Security Directory

L

Lumar IG d.o.o.

lumar.si

0

Lumar IG d.o.o. is a well-established Slovenian company specializing in the design and construction of high-quality, sustainable prefabricated wooden houses. With over 30 years of experience and a domain registered since 1999, Lumar holds a strong market position as a leading manufacturer of energy-efficient homes in Slovenia and neighboring markets. Their product portfolio includes various house models such as Avantgarde, Classic, Individual, Greenline, and Blackline, catering to diverse customer needs. The company emphasizes sustainability, energy efficiency, and customer-centric architectural services, supported by numerous awards and certifications. The website reflects a professional and comprehensive digital presence with clear navigation, rich content, and modern technology usage.

A

Asocijacija online medija

aom.rs

0

Asocijacija online medija (AOM) is a Serbian online media association established in 2015, serving as a platform for media advocacy, news dissemination, and publication sharing within the online media sector. The website provides structured content including news, press releases, publications, and information about its members, targeting media professionals and the general public interested in media freedom and online media developments in Serbia. The organization maintains an active digital presence with social media integration and a contact form for communication. Technically, the website is built on WordPress with performance optimizations such as LiteSpeed Cache and lazy loading of images. It uses Google reCAPTCHA for form security and serves content over HTTPS, ensuring basic security standards. The site is mobile optimized and has good SEO practices, although accessibility features are basic. No advanced security headers were detected, and DNSSEC is not enabled, representing minor security gaps. From a security perspective, the site shows a moderate security posture with HTTPS and form protections in place but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. The domain registration is consistent with the organization's profile, with no suspicious patterns detected. Overall, the website is functional, professional, and trustworthy within its niche but would benefit from enhanced privacy compliance, security policy publication, and technical security improvements to strengthen its security posture and user trust.

The website ampthemag.com is currently inaccessible due to a Cloudflare origin DNS error (error 1016), indicating that Cloudflare cannot resolve the domain's origin server. This results in a complete block of website content, preventing any meaningful analysis of business operations, content, or user experience. The domain is registered with MarkMonitor Inc. since 2014 and appears legitimate, but the DNS misconfiguration severely impacts accessibility and trust. From a technical perspective, the site is protected by Cloudflare, which provides performance and security services, but the origin DNS error suggests a critical infrastructure issue that must be resolved to restore service. No CMS, frameworks, or business-related metadata are detectable due to the error page. The site lacks visible privacy, cookie, or terms of service policies, and no contact information or business details are present. Security posture is limited by the lack of accessible content and metadata, but the domain registration status and registrar are positive indicators. However, the absence of DNSSEC and security headers, combined with the DNS error, highlight areas for improvement. No adult or questionable content is detected, and the site appears safe but non-functional. Overall, the site scores low on content quality, privacy compliance, and business credibility due to inaccessibility. Strategic recommendations focus on resolving DNS configuration issues, enabling DNSSEC, implementing security headers, and publishing essential compliance and contact information once the site is restored.

The website petsymposium.org represents the Privacy Enhancing Technologies Symposium (PETS) and its associated open access journal, Proceedings on Privacy Enhancing Technologies (PoPETs). It serves as a platform for privacy researchers and professionals to submit, review, and publish research papers on privacy technologies. The organization behind the site is The Free Haven Project, a US-based entity with a domain established in 2007, indicating a mature and stable presence in the academic privacy research community. The site provides detailed event information, submission deadlines, and links to past symposiums and awards, targeting an audience of privacy experts and academics. Technically, the website employs standard HTML and CSS with responsive design, ensuring good mobile usability and navigation clarity. However, there is no evidence of advanced frameworks or CMS usage, and no analytics or tracking scripts were detected, reflecting a minimalistic and privacy-conscious technical approach. The hosting and registrar information is consistent with the domain's academic nature, though no explicit hosting provider details were found. From a security perspective, the site uses HTTPS (implied by the URL), but no DNSSEC is enabled, and no security headers were detected in the provided data. There are no visible privacy or cookie policies, which is a compliance gap, especially for GDPR. No incident response or vulnerability disclosure information is present. The WHOIS data is transparent and consistent with the website's claims, enhancing trustworthiness. Overall, the security posture is moderate but could be improved by implementing DNSSEC, security headers, and formal privacy and cookie policies. The overall risk assessment is low given the academic nature and lack of sensitive transactions or personal data collection on the homepage. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing a vulnerability disclosure policy to enhance security and compliance posture. These steps will improve trust and align the site with best practices for privacy and security in academic publishing.

