Security Directory

Č

České priority

pank.cz

0

PANK is a specialized research and advisory project operated by the Czech non-profit organization České priority, focusing on enhancing knowledge work and informed decision-making within Czech public administration. The website serves as a resource hub offering guides, case studies, and recommendations tailored for teams in government organizations. The project is supported by the Technological Agency of the Czech Republic, indicating credible backing and alignment with national research priorities. Technically, the website is built using modern frameworks such as Quarto and Bootstrap, with privacy-conscious analytics via Matomo configured to respect DoNotTrack and disable cookies. The site is well-structured, mobile-optimized, and provides a professional user experience with clear navigation and relevant content. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data, though explicit security headers and formal policies like privacy and cookie policies are missing, representing areas for improvement. Overall, the domain registration data is consistent with the website's purpose and origin, supporting legitimacy and trustworthiness.

T

tectraxx

tectraxx.com

0

tectraxx is a technology-focused service provider specializing in combining technical expertise with project management experience. The website is built on TYPO3 CMS and targets professionals in technical and project management fields. The digital infrastructure includes modern consent management via Usercentrics and analytics through Piwik PRO, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks visible security headers and published security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and design are professional. Overall, the site presents a moderate risk profile with recommendations to improve transparency and security compliance.

B

Úvod

bonavitabody.cz

0

Bonavita.cz operates as a loyalty program platform primarily targeting consumers in the Czech Republic. The website facilitates the collection of loyalty points through a dedicated mobile application and allows users to redeem these points for rewards. The business model centers on incentivizing customer engagement and repeat purchases through partnerships with various retail brands. The site demonstrates a consistent brand presence and integrates social media channels to enhance user engagement. From a technical perspective, the website employs a modern frontend technology stack including Bootstrap 4.3.1, jQuery, Google reCAPTCHA v3, and various UI enhancement libraries such as Slick Carousel and AOS. The site is mobile-optimized and includes basic SEO and accessibility features. SSL is properly configured, ensuring secure communications. Security posture is moderate with HTTPS enforced and bot protection via reCAPTCHA. However, the absence of advanced security headers and explicit security policies indicates room for improvement. Privacy compliance is addressed through a cookie consent mechanism and a basic cookie policy page, aligning with GDPR requirements. No direct company contact emails or phone numbers are provided, which may impact user trust and support accessibility. Overall, the website presents a legitimate and functional loyalty program platform with a moderate security and privacy posture. The lack of WHOIS data due to privacy protection is common for small businesses and does not raise immediate concerns. Strategic enhancements in security headers, accessibility, and transparent contact information would strengthen the platform's trustworthiness and compliance.

E

eSports.cz, s.r.o.

tenisovysvet.cz

0

Tenisový svět is a Czech-language media portal focused on comprehensive tennis news, rankings, tournaments, and live streams. It serves tennis fans primarily in the Czech Republic but covers international tennis events as well. The site is professionally designed and maintained by eSports.cz, s.r.o., a media company with a solid presence in the Czech sports media market. The business model relies on advertising revenue, supported by Google Adsense and partnerships with companies like OK System. The website offers rich content including daily news, player rankings, tournament schedules, and live match coverage, targeting tennis enthusiasts and sports followers.

Delmart is a Czech retail supermarket and bistro chain primarily operating in Prague, offering a wide range of food products including fresh produce, bakery items, dairy, meats, deli, and beverages. The company also supports online shopping and delivery through partners such as Wolt and Kosik.cz, positioning itself as a convenient local food retailer. The website is professionally designed with good content quality and consistent branding, targeting general consumers in the region. Technically, the website employs a moderate technology stack including jQuery, Google Tag Manager, Google Analytics 4, and Facebook Pixel for analytics and marketing. The site is mobile optimized and uses HTTPS, but lacks some advanced security headers and accessibility features. Cookie consent is implemented with detailed user options, though a dedicated privacy policy page is missing. From a security perspective, the site demonstrates basic good practices such as HTTPS enforcement and cookie consent mechanisms. However, the absence of explicit security headers and contact information for incident response or data protection officers indicates room for improvement. The missing WHOIS data reduces trust slightly but does not negate the legitimacy suggested by the website content and external references. Overall, the website presents a moderate risk profile with no critical vulnerabilities detected. Strategic improvements in privacy policy transparency, security headers, and contact information would enhance compliance and trustworthiness.

P

Pinseria Sicily Café

pinseriasicily.cz

0

Pinseria Sicily Café is a small local Czech café and restaurant specializing in Italian pinsa and related food and beverage offerings. The website provides an online ordering platform primarily targeting local customers interested in Italian cuisine. The business appears to be recently established in 2021 and operates with a straightforward online presence. Technically, the website uses modern JavaScript modules and custom web components, hosted likely by Wedos, a Czech hosting provider. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is basic with no visible security headers or HTTPS confirmation in the provided data, and privacy compliance is minimal with only a basic privacy policy and terms of service linked but no cookie consent mechanism. Overall, the website is functional and professional but would benefit from enhanced security and privacy features to improve trust and compliance.

