Security Directory

K

Kiwi.com

skypicker.com

0

Kiwi.com is a prominent online travel agency specializing in providing cheap flights, hotels, and car rental services globally. The platform offers a user-friendly interface with advanced search capabilities including flexible dates and map-based destination exploration. It is trusted by millions and provides additional services such as disruption protection and 24/7 customer support. The website demonstrates a mature digital presence with consistent branding and comprehensive content tailored for travelers seeking affordable travel options. Technically, Kiwi.com employs modern web technologies including React and Tailwind CSS, supported by Google Tag Manager and Forter for analytics and fraud prevention respectively. The site is optimized for performance and mobile responsiveness, ensuring a seamless user experience across devices. Security best practices are observed with HTTPS enforcement and presence of key security headers, although explicit incident response and vulnerability disclosure information are not publicly available. From a security and compliance perspective, Kiwi.com maintains a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. However, the WHOIS data for the domain is not publicly available, which slightly impacts trust but is common for commercial entities using privacy protection services. Overall, the site presents a strong security posture with room for improvement in transparency around incident response and vulnerability management. The overall risk assessment is moderate to low, with recommendations focusing on enhancing security transparency and providing clear contact channels for security incidents. Kiwi.com’s strategic position as a leading travel booking platform is supported by its technical infrastructure and user-centric design, making it a reliable choice for consumers worldwide.

The website resizeapi.com is currently inaccessible due to a Cloudflare 520 error indicating an unknown issue between Cloudflare and the origin web server. The domain is registered via Cloudflare, Inc. with a suspicious future creation date, which raises concerns about legitimacy. No business or contact information, privacy policies, or terms of service are available on the site. The technical infrastructure relies on Cloudflare for DNS and CDN services, but the origin server is not responding correctly, causing the site to be unavailable. Security posture is weak due to lack of visible security headers and DNSSEC not enabled. Overall, the site cannot be properly assessed due to blocked content and minimal information.

K

Kimberly-Clark Corporation

kimberly-clark.com

0

Kimberly-Clark Corporation is a globally recognized enterprise specializing in manufacturing and marketing personal care and consumer products. Operating in over 175 countries, the company leverages innovation and consumer insights to deliver trusted brands that meet essential needs. The website reflects a mature digital presence with comprehensive content, professional branding, and a focus on user experience for a broad audience including consumers and business partners. Technically, the site employs modern web technologies such as Google Tag Manager and Monsido for analytics and quality assurance, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement and standard security headers, though public security policies and incident response contacts are not prominently disclosed. The absence of WHOIS data is notable but does not detract from the overall legitimacy indicated by the site content and corporate branding. Strategic recommendations include enhancing transparency around security policies and vulnerability disclosures to further build trust and compliance.

K

Kinomreža

kinomreza.hr

0

Kinomreža is a Croatian network of independent cinemas established in 2014, aiming to strengthen the position of independent cinemas and promote film culture across Croatia. The website serves as an informational and promotional platform for the network, providing news, member information, and activities related to film exhibition and education. Technically, the site is built on WordPress using the Astra theme and Elementor page builder, reflecting a modern and maintainable infrastructure. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security documentation.

H

Heroina | Samo još jedna WordPress web-stranica

heroina.hr

0

Heroina.hr is a small-scale WordPress website primarily using the Brooklyn theme by United Themes. The site appears to be a minimal or placeholder site with very limited business content, no privacy or cookie policies, and no contact information. The technical infrastructure is based on WordPress with multiple JavaScript libraries and plugins, indicating a moderate level of digital maturity but lacking in SEO and accessibility optimizations. Security posture is basic with HTTPS enabled but missing important security headers and privacy compliance measures. Overall, the site presents a low-risk profile but lacks professionalism and trust indicators, limiting its business credibility.

Vodovod hrvatsko primorje d.o.o. is a Croatian public utility company specializing in water supply and sewage services across multiple regional branches. The company serves residents and businesses in the Croatian coastal region, providing essential water infrastructure and public service notices. The website is built on WordPress with Elementor, indicating a modern CMS platform with moderate technical sophistication. The site is accessible, mobile-optimized, and contains relevant business content including public notices and procurement information. However, it lacks explicit privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the domain registration is consistent with the business focus, though the future domain creation date is unusual and should be verified. The website presents a professional and trustworthy image but can improve in privacy compliance and security best practices.

W

Wheels of Arabia

wheelsofarabia.ae

0

Wheels of Arabia is an automotive service provider operating in the United Arab Emirates, likely offering vehicle sales, rentals, and related automotive solutions. The website is built on the Wix platform, leveraging standard Wix technologies and Google analytics and marketing tools. The technical infrastructure is moderate with good mobile optimization and basic SEO and accessibility features. Security posture is adequate with HTTPS and some JavaScript hardening, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. Business credibility is moderate but would benefit from clearer contact information and trust signals. Overall, the website is functional and safe but requires improvements in privacy compliance and security transparency.

