas such as depression, pain, cold symptoms, and rare diseases. The company holds a strong market position in Poland, supported by a professional website that provides comprehensive information about its products, research, corporate responsibility, and global presence. The website is well-structured, mobile-optimized, and integrates modern JavaScript libraries and analytics tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. The absence of WHOIS data is a minor concern but does not detract significantly from the overall legitimacy given the professional presentation and known parent company affiliation.

A

Amgen Polska Sp. z o.o.

amgen.pl

0

Amgen Polska Sp. z o.o. operates as a subsidiary of the global biotechnology leader Amgen Inc., focusing on innovative human therapeutics within the healthcare sector. The website serves healthcare professionals, patients, and partners by providing comprehensive information about products, corporate affairs, and patient support programs. The company holds a strong market position in Poland, supported by its global reputation and local presence. The business model centers on biopharmaceutical development and patient engagement, reflecting a mature and established enterprise founded in 1980. Technically, the website employs modern web technologies including JavaScript frameworks, Bootstrap for responsive design, and Cookiebot for consent management, indicating a good level of digital maturity. The site is mobile-optimized and incorporates SEO best practices, although some accessibility features could be enhanced. Hosting details are not explicit, but the infrastructure supports moderate performance and reliable user experience. From a security perspective, the site enforces HTTPS with a solid SSL configuration and includes a Content Security Policy header. Cookie consent mechanisms comply with GDPR, and no critical vulnerabilities or exposed sensitive data were detected. However, additional security headers and a formal security policy could further strengthen the posture. The WHOIS data confirms the legitimacy and consistency of the domain registration with the corporate identity. Overall, the website presents a low-risk profile with strong business credibility and compliance adherence. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility to elevate the user experience and security maturity further.

A

Almirall

almirall.pl

0

Almirall is a healthcare company focused on improving patient outcomes through pharmaceutical products and therapies, with a dedicated presence in Poland. The website reflects a professional and well-structured digital presence, leveraging modern technologies such as Liferay CMS, Google Tag Manager, Google Analytics, and accessibility tools to ensure compliance and user experience. Privacy and cookie consent mechanisms are robust, indicating a commitment to GDPR compliance. However, the absence of WHOIS data limits the ability to fully verify domain registration legitimacy. Security posture is strong with HTTPS and security headers, but explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the website is trustworthy, well-maintained, and aligned with industry standards.

AbbVie is a global bio-pharmaceutical company with a strong presence in Poland, focusing on advanced drug research, development, and patient therapies. The website reflects a professional and consistent brand image, targeting patients, healthcare professionals, and researchers. Technically, the site uses Adobe Experience Manager CMS and integrates Brightcove for video content, alongside multiple third-party analytics and advertising services. Security posture is adequate with HTTPS enabled but lacks visible security headers and explicit privacy or cookie policies. No contact or incident response information is readily available, which could impact user trust and compliance. Overall, the site is well-structured and content-rich, but improvements in privacy compliance and security transparency are recommended.

AbbVie is a global bio-pharmaceutical company with a strong presence in Poland, focusing on research, development, and delivery of innovative therapies that improve patients' lives. The website reflects a professional and consistent brand image, targeting patients, healthcare professionals, and researchers. The technical infrastructure leverages Adobe Experience Manager CMS, Brightcove video technology, and multiple analytics and advertising platforms, indicating a mature digital presence. Security posture is adequate with HTTPS enabled but lacks visible security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

V

Valencia Kommunikation AG (bisher: cab services ag)

cabag.ch

0

cab.digital is a Swiss digital agency based in Basel, operating under the legal entity Valencia Kommunikation AG (formerly cab services ag). The company specializes in web development, user experience design, digital strategy consulting, and agile coaching. Their market position is that of a trusted regional digital partner with a strong emphasis on customer relationships and pragmatic digital solutions. The website showcases detailed case studies and a professional design that reflects their expertise and client focus. Technically, the site uses modern JavaScript frameworks including Vue.js and CMS platforms like TYPO3 and Craft CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though the site lacks a dedicated security policy or incident response information. WHOIS data is privacy protected, which is justified for this business type, and no suspicious patterns were detected. Overall, the website is professional, trustworthy, and well-structured, supporting the company's credibility in the digital services market.