A

ABX software s.r.o.

ab-x.cz

0

ABX software s.r.o. is a Czech Republic-based company specializing in the development and provision of reliable point-of-sale (POS) systems and software solutions tailored for hospitality and retail sectors including restaurants, hotels, shops, and rental services. The company positions itself as a stable and leading supplier in the Czech market, offering both sales and rental models for their software and hardware products, complemented by comprehensive technical support and service. Their website reflects a professional and user-friendly digital presence with clear navigation, detailed product offerings, and active customer engagement through support portals and social media. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Slick Carousel, and Google Tag Manager, ensuring a responsive and interactive user experience. The presence of cookie consent mechanisms and privacy policies indicates compliance with GDPR regulations. However, the absence of detected HTTP security headers and unknown SSL configuration suggest areas for security enhancement. The WHOIS data is notably missing, which raises concerns about domain registration transparency but does not directly impact the visible professionalism of the site. From a security perspective, the site demonstrates good practices such as cookie consent and no visible exposure of sensitive data. The use of third-party analytics and marketing tools is managed with user consent. No critical vulnerabilities or security incidents are evident from the content. Overall, the site maintains a moderate to good security posture but would benefit from improved security headers and domain registration transparency. The overall risk assessment is moderate with recommendations to improve domain WHOIS visibility, implement robust HTTP security headers, and verify SSL configurations. These steps will enhance trust and security posture, supporting the company’s market position and customer confidence.

The domain landrover-vertragspartner.de appears to be registered but the website content is inaccessible, displaying only a minimal message indicating the host name is not valid for the server. No business information, metadata, or contact details are available, making it impossible to assess the company's operations or market position. The technical infrastructure appears minimal or misconfigured, with no detectable CMS, scripts, or security headers. The security posture is poor due to lack of HTTPS and absence of security best practices. Overall, the website is non-functional and does not provide any meaningful content or business presence.

The website jaguar-vertragspartner.de is currently inaccessible, presenting only a minimal error message indicating the host name is not valid for the server. Due to this, no meaningful business information, metadata, or content is available for analysis. The domain is registered with name servers pointing to your-server.de and second-ns.de, but no registrant details or domain age information are provided. The lack of accessible content and absence of HTTPS severely limit the ability to assess the website's technical maturity or security posture. No privacy, cookie, or terms of service policies are present, and no contact information is available, which further reduces trustworthiness. Overall, the site appears either misconfigured or inactive, resulting in a very low AI score and high risk from a security and compliance perspective.

I

ilogs smartwear GmbH

mynextring.com

0

MYnextRING is a health-focused wearable technology company offering a smart ring that monitors various biometric data such as heart rate, sleep, stress, and activity. The company positions itself as a premium European brand with a focus on privacy and user-friendly design. The website is well-developed using WordPress and WooCommerce, integrating modern marketing and analytics tools. Security posture is good with HTTPS and domain transfer protection, though DNSSEC is not enabled and cookie consent mechanisms are missing. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy digital presence suitable for its target market.

B

Barberco

barberco.sk

0

Barberco.sk is a specialized e-commerce platform focused on selling barber and grooming products primarily targeting gentlemen, barbershops, and hairdressers in Slovakia and the Czech Republic. The website offers a wide range of products including hair care, beard care, shaving accessories, and professional barber equipment. It also supports a wholesale partner program for professionals in the industry. The site is well-structured with clear navigation, product categorization, and customer support channels, reflecting a mature regional retail business. Technically, the website uses modern web technologies such as jQuery, Slick Slider, and integrates analytics and user behavior tracking tools like Google Tag Manager and Hotjar. It is hosted behind Cloudflare DNS services, ensuring reliable performance and security. The site is mobile-optimized and includes accessibility features, although some improvements could be made. From a security perspective, Barberco.sk enforces HTTPS and uses secure login forms with CSRF tokens. While basic security headers are implied, explicit Content-Security-Policy and other headers are not confirmed and should be implemented. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy and cookie policies are present with consent mechanisms, indicating GDPR awareness, but no explicit security policy or incident response contacts are published. Overall, Barberco.sk presents a trustworthy and professional online retail presence with a solid business foundation and good technical implementation. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance its security posture and compliance.

E

EVIDENT GmbH

evident.de

0

EVIDENT GmbH is a German company specializing in dental practice management software, targeting dental professionals and clinics. The website is built on WordPress using the Divi theme and includes event calendar functionality. The technical infrastructure is modern but shows room for improvement in security headers and privacy compliance. The security posture is moderate with no critical vulnerabilities detected but lacks explicit security policies and incident response information. Overall, the website is professional and safe, but enhancements in privacy and security transparency are recommended.

A

Altera

altera.hr

0

Altera is a Croatian company specializing in the rental and sale of tents and pagodas for weddings, corporate events, sports events, and fairs. With over 20 years of experience, the company positions itself as a reliable partner for outdoor event solutions, offering additional equipment and services to support event organization. The website is professionally designed using WordPress with the Avada theme and includes modern plugins such as Slider Revolution and Yoast SEO, indicating a mature digital infrastructure. Security measures include HTTPS enforcement, reCAPTCHA integration, and standard security headers, reflecting a good security posture. However, the absence of explicit privacy and terms of service policies suggests room for improvement in compliance and transparency. Overall, the website is trustworthy, content-rich, and well-optimized for SEO and mobile devices, supporting Altera's market presence in the hospitality and event services sector.

