Security Directory

M

Metropolis Media

metropolis-media.me

0

Metropolis Media is a well-established outdoor advertising company based in Montenegro, operating since 2001 with a domain registered since 2010. The company offers a wide range of advertising services including traditional billboards, backlights, city lights, bigboards, megaboards, and modern digital LED displays. Their extensive network covers major cities and transit points in Montenegro, targeting advertisers seeking broad and effective outdoor media exposure. The website demonstrates a solid technical infrastructure with modern web technologies, multimedia integration via YouTube, and standard analytics tools such as Google Analytics and Tag Manager. Mobile optimization and user experience are good, supporting accessibility and navigation. However, the site lacks privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing advanced security headers and DNSSEC. WHOIS data confirms legitimacy and consistency with the business claims. Overall, the website is professional and trustworthy but could improve in privacy compliance and security hardening.

L

Led Media

ledmedia.ba

0

Led Media is a leading digital outdoor advertising company operating in Bosnia and Herzegovina, offering digital advertising services primarily targeting local businesses and advertisers. The website is built on WordPress using Elementor, indicating a modern and maintainable technical infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks important security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

C

CRNOBELO.com

crnobelo.com

0

CRNOBELO.com is a Macedonian lifestyle and news portal offering a wide range of content including news, horoscopes, entertainment, recipes, and interviews. The site targets Macedonian-speaking audiences interested in lifestyle and cultural topics. It operates on a Joomla CMS platform with modern web technologies and integrates multiple advertising networks for monetization. The website is professionally designed with good navigation and mobile optimization. Security posture is moderate with HTTPS enabled and some security best practices observed, but lacks explicit security policies and cookie consent mechanisms. WHOIS data is unavailable, which raises concerns about domain legitimacy, although the website content and branding appear consistent and trustworthy. Overall, the site is a functional and relevant media portal with room for improvement in privacy compliance and security transparency.

H

Hrvatska udruga digitalnih izdavača

hudi.hr

0

Hrvatska udruga digitalnih izdavača (HUDI) is a leading professional association in Croatia that unites online media and other industries involved in digital publishing and advertising. The organization focuses on standardizing digital media metrics, advocating for fair regulation of global tech platforms, and supporting the growth and sustainability of the Croatian digital media market. HUDI collaborates with major Croatian media companies and provides research, factchecking, and technological innovation services to its members. Technically, the website is built on WordPress with modern web technologies including Google Fonts and Google Tag Manager. It is mobile-optimized and includes standard privacy and cookie compliance mechanisms. The site uses HTTPS with a valid SSL certificate and anonymizes IP addresses in Google Analytics, reflecting a good security posture. However, some security headers are missing, and there is no public security policy or incident response information. The security posture is solid with no visible vulnerabilities or exposed sensitive data. GDPR compliance is evident through privacy and cookie policies. The WHOIS data is privacy protected due to GDPR, which is common and justified for this type of organization. The website is trustworthy, professionally maintained, and linked to reputable Croatian media entities. Overall, HUDI presents a credible and professional digital presence with a strong focus on the Croatian digital media ecosystem. Strategic improvements could include enhanced security headers, publishing security policies, and adding terms of service for completeness.

E

Eldra d.o.o.

eldra.hr

0

Eldra d.o.o. is a well-established Croatian company specializing in the rental of high-quality audio, video, lighting equipment, and technical production services. Founded in 1991, the company has a strong market presence and serves businesses and event organizers requiring professional event production solutions. Their website reflects a professional and consistent brand image, with clear navigation and relevant content tailored to their target audience. The business model focuses on equipment rental and technical support, positioning Eldra as a trusted local leader in their sector. Technically, the website is built on WordPress and utilizes common plugins such as Contact Form 7 for forms, Akismet for spam protection, and Cookiebot for cookie consent management. The site uses HTTPS with Cloudflare DNS, ensuring secure connections. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and documented security policies or incident response plans. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy, consistent with the company's history and location. Overall, the security posture is solid but could be improved with additional headers and transparency. The overall risk assessment is low, with no critical issues found. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility. The website is trustworthy, professional, and compliant with GDPR requirements, making it a reliable digital presence for Eldra d.o.o.

The website 3dprintaj.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2015 with DreamHost, LLC and uses SiteGround name servers, indicating a stable registration and hosting setup. However, the lack of accessible content, absence of privacy, cookie, or terms of service policies, and no visible contact information severely limit the ability to assess the business or its services. Technically, the site does not show evidence of modern security headers or DNSSEC, and no analytics or tracking scripts are present. Overall, the site appears to be either misconfigured or intentionally restricted, resulting in a poor user experience and low trustworthiness.

