Security Directory

E

Elämyslahjat Oy

elamyslahjat.fi

0

Elämyslahjat Oy operates the leading Finnish e-commerce platform specializing in experiential gifts, offering over 1600 unique experiences ranging from driving and flying adventures to spa treatments and courses. Established in 2010, the company has positioned itself as the largest experience gift retailer in Finland, targeting consumers seeking memorable and non-material gifts. The website demonstrates a mature digital infrastructure with modern technologies, responsive design, and comprehensive navigation, supporting a seamless user experience. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant privacy and cookie policies. While no critical vulnerabilities were detected, the site could benefit from explicit security policy and incident response disclosures. Overall, Elämyslahjat.fi presents a professional, trustworthy, and well-maintained online presence aligned with its business objectives.

T

Tinggly

tinggly.com

0

Tinggly is an established e-commerce platform specializing in experience gifts, offering a wide range of unique experiences and gift boxes globally. Founded in 2014, the company targets gift buyers seeking meaningful and personalized experiences, with a strong market presence in over 145 countries. Their business model centers on selling prepaid vouchers and physical gift boxes, supported by a comprehensive digital infrastructure. Technically, Tinggly employs modern web technologies including Vue.js, New Relic for performance monitoring, Google Tag Manager, and various marketing and analytics tools such as Klaviyo and Cookiebot. The website demonstrates excellent design quality, mobile optimization, and SEO practices, ensuring a fast and accessible user experience. From a security perspective, the site enforces HTTPS and utilizes security best practices including cookie consent mechanisms and monitoring via New Relic. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. The extensive use of third-party ad networks and tracking pixels is managed with user consent, aligning with privacy compliance requirements. Overall, Tinggly presents a high level of professionalism, trustworthiness, and compliance, with minor recommendations to enhance security transparency and policy disclosures.

G

GetResponse

recostream.com

0

GetResponse is a well-established enterprise offering AI-powered ecommerce product recommendation solutions integrated within its broader marketing automation platform. The website demonstrates a mature digital presence with rich content, professional design, and clear calls to action targeting ecommerce businesses seeking to enhance sales through AI. Technically, the site employs modern JavaScript frameworks, analytics tools like Google Tag Manager and Visual Website Optimizer, and uses CDN hosting for performance. Security posture is strong with HTTPS, nonce usage in scripts, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

M

Monetha

monetha.io

0

Monetha is an e-commerce cashback platform that enables users to earn cashback on online purchases from a wide variety of partner stores across multiple categories such as fashion, beauty, electronics, and travel. The platform operates on an affiliate marketing model, sharing commissions received from retailers with its users. The website is well-structured, professionally designed, and optimized for both desktop and mobile users, providing a good user experience with clear navigation and relevant content. Technically, it leverages modern web technologies including WordPress, Elementor, Vue.js, and various analytics and marketing tools, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses consent management platforms like Usercentrics and Didomi, but lacks explicit security policies and some security headers, which could be improved. Overall, the site demonstrates a strong privacy compliance posture with comprehensive privacy and cookie policies and active user consent mechanisms. The domain registration data is consistent with the business claims, supporting the legitimacy of the platform.

E

Emoti Group

emotigroup.com

0

Emoti Group is a Lithuania-based group of companies specializing in experience gifting, including spa, leisure, and medical getaway packages. The company operates multiple subsidiaries across several countries, offering experiential gifts both online and offline. Their market position is that of a medium-sized retail and hospitality business focused on emotional and memorable gifting experiences. Technically, the website is built on WordPress using the Kallyas theme and Zion Builder, with common libraries like jQuery and Bootstrap. The site is moderately optimized for performance and mobile use, with good SEO practices but basic accessibility features. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and policies are lacking. Privacy compliance is partial, with a GDPR-related page for candidates but no cookie consent mechanism or comprehensive privacy policy. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

U

UAB "Gera dovana"

bookitnow.lt

0

BookitNow.lt is a well-established Lithuanian online booking platform specializing in a wide range of services including beauty, health, spa, dental, pet care, and leisure activities. It operates as part of the Gera Dovana group, positioning itself as one of the largest daily services and entertainment platforms in Lithuania. The platform offers over 10,000 services with convenient online booking and significant discounts, targeting consumers seeking easy access to everyday and leisure services. Technically, the website employs modern JavaScript libraries such as jQuery, integrates Google Analytics and Tag Manager for tracking, and uses reCAPTCHA v3 for bot protection. The site is mobile-optimized and features a comprehensive cookie consent mechanism, reflecting good privacy compliance. Security-wise, HTTPS is enforced and no critical vulnerabilities are evident, though some security headers could be improved and a formal security policy is absent. Overall, the website demonstrates a solid security posture and professional business credibility with clear contact information and trust indicators.

