Security Directory

Nachbarschaftshilfe NRW is a regional initiative under the Kuratorium Deutsche Altershilfe, focused on promoting neighborhood help for people with care needs in North Rhine-Westphalia, Germany. The website serves as an information hub offering educational courses, materials, and guidance to volunteers and care recipients. It is positioned as a trusted non-profit supported by government entities and regional offices. Technically, the site is built on WordPress with modern plugins and themes, ensuring good accessibility, mobile optimization, and SEO. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Security posture is solid with HTTPS and no evident vulnerabilities, though DNSSEC is not enabled and some security headers are missing. Overall, the site is professional, trustworthy, and well-aligned with its mission.

T

Taquiri GmbH & Co. KG

taquiri.de

0

Taquiri GmbH & Co. KG is a well-established German internet agency specializing in WordPress website development, online shops, SEO, advertising, and web hosting services. With over 25 years of experience, the company targets businesses seeking professional digital presence and marketing solutions. The website reflects a mature digital infrastructure built on WordPress with modern frameworks like Bootstrap and privacy-respecting analytics via Matomo. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The company demonstrates strong business credibility through consistent branding, comprehensive contact information, and excellent customer reviews. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

KTM Journal, operated by medhochzwei Verlag GmbH, is a leading German-language specialist publication focused on healthcare technology and management. It targets healthcare professionals and decision-makers in hospitals across the DACH region, providing credible, practical information on trends, innovations, and technologies in healthcare. The publication offers print and online editions, newsletters, events, and advertising services, positioning itself as a trusted media source in the healthcare sector. Technically, the website is built on the Contao Open Source CMS platform, utilizing jQuery and Google Tag Manager with privacy-conscious configurations. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security best practices such as HTTPS enforcement and cookie consent mechanisms are implemented, though explicit security headers and incident response policies are not publicly documented. From a security perspective, the site demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring a comprehensive privacy policy and cookie consent banner with granular user controls. The WHOIS data aligns consistently with the website's business claims, reinforcing legitimacy. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in explicit security policy disclosures and terms of service availability. Strategic recommendations include enhancing security header implementation, publishing a dedicated security policy and incident response contacts, and considering a vulnerability disclosure framework to further strengthen trust and compliance.

S

SOGO

pluginsmarket.com

0

Sogo WordPress Plugins Market is a small technology business specializing in the development and sale of WordPress plugins. The website offers a range of plugins including calendar widgets, author recent posts, accessibility tools, and premium support services. The target audience primarily consists of WordPress site owners and developers seeking specialized plugin solutions. The business operates an e-commerce model leveraging the Easy Digital Downloads platform for sales and distribution. The domain age and registration details align well with the business history, supporting legitimacy and trustworthiness. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several third-party integrations such as Google Analytics, Google reCAPTCHA, and Tawk.to live chat. The site demonstrates good mobile optimization and accessibility features, including a dedicated accessibility plugin and UI controls. Performance is moderate with room for improvement in SEO and technical optimization. From a security perspective, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks explicit security headers and DNSSEC. There is no published security policy or incident response information, and no vulnerability disclosure mechanism is present. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information is limited to contact forms without direct emails or phone numbers. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact and policy disclosures to strengthen trust and security posture.

The website www.ilo.org represents the International Labour Organization, a United Nations specialized agency focused on labour standards and employment issues globally. The organization operates at an enterprise scale with a long history dating back to 1919 and serves governments, employers, workers, and researchers worldwide. However, the current website content is inaccessible due to a Cloudflare Turnstile CAPTCHA challenge, preventing direct analysis of the site's content, metadata, and policies. The technical infrastructure includes Cloudflare protection but no further technology stack details are visible. Security posture is limited to the presence of Cloudflare WAF, with no additional security headers or SSL configuration details available. WHOIS data is unavailable due to a malformed response, but the domain is consistent with a legitimate UN agency. Overall, the site is safe with no adult or explicit content, but the WAF challenge limits comprehensive evaluation.

G

Gütegemeinschaft Anwerbung und Vermittlung von Pflegekräften aus dem Ausland e.V.

fair-recruitment-nurse.com

0

The website represents a small healthcare-focused organization dedicated to promoting ethical recruitment of international nursing professionals to Germany. It operates by certifying recruitment agencies with a recognized quality seal, ensuring fair, transparent, and responsible hiring practices. The target audience is internationally educated nurses seeking employment in Germany. The website is built on a modern WordPress infrastructure using Oxygen Builder and Alpine.js, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

J

Joker

joker.hr

0

Joker.hr is the official website of Joker, a retail shopping center located in the heart of Split, Croatia. The site offers comprehensive information about the shopping center's stores, restaurants, entertainment options, and services such as parking and fitness. The business targets local shoppers and visitors seeking a diverse retail and leisure experience. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and tracking tools, including Google Tag Manager and Mailchimp integration. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the domain registration aligns with the business claims, supporting legitimacy and trustworthiness.