W

Whites Powersports

whitespowersports.com

0

Whites Powersports operates as a medium-sized retail and distribution company specializing in powersports products and accessories, primarily serving the New Zealand market. The company leverages a Shopify-based e-commerce platform to showcase and sell multiple brands, targeting powersports enthusiasts and retail partners. The website demonstrates a professional design with consistent branding and clear navigation, supporting a positive user experience. Technical infrastructure is modern, utilizing Shopify's hosting and content delivery network, with integration of analytics and marketing tools such as Google Analytics and Shopify Pixels. Privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanism, aligning with GDPR requirements. However, the absence of WHOIS data and lack of visible contact or security policies slightly diminish the overall trustworthiness. Security posture is strong with HTTPS enforced and no exposed sensitive data, though explicit security headers could be improved. Overall, the site presents a secure and compliant e-commerce presence with room for enhanced transparency and security documentation.

S

Crie um site de e-commerce e venda online. Software de e-commerce da Shopify

shopei.com

0

The website at shopei.com is currently a parked domain displaying a Shopify-branded placeholder page indicating that the store is not available. The content is minimal and primarily in Portuguese, targeting potential e-commerce store owners or visitors interested in Shopify services. The domain is registered to a domain reseller (TurnCommerce, Inc. DBA NameBright.com) and is not actively operated by Shopify or any merchant. The site offers links to Shopify's main site and encourages visitors to explore other stores or start a free trial, but no active store content or business information is present. Technically, the site uses Shopify fonts and jQuery 2.0.3, hosted on Shopify's CDN infrastructure. The domain lacks DNSSEC and security headers are not evident from the data. The site is not blocked by any WAF or security challenge but is minimal in content and functionality. Mobile optimization and accessibility are basic, and SEO optimization is minimal. No privacy, cookie, or terms of service policies are found, and no contact information or forms are present. From a security perspective, the domain's parked status and lack of active content reduce trustworthiness. The absence of privacy and cookie policies and contact details further diminish compliance posture. No vulnerabilities are explicitly detected, but the lack of security best practices and DNSSEC is a concern. The domain's registration details do not match the Shopify brand, indicating the domain is not legitimately owned by Shopify. Overall, the website represents a low-risk but low-value domain parked for sale with no active business presence. Strategic recommendations include securing the domain properly if acquired, enabling DNSSEC, implementing HTTPS and security headers, and providing clear privacy and contact information if the site is to be used for business purposes.

Age Themes operates as a specialized digital marketplace offering Joomla templates, WordPress themes, and Shopify templates, targeting web developers and site owners seeking professional website styles. The business model centers on selling both free and pro versions of templates, including membership bundles that provide extensive access to their catalog. The company appears to be a small-sized entity founded in 2013, with a consistent brand presence and active social media channels. Technically, the website is built on WordPress with Easy Digital Downloads for e-commerce, integrates Google Analytics for tracking, and uses Cloudflare for DNS management. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic.

U

Unbottled

unbottled.co

0

Unbottled is a French e-commerce company specializing in eco-friendly, solid personal care products designed to eliminate plastic and chemical usage in bathrooms. The website is built on the Shopify platform and integrates multiple marketing and analytics tools such as Klaviyo, Hotjar, TikTok Analytics, and Judge.me for customer reviews. The business targets environmentally conscious consumers seeking sustainable alternatives to bottled products. The site demonstrates good design quality, clear navigation, and consistent branding, supporting a positive user experience. Technically, the site uses modern web technologies and maintains good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though explicit security and privacy policies are missing from the visible content. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

C

Colorful Black

colorfulblack.com

0

Colorful Black is a niche e-commerce retailer specializing in haircare and skincare products tailored for curly, afro, black, and mixed skin types. Established since 2009, the company offers a curated selection of products including haircare brands, beauty accessories, fashion items, and home decor, with a physical presence in Paris. The website is built on the Shopify platform, leveraging modern web technologies and third-party integrations for marketing, analytics, and customer engagement. Privacy and cookie policies are implemented with consent mechanisms, reflecting GDPR compliance. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are absent. The domain WHOIS data is unavailable, possibly due to privacy protection, which slightly impacts trust but is common for small e-commerce businesses. Overall, the site presents a professional and trustworthy online presence with room for improvement in transparency and contact accessibility.

T

The Lighting Outlet

thelightingoutlet.com.au

0

The Lighting Outlet is an Australian-owned e-commerce retailer specializing in lighting and fan products, targeting both residential and commercial customers across Australia. The company positions itself as a superstore offering a wide range of global brand products at competitive prices. The website is built on the Shopify platform, leveraging modern JavaScript frameworks and third-party form builders to facilitate trade account registrations and custom product quotations. The technical infrastructure is solid, hosted on Shopify's CDN with good mobile optimization and SEO practices. Security posture is generally strong with HTTPS enforced and no exposed sensitive data, though improvements can be made by enabling DNSSEC and implementing additional security headers. Privacy compliance is a notable gap due to the absence of privacy and cookie policies. Overall, the website presents a professional and trustworthy front for its business operations.