A

Autostrada Wielkopolska SA

autostrada-a2.pl

0

Autostrada Wielkopolska SA operates and manages toll highways in Poland, specifically the A2 route connecting Poland and Germany. The company provides toll collection services, traveler information, and infrastructure management. The website is professionally designed, multilingual, and targets drivers and transport companies. Technically, the site is built on WordPress with modern plugins and scripts, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although formal security policies and incident response information are absent. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

A

AAA AUTO

aaaauto.pl

0

AAA AUTO is the largest used car seller in Central Europe, operating a comprehensive platform for buying, selling, and financing used vehicles primarily in Poland. The website offers a professional and user-friendly experience with extensive filtering options, online purchase capabilities, and a network of physical locations. The technical infrastructure leverages modern JavaScript libraries and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site demonstrates a mature digital presence aligned with its market position.

A

Atlas Ward Polska sp. z o.o.

atlasward.pl

0

Atlas Ward Polska sp. z o.o. is a leading general contractor in Poland specializing in industrial, logistics, and technological construction projects. With over 26 years of experience and a portfolio exceeding 850 projects covering 6 million square meters, the company is positioned as the number one in cubature construction within the Polish industrial sector. Their services include general contracting, design-build solutions, and expert consultancy, supported by a subsidiary specializing in installations. The company emphasizes innovation through digitalization, automation, and energy efficiency, leveraging technologies such as BIM and artificial intelligence to optimize project delivery and client satisfaction. Technically, the website is built on WordPress with modern plugins for SEO, analytics, and multilingual support, demonstrating good performance and mobile optimization. Security posture is solid with HTTPS, cookie consent, and no evident vulnerabilities, though some security headers could be enhanced. Overall, the website reflects a professional, trustworthy, and compliant business with strong market presence and digital maturity.

The website assay.pl is currently inaccessible, returning a 403 Forbidden error page with no visible content or metadata. This prevents any meaningful analysis of the business, its services, or technical infrastructure. The lack of accessible content also means no privacy, cookie, or security policies are available for review. The domain appears to use WHOIS privacy protection, which limits transparency about the registrant and reduces trustworthiness. Without access to the site, no information about the company's market position, technical stack, or security posture can be determined. The overall risk is elevated due to the lack of accessible information and transparency.

A

ASM Group

asmgroup.pl

0

ASM Group is a well-established international holding company based in Poland, specializing in sales support and outsourcing services. With over 25 years of experience and operations in 5 countries, the company manages 9 subsidiaries and serves nearly 1500 clients across diverse industries. Their service portfolio includes merchandising, outsourcing, trade marketing, digital marketing, software development, and partnership with Alibaba.com for global B2B trade. The website reflects a professional and consistent brand image, targeting businesses seeking comprehensive sales and marketing support solutions. Technically, the site is built on WordPress with modern libraries and frameworks, offering good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Alians OZE is a Polish energy solutions company specializing in renewable energy projects including photovoltaic installations, heat pumps, and energy storage systems for residential, business, and public sector clients. The company has a solid market presence with over 6000 projects completed and partnerships with major financial and energy firms. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. Analytics tools such as Google Analytics and Microsoft Clarity are used for user behavior insights. Security posture is good with HTTPS and no exposed sensitive data, but lacks published privacy policies and incident response information, which are important for compliance and trust. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

Alfavox is a Polish technology company specializing in Customer Experience and Employee Engagement solutions, including Video Contact Center, Video Chat, Workforce Management, and AI-powered tools. The company targets businesses seeking to enhance customer interactions and operational efficiency, boasting a client base that includes Fortune 500 companies. Their website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site employs modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Yandex Metrika. Security measures include HTTPS enforcement and reCAPTCHA, though explicit security headers and policies are not published. The WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional website and contact information. Overall, Alfavox presents as a credible business with room for improvement in transparency and security documentation.