C

Catering Team Majetić

cateringteammajetic.hr

0

Catering Team Majetić is a well-established catering company based in Zagreb, Croatia, with a strong family tradition dating back to 1998. The company specializes in high-quality catering services for weddings, corporate events, and private celebrations, operating both locally and across Europe. Their business model includes owning exclusive venues and collaborating with prestigious locations, positioning them as a premium service provider in the hospitality sector. The website reflects a professional and consistent brand image, supported by customer testimonials and media coverage. Technically, the site is built on WordPress using Elementor and Yoast SEO, with modern tracking tools like Google Tag Manager and Facebook Pixel integrated. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks some recommended security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professional, with room for improvement in security and privacy transparency.

O

Obiteljsko Poljoprivredno Gospodarstvo Damjanić Ivan

damjanic.eu

0

Damjanić Wines is a small family-owned winery based in Fuškulin near Poreč, Croatia, with a long tradition dating back to the early 18th century. The company produces a variety of wines and olive oil, offers wine tastings by appointment, and operates a webshop for direct sales. Their market position is that of a leading regional winery in Istria, targeting wine consumers, tourists, and distributors. The website is multilingual and professionally designed to support their business model and customer engagement. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various frontend libraries. Hosting is provided by a Croatian hosting company, and the site uses HTTPS with a cookie consent mechanism to comply with GDPR. Performance and mobile optimization are good, though accessibility features are basic. SEO is well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business information, indicating a legitimate and trustworthy domain. Overall, the website presents a professional and trustworthy online presence for a small winery business, with good privacy compliance and moderate security posture. There are opportunities to enhance security headers and incident response information to further improve trust and compliance.

E

Europski socijalni fond

esf.hr

0

The website www.esf.hr serves as the official Croatian government portal for the European Social Fund (ESF), focusing on the development of human potentials through various social, employment, education, and governance projects. It provides comprehensive information about funding calls, project examples, and relevant documentation, targeting civil society organizations, cultural institutions, and social service providers. The site is well-positioned as a trusted government resource with consistent branding and clear navigation. Technically, the site is built on WordPress 5.1.19 with a modern tech stack including jQuery, Google Analytics, and SEO plugins. It demonstrates good mobile optimization and accessibility features, although performance is moderate. The hosting appears to be managed by CARNET, a Croatian academic network, aligning with the official nature of the site. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a privacy policy and cookie notice, but lacks a full consent mechanism. Contact information is limited to a physical address without direct email or phone contacts. Overall, the website is a reliable and professional government platform with a strong business credibility score. Strategic improvements could focus on enhancing security headers, implementing cookie consent, and publishing security policies to strengthen trust and compliance.

V

Visit Karlovac

visitkarlovac.hr

0

Visit Karlovac is the official tourism website for the city of Karlovac, Croatia, providing comprehensive information about cultural, natural, gastronomic, and event experiences to visitors. The site targets tourists and visitors interested in exploring the city and offers resources such as event calendars, travel planning guides, and detailed descriptions of local attractions. The website is well-positioned as an authoritative source for tourism in Karlovac, supported by active social media channels and structured data that enhances search engine visibility. Technically, the website is built on WordPress using Elementor, enhanced with performance and SEO plugins such as WP Rocket and Rank Math. It leverages Cloudflare for DNS and likely CDN services, ensuring fast loading times and good mobile optimization. The site implements HTTPS with a strong SSL configuration and includes a cookie consent mechanism compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and uses reputable plugins, but explicit security headers are not fully verified in the HTML content. There is no visible incident response or vulnerability disclosure policy, which could be improved to enhance trust and security posture. No vulnerabilities or exposed sensitive data were detected in the content. Overall, Visit Karlovac presents a professional, secure, and privacy-compliant tourism platform with excellent content quality and user experience. Strategic improvements in security header implementation and incident response transparency would further strengthen its security maturity.

A

Axperi

axperi.com

0

Axperi is a specialized web-based platform designed to support clinical trial management by providing tools for administration, coordination, activity tracking, and electronic archiving compliant with Good Clinical Practice (GCP). The platform targets clinical study units, experimental centers, sponsors, CROs, and regulatory bodies, aiming to streamline clinical trial processes and improve communication among stakeholders. The website presents a professional and consistent brand image with clear contact information and privacy compliance mechanisms. Technically, the website leverages modern JavaScript libraries such as jQuery, ScrollMagic, and Bootstrap to deliver a responsive and interactive user experience. The platform is web-based, supporting mobile devices, and optimized for moderate performance. However, some security best practices like security headers are not explicitly detected, and no explicit security certifications or vulnerability disclosure policies are present. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, indicating a baseline privacy compliance. The absence of WHOIS data for the domain www.axperi.com raises concerns about domain registration legitimacy, which impacts overall trustworthiness. No signs of WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, Axperi demonstrates a solid business and technical foundation for clinical trial management software but should address domain registration inconsistencies and enhance security posture to improve trust and compliance.