S

Super Prezenty Sp. Z o.o.

superprezenty.pl

0

Super Prezenty Sp. Z o.o. operates superprezenty.pl, a leading e-commerce platform in Poland specializing in gift vouchers and experience gifts. Established in 2012, the company offers a wide range of over 10,000 products including flights, massages, culinary experiences, and more, targeting both individual consumers and corporate clients. The platform is part of a regional group active also in Lithuania and Latvia, reinforcing its market leadership in the gift voucher sector. Technically, the website employs modern JavaScript libraries, Google Analytics, and fraud detection tools, ensuring a robust digital presence with good performance and mobile optimization. Security measures include HTTPS, reCAPTCHA, and cookie consent mechanisms, although explicit security policies and advanced headers could be improved. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR, making it a reliable platform for gift purchases.

U

UAB "GERA DOVANA"

geradovana.lt

0

Gera dovana is a well-established Lithuanian e-commerce company specializing in selling gift experiences, vouchers, and gift sets both online and through physical stores. Operating since 2007, it holds a leading market position in Lithuania and also operates in Latvia and Poland through subsidiaries. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization. The technical infrastructure includes modern analytics and marketing tools such as Google Analytics, TikTok Pixel, and Google Tag Manager, alongside bot protection via Google reCAPTCHA v3. Security posture is strong with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved. Privacy policies are comprehensive and GDPR compliant. WHOIS data confirms the legitimacy and consistency of the business registration. Overall, the website demonstrates a mature digital presence with good security and privacy practices.

S

SIA ISIC.lv

isic.lv

0

ISIC.lv operates as the official licensed distributor of International Student Identity Cards (ISIC) in Latvia, providing internationally recognized student, pupil, and teacher identification cards. The website serves primarily Latvian students and educators, offering card issuance services and access to discounts both locally and globally. The business maintains a clear market position as the authorized ISIC distributor in Latvia, supported by UNESCO recognition and partnerships with educational institutions. The website content is well-structured, professionally designed, and provides comprehensive information about the cards, discounts, and related news. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and various UI libraries, with Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, some security best practices such as security headers and explicit incident response policies are not present. Privacy compliance is strong with a detailed privacy policy, cookie consent mechanism, and GDPR adherence. From a security perspective, the site shows good baseline protections with no visible vulnerabilities or exposed sensitive data. The absence of security headers and incident response information suggests room for improvement. WHOIS data confirms the legitimacy of the domain registration and alignment with the business claims. Overall, the website is trustworthy and professionally maintained, though enhancing security policies and transparency would strengthen its posture. Strategically, ISIC.lv should focus on implementing security headers, publishing incident response and vulnerability disclosure policies, and improving contact transparency to enhance user trust and compliance. These steps will support sustained growth and reinforce its position as a trusted educational service provider in Latvia.

S

SIA „LIELISKA DĀVANA“

lieliskadavana.lv

0

Lieliska dāvana is a leading Latvian e-commerce platform specializing in gift cards and experience gifts, operating since 2011. The company offers a wide range of over 2000 gift options including spa treatments, active leisure, romantic getaways, and courses, targeting consumers in Latvia and neighboring countries. The website demonstrates a mature technical infrastructure with modern analytics, marketing tools, and accessibility features. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, the site is professional, trustworthy, and well-optimized for user experience and privacy compliance.

S

SIA „Dāvanu Serviss“

davanuserviss.lv

0

Dāvanu Serviss is a well-established Latvian e-commerce business specializing in experience gifts and gift cards, operating since 2007. The company offers a wide range of adventure, wellness, and entertainment experiences targeted at individuals and corporate clients across Latvia and neighboring countries. Their platform is professionally designed with clear navigation and mobile optimization, supporting multiple languages including Latvian and Russian. Technically, the site employs modern web technologies such as jQuery, Bootstrap, and integrates analytics and marketing tools like Google Analytics, Cookiebot, and GetResponse. Security measures include HTTPS enforcement, reCAPTCHA on forms, and cookie consent mechanisms, with no visible vulnerabilities or exposed sensitive data. The business demonstrates strong credibility with transparent contact information, comprehensive privacy and cookie policies, and a network of reputable partners in the experience gift sector.

A

Apollo Kauplused OÜ

apollo.ee

0

Apollo.ee is the online e-commerce platform of Apollo Kauplused OÜ, a leading retail company in Estonia specializing in books, e-books, films, music, games, and various gift and office products. The website showcases a comprehensive catalog of products with detailed descriptions, pricing, and user interaction features such as wishlists and shopping carts. Apollo maintains a strong market position in Estonia with multiple subsidiaries and partner brands, including Apollo Kino and Vapiano. The platform is built on modern web technologies including React and Next.js, ensuring a responsive and user-friendly experience across devices. Security is well-implemented with HTTPS, security headers, and privacy compliance mechanisms including GDPR adherence and cookie consent. Overall, Apollo.ee demonstrates a mature digital infrastructure supporting a robust retail business.