The website rosesdesigneroutlet.hr is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to content. This prevents extraction of business, contact, or policy information. The domain is registered in Croatia since 2015 with a reputable registrar, indicating a legitimate registration. However, the lack of accessible content limits the ability to assess the company's market position, services, or compliance posture. Technically, the site uses Cloudflare's security services, but no further technology or CMS details are available. Security posture cannot be fully evaluated due to blocked content, but the presence of Cloudflare WAF indicates some level of protection. Overall, the site scores low on AI evaluation due to inaccessibility, with recommendations to allow content access for full analysis.

A

Avenue Mall

avenuemall.hr

0

Avenue Mall is a well-established retail shopping center located in Zagreb, Croatia, offering a wide range of retail stores, food and beverage outlets, and entertainment options. The website reflects a medium-sized business with a strong local market presence and a focus on customer engagement through promotions, events, and a loyalty program. Technically, the site employs modern web technologies including jQuery UI, Slick Slider, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, user-friendly, and trustworthy, supporting the business's retail and hospitality operations effectively.

K

KING CROSS

king-cross.hr

0

KING CROSS is a retail shopping center website based in Croatia, offering a variety of products related to sports, home, family, and leisure. The website targets a general audience looking for convenient and affordable shopping options. The site is built on WordPress CMS with SEO optimizations via Yoast and uses modern UI components such as Swiper.js. The technical infrastructure appears moderate in performance and mobile optimization, with HTTPS enabled ensuring basic transport security. However, the absence of visible security headers and explicit privacy and cookie policies indicates room for improvement in security and compliance. No contact information or incident response details are publicly available, which may affect user trust and compliance with GDPR transparency requirements. Overall, the website is functional and professional but would benefit from enhanced security and privacy practices.

A

Arena Center Zagreb d.o.o.

arenacentar.hr

0

Arena Centar is a well-established large retail shopping center located in Croatia, operated by Arena Center Zagreb d.o.o. and owned by the parent company NEPI Rockcastle. The website provides comprehensive information about the shopping center's services, including retail stores, dining, entertainment, parking, and customer engagement via a mobile app and gift cards. The site targets a broad audience including local residents, families, and visitors seeking shopping and leisure experiences. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for analytics and marketing tools like Google Tag Manager, Facebook Pixel, and TikTok Pixel. Hosting and DNS are managed by reputable providers, ensuring stable performance and security. Security posture is good with HTTPS enforced and consent mechanisms for cookies, though explicit security policies and incident response details are not publicly available. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, providing a positive user experience and strong business credibility.

C

City Center One

citycenterone.hr

0

City Center One operates as a major retail shopping center brand in Croatia, with locations in Zagreb and Split. The website presents a professional and well-structured digital presence, highlighting over 450 international and domestic stores. The business model focuses on retail space leasing, advertising, and shopping center management, targeting general consumers in Croatia. The domain age and WHOIS data align well with the business claims, supporting legitimacy. Technically, the site uses WordPress with common JavaScript libraries and a consent management platform to ensure GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though additional security headers and explicit security policies could enhance trust. Privacy and cookie policies are present and comprehensive, supporting regulatory compliance. Overall, the website is a trustworthy and professional representation of a large retail business in Croatia.

The website ww16.westgate-shopping.com is a parked domain page primarily serving as a placeholder to advertise the domain westgate-shopping.com for sale via the Sedo domain parking service. The site contains minimal content focused on domain resale, with no active business operations, contact information, or company details presented. The technical infrastructure relies on basic HTML, CSS, and JavaScript with embedded Google Ads and Sedo parking scripts. There is no evidence of HTTPS or advanced security configurations, and the privacy policy is a generic Sedo parking policy in German. The domain WHOIS data is unavailable, indicating the domain may be unregistered or privacy protected, which reduces trustworthiness. Overall, the site functions solely as a domain marketplace listing with limited digital maturity and minimal security posture.