T

TNX s.r.l.

avatable.com

0

AVATABLE is a specialized SaaS provider offering a comprehensive restaurant booking management system integrated with a website solution. The company, TNX s.r.l., targets restaurants, pizzerias, fast food outlets, and event organizers primarily in Italy. Their platform includes a booking engine, table and room management, digital menus, CRM capabilities, marketing automation, and delivery integration. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies including jQuery, Bootstrap, and various JavaScript libraries, with good SEO and performance characteristics. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though explicit security headers and incident response policies are absent. Privacy and cookie policies are present and GDPR compliant. WHOIS data is missing, which reduces trust slightly but the overall business presence and content quality support legitimacy.

The website 8k8cas.com is currently inaccessible due to a Cloudflare error 521 indicating the origin web server is down. The domain is very recently registered in December 2024 with Spaceship, Inc. as the registrar and uses Cloudflare as a CDN and WAF. There is no visible business information, contact details, privacy or cookie policies, or any content beyond the error page. This severely limits the ability to assess the business or technical maturity of the site. The lack of DNSSEC and security headers further reduces the security posture. Overall, the site appears to be either under development or experiencing significant downtime, resulting in a low trust and credibility score.

B

Borming d.o.o

borming.hr

0

Borming d.o.o is a Croatian technology company specializing in custom web and mobile application development, with a strong focus on blockchain and Web3 technologies. Founded in 2001 and based in Zagreb, the company offers services including smart contract development on Ethereum and Polygon networks, custom CMS solutions, and traditional web development using modern stacks like React and Node.js. Their market position is that of an established local player with a growing emphasis on blockchain integration. Technically, the website is built with React and Node.js, hosted behind Cloudflare, and uses Google Analytics for tracking. The site is mobile optimized and performs moderately well, though accessibility features are basic. Security posture is good with HTTPS enforced, but lacks visible security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanism. Business credibility is strong with consistent WHOIS data and professional content. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures.

Z

Zavičajni muzej Ogulin

zavicajni-muzej-ogulin.hr

0

Zavičajni muzej Ogulin is a Croatian cultural heritage museum focused on preserving and presenting the history and culture of the Ogulin region. The museum offers diverse collections including archaeological, ethnographic, and artistic exhibits, alongside educational programs and virtual tours. It serves a broad audience including local residents, tourists, and students, positioning itself as a key regional cultural institution. The website reflects a small-sized non-profit organization with a clear mission and consistent branding. Technically, the website is built on WordPress using the Enfold theme, hosted by Hostinger. It employs modern web technologies such as jQuery and integrates Facebook SDK for social media features. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. The presence of cookie consent and privacy policy pages indicates good digital maturity and compliance with GDPR. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks visible security headers which could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. The absence of a security policy or incident response contact suggests room for improvement in security governance. The WHOIS data aligns well with the website's Croatian identity and business type, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, suitable for its cultural and educational purpose. Strategic improvements in security headers and incident response readiness would further strengthen its security posture.

F

Fakat

fakat.eu

0

Fakat is a Croatian event agency specializing in comprehensive ideation, organization, and production services for a wide range of events including campaigns, festivals, concerts, exhibitions, corporate events, conferences, and sports events. The company positions itself as a full-service partner offering turnkey solutions and hardware rental with professional staffing. The website is well-structured, professionally designed, and targets businesses and individuals seeking event management services. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, jQuery, and the Gumby framework, with Google Analytics integrated for visitor tracking. However, there is no evidence of a CMS or hosting provider details. Security posture is moderate with no visible security headers or HTTPS verification, and privacy compliance is low due to missing privacy and cookie policies. Contact information is clearly presented, including company email and phone, along with active social media profiles. WHOIS data is unavailable due to EURid privacy policies, but no suspicious indicators are present. Overall, the site is functional and professional but would benefit from improved security and privacy compliance.

W

Westgate

westgate.hr

0

Westgate.hr is the official website of Westgate, the largest shopping center in Croatia. The site provides comprehensive information about retail stores, restaurants, entertainment options, and services available at the mall. It targets a broad audience including families and shoppers seeking a variety of brands and leisure activities. The website is built on modern web technologies such as Vue.js and Nuxt.js, integrating analytics and marketing tools like Google Analytics and Facebook Pixel to monitor user engagement and optimize marketing efforts. The design is professional, mobile-optimized, and offers clear navigation, enhancing user experience. Security measures include HTTPS enforcement and standard security headers, though explicit privacy and terms of service policies are not published, which is a compliance gap. Overall, the site is trustworthy and well-maintained, with room for improvement in privacy transparency and direct contact information for security or incident response.

