Security Directory

H

HOSTING CENTAR d.o.o.

moj-film.hr

0

Moj Film is a Croatian film portal established in 2011, providing comprehensive film-related content including news, reviews, trailers, cinema programs, and community forums. It targets a general audience interested in Croatian and international cinema, positioning itself as a regional media portal with consistent branding and regular content updates. The business model revolves around media content delivery and community engagement within the film industry niche. Technically, the website uses a mix of older and moderately modern web technologies such as jQuery 1.7.1, RoyalSlider, Owl Carousel, and Flowplayer 5, hosted by HOSTING CENTAR d.o.o. The site shows moderate performance and basic mobile optimization with good SEO practices.

T

tvprofil.net

tvprofil.net

0

The website tvprofil.com is currently inaccessible due to IP blocking triggered by high request volume from the region, as indicated by the block message in the HTML content. This prevents access to any meaningful content or business information. The domain is registered since 2007 with OnlineNIC, Inc., showing a long-standing registration but lacks DNSSEC and public registrant details. The site uses Ezoic for ad serving and Google Analytics for tracking, but no privacy or cookie policies are found, indicating poor compliance with privacy regulations. The security posture cannot be fully assessed due to lack of accessible content and missing security headers information. Overall, the site appears to have minimal transparency and poor user experience due to blocking and lack of visible content.

Cheap Motels Near Me is a niche affiliate website focused on providing users with listings of budget motels near their current location. The site leverages a partnership with Booking.com to offer a best price guarantee, positioning itself as a price comparison and booking facilitator in the hospitality sector. The target audience primarily consists of travelers seeking affordable lodging options. The business model is based on affiliate commissions through Booking.com, with no direct booking or payment processing handled on the site itself. Technically, the website employs modern web technologies including Vue.js for frontend interactivity, Google Analytics and Tag Manager for tracking, and Google Maps API for location services. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile optimized and presents a clean, user-friendly interface with good navigation and relevant content. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, no explicit security headers such as Content-Security-Policy or HSTS were detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance and user trust. No contact information or incident response details are provided, limiting transparency. The WHOIS data shows a legitimate domain registration with a reputable registrar and no privacy protection, consistent with the business type. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

Motels Near Me is a niche hospitality website operated by Heylab AB, a Swedish company founded in 2017. The site provides a location-based motel search service, helping travelers find motels with available rooms near their current location, emphasizing best price guarantees. The business model centers on facilitating motel discovery and potentially bookings, targeting travelers seeking convenient and affordable lodging options. The website is professionally designed with a clear user interface and good mobile optimization, leveraging modern web technologies including Vue.js, Google Analytics, and Google Maps API. Hosting and DNS services are provided via Cloudflare, ensuring reliable performance and security at the infrastructure level. Security posture is moderate with HTTPS enforced and domain transfer protections in place; however, the absence of DNSSEC and security headers like CSP and HSTS represent areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms, which could expose the business to regulatory risks. Contact information is minimal, limited to personal links in the about section, with no direct company emails or phone numbers disclosed. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy practices to improve compliance and user trust.

S

Swedbank AS

swedbank.ee

0

Swedbank AS is a leading Estonian bank providing a wide range of financial services including daily banking, financing, insurance, investment, and savings solutions. The website serves both private and business clients with a strong focus on digital banking services such as internet and mobile banking. The company holds a strong market position in Estonia and is part of the larger Swedbank Group, with several subsidiaries specializing in leasing, investment funds, and insurance. The website content is professionally designed, localized primarily in Estonian with English translations, and demonstrates a high level of GDPR compliance and user privacy awareness. Technically, the website employs modern web technologies including Web Components, JavaScript frameworks, and optimized asset loading strategies. It supports multiple authentication methods including Smart-ID, Mobile-ID, and biometrics, indicating a mature digital infrastructure. Performance and mobile optimization are excellent, with good accessibility and SEO practices observed. From a security perspective, the site uses HTTPS with strong SSL configuration and implements best practices such as ARIA labels for accessibility and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not prominently published, suggesting room for improvement in transparency. Overall, the website is trustworthy, professional, and secure, reflecting the reputation of a major financial institution. Recommendations include publishing detailed security policies, adding a security.txt file for vulnerability disclosures, and enhancing visible security headers to further strengthen the security posture.

J

Julianus Inkasso

julianus.ee

0

Julianus Inkasso is a well-established Estonian debt collection company founded in 1995, operating as a leading provider in Estonia and the Baltic region. The company offers comprehensive credit management services including debt collection, legal proceedings, and purchase of debt portfolios. It is part of the Aktiva Finance Group, which enhances its market position and operational scale. The website reflects a professional and consistent brand image, targeting both debtors and creditors with multilingual support and self-service portals. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and credible business presence.