M

Museum Mala barka - virtual museum of maritime heritage

muzejmalabarka.com

0

Museum Mala barka is a virtual museum dedicated to preserving and showcasing the maritime heritage of the northern Adriatic region, including Slovenian Littoral, Istria, and Kvarner in Croatia. Established as part of the EU interreg project Mala barka 2, the website offers virtual tours, detailed itineraries, and extensive multimedia content to educate visitors about the rich maritime culture and history of the area. The site targets general audiences interested in maritime heritage and regional culture. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Leaflet for interactive maps, ensuring a responsive and visually appealing user experience. However, some technical improvements are recommended, including enabling DNSSEC and adding security headers to enhance security posture. The site uses Google Analytics and Google Tag Manager for user tracking, but lacks visible privacy and cookie policies, which is a compliance gap. Security-wise, the site benefits from HTTPS and domain transfer protection but would benefit from additional security best practices. Overall, the website is functional, informative, and professionally designed but should improve privacy compliance and security measures to enhance trust and user confidence.

G

Glagoljica.hr

glagoljica.hr

0

Glagoljica.hr is a Croatian cultural and educational digital portal dedicated to the preservation and study of Glagolitic script and heritage. It offers extensive collections of manuscripts, books, musical sources, and visual inscriptions, along with a detailed historical timeline of Glagolitic documents. The portal targets researchers, historians, linguists, and enthusiasts interested in Croatian medieval manuscripts and Glagolitic tradition. The business model is non-commercial, focusing on cultural preservation and academic dissemination. Technically, the website employs a modern but standard tech stack including Bootstrap, jQuery, Popper.js, and Font Awesome, with integration of Google Analytics and Tag Manager for user tracking. The site is hosted by a Croatian provider, cyber_Folks d.o.o., and shows moderate performance with good mobile responsiveness. However, accessibility and SEO optimizations are basic. From a security perspective, the site uses HTTPS and avoids exposing sensitive data but lacks visible security headers and formal security policies. No privacy or cookie policies are present, and no contact information is provided, which impacts privacy compliance and user trust. The WHOIS data is consistent and supports the domain's legitimacy. Overall, the site is a valuable cultural resource with good content quality and technical foundation but requires improvements in privacy compliance, security headers, and contact transparency to enhance trust and security posture.

D

Dubrovačke knjižnice

dkd.hr

0

Dubrovačke knjižnice is a well-established public library institution based in Dubrovnik, Croatia, providing a range of library services including scientific and national libraries, digital collections, and cultural events. The website reflects a mature digital presence with a clear focus on serving the local community and researchers. The technical infrastructure is based on ASP.NET WebForms and the DotNetNuke CMS platform, integrating modern JavaScript libraries for enhanced user experience and mobile responsiveness. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in explicit security headers and published security policies. Overall, the site is trustworthy, professionally maintained, and compliant with basic privacy standards.

I

Institut za etnologiju i folkloristiku

dief.eu

0

The website represents the digital repository of the Institute of Ethnology and Folklore Research (DIEF), an academic institution based in Croatia. It provides access to various collections, projects, and virtual exhibitions related to ethnology and folklore, targeting researchers, academics, and cultural heritage professionals. The platform is built on the Indigo CMS and uses modern web technologies such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. However, the site lacks explicit privacy and cookie policies, which is a compliance gap given the use of Google Analytics and Tag Manager for user tracking. Security posture is moderate with HTTPS enabled but missing security headers. The WHOIS data is unavailable due to privacy protection, which is common for academic domains, and does not raise immediate legitimacy concerns. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Muzej za umjetnost i obrt

muo.hr

0

Muzej za umjetnost i obrt is a well-established Croatian museum institution dedicated to art and crafts, with a history dating back to 1880. The website serves as a digital platform to showcase exhibitions, educational programs, publications, and cultural projects targeting the general public, art enthusiasts, and educational institutions. The museum maintains a strong market position as a key cultural entity in Croatia. Technically, the website is built on WordPress with common plugins such as WooCommerce, Yoast SEO, and Jetpack, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though it lacks explicit security policies and advanced security headers. Overall, the site is professional, trustworthy, and compliant with GDPR and accessibility standards, with active social media engagement and partner affiliations. Recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure process.

R

Rentlio d.o.o.

rentl.io

0

Rentlio d.o.o. operates a leading cloud-based property management system, channel manager, and booking engine tailored for the hospitality industry, including hotels, apartments, and property management companies. Founded in 2014 and headquartered in Zadar, Croatia, Rentlio positions itself as a comprehensive solution to streamline property management and drive business growth. The company targets hoteliers, vacation rental owners, and multi-property managers, offering a SaaS model accessible via web, iOS, and Android platforms. The website reflects a professional and modern digital presence with strong branding and positive user ratings.

Eesti Lasterikaste Perede Liit is a reputable Estonian non-profit organization dedicated to advocating for large families with three or more children. The organization operates a well-structured website built on WordPress with WooCommerce integration, providing information about their activities, events, and support services. The site demonstrates a solid digital presence with modern technologies and SEO optimization, targeting families and member organizations in Estonia. Security posture is good with HTTPS and no visible vulnerabilities, though additional security headers and policies could enhance protection. Privacy compliance is lacking as no privacy or cookie policies were found, which is a notable gap for GDPR adherence. Overall, the website is professional, content-rich, and trustworthy, serving its community effectively.