A

Ayuntamiento de Avilés

avilesvoluntariado.org

0

Avilés Voluntariado is a municipal government initiative by the Ayuntamiento de Avilés, Spain, focused on promoting and coordinating volunteer activities within the city. The website serves as an information hub connecting volunteers with local entities and projects, offering training, recognition, and resources to foster community participation. The platform is positioned as a trusted local government service with a clear target audience of citizens interested in volunteering and social engagement. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, BuddyPress, and various plugins for community and GDPR compliance. It is hosted by Acens Technologies, S.L.U., and uses HTTPS with a good security posture, although some security headers could be improved. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing discoverability. From a security perspective, the site demonstrates solid practices such as HTTPS enforcement, GDPR cookie consent, and secure form handling. No critical vulnerabilities or suspicious activities were detected. The WHOIS data aligns well with the website's municipal nature, showing consistent registration details and no privacy protection, which is appropriate for a public entity. Overall, the website is professional, trustworthy, and well-maintained, serving its community-oriented mission effectively. Strategic recommendations include enhancing security headers, enabling DNSSEC, and publishing explicit security and incident response policies to further strengthen trust and compliance.

M

Madbox • Mitja Krančan s.p., oblikovanje in spletne strani

madbox.si

0

Madbox • Mitja Krančan s.p. is a small Slovenian business specializing in modern web design and graphic design services, focusing on mobile-optimized websites and promotional materials. The company targets local businesses and individuals seeking creative and responsive digital solutions. The website is professionally designed using WordPress with Elementor and includes interactive elements such as sliders and animations. Technical infrastructure is modern and includes SEO optimization via Yoast and security measures like HTTPS and Google reCAPTCHA on forms. However, the site lacks explicit privacy and cookie policies, which impacts compliance and trust. Security posture is adequate but could be improved with additional headers and direct contact information for incident response. Overall, the business presents a credible and professional image with room for enhanced privacy and security practices.

E

Escape Room Enigmarium Ljubljana

escape-room.si

0

Escape Room Enigmarium Ljubljana operates a well-established and highly rated escape room entertainment center in Ljubljana, Slovenia. Founded in 2014, it offers immersive physical escape games, team building events, and online gamification experiences. The business holds notable industry recognition such as Terpeca nominations and maintains a strong presence on social media and review platforms like TripAdvisor. Technically, the website is built on WordPress using modern plugins and themes, with good SEO and mobile optimization. Security posture is solid with HTTPS, cookie consent management, and bot protection, though some HTTP security headers could be improved. Privacy compliance is robust, with clear cookie policies and GDPR adherence. Overall, the site reflects a professional, trustworthy, and user-friendly digital presence.

S

Slovenske železnice d.o.o.

zelezniskimuzej.si

0

Železniški muzej is a Slovenian railway museum operated by Slovenske železnice d.o.o., showcasing the history and heritage of railway transport in Slovenia. The museum offers permanent exhibitions, guided tours, and educational programs targeting the general public, railway enthusiasts, and tourists. The website is professionally designed using WordPress and modern front-end technologies, providing good user experience and mobile optimization. Social media integration and clear contact information enhance its digital presence. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy compliance mechanisms. Overall, the website is trustworthy and serves its cultural and educational mission effectively.

SŽ - Železniško gradbeno podjetje Ljubljana d.d. is a specialized Slovenian company focused on the construction and maintenance of railway infrastructure, including upper track structures and signal safety devices. Established in 2001, it holds a unique market position as the sole specialized provider in Slovenia for upper railway track construction, trusted by the state and private railway owners. The website reflects a professional and consistent brand image with clear business information and a focus on railway infrastructure projects. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper, and ScrollReveal, providing a moderate performance and good mobile optimization, though accessibility and SEO could be improved. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Overall, the site is safe, trustworthy, and compliant with GDPR, with no signs of adult or questionable content.

V

ver.di - Vereinte Dienstleistungsgewerkschaft

dju.social

0

The website dju.social is a Mastodon-based decentralized social network instance operated by the German trade union ver.di, specifically its Deutsche Journalistinnen- und Journalisten-Union (dju) division. It provides a platform for media professionals and interested parties to engage in friendly and constructive social exchange. The platform leverages the open-source Mastodon software (version 4.2.17) and offers features such as user profiles, content discovery, and hashtag exploration. The domain registration is consistent with the organization's identity and country, indicating legitimacy and trustworthiness. Technically, the site uses modern web technologies including React and WebSockets, with a moderate performance profile and good mobile optimization. However, some security best practices such as enabling DNSSEC and implementing security headers are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information and security policies are not explicitly provided on the explored page. The security posture is generally good with HTTPS enforced and domain transfer protection enabled, but improvements are recommended to enhance DNS security and security headers. The content is safe for general audiences, focusing on media and journalism without any adult or explicit content. Overall, the site is professionally designed, trustworthy, and serves a niche community effectively.