Credit24.ee is a well-established Estonian online consumer finance provider offering a variety of loan products including credit accounts, car loans, and personal loans. The company operates under IPF Digital AS and has a strong regional presence with subsidiaries and partner brands across the Baltics and Australia. The website is professionally designed using modern web technologies such as React and Next.js, hosted on AWS, and incorporates GDPR-compliant cookie consent mechanisms. Analytics and marketing tools like Microsoft Clarity and Google Tag Manager are used for user behavior tracking and advertising. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

T

Telia Eesti AS

telia.ee

0

Telia Eesti AS operates a comprehensive telecommunications platform in Estonia, offering mobile, internet, TV, and IT solutions to both private individuals and businesses. The company holds a strong market position as a leading telecom provider with a broad portfolio of services and a well-established brand. The website reflects a mature digital presence with multi-language support and a user-friendly interface. Technically, the site leverages modern frameworks such as React and integrates analytics and consent management tools, ensuring a balance between user experience and compliance. Security posture is robust with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly disclosed. Overall, the site demonstrates high professionalism and trustworthiness, supporting Telia's reputation in the telecommunications sector.

T

Tele2

tele2.ee

0

Tele2.ee is the official website of Tele2, a well-established telecommunications provider in Estonia founded in 2010. The company offers a wide range of services including mobile packages, mobile internet, TV services, and additional offerings such as mobile payments and smart home devices. The website targets both private and business customers in Estonia, providing a professional and user-friendly digital experience. The site is built on modern web technologies including Next.js and React, ensuring good performance, mobile optimization, and accessibility. Tele2 demonstrates strong privacy compliance with a comprehensive cookie consent mechanism and detailed privacy policy in Estonian, including a clear Data Protection Officer contact. Security posture is robust with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. Overall, Tele2.ee presents a professional, secure, and compliant online presence suitable for a major telecom operator.

C

Coop Eesti

coop.ee

0

Coop Eesti is the oldest and largest retail cooperative group in Estonia, operating approximately 330 stores with around 6000 employees and serving about 70,000 client-owners. The website reflects a mature retail business with a cooperative model focused on Estonian consumers. Technically, the site is built on Drupal 10, integrating modern analytics and advertising tools such as Google Analytics, Hotjar, and Adform, with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, secure, and compliant, supporting Coop Eesti's market position as a trusted retail cooperative.

A

AS LHV Pank

lhv.ee

0

AS LHV Pank is a leading Estonian financial institution offering a broad range of services including banking, loans, investments, insurance, and pension management. The company targets both individual and business customers within Estonia, positioning itself as a trusted and comprehensive financial services provider. The website reflects this with professional design, clear navigation, and extensive service information. Technically, the site employs modern frameworks such as Bootstrap and uses analytics tools like Google Analytics and PostHog, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure login mechanisms, although there is room for improvement in publishing dedicated security policies and incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

Inbank is a medium-sized Estonian financial institution specializing in retail banking services such as loans and deposits. The website reflects a professional digital banking platform primarily targeting customers in Estonia and the Baltic region. The technical infrastructure leverages modern web technologies including Nuxt.js and integrates third-party authentication services like Dokobit, hosted on Amazon AWS infrastructure. While the site demonstrates good design and mobile optimization, it lacks visible privacy and cookie policies, as well as explicit contact information, which impacts privacy compliance and user trust. Security posture is moderate with HTTPS enforced and use of secure authentication, but missing security headers and incident response details suggest room for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency. Strategic enhancements in privacy transparency, security headers, and incident response readiness are recommended to strengthen compliance and trust.

K

Krediidiregister

krediidiregister.ee

0

Krediidiregister is an established Estonian company providing comprehensive data solutions for credit and business risk management. With over 11 years in the market, it operates the largest payment default and business information database in Estonia, offering services such as credit scoring, account statement analysis, and business monitoring. The company targets businesses and financial institutions seeking to make informed credit decisions and manage financial risks effectively. Technically, the website is built on WordPress with WooCommerce and optimized for performance using WP Rocket. It integrates modern analytics and marketing tools including Google Analytics, Facebook Pixel, and GetResponse Analytics, while implementing GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and partial security headers, though there is room for improvement in explicit security policies and incident response disclosures. Overall, the website presents a professional, trustworthy, and well-structured digital presence aligned with its business objectives.

Z

Zone Media OÜ

taust.ee

0

Taust.ee is a well-established Estonian credit information platform operated by Zone Media OÜ, founded in 2014. It provides comprehensive credit and background data services including payment defaults, tax debts, court rulings, and financial reports to banks, credit providers, and businesses. The website demonstrates a strong market position with partnerships from major Estonian banks and telecom companies. Technically, the site is built on WordPress with modern front-end technologies and integrates multiple analytics and tracking tools. Security posture is good with HTTPS and no exposed sensitive data, though security headers could be enhanced. Privacy compliance is robust with clear cookie consent and privacy policies. Overall, the site is professional, trustworthy, and serves a critical role in the Estonian financial ecosystem.

X

Xfiner

xfiner.com

0

Xfiner is a specialized creative platform focused on delivering premium marketing design and Webflow development services globally. The company positions itself as an elite, invite-only network of vetted professionals providing managed delivery with a double guarantee, targeting marketing teams and brands seeking quality and speed without risk. Technically, the website is built on Webflow with integrations including Figma, n8n automations, and modern analytics tools like Microsoft Clarity and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS and no exposed sensitive data, but lacks some security headers and formal privacy or cookie policies, which are areas for improvement. The domain WHOIS data is missing, which raises concerns about transparency and trustworthiness, though the website content and certifications support business credibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer domain registration information.