Smaily is a technology company providing a SaaS platform focused on email marketing and newsletter creation. The website offers a simple, user-friendly interface with social login options and an award-winning drag and drop editor, targeting businesses and marketers seeking efficient email marketing solutions. The platform emphasizes ease of use and integration capabilities with over 1000 services. Technically, the website uses modern web technologies including HTTPS, Google Fonts, and Google Tag Manager for analytics. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate with HTTPS enforced and social authentication, but lacks visible security headers and published security policies. The absence of WHOIS data for the domain is a significant concern, suggesting possible domain registration issues that impact trustworthiness. Privacy compliance is partial with a Terms of Service link but no visible cookie consent or privacy policy on the login page. Overall, the site is functional and professional but requires improvements in transparency, security policies, and domain legitimacy verification.

The website maaamet.ee is currently inaccessible due to a Cloudflare Turnstile CAPTCHA security challenge, preventing access to any meaningful content. Based on the domain and WHOIS data, it is an established domain registered since 2010 under Zone Media OÜ, consistent with an Estonian government entity, likely the Estonian Land Board. The lack of accessible content means no privacy, cookie, or terms of service policies are visible, nor any contact information or business descriptions. The technical infrastructure relies heavily on Cloudflare services for security and analytics, indicating a modern but heavily protected setup. The security posture is difficult to fully assess due to the blocked content, but the presence of Cloudflare WAF and CAPTCHA suggests a focus on mitigating automated threats. Overall, the site cannot be fully analyzed in its current state, and the AI score is low due to lack of accessible content and policies.

A

Ad Fingers

adfingers.com

0

Ad Fingers is a Lithuanian digital marketing agency specializing in user-oriented marketing solutions, UX/UI design, communication campaigns, and platform audits. Established in 2010, the company has built a solid portfolio serving various clients including known brands. Their website reflects a professional and modern digital presence with clear navigation and comprehensive service showcases. Technically, the site uses modern JavaScript frameworks such as Livewire and Alpine.js, hosted with Cloudflare DNS services, and implements HTTPS with good SSL configuration. Privacy compliance is addressed through cookie consent mechanisms and a privacy policy page, indicating GDPR awareness. Security posture is adequate but could be improved by enabling DNSSEC and adding security headers. Overall, the website is trustworthy, well-designed, and suitable for its target business audience.

W

wilderoben s.r.o.

wilderoben.com

0

Wilderoben s.r.o. operates an e-commerce website specializing in sustainable and responsible outdoor apparel and accessories. The company partners with well-known outdoor brands and targets environmentally conscious consumers. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, the site is built on PrestaShop with modern JavaScript libraries and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is basic, lacking explicit privacy and terms of service pages, which should be addressed to enhance trust and regulatory adherence. Overall, the website is legitimate, well-branded, and trustworthy, with moderate user tracking and good performance.

L

Lesoochranárske zoskupenie VLK

abies.sk

0

Abies.sk is an e-commerce website operated by Lesoochranárske zoskupenie VLK, a Slovak environmental organization focused on publishing and distributing ecological literature and related merchandise. The website offers a catalog of books, DVDs, CDs, and promotional goods centered on deep ecology and forest conservation. The business operates a niche publishing model targeting environmentally conscious readers and activists. Technically, the site uses the CubeCart CMS platform with Foundation CSS and jQuery libraries, hosted likely by Websupport, and benefits from DNSSEC and HTTPS security. The site is mobile-optimized with a moderate performance profile. Security posture is adequate with encrypted connections and DNSSEC but lacks advanced security headers and cookie consent mechanisms. No direct contact emails or phone numbers are visible, relying on contact forms for communication. Overall, the website is trustworthy and professionally maintained but could improve privacy compliance and security transparency.

L

Layer8 in Space

layer8.space

0

Layer8 in Space operates as an independent Mastodon social server focused on community discussions around Linux, Anime, Music, and Software. The platform leverages the open-source Mastodon software (version 4.3.13) and React.js for its frontend, providing a modern and responsive user experience. The site is hosted under the domain layer8.space, registered since 2016, indicating a stable and established presence in the fediverse. The user base is small but active, with approximately 269 monthly active users. The business model is community-driven without evident commercial activities or monetization. Technical infrastructure is solid, with HTTPS enforced and modern web technologies used, though some security best practices like DNSSEC and security headers are missing. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. No direct company contact information or formal business credentials are provided, consistent with the community nature of the service. Overall, the website is trustworthy and safe for general audiences, with no adult or explicit content detected.

J

JSON

json.org

0

The website www.json.org serves as an authoritative informational resource dedicated to the JSON (JavaScript Object Notation) data interchange format. It provides comprehensive technical documentation, grammar rules, and extensive links to JSON libraries across a wide range of programming languages. The site targets developers and programmers seeking to understand or implement JSON in their applications. The business model is primarily educational and standardization-focused, positioning itself as a key reference in the technology sector. Technically, the site is a static HTML resource with custom fonts and simple CSS styling, optimized for fast loading and basic mobile responsiveness. However, it lacks modern web frameworks or CMS integration. Security posture is moderate; while HTTPS is assumed (not explicitly confirmed in the data), no advanced security headers or policies are present, and no contact or incident response information is provided. The absence of privacy and cookie policies indicates limited compliance with modern privacy regulations. WHOIS data is unavailable due to a malformed request, which limits domain legitimacy verification and reduces trust scores. Overall, the site is a valuable technical resource but would benefit from enhanced security, privacy compliance, and transparency improvements.