A

AIP Seed

aipseed.com

0

AIP Seed is a private venture capital fund focused on early-stage startups, particularly those leveraging AI and breakthrough technologies with global potential. The company positions itself as a decisive and agile investor, supporting visionary founders to transform bold ideas into global companies. The website is built on WordPress using the Bricks theme builder, featuring modern design elements, lazy loading, and a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers are not explicitly detected in the HTML. Privacy compliance is supported by a clear privacy policy and cookie consent banner. However, no direct contact information or terms of service pages are found, which could be improved for better business credibility and user trust. Overall, the website is professional, well-structured, and trustworthy, suitable for its target audience of startups and investors.

Z

Związek Pracodawców Przemysłu Rozrywkowego i Gier

zpprig.pl

0

Związek Pracodawców Przemysłu Rozrywkowego i Gier (ZPPRiG) is a Polish industry association representing employers in the entertainment and gaming sector. Founded in 2017, it supports businesses by advocating for fair competition, consumer protection, and the promotion of technical innovations within the leisure and gaming market. The website clearly communicates the organization's mission and target audience, focusing on business stakeholders in this niche industry. The site is professionally designed with consistent branding and provides essential contact information, although it lacks comprehensive privacy and cookie policies. Technically, the website is built on WordPress CMS using popular plugins such as WPBakery Page Builder, Contact Form 7, and Yoast SEO. It employs modern JavaScript libraries like jQuery and Bootstrap for responsive design and interactive elements. The site is mobile-optimized and demonstrates good SEO practices, but performance is moderate with room for improvement in accessibility features. No analytics or tracking services are detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks security headers such as Content-Security-Policy and X-Frame-Options. There is no visible incident response or vulnerability disclosure information, and no cookie consent mechanism is implemented, which may affect GDPR compliance. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the security posture is adequate but could be enhanced by adopting additional best practices and transparency measures. The overall risk assessment is moderate with no critical issues found. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, publishing incident response and vulnerability disclosure information, and enhancing accessibility. These improvements would strengthen compliance, user trust, and security resilience.

Z

Związek Pracodawców Przemysłu Piwowarskiego w Polsce - Browary Polskie

browary-polskie.pl

0

Związek Pracodawców Przemysłu Piwowarskiego – Browary Polskie is a prominent industry association representing the largest brewing companies in Poland. The organization focuses on promoting responsible alcohol consumption, collaborating with government bodies and other organizations, and fostering beer culture in Poland. Their website serves as an information hub for industry news, press releases, and social responsibility campaigns, targeting stakeholders within the brewing sector and the general public interested in beer industry developments. Technically, the website is built on WordPress and leverages a modern technology stack including jQuery, Bootstrap, and various plugins for enhanced user experience and multilingual support. The site is mobile-optimized and includes cookie consent mechanisms compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent tools, but lacks explicit security headers and incident response policies publicly available. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture with room for improvement in formal security disclosures. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its role as an industry association portal effectively. Strategic enhancements in security transparency and contact information availability could further strengthen its credibility and user trust.

Z

Związek Pracodawcow Przemyslu Opakowan i Produktow w Opakowaniach EKO-PAK

eko-pak.biz

0

Związek Pracodawców Przemysłu Opakowań i Produktów w Opakowaniach EKO-PAK is a Polish industry association focused on the packaging sector. The website serves as an information hub providing news, legal updates, documents, and event information relevant to packaging industry stakeholders. The organization appears to be a small, established non-profit entity founded in 2015, with a clear focus on advocacy and member services within Poland. The website content is primarily in Polish and targets industry professionals and related stakeholders. Technically, the website is built on WordPress using the Divi theme, incorporating common web technologies such as jQuery, Google Fonts, Google Analytics, Facebook Pixel, and Mailchimp for marketing. The site is hosted with DNS managed by Cloudflare and registered through Key-Systems GmbH. Performance and mobile optimization are moderate to good, with basic SEO and accessibility features. However, some modern security best practices like DNSSEC and security headers are missing. From a security perspective, the site uses HTTPS and has domain transfer protections, but lacks advanced security headers and DNSSEC. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are publicly available. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service clearly identified. Social media presence is established on Facebook and Twitter, enhancing trust and outreach. Overall, the website is professional and trustworthy for its business purpose but could improve in security posture and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to enhance trust and compliance.