G

Gransy d.o.o.

jeftinije.hr

0

Jeftinije.hr is a Croatian price comparison website operated by Gransy d.o.o., established in 2016. The platform offers comprehensive online price comparisons, shopping guides, and product reviews targeted at Croatian consumers seeking the best deals. It holds a strong market position as a leading price comparison portal in Croatia, leveraging partnerships with regional sites across Central and Eastern Europe. Technically, the website employs modern JavaScript libraries, Cloudflare DNS, and integrates Google Tag Manager and DoubleClick for advertising and analytics. The site is mobile-optimized with good SEO practices but lacks explicit privacy and terms of service documentation in the accessible content. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and incident response information are missing. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

The website nabava.net is currently inaccessible due to a Cloudflare Turnstile security challenge page that requires human verification before access. This prevents any direct analysis of the website's content, business information, or security posture beyond the presence of the WAF. The domain is registered since 2001 with COREhub, S.R.L., indicating a long-standing registration, but no further registrant details or business information are available. The website uses Cloudflare for security and hosting, with HTTPS enabled and no DNSSEC configured. No privacy, cookie, or terms of service policies are visible, nor any contact information or forms. Overall, the site appears to be protected by Cloudflare but lacks publicly accessible content for detailed analysis.

K

Katalozi.net / Svi katalozi na jednom mjestu

katalozi.net

0

Katalozi.net is a Croatian retail catalog aggregation website established in 2012, providing users with access to various promotional catalogs and offers from multiple retailers. The site leverages WordPress CMS with Yoast SEO for content management and optimization, and monetizes through Google Adsense advertising. The technical infrastructure includes Cloudflare DNS and hosting via GoDaddy.com, LLC. The website is well-structured with good navigation and content relevance, targeting general retail consumers in Croatia and neighboring regions. Security posture is moderate with HTTPS enabled and domain registration locks, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. No direct contact or incident response information is provided, limiting transparency. Overall, the site is functional and trustworthy for its business purpose but requires improvements in privacy and security disclosures.

Gorivo.com operates as a regional ride-sharing platform primarily serving Croatia and neighboring countries. It facilitates peer-to-peer transportation by allowing users to offer and request rides, focusing on routes within Croatia and nearby European nations. The platform has been active since 2003, indicating a mature presence in its niche market. The website's business model centers on connecting drivers and passengers, providing a cost-effective and community-driven transportation alternative. Its market position is niche but stable, targeting individuals seeking carpooling options in the region. Technically, the website is built on ASP.NET WebForms with supporting libraries such as jQuery and Bootstrap, reflecting a legacy but functional technology stack. The site includes standard web fonts, UI components, and Google Adsense for monetization. Performance and mobile optimization are basic, with room for modernization. The site employs cookie consent mechanisms and basic privacy compliance features, though lacks advanced SEO and accessibility optimizations. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks advanced security headers and DNSSEC. No explicit security or incident response policies are published, which could be a gap in compliance and trust. Advertising practices involve multiple ad networks and tracking vendors, indicating moderate user tracking. The overall security posture is average, with recommendations to enhance headers, enable DNSSEC, and publish security policies. Overall, Gorivo.com presents a functional but basic digital presence with moderate trustworthiness and compliance. Strategic improvements in security, privacy transparency, and technical modernization would enhance its risk profile and user confidence.

H

Vozni red vlakova | Udaljenosti.com

hznet.hr

0

Udaljenosti.com is a Croatian travel information website specializing in train schedules and travel planning for Croatian Railways. It targets travelers and commuters in Croatia, providing distance calculations and schedule lookups. The site operates primarily on an advertising revenue model and has been active since at least 2012. Technically, it uses a mix of legacy and modern web technologies including Google Fonts, Leaflet maps, Google Maps API, and Google Analytics. The site implements a cookie consent mechanism and integrates multiple advertising and tracking services. Security posture is moderate but could be improved by updating outdated libraries and adding security headers. WHOIS data is unavailable, which raises some concerns about domain legitimacy despite the active and functional website. Overall, the site is functional and provides relevant content but should address security and legitimacy concerns for improved trust.

H

Hrvatski Telekom d.d.

akz.hr

0

The website www.akz.hr serves as the official online platform for the Zagreb Bus Station, providing extensive bus ticketing services across Croatia and neighboring countries. It offers users the ability to search for bus schedules, purchase tickets online up to 15 minutes before departure, and access real-time status updates for arrivals and departures. The platform supports mobile app integration, enhancing accessibility for travelers. The business is positioned as a key transportation service provider in the region, backed by Hrvatski Telekom d.d., a reputable Croatian telecommunications company. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Tag Manager and Google Analytics for marketing and analytics purposes. Hosting is managed by Hrvatski Telekom with Cloudflare DNS services, ensuring reliable domain resolution. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers such as Content Security Policy and HSTS, which are recommended for enhanced protection. Privacy compliance is limited due to the absence of a visible privacy policy and terms of service, representing a compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. Strategic improvements in privacy policy publication, security header implementation, and comprehensive compliance documentation would elevate its security posture and user trust.