B

Badel 1862

antiquepelinkovac.hr

0

Antique Pelinkovac is a premium Croatian herbal liqueur brand operated under the parent company Badel 1862. The website serves as a brand showcase, providing detailed storytelling about the product's heritage, production process, product range, and enjoyment tips including cocktail recipes. The brand positions itself as a historic and premium offering in the hospitality sector, targeting adult consumers with a focus on quality and tradition. The website is built on WordPress, hosted by a Croatian hosting provider, and employs modern web technologies including Cookiebot for GDPR-compliant cookie consent and an age verification overlay to restrict underage access. The site demonstrates good digital maturity with responsive design, SEO optimization, and social media integration. Security posture is solid with HTTPS and basic protections, though lacks explicit security headers and incident response disclosures. Privacy compliance is partially met via cookie consent but lacks a visible privacy policy page. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

U

UNIP

unip.hr

0

UNIP is a Croatian association established in 2022 to promote and protect the rights of publishers of informational publications. It focuses on collective rights management, advocacy, and professional development within the media sector. The website reflects a small but professional organization targeting media publishers and related legal entities in Croatia. Technically, the site is built on WordPress with Elementor, using modern web technologies and SEO best practices. Security posture is solid with HTTPS and cookie consent implemented, though it lacks explicit security policies and headers. Overall, the site is trustworthy and well-aligned with its stated business purpose.

The website opads.us is registered to Optimus Prime Informatika, a Croatian company established in 2013. The domain registration is stable and consistent with the registrant's information, indicating legitimacy. However, the website itself is extremely minimal, containing only a brief greeting and a version number, with no metadata, contact information, or business description. This lack of content severely limits the ability to assess the company's market position or services from the site alone. Technically, the site is hosted behind Cloudflare DNS but lacks DNSSEC and security headers, and no CMS or frameworks are detected. The SSL configuration is basic, and no privacy or cookie policies are present, indicating poor privacy compliance. Security posture is weak due to missing headers and lack of incident response information. Overall, the site scores low on content quality, technical implementation, security, privacy compliance, and business credibility.

The website at clickdimensions.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any substantive content. This prevents extraction of business, security, or compliance information from the site itself. The domain is mature, registered since 2010 with GoDaddy.com, LLC, and is not privacy protected, indicating a legitimate registration. However, the lack of accessible content and absence of privacy, cookie, or terms of service policies on the landing page severely limits the ability to assess the company's digital presence and compliance posture. No contact information or security policies are available, and no analytics or marketing technologies are detected due to the blocked content. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in poor user experience and low trustworthiness from an external perspective.

The website at validator.nu is currently inaccessible due to a 502 Bad Gateway server error, indicating a backend server issue. As a result, no meaningful content, metadata, or business information is available for analysis. The domain is registered with Gandi SAS since 2007, which supports legitimacy and a stable domain history. The technical infrastructure appears minimal with nginx on Ubuntu, but no further details on CMS or frameworks are available. Security posture is weak due to lack of security headers and DNSSEC, and no privacy or cookie policies are present. Overall, the site is non-functional at this time, limiting any comprehensive security or compliance evaluation.

The website cmsimpleforum.com serves as a community forum dedicated to CMSimple_XH, an open source content management system. It provides a platform for users and developers to discuss general topics, security, installation, development, and third-party plugins related to CMSimple_XH. The forum is powered by phpBB software and hosts a significant volume of posts and active members, indicating a well-established community presence since its domain registration in 2008. The site targets CMSimple_XH users and developers globally, offering multilingual support forums and resources. Technically, the site uses standard web technologies including jQuery and Font Awesome, with moderate performance and good mobile optimization. However, there is no evidence of advanced security headers or cookie consent mechanisms, and DNSSEC is not enabled, which suggests room for improvement in security posture. Privacy compliance is basic, with a privacy policy page present but no cookie banner or GDPR explicit indicators. Contact information is limited to a forum contact form, with no direct emails or phone numbers publicly listed. Overall, the site is a niche community resource with moderate technical maturity and security practices.