Z

Zipy Inc.

zipy.ai

0

Zipy Inc. operates a sophisticated AI-powered digital customer experience platform that integrates session replay, error tracking, API performance monitoring, and product analytics into a unified SaaS offering. The company targets developers, product teams, engineering leaders, QA, and customer support teams, positioning itself as a comprehensive solution to improve product adoption, reduce time to resolution, and enhance customer experience. The platform is well-regarded in the market with strong customer testimonials and industry recognition, including SOC 2 Type II and GDPR compliance. Technically, the website leverages modern JavaScript frameworks and libraries, including ReactJS, VueJS, Angular, and others, hosted likely on Google Cloud infrastructure with Webflow CMS. The site is optimized for performance, mobile responsiveness, and SEO, employing advanced analytics and marketing tools such as Mixpanel, Google Analytics, Microsoft Clarity, and Apollo.io. Security measures include HTTPS enforcement and key security headers, though there is room for enhancement with additional headers and explicit incident response contacts. The security posture is solid with no critical vulnerabilities detected, and privacy compliance is robust with clear policies and consent mechanisms. The domain registration details align well with the business claims, supporting legitimacy and trustworthiness. Overall, Zipy presents a professional, secure, and user-focused digital presence with a strong market position in the technology sector.

K

KFC Latvija

kfc.lv

0

KFC Latvia operates as the official local website for the globally recognized fast food brand Kentucky Fried Chicken, providing detailed product menus, promotions, and company information tailored for the Latvian market. The site targets local consumers seeking quick-service restaurant options and showcases a comprehensive range of food items including buckets, burgers, wraps, and beverages. The business model aligns with a franchise fast food chain under the parent company KFC International Holdings Inc., positioning itself as a large retail and hospitality entity in Latvia. Technically, the website is built on WordPress using Elementor for page building and Yoast SEO for search engine optimization. It employs modern web technologies such as jQuery and Swiper for interactive elements and integrates Google Tag Manager for analytics. The site demonstrates good mobile optimization and basic accessibility features, with a moderate performance profile. From a security perspective, the website uses HTTPS with a strong SSL configuration but lacks explicit security headers and a visible cookie consent mechanism, which are important for compliance with EU regulations. No forms for direct user data collection were found on the main page, reducing immediate data exposure risks. The absence of a security policy or incident response information suggests room for improvement in transparency and preparedness. Overall, the website presents a professional and trustworthy online presence for KFC in Latvia, with strong business credibility and good content quality. However, enhancements in privacy compliance and security best practices are recommended to further strengthen its security posture and regulatory adherence.

V

Vapiano

vapiano.lv

0

Vapiano Latvia operates as a medium-sized restaurant chain specializing in authentic Italian cuisine, including pizzas, pastas, salads, and desserts. The business is positioned as a freshness-focused dining option in Latvia, supported by a professional website that offers multilingual support and integrates with delivery partners such as Wolt. The website is built on WordPress using Elementor and Astra theme, reflecting a modern and maintainable technical infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are absent. Overall, the website demonstrates good digital maturity and compliance with GDPR, supporting a trustworthy user experience.

O

O´Learys

olearys.lv

0

O´Learys operates as a hospitality and entertainment business in Latvia, focusing on restaurant dining combined with bowling and games. The website presents multiple physical locations with detailed addresses and phone contacts, targeting consumers seeking leisure and dining experiences. The business appears to be a regional player with a medium-sized footprint in the Latvian hospitality sector. Technically, the website is built on WordPress with a modern front-end stack including Foundation CSS and JavaScript libraries such as jQuery and Owl Carousel. SEO is supported by Yoast SEO plugin, and Google Tag Manager is used for analytics and tracking. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the website is functional and professional but could improve in privacy and security transparency.

A

Apollo Klubs

apolloklubs.lv

0

Apollo Klubs is a loyalty program website targeting customers in Estonia, offering discounts and experiences across Apollo stores, cinemas, and various partner restaurants and bars. The business model focuses on enhancing customer engagement through a multi-partner loyalty platform. The website content is minimal and primarily JavaScript-driven, with limited visible textual content and no detected privacy or contact policies. The technical infrastructure includes modern JavaScript modules and Google Tag Manager for analytics, hosted on a third-party static asset provider. Security posture is moderate with HTTPS implied but lacks visible security headers and formal privacy compliance mechanisms. Overall, the website presents a basic digital presence with room for improvement in content richness, privacy compliance, and security best practices.

