Security Directory

Open SDG is an open source platform developed and maintained by the Office for National Statistics in the UK, focused on managing and publishing data related to the UN Sustainable Development Goals. The platform targets governments, localities, and organizations involved in SDG data management, offering flexible, customizable tools and comprehensive documentation. The website is professionally designed using modern static site generation technology (Jekyll) and hosted on AWS infrastructure, ensuring good performance and mobile optimization. Analytics tools such as Google Analytics and Hotjar are used with cookie consent mechanisms in place, although privacy policy and terms of service pages are not present. Security posture is strong with HTTPS enforced and domain registration consistent with the official government entity, but could be improved by enabling DNSSEC and adding security headers. Overall, the website is trustworthy, professional, and serves a niche government/non-profit sector audience effectively.

N

Niedersächsische Landeszentrale für politische Bildung

politische-medienkompetenz.de

0

The website politische-medienkompetenz.de is an educational platform operated by the Niedersächsische Landeszentrale für politische Bildung, a governmental institution in Germany focused on political media literacy. It provides free educational materials, tools, and thematic content aimed at educators, youth, and individuals interested in political media competence. The platform holds a strong regional position as an authoritative source for political education in Lower Saxony. Technically, the site is built on TYPO3 CMS, a robust open-source content management system, hosted on servers managed by agenturserver. The site demonstrates good mobile optimization, accessibility, and SEO practices, with structured navigation and meta tags for social sharing. Performance is moderate, with no evident technical debt or vulnerabilities in the visible code. From a security perspective, the site uses HTTPS and implements secure forms with CSRF protections. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No incident response or vulnerability disclosure policies are published, which could improve trust and security posture. Overall, the website is professional, trustworthy, and safe, with a strong focus on educational content. Strategic improvements in security headers, cookie consent, and transparency around security policies would further enhance its compliance and security maturity.

A

Aurora Club

auroraclub.hr

0

Aurora Club is a well-established hospitality and entertainment venue located in Primošten, Croatia, known for its large-scale nightclub facilities, multiple bars, dining options, and event hosting capabilities. The business targets tourists and locals seeking nightlife and party experiences, positioning itself as one of the premier clubs on the Croatian coast. The website reflects a mature digital presence built on WordPress with a modern theme and common plugins, offering good content quality and user experience. Privacy and cookie policies are implemented with consent mechanisms, supporting GDPR compliance. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and incident response information. Overall, the site is trustworthy and professionally maintained, with clear contact channels and social media integration.

BitLab d.o.o. is a medium-sized technology company based in Bosnia and Herzegovina, specializing in IT solutions including web development, mobile applications, 3D visualization, hosting, e-commerce, and education. Established in 2014, the company has a solid market presence with over 500 completed projects and a diverse client base including government and educational institutions. Their business model focuses on providing comprehensive digital services and products to businesses and organizations in the region. Technically, the website demonstrates a modern technology stack with a variety of backend and frontend frameworks, CMS options, and integration of analytics and social sharing tools. The site is mobile optimized and offers a good user experience with clear navigation and professional design. Hosting appears to be managed internally or through affiliated services, with DNSSEC enabled and SSL certificates in use, indicating a secure infrastructure. From a security perspective, the website benefits from HTTPS and DNSSEC but lacks visible security headers and formal security policies such as privacy or cookie policies. No forms or direct data collection mechanisms were detected in the provided content, reducing immediate risk exposure. However, the absence of privacy and cookie policies indicates compliance gaps, especially regarding GDPR and similar regulations. Overall, BitLab d.o.o. presents a trustworthy and professional online presence with strong business credibility and technical implementation. To enhance security posture and compliance, the company should implement security headers, publish privacy and cookie policies, and consider a vulnerability disclosure policy. These steps will improve user trust and regulatory adherence.