J

Jadrolinija

jadrolinija.hr

0

Jadrolinija is Croatia's largest passenger shipping company, providing ferry and catamaran transport services connecting numerous local and international destinations. The company operates a comprehensive online platform offering schedule information, ticket purchasing, and prepaid travel card services, targeting both local residents and tourists. The website reflects a mature digital presence with consistent branding and a focus on user convenience. Technically, the website employs modern web technologies including jQuery, Plyr video player, and Swiper sliders, alongside Google Fonts and accessibility tools. It is hosted under a Croatian academic network registrar, indicating a stable and regionally appropriate hosting environment. The site is mobile-optimized and accessible, with good SEO practices and performance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit published security policies, incident response plans, and vulnerability disclosure information. The use of third-party tracking pixels from Google, Meta, and TikTok indicates moderate user tracking, balanced by privacy controls. Overall, Jadrolinija's website is professional, trustworthy, and well-aligned with its business objectives. Strategic improvements in security transparency and incident readiness would enhance its security posture and user trust further.

T

Tschudi Energy

tschudienergy.com

0

Tschudi Energy is a specialized consultancy and agency service provider focused on the procurement of essential energy commodities such as LNG, oil, and coal, as well as shipping coordination. The company operates as part of the larger Tschudi Group, leveraging its network and expertise to deliver tailored solutions to clients primarily in the energy and shipping sectors. The website presents a professional image with clear contact information and a consistent brand identity. Technically, the website is built on the Webflow platform using modern web technologies including jQuery and CSS3. It is well-optimized for mobile devices and performs well in terms of loading speed and accessibility. However, there is a lack of advanced SEO optimization and no visible analytics or tracking tools, indicating a minimal data collection approach. From a security perspective, the website uses HTTPS (implied by external CDN links), but no security headers were detected in the provided data. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies and the lack of incident response information represent compliance gaps. The WHOIS data is notably missing or inaccessible, which raises concerns about domain registration legitimacy and trustworthiness. Overall, while the business and website appear professional and credible, the missing WHOIS registration data and lack of privacy compliance documentation reduce the overall trust score. Strategic improvements in security headers, privacy policies, and domain registration transparency are recommended to enhance the security posture and compliance standing.

T

Tschudi Logistics Holding AS

tschudilogistics.com

0

Tschudi Logistics Holding AS is a well-established Norwegian logistics company with over 140 years of experience, specializing in multimodal transport solutions including project logistics, ocean, road, rail, air, and short sea shipping. The company emphasizes Nordic quality combined with global reach, serving businesses requiring tailored logistics services. Their website reflects a professional and consistent brand image with clear service offerings and a portfolio showcasing past projects. Technically, the site is built on Webflow with modern analytics and marketing tools, optimized for performance and mobile use. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and incident response contacts are lacking. Privacy compliance is basic with policies present but no active cookie consent mechanism. The absence of WHOIS registration data is a notable concern, potentially impacting trustworthiness. Overall, the website is professional and credible but would benefit from improved transparency and enhanced security disclosures.

Mailman3.com is a specialized SaaS provider offering hosted Mailman 3 mailing list management services. The company provides multiple subscription plans including shared, dedicated, reseller, and enterprise options, targeting organizations requiring robust email list management and delivery. The business operates with a clear focus on Mailman 3 technology but is unaffiliated with the official Mailman 3 developers. The website presents a professional image with clear service descriptions and pricing, supported by modern web technologies including Google Analytics and Stripe for payments. However, it lacks formal privacy and terms of service documentation, which may impact user trust and compliance. Security posture is moderate with HTTPS enabled and no visible sensitive data exposure, but improvements such as DNSSEC and security headers are recommended. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

K

Klaipėdos Universiteto Ligoninė

kul.lt

0

Klaipėdos Universiteto Ligoninė is the largest healthcare institution in the Western Lithuania region, providing a wide range of medical services including ambulatory care, inpatient treatment, and paid medical services. The website reflects a professional healthcare provider with a strong focus on patient needs, offering detailed information about clinics, centers, and patient services. The technical infrastructure includes modern web technologies such as Google Tag Manager, Google Translate, and Swiper.js, supporting a responsive and accessible user experience. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security and incident response policies are not prominently found on the site. Overall, the website is trustworthy and well-maintained, though the absence of WHOIS data for the domain is a notable gap that should be addressed to confirm domain legitimacy.

The website at oraclum.eu is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The page contains no business information, contact details, or policies, making it impossible to assess the company's offerings or market position. The WHOIS data is minimal, only indicating the registrar as Namecheap, Inc, with no registrant details to verify legitimacy. Technically, the site lacks security headers and there is no evidence of HTTPS configuration, which raises concerns about security posture. Overall, the site appears inactive or restricted, resulting in a very low trust and credibility score.

The domain print-server.net is registered since 2004 with InterNetX GmbH and currently shows no accessible website content, only a German error message indicating the server was not found. There is no metadata, structured data, or business information available on the site. The lack of content and contact information suggests the website is either offline or not maintained. Technically, no modern frameworks, CMS, or hosting details beyond the registrar are detectable. Security posture cannot be properly assessed due to absence of HTTPS or security headers data. The domain registration appears legitimate but the lack of active content significantly reduces trust and business credibility.