V

Visit Celje

visitcelje.eu

0

Visit Celje is a regional tourism promotion website dedicated to showcasing the cultural, historical, and recreational attractions of Celje city in Slovenia. The site offers detailed information on events, experiences, accommodations, and local cuisine, targeting tourists and visitors interested in exploring the city. The business model includes tourism promotion and an online shop for related products, positioning itself as a key regional tourism resource. Technically, the website is built on WordPress with WooCommerce integration, leveraging modern web technologies such as jQuery, Google Maps API, and Google Fonts. The site is mobile-optimized and provides multi-language support, enhancing accessibility for international visitors. Security-wise, the website enforces HTTPS and uses Google reCAPTCHA, but lacks some security headers and formal privacy and cookie policies, which are important for compliance and user trust. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

M

Madwise d.o.o.

madwise.si

0

Madwise d.o.o. is a Slovenian digital marketing agency specializing in web development, SEO, online advertising, and lead generation. Established in 2014, the company has built a strong market position with a portfolio of notable clients and certifications including Google Partner and Meta Certified Partner. Their website reflects a professional and comprehensive service offering targeting businesses seeking to enhance their digital presence. Technically, the site employs modern tracking and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and Salesmanago, indicating a mature digital infrastructure. The website is well-optimized for mobile devices and SEO, with clear navigation and high-quality content. Security posture is good with HTTPS enforced and secure form handling, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a high level of professionalism and trustworthiness with no signs of malicious content or blocking mechanisms.

A

Ayuntamiento de Avilés

avilesparticipa.org

0

Avilés Participa is a government-backed community participation and social change project managed by the Ayuntamiento de Avilés in Spain. The website serves as a platform to engage local citizens, provide information on community projects, events, and volunteering opportunities, and facilitate participation in municipal budget proposals and local councils. The site is well-branded, consistent, and targets the local population with relevant content and resources. Technically, it is built on WordPress with a modern tech stack including Bootstrap, BuddyPress, and various plugins for enhanced functionality. The site is hosted by Acens Technologies and uses HTTPS with a good SSL configuration, though DNSSEC is not enabled. Security best practices are partially implemented, with room for improvement in security headers and vulnerability disclosure. Privacy compliance is lacking as no privacy or cookie policies are found, which is a notable gap. Overall, the site is professional, trustworthy, and safe for general audiences.

The website up-rs.si is a government-operated access gateway managed by the Slovenian Ministry for Digital Transformation (Ministrstvo za digitalno preobrazbo). The domain is well-established since 1998 and aligns with the official government sector. The site content is minimal and currently displays an access forbidden message, indicating it is a restricted portal likely intended for authorized users only rather than public visitors. This limits the ability to analyze the full website content and services. Technically, the site lacks visible modern web technologies, security headers, or privacy policies, and no HTTPS information is available from the provided data. The minimal content and blocking mechanism suggest a secure access control layer but also limit transparency and user engagement. Overall, the site demonstrates a basic government digital presence but requires improvements in security posture and user-facing information.

The website at rclsyst.rs currently serves only a default placeholder page with no meaningful content or business information. The domain is registered since 2008 with BeotelNet-ISP d.o.o., a hosting provider, indicating the domain is legitimate but likely inactive or under development. There is no evidence of a functioning business presence or digital maturity on the site. Technically, the site lacks HTTPS, security headers, and any modern web technologies or content management systems. Security posture is weak due to absence of SSL and security best practices. No privacy, cookie, or terms of service policies are present, indicating non-compliance with GDPR and other regulations. Overall, the site presents a low trust profile and minimal user engagement.

N

Nimaint

radiorogla.si

0

Radio Rogla is a regional Slovenian media company operating a radio station with live streaming, music charts, and local news content. The website targets the general public in the Štajerska region, providing entertainment and community engagement through various digital channels. The business model centers on media broadcasting with advertising and community-driven content. Technically, the site is built on WordPress with Elementor and WooCommerce plugins, integrating Google Analytics and Google Maps APIs, reflecting a moderate level of digital maturity. The website is mobile optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and anonymized Google Analytics tracking; however, it lacks security headers and visible privacy or cookie policies, indicating compliance gaps. Overall, the site is legitimate and trustworthy but would benefit from enhanced privacy compliance and security best practices.

P

Projekt O.S.P.

projektosp.si

0

Projekt O.S.P. is a Slovenian non-profit initiative dedicated to the maintenance and safety of climbing sites. It engages the climbing community through donations, volunteering, and awareness campaigns to ensure climbing areas remain safe, accessible, and well-maintained. The website serves as an information hub and donation platform, supported by local climbing organizations and sponsors. Technically, the site is built on WordPress with common plugins and integrates Google Analytics and Adsense for tracking and monetization. While the site uses HTTPS and standard security practices, it lacks visible security headers and privacy/cookie policies, which are important for GDPR compliance. The domain registration is consistent with the organization's Slovenian focus, enhancing trustworthiness. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security hardening.

P

Planinska zveza Slovenije

worldcupslo.com

0

The website worldcupslo.com serves as the official platform for the World Cup in sport climbing held in Koper, Slovenia, organized by Planinska zveza Slovenije. It provides comprehensive event information including schedules, results, news, sponsor details, and multimedia content targeting sport climbing enthusiasts and the general public interested in this sport. The site is well-branded and supported by recognized sponsors and partners, establishing a strong market position within the sport event domain in Slovenia. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience and interactivity. The site is mobile-optimized and offers good navigation and content relevance. However, performance is moderate and accessibility features are basic, indicating room for technical improvements. From a security perspective, the website uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There are no published privacy or cookie policies, which is a compliance gap. No incident response or vulnerability disclosure mechanisms are evident. The domain registration is transparent and consistent with the website's purpose, enhancing trustworthiness. Overall, the website is professional and trustworthy but would benefit from enhanced security practices and privacy compliance to reduce risk and improve user trust.