B

Beacon Fund

beaconfund.com

0

Beacon Fund is a pioneering private debt fund focused on providing tailored financing solutions to SMEs in Vietnam, particularly those led by gender-diverse teams committed to social and environmental impact. The fund fills a financing gap for businesses too large for microfinance but underserved by traditional equity and banking options. Their market position as Southeast Asia’s first private debt fund dedicated to gender equality and social impact underscores their unique value proposition. The website reflects a professional and consistent brand with clear messaging and strong trust indicators such as 2X Fund membership and impact reporting. Technically, the site is built on a modern WordPress stack with Elementor and several plugins, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal privacy and cookie policies, which are compliance gaps. Overall, the website is safe, professional, and credible, though improvements in privacy compliance and security hardening are recommended.

The website www.docurated.com is currently inaccessible, returning a 403 Forbidden error page which blocks access to any business or content information. The domain WHOIS data is unavailable, indicating the domain may be unregistered, expired, or privacy-protected with no public data. Due to the lack of accessible content, no privacy, cookie, or terms of service policies are present, and no contact information or business details can be extracted. The technical infrastructure appears minimal, with only Google Fonts loaded externally. Security posture cannot be assessed due to lack of accessible content and absence of security headers or HTTPS information. Overall, the site is effectively blocked from analysis, resulting in a very low trust and credibility score.

The website eventualmillionaire.com is currently inaccessible, presenting a 403 Forbidden error page served behind Cloudflare's infrastructure. This indicates that access to the site is restricted, possibly due to security policies or misconfiguration. The domain is well-established, registered since 2007 with IONOS SE, and shows no privacy protection, suggesting transparency in ownership. However, no business or contact information, privacy policies, or terms of service are accessible on the site. The lack of content and metadata severely limits the ability to assess the business or technical maturity of the site. The technical infrastructure includes Cloudflare DNS and hosting, but no further technologies or analytics are detectable from the provided HTML content.

C

CMSimple_XH

cmsimple-xh.org

0

CMSimple_XH is an open source flat file CMS project that enables users to create and maintain websites without a database, targeting web developers and small website owners. The project is community-driven, offering plugins, templates, and support via forums and a wiki. The website presents a professional and consistent brand image with good content quality and clear navigation. Technically, it supports modern PHP versions and uses common web technologies such as jQuery and TinyMCE, ensuring compatibility with major web servers. Security posture is moderate with no HTTPS issues detected but lacks advanced security headers and cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for open source projects. Overall, the site is trustworthy and well-maintained with room for security and privacy improvements.

P

Proyecto SIMUSOL

simusol.org

0

SimuSol.org is a niche open-source project focused on providing software tools for simulating solar energy systems and thermal circuits. The project is community-driven and offers several related software packages under GPL licenses. The website serves as a hub for downloads, documentation, and community resources primarily targeting researchers and engineers interested in solar energy simulation. Technically, the site is built on the CMSimple_XH platform, hosted on DigitalOcean, and uses Perl-based backend tools with JavaScript and jQuery on the frontend. While the site is functional and contains relevant content, it lacks modern security practices such as DNSSEC, security headers, and privacy policies. The use of Google Analytics indicates moderate user tracking without clear privacy compliance. The domain registration is consistent with the project's timeline and shows no suspicious patterns, supporting the site's legitimacy. Overall, the website is safe, moderately professional, and serves its target audience adequately but would benefit from improved security and privacy compliance.

I

Inxmail GmbH

inxmail.com

0

Inxmail GmbH operates a professional email marketing platform focused on delivering newsletters, automated campaigns, transactional emails, and SMTP mail relay services. The company targets businesses seeking GDPR-compliant, secure, and efficient email marketing solutions. Their platform supports integrations with CRM, CMS, and e-commerce systems, and offers marketing automation with visual workflows. The website reflects a mature digital presence with a modern TYPO3 CMS infrastructure, consent management, and tracking tools integrated for analytics and compliance. Security posture is strong, supported by ISO 27001 certification and adherence to GDPR standards, with no visible vulnerabilities or exposed sensitive data. Overall, Inxmail presents a trustworthy and professional brand with a solid market position in the technology and e-commerce sectors.

The website www.proxena.com is effectively non-existent in terms of content and business presence. The site contains only a single line of text with the domain name and no metadata, scripts, or interactive elements. The WHOIS lookup failed to find any registration data, indicating the domain is either unregistered or inactive. This lack of registration and content means there is no identifiable business, no contact information, and no security or privacy policies in place. The technical infrastructure appears minimal or non-existent, with no evidence of HTTPS or security best practices. Overall, the site does not present any trust signals or business credibility, and it is not possible to assess any meaningful security posture beyond the absence of data. The risk level is high due to the lack of registration and content, and the site should not be considered a legitimate or operational business presence.