C

CleverTap

clevertap.com

0

CleverTap is a leading enterprise SaaS company specializing in customer engagement and retention through its all-in-one platform. The company offers a comprehensive suite of services including customer data analytics, personalization, campaign orchestration, and AI-driven insights. Positioned as a market leader, CleverTap serves over 2000 brands globally, with a strong presence in technology, e-commerce, and financial services sectors. The website reflects a mature digital infrastructure with modern technologies and extensive third-party integrations for analytics and marketing. Technically, the site is built on WordPress and leverages a variety of advanced tracking and marketing tools such as Google Tag Manager, Hotjar, Mouseflow, and Crisp Chat. It is optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Security posture is strong, with HTTPS enforced, multiple security certifications displayed, and best practices in place including reCAPTCHA and consent mechanisms. While the site demonstrates good privacy compliance with GDPR and cookie policies, it lacks explicit incident response and vulnerability disclosure information. The domain registration data is consistent with the company's business claims, showing transparency and legitimacy. Overall, CleverTap's website is professional, secure, and well-positioned to support its enterprise clientele.

A

Apollo Kino SIA

apollokino.lv

0

Apollo Kino SIA operates a leading cinema chain in Latvia, primarily serving the Riga area with multiple cinema locations. The company offers a comprehensive range of services including movie screenings, ticket sales, gift tickets and cards, event reservations, and food and beverage offerings. Their market position is strong within the hospitality sector, targeting families, groups, and corporate clients. The website demonstrates a high level of digital maturity with modern technologies such as Google Tag Manager, reCAPTCHA, and CleverTap integrated for analytics and marketing purposes. Security measures include HTTPS enforcement, anti-clickjacking scripts, and cookie consent mechanisms aligned with GDPR requirements. Overall, the website is professional, user-friendly, and compliant with privacy regulations, reflecting a trustworthy and well-established business.

N

NORGATE.LV SIA

onlinetrader.lv

0

NORGATE.LV SIA is a Latvian IT company specializing in innovative business software solutions tailored for various industries across Latvia and Europe. Their offerings include inventory management programs, CRM systems, e-commerce platforms, and custom software development, targeting businesses such as service companies, rental enterprises, retail chains, and manufacturing firms. The company positions itself as a pioneer in online business management systems in Latvia, emphasizing specialized and adaptable IT solutions. Technically, the website employs a traditional tech stack with jQuery 1.11.1, Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing. While the site is well-designed, mobile-optimized, and user-friendly, it uses an outdated jQuery version that poses security risks. Security posture is moderate with HTTPS implied but lacks modern security headers and explicit security policies. Privacy compliance is basic with a cookie consent mechanism and a cookie policy page, but no comprehensive privacy or terms of service pages are found. Overall, the website reflects a credible and professional business presence with room for security and compliance improvements.

N

Nacionālais Kino centrs

filmas.lv

0

Filmas.lv is a Latvian national film database and viewing platform operated by the Nacionālais Kino centrs. It offers the most comprehensive catalog of Latvian films, including over 2500 titles dating back to 1920. The platform targets film enthusiasts, educational institutions, and libraries, providing curated film collections and integration with schools. Technically, the site is built on WordPress with modern JavaScript libraries and uses Matomo for privacy-focused analytics. The website is well-branded, mobile-optimized, and provides clear navigation and content relevant to its audience. Security posture is good with HTTPS and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the site is legitimate, professionally maintained, and compliant with GDPR requirements.

S

SIA "Izdevniecība Rīgas Viļņi"

zurnali.lv

0

Zurnali.lv is an established Latvian e-commerce platform specializing in the subscription and sale of printed and digital magazines and newspapers. Operated by SIA "Izdevniecība Rīgas Viļņi", the website offers a broad catalog of publications targeting Latvian-speaking audiences including general readers and children. The business model centers on subscription services with options for digital access and single issue purchases, supported by a newsletter subscription and social login capabilities. The company maintains a clear market position as a trusted media subscription provider in Latvia. Technically, the website is built on the Magento 2 platform, leveraging modern JavaScript libraries such as RequireJS, jQuery, and KnockoutJS. It integrates multiple Mageplaza extensions for enhanced e-commerce functionality and marketing tools. The site is mobile-optimized with good SEO practices and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with a comprehensive use of external analytics and tracking services including Google Analytics, Facebook Pixel, and Google Tag Manager. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. It employs CAPTCHA on login forms and cookie consent mechanisms aligned with GDPR requirements. However, there is no publicly available security policy or incident response information, and no vulnerability disclosure or security.txt file is present. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, Zurnali.lv demonstrates a solid digital maturity and security posture appropriate for its business scope. Strategic recommendations include publishing a formal security policy, establishing incident response contact channels, and enhancing accessibility compliance to further strengthen trust and compliance.

S

SIA "Izdevniecība Rīgas Viļņi"

jauns.tv

0

Jauns.tv is a Latvian video news portal operated by SIA "Izdevniecība Rīgas Viļņi", providing a wide range of video content including news, entertainment, sports, business, health, and recipes. The site targets Latvian-speaking audiences interested in up-to-date video news and broadcasts. The business model is primarily media publishing with monetization through advertising networks and partnerships. Technically, the site uses modern web technologies such as Nuxt.js and Vue.js, integrates multiple analytics and advertising platforms, and implements GDPR-compliant consent mechanisms. Security posture is strong with HTTPS enforcement and no visible vulnerabilities, though explicit security policies are not published. Overall, the site presents a professional and trustworthy media platform with good content quality and user experience.