Ś

Śląski Klaster Lotniczy

aerosilesia.eu

0

Śląski Klaster Lotniczy is a Polish aviation cluster organization dedicated to supporting and promoting aviation-related businesses and projects primarily in the Silesian region. The website serves as a hub for news, projects, events, and member information, targeting industry professionals and cluster members. The organization emphasizes internationalization, innovation, and collaboration within the aerospace sector. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Analytics, and social media integrations, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and basic security practices observed, though additional security headers and incident response information could enhance protection. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the website is professional, trustworthy, and well-positioned within its niche.

Z

Związek Producentów Sprzętu Oświetleniowego Pol-lighting

pollighting.pl

0

Pol-lighting is a well-established Polish industry association representing leading manufacturers of lighting sources and professional lighting equipment. The organization plays a significant role in advocating for the lighting sector, collaborating with government bodies, research institutes, and European organizations such as LightingEurope. Their website reflects a mature digital presence with comprehensive content including news, events, and membership information. Technically, the site uses modern web technologies, including the Yii framework and Google reCAPTCHA for form security, hosted by a reputable Polish provider. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies. Overall, the site is professional, trustworthy, and serves its target audience effectively.

SORGA is a Polish technology company specializing in a Membership Management System platform designed to automate and streamline administrative processes for membership-based organizations such as associations, chambers, sports unions, and non-profits. The platform offers modules for member management, recruitment, communication, payment processing, event registration, and analytics. With nearly 200 clients and over 50 implementations, SORGA positions itself as a flexible and customizable solution tailored to diverse organizational needs. The website reflects a professional and consistent brand image, targeting organizations seeking digital transformation in member administration. Technically, the website employs a modern but somewhat dated tech stack including jQuery 2.1.3, Bootstrap 4.5.2, Animate.css, and integrates Google Analytics and Drift chat for user engagement and analytics. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting and domain registration are consistent with a Polish business entity, registered since 2017. From a security perspective, the website uses HTTPS for external resources but lacks visible security headers and DNSSEC is not enabled on the domain. There is no published privacy or cookie policy, nor a security policy or incident response contact, which are areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk assessment is low, with the main recommendations focusing on improving privacy compliance, implementing security headers, enabling DNSSEC, and publishing clear security and incident response policies to enhance trust and regulatory adherence.

W

Webcomm Marta Eichstaedt

webcasty.pl

0

Webcasty.pl is a Polish small business focused on delivering webinars and online training primarily in the e-learning sector. The website promotes webinar events and training sessions, targeting enthusiasts and professionals interested in webinar technology and online education. The business model revolves around hosting webinars and providing training services for online trainers. Technically, the site is built on WordPress with common libraries such as jQuery, Select2, and Font Awesome, and integrates tracking tools like Google Tag Manager and Facebook Pixel. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is adequate with HTTPS enforced and some best practices like disabling video context menus, but lacks security headers and cookie consent mechanisms. Privacy policy is present and GDPR compliance is indicated, though cookie consent is missing. No phone or physical contact details are provided, only a contact form. Overall, the site is professional and trustworthy but could improve security and privacy compliance.