J

JSLint: The JavaScript Code Quality and Coverage Tool

jslint.com

0

JSLint.com is the official website for JSLint, a JavaScript code quality and coverage tool authored by Douglas Crockford. The website provides an in-browser linting tool that analyzes JavaScript code without sending it over the network, emphasizing privacy and local execution. The site links to its GitHub repository and related resources, positioning itself as a trusted open source developer utility in the JavaScript ecosystem. The business model is primarily open source and community-driven, targeting JavaScript developers seeking code quality assurance.

M

Contents

mistysystem.com

0

The MistySystem.com website serves as a dedicated documentation and resource portal for the Misty programming language, authored by Douglas Crockford. It provides comprehensive technical documentation, demonstrations, and references, targeting developers and programmers interested in this niche language. The site is small-scale and focused on educational and open-source content without commercial or transactional features. Technically, the website is built with basic HTML and CSS, hosted under a domain registered since 2004 with IONOS SE. The site lacks modern web frameworks or CMS platforms and shows basic mobile and accessibility features. No advanced analytics, advertising, or tracking technologies are present, indicating a minimalistic and privacy-conscious approach. From a security perspective, the site uses HTTPS (implied by the domain but not explicitly stated in the data), but lacks DNSSEC and security headers, which are recommended to enhance domain and web security. There are no privacy or cookie policies, nor contact or incident response information, which limits compliance with GDPR and best security practices. The domain registration is consistent and legitimate, with no suspicious patterns detected. Overall, the website is safe, professional in its niche, but could improve significantly in privacy compliance, security posture, and user engagement features to enhance trust and regulatory adherence.

D

DECHEMA, Gesellschaft für Chemische Technik und Biotechnologie e.V.

eurocorr.org

0

EUROCORR is the flagship annual corrosion congress organized under the European Federation of Corrosion (EFC) and managed by DECHEMA, a reputable German chemical engineering society. The website serves as an information hub for the event, providing details about upcoming and past congresses, news, and registration links. The business model centers on event organization and scientific community engagement, targeting corrosion experts and researchers across Europe. The domain is well-established since 2000, reflecting a mature and stable presence in the corrosion science community. Technically, the website uses a custom or proprietary CMS with JavaScript libraries such as Modernizr and Google Analytics for tracking. Hosting is provided by Vautron Rechenzentrum AG, a known hosting provider. The site is mobile-optimized with good SEO practices and basic accessibility features. Cookie consent mechanisms are implemented with GDPR compliance, enhancing privacy transparency. From a security perspective, HTTPS is enforced, and cookie consent is opt-out with clear user controls. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data confirms domain legitimacy with consistent registration details and no privacy protection masking. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Recommendations include enabling DNSSEC, adding security headers, and enhancing accessibility. The site poses low risk and demonstrates good compliance with privacy regulations.

C

CHEMAGAZÍN s.r.o.

chemagazin.cz

0

CHEMAGAZÍN s.r.o. is a Czech-based media company operating an online magazine focused on chemistry, scientific research, industry, laboratories, and technology. The website serves professionals, researchers, and academics in the chemical sciences sector, offering news, articles, and an extensive archive of magazine issues dating back several years. The company has a well-established market presence since 2000, supported by industry partnerships and advertising. Technically, the website uses a modern tech stack including Laravel backend with Livewire, jQuery, Foundation, and various JavaScript libraries. It is hosted on Czech infrastructure with a reputable registrar and name servers. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and policies are missing. Privacy compliance is partial due to the absence of a dedicated privacy policy page. Overall, the site is professional, trustworthy, and content-rich, with good user experience and mobile optimization.

Focus Nerez is a specialized professional magazine dedicated to stainless and corrosion-resistant steels, targeting industry professionals and businesses in the manufacturing sector. The website provides news, technical articles, e-paper subscriptions, and advertising opportunities, positioning itself as a niche media outlet within the Czech Republic and neighboring regions. The site is built on WordPress with a modern tech stack including Bootstrap and jQuery, offering a responsive and user-friendly experience. However, some technical improvements are needed, particularly in security headers and cookie consent mechanisms. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and structure appear professional and trustworthy. Overall, the site demonstrates a moderate level of digital maturity with room for security and compliance enhancements.