A

Antena Radio

antena.ba

0

Antena Radio is a small media company operating an online radio streaming platform targeting general audiences interested in contemporary music. The website provides live streaming, social media integration, and mobile app distribution, positioning itself as a local/regional broadcaster in Bosnia and Herzegovina. The technical infrastructure uses standard web technologies including HTML5, CSS3, JavaScript with jQuery, and integrates Google Analytics and Facebook SDK for tracking and social features. While the site is functional and well-branded, it uses an outdated jQuery version and loads some scripts over HTTP, which introduces security risks. The security posture is moderate with HTTPS enabled but lacks advanced security headers and visible privacy or cookie policies, indicating compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional but would benefit from security and privacy improvements.

Schweppes.com serves as a global brand portal for the Schweppes beverage company, providing regional navigation to localized websites primarily for North America and Europe. The site content is minimal and focused on brand presence rather than direct consumer engagement. Technically, the site uses legacy JavaScript libraries such as Prototype.js and modern tracking tools like Google Analytics and Google Tag Manager. However, there is no evidence of a CMS or advanced frameworks. Security posture is weak due to lack of visible HTTPS confirmation, security headers, and absence of privacy or cookie policies. The WHOIS data is notably missing or indicates the domain is unregistered, which is inconsistent with the brand's global presence and raises legitimacy concerns. Overall, the site is functional but basic, with significant gaps in compliance and security transparency.

NEŠKOVIĆ Group is a well-established company based in Bosnia and Herzegovina, specializing in the wholesale and retail of petroleum products, automotive sales and services, hospitality, and retail markets. The company operates multiple subsidiaries including insurance and auto centers, positioning itself as a regional leader with a broad service portfolio. The website reflects a professional digital presence built on WordPress with WooCommerce and other common plugins, offering a good user experience and clear business information. However, the technical infrastructure shows signs of aging with outdated WordPress versions and missing modern security headers. Security posture is moderate with HTTPS enforced but lacking comprehensive security policies or vulnerability disclosures. Privacy compliance is minimal, with no visible cookie consent or GDPR indicators. Overall, the website and business appear legitimate and trustworthy, but improvements in security and privacy compliance are recommended.

S

Searchspring

searchspring.net

0

Searchspring is a well-established ecommerce technology company specializing in AI-driven search, merchandising, and personalization solutions. With a domain age of over 20 years and a parent company Athos Commerce, it holds a strong market position targeting ecommerce retailers seeking to improve product discovery and conversion rates. The website demonstrates a mature digital presence with modern technologies and integrations, including WordPress CMS, HubSpot marketing tools, and multiple analytics platforms. Security posture is good with HTTPS enforced and domain status protections, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is robust with clear cookie consent and GDPR-aligned policies. Overall, the site is professional, trustworthy, and technically sound, supporting its business credibility and market leadership.

K

Karlsruher Pässe

karlsruher-pass.de

0

Karlsruher Pässe operates as a regional government-supported social benefit program providing passes such as the Karlsruhe Pass, Children's Pass, and 60 Plus Pass to residents of Karlsruhe and surrounding municipalities. The website serves as an informational and service portal, offering access to social discounts, cooperation details, and contact points for multiple municipalities. The business model focuses on social inclusion and support through municipal partnerships, positioning itself as a trusted regional social service provider. Technically, the website is built on WordPress with modern plugins like Slider Revolution and Borlabs Cookie for consent management. The infrastructure is hosted by saasweb.gmbh and uses standard web technologies including jQuery and Bootstrap. The site is moderately performant, mobile-optimized, and SEO-friendly, with good content quality and consistent branding. Security posture is adequate with HTTPS enabled and cookie consent implemented. However, some security headers are not explicitly detected, and there is room for improvement in security best practices such as CSP implementation and plugin vulnerability management. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact information and policies. It is safe for general audiences and does not contain adult or questionable content. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and improving accessibility features.