C

Coolinarika

coolinarika.com

0

Coolinarika is a well-established Croatian culinary website offering a rich platform for recipes, cooking inspiration, and food-related content. It targets a general audience interested in cooking and culinary arts, positioning itself as a leading media site in this niche within Croatia. The website leverages modern web technologies including React and Next.js, hosted on Azure CDN, ensuring fast performance and excellent mobile optimization. The presence of structured data and social media integration further enhances its digital maturity. Security-wise, the site enforces HTTPS, employs security headers, and manages user consent for cookies, reflecting a good security posture. However, the absence of WHOIS registrant data and direct company contact emails slightly reduces transparency. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its users.

Z

Zagrebačka banka

zaba.hr

0

Zagrebačka banka is a leading Croatian financial institution offering a broad range of retail and corporate banking services. The website reflects a mature digital presence with comprehensive information on loans, savings, insurance, and digital banking platforms such as mobile and internet banking. The bank targets a wide audience including individuals, small and large businesses, and private banking clients. The site is professionally designed with consistent branding and clear navigation, supporting a strong market position within Croatia and under the UniCredit Group umbrella. Technically, the website employs modern JavaScript libraries and analytics tools such as Adobe Analytics and Tealium, hosted on Akamai infrastructure for performance and reliability. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response disclosures are absent. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. No critical vulnerabilities or suspicious activities were detected. The domain's WHOIS data confirms legitimacy with a long registration history and consistent registrant information. Strategic recommendations include publishing a dedicated security policy, incident response plan, and vulnerability disclosure guidelines to enhance transparency and trust. Regular security audits and header enhancements would further strengthen the security posture.

H

Hrvatska narodna banka

hnb.hr

0

Hrvatska narodna banka (HNB) is the central bank of the Republic of Croatia, responsible for monetary policy, financial stability, banking supervision, and currency issuance. The website serves as an official portal providing comprehensive information about the bank's functions, regulatory framework, statistics, publications, and consumer protection. It targets a broad audience including the general public, financial institutions, and government entities. The site is well-structured and professionally maintained, reflecting the bank's authoritative position in the Croatian financial sector. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript frameworks such as React and Alloy UI. It employs Google Tag Manager for analytics and tracking, and the site is optimized for both desktop and mobile devices with a moderate performance profile. Accessibility and SEO practices are basic but adequate for the target audience. From a security perspective, the site enforces HTTPS, includes standard security headers, and avoids exposing sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly documented, representing areas for improvement. Privacy and cookie policies are present and indicate GDPR compliance, with consent mechanisms implemented. Overall, the website demonstrates a strong business credibility and security posture appropriate for a national central bank. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility features, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

B

BLITZ - CINESTAR d.o.o.

blitz-cinestar.hr

0

CineStar Cinemas, operated by BLITZ - CINESTAR d.o.o., is the largest multiplex cinema chain in Croatia, established in 2003. The company operates 16 locations across 11 cities, offering a wide range of cinema experiences including premium formats such as IMAX, 4DX, ScreenX, and Gold Class. The website provides comprehensive information about movie screenings, ticket sales, loyalty programs, and concessions, targeting a general audience including families and cinema enthusiasts. The business model focuses on retail cinema operations with an integrated online ticketing platform and ancillary services such as snacks and event hosting. Technically, the website is built using modern web technologies including Bootstrap, FontAwesome, Swiper.js, and Google Tag Manager for analytics. It is hosted behind Cloudflare CDN and DNS services, ensuring good performance and security. The site is mobile-optimized and includes accessibility features, although some improvements could be made. SEO practices are well implemented with structured data and meta tags. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present. No vulnerability disclosures or incident response contacts are published, which could be areas for improvement. No critical vulnerabilities or suspicious activities were detected. Overall, CineStar Cinemas presents a professional, trustworthy, and user-friendly online presence with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party scripts to maintain a robust security posture.