H

Hrvatsko dizajnersko društvo / Croatian Designers Association

dizajn.hr

0

Hrvatsko dizajnersko društvo (Croatian Designers Association) is a non-profit organization dedicated to promoting design culture, education, exhibitions, and discourse in Croatia. The website serves as a portal for design professionals, students, and enthusiasts, providing information on events, workshops, publications, and membership. It holds a reputable position in the Croatian design community, supported by government and cultural sponsors, and is a member of international design associations.

R

ReStyloh

restyloh.hr

0

ReStyloh is a Croatian e-commerce platform focused on the buying and selling of second-hand clothing and footwear. The website targets general consumers interested in sustainable fashion and offers a marketplace model where users can list and purchase used apparel. The platform is positioned as a niche player in the local market, emphasizing unique fashion finds and environmental consciousness. The website features clear navigation with categorized product listings and search capabilities for both products and users. Technically, the site employs common web technologies including jQuery, Bootstrap, Owl Carousel, and Select2 for UI components, along with Google Fonts for typography. Analytics are implemented via Google Analytics and Clicky, indicating a moderate level of digital maturity. The site uses HTTPS, ensuring encrypted communication, but lacks visible advanced security headers and formal privacy or cookie policies. From a security perspective, the site demonstrates basic good practices such as HTTPS usage and no visible exposure of sensitive data. However, the absence of security headers, privacy policies, and incident response information suggests room for improvement in compliance and security posture. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, ReStyloh presents a functional and professional e-commerce platform with a focus on second-hand fashion in Croatia. To enhance trust and compliance, the site should implement comprehensive privacy and cookie policies, security headers, and clear contact information. These improvements would strengthen the site's security posture and user confidence.

F

FBL

fbl.ba

0

The website fbl.ba is a WordPress-based site titled 'FBL' with integration of Google advertising and analytics technologies, including Google Tag Manager and Adsense, with consent mode enabled for privacy compliance. The site appears to be targeted at a general audience in Bosnia and Herzegovina, but lacks explicit business descriptions, contact information, or detailed company data. Technically, the site uses modern web fonts and SEO plugins, providing a moderate level of performance and mobile optimization. Security posture is basic, with no visible security headers or published security policies, and no evidence of vulnerability disclosure or incident response readiness. Privacy compliance is limited to a cookie consent mechanism, but no privacy policy or terms of service are found. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for general audiences.

M

Mainstream Public Cloud Services d.o.o.

bizlife.rs

0

BIZlife.rs is a well-established Serbian business news portal operated by Mainstream Public Cloud Services d.o.o., founded in 2011. The site offers comprehensive business, entrepreneurship, IT/Tech, lifestyle, travel, and health news targeted at Serbian-speaking professionals and entrepreneurs. The platform uses WordPress with Elementor, integrating modern web technologies and analytics tools such as Google Analytics, Facebook Pixel, and Gemius Prism. The website demonstrates good content quality, professional design, and consistent branding, supported by active social media channels and a newsletter subscription service. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a comprehensive privacy policy but no explicit cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

M

Mediakit

mediakit.hr

0

Mediakit.hr is a Croatian informational platform focused on marketing, PR, media, and the event industry. The website provides news, articles, and newsletters targeting professionals in these sectors. The platform is relatively new, with domain registration in April 2024, and positions itself as a niche media outlet serving the Croatian market. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Modern Events Calendar Lite, and Complianz GDPR for cookie consent, indicating a moderate level of digital maturity. Google Analytics and AdSense are integrated for analytics and monetization purposes. Security-wise, the site enforces HTTPS and shows no signs of WAF or blocking mechanisms. However, explicit security headers are not detected, and there is no visible security policy or incident response information. Privacy compliance is partially addressed through cookie consent, but no privacy policy or terms of service pages were found. Overall, the site demonstrates a good level of professionalism and trustworthiness but would benefit from enhanced privacy and security disclosures.