D

Deutsche Universitätsstiftung

deutsche-universitaetsstiftung.de

0

Deutsche Universitätsstiftung is a German foundation established in 2009 that aims to bridge science, economy, and society. The website presents itself as a professional platform built on TYPO3 CMS, targeting academic institutions, researchers, and industry partners. The foundation operates in the education and non-profit sectors, focusing on fostering cooperation between universities and the economy. Technically, the website uses modern frameworks and libraries such as TYPO3 CMS, Bootstrap, and jQuery, hosted on German nameservers. The site shows good design quality and mobile optimization but lacks comprehensive privacy and cookie policies, which impacts GDPR compliance. Security posture is moderate with no detected security headers or incident response information, and SSL configuration details are not provided. Overall, the domain registration data aligns well with the business profile, supporting legitimacy.

M

mCloud doo

sdgs4all.rs

0

The website 'Održivi razvoj za sve' is a Serbian platform dedicated to facilitating public dialogue and information sharing on the Sustainable Development Goals (Agenda 2030) within Serbia. It operates as a non-profit initiative, supported by multiple partner organizations, and targets policymakers, NGOs, and the general public interested in sustainable development. The platform offers resources such as news, newsletters, e-learning modules, and document repositories to support its mission. Technically, the site is built on WordPress 6.8.2, utilizing modern web technologies including jQuery, OwlCarousel, FontAwesome, and Slider Revolution. It employs Matomo analytics for user tracking, indicating a privacy-conscious approach. The website is mobile-optimized with good SEO practices and moderate performance. However, there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and some recommended security headers. There is no publicly available security policy or incident response information, and no vulnerability disclosure mechanism is present. Cookie consent is implemented, but no explicit privacy policy page was found, which is a compliance gap. Overall, the website presents a professional and trustworthy front for its niche non-profit mission. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing privacy and security policies, and improving accessibility features to strengthen compliance and user trust.

I

Imagine 2030

zamisli2030.ba

0

Imagine 2030 is a government and non-profit aligned platform dedicated to promoting and implementing the Sustainable Development Goals (SDGs) in Bosnia and Herzegovina. It serves as a central hub for information dissemination, event promotion, and resource sharing related to Agenda 2030. The platform targets government bodies, local self-governments, businesses, NGOs, and citizens interested in sustainable development. The website is built on WordPress using modern themes and plugins, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

O

Offensive Mittelstand

offensive-mittelstand.de

0

Offensive Mittelstand is a German platform dedicated to supporting small and medium-sized enterprises (KMU) with practical tools, standards, and consulting services focused on sustainability, digital transformation, work safety, and corporate social responsibility. The website is well-structured, professionally designed, and targets German SMEs with a non-profit/government-supported business model. The platform offers OM-Checks, OM-Tools, workshops, and an advisor database to facilitate SME growth and compliance. Technically, the website is built on TYPO3 CMS, hosted by Alfahosting, and uses modern JavaScript libraries such as Swiper for UI components and Matomo for privacy-conscious analytics. The site is mobile-optimized and performs moderately well, though accessibility features are basic. No major technical issues or vulnerabilities were detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. The absence of direct contact emails or phone numbers reduces transparency slightly. Overall, the website is trustworthy, professional, and safe for general audiences, with a solid business credibility score. Strategic improvements in privacy compliance, security transparency, and contact information would enhance its security posture and user trust.

The website ekulturars.com is registered since 2011 and appears to be a long-standing domain. However, the website content is completely empty with no metadata, no visible content, no contact information, and no policies. This indicates the site is either inactive or a placeholder. The technical infrastructure is minimal with no detected CMS, frameworks, or analytics. Security posture is basic with HTTPS enabled but no DNSSEC or security headers. There are no signs of privacy compliance or business credibility on the site. Overall, the site presents a low risk but also low trust and engagement potential.