R

Raz Dwa Projekt

razdwaprojekt.pl

0

Raz Dwa Projekt is a Polish digital agency specializing in social media management, digital marketing, website development, and custom online applications. Founded in 2009, the company serves a diverse client base including notable brands and organizations, positioning itself as a trusted partner in the digital marketing and technology space. Their service offerings include strategy creation, consulting, social media training, and bespoke software solutions, targeting businesses seeking comprehensive online presence and engagement. Technically, the website is built on the MODX CMS platform, utilizing modern web fonts and asynchronous loading of analytics and tracking scripts such as Facebook Pixel and Google Analytics. The site demonstrates good mobile optimization and SEO practices, though some accessibility features appear basic. Performance is moderate with room for improvement in security headers and advanced technical optimizations. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers and published security policies. No vulnerability disclosure or incident response contacts are provided, which could be improved to enhance trust and compliance. The cookie consent mechanism is present and functional, indicating some level of privacy compliance, though no explicit privacy policy or terms of service were found. Overall, Raz Dwa Projekt presents a professional and trustworthy digital presence with solid business credibility. Strategic improvements in privacy documentation, security headers, and incident response transparency would strengthen their security posture and compliance standing.

H

Het CCV

hetccv.nl

0

Het CCV is a Dutch government-related center focused on crime prevention and safety, collaborating with government entities, residents, and entrepreneurs to create a safer and more resilient society. The organization has a well-established online presence with a domain registered since 2004, reflecting its longstanding role in the sector. The website provides comprehensive information about its mission and services, targeting a national audience in the Netherlands. Technically, the site is built on WordPress and leverages modern tools such as HubSpot for analytics and user engagement, as well as Cookiebot for GDPR-compliant cookie management. Security measures include HTTPS with DNSSEC enabled and the use of Cloudflare cookies, indicating a good security posture. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its audience.

D

dongit.eu

securityreporter.app

0

Security Reporter is a self-hosted pentest reporting platform designed to streamline and enhance the workflow of security teams including pentesters, red teamers, and cybersecurity professionals. The platform offers features such as collaborative tools, API and webhook integrations, and advanced reporting capabilities, positioning itself as a comprehensive solution for agile pentesting. The website is professionally designed, mobile-optimized, and includes trust signals such as client logos from reputable organizations and a vulnerability disclosure policy, indicating a mature business presence in the cybersecurity technology sector. Technically, the website is built on Drupal CMS with modern frontend technologies including Bootstrap, Highlight.js, and Plyr for video playback. It integrates multiple analytics and marketing tools such as Google Tag Manager, LinkedIn Insight, Zoho SalesIQ, and Cookie Script for consent management, reflecting a well-rounded digital maturity. The site is fully accessible without WAF or blocking mechanisms, uses HTTPS with excellent SSL configuration, and implements GDPR-compliant cookie consent mechanisms. From a security perspective, the platform emphasizes secure handling of sensitive data and provides a vulnerability disclosure policy, though explicit security headers are not detected in the provided data. No critical vulnerabilities or exposed sensitive information were found. The absence of direct contact emails or phone numbers suggests a preference for controlled communication via contact forms. Overall, the security posture is strong but could be enhanced by publishing incident response contacts and adding security certifications. The overall risk assessment is low with a high trustworthiness rating. Strategic recommendations include enhancing security headers, publishing incident response details, and expanding transparency with certifications to further strengthen trust and compliance. The platform is well-positioned in the cybersecurity technology market with a clear focus on pentest reporting efficiency and quality.

Buckaroo Payments is a well-established payment service provider based in the Netherlands, offering a comprehensive suite of online and in-store payment solutions including popular payment methods, payment terminals, and enterprise services. The company has a significant market presence with over 30,000 webshops and 25,000 entrepreneurs using its services, bolstered by the acquisition of SEPAY in 2023 which expanded its product portfolio to include payment terminals. The website demonstrates strong digital maturity with modern technologies, multi-language support, and extensive use of analytics and marketing tools while maintaining GDPR compliance through cookie consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA Enterprise, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Overall, Buckaroo presents a professional, trustworthy, and user-friendly online presence aligned with its business objectives in the fintech and e-commerce sectors.

Buckaroo Payments is a well-established Dutch payment service provider specializing in online payment methods and in-store payment terminals. With a strong market presence serving over 30,000 webshops and 25,000 entrepreneurs, Buckaroo offers a comprehensive payment ecosystem including omnichannel and enterprise solutions. The website demonstrates a mature digital infrastructure leveraging modern technologies such as HubSpot CMS, Google Analytics, and Cookiebot for privacy compliance. Security posture is strong with HTTPS, security headers, and reCAPTCHA Enterprise integration. Privacy and cookie policies are present and GDPR compliant. Overall, the website reflects a professional, trustworthy, and user-friendly platform aligned with industry standards.