The website sdpm.cz represents the official platform for the 'Slezské dny preventivní medicíny' conference, an established international event focused on public health and preventive medicine organized by the regional hygiene station and health institute in Ostrava, Czech Republic. The site provides detailed conference programs, speaker information, and multimedia content such as YouTube recordings and photo albums, targeting healthcare professionals and scientific communities. The domain has been active since 2003, indicating a stable presence in the healthcare event sector. Technically, the website uses standard HTML, CSS, and JavaScript with a responsive design suitable for mobile devices. It lacks advanced frameworks or CMS indications and does not employ tracking or advertising technologies, reflecting a straightforward informational site. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site enforces HTTPS and includes basic cache control headers but lacks comprehensive security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No forms or user data collection mechanisms are present, reducing exposure to common web vulnerabilities. WHOIS data aligns well with the website content, supporting legitimacy. Overall, the site is low risk but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

C

Find postal codes in Canada

canadapostalcode.net

0

The website canadapostalcode.net is a niche utility platform providing Canadian postal code lookup services. It allows users to search postal codes by address and also displays the user's current postal code based on GPS location if supported by the browser. The site is small-scale, founded in 2013, and primarily serves a general Canadian audience with free access supported by advertising. The business model is informational with no direct e-commerce or subscription services. Technically, the site uses a basic frontend stack including jQuery 1.8.3, Mapbox GL, Leaflet CSS, and Google Fonts. It integrates third-party services such as Google Analytics, Facebook SDK, Twitter widgets, and Google Adsense for advertising and tracking. Hosting and DNS are managed via Cloudflare, providing HTTPS and DNS-level protections, though DNSSEC is not enabled. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks important security headers like CSP and HSTS. No privacy, cookie, or terms of service policies are published, indicating low privacy compliance. No contact or incident response information is available, which limits transparency and trust. Advertising scripts introduce moderate user tracking, but no critical vulnerabilities or malware indicators were found. Overall, the site is functional and safe for general users but would benefit from improved privacy compliance, enhanced security headers, and clearer business and contact information to increase trust and professionalism.

WhatAltitude.com is a small, niche website created by Jonatan Heyman in 2013 that provides users with altitude information based on their GPS location. The site is a single-purpose informational tool supported by advertising revenue and uses multiple ad networks and tracking services. Technically, the site employs standard web technologies including jQuery, Google Fonts, Google Analytics, and social media SDKs, hosted behind Cloudflare DNS. Security posture is adequate with HTTPS enforced and domain transfer lock enabled, though DNSSEC is not active and security headers are not explicitly detected. Privacy compliance is addressed via an embedded consent management platform, ensuring GDPR adherence. The site lacks formal contact emails or phone numbers and does not provide terms of service or explicit security policies. Overall, the website is safe, professional, and trustworthy for general audiences.

W

What is my address?

whatismyaddress.net

0

The website 'What is my address?' is a small personal project created in 2020 that provides users with their current physical address based on GPS location. It offers an interactive map interface allowing users to fine-tune their location. The site targets general internet users needing quick geolocation services and operates on a free, ad-supported model. The technical infrastructure is built on Flask with Leaflet for mapping, supplemented by common web technologies and third-party analytics and social media integrations. Hosting and DNS are managed via Cloudflare, ensuring basic performance and security. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Business credibility is moderate given the personal nature of the project and limited contact information. Overall, the site is functional and trustworthy for its purpose but would benefit from enhanced security and privacy practices.

WhatIsMyZip.com is a small personal project created by Jonatan Heyman in 2012 to provide users with a simple utility to find their current ZIP code based on GPS location or address input. The website is straightforward, free to use, and monetized through Google Adsense advertising. It targets general internet users who need quick postal code information. Technically, the site uses a Flask backend with Leaflet for mapping and JavaScript Geolocation API for location detection. It integrates social media widgets and analytics for user engagement and tracking. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism. Overall, the site is functional, safe, and trustworthy for general audiences but could improve in security and privacy practices.

Hotels-near-me.today is a small hospitality-focused website designed to help users find hotels with available rooms near their current location. The site emphasizes ease of use and best price guarantees, targeting general travelers seeking immediate accommodation options. The business model revolves around location-based hotel search and availability display, leveraging Google Maps and third-party hotel data. The site is developed using modern web technologies including Vue.js, jQuery, and Google APIs, indicating a moderate level of digital maturity. However, the absence of a CMS or hosting details limits deeper infrastructure insights. Security posture is moderate; HTTPS usage is implied but no security headers are detected, and no privacy or cookie policies are present, which reduces compliance maturity. The WHOIS data is privacy protected, common for small websites, with no suspicious indicators. Overall, the site is functional and safe but would benefit from enhanced security and privacy compliance measures.