А

Аутопутеви Републике Српске

autoputevirs.com

0

Аутопутеви Републике Српске is a public enterprise responsible for the construction, maintenance, and management of highways and major roads in Republika Srpska, Bosnia and Herzegovina. The website serves as an information portal for infrastructure projects, public procurement, and traffic updates, targeting citizens, drivers, and governmental stakeholders. The company holds a significant position as a key state entity in transportation infrastructure within the region. Technically, the website is built on WordPress, utilizing common plugins such as RevSlider and Contact Form 7, with Google Analytics for traffic monitoring. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some modern security headers and privacy compliance mechanisms are missing, indicating room for improvement in security and GDPR adherence. Security posture is moderate, with HTTPS enforced and domain transfer protection enabled, but lacking DNSSEC and advanced security headers. No vulnerability disclosure or incident response information is publicly available. Overall, the site is trustworthy and professionally maintained but could enhance its security and privacy compliance. The overall risk is low, but strategic improvements in security headers, cookie consent, and transparency policies are recommended to strengthen compliance and user trust.

The website putevirs.com represents the official online presence of Јавно предузеће Путеви Републике Српске, a government-owned public enterprise responsible for managing, constructing, maintaining, and protecting the road network in Republika Srpska, Bosnia and Herzegovina. The site provides detailed news, updates, and information about road infrastructure projects and public procurement plans, targeting residents and stakeholders within the region. The business model is focused on public sector infrastructure services, positioning the company as a key entity in transportation within Republika Srpska. From a technical perspective, the website employs legacy JavaScript libraries such as MooTools 1.2.1 and custom scripts, with CSS-based styling. The platform appears to be custom-built or uses an unknown CMS, with basic mobile optimization and accessibility features. Performance is moderate, and SEO optimization is basic, with proper meta tags but no advanced structured data or Open Graph tags detected. Security posture is moderate but shows room for improvement. The domain lacks DNSSEC, modern security headers, and there is no visible enforcement of HTTPS or HSTS. The use of outdated JavaScript libraries may expose the site to vulnerabilities. Privacy and cookie policies are absent, indicating non-compliance with GDPR and related regulations. No incident response or security contact information is provided. Overall, the website is functional and provides relevant content for its audience but lacks modern security and privacy compliance features. The domain registration is consistent and appropriate for the business history, enhancing trustworthiness. Strategic improvements in security headers, privacy policies, and technology modernization are recommended to enhance the site's security and compliance posture.

The website represents the Savez opština i gradova Republike Srpske, a governmental and non-profit organization supporting municipalities and cities in Republika Srpska, Bosnia and Herzegovina. It provides information on organizational structure, program areas, projects, news, and events, targeting local governments and citizens. The site demonstrates a stable market position as a local government representative with strong international partnerships. Technically, the website uses a modern frontend stack including Bootstrap 4, jQuery, Owl Carousel, and integrates third-party services such as Google Analytics and Mailchimp. It enforces HTTPS and uses client-side redirection to ensure secure connections. However, no CMS or hosting provider is explicitly identified, and some security best practices like DNSSEC and security headers are missing. From a security perspective, the site has a moderate posture with HTTPS enforced and domain transfer protection enabled. However, it lacks DNSSEC, explicit security headers, privacy and cookie policies, and incident response contacts. No vulnerabilities or malware indicators were found in the content. The site is safe for general audiences with no adult or questionable content. Overall, the website is professional and credible but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

A

Auto-moto savez Republike Srpske

ams-rs.com

0

Auto-moto savez Republike Srpske is a well-established non-profit organization providing roadside assistance, traffic updates, and membership services primarily in Republika Srpska, Bosnia and Herzegovina, and Europe. The website reflects a mature digital presence with a WordPress-based infrastructure, interactive maps, and live border crossing information. The organization targets local residents and travelers, offering key services such as emergency assistance and safety campaigns. The domain is long-standing and consistent with the organization's identity, enhancing trustworthiness. Technically, the site uses modern web technologies and plugins but lacks advanced security headers and DNSSEC, which could improve its security posture. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap for GDPR and regional regulations. Overall, the website is professional and functional with room for security and compliance improvements.