B

Bettrweb Website Development Agency

bettrweb.com

0

Bettrweb is a specialized website development agency focused on service businesses, offering bespoke landing pages, business websites, and brand identity development. The company operates primarily remotely, serving clients globally with a strong emphasis on GDPR compliance and data security. Their market position is supported by over 150 completed projects and positive client testimonials, indicating a reputable and trusted service provider in the technology sector. Technically, the website leverages a modern WordPress-based infrastructure enhanced with popular libraries and tools such as Yoast SEO, Google Tag Manager, and CookieYes for consent management, ensuring a robust digital presence with good performance and SEO optimization. Security posture is solid with HTTPS enforced, secure form handling, and cookie consent mechanisms, though there is room for improvement in implementing security headers and formal incident response policies. Overall, the website presents a professional, trustworthy, and user-friendly experience with clear contact channels and transparent privacy practices.

L

LikeIT

likeit.lv

0

LikeIT is a specialized online job board platform focused on the Information Technology sector, connecting IT professionals with employers primarily in Latvia and surrounding regions. The platform offers job listings, employer profiles, and recruitment facilitation services, targeting IT job seekers and companies looking to hire IT talent. The website is professionally designed with a clear navigation structure and mobile optimization, supporting a positive user experience. Technically, it leverages modern web technologies including React and Next.js, integrates Stripe for payments, and uses Google Analytics and Tag Manager for tracking and marketing purposes. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a trustworthy and functional platform for IT recruitment.

B

Boards.lv

boards.lv

0

Boards.lv is a well-established Latvian retailer specializing in extreme sports equipment and apparel, serving professionals and enthusiasts since 2001. The company operates both an online e-commerce platform and a physical store, offering a wide range of products including skateboards, snowboards, surfing gear, and related accessories. The website is professionally designed with good navigation, mobile optimization, and clear product categorization, targeting the Latvian market primarily but also offering English language support. Technically, the site uses modern JavaScript libraries and frameworks, ensuring a responsive and interactive user experience. Security posture is strong with HTTPS enforced, CSRF tokens, and cookie consent mechanisms, although some security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent modal supporting GDPR requirements. Overall, the site demonstrates a mature digital presence with a high level of trustworthiness and business credibility.

The website bingo.lv is a small-scale informational platform focused on educating Latvian-speaking users about bingo and superbingo games, including how to play and where to play both offline and online. It serves a niche audience interested in bingo gaming, primarily in Latvia. The site uses WordPress CMS with jQuery and standard theme assets, providing a basic but functional user experience with moderate mobile optimization and SEO. Security posture is basic with HTTPS enabled but lacks advanced security headers and policies. No privacy or cookie policies are present, and no contact or social media information is provided, which limits user trust and compliance with data protection regulations. Overall, the site is functional but could benefit from enhanced security, privacy compliance, and business credibility features.

Zagrebački centar za gospodarenje otpadom d.o.o. is a government-owned company established in 2014 by the City of Zagreb to manage waste sustainably and in compliance with EU standards. The company provides public services including municipal waste collection, recycling centers, and environmental education, positioning itself as a key local operator in waste management. The website reflects this mission with clear content targeted at citizens and local authorities. Technically, the website uses standard web technologies such as HTML5, CSS3, JavaScript, Bootstrap, and jQuery, with moderate performance and good mobile optimization. The site includes cookie consent mechanisms and privacy policies in Croatian, indicating awareness of GDPR compliance. However, no explicit terms of service or security policies are present. From a security perspective, the site uses session and CSRF tokens, but lacks visible HTTP security headers and incident response contacts. No vulnerabilities or malicious content were detected. The domain registration aligns with the business history and ownership, reinforcing legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but could improve security posture by adding explicit policies and headers. The risk level is low, with recommendations focusing on enhancing security best practices and transparency.

D

Društvo arhitekata Zadra

zda.hr

0

Društvo arhitekata Zadra is a professional non-profit association of architects based in Zadar, Croatia. The organization focuses on architectural and urban planning activities including workshops, competitions, consultations, and community engagement. Their website serves as a hub for news, projects, and events relevant to their members and the local community. The association targets architects, urban planners, students, and citizens interested in urban development and architecture. The business model is centered on professional development and advocacy rather than commercial sales. Technically, the website is built on WordPress using a modern theme and several plugins that enhance functionality such as GDPR compliance, contact forms, and mapping. The site is mobile-optimized and uses standard web technologies like Bootstrap, jQuery, and media players. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and incident response policies. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating legitimacy and consistency. Overall, the website presents a professional and trustworthy front for the association with good privacy compliance and moderate technical sophistication. Strategic improvements in security headers and incident response documentation would enhance their security posture further.