C

Cineplexx

cineplexx.hr

0

Cineplexx is a well-established cinema chain operating primarily in Austria and surrounding regions, offering movie screenings and related entertainment services. The website reflects a professional digital presence with a focus on user experience and compliance with privacy regulations such as GDPR. The company leverages modern web technologies including React and Google Tag Manager to deliver content and track user interactions effectively. The presence of Cookiebot ensures transparent cookie consent management, enhancing user trust and regulatory compliance. Security posture is solid with HTTPS enforced and standard security headers present, although there is room for improvement in implementing a full Content-Security-Policy and publishing explicit security policies. Overall, the website is trustworthy, well-maintained, and suitable for its target audience of general moviegoers.

H

HOSTING CENTAR d.o.o.

moj-film.hr

0

Moj Film is a Croatian film portal established in 2011, providing comprehensive film-related content including news, reviews, trailers, cinema programs, and community forums. It targets a general audience interested in Croatian and international cinema, positioning itself as a regional media portal with consistent branding and regular content updates. The business model revolves around media content delivery and community engagement within the film industry niche. Technically, the website uses a mix of older and moderately modern web technologies such as jQuery 1.7.1, RoyalSlider, Owl Carousel, and Flowplayer 5, hosted by HOSTING CENTAR d.o.o. The site shows moderate performance and basic mobile optimization with good SEO practices.

T

tvprofil.net

tvprofil.net

0

The website tvprofil.com is currently inaccessible due to IP blocking triggered by high request volume from the region, as indicated by the block message in the HTML content. This prevents access to any meaningful content or business information. The domain is registered since 2007 with OnlineNIC, Inc., showing a long-standing registration but lacks DNSSEC and public registrant details. The site uses Ezoic for ad serving and Google Analytics for tracking, but no privacy or cookie policies are found, indicating poor compliance with privacy regulations. The security posture cannot be fully assessed due to lack of accessible content and missing security headers information. Overall, the site appears to have minimal transparency and poor user experience due to blocking and lack of visible content.

Cheap Motels Near Me is a niche affiliate website focused on providing users with listings of budget motels near their current location. The site leverages a partnership with Booking.com to offer a best price guarantee, positioning itself as a price comparison and booking facilitator in the hospitality sector. The target audience primarily consists of travelers seeking affordable lodging options. The business model is based on affiliate commissions through Booking.com, with no direct booking or payment processing handled on the site itself. Technically, the website employs modern web technologies including Vue.js for frontend interactivity, Google Analytics and Tag Manager for tracking, and Google Maps API for location services. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile optimized and presents a clean, user-friendly interface with good navigation and relevant content. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, no explicit security headers such as Content-Security-Policy or HSTS were detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance and user trust. No contact information or incident response details are provided, limiting transparency. The WHOIS data shows a legitimate domain registration with a reputable registrar and no privacy protection, consistent with the business type. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

Motels Near Me is a niche hospitality website operated by Heylab AB, a Swedish company founded in 2017. The site provides a location-based motel search service, helping travelers find motels with available rooms near their current location, emphasizing best price guarantees. The business model centers on facilitating motel discovery and potentially bookings, targeting travelers seeking convenient and affordable lodging options. The website is professionally designed with a clear user interface and good mobile optimization, leveraging modern web technologies including Vue.js, Google Analytics, and Google Maps API. Hosting and DNS services are provided via Cloudflare, ensuring reliable performance and security at the infrastructure level. Security posture is moderate with HTTPS enforced and domain transfer protections in place; however, the absence of DNSSEC and security headers like CSP and HSTS represent areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms, which could expose the business to regulatory risks. Contact information is minimal, limited to personal links in the about section, with no direct company emails or phone numbers disclosed. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy practices to improve compliance and user trust.

S

Swedbank AS

swedbank.ee

0

Swedbank AS is a leading Estonian bank providing a wide range of financial services including daily banking, financing, insurance, investment, and savings solutions. The website serves both private and business clients with a strong focus on digital banking services such as internet and mobile banking. The company holds a strong market position in Estonia and is part of the larger Swedbank Group, with several subsidiaries specializing in leasing, investment funds, and insurance. The website content is professionally designed, localized primarily in Estonian with English translations, and demonstrates a high level of GDPR compliance and user privacy awareness. Technically, the website employs modern web technologies including Web Components, JavaScript frameworks, and optimized asset loading strategies. It supports multiple authentication methods including Smart-ID, Mobile-ID, and biometrics, indicating a mature digital infrastructure. Performance and mobile optimization are excellent, with good accessibility and SEO practices observed. From a security perspective, the site uses HTTPS with strong SSL configuration and implements best practices such as ARIA labels for accessibility and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not prominently published, suggesting room for improvement in transparency. Overall, the website is trustworthy, professional, and secure, reflecting the reputation of a major financial institution. Recommendations include publishing detailed security policies, adding a security.txt file for vulnerability disclosures, and enhancing visible security headers to further strengthen the security posture.