А

Агенција за безбједност саобраћаја Републике Српске

bslzrs.org

0

The website bslzrs.org represents the Agency for Traffic Safety of Republika Srpska, Bosnia and Herzegovina. It primarily serves as an informational platform for the XIV International Conference on Traffic Safety in Local Communities, providing detailed content about traffic safety statistics, conference agenda, speakers, thematic areas, and organizational committees. The agency operates as a governmental and non-profit entity focused on improving traffic safety through research, awareness, and collaboration with regional and international partners. The website targets professionals, researchers, and government officials involved in traffic safety and local community development. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, Slick Carousel, and Google Maps API integration. It is hosted on Bitlab Hosting and demonstrates moderate performance with good mobile optimization. However, accessibility and SEO optimizations are basic, and no CMS or advanced platforms are detected. The site lacks analytics and tracking scripts, indicating minimal user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No privacy or cookie policies are present, which is a compliance gap. The WHOIS data shows privacy protection and a recent domain registration date, which is somewhat inconsistent with the historical content but not necessarily suspicious. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is professional and trustworthy with good content quality and business credibility. However, it requires improvements in privacy compliance, security headers, and transparency to enhance its security posture and regulatory adherence.

BTGport.net is a regional web hosting and domain registration service provider primarily serving the Balkan region, with services offered in Serbian language. The company offers a range of hosting packages, domain registration, web design, and email hosting solutions targeting small to medium businesses and individual users. The website content reflects a business focused on technology and telecommunications services with a local market presence. Technically, the website uses older technologies such as jQuery 1.2.6 and PHP with MySQL, and mentions a proprietary CMS (BTGcms). The site shows basic mobile optimization and SEO but lacks modern security features such as HTTPS enforcement and security headers. The presence of Google Analytics indicates moderate user tracking without visible privacy compliance mechanisms. Security posture is weak due to outdated libraries, lack of HTTPS, and no visible security headers or incident response information. WHOIS data for the domain is missing or not found, which raises concerns about domain legitimacy and registration status, conflicting with the website's claim of operation since 2003. Overall, the website is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and protect users.

B

Bündnis für Demokratie und Menschenrechte

buendnis-demokratie-menschenrechte.de

0

The website 'Bündnis für Demokratie und Menschenrechte' represents a regional civil society and governmental alliance based in Baden-Württemberg, Germany, focused on promoting democracy and human rights. It serves as a platform for organizations, churches, political parties, and governmental institutions to collaborate and advocate for these values. The website is built on WordPress using the Divi theme and includes event management functionality via the Modern Events Calendar plugin. The technical infrastructure is modern and moderately optimized for performance and mobile devices, with good SEO practices implemented through the Rank Math plugin and structured data markup. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and incident response contact information. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices to improve compliance and user trust.

N

Netzwerk für berufliche Fortbildung Calw

netzwerk-cw.de

0

Netzwerk für berufliche Fortbildung Calw is a regional network of over 20 educational institutions in the Calw area of Germany, offering tailored vocational training and continuing education programs. Supported by the Baden-Württemberg Ministry of Economy, Labor and Tourism, it aims to facilitate career advancement, re-entry, and reorientation for professionals and job seekers. The website is built on TYPO3 CMS and integrates modern web technologies including Usercentrics for cookie consent and Google Analytics with privacy features enabled. The site demonstrates good content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Security posture is solid with HTTPS and privacy compliance, though some security headers and explicit policies could be improved. Overall, the domain registration and website content are consistent and trustworthy, with no signs of blocking or malicious activity.