B

bedandbreakfast.guide

bedandbreakfast.guide

0

Bedandbreakfast.guide is a specialized online travel guide and booking platform focused on bed and breakfast accommodations worldwide. Established in 2014, it offers curated listings of unique and locally owned B&Bs, along with recommendations for nearby attractions such as coffee shops, restaurants, and museums. The website targets travelers seeking authentic and charming lodging experiences. Technically, the site employs modern web technologies including Google Fonts, Leaflet maps, and Google Analytics, ensuring a responsive and user-friendly experience. The presence of a cookie consent banner and privacy policy indicates attention to privacy compliance. Security-wise, the site uses HTTPS and avoids exposing sensitive data, though it lacks explicit security headers and formal security policies. The WHOIS data is unavailable due to TLD restrictions and privacy protections, but the domain appears legitimate and consistent with the business profile. Overall, the website presents a professional and trustworthy platform for travelers interested in bed and breakfast accommodations.

L

LuxuryHotel.world

luxuryhotel.world

0

LuxuryHotel.world is a specialized online platform dedicated to providing comprehensive and independent guides to luxury hotels worldwide. Established in 2018, the company focuses on curating high-end five-star hotels and nearby amenities such as restaurants and bars, targeting discerning luxury travelers. The website offers detailed hotel listings with booking links, emphasizing trust and independence by not accepting payments for inclusion or preferential placement. Technically, the site employs modern web technologies including Google Fonts, SVG icons, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR, though it lacks some advanced security headers and formal incident response disclosures. Overall, the domain WHOIS data is privacy protected, which is typical for small businesses, and no suspicious patterns are detected. The website presents a professional and trustworthy front with moderate to good technical and security posture.

R

Roni

ronigame.com

0

Roni is a small technology business focused on delivering a multiplayer and single-player word game available on iOS and Android platforms. The website serves as a promotional portal providing game descriptions, screenshots, and download links to app stores. The business targets casual and word game enthusiasts, offering features such as multiplayer challenges, daily games, and chat functionality. The domain has been registered since 2013, indicating a stable presence in the market. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with Google Analytics for user tracking and Cloudflare for DNS services. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, it lacks advanced security headers and cookie consent mechanisms, which are important for privacy compliance and security hardening. From a security perspective, the site enforces HTTPS and has domain transfer protections, but does not enable DNSSEC or publish security policies or incident response contacts. No WAF or blocking mechanisms are detected, and no vulnerabilities or suspicious content were found. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Overall, the website is professional and trustworthy for its purpose but could improve its security posture and privacy compliance to better protect users and enhance trust. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response information.

Longitude.me is a small technology service operated by Heylab AB, based in Sweden, offering a simple and privacy-conscious real-time location sharing platform. The website is authored by Jonatan Heyman and is part of a portfolio of related travel and location-based projects. The service targets general internet users who want to share their location easily and temporarily. Technically, the site uses modern JavaScript libraries, integrates social media widgets, and is hosted with Cloudflare DNS services. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No direct contact information or incident response details are provided, limiting transparency. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

HeyWeb was a technology-focused SaaS platform designed to enable small business owners to rapidly create websites by converting their Facebook pages into fully functional websites. The service automated content updates from social media and provided features such as custom domains and newsletter signups. The website is currently closed, indicating the service is no longer active. The domain is well-established, registered since 2007, and uses reputable registrar and DNS providers, supporting its legitimacy. Technically, the website uses a modest tech stack including jQuery, typed.js, and Google Analytics for tracking. It is hosted with Cloudflare DNS and uses Gandi SAS as the registrar. The site is mobile optimized and has a good design and user experience, but lacks advanced accessibility features and comprehensive SEO optimization. No CMS or major frameworks were detected. From a security perspective, the site lacks DNSSEC, security headers, and visible privacy or cookie policies, which are critical for compliance and user trust. The domain is protected against unauthorized transfers but could improve DNS security. No WAF or blocking mechanisms were detected, and no sensitive data exposure was found. Overall, the security posture is moderate but requires improvements to meet modern standards. The overall risk is moderate with no critical vulnerabilities detected. Strategic recommendations include implementing DNSSEC, publishing privacy and cookie policies, adding security headers, and providing clear contact and incident response information to enhance trust and compliance.

H

Heylab AB

locust.io

0

Locust.io is an established open source load testing framework developed and maintained by Heylab AB, a Swedish company founded in 2011. The platform enables developers and performance testers to define user behavior in Python code and simulate millions of simultaneous users for scalable load testing. The website demonstrates a strong community presence with numerous contributors and endorsements from reputable companies such as Riot Games, Mozilla, Microsoft, and Google. Commercial support is offered via the related domain locust.cloud, indicating a hybrid open source and service business model. Technically, the website employs modern web technologies including Python-based backend, JavaScript, Google Fonts, Twitter widgets, and GitHub integration. Hosting and DNS services are managed through Cloudflare, ensuring reliable performance and security. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with fast loading times and clear navigation. However, some security best practices such as DNSSEC and security headers are not enabled, and privacy compliance documentation is absent. From a security perspective, the site uses HTTPS and has domain transfer protections in place. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is transparent and consistent with the business identity, enhancing trustworthiness. Nonetheless, the absence of privacy and cookie policies, security incident contacts, and vulnerability disclosure mechanisms represent compliance and security posture gaps. Overall, Locust.io presents a professional, trustworthy, and technically mature platform with room for improvement in privacy compliance and security policy transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

Linkovi.net is a Croatian web directory and link catalog website established around 2005, offering categorized links to various Croatian and international websites across multiple sectors including media, shopping, health, tourism, and adult content. The site targets a general Croatian-speaking audience seeking curated web resources. Technically, the site uses legacy HTML4 and JavaScript with no modern CMS or frameworks detected, and it lacks HTTPS encryption, which is a significant security concern. The presence of an outdated Google Analytics script indicates limited modernization. Security posture is weak due to missing HTTPS, lack of security headers, and no visible privacy or cookie policies. The WHOIS data is unavailable, raising questions about domain registration legitimacy. Overall, the site provides basic directory services but requires significant technical and security improvements to meet modern standards.