J

Julianus Inkasso

julianus.ee

0

Julianus Inkasso is a well-established Estonian debt collection company founded in 1995, operating as a leading provider in Estonia and the Baltic region. The company offers comprehensive credit management services including debt collection, legal proceedings, and purchase of debt portfolios. It is part of the Aktiva Finance Group, which enhances its market position and operational scale. The website reflects a professional and consistent brand image, targeting both debtors and creditors with multilingual support and self-service portals. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and credible business presence.

Credit24.ee is a well-established Estonian online consumer finance provider offering a variety of loan products including credit accounts, car loans, and personal loans. The company operates under IPF Digital AS and has a strong regional presence with subsidiaries and partner brands across the Baltics and Australia. The website is professionally designed using modern web technologies such as React and Next.js, hosted on AWS, and incorporates GDPR-compliant cookie consent mechanisms. Analytics and marketing tools like Microsoft Clarity and Google Tag Manager are used for user behavior tracking and advertising. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

T

Telia Eesti AS

telia.ee

0

Telia Eesti AS operates a comprehensive telecommunications platform in Estonia, offering mobile, internet, TV, and IT solutions to both private individuals and businesses. The company holds a strong market position as a leading telecom provider with a broad portfolio of services and a well-established brand. The website reflects a mature digital presence with multi-language support and a user-friendly interface. Technically, the site leverages modern frameworks such as React and integrates analytics and consent management tools, ensuring a balance between user experience and compliance. Security posture is robust with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly disclosed. Overall, the site demonstrates high professionalism and trustworthiness, supporting Telia's reputation in the telecommunications sector.

T

Tele2

tele2.ee

0

Tele2.ee is the official website of Tele2, a well-established telecommunications provider in Estonia founded in 2010. The company offers a wide range of services including mobile packages, mobile internet, TV services, and additional offerings such as mobile payments and smart home devices. The website targets both private and business customers in Estonia, providing a professional and user-friendly digital experience. The site is built on modern web technologies including Next.js and React, ensuring good performance, mobile optimization, and accessibility. Tele2 demonstrates strong privacy compliance with a comprehensive cookie consent mechanism and detailed privacy policy in Estonian, including a clear Data Protection Officer contact. Security posture is robust with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. Overall, Tele2.ee presents a professional, secure, and compliant online presence suitable for a major telecom operator.

C

Coop Eesti

coop.ee

0

Coop Eesti is the oldest and largest retail cooperative group in Estonia, operating approximately 330 stores with around 6000 employees and serving about 70,000 client-owners. The website reflects a mature retail business with a cooperative model focused on Estonian consumers. Technically, the site is built on Drupal 10, integrating modern analytics and advertising tools such as Google Analytics, Hotjar, and Adform, with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, secure, and compliant, supporting Coop Eesti's market position as a trusted retail cooperative.

A

AS LHV Pank

lhv.ee

0

AS LHV Pank is a leading Estonian financial institution offering a broad range of services including banking, loans, investments, insurance, and pension management. The company targets both individual and business customers within Estonia, positioning itself as a trusted and comprehensive financial services provider. The website reflects this with professional design, clear navigation, and extensive service information. Technically, the site employs modern frameworks such as Bootstrap and uses analytics tools like Google Analytics and PostHog, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure login mechanisms, although there is room for improvement in publishing dedicated security policies and incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

Inbank is a medium-sized Estonian financial institution specializing in retail banking services such as loans and deposits. The website reflects a professional digital banking platform primarily targeting customers in Estonia and the Baltic region. The technical infrastructure leverages modern web technologies including Nuxt.js and integrates third-party authentication services like Dokobit, hosted on Amazon AWS infrastructure. While the site demonstrates good design and mobile optimization, it lacks visible privacy and cookie policies, as well as explicit contact information, which impacts privacy compliance and user trust. Security posture is moderate with HTTPS enforced and use of secure authentication, but missing security headers and incident response details suggest room for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency. Strategic enhancements in privacy transparency, security headers, and incident response readiness are recommended to strengthen compliance and trust.