M

Marketing Magazin

marketingmagazin.si

0

Marketing Magazin is a well-established Slovenian media outlet specializing in marketing, communications, and advertising industry news and insights. The website serves marketing professionals and industry stakeholders with news articles, interviews, event listings, and video content. The business model is primarily media publication supported by advertising and subscriptions. Technically, the site uses Drupal 9 CMS with standard analytics and advertising tools such as Google Analytics, Facebook Pixel, and Gemius. The site is mobile optimized and has good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are not evident. No privacy policy or terms of service were found in the provided content, indicating room for compliance improvement. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

L

LED Mreza Srbije

ledmrezasrbije.rs

0

LED Mreža Srbije operates a comprehensive network of LED and video billboards across Serbia, targeting advertisers seeking high-impact outdoor and indoor marketing solutions. The company holds a strong market position with over 100 locations in more than 40 cities, offering premium advertising spaces in strategic urban and transit locations. Their business model focuses on renting advertising space on LED billboards, complemented by indoor advertising in shopping centers, leveraging modern video marketing techniques to enhance client campaigns. Technically, the website is built on WordPress with WooCommerce and Oxygen Builder, integrating Google Tag Manager for analytics. The site is mobile-optimized and provides a professional user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partially met with privacy and cookie policies present, but lacks an explicit cookie consent mechanism. Overall, the domain registration data aligns well with the business history, supporting legitimacy and trustworthiness.

A

Advertiser Serbia

advertiser-serbia.com

0

Advertiser Serbia is a professional online media portal focused on the advertising, media, and marketing sectors in Southeast Europe, primarily Serbia. The website provides news, industry analysis, event announcements, and advertising content targeting media professionals, agencies, brands, and the general public interested in this sector. It positions itself as a leading and influential portal in the regional media and advertising landscape. Technically, the site is built on WordPress CMS with a modern tech stack including Yoast SEO, Google Analytics, and social sharing plugins, offering good mobile optimization and SEO practices. Security posture is decent with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, which are compliance gaps. The domain WHOIS data is missing or not found, raising concerns about domain legitimacy despite the professional and active website content. Overall, the site is functional and professional but would benefit from improved privacy compliance and clearer domain registration transparency.

S

Studenac d.o.o.

studenac.hr

0

Studenac d.o.o. is a leading Croatian retail chain specializing in food and household products, operating over 1000 stores nationwide. Founded in 1991 and headquartered in Omiš, Croatia, it is owned by the Polish Enterprise Fund VIII since 2018. The company offers a broad range of services including weekly promotions, mobile app-based coupons, and additional services such as package pickup and delivery via third-party platforms. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site employs modern JavaScript libraries and asynchronous loading techniques, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR regulations.

I

INA, d.d.

ina.hr

0

INA, d.d. is a leading Croatian integrated energy company specializing in oil and gas exploration, production, refining, marketing, and retail. The company maintains a strong market position in Croatia and the region, offering a broad range of petroleum products and customer services. The website reflects a mature digital presence with comprehensive corporate information, targeting customers, investors, and partners. Technically, the site is built on WordPress with modern SEO and analytics tools, providing good performance and mobile optimization. Security posture is strong with HTTPS enforcement, ISO 27001 certification, and cookie consent mechanisms, although public vulnerability disclosure and incident response contacts are not explicitly provided. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR.

Costa Coffee's Croatian website serves as a localized digital presence for the internationally recognized coffeehouse brand. The site primarily focuses on showcasing coffee products and brand information tailored to the Croatian market. The business operates within the retail sector, targeting general consumers and coffee enthusiasts. The website reflects a consistent brand identity aligned with Costa Coffee's global image and is supported by The Coca-Cola Company as its parent entity. Technically, the website leverages modern web technologies including React and Gatsby, supported by Akamai CDN for optimized performance. The site is mobile-optimized and employs standard security best practices such as HTTPS enforcement and security headers. Cookie consent is managed through OneTrust, indicating a basic level of privacy compliance. From a security perspective, the site demonstrates a solid posture with no detected vulnerabilities or exposed sensitive data. However, the absence of explicit privacy policy, terms of service, and incident response contact details suggests areas for improvement in compliance and transparency. The WHOIS data confirms the domain's legitimacy and consistency with the brand's regional presence. Overall, the website is professional, secure, and trustworthy, but would benefit from enhanced privacy and security disclosures to meet higher compliance standards.

S

Smart Water d.o.o.

smartwater.hr

0

Smart Water d.o.o. is a Croatian company specializing in products and services for water supply companies, construction firms, and design houses. The company represents renowned manufacturers of water supply equipment, positioning itself as a niche B2B provider in the energy sector focused on water management. The website is professionally designed using WordPress with the Divi theme and optimized for SEO with Yoast. It offers content primarily in Croatian with an English alternative, targeting regional business clients. The technical infrastructure is modern and mobile-optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Contact information is not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website reflects a legitimate small business with room for improvement in security and privacy transparency.