May First Movement Technology is a US-based non-profit cooperative focused on providing technology services and hosting to social movements and activists primarily in the US and Mexico. The organization emphasizes democratic control, data protection, and movement-building through technology. Their website reflects a well-structured, bilingual platform offering member services such as email hosting, web hosting, and collaborative tools. Technically, the site uses modern frameworks like Bootstrap and Hugo, with integration of Mastodon social feeds, indicating a moderate level of digital maturity. Security practices include encrypted disk hosting and domain transfer protection, though DNSSEC is not enabled and no explicit security policies or incident response contacts are published. Overall, the site is professional, trustworthy, and content-rich, but could improve privacy compliance and security transparency.

S

Statistics Iceland

statice.is

0

Statistics Iceland is the official national statistical institute of Iceland, providing comprehensive and authoritative data on population, society, business sectors, economy, and environment. The website serves a broad audience including researchers, policymakers, businesses, and the general public, offering access to statistical databases, tailored statistics, microdata services, and a variety of publications. The organization is well-established, with a domain registered since 1998, and holds recognized certifications such as ISO 9001 and ISO 27001, reinforcing its credibility and commitment to quality and security. Technically, the website employs modern web technologies including jQuery, Matomo analytics, Google Fonts, and Datawrapper for interactive charts. It is hosted by a local Icelandic hosting provider, 1984 Hosting, and demonstrates good performance, mobile optimization, and accessibility. The site uses HTTPS with a good SSL configuration, although some security headers are missing. No WAF or blocking mechanisms are detected, allowing full content accessibility. From a security perspective, the site follows best practices such as HTTPS enforcement and absence of exposed sensitive data. However, it lacks explicit cookie consent mechanisms and a published vulnerability disclosure policy. The WHOIS data aligns well with the website's official status, showing consistent registration details and domain age appropriate for a government entity. Overall, the website is professional, trustworthy, and secure with minor areas for improvement in privacy compliance and security header implementation. It effectively supports its mission as Iceland's official statistical authority.

G

www.greindubetur.is

greindubetur.is

0

The website www.greindubetur.is appears to be an informational site related to a competition or educational event, likely based in Iceland given the domain and timezone references. The site is built on the Squarespace platform, leveraging its standard templates and integrations such as Matomo for analytics and Google Fonts for typography. The business focus is on providing information about the competition, including rules, schedules, and educational materials, targeting participants and interested audiences in Iceland. The site links to a partner domain statscompetition.eu for registration, indicating a partnership or service relationship. From a technical perspective, the site is hosted on Squarespace, ensuring reliable infrastructure and HTTPS security. The site is moderately optimized for mobile and has a good design quality with clear navigation. However, there is a lack of advanced SEO and accessibility features. The site does not implement common security headers, which could be improved to enhance security posture. Security-wise, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the provided content. However, the absence of privacy and cookie policies, terms of service, and contact information reduces compliance with GDPR and general privacy best practices. No incident response or vulnerability disclosure information is present, which is a gap for security readiness. Overall, the site is functional and professionally presented but lacks several compliance and security best practices. The domain WHOIS data is not publicly available, which is common for Icelandic domains but slightly reduces trust. There are no indications of malicious activity or adult content, making the site safe for general audiences. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and security posture.

The website represents the Gütegemeinschaft Anwerbung und Vermittlung von Pflegekräften aus dem Ausland e.V., a small German healthcare-focused organization providing a certification (RAL Gütezeichen) for fair recruitment of nursing professionals from abroad. The site positions itself as a trusted guide and certifier ensuring ethical, transparent, and fair recruitment practices. Technically, the site is built on the 1&1 IONOS Website Editor platform, using standard web technologies such as jQuery, Flexslider, and service workers for PWA capabilities. It employs Snowplow Analytics for user tracking and has a cookie consent mechanism in place, indicating GDPR awareness. Security posture is good with HTTPS enforced, but explicit security headers are not detected, and no dedicated security or incident response pages are found. Overall, the site is professional, trustworthy, and well-structured for its purpose.

D

Deutsches Kompetenzzentrum für internationale Fachkräfte in den Gesundheits- und Pflegeberufen (DKF) unter Trägerschaft des Kuratorium Deutsche Altershilfe (KDA)

dkf-kda.de

0

The Deutsches Kompetenzzentrum für internationale Fachkräfte in den Gesundheits- und Pflegeberufen (DKF) under the Kuratorium Deutsche Altershilfe (KDA) is a German non-profit competence center focused on the recruitment and integration of international healthcare professionals. It collaborates closely with the Federal Ministry of Health to implement policies related to international recruitment and provides resources such as integration toolkits and certification development for recruitment practices. The website positions itself as an important national entity in the healthcare sector, targeting healthcare organizations, government bodies, and private recruiters. Technically, the website is built on WordPress using the Avada theme and several modern plugins including Yoast SEO and Cookiebot for cookie consent management. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features. Cookie consent is actively managed with denied ad personalization and analytics, reflecting a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration and employs security best practices such as captcha protection on forms. However, it lacks explicit security headers and published security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the website is professional, trustworthy, and well-positioned within its sector. Strategic improvements include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact information to strengthen compliance and user trust.