S

Suzuki

suzuki.hr

0

Suzuki.hr is the official Croatian website representing Suzuki automobiles and motorcycles. The site provides information about Suzuki vehicles with a focus on affordability and quality, targeting general consumers interested in transportation solutions. The website is built on WordPress with modern SEO practices, including structured data and social media integration, indicating a moderate level of digital maturity. Cookie consent is managed via Cookiebot, demonstrating awareness of privacy compliance requirements. However, the absence of a privacy policy and contact information limits full compliance and user trust. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response contacts. Overall, the site is legitimate and professionally maintained but would benefit from enhanced privacy and security disclosures.

H

Hrvatski olimpijski odbor

hoo.hr

0

Hrvatski olimpijski odbor (HOO) is the national Olympic committee and umbrella sports organization in Croatia, established in 1991. It serves as the central body for promoting Olympic sports, supporting athletes, and organizing sports events in Croatia. The website reflects a well-maintained digital presence with a focus on news, events, and organizational information relevant to the Croatian sports community. Technically, the site uses modern frameworks such as Next.js and React, with good mobile optimization and accessibility features. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit privacy and terms of service pages are missing. Overall, the domain registration and WHOIS data align well with the organization's identity, supporting high legitimacy and trust. Strategic improvements include publishing comprehensive privacy and security policies and enhancing transparency on data protection roles.

V

Varaždinska županija

varazdinska-zupanija.hr

0

Varaždinska županija operates as the official regional government portal for the Varaždin County in Croatia, providing a broad range of public services and information to its citizens. The website offers comprehensive content including administrative details, public tenders, news, multimedia, and support programs. It targets residents and stakeholders within the region, positioning itself as a trusted government information source. The business model is centered on public service and transparency, with a medium-sized organizational footprint typical of regional government entities. Technically, the website is built on Joomla CMS with Bootstrap and jQuery frameworks, ensuring a responsive and accessible user experience. The site incorporates accessibility tools and maintains good SEO and mobile optimization standards. Performance is moderate, with no critical technical issues detected. The infrastructure supports secure HTTPS connections and employs modern web standards. From a security perspective, the site demonstrates a strong posture with HTTPS enforcement, security headers, and secure form handling. Privacy compliance is robust, featuring clear privacy and cookie policies with consent mechanisms aligned with GDPR requirements. However, the absence of a dedicated security policy page, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement in security transparency and incident readiness. Overall, the website is a professional, trustworthy, and secure government portal with high content quality and user experience. Strategic enhancements in security policy publication and incident response communication would further strengthen its security maturity and public trust.

H

Hrvatski Telekom d.d.

putovanja.hr

0

Putovanja.hr is a well-established Croatian travel portal operated under the domain registered by Hrvatski Telekom d.d., a reputable Croatian telecommunications company. The website serves as an information hub for travelers, providing comprehensive travel advice, rights information, and a directory of UHPA members including travel agencies, hotels, and other tourism-related services. It targets tourists and travel professionals interested in Croatian and European travel. The site features a modern design with good navigation, mobile optimization, and integration of popular JavaScript libraries and Google Analytics for user tracking. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks visible advanced security headers or explicit security policies. The WHOIS data confirms the domain's legitimacy and consistent registration details. Overall, the website demonstrates a solid business presence with moderate technical maturity and a good security posture.

P

Plus Hosting Grupa d.o.o.

opencity.hr

0

openCity Hrvatska is a Croatian public sector project aimed at promoting the opening of public sector data in line with EU standards. The website provides interactive visualizations to make public information easily understandable for citizens. The project targets Croatian government entities and the general public interested in transparent data access. The business model focuses on government data transparency and public engagement through digital tools. The website is relatively small in scale, founded in 2018, and hosted by Plus Hosting Grupa d.o.o. The content is primarily in Croatian and is professionally presented with good navigation and mobile optimization. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, jQuery, CartoDB, and Leaflet for mapping. It integrates Google Analytics and Facebook SDK for analytics and social media engagement. Hosting is provided by a Croatian registrar consistent with the domain registration data. Performance is moderate with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks important security headers and formal security policies such as incident response or vulnerability disclosure. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. The WHOIS data is consistent and indicates a legitimate registration aligned with the website's purpose. Overall, the website is functional and trustworthy for its niche but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence.

H

Hrvatska zajednica županija

hrvzz.hr

0

Hrvatska zajednica županija is the official Croatian County Association, providing a centralized platform for news, projects, international cooperation, and information about member counties. The website serves local government officials, citizens, media, and international partners, positioning itself as an authoritative source for county-related information in Croatia. Founded in 2008, it maintains a consistent and professional online presence with clear branding and official contact details. Technically, the website employs modern frontend technologies including Swiper.js for interactive sliders, Font Awesome for icons, and Google Fonts for typography. It is hosted with Cloudflare DNS services and uses HTTPS to secure communications. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS and modern libraries but lacks explicit security headers and a vulnerability disclosure policy. No privacy or cookie policies are present, which is a compliance gap. Contact information is clearly provided, enhancing business credibility. No advertising or tracking services are detected, indicating a privacy-respecting approach. Overall, the website is trustworthy and professionally maintained, with a strong alignment between WHOIS data and website content, indicating legitimacy. Strategic improvements in privacy compliance, security headers, and accessibility would enhance its security posture and user trust.