K

Krediidiregister

krediidiregister.ee

0

Krediidiregister is an established Estonian company providing comprehensive data solutions for credit and business risk management. With over 11 years in the market, it operates the largest payment default and business information database in Estonia, offering services such as credit scoring, account statement analysis, and business monitoring. The company targets businesses and financial institutions seeking to make informed credit decisions and manage financial risks effectively. Technically, the website is built on WordPress with WooCommerce and optimized for performance using WP Rocket. It integrates modern analytics and marketing tools including Google Analytics, Facebook Pixel, and GetResponse Analytics, while implementing GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and partial security headers, though there is room for improvement in explicit security policies and incident response disclosures. Overall, the website presents a professional, trustworthy, and well-structured digital presence aligned with its business objectives.

Z

Zone Media OÜ

taust.ee

0

Taust.ee is a well-established Estonian credit information platform operated by Zone Media OÜ, founded in 2014. It provides comprehensive credit and background data services including payment defaults, tax debts, court rulings, and financial reports to banks, credit providers, and businesses. The website demonstrates a strong market position with partnerships from major Estonian banks and telecom companies. Technically, the site is built on WordPress with modern front-end technologies and integrates multiple analytics and tracking tools. Security posture is good with HTTPS and no exposed sensitive data, though security headers could be enhanced. Privacy compliance is robust with clear cookie consent and privacy policies. Overall, the site is professional, trustworthy, and serves a critical role in the Estonian financial ecosystem.

X

Xfiner

xfiner.com

0

Xfiner is a specialized creative platform focused on delivering premium marketing design and Webflow development services globally. The company positions itself as an elite, invite-only network of vetted professionals providing managed delivery with a double guarantee, targeting marketing teams and brands seeking quality and speed without risk. Technically, the website is built on Webflow with integrations including Figma, n8n automations, and modern analytics tools like Microsoft Clarity and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS and no exposed sensitive data, but lacks some security headers and formal privacy or cookie policies, which are areas for improvement. The domain WHOIS data is missing, which raises concerns about transparency and trustworthiness, though the website content and certifications support business credibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer domain registration information.

J

Jadrolinija

jadrolinija.hr

0

Jadrolinija is Croatia's largest passenger shipping company, providing ferry and catamaran transport services connecting numerous local and international destinations. The company operates a comprehensive online platform offering schedule information, ticket purchasing, and prepaid travel card services, targeting both local residents and tourists. The website reflects a mature digital presence with consistent branding and a focus on user convenience. Technically, the website employs modern web technologies including jQuery, Plyr video player, and Swiper sliders, alongside Google Fonts and accessibility tools. It is hosted under a Croatian academic network registrar, indicating a stable and regionally appropriate hosting environment. The site is mobile-optimized and accessible, with good SEO practices and performance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit published security policies, incident response plans, and vulnerability disclosure information. The use of third-party tracking pixels from Google, Meta, and TikTok indicates moderate user tracking, balanced by privacy controls. Overall, Jadrolinija's website is professional, trustworthy, and well-aligned with its business objectives. Strategic improvements in security transparency and incident readiness would enhance its security posture and user trust further.

T

Tschudi Energy

tschudienergy.com

0

Tschudi Energy is a specialized consultancy and agency service provider focused on the procurement of essential energy commodities such as LNG, oil, and coal, as well as shipping coordination. The company operates as part of the larger Tschudi Group, leveraging its network and expertise to deliver tailored solutions to clients primarily in the energy and shipping sectors. The website presents a professional image with clear contact information and a consistent brand identity. Technically, the website is built on the Webflow platform using modern web technologies including jQuery and CSS3. It is well-optimized for mobile devices and performs well in terms of loading speed and accessibility. However, there is a lack of advanced SEO optimization and no visible analytics or tracking tools, indicating a minimal data collection approach. From a security perspective, the website uses HTTPS (implied by external CDN links), but no security headers were detected in the provided data. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies and the lack of incident response information represent compliance gaps. The WHOIS data is notably missing or inaccessible, which raises concerns about domain registration legitimacy and trustworthiness. Overall, while the business and website appear professional and credible, the missing WHOIS registration data and lack of privacy compliance documentation reduce the overall trust score. Strategic improvements in security headers, privacy policies, and domain registration transparency are recommended to enhance the security posture and compliance standing.

T

Tschudi Logistics Holding AS

tschudilogistics.com

0

Tschudi Logistics Holding AS is a well-established Norwegian logistics company with over 140 years of experience, specializing in multimodal transport solutions including project logistics, ocean, road, rail, air, and short sea shipping. The company emphasizes Nordic quality combined with global reach, serving businesses requiring tailored logistics services. Their website reflects a professional and consistent brand image with clear service offerings and a portfolio showcasing past projects. Technically, the site is built on Webflow with modern analytics and marketing tools, optimized for performance and mobile use. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and incident response contacts are lacking. Privacy compliance is basic with policies present but no active cookie consent mechanism. The absence of WHOIS registration data is a notable concern, potentially impacting trustworthiness. Overall, the website is professional and credible but would benefit from improved transparency and enhanced security disclosures.