M

medhochzwei Verlag

medhochzwei-verlag.de

0

medhochzwei Verlag is a specialized German publishing company focused on healthcare media, providing knowledge and resources related to the health system, hospital management, nursing, dementia, and case management. The company targets healthcare professionals and institutions, offering journals, books, and online subscription services. The website reflects a professional and consistent brand presence with a clear focus on its niche market. Technically, the site employs modern web technologies including Bootstrap for responsive design, Matomo for privacy-conscious analytics, and Cookiebot for GDPR-compliant cookie management. Hosting is provided by SchlundTech, a reputable German hosting provider. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could improve defenses. No critical vulnerabilities or exposed sensitive data were detected. The website demonstrates good privacy compliance and transparent advertising practices. Overall, the site is well-structured, user-friendly, and trustworthy, supporting the company's position as a reputable healthcare media publisher.

K

Kuratorium Deutsche Altershilfe

einzelhelfer.de

0

The website einzelhelfer.de is a German-language informational platform dedicated to neighborhood help (Nachbarschaftshilfe) for care-dependent individuals, primarily funded and supported by the German Federal Ministry of Health and implemented by the Kuratorium Deutsche Altershilfe. It serves as a resource hub for recognized neighborhood help programs in several German federal states, aiming to support elderly and care-dependent people to live independently at home. The project was active from 2017 to 2020, and the website remains online as an archive and informational resource. Technically, the site is built on WordPress, utilizing common plugins such as SiteOrigin Panels, Toolset Blocks, and accessibility enhancements. It is hosted on Strato servers in Germany, uses HTTPS with a good SSL configuration, and includes accessibility features. The site performs moderately well with good mobile optimization and SEO practices. However, it lacks some modern security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. It uses an accessibility plugin and Jetpack Stats for minimal user tracking. No critical vulnerabilities or security incidents are evident. Privacy compliance is partial, with a privacy policy page present but no cookie consent banner. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is a trustworthy, government-backed informational resource with good content quality and technical implementation. Strategic improvements include adding cookie consent, security headers, and more explicit contact and incident response information to enhance compliance and trust.

K

Kuratorium Deutsche Altershilfe

forum-seniorenarbeit.de

0

Forum Seniorenarbeit NRW is a non-profit project under the Kuratorium Deutsche Altershilfe, focused on community-oriented senior work and engagement in the North Rhine-Westphalia region of Germany. The website serves as an information hub, providing resources, event information, and networking opportunities for professionals and volunteers involved in senior citizen work. It emphasizes themes such as health promotion, mobility, participation, and social space development. The project is publicly funded and maintains a professional online presence with clear branding and consistent messaging. Technically, the website is built on WordPress 6.7.2, utilizing a variety of plugins including Contact Form 7, Events Manager, and Complianz GDPR Cookie Consent. It uses Matomo for analytics, ensuring privacy compliance with cookie consent mechanisms. Hosting is provided by rzone.de, with stable DNS and HTTPS enforced. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good technical maturity. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security headers in the HTML content. No vulnerabilities or exposed sensitive data were detected. The absence of a public security policy or incident response contact is noted. Overall, the security posture is adequate for a non-profit informational site but could be improved with additional headers and transparency. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and publishing security and incident response information to increase trust and compliance.

K

Kuratorium Deutsche Altershilfe

alter-pflege-demenz-nrw.de

0

The website 'alter-pflege-demenz-nrw.de' represents a regional initiative in North Rhine-Westphalia, Germany, focused on elder care, dementia support, and related social services. It is operated under the auspices of the Kuratorium Deutsche Altershilfe, a recognized non-profit organization. The site provides comprehensive information, resources, and contact points for individuals seeking support in these areas, including newsletters, event listings, and material collections in accessible language formats. The target audience includes elderly individuals, caregivers, healthcare professionals, and social workers within the NRW region. Technically, the website is built on WordPress using a modern tech stack including Bootstrap 4 and various plugins for caching, GDPR compliance, and accessibility. The site is hosted on servers associated with rzone.de and employs HTTPS with a valid SSL certificate, ensuring secure communications. Performance and mobile optimization are good, with accessibility features implemented to support users with disabilities. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and does not publish a security policy or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The site uses Matomo Analytics for privacy-respecting user tracking and Jetpack Stats for additional insights. Overall, the website demonstrates a solid security posture and compliance with privacy regulations, supporting its role as a trustworthy public service platform. Strategic improvements could include adding security headers, publishing incident response contacts, and establishing a vulnerability disclosure policy to enhance transparency and security readiness.