Α

ΑΧΑΪΑ ΑΝΑΠΤΥΞΙΑΚΗ Α.Ε.

achaiasa.gr

0

ΑΧΑΪΑ ΑΝΑΠΤΥΞΙΑΚΗ Α.Ε. is a regional development agency operating primarily in the Achaia region of Greece. The company focuses on the implementation and management of EU-funded rural and fisheries development programs such as LEADER and CLLD. It serves local government entities, agricultural and fisheries stakeholders, and local communities by facilitating sustainable development projects and partnerships. The website reflects a solid regional presence with clear information on programs, news, and contact details. Technically, the site is built on Joomla CMS with common JavaScript libraries and includes accessibility and cookie consent features, indicating a moderate level of digital maturity. Security posture is adequate but could be improved by adding explicit security headers and updating legacy libraries. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and serves its target audience effectively.

The website odontotos.com is dedicated to promoting the Odontotos rack railway, a historic and scenic narrow-gauge railway line in Greece connecting Diakopto and Kalavryta. It serves as an informational portal targeting tourists and railway enthusiasts, providing detailed historical context, technical specifications, renovation updates, schedules, ticket prices, and regional tourism links. The site is primarily in Greek with some English navigation options, reflecting its regional focus. From a technical perspective, the website is built using basic HTML, CSS, and JavaScript without modern CMS or frameworks. The design is dated and lacks mobile optimization and accessibility features. There is no evidence of HTTPS enforcement or security headers, which raises concerns about security posture. No privacy, cookie, or terms of service policies are present, indicating low privacy compliance. Contact information is limited but includes an email and phone numbers, and social media presence is limited to a Facebook group link. Security-wise, the site lacks modern security best practices such as HTTPS, security headers, and secure forms. There are no visible vulnerabilities but also no advanced protections. The absence of privacy and cookie policies suggests non-compliance with GDPR and related regulations. Overall, the site is functional for informational purposes but requires significant improvements in security, privacy, and technical modernization. The overall risk is moderate given the lack of security controls and privacy compliance, but the content is safe and non-malicious. Strategic recommendations include implementing HTTPS, adding security headers, publishing privacy and cookie policies, improving mobile responsiveness, and enhancing user experience and trust signals.

M

Municipality of Kalavrita

kastriacave.gr

0

The website www.kastriacave.gr is an official tourism and cultural heritage site managed by the Municipality of Kalavrita, Greece, promoting the Cave of the Lakes attraction. It provides detailed information about the cave's natural, paleontological, and anthropological significance, along with visitor information and local tourism services. The site targets tourists and researchers interested in natural and cultural heritage. Technically, it is built on Joomla CMS with the Helix framework, uses standard web technologies like jQuery, and integrates Google Analytics for visitor tracking. The site is mobile responsive and has a professional design with clear navigation. Security-wise, the site uses HTTPS but lacks security headers and does not provide privacy or cookie policies, indicating GDPR compliance gaps. No forms or email contacts are present, limiting direct user data collection. Overall, the site is legitimate and trustworthy but could improve privacy and security practices.

F

Fabricatorz Foundation

fabricatorz.org

0

Fabricatorz Foundation is a small non-profit organization focused on decentralizing culture through grants supporting technology, art, and cultural preservation projects. The website presents active grant initiatives and provides a contact email and subscription form for updates. The foundation positions itself as a niche player in the intersection of technology and culture, targeting artists, technologists, and preservationists. Technically, the site is built on WordPress with WooCommerce and Jetpack plugins, hosted behind Cloudflare DNS, and uses HTTPS with a good SSL configuration. However, it lacks DNSSEC and advanced security headers, and no formal privacy or cookie policies are published. Security posture is moderate with room for improvement in policy transparency and technical controls. Overall, the site is accessible, professionally designed, and trustworthy, but privacy compliance and security documentation need enhancement.

A

AECM - European Association of Guarantee Institutions

aecm.eu

0

AECM is a well-established European non-profit association representing guarantee institutions. Founded in 1992, it serves as a platform for knowledge exchange and advocacy towards EU institutions. The website reflects a professional and consistent brand image, targeting financial institutions and stakeholders in the European guarantee sector. The business model is membership-based, focusing on promoting guarantee instruments and facilitating collaboration among members. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several reputable plugins. Hosting is provided by OVH SAS, a known provider. The site demonstrates good digital maturity with mobile optimization, SEO best practices, and cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the site is trustworthy and professionally maintained, with clear contact information and transparent policies.

G

Gostilna pri Zotlarju

prizotlarju.si

0

Gostilna pri Zotlarju is a small family-run hospitality business located in the village of Buje, Slovenia. Established in 2009, it offers traditional Brkini and Karst regional cuisine, seasonal and locally sourced ingredients, and 'a la napoletana' style pizzas. The business also provides accommodation with breakfast in newly renovated rooms. The website reflects a well-established local restaurant with a focus on quality food, family-friendly environment, and regional tourism. The site is professionally designed using WordPress and the Divi theme, with good mobile optimization and clear navigation. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information and social media presence are clearly provided, enhancing business credibility.