SteelConstruction.info is a well-established, authoritative online encyclopedia dedicated to UK steel construction information. It is supported by key industry bodies such as the British Constructional Steelwork Association (BCSA), Steel for Life, and the Steel Construction Institute (SCI). The website offers extensive technical content, industry news, CPD training resources, and project case studies, targeting construction professionals, engineers, architects, and students. Its business model is informational and educational, positioning it as a leading resource in the UK steel construction sector. Technically, the website is built on the MediaWiki platform, leveraging modern JavaScript libraries and Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are not clearly present. The domain WHOIS data is privacy protected, which is common for informational websites, and no suspicious patterns were detected. The website maintains a strong trust profile through its affiliations and consistent, high-quality content. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, SteelConstruction.info is a credible, professional, and valuable resource for the steel construction industry, with recommendations to enhance privacy compliance and security header implementation to further strengthen its security posture.

J

J. Soares Correia - Armazéns de Ferro, S.A.

jsoarescorreia.pt

0

J. Soares Correia - Armazéns de Ferro, S.A. is a well-established Portuguese company specializing in the wholesale and retail distribution of steel and iron products, including bars, profiles, sheets, tubes, and meshes. Founded in 1907, the company has grown to become a market leader in Portugal with a significant presence including a subsidiary in Angola. Their services also include manufacturing pre-molded concrete reinforcement products and providing a client portal for business customers. The website reflects a mature digital presence built on WordPress with Elementor and Yoast SEO, offering good content quality and navigation. Security posture is solid with HTTPS and no exposed sensitive data, though improvements can be made by adding security headers and formal security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the website is professional, trustworthy, and well-aligned with the company's business claims.

O

O FELIZ Metalomecânica

ofeliz.com

0

O FELIZ Metalomecânica is a Portuguese manufacturing company specializing in metal construction, sheet profiling, laser cutting, and fabrication of lighting columns and communication towers. The company has a solid market presence since 2008, offering end-to-end solutions from design to final assembly. Their website reflects a medium-sized enterprise with a professional digital presence built on Drupal CMS, featuring multilingual support and integrated marketing tools like Google Analytics and reCAPTCHA for security. While the site is well-structured and content-rich, it lacks some privacy compliance features such as a cookie consent banner. Security practices include HTTPS and CAPTCHA protections, but could be improved with DNSSEC and security headers. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate operation.

Constálica is a medium-sized Portuguese company specializing in innovative structural systems for construction, including MadreMax®, OmegaMax®, and Réservoir®. The company targets construction professionals and partners globally, offering solutions for industrial, housing, agricultural, and photovoltaic structures. Their business model focuses on B2B manufacturing and structural simulation tools such as MAXBOX®. The website reflects a mature digital presence with modern technologies like React and Next.js, and integrates Google Tag Manager for analytics and Cookie Script for privacy compliance. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. The domain is well-established since 2008, consistent with the company's claims, and no suspicious WHOIS patterns are detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

Antero & Ca SA is a well-established Portuguese steel products company with over 90 years of history, operating as a steel service center and distributor. It is part of the Hiemesa Group, a recognized entity in the Iberian steel market. The company offers a wide range of steel products and industrial supplies, targeting industrial clients, construction companies, locksmiths, and equipment industries. The website reflects a professional and comprehensive digital presence with detailed product information, multiple contact points, and integration with the parent group's ecosystem. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Maps API, providing a responsive and user-friendly experience. Security-wise, the site uses HTTPS and basic form protections but lacks advanced security headers and explicit incident response policies. Privacy compliance is addressed with clear privacy and cookie policies, though no explicit cookie consent mechanism is present. The absence of WHOIS domain registration data is a notable concern, slightly reducing trustworthiness from a domain legitimacy perspective.

C

CMM – Associação Portuguesa de Construção Metálica e Mista

digitalsteel.pt

0

Digital Steel is a project promoted by the Portuguese Association of Metal and Mixed Construction (CMM) aimed at promoting the digitalization of processes in SMEs within the metal and mixed construction sector in Portugal. The website serves as an informational and promotional platform offering details about workshops, events, and digital transformation initiatives such as BIM, 3D printing, and robot welding. The target audience primarily consists of small and medium enterprises in the construction industry seeking to adopt Industry 4.0 technologies. Technically, the website is built on WordPress using the Divi theme, leveraging modern web fonts and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in compliance and security transparency.

G

GoDaddy Operating Company, LLC

fratellimantova.com

0

The website is a professionally designed domain sales landing page hosted on the Afternic platform, a well-known domain marketplace owned by GoDaddy Operating Company, LLC. It offers the domain fratellimantova.com for sale with clear pricing options including buy now and lease to own. The site targets German-speaking domain buyers and businesses looking for premium domain names. The presence of GoDaddy branding and a high Trustpilot rating enhances its credibility. Technically, the site uses modern web technologies such as React and Next.js, served via Akamai CDN, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced, security headers present, and reCAPTCHA protecting forms. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. However, WHOIS data for the domain www.afternic.com is unavailable, likely due to querying a subdomain rather than the registered domain, which slightly impacts trust analysis. Overall, the site demonstrates a strong business and technical posture with minor gaps in WHOIS transparency.