Društvo arhitekata Istre (DAI-SAI) operates as a regional architectural association in Croatia, focusing on promoting architectural culture, organizing competitions, exhibitions, and publishing related content. The website serves as an information hub for architects and interested audiences in the Istria region and broader Croatian architectural community. The business model is non-profit and community-oriented, with a focus on education, events, and architectural discourse. Technically, the website is built on an older WordPress platform with outdated jQuery and plugins, which may pose security and performance challenges. The site shows moderate performance and basic mobile optimization but lacks modern SEO and accessibility features. The absence of updated software and mixed content issues indicate technical debt and potential vulnerabilities. From a security perspective, the site lacks visible security headers, privacy and cookie policies, and incident response information. Some scripts are loaded over HTTP, increasing risk. No advanced analytics or tracking is detected, indicating minimal user tracking but also limited privacy compliance. The site does not implement GDPR compliance measures visibly. Overall, the website is functional and provides relevant content but requires significant improvements in security, privacy compliance, and technical modernization to reduce risk and enhance user trust. Strategic updates to software, implementation of security best practices, and addition of privacy policies are recommended to improve the site's posture and credibility.

Društvo Arhitekata Rijeka is a Croatian professional association dedicated to architects and architecture-related activities in the Rijeka region. The website serves as a hub for news, events, exhibitions, and organizational information, targeting architects, students, and the interested public. It operates as a non-profit entity with a focus on education and cultural promotion of architecture. Technically, the site is built on WordPress using popular themes and plugins, providing a moderate performance and good mobile responsiveness. Security-wise, the site benefits from HTTPS but lacks important security headers and formal privacy and cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security maturity. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

U

Udruženje hrvatskih arhitekata

uha.hr

0

Udruženje hrvatskih arhitekata (UHA) is a well-established Croatian professional association representing architects nationwide. Founded in 1878, it coordinates regional architectural societies, organizes prestigious awards, exhibitions, and competitions, and publishes key architectural journals. The website reflects a professional and consistent brand presence targeting architects and the broader cultural community in Croatia. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and serves as a credible digital presence for the association.

T

Tvrđava kulture Šibenik

tvrdjava-kulture.hr

0

Tvrđava kulture Šibenik is a Croatian public cultural institution managing and revitalizing historic fortresses in Šibenik, including Sv. Mihovila, Barone, and Sv. Ivana. The organization focuses on cultural heritage preservation, visitor engagement, and hosting cultural events such as concerts. It maintains a strong partnership network with local sponsors and cultural organizations, enhancing its market position as a key cultural site in the region. The website targets tourists, local visitors, and cultural enthusiasts, providing information on visiting hours, events, and membership opportunities. Technically, the website employs modern web technologies including jQuery, Slick Carousel, Google Analytics, Facebook Pixel, and cookie consent mechanisms. The site is mobile-optimized and includes accessibility features, contributing to a positive user experience. SEO and metadata are well implemented, supporting discoverability. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks explicit security headers and a dedicated security policy or vulnerability disclosure page. No critical vulnerabilities or exposed sensitive data were detected. The site integrates tracking and marketing tools responsibly with user consent. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve security posture by adding security headers and formal policies. The domain registration aligns with the business identity, supporting legitimacy and trustworthiness.

I

IT odjel d.o.o.

it-odjel.hr

0

IT odjel d.o.o. is a Croatian IT service company specializing in digital transformation, business process analysis, data analysis, and custom application development. The company positions itself as a partner for businesses seeking to optimize their IT infrastructure and processes. Their website reflects a small-sized, local technology service provider with clear contact information and basic online presence. The technical infrastructure is based on the DotNetNuke CMS platform with common JavaScript libraries and Bootstrap for responsive design. While the website is accessible and functional, it lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but missing important security headers and no explicit incident response or security policies published. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and credible but could improve in security and privacy compliance aspects.

G

Globaldizajn d.o.o.

globaldizajn.hr

0

Globaldizajn d.o.o. is a Croatian technology company specializing in web design, development of web applications, e-commerce platforms, and mobile applications. The company targets businesses and organizations seeking comprehensive digital solutions, leveraging its proprietary CMS Globaladmin and offering services such as SEO and customer support. The website reflects a mature market position with a medium-sized business profile, supported by multiple certifications and a portfolio of reputable clients. Technically, the site uses modern web technologies including Bootstrap, Google Analytics, and Zoho SalesIQ for chat support, with a CMS tailored to their services. The site is mobile optimized and SEO friendly, though accessibility features could be improved. Security posture is solid with HTTPS, CAPTCHA on forms, and cookie consent mechanisms, but lacks explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable digital presence for the company.