P

Poduzetnički centar Zagrebačke županije

pczz.hr

0

Poduzetnički centar Zagrebačke županije is a regional entrepreneurial support institution focused on creating a quality and user-oriented business environment in the Zagrebačka županija region of Croatia. The organization provides key services such as project management, credit guarantees, investment zone support, and advisory services for agriculture and rural development. The website reflects a medium-sized government or non-profit entity with a clear regional focus and a professional online presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Hosting is provided by TOTOHOST d.o.o., a Croatian hosting provider, which aligns with the regional focus. The site is mobile optimized, accessible, and SEO-friendly, with good performance and no detected blocking or WAF interference. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, there is no explicit security policy or incident response information published, and security headers are not detected, suggesting room for improvement in formal security posture documentation and technical hardening. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It serves its target audience effectively, providing relevant content and contact information. Strategic recommendations include publishing formal security policies, adding incident response contacts, and enhancing security headers to improve resilience and trust further.

Z

Zeleni Prsten

greenring.biz

0

The website www.greenring.biz serves as an information portal focused on the entrepreneurial zones of Zagreb County, Croatia, providing GIS-based spatial planning and real estate investment information. It targets investors and businesses interested in regional development opportunities. The platform is built on WordPress, leveraging popular plugins such as Yoast SEO for search engine optimization and structured data implementation, indicating a moderate level of digital maturity. The site demonstrates good content quality and user experience with a professional design and mobile optimization. However, the absence of WHOIS data and lack of explicit privacy and terms of service policies present gaps in transparency and compliance. Security posture is moderate with HTTPS implied but lacking visible security headers and incident response information. Overall, the site is functional and trustworthy for its intended audience but would benefit from enhanced security and compliance documentation.

P

Plus Hosting Grupa d.o.o.

eprijave.hr

0

The website eprijave.hr serves as an official government platform for electronic submission of applications to public tenders and calls in Zagreb County, Croatia. It is operated under the domain registered by Plus Hosting Grupa d.o.o., a Croatian hosting company, with domain registration consistent with the service's operational timeline since 2019. The platform targets citizens and organizations needing to apply for regional government tenders, providing a focused and essential public service. Technically, the website employs modern frontend technologies such as React and ApexCharts, indicating a contemporary single-page application design. Hosting is provided by DigitalOcean, a reputable cloud provider. The site demonstrates moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No content management system is explicitly detected. From a security perspective, the site enforces HTTPS and uses secure input fields for login credentials. However, it lacks visible security headers and does not provide privacy, cookie, or terms of service policies, which are important for compliance and user trust. No incident response or vulnerability disclosure information is available, and no analytics or advertising scripts are detected, indicating minimal user tracking. Overall, the website is a functional government service portal with moderate trustworthiness and security posture but would benefit from enhanced privacy compliance, security headers, and contact information to improve user confidence and regulatory adherence.

Digital Wizards Group s.r.o. is a Czech-based software development company specializing in custom e-commerce solutions. Their primary offerings include bespoke online shops built on proprietary platforms Rocketoo and RocketooMAX, targeting both B2C and B2B clients. The company has been established since 2012 and maintains a professional online presence with clear business information and a focused service portfolio. The website reflects a niche market position within the Czech e-commerce technology sector, emphasizing tailored development services. Technically, the website is built with standard modern web technologies including HTML5, CSS3, and Google Fonts, hosted likely by WEDOS based on DNS data. The site is mobile-optimized and SEO-friendly but lacks advanced frameworks or CMS indications. Performance is moderate with good mobile responsiveness and basic accessibility features. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS but lacks visible security headers and published security policies such as privacy, cookie, or incident response information. No forms or data collection mechanisms are present on the homepage, reducing immediate attack surface but also limiting user engagement options. WHOIS data is consistent and transparent, supporting domain legitimacy. Overall security posture is moderate but could be improved with standard best practices and policy disclosures. The overall risk is low given the professional nature and limited data collection, but the absence of privacy and cookie policies and security headers represents compliance and security gaps. Strategic improvements in these areas would enhance trust and regulatory adherence.

The website luckajede.cz is a newly registered small business site created in December 2023, hosted on the Active24 platform and built using the Yola website builder. The site currently has minimal content with a basic design and limited business information. It includes a cookie consent banner indicating some level of privacy awareness but lacks formal privacy policies, terms of service, or contact details. Technically, the site uses standard web technologies such as CSS, JavaScript, and web font loading, with tracking scripts from Yola and SiteWit for analytics and marketing purposes. Security posture is weak due to the absence of security headers and no visible advanced security measures. The domain registration data is consistent and transparent, supporting legitimacy, but the lack of business and security information reduces overall trust. Strategic improvements in privacy compliance, security hardening, and business transparency are recommended to enhance credibility and user trust.

O

AFS

oneafs.org

0

The website at https://oneafs.org/afs/ represents a small organization or project with a domain registered in 2020 and hosted via Cloudflare. The site is built using modern web technologies including Angular 18, Google Tag Manager for analytics, and Tableau embedding for data visualization. However, the visible content is minimal, primarily a loading shell of a single-page application with no textual content or metadata describing the business or its services. No privacy, cookie, or terms of service policies are present, and no contact information or forms are found, limiting user engagement and trust. Security posture is basic with HTTPS enabled but lacking DNSSEC and security headers. Overall, the site appears functional but lacks comprehensive content and compliance features.