S

Synergy Technologies, LLC

basilur.com

0

Synergy Technologies, LLC operates a domain marketplace platform specializing in the sale, lease, and lease-to-own options for premium domain names. The company targets individuals and businesses looking to secure valuable domain assets with flexible payment plans. The website presents a professional and consistent brand image, supported by a domain registration dating back to 1996, indicating a mature presence in the domain services market. The business operates primarily from the Cook Islands and Nevis, with clear contact information and a focus on domain-related services. Technically, the website leverages modern JavaScript frameworks including Laravel Livewire and Alpine.js, integrates Google Tag Manager and reCAPTCHA for analytics and security, and uses DigitalOcean for hosting assets. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in security headers and DNS security. From a security perspective, the site enforces HTTPS, includes CSRF tokens and honeypot fields in forms, and integrates Google reCAPTCHA to mitigate spam. However, DNSSEC is not enabled, and HTTP security headers are absent, representing areas for enhancement. No explicit security policies or incident response contacts are published, which could be improved to increase trust and compliance. Overall, the website is safe, professional, and credible with moderate tracking and privacy compliance. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security and incident response policies, and enhancing privacy compliance to align with GDPR standards. These steps will strengthen the security posture and business credibility of Synergy Technologies, LLC.

I

Infosteel

scorewithsteel.com

0

The website 'Score With Steel' operated by Infosteel serves as an information and promotional platform for steel construction projects primarily in Belgium and Luxembourg. It targets professionals in the steel construction industry, architects, and project owners by providing project showcases, testimonials, and educational content. The site is built on Joomla CMS with modern UIkit framework and includes interactive elements such as sliders and a project submission form protected by CAPTCHA. While the site is well-structured and professionally designed, the absence of WHOIS data raises concerns about domain registration legitimacy. Security posture is adequate with HTTPS and CAPTCHA usage, but lacks advanced security headers and explicit privacy and cookie policies. Overall, the site is a credible industry resource but would benefit from improved transparency and security practices.

S

Stanley/Stella

stanleystella.com

0

Stanley/Stella is a premium European e-commerce retailer specializing in sustainable blank apparel designed for customization. Founded in 2011, the company positions itself as a leader in eco-conscious clothing, targeting businesses and individuals seeking quality sustainable garments. The website supports multiple languages and countries, enhancing its accessibility and market reach. Technically, the site is built on Magento with integrations of modern JavaScript frameworks and analytics tools such as Piwik PRO and New Relic, indicating a mature digital infrastructure. Security practices include HTTPS enforcement, secure cookie handling, and domain transfer protection, although DNSSEC is not enabled. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates a solid security posture and professional business credibility.

P

PROHELP SERVICES, s.r.o.

komunikacni-systemy.cz

0

PROHELP SERVICES, s.r.o. operates the website komunikacni-systemy.cz, providing wireless full-duplex communication systems tailored for retail, hospitality, manufacturing, and service industries. Their key products, Quail Digital Pro9 and Pro10, target businesses requiring efficient team communication solutions such as quick service restaurants, drive-thru operations, warehouses, and hotels. The company positions itself as a specialist in communication technology within the Czech Republic and surrounding regions, leveraging a B2B business model. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, FontAwesome, and various plugins for GDPR compliance, customer support, and media embedding. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. HTTPS is enforced, and cookie consent mechanisms are implemented, reflecting a mature digital infrastructure. From a security perspective, the site benefits from HTTPS and cookie consent compliance but lacks visible HTTP security headers and explicit incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, impacting overall trustworthiness. Overall, the website presents a professional and trustworthy front for PROHELP SERVICES, s.r.o., but the missing WHOIS information and lack of some security best practices suggest areas for improvement to enhance credibility and security posture.

PROHELP SERVICES, s.r.o. is a Czech-based company specializing in communication solutions across various sectors including office environments, retail, industrial settings, security forces, and marine applications. The company offers a range of products such as telephones, radios, headsets, voice communicators, intercoms, and safety equipment, complemented by services like web design, marketing, and support. Their market position is that of a niche specialist providing tailored communication solutions to business clients. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the website is built on WordPress, leveraging modern plugins for SEO, GDPR compliance, and customer support. It uses common web technologies such as jQuery and Google Maps API, and implements HTTPS with good SSL configuration. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR. However, explicit security policies, incident response plans, and vulnerability disclosure information are not present. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate. Overall, the website presents a solid digital presence with good privacy compliance and business credibility. Strategic improvements in security transparency and WHOIS data verification are recommended to enhance trust and compliance.

DYNEX is a Czech Republic-based company specializing in the development and production of laboratory devices and diagnostics, serving a global market through exports. The website presents a professional image with clear navigation and relevant content targeting laboratories and healthcare professionals. The business model focuses on manufacturing and distribution of specialized laboratory instruments, supported by cooperation and project services. The company maintains a medium-sized presence with consistent branding and trust indicators such as company certificates and detailed contact information. Technically, the website uses a custom CMS hosted by Český hosting (THINline s.r.o.) and integrates modern tracking tools like Google Analytics and Google Tag Manager. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Security evaluation shows a good baseline but identifies gaps in published security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance. No adult or questionable content is present, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website is trustworthy and professional with room for improvement in privacy compliance and security transparency. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to strengthen the security posture and regulatory compliance.