Z

Zagrebački holding d.o.o. - Podružnica AGM

agm.hr

0

AGM is a well-established Croatian retail and publishing company specializing in books and art supplies, operating both physical stores and an online webshop. Founded in 1967 and part of Zagrebački holding d.o.o., AGM targets Croatian-speaking customers including artists, students, and general book buyers. The website reflects a mature business with consistent branding and a good user experience. Technically, the site uses legacy jQuery and common libraries like Google Analytics and Google Maps API, with moderate performance and mobile optimization. Security posture is adequate with HTTPS and secure login forms, but could be improved by updating outdated libraries and adding security headers. Privacy and cookie policies are present and GDPR compliant, with clear contact information. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

D

Društvo Arhitekata Zagreba

d-a-z.hr

0

Društvo Arhitekata Zagreba (DAZ) is a professional association dedicated to architects in Zagreb, Croatia. The website serves as a hub for architectural news, events, competitions, member profiles, and educational programs. It targets architecture professionals, students, and enthusiasts within the region, providing a platform for community engagement and professional development. The organization appears well-established with a clear focus on promoting architectural culture and activities in Zagreb. Technically, the website employs a mix of older and modern technologies including jQuery 1.7, UIkit framework, Font Awesome icons, and integrates external services such as Google Tag Manager and Facebook SDK for analytics and social media functionalities. The site is mobile-optimized and offers a structured navigation experience, although some technical aspects like outdated libraries and missing security headers could be improved. From a security perspective, the site uses HTTPS and includes some best practices like asynchronous loading of external scripts. However, it lacks explicit security headers, vulnerability disclosure policies, and incident response information. The absence of privacy and cookie policies, as well as consent mechanisms, indicates gaps in compliance with GDPR and related privacy regulations. Overall, the website is functional, professional, and credible for its intended audience but would benefit from enhanced security measures and privacy compliance to strengthen trust and regulatory adherence.

D

Državna komisija za kontrolu postupaka javne nabave

dkom.hr

0

Državna komisija za kontrolu postupaka javne nabave is an official Croatian government body responsible for overseeing and resolving complaints related to public procurement, concessions, and public-private partnerships. The website serves as a portal for publishing official decisions, rulings, and legal frameworks, targeting participants and stakeholders in public procurement processes within Croatia. The business model is regulatory and oversight-focused, positioning the commission as a key authority in its sector.

A

AdminLTE.IO

adminlte.io

0

AdminLTE.IO is a well-established provider of Bootstrap-based admin dashboard templates, offering both free and premium versions. The website targets developers and businesses seeking responsive and customizable admin UI solutions. It holds a strong market position as one of the most popular open source admin templates with millions of downloads and an active community. The business model combines open source offerings with premium paid templates, supported by documentation and community engagement. Technically, the site is built on WordPress with Bootstrap and jQuery, enhanced by SEO and performance plugins like Yoast SEO and WP Rocket. Hosting and CDN services appear to be provided via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and some security best practices observed, though explicit security policies and contact channels for incident response are lacking. Privacy compliance is partial, with no visible cookie consent mechanism despite tracking scripts in use. Overall, the site is professional, trustworthy, and technically sound, but could improve privacy and security transparency.

E

Enterwell

enterwell.net

0

Enterwell is a small technology company specializing in software design and development services, established in 2014. The company focuses on delivering simple software solutions with excellent results, targeting businesses seeking software projects, team augmentation, webshops, and websites. Their market position is strengthened by long-term partnerships and a high client retention rate of 94%. The website reflects a professional and consistent brand image with clear service offerings and partner references. Technically, the website is built on WordPress with Yoast SEO and uses Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers and cookie consent mechanisms could be made. Performance is moderate, with modern web technologies employed. From a security perspective, the site uses HTTPS with a good SSL configuration and respects user privacy by disabling cookies in analytics and honoring Do Not Track. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Overall, Enterwell presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic improvements in security policy transparency and cookie consent would enhance compliance and user trust.

E

Elektronički oglasnik javne nabave Republike Hrvatske

eojn.hr

0

Elektronički oglasnik javne nabave Republike Hrvatske (EOJN RH) is the official Croatian government platform for managing and publishing public procurement procedures. It serves contracting authorities and economic operators by providing a centralized, transparent, and legally compliant environment for procurement activities. The platform is developed under the National Recovery and Resilience Plan, reflecting a strategic government initiative to modernize public procurement processes. The website offers comprehensive services including procurement plans, notices, decisions, contract registers, and access to public data, targeting primarily government entities and suppliers in Croatia.

D

Dosta je mržnje

dostajemrznje.org

0

DostaJeMrznje.org is a non-commercial advocacy platform designed to enable users to report hate speech and hate-motivated acts across various public and digital spaces. The website is built as a React single-page application with a focus on simplicity and user safety, including a quick escape button to redirect users instantly to a safe site. The platform targets individuals concerned about hate speech and aims to facilitate reporting and tracking of such incidents. Technically, the site uses modern web technologies such as React and Webpack, and includes Google Fonts for styling. However, it lacks advanced SEO metadata, structured data, and comprehensive accessibility features. Security-wise, the site uses HTTPS and includes a user safety feature but lacks important security headers and published policies, which limits its security posture. No contact or business information is provided, which impacts trust and compliance evaluation. Overall, the site is functional for its purpose but would benefit from enhanced security, privacy compliance, and transparency measures.