AFS Global operates as a secured portal likely serving members and affiliates of AFS Intercultural Programs, a non-profit organization focused on intercultural exchange and educational programs. The website uses legacy ASP.NET WebForms technology combined with Bootstrap and jQuery, indicating a moderately mature but somewhat dated technical infrastructure. Google Tag Manager is employed for analytics, but no explicit privacy or cookie policies are present in the analyzed content, which may raise compliance concerns. Security posture shows basic HTTPS usage but lacks modern security headers and uses an outdated jQuery version, exposing potential vulnerabilities. Overall, the site is functional but would benefit from modernization and enhanced privacy and security measures.

W

Webgrace, s.r.o.

webgrace.cz

0

Webgrace, s.r.o. is a Czech Republic-based small technology company specializing in professional graphic and web design services including web design, logo creation, HTML coding, copywriting, and advertising graphics. The company emphasizes quality, innovation, and fast delivery, targeting a broad audience from large corporations to small businesses. The website reflects a professional and consistent brand image with a good portfolio and client testimonials. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and YouTube API, with moderate performance and good mobile optimization. However, there is a lack of visible security headers and privacy compliance documentation, which are areas for improvement. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

K

KNOWLIMITS Group a.s.

know.cz

0

KNOWLIMITS Group a.s. is the largest independent Czech communication group specializing in comprehensive marketing and media services. The company offers tailored, data-driven solutions leveraging new technologies and AI tools, serving clients across 15 European markets. Their expertise spans strategy, media planning, digital and social media, creative production, retail marketing, data research, PR, and events. The group employs over 250 professionals and reported a turnover of 4 billion CZK in 2024. Technically, the website is built on WordPress with modern frameworks like Bootstrap 5 and integrates Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and SEO-friendly, though it lacks explicit privacy and cookie policies. Security posture is good with HTTPS enabled but could be improved by adding security headers and incident response information. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the professional presentation and detailed business information support legitimacy.

D

Dreammachine

dreammachine.be

0

Dreammachine is a Belgium-based communication services provider specializing in digital media, video production, e-learning, and consulting for both B2B and B2C clients. Established in 2003, the company targets small and large organizations and institutions, positioning itself as a versatile media partner. The website reflects a professional and consistent brand image with good SEO and structured data implementation, supporting its market presence. Technically, the site is built on WordPress using Visual Composer and integrates modern tools such as Google reCAPTCHA and Google Analytics. Performance and mobile optimization are adequate, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. While the site does not expose vulnerabilities or sensitive data, it lacks a published privacy policy, terms of service, and incident response information, which are important for compliance and trust. Contact information is not clearly presented, which may hinder user engagement and credibility. Overall, Dreammachine's website is functional and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

The website at https://eadres.pl/gliss.pl is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered under Aftermarket.pl Limited with a suspicious creation date set in the future (October 2025), which raises concerns about the legitimacy and operational status of the site. No business information, contact details, or policies are available on the site, indicating it may be under construction, restricted, or misconfigured. The DNSSEC is enabled, which is a positive security feature, but no other security headers or HTTPS status could be verified due to the blocked content. Overall, the site lacks any visible digital maturity or business presence.

F

Fight the Fakes Alliance

fightthefakes.org

0

Fight the Fakes Alliance is a well-established non-profit organization dedicated to combating substandard and falsified medicines globally. The website serves as an advocacy and awareness platform targeting healthcare professionals, policymakers, NGOs, and the general public. It provides resources, updates, and calls to action to promote medicine quality and safety. The organization has a credible market position supported by a domain registered since 2006 and consistent branding across its digital presence. Technically, the website is built on WordPress using modern frameworks like Bootstrap and Elementor, with integration of Google Analytics and reCAPTCHA for analytics and security. The site is mobile optimized and performs moderately well, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, but lacks advanced security headers and a published security policy. Privacy compliance is limited due to absence of explicit privacy and cookie policies. Overall, the site is professional and trustworthy but could enhance transparency and security practices.

P

Patientenschulungsprogramme

patientenschulungsprogramme.de

0

Patientenschulungsprogramme.de is a German healthcare education website operated by Deutscher Ärzteverlag, offering accredited patient training programs primarily for chronic diseases such as diabetes, hypertension, asthma, and COPD. The site targets healthcare professionals and practice teams, providing educational materials and training resources to improve patient care and therapy adherence. The business is well-positioned in the German healthcare market with recognized accreditation and expert authorship. Technically, the website is built on WordPress with modern plugins for GDPR compliance, user management, and content delivery. It employs Google Tag Manager and Usercentrics for analytics and consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit security policies could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting its role as a reliable resource in healthcare education.