Mailman3.com is a specialized SaaS provider offering hosted Mailman 3 mailing list management services. The company provides multiple subscription plans including shared, dedicated, reseller, and enterprise options, targeting organizations requiring robust email list management and delivery. The business operates with a clear focus on Mailman 3 technology but is unaffiliated with the official Mailman 3 developers. The website presents a professional image with clear service descriptions and pricing, supported by modern web technologies including Google Analytics and Stripe for payments. However, it lacks formal privacy and terms of service documentation, which may impact user trust and compliance. Security posture is moderate with HTTPS enabled and no visible sensitive data exposure, but improvements such as DNSSEC and security headers are recommended. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

K

Klaipėdos Universiteto Ligoninė

kul.lt

0

Klaipėdos Universiteto Ligoninė is the largest healthcare institution in the Western Lithuania region, providing a wide range of medical services including ambulatory care, inpatient treatment, and paid medical services. The website reflects a professional healthcare provider with a strong focus on patient needs, offering detailed information about clinics, centers, and patient services. The technical infrastructure includes modern web technologies such as Google Tag Manager, Google Translate, and Swiper.js, supporting a responsive and accessible user experience. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security and incident response policies are not prominently found on the site. Overall, the website is trustworthy and well-maintained, though the absence of WHOIS data for the domain is a notable gap that should be addressed to confirm domain legitimacy.

The website at oraclum.eu is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The page contains no business information, contact details, or policies, making it impossible to assess the company's offerings or market position. The WHOIS data is minimal, only indicating the registrar as Namecheap, Inc, with no registrant details to verify legitimacy. Technically, the site lacks security headers and there is no evidence of HTTPS configuration, which raises concerns about security posture. Overall, the site appears inactive or restricted, resulting in a very low trust and credibility score.

The domain print-server.net is registered since 2004 with InterNetX GmbH and currently shows no accessible website content, only a German error message indicating the server was not found. There is no metadata, structured data, or business information available on the site. The lack of content and contact information suggests the website is either offline or not maintained. Technically, no modern frameworks, CMS, or hosting details beyond the registrar are detectable. Security posture cannot be properly assessed due to absence of HTTPS or security headers data. The domain registration appears legitimate but the lack of active content significantly reduces trust and business credibility.

The website sdpm.cz represents the official platform for the 'Slezské dny preventivní medicíny' conference, an established international event focused on public health and preventive medicine organized by the regional hygiene station and health institute in Ostrava, Czech Republic. The site provides detailed conference programs, speaker information, and multimedia content such as YouTube recordings and photo albums, targeting healthcare professionals and scientific communities. The domain has been active since 2003, indicating a stable presence in the healthcare event sector. Technically, the website uses standard HTML, CSS, and JavaScript with a responsive design suitable for mobile devices. It lacks advanced frameworks or CMS indications and does not employ tracking or advertising technologies, reflecting a straightforward informational site. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site enforces HTTPS and includes basic cache control headers but lacks comprehensive security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No forms or user data collection mechanisms are present, reducing exposure to common web vulnerabilities. WHOIS data aligns well with the website content, supporting legitimacy. Overall, the site is low risk but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

C

Find postal codes in Canada

canadapostalcode.net

0

The website canadapostalcode.net is a niche utility platform providing Canadian postal code lookup services. It allows users to search postal codes by address and also displays the user's current postal code based on GPS location if supported by the browser. The site is small-scale, founded in 2013, and primarily serves a general Canadian audience with free access supported by advertising. The business model is informational with no direct e-commerce or subscription services. Technically, the site uses a basic frontend stack including jQuery 1.8.3, Mapbox GL, Leaflet CSS, and Google Fonts. It integrates third-party services such as Google Analytics, Facebook SDK, Twitter widgets, and Google Adsense for advertising and tracking. Hosting and DNS are managed via Cloudflare, providing HTTPS and DNS-level protections, though DNSSEC is not enabled. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks important security headers like CSP and HSTS. No privacy, cookie, or terms of service policies are published, indicating low privacy compliance. No contact or incident response information is available, which limits transparency and trust. Advertising scripts introduce moderate user tracking, but no critical vulnerabilities or malware indicators were found. Overall, the site is functional and safe for general users but would benefit from improved privacy compliance, enhanced security headers, and clearer business and contact information to increase trust and professionalism.