S

Stiftung ProAlter

stiftung-pro-alter.de

0

Stiftung ProAlter is a German non-profit foundation dedicated to promoting the civic engagement of elderly people to maintain self-determination and quality of life. The website presents a clear mission focused on supporting volunteerism among seniors and fostering intergenerational networking. The organization positions itself as a niche player in the non-profit sector with a focus on social and community services. Technically, the website is built on WordPress 6.8.3 with Elementor and uses modern plugins such as Borlabs Cookie for privacy compliance. The site is well-structured, mobile-optimized, and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site reflects a professional and trustworthy non-profit entity with good digital maturity.

A

artcom venture GmbH

artcom-venture.de

0

artcom venture GmbH is a technology consulting and development company specializing in assisting businesses with digital transformation and data strategy. The company offers a range of services including consulting, development, marketing, and additional support services. It targets businesses looking to adapt to digital disruption and improve operational efficiency through technology. The company maintains multiple offices across Germany, Austria, Ukraine, and Turkey, indicating a medium-sized international presence. Technically, the website is built on WordPress CMS with modern technologies such as .Net Core, Angular, ElasticSearch, and various databases. The site is SEO optimized using Yoast SEO and includes a cookie consent mechanism compliant with GDPR. Performance and mobile optimization are good, though accessibility is basic. The technical infrastructure supports a professional digital presence aligned with the company's business model. From a security perspective, the website enforces HTTPS and uses CAPTCHA on its contact form to mitigate spam. However, it lacks explicit security headers and does not publish a vulnerability disclosure or incident response policy. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive GDPR policy and cookie consent. Overall, the website presents a trustworthy and professional image with good content quality and technical implementation. Security posture is solid but could be improved with additional headers and published policies. The business credibility is supported by clear company information and multiple office locations. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to further strengthen trust and compliance.

8

83bar

83bar.com

0

83bar is a healthcare technology company specializing in patient recruitment, engagement, and journey management for clinical trials and commercialization. Positioned as an innovative player in the healthcare sector, 83bar offers a Patient Activation Platform that integrates software to locate, educate, and navigate high-intent patients. The company targets pharmaceutical firms, clinical research organizations, and healthcare providers, aiming to optimize patient recruitment and improve clinical study outcomes. Their market position is reinforced by multiple industry awards and recognitions, reflecting a strong reputation in their niche. Technically, the website is built on WordPress using the Avada theme, leveraging a modern tech stack including jQuery, Google Analytics, Hotjar, HubSpot, and Calendly. The site demonstrates good mobile optimization, SEO practices, and a moderate performance profile. The integration of marketing and analytics tools indicates a mature digital marketing strategy, supporting lead generation and user engagement. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts, but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanism, aligned with GDPR requirements. Overall, the website presents a professional and trustworthy digital presence with strong business credibility. The absence of WHOIS registration data is a concern but does not detract significantly from the site's legitimacy given the quality of content and contact information. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party integrations to strengthen security posture and trust.

R

RedRhino Inc.

red-rhino.com

0

RedRhino Inc. is a well-established marketing and advertising agency based in London, Ontario, with nearly three decades of experience. The company specializes in integrated marketing, branding, and digital services including mobile-first website development. Their client portfolio spans multiple sectors such as consumer goods, healthcare, manufacturing, and professional services, positioning them as a reputable mid-sized agency in their market. The website reflects a professional and consistent brand image with strong content quality and user experience. Technically, the site is built on WordPress using modern frameworks and includes multiple analytics and marketing tools, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security transparency.

I

IBA Dosimetry

iba-dosimetry.com

0

IBA Dosimetry operates a professional website focused on providing advanced radiation measurement solutions for healthcare providers, particularly in radiation therapy, particle therapy, and medical imaging. The company targets medical physicists and clinics with a B2B business model, offering precision instruments and related services. The website is built on TYPO3 CMS and integrates modern consent management tools such as Cookiebot and Google Tag Manager, reflecting a mature digital infrastructure. Privacy compliance is well addressed with a comprehensive privacy statement and detailed cookie consent mechanisms. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified to ensure trustworthiness. Overall, the website presents a professional and trustworthy front for the business, with moderate technical performance and good user experience.

U

UC Affärsinformation

allabolag.se

0

Allabolag.se is a comprehensive Swedish business information platform operated by UC Affärsinformation, a subsidiary of Enento Group Plc. The website offers detailed financial data, official company roles, and business insights for all Swedish companies that file annual reports with the Swedish Companies Registration Office. It targets business professionals, researchers, and companies seeking reliable corporate data. The platform provides both free and premium services, including segmentation tools and network searches, positioning itself as a leading source for Swedish corporate information. Technically, the website is built on modern web technologies including React and Next.js, with Material-UI for design. It integrates multiple third-party advertising and analytics services, managed through a consent platform ensuring GDPR compliance. The site is well-optimized for mobile and accessibility, with good SEO practices and fast loading times. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses a consent management platform for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy or incident response information, which could be improved to enhance trust. Overall, Allabolag.se presents a professional, trustworthy, and well-maintained digital presence with strong business credibility. The missing WHOIS data for the www subdomain is not a concern given the known parent domain and business entity. Strategic recommendations include enhancing security transparency, maintaining third-party script audits, and publishing vulnerability disclosure policies.