G

GOOD Inicijativa

goo.hr

0

GOOD Inicijativa is a Croatian non-profit organization focused on promoting and systematically implementing civic education and human rights education within the formal education system. The website serves as a platform for educational resources, online courses, events, and advocacy related to democratic citizenship and human rights. The organization targets educators, civil society organizations, and stakeholders in the education sector. Technically, the website is built on WordPress with modern plugins for SEO and analytics, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA integration, but lacks explicit security policies and some security headers. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy, supporting its mission effectively.

H

Hrabri telefon

hrabritelefon.hr

0

Hrabri telefon is a well-established Croatian non-profit organization founded in 1997, providing vital counseling and support services to children, teenagers, parents, and adults. The organization operates multiple specialized helplines, including telephone lines, WhatsApp chat, email support, and forums, positioning itself as a trusted resource in child protection and family support. The website reflects a professional and consistent brand image, targeting a broad audience with clear navigation and relevant content. Technically, the site is built on WordPress with standard plugins and integrates Google Tag Manager for analytics, showing moderate digital maturity. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies are absent. Privacy compliance is addressed with cookie consent and privacy policies, aligning with GDPR requirements. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the site demonstrates a solid foundation for its mission but could benefit from enhanced security policies and technical improvements.

E

ENOC

enoc.eu

0

ENOC (European Network of Ombudspersons for Children) is a non-profit network organization that unites 44 independent children's rights institutions across 34 countries in Europe. The organization focuses on advocacy, participation projects, and dissemination of resources to ensure the respect and implementation of children's rights. The website is professionally designed using WordPress with modern plugins for SEO and analytics, providing a good user experience and clear navigation. The technical infrastructure is mature, leveraging caching, lazy loading, and Google services for performance and tracking. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit cookie consent mechanisms. Overall, the website reflects a credible and trustworthy organization with a clear mission and active engagement in children's rights advocacy.

Poslovna Spajalica d.o.o. is a Croatian IT solutions provider focused on delivering innovative technology services including custom software development, cybersecurity, digital transformation, and computer maintenance. The company targets modern enterprises seeking to enhance their business operations through technology. Their market position appears to be that of a small to medium-sized local IT service provider with a professional online presence. The website demonstrates a moderate level of digital maturity, utilizing modern web technologies such as React and JavaScript, with a responsive design and clear navigation. However, some content areas like testimonials contain placeholder text, indicating incomplete content. Security posture is moderate with HTTPS assumed but lacking explicit security headers and policies. Privacy compliance is basic with a cookie consent banner but no visible privacy or terms of service pages. Overall, the website is professional and trustworthy but could improve in security and compliance transparency.

K

Kuća Ljudskih Prava

kucaljudskihprava.hr

0

Kuća Ljudskih Prava is a Croatian non-profit organization dedicated to the promotion and protection of human rights, including freedom of speech and media freedom. The website serves as a platform for news, publications, educational resources, and advocacy activities targeting civil society, legal professionals, and the general public interested in human rights issues in Croatia. The organization maintains a consistent brand presence and provides multilingual support in Croatian and English, enhancing accessibility to a broader audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, multilingual support, and user engagement. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Cookie consent mechanisms are implemented to comply with EU regulations, though explicit privacy and terms of service pages are not found. From a security perspective, the site uses HTTPS with excellent SSL configuration and employs cookie consent banners. However, it lacks advanced security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration is consistent with the organization's profile, indicating legitimacy and stable operation. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic improvements in security policies, privacy documentation, and incident response transparency would enhance compliance and user trust.

The website dislajkammrznju.hr is a parked domain landing page primarily aimed at domain resale. It lacks substantive business content, contact information, or clear branding, indicating it is not an active commercial or service website. The site relies heavily on advertising scripts from Google Adsense and third-party ad networks, serving as a monetization placeholder rather than a functional business platform. Technically, the site uses standard HTML, CSS, and JavaScript with Amazon Cloudfront CDN hosting and Google ad services integration. However, it lacks modern security headers, cookie consent mechanisms, and comprehensive privacy policies, which are critical for compliance and user trust. The security posture is basic with no advanced protections or incident response information. Overall, the site presents low business credibility and poor user experience, with minimal content and no direct contact channels.

U

Ured pravobranitelja za djecu

dijete.hr

0

The website dijete.hr is the official online presence of the Croatian Ombudsperson for Children, a governmental institution dedicated to protecting and promoting children's rights in Croatia. It offers comprehensive information, publications, reports, and news relevant to children, parents, educators, and policymakers. The site is well-structured, professionally designed, and provides content primarily in Croatian with an English version available. The institution holds a strong market position as the national authority on children's rights, supported by partnerships with European and national child protection organizations.