M

MyWebdesign.cz s.r.o.

mywebdesign.cz

0

MyWebdesign.cz s.r.o. is a Czech-based technology company specializing in custom development of extensive e-commerce platforms and mobile applications. With over 20 years of experience, the company serves businesses aiming to scale their online sales, offering tailored solutions including B2B and B2C functionalities, integration with accounting and inventory systems, and 24/7 support. The website reflects a professional and trustworthy brand with strong client testimonials from notable companies such as ZOOT and Plzeňský Prazdroj. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with Google Fonts and Google reCAPTCHA v3 integrated for spam protection. Hosting is managed by REG-ZONER, consistent with WHOIS data. The site is mobile-optimized, fast-loading, and SEO-friendly, though it lacks some advanced security headers and publicly available privacy and cookie policies. From a security perspective, the site uses HTTPS and reCAPTCHA, but the absence of explicit security headers and privacy documentation indicates room for improvement. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, supporting legitimacy and trustworthiness. Overall, the website presents a high-quality, professional digital presence with minor compliance gaps. Strategic enhancements in privacy compliance and security headers would further strengthen the security posture and regulatory adherence.

S

Střední odborná škola požární ochrany a Vyšší odborná škola požární ochrany

hasici-vzdelavani.cz

0

The website hasici-vzdelavani.cz serves as an educational portal dedicated to fire protection units in the Czech Republic. It is a collaborative project between the Ministry of the Interior's Fire Rescue Service and a specialized vocational school for fire protection. The portal provides a variety of training materials including texts, images, videos, and e-learning modules aimed at supporting professional development in fire safety and emergency response. The site targets fire protection professionals and volunteers, offering structured content relevant to their training needs. Technically, the site is built on Drupal 7 with jQuery and standard web technologies. While functional, the use of an older CMS version and lack of modern security headers indicate potential technical debt and security risks. The site shows moderate performance and basic mobile optimization. No advanced analytics or tracking tools are detected, suggesting minimal user tracking. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, which is positive. However, the absence of security headers such as Content-Security-Policy and HSTS reduces its security posture. There are no visible privacy or cookie policies, which is a compliance gap under GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is a legitimate, government-affiliated educational resource with moderate technical maturity and some security and compliance shortcomings. Strategic improvements in security headers, privacy compliance, and CMS modernization are recommended to enhance trust and resilience.

S

Sdružení hasičů Čech, Moravy a Slezska (SH ČMS)

vzdelavani-dh.cz

0

The website www.vzdelavani-dh.cz serves as an e-learning platform dedicated to the education of voluntary firefighters affiliated with the Sdružení hasičů Čech, Moravy a Slezska (SH ČMS) in the Czech Republic. It offers multimedia courses, interactive tests, and performance tracking to facilitate knowledge acquisition and verification. The platform targets members of SH ČMS and aims to provide an accessible and intuitive online learning experience. The website branding and content align well with the stated mission, although no detailed company founding or registration data is provided. From a technical perspective, the site employs common web technologies including Bootstrap, jQuery, Font Awesome, and Google Analytics for tracking user interactions. The design is responsive and user-friendly, with clear navigation and relevant content. However, the absence of detected security headers and privacy policies indicates room for improvement in security and compliance maturity. The WHOIS data is unavailable, which limits the ability to verify domain legitimacy and age, impacting trustworthiness assessments. Security posture is moderate; HTTPS is assumed but not explicitly confirmed in the data. No critical vulnerabilities or exposed sensitive data were found in the HTML content. The site lacks privacy and cookie policies, which is a compliance gap under GDPR. No contact information for security incidents or data protection officers is provided. Overall, the site appears safe and professional but would benefit from enhanced security controls and transparency. The overall risk is moderate with no immediate red flags, but the lack of WHOIS data and privacy compliance measures suggest the need for strategic improvements to bolster trust and regulatory adherence.

Č

Česká hasičská jednota

hasicskajednota.cz

0

Česká hasičská jednota is a Czech firefighting association providing community services, fire safety education, and support to firefighters. The website serves as an information hub for firefighting activities and public safety in the Czech Republic. The organization appears to be a medium-sized non-profit entity with a focus on government and community sectors. The website is built on a custom CMS platform with integration of Google Analytics, Google Tag Manager, and Google Maps API, reflecting a moderate level of digital maturity. The site is mobile optimized and uses modern web technologies, although some accessibility features could be improved. Security posture is good with HTTPS enforced and standard security headers present, but could benefit from additional headers like CSP and SRI for external scripts. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. However, contact information and incident response details are not explicitly provided, which could be enhanced to improve trust and transparency. Overall, the website is professional, trustworthy, and serves its target audience effectively.

D

DevaGroup

devagroup.pl

0

DevaGroup is a well-established Polish digital marketing agency specializing in SEO, SEM, Google Ads, social media campaigns, marketplace advertising, and professional training. With a history dating back to 2005 and certifications such as Google Premier Partner and Allegro Ads Partner, they hold a strong market position in Poland. The website demonstrates a mature technical infrastructure based on WordPress with modern analytics and tracking tools integrated. Security posture is solid with HTTPS and anti-spam measures, though some security headers could be improved. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, the site projects professionalism and trustworthiness, supporting their business credibility.