W

WEB Marketing d.o.o.

easyeditcms.com

0

WEB Marketing d.o.o. is a Croatian technology company specializing in custom web development, ecommerce solutions, and their proprietary EasyEdit CMS platform. With over 25 years of experience and multiple awards, they serve businesses seeking tailored web solutions and integrations with various business systems. Their website reflects a mature digital presence with a focus on stability and customization. Technically, the site uses Microsoft technologies, jQuery, and Google Tag Manager, hosted by Premium Hosting, and is mobile optimized with good SEO practices. Security posture is solid with HTTPS and closed-source CMS usage, though improvements in security headers and published policies are recommended. Overall, the domain registration data aligns well with the business claims, indicating high legitimacy and trustworthiness.

G

Gainfront

gainfront.com

0

Gainfront is a technology company specializing in AI/ML-powered supplier lifecycle management software. Their platform offers a comprehensive suite of procurement tools including supplier discovery, strategic sourcing, contract lifecycle management, and spend management, targeting medium to large enterprises focused on improving procurement efficiency and compliance with diversity and ESG goals. The company has established partnerships with SAP and Microsoft, enhancing its market position and integration capabilities. Technically, the website is built on WordPress with modern plugins and marketing tools, delivering a professional and responsive user experience. Security posture is strong with HTTPS and reCAPTCHA Enterprise, though some security headers and policies could be improved. The absence of WHOIS registration data is a notable anomaly, warranting further investigation, but the website's content quality, certifications, and customer testimonials support its credibility. Overall, Gainfront presents as a mature SaaS provider with a solid digital presence and trustworthy business model.

A

Alector Therapeutics

alector.com

0

Alector Therapeutics is a biopharmaceutical company specializing in developing therapies for neurodegenerative diseases. Founded in 2008, the company positions itself as an innovative player in the healthcare sector, focusing on advancing treatments that address critical unmet needs in neurodegeneration. Their website targets patients, investors, and the scientific community, providing detailed information about their scientific approach, pipeline, and patient resources. The company maintains a professional online presence with comprehensive privacy and cookie policies, reflecting strong compliance with GDPR and data protection standards. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Bootstrap, and Flickity for UI components, alongside Google Tag Manager for analytics and OneTrust for cookie consent management. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Hosting and DNS are managed via DomainControl, with no DNSSEC enabled, which is a recommended improvement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks some advanced security headers such as Content-Security-Policy and X-Content-Type-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms domain legitimacy with a long registration period and appropriate domain status flags. Overall, the security posture is solid but could benefit from additional hardening. The overall risk assessment is low, with no signs of malicious activity or suspicious content. Strategic recommendations include enabling DNSSEC, implementing additional security headers, and publishing a vulnerability disclosure policy to enhance transparency and trust. The website's design, content quality, and compliance measures position Alector as a credible and trustworthy healthcare company online.

T

Therini Bio

therinibio.com

0

Therini Bio is a small biotechnology company specializing in the development of novel therapeutics targeting neuroinflammation and vascular dysfunction, with a clinical-stage pipeline focused on diseases such as Alzheimer's and diabetic macular edema. The company positions itself as a pioneer in fibrin-targeting immunotherapies, supported by a syndicate of reputable life sciences investors. The website reflects a professional and consistent brand image, targeting healthcare professionals, researchers, investors, and patients. Technically, the site is built on WordPress using the Divi theme, with good SEO and mobile optimization, though some accessibility features could be improved. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit incident response information. The absence of WHOIS data is a notable anomaly that slightly reduces trust but does not outweigh the professional presentation and content quality. Overall, the site demonstrates a mature digital presence appropriate for a clinical-stage biotech firm.