B

bebold sàrl

bebold.ch

0

bebold sàrl is a Swiss-based digital agency specializing in web development, marketing, and design services primarily serving clients in Martigny and Lausanne. Their website presents a professional image with detailed service offerings across design, web, and marketing domains, targeting businesses seeking comprehensive digital solutions. The company positions itself as a creative and functional partner for digital projects, emphasizing user experience and strategic marketing. Technically, the website employs modern JavaScript libraries, Google Analytics for tracking, Google reCAPTCHA for form security, and a cookie consent mechanism via tarteaucitron.io, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and design quality. Security posture is solid with HTTPS enforced and reCAPTCHA integration, but lacks visible security headers and published security policies, which are areas for improvement. Privacy compliance is partial due to the absence of a privacy policy and terms of service, though cookie consent is implemented. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security documentation.

A

Agrisano

agrisano.ch

0

Agrisano is a Swiss insurance provider specializing in tailored insurance solutions for farmers and agricultural workers. The company offers a comprehensive range of services including basic health insurance, supplementary insurance, pension plans, and employee global insurance. The website is professionally designed using TYPO3 CMS and targets the German-speaking Swiss agricultural community. The digital infrastructure includes privacy-conscious analytics via Matomo and Google Analytics, with a cookie consent mechanism in place. Security posture is solid with HTTPS and some security best practices observed, though there is room for improvement in security headers and incident response disclosures. Overall, the website is trustworthy, well-branded, and serves its niche market effectively.

D

diagraf GmbH

diagraf.ch

0

diagraf GmbH is a small graphic design atelier based in Bern, Switzerland, specializing in corporate design, branding, illustrative graphics, and web design services. The company targets brands and businesses seeking professional visual communication solutions. The website presents a professional portfolio with clear navigation and detailed references, positioning diagraf as a trusted local design service provider. Technically, the site uses modern web technologies including Svelte and Craft CMS, delivering a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enforced but lacks security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

H

High Altitude Research Stations Jungfraujoch and Gornergrat

hfsjg.ch

0

The High Altitude Research Stations Jungfraujoch and Gornergrat operate as a Swiss international foundation dedicated to supporting scientific research at high altitude locations. The foundation provides infrastructure and facilitates research projects primarily in the fields of atmospheric, environmental, and astronomical sciences. Their market position is specialized and niche, serving academic and research communities with unique facilities. The website reflects a professional and consistent brand image, targeting researchers and scientific institutions. Technically, the website is built on WordPress 6.4.7 with modern JavaScript libraries such as jQuery 3.7.1 and uses optimization plugins like Autoptimize. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. However, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX requests, indicating some security awareness. However, the absence of explicit security headers and published security policies limits the overall security posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and professionally maintained, with a strong legitimacy score based on WHOIS data and business consistency. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing incident response policies, and maintaining regular updates to WordPress and plugins to ensure ongoing security and compliance.

B

Bolden

bolden.nl

0

Bolden is an independent creative agency based in Amsterdam, specializing in brand strategy, brand identity, digital experiences, and e-commerce design since 2010. The company has established a strong market position with multiple industry awards such as the FONK150 Best Small Design Agency. Their target audience includes brands and businesses seeking professional digital and branding services. The website reflects a high level of professionalism, excellent design quality, and clear navigation, supporting their market reputation. Technically, the website employs modern web technologies including JavaScript ES modules, lazy loading with Lozad.js, and Google Analytics with IP anonymization, indicating a mature digital infrastructure. The site is mobile-optimized and performs well, with good SEO and accessibility features. However, the CMS and hosting provider are not explicitly identified. From a security perspective, the site uses HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; while a privacy policy and terms of service exist (in Dutch), there is no cookie consent mechanism or explicit GDPR compliance details. Incident response and security policy pages are absent. Overall, the website presents a low risk profile with strong business credibility and technical implementation. Strategic improvements in privacy compliance and security transparency would enhance trust and regulatory adherence.

E

ETH-Rat

ethrat.ch

0

ETH-Rat is the official strategic leadership and supervisory body for the ETH domain in Switzerland, overseeing the two Federal Institutes of Technology (ETH Zurich and EPFL) and four research institutes. The website serves as a government portal providing governance documents, strategic plans, and public information. The site is professionally designed using WordPress with Elementor and Yoast SEO, supporting multiple languages and integrating official social media channels. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is good with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the site reflects a mature governmental digital presence with moderate user tracking via Google Tag Manager.