D

Društvo za razvoj podeželja med Snežnikom in Nanosom

las-snezniknanos.si

0

The website represents a Slovenian local action group focused on rural development between the Snežnik and Nanos regions. It operates as a non-profit organization facilitating regional projects, cooperation, and community engagement, primarily funded through EU and national programs. The site provides structured information about projects, calls for funding, and organizational details, targeting local municipalities and stakeholders. Technically, the website uses standard web technologies such as HTML5, CSS3, JavaScript, jQuery, and some UI libraries like Slick Carousel and Shadowbox. The site is moderately optimized for mobile devices and has a clear navigation structure but lacks advanced CMS or modern frameworks. Security posture is basic with HTTPS assumed but no visible security headers or advanced protections. Privacy and cookie policies are missing, indicating compliance gaps. Contact information is not explicitly provided, limiting user engagement channels. Overall, the site is functional and professional but could improve in privacy compliance, security best practices, and contact transparency.

Bike Slovenia is a small tourism business specializing in guided cycling tours and bike rentals in Slovenia, particularly in the Green Karst region. The company targets active travelers and cycling enthusiasts seeking customized and group cycling experiences. The website is built on Joomla CMS with modern frameworks like Bootstrap and integrates tracking and marketing tools such as Google Analytics and Amplitude. It implements a cookie consent mechanism with user control and uses hCaptcha for form security. However, it lacks a published privacy policy, terms of service, and explicit contact information, which are important for compliance and trust. The domain registration is consistent with the business location and age, supporting legitimacy. Overall, the website is professional and functional but could improve privacy and security transparency.

Tomaž Penko is a small professional service provider based in Slovenia specializing in photography, graphic design, and cartography. The website presents a well-structured portfolio of services including various photography styles, graphic design projects, and cartographic works, complemented by workshops. The business targets individuals and organizations seeking high-quality visual and design services. Technically, the website is built on Joomla CMS with Bootstrap framework, optimized for performance and mobile responsiveness. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance documentation.

L

Ljubljana Airport

lju-airport.si

0

Ljubljana Airport operates as the primary international airport in Slovenia, providing comprehensive flight information, travel destinations, and airport services to passengers and partners. The website is well-structured, professionally designed, and targets travelers and business partners with relevant content and services. The technical infrastructure leverages SilverStripe CMS, Azure DNS hosting, and modern web technologies ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities, although additional security headers could enhance protection. Privacy compliance is robust with GDPR-aligned policies and consent management. Overall, the website reflects a mature digital presence consistent with a medium-sized transportation entity.

S

STIEBEL ELTRON

stiebel-eltron.com.au

0

STIEBEL ELTRON is a well-established company specializing in premium hot water and heating solutions, with a strong focus on energy efficiency and sustainability. The website reflects a mature business with over 100 years of expertise, offering a broad range of products including electric water heaters, heat pumps, ventilation systems, room heaters, and water filters. Their market position is reinforced by industry certifications and a consistent brand presence targeting Australian residential and commercial customers. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, and Hotjar. The site is mobile-optimized, well-structured, and provides a professional user experience. However, there is room for improvement in security headers and privacy compliance mechanisms. From a security perspective, the site uses HTTPS and secure forms but lacks visible security headers and incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy-protected, which is common for commercial entities, though it limits direct verification of registrant details. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The overall risk assessment is low, with recommendations focusing on improving security headers, implementing cookie consent for privacy compliance, and publishing incident response or vulnerability disclosure policies to enhance trust and compliance.

S

STIEBEL ELTRON New Zealand

stiebel-eltron.co.nz

0

STIEBEL ELTRON New Zealand is a medium-sized company specializing in the supply of German-engineered heating and ventilation products including heat pumps, water heaters, room heaters, and ventilation systems tailored for the New Zealand market. The company holds a strong market position supported by recognized certifications such as the Superbrand status and memberships in reputable industry associations. Their website reflects a professional and consistent brand image targeting homeowners and businesses seeking energy-efficient heating solutions. Technically, the website employs modern frameworks like Bootstrap and integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, and Facebook Pixel. The site is mobile-optimized with good SEO practices but lacks some accessibility features. Security posture is moderate with HTTPS enabled and secure forms, but missing key security headers and published security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite active tracking scripts. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance the website's security and trustworthiness.

N

Nova Vizija d.d.

vizija.si

0

Nova Vizija d.d. is a well-established Slovenian company specializing in business, healthcare, and higher education information systems with over 30 years of experience. Their key offerings include ProPIS for business information systems, ProMedica for healthcare, ZPNet for employment services, and Novis for higher education institutions. The company targets institutional clients in Slovenia and possibly the broader region, positioning itself as a trusted provider with a strong project portfolio and client base. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential plugins for SEO, forms, and cookie compliance. Security posture is solid with HTTPS and reCAPTCHA, though there is room for improvement in security headers and published policies. Overall, the website is professional, user-friendly, and compliant with GDPR cookie consent requirements, reflecting a mature digital presence.