T

Tallac Therapeutics, Inc

tallactherapeutics.com

0

Tallac Therapeutics, Inc is a small, privately held biopharmaceutical company specializing in next generation antibody drug conjugates (ADCs) for cancer immunotherapy. Their innovative pipeline includes Toll-like Receptor Agonist Antibody Conjugates (TRAAC) designed to activate immune responses within tumors. The company targets healthcare professionals, researchers, and investors interested in immuno-oncology. The website is built on WordPress with Elementor, showing moderate technical maturity and good mobile optimization. Security posture is adequate with HTTPS but lacks advanced security headers and public security policies. WHOIS data is unavailable, which raises some legitimacy concerns, though the website content and external LinkedIn presence support the company's credibility. Contact information is clearly provided, but privacy and cookie policies are missing, impacting compliance. Overall, the site is professional and trustworthy but could improve transparency and security practices.

R

Ray Therapeutics, Inc.

raytherapeutics.com

0

Ray Therapeutics, Inc. is a specialized biotechnology company focused on developing optogenetic therapies to restore vision for patients suffering from degenerative retinal diseases. Their innovative approach involves reprogramming surviving retinal neurons to sense light and transmit visual signals to the brain, positioning them as an emerging player in the healthcare and biopharmaceutical sector. The company maintains a professional online presence with clear descriptions of their science, pipeline, leadership, and patient focus. Technically, the website is built on WordPress using Elementor and the Genesis Block Theme, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain registration protections, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with consent mechanisms. No direct contact emails or phone numbers are publicly listed, relying on a contact form instead. Overall, the website reflects a legitimate, professional biotech startup with room for technical and security enhancements.

P

Photys Therapeutics

photys.com

0

Photys Therapeutics is a biotechnology company specializing in the development of proprietary chimeric small molecules aimed at precise control of protein post-translational modifications. The company positions itself as an innovator in the healthcare sector, targeting drug discovery and development with a platform-based approach. The website is professionally designed using the Wix platform, indicating a moderate level of digital maturity with basic SEO and mobile optimization. However, the absence of WHOIS data raises concerns about domain legitimacy and transparency. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance documentation. Overall, the site presents a professional front but would benefit from enhanced security practices and clearer business contact information to improve trust and compliance.

P

Paq

paqtx.com

0

Paq Therapeutics is a biopharmaceutical company focused on developing KRAS degraders to treat deadly cancers lacking effective therapies. The website presents a professional and well-structured digital presence built on WordPress, leveraging modern frameworks such as Bootstrap and Yoast SEO for optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacking essential security headers and privacy compliance documentation. Contact information and incident response policies are not provided, limiting trust and compliance assurance. Overall, the site is functional and content-rich but requires improvements in security, compliance, and transparency to enhance credibility and reduce risk.

M

Mozart Therapeutics

mozart-tx.com

0

Mozart Therapeutics is a clinical-stage biopharmaceutical company specializing in the development of novel CD8 Treg modulators aimed at treating autoimmune and inflammatory diseases. Their website presents a professional and scientifically focused image, highlighting their pipeline and scientific approach. The company targets healthcare professionals, investors, and patients interested in innovative autoimmune therapies. The business model centers on advancing proprietary biologics to restore immune homeostasis. Technically, the website employs a simple tech stack including jQuery 1.9.0 and Google Analytics with IP anonymization. The site is well-structured, mobile-optimized, and accessible, though it lacks modern frameworks or CMS identification. Performance is moderate, and SEO practices are adequate. However, the use of an outdated JavaScript library and absence of security headers suggest areas for technical improvement. From a security perspective, the site lacks visible security headers and formal privacy or cookie policies, which impacts privacy compliance negatively. No contact information or incident response channels are provided, limiting transparency and trust. The WHOIS data is notably absent, raising concerns about domain registration legitimacy despite the active and professional website presence. This discrepancy reduces overall trustworthiness. Overall, the website is functional and professional but requires improvements in privacy compliance, security posture, and domain registration transparency to enhance trust and security. Strategic recommendations include implementing security headers, publishing privacy and cookie policies with consent mechanisms, providing clear contact and incident response information, updating technical libraries, and clarifying domain registration details.