The website triplepundit.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any content or business information. The domain is registered since 2005 with GoDaddy.com, LLC and hosted on Amazon AWS infrastructure, indicating a legitimate and established domain. However, the lack of accessible content, metadata, privacy policies, contact information, and security headers prevents a comprehensive analysis of the business or security posture. The site does not expose any forms, scripts, or external links in the provided HTML content. Due to the blocked status, the technical maturity and security posture cannot be fully assessed, but the absence of DNSSEC and security headers suggests room for improvement. Overall, the site currently provides no usable information or trust signals to visitors.

P

Proyecto Ututo

ututo.org

0

Proyecto Ututo is a small, community-driven free software project focused on developing and distributing 100% free GNU/Linux distributions and related simulation software for solar and thermal energy systems. The project has historical recognition and aims to promote knowledge sharing and digital inclusion, especially in developing countries. The website content is primarily in Spanish and provides resources, downloads, and community information related to the Ututo project and SimuSol software. Technically, the site uses CMSimple_XH CMS, older JavaScript libraries, and is hosted on DigitalOcean. Google Analytics and Tag Manager are used for user tracking. Security posture is moderate with some gaps such as lack of DNSSEC and missing security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data is consistent with the project’s claims and history, supporting legitimacy.

P

Parabola Project

parabola.nu

0

Parabola GNU/Linux-libre is a community-driven free software operating system distribution based on Arch Linux, emphasizing software freedom and compliance with GNU guidelines. It targets free software enthusiasts and power users seeking a fully libre and hackable OS. The project provides packages, documentation, and community support through forums, mailing lists, and IRC channels. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript with jQuery 1.8.3. The site is accessible, uses HTTPS, but lacks modern security headers and privacy policies, indicating room for improvement in compliance and security posture. No tracking or advertising scripts are present, reflecting a privacy-respecting approach. The WHOIS data for the exact domain www.parabola.nu is unavailable, likely because it is a subdomain or alias, but the project’s long-standing presence since 2009 supports legitimacy. Overall, the website is professional, trustworthy, and safe, but could enhance security and privacy compliance.

The website dragora.org is currently inaccessible beyond a minimal 503 Service Unavailable maintenance page, providing no substantive content or business information. The domain is registered since 2008 with a reputable registrar, indicating a legitimate registration, but the lack of accessible content prevents meaningful analysis of the business or services. Technically, the site lacks metadata, scripts, or security headers, and no privacy or cookie policies are present, indicating a low digital maturity level. Security posture is minimal with only basic SSL configuration inferred from WHOIS data, and no advanced protections or compliance measures are evident. Overall, the site presents a high risk due to lack of transparency, content, and security features, and is currently non-functional for end users.

F

Free Software Foundation, Inc.

nongnu.org

0

Savannah.nongnu.org is a well-established software forge platform dedicated to hosting and supporting free software projects, both GNU and non-GNU. It operates under the auspices of the Free Software Foundation, providing a collaborative environment for developers committed to free software principles. The platform offers project hosting, bug tracking, support requests, task and patch management, serving a community of over 25,000 registered users and nearly 4,000 hosted groups. Its market position is strong within the free software ecosystem, acting as a central hub for development and distribution.

SofaSurfer.org is a personal portfolio and blog website operated by Kilian Bohnenblust, a digital artist and web developer active since 1999. The site showcases various web development projects and digital art, targeting digital art enthusiasts and potential clients seeking web design and development services. The business model is that of a freelance or individual professional offering services and sharing knowledge through a blog. The website is hosted on Hostpoint AG infrastructure and uses modern web technologies including jQuery, Masonry.js, and Piwik/Matomo analytics. The site is mobile optimized and has good SEO practices, although accessibility features are basic. From a security perspective, the website uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No sensitive data exposure or vulnerable libraries were detected. Privacy compliance is partial; a privacy policy is present but no cookie consent mechanism is implemented. Contact information is minimal, with no explicit emails or phone numbers provided on the homepage, which may impact user trust and compliance. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and security headers. The domain is long-standing and consistent with the claimed business history, enhancing trustworthiness. The site content is safe for general audiences with no adult or questionable material detected.

4

404 d.o.o.

somoborac.com

0

SoMo Borac is a well-established digital media event and conference organized by 404 d.o.o., focusing on digital awards and industry trends in the Croatian and regional market. The website presents a professional and consistent brand image, targeting digital professionals and stakeholders. The technical infrastructure is based on WordPress with modern front-end libraries and analytics tools, supporting multilingual content and good mobile responsiveness. Security posture is adequate with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, but terms of service and security policies are absent. Overall, the site is trustworthy and professionally maintained, with strong industry partnerships and media presence.