O

Občina Vojnik

vojnik.si

0

Občina Vojnik is the official municipal government website for the Vojnik municipality in Slovenia, providing residents, businesses, and visitors with comprehensive information about local governance, community services, tourism, and public projects. The site is well-structured and targets local citizens and stakeholders, offering access to forms, announcements, and contact details. The website is built on WordPress, leveraging common web technologies such as jQuery and Font Awesome, and is hosted under a Slovenian registrar consistent with its local government identity. The site demonstrates good digital maturity with mobile optimization and accessibility features, though it lacks some advanced security headers and cookie consent mechanisms. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but could be improved with additional security policies and headers. Overall, the website is trustworthy and professional, serving its purpose effectively as a government information portal.

M

Mestna občina Celje

celje.si

0

Mestna občina Celje is the official website of the City Municipality of Celje, Slovenia, providing comprehensive information about local government administration, public services, community projects, and citizen resources. The site targets residents, local businesses, and visitors interested in municipal affairs. It operates as a government entity with a medium-sized organizational scope and a well-established presence since 1996. The website uses Joomla CMS with common web technologies such as jQuery and MooTools, and integrates Google Analytics for visitor tracking. The design and content quality are good, with clear navigation and consistent branding. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit security policies. No critical vulnerabilities or suspicious content were detected. Overall, the site is trustworthy and professionally maintained, serving its public service role effectively.

D

DPK - dravinjski poslovni klub

dpk.si

0

DPK - dravinjski poslovni klub is a Slovenian regional business club focused on connecting executives, entrepreneurs, and craftsmen in the Dravinjska Valley. The club operates as a non-profit entity facilitating networking, events, and business collaboration among its members. The website reflects a small-sized organization with a clear regional focus and a business networking model. Technically, the site is built on WordPress using Astra theme and Elementor page builder, with additional plugins like Yoast SEO and Smart Slider 3, hosted by a Slovenian provider NEOSERV.si. The site is mobile optimized and performs moderately well, with good SEO practices in place. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and formal security or incident response policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

The website at konjice.si is currently inaccessible, returning a 403 Forbidden error page which blocks access to any meaningful content or metadata. The domain is registered since 2005 under AOI d.o.o., a Slovenian registrar, indicating a stable and legitimate registration history. However, the lack of accessible content prevents any detailed analysis of the business operations, services, or compliance posture. The technical infrastructure appears minimal with no detectable CMS, scripts, or external integrations. Security posture cannot be evaluated due to absence of accessible content and headers. Overall, the site is effectively non-functional from a user and security perspective, requiring remediation to restore access and enable further analysis.

K

Komunala vitanje

komunala-vitanje.si

0

Komunala Vitanje is a small municipal utility company based in Slovenia, providing essential public services such as potable water supply, wastewater management, road maintenance, public area upkeep, and funeral services. The website reflects a local public utility business with a clear focus on community service and environmental stewardship. The company appears to be well-established since 2017 and targets residents and businesses within the Vitanje municipality. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The presence of Google Analytics and CookieYes for cookie consent shows attention to user experience and privacy compliance. Security posture is good with HTTPS enforced and appropriate security headers, though the absence of a public security policy or incident response information suggests room for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, serving its audience effectively.

T

TIC Vitanje

tic-vitanje.si

0

TIC Vitanje operates as a local tourist information center focused on promoting tourism in Vitanje and the Rogla-Pohorje destination. The website provides comprehensive information about local attractions, events, accommodations, and cultural offerings, including the Center Noordung. The organization targets tourists, local residents, families, schools, and groups, offering services such as guided tours, event organization, and cultural exhibitions. The business model centers on tourism promotion and community engagement, supported by partnerships with local government and tourism entities. Technically, the website is built on WordPress with modern libraries such as jQuery and Bootstrap, integrating Google Analytics and YouTube for enhanced user experience and tracking. The site is mobile optimized and performs moderately well, with good SEO practices and structured data for enhanced search visibility. From a security perspective, the site uses HTTPS and implements basic security best practices, including secure cookies and consent checkboxes for personal data processing. However, it lacks explicit security policies, incident response contacts, and advanced security headers. No vulnerabilities or suspicious activities were detected. Privacy compliance is partial, with a comprehensive privacy policy present but no cookie consent banner. Overall, the website presents a trustworthy and professional digital presence for TIC Vitanje, with clear business credibility and good content quality. Strategic improvements in security policies, cookie consent mechanisms, and incident response readiness would enhance its security posture and compliance.

C

Center Noordung

center-noordung.si

0

Center Noordung is a Slovenian educational and cultural center focused on space technologies and the legacy of Herman Potočnik Noordung. The website presents a well-structured platform offering detailed information about exhibitions, guided tours, VR experiences, and educational programs targeting schools, families, and general visitors interested in space science. The business operates primarily in the education and technology sectors with a small-sized organizational footprint founded in 2018. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, featuring good SEO and accessibility implementations. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR, with clear contact information and active social media presence.