The website 'Hadž i umra BiH – Ured za hadž i umru' serves as the official governmental portal for organizing and providing information about Hadž and Umra pilgrimages for citizens of Bosnia and Herzegovina. It offers news, guidelines, and organizational details relevant to pilgrims, positioning itself as the authoritative source in this religious sector within the country. The site targets the Bosnian Muslim community and operates under a governmental/non-profit business model, emphasizing service and information dissemination. Technically, the website is built on WordPress 6.8.2, utilizing common plugins such as WPBakery Page Builder, Everest Forms, Contact Form 7, and Google reCAPTCHA v3 for form security. The design is modern and mobile-optimized, with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in hosting and optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional, with a high business credibility score but moderate security and privacy compliance scores. Strategic improvements in privacy policy publication, security header implementation, and accessibility would enhance its security posture and compliance standing.

M

meinKölnBonn

meinkoelnbonn.de

0

meinKölnBonn is a regional content platform operated in affiliation with Sparkasse KölnBonn, providing residents of the Köln and Bonn area with financial advice, lifestyle content, business insights, and local event information. The website positions itself as a trusted source for regional financial and lifestyle topics, leveraging the brand strength of Sparkasse KölnBonn. Technically, the site is built on WordPress with modern frontend technologies such as Swiper.js and lazy loading for images, ensuring a good user experience and mobile optimization. SEO practices are well implemented with Yoast SEO and structured data markup. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the site lacks explicit security headers and a public security policy. Privacy compliance is moderate, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the site is professional, trustworthy, and safe for general audiences.

G

Garden of Dreams

gardenofdreams.ba

0

Garden of Dreams is a cultural event organizer focused on the electronic music festival held in Sarajevo, Bosnia and Herzegovina. The website promotes the 2025 festival and includes a talent development program called Dreamers Talent Camp, aimed at supporting emerging DJs and producers from the region. The business model revolves around event management, sponsorship partnerships, and community engagement through online voting and mentorship programs. The website is built on WordPress with modern frontend technologies and integrates multilingual support and social media channels to reach a broad audience. Technically, the site is well-structured with good mobile optimization and SEO practices, though performance is moderate. Security posture is adequate with HTTPS and secure form handling, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

P

Promotim d.o.o.

promotim.ba

0

Promotim d.o.o. is a Bosnian technology company specializing in innovative web development and online marketing solutions since 2003. The company offers a range of services including web development, e-commerce platforms, web applications, and social media marketing, supported by their proprietary CMS platform PromoCMS. Their market position is strong locally with a portfolio of notable clients including news agencies and government entities. Technically, the website uses modern web technologies such as Bootstrap, jQuery, and Owl Carousel, and integrates Google Analytics for tracking. However, the site lacks published privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS implied but no visible security headers or incident response information. Overall, the website is professional and well-structured but could improve in privacy and security transparency.

Z

ZEIT SPRACHEN

zeit-sprachen.de

0

ZEIT SPRACHEN is a reputable language learning brand offering printed and digital magazines for multiple languages including English, French, Spanish, Italian, and German. It operates as a 100% subsidiary of the ZEIT Verlagsgruppe, a well-known German publishing group, positioning itself strongly in the education sector with high-quality journalistic content tailored for language learners and educators. The website is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and relevant content.

D

Dieter-Kaltenbach-Stiftung

kita-ideenreich.de

0

The website represents KiTa ideenReich, a childcare facility operated by the Dieter-Kaltenbach-Stiftung and affiliated with Roche. It targets families seeking quality early childhood education and care, emphasizing developmental support and inclusion. The site is well-structured, professionally designed, and provides clear information about the facility's offerings and operational hours. Technically, the site uses a modern stack including jQuery and Bootstrap 4, hosted on a reliable provider with consistent domain registration data. Security posture is adequate with HTTPS usage, but lacks explicit security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No forms or email contacts are directly visible, limiting direct digital communication channels. Overall, the site is trustworthy, safe, and serves its educational mission effectively.