T

Trust Alliance New Zealand

trustalliance.co.nz

0

Trust Alliance New Zealand operates as a membership consortium focused on creating a trusted and verifiable data sharing ecosystem for New Zealand's primary sector including producers, growers, exporters, and retailers. The website presents a professional image with clear messaging about its mission to enable secure data sharing and compliance with evolving global standards. The business model centers on collaboration and data interoperability projects such as the Digital Wallet and Digital Farm Environment Plan. The target audience is primarily New Zealand agricultural stakeholders and related service providers.

F

FIDO Alliance

fidoalliance.org

0

FIDO Alliance is a well-established non-profit organization founded in 2011, dedicated to developing and promoting open authentication standards to reduce reliance on passwords globally. The organization holds a strong market position as a leader in passwordless authentication technologies, serving technology companies, developers, and enterprises. Their key services include standard development, certification programs, and fostering industry collaboration. The website reflects a professional and consistent brand image with good content quality and clear messaging focused on authentication standards. Technically, the website is built on WordPress with modern technologies such as jQuery, Google reCAPTCHA, and Google Tag Manager. It is hosted with Cloudflare DNS services, ensuring good performance and security. The site implements cookie consent mechanisms and uses SEO best practices, although accessibility features could be improved. The technical infrastructure supports a moderate to good user experience with mobile optimization. From a security perspective, the site enforces HTTPS, uses security headers, and integrates CAPTCHA for form protection. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms such as security.txt. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the organization's history, supporting legitimacy and trust. Overall, the website presents a low-risk profile with strong business credibility and a solid security posture. Strategic improvements include publishing comprehensive privacy and security policies, enabling DNSSEC, and enhancing accessibility and compliance transparency.

D

Digital Identity New Zealand

digitalidentity.nz

0

Digital Identity New Zealand is a membership-funded organization established in 2018, focused on advancing digital identity and trust ecosystems within New Zealand. The organization provides a platform for collaboration, knowledge sharing, and advocacy through events such as the Digital Trust Hui Taumata, working groups, and educational resources. Their market position is that of a leading entity in the digital identity space in New Zealand, targeting businesses and organizations interested in digital identity innovation and trust economy development. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses common libraries such as jQuery and Owl Carousel. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO practices. From a security perspective, the site uses HTTPS and secure login forms but lacks DNSSEC and important security headers, which are recommended for enhanced protection. Privacy compliance is partial, with a privacy policy present but located at an unusual URL and no cookie consent mechanism detected. No incident response or security policy documents are published. Overall, the website is professional and trustworthy with a good business credibility score. However, improvements in privacy compliance, security headers, and DNS security would strengthen its security posture and regulatory adherence.

C

Cybersecurity and Infrastructure Security Agency

ndstudio.gov

0

The National Design Studio website represents an official U.S. government initiative led by the Cybersecurity and Infrastructure Security Agency. It focuses on modernizing government interfaces and improving citizen experiences through the America by Design initiative. The site is positioned as a government entity with a clear mission and target audience of American citizens and government service users. The business model is non-commercial, centered on public service and design innovation within government frameworks. Technically, the website employs modern web technologies including Next.js and React, hosted and secured via Cloudflare services. Performance and mobile optimization are good, with a clean and professional design. However, accessibility features are basic and could be improved. The site uses Cloudflare Turnstile for bot protection but lacks DNSSEC and some security headers. From a security perspective, the site benefits from HTTPS and Cloudflare protections but lacks published privacy, cookie, and security policies. No contact information for incident response or data protection officers is provided. The domain WHOIS data aligns well with the government entity, showing consistency and legitimacy. No vulnerabilities or malicious content were detected, but enabling DNSSEC and publishing security policies would enhance trust. Overall, the website is trustworthy and professional but could improve privacy compliance and security transparency. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies, adding security headers, and providing clear contact channels for security incidents.

E

ERPNext Deutschland

erpnext-deutschland.org

0

ERPNext Deutschland is a small technology-focused business providing a modern, open source ERP system tailored for companies in the German-speaking region. The website promotes ERPNext as a comprehensive, customizable, and mobile-friendly ERP solution supported by an active community. Technically, the site is built on WordPress with the Divi theme, hosted with a reputable German registrar and using Cloudflare DNS. The site is accessible, well-designed, and mobile optimized, though it lacks privacy and cookie policies and explicit contact information. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.