T

Tous à pied

tousapied.be

0

Tous à pied is a Belgian non-profit organization advocating for pedestrian rights and promoting walking as a vital mode of mobility in Wallonia and Brussels. The website serves as a platform to engage citizens, public authorities, educators, and professionals with resources, events, and advocacy campaigns. It enjoys a strong market position within its niche, supported by recognized partners and a clear mission to defend pedestrian rights. Technically, the website is built on WordPress with modern features such as PWA support and Google Analytics integration, reflecting a moderate to good digital maturity. Security posture is generally good with HTTPS enforced, though improvements are recommended in security headers and cookie consent mechanisms to enhance GDPR compliance. Overall, the site is professional, trustworthy, and well-structured, with no signs of malicious activity or content blocking.

The website www.profitableratecpm.com is currently inaccessible due to blocking by a security mechanism, likely a Web Application Firewall (WAF) or proxy detection system. The minimal HTML content only displays the message 'Anonymous Proxy detected.', indicating restricted access. No meaningful website content, metadata, or business information is available for analysis. The domain WHOIS data is unavailable, suggesting the domain is either unregistered, recently registered, or privacy-protected with no public data. This severely limits the ability to assess the business, technical infrastructure, or security posture comprehensively. The lack of HTTPS, security headers, and privacy policies further indicates a low maturity level in security and compliance.

The website kensalgreencemetery.com is currently inaccessible beyond a bot verification challenge page employing Google reCAPTCHA invisible technology. This indicates the presence of a Web Application Firewall (WAF) or security mechanism designed to prevent automated access. Due to this blocking, no substantive business content, contact information, or policies are accessible for analysis. The domain is registered with IONOS SE since 2005, indicating a mature and likely legitimate domain, but the lack of accessible content limits the ability to assess the business or its digital maturity. Technically, the site uses Google reCAPTCHA for bot mitigation but lacks DNSSEC and security headers based on the provided data, suggesting opportunities for improving domain and web security. The absence of privacy, cookie, or terms of service policies and contact details further reduces compliance and trustworthiness from a user perspective. Security posture is moderate given the use of HTTPS (implied by domain and reCAPTCHA usage) but is weakened by missing security headers and DNSSEC. The blocking mechanism itself is a security strength but also a barrier to user access and content evaluation. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the blocking and lack of visible information. Recommendations include enabling DNSSEC, implementing security headers, publishing privacy and cookie policies, and providing clear contact and incident response information to improve transparency and compliance. Additionally, reviewing the WAF configuration to balance security and user accessibility would enhance user experience and trust.

G

GIT SECURITY

git-sicherheit.de

0

GIT SECURITY is a specialized media portal focused on security-related topics including management, IT security, fire protection, and safety. It serves security professionals and decision-makers by providing news, articles, product information, events, webinars, whitepapers, and videos. The portal is affiliated with Wiley-VCH, a reputable publishing company, enhancing its credibility and market position within the security media niche. The website is professionally designed with consistent branding and good content quality, targeting a medium-sized audience primarily in Germany.

D

Društvo za razvoj podeželja med Snežnikom in Nanosom

razvoj-podezelja.si

0

Društvo za razvoj podeželja med Snežnikom in Nanosom is a small non-profit organization based in Slovenia focused on rural development and community support in the region between Snežnik and Nanos. The organization manages projects, organizes local events such as markets and community gatherings, and collaborates with local stakeholders to promote sustainable rural growth. Their website serves as an information hub for news, projects, and contact details, targeting local residents, farmers, artisans, and regional partners. Technically, the website is built on Joomla CMS using common JavaScript libraries like jQuery and Bootstrap, providing a moderately optimized and mobile-friendly user experience. However, the site lacks advanced SEO and accessibility features.

U

Urad RS za mladino - mlad.si

mlad.si

0

The website mlad.si is an official youth portal operated under the Urad RS za mladino, a governmental office in Slovenia. It serves as a comprehensive information and communication hub for young people in Slovenia and those working with youth. The portal offers news, events, educational content, and resources, positioning itself as a trusted and authoritative source in the youth sector. The site is well-branded, professionally maintained, and supported by a governmental parent organization, ensuring credibility and stability. Technically, the site is built on WordPress 6.8.2 with modern JavaScript libraries such as jQuery and integrates analytics tools like Google Tag Manager and Plausible Analytics. It employs GDPR-compliant cookie consent mechanisms and accessibility tools, reflecting a mature digital infrastructure. The hosting provider is HITROST.COM, consistent with the domain registration data. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The site is not blocked by any WAF or security challenge, allowing full content access. Overall, mlad.si presents a low-risk profile with strong business credibility and compliance posture. Strategic improvements could include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

S

Slovenski regionalno razvojni sklad

regionalnisklad.si

0

Slovenski regionalno razvojni sklad (SRRS) is a Slovenian public financial institution dedicated to regional development and rural growth. The organization provides favorable financing through various programs targeting agriculture, entrepreneurship, local infrastructure, and non-profit organizations. The website reflects a well-established institution with a clear market position as a key public funding source in Slovenia. It offers detailed information on financial products, application procedures, and sustainability initiatives, targeting Slovenian businesses, municipalities, and NGOs. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery, Swiper.js, and AOS for animations. It integrates Google Analytics, Microsoft Clarity, and Facebook Pixel for analytics and tracking, alongside Google reCAPTCHA for form security. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, explicit security headers are not evident, and no public security or incident response policies are found. The WHOIS data is consistent with the website's claims, showing a domain registered in 2020 by a Slovenian registrar, aligning with the organization's timeline. Overall, the website presents a trustworthy and professional public institution with strong content quality and technical implementation. Recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to improve security posture and transparency.