H

Haus Neuer Kamp e.V.

haus-neuer-kamp.de

0

Haus Neuer Kamp e.V. is a medium-sized non-profit youth welfare organization based in Osnabrück, Germany, providing decentralized social and therapeutic services for young people with diverse needs. Their offerings include pedagogical-therapeutic residential groups, supported individual living, gender-specific programs, and family outreach. The organization positions itself as a trusted local service provider focused on respect, trust, and care for youth. The website is built on Joomla CMS with Yootheme and UIkit, offering a good user experience with mobile optimization and clear navigation. Privacy and cookie policies are comprehensive and GDPR compliant, including explicit consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers are not explicitly detected. No incident response or security policy is published. Overall, the website is professional, trustworthy, and safe for general audiences.

S

schweitzer media gmbh

schweitzer-media.de

0

schweitzer media gmbh is a small, full-service advertising agency based in Kiel, Germany, specializing in integrated marketing, branding, design, web development, film, and photography. The company targets businesses and public institutions seeking comprehensive marketing solutions. Their market position is regional and overregional with a focus on strong ideas and digital transformation. The website reflects a high level of professionalism with excellent content quality and user experience. Technically, the site is built on WordPress with modern optimization tools and consent management, indicating a mature digital infrastructure. Security posture is good with HTTPS and privacy compliance, though some security headers and explicit policies could be improved. Overall, the domain registration and website content are consistent and legitimate, supporting a high trust level.

J

JIROUT REKLAMNÍ AGENTURA s.r.o.

jiroutreklamnipredmety.com

0

JIROUT REKLAMNÍ AGENTURA s.r.o. operates a Czech-language website offering a wide range of custom promotional products and textiles tailored for businesses. Their market position is that of a comprehensive supplier with a broad selection of printed promotional items, calendars, and diaries, targeting companies seeking branded merchandise. The website is professionally designed with good content quality and clear navigation, optimized for mobile devices, and presents a consistent brand image. However, the domain's WHOIS data is missing, raising concerns about domain registration legitimacy. Technically, the site uses modern web technologies but lacks advanced security headers and privacy policies, which impacts its security posture and compliance standing. No blocking or WAF mechanisms were detected, allowing full content access.

C

CENTROPEN, a.s.

ako-spravne-pisat.sk

0

The website www.ako-spravne-pisat.sk is an educational platform dedicated to teaching correct writing techniques for children, primarily targeting parents and educators in Slovakia. It is supported and branded by CENTROPEN, a.s., a stationery manufacturer, which lends credibility and trust to the project. The site offers structured content including articles, videos, and an online advisory service with an expert guarantor. Technically, the site uses modern web technologies such as Google Fonts, YouTube API, Google Analytics, and reCAPTCHA, ensuring a functional and user-friendly experience. The site is mobile optimized and provides a clear navigation structure. Security-wise, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks published privacy and security policies, which are recommended for compliance and trust. Overall, the site is safe, professional, and trustworthy, with moderate tracking via Google Analytics and a cookie consent mechanism in place.

C

Centropen

highlighter.sk

0

The website www.highlighter.sk is a product-focused site promoting Centropen highlighter style stationery products, targeting Slovak-speaking consumers. It serves primarily as a brand and product showcase with links to external e-commerce platforms for purchase. The site demonstrates moderate digital maturity with the use of modern web technologies such as Lottie animations and Adobe Typekit fonts, providing a visually engaging user experience. However, it lacks critical compliance and security features such as privacy policy, terms of service, and contact information, which are essential for trust and regulatory adherence. Security posture is minimal with no detected security headers or advanced protections, and no analytics or tracking scripts were identified in the provided content. Overall, the site is functional and professional in design but requires improvements in privacy, security, and contact transparency to enhance trustworthiness and compliance.

K

KNOWLIMITS GROUP, a.s.

sutazcentropen.sk

0

The website www.sutazcentropen.sk is a promotional contest platform for CENTROPEN products, operated by KNOWLIMITS GROUP, a.s. It targets consumers primarily in Slovakia and the Czech Republic, encouraging product purchases to participate in a contest with prizes. The site provides contest rules, registration, and winner information, supporting brand engagement and marketing efforts. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, Google Tag Manager, and Google Fonts, delivering a responsive and user-friendly experience. The presence of a cookie consent banner indicates some level of GDPR compliance, although a dedicated privacy policy page is missing. Security posture is moderate with HTTPS implied but lacking explicit security headers and incident response information. WHOIS data aligns well with the website's declared operator, supporting legitimacy. Overall, the site is functional and professional but could improve in privacy transparency and security best practices.

C

centropen

highlighter.eu

0

The website www.highlighter.eu represents the product line of highlighters under the centropen brand, focusing on style and color variety. It targets general consumers interested in stationery products. The site features modern web technologies including Lottie animations and Adobe Typekit fonts, providing a visually engaging experience. However, the technical infrastructure lacks visible CMS or hosting provider information, and performance is moderate with basic mobile optimization and accessibility features. Security posture is limited with no detected security headers or explicit SSL configuration details, and privacy compliance is minimal with no privacy or terms of service pages found. Social media presence is established with official Facebook and Instagram links. Overall, the website appears legitimate but would benefit from enhanced security and privacy practices.