Δ

Δήμος Καλαβρύτων

kalavrita.gr

0

The website www.kalavrita.gr is the official online presence of the Municipality of Kalavryta, Greece. It serves as a comprehensive portal providing information about the municipality's administration, cultural heritage, tourism, and local news. The site targets residents, visitors, and stakeholders interested in the region's historical and cultural assets. The business model is typical of a government entity, focusing on public service and information dissemination. The site is well-structured with clear navigation and relevant content, reflecting a consistent and professional brand image. Technically, the website is built on Joomla CMS with the K2 component and uses several JavaScript libraries including jQuery 1.7 and MooTools. It is mobile responsive and optimized for various screen sizes, although some libraries are outdated. Performance is moderate, and SEO practices are adequately implemented. The site uses HTTPS, ensuring encrypted communications. From a security perspective, the site enforces HTTPS but lacks visible security headers and modern security practices such as a security.txt file or vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are missing, representing a compliance gap with GDPR and related regulations. Contact information is available primarily via contact forms and phone directories, but no direct emails or phone numbers are explicitly listed on the homepage. Overall, the website is a trustworthy and professional municipal portal with good content quality and business credibility. However, it would benefit from enhanced privacy compliance, updated technical components, and improved security practices to align with modern standards and regulations.

T

The Compatriot Johann Puch - Janez Puh Juršinci Society

janez-puh.si

0

The Compatriot Johann Puch - Janez Puh Juršinci Society operates as a small non-profit organization focused on preserving the legacy of Johann Puch through museum management and cultural promotion in Slovenia. The website serves as an informational portal for the museum, society activities, and related heritage content, targeting general audiences interested in historical and technical heritage. The society has established partnerships with local government and corporate sponsors, enhancing its community presence. Technically, the website employs basic web technologies including HTML5, CSS, JavaScript with jQuery and Modernizr, but lacks modern CMS or advanced frameworks. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. The site is accessible without WAF or blocking mechanisms, but lacks advanced security headers and visible SSL configuration details. Security posture is moderate with cookie consent implemented but missing critical elements such as privacy policy, security headers, and incident response contacts. No analytics or tracking scripts were detected, indicating minimal user tracking and privacy risk. The domain WHOIS data aligns well with the website content and business history, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security hardening, and technical modernization to improve user trust and regulatory adherence.

E

Experience Slovenia | Feel, enjoy, live. Like a local.

experience-slovenia.si

0

Experience Slovenia is a small hospitality business focused on offering tailored Slovenian travel experiences. The website's primary service is booking customized local experiences in Slovenia, targeting general tourists interested in authentic travel. The domain has been registered since 2017, indicating a stable presence in the market. However, the website content is minimal and appears to rely heavily on JavaScript for rendering, with no visible main content in the provided HTML snapshot. Technical infrastructure includes usage of Amazon AWS for hosting and Google Tag Manager for analytics, but lacks visible CMS or frameworks. Security posture is weak due to absence of security headers, privacy policies, and contact information. No forms or data collection mechanisms are visible, limiting exposure but also reducing user engagement and trust. Overall, the site requires significant improvements in content delivery, security, and compliance to enhance its digital maturity and user trust.

F

Fraport Slovenija, d.o.o.

fraport-slovenija.si

0

Fraport Slovenija, d.o.o. operates Ljubljana Airport, providing airport management and passenger services in Slovenia. The company is a subsidiary of Fraport AG and holds a key position in the Slovenian transportation sector. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for passengers, partners, and job seekers. Technically, the site uses Adobe Experience Manager CMS, integrates Adobe Analytics for data insights, and employs Usercentrics for GDPR-compliant cookie consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers could be improved. Overall, the site demonstrates a mature digital presence aligned with corporate standards.

P

Planinska zveza Slovenije

pzs.si

0

Planinska zveza Slovenije is a well-established, large non-profit organization dedicated to mountaineering and outdoor activities in Slovenia. It serves a large membership base and manages extensive mountain infrastructure including trails and huts. The website reflects a mature digital presence with rich content, social media integration, and membership services. Technically, the site uses a variety of JavaScript libraries and custom CMS solutions, with moderate performance and basic mobile optimization. Security posture is good with HTTPS and no exposed sensitive data, though improvements in security headers and vulnerability disclosure are recommended. Privacy compliance is addressed with cookie consent and privacy policy. Overall, the domain and website are consistent and trustworthy, supporting the organization's legitimacy.