D

Dieter-Kaltenbach-Stiftung

kita-am-baechle.de

0

KiTa Am Bächle is a childcare and kindergarten service provider located in Lörrach, Germany, operated by the Dieter-Kaltenbach-Stiftung foundation. The website serves as an informational portal for parents seeking childcare options, including a nature-focused kindergarten. The business model is non-profit and community-oriented, targeting local families exclusively. The site demonstrates a consistent brand presence and clear navigation, supporting its role as a trusted local childcare provider. Technically, the website employs modern frontend technologies such as jQuery, Bootstrap 4, and FontAwesome, with a responsive design optimized for mobile devices. The CMS appears to be REDAXO, and hosting is likely provided by kasserver.com. Performance is moderate with good SEO practices, though accessibility features are basic. No advanced analytics or tracking scripts are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and email obfuscation but lacks explicit security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No forms or sensitive data collection points were found in the provided content, reducing immediate risk exposure. The WHOIS data is structured but lacks detailed registrant information, though no suspicious patterns were identified. Overall, the website is safe, professional, and trustworthy, with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

А

Агенција за безбједност саобраћаја Републике Српске

absrs.org

0

The website absrs.org represents the Агенција за безбједност саобраћаја Републике Српске, a government agency dedicated to traffic safety in Republika Srpska, Bosnia and Herzegovina. The agency provides comprehensive information on traffic laws, safety campaigns, licensing procedures, and statistical data to support safer road usage. The site targets the general public, local communities, and government stakeholders, positioning itself as an authoritative source for traffic safety in the region. Technically, the website employs a moderate technology stack including Bootstrap for responsive design, jQuery, Slick Carousel, and Fancybox for UI elements, alongside Google Fonts and Google Analytics for tracking. Hosting is managed by BitLab, with domain registration dating back to 2012, indicating an established presence. The site is accessible, mobile-optimized, and features clear navigation, although some SEO and accessibility features are basic. From a security perspective, the site uses HTTPS URLs but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Google Analytics is implemented via an older ga.js script, and no cookie consent mechanism is detected. The WHOIS data is transparent and consistent with the agency's government status, supporting legitimacy. Overall, the website is functional and trustworthy as a government information portal but would benefit from improved security practices and privacy compliance to enhance user trust and regulatory adherence.

Републички педагошки завод Републике Српске is a governmental educational institution serving the Republika Srpska region of Bosnia and Herzegovina. It provides pedagogical advisory services, professional development for educators, student achievement analysis, and supports educational projects including e-learning initiatives. The website is well-structured, primarily in Serbian Cyrillic, targeting educators, students, and educational institutions within the region. The institution holds a key position in the local education sector with a domain registered since 2003, indicating established presence and trust. Technically, the website employs modern web technologies including Bootstrap 4.5, jQuery, Font Awesome, and Google Fonts, hosted by BitLab. The site is mobile responsive and offers good user experience and navigation clarity. However, some technical improvements are recommended such as enabling DNSSEC and implementing security headers to enhance security posture. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers and DNSSEC. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and security readiness. Overall, the website is professional and trustworthy with good business credibility but requires enhancements in privacy compliance and security best practices to reach higher maturity levels.

R

Republički centar za istraživanje rata, ratnih zločina i traženje nestalih lica

rcirz.org

0

The Republika Srpska Center for Research of War, War Crimes, and Searching for Missing Persons is a government institution dedicated to the investigation, documentation, and analysis of war crimes and missing persons related to conflicts in Bosnia and Herzegovina and the former Yugoslavia. The organization provides expert services including data archiving, forensic support, and cooperation with judicial and international bodies. The website serves as an informational and research platform primarily targeting government entities, researchers, and families of missing persons. Technically, the website is built on WordPress using the Divi theme, incorporating standard SEO and analytics tools such as Yoast SEO and Google Analytics. The site demonstrates moderate performance and good mobile optimization but lacks advanced security headers and comprehensive privacy compliance features. The absence of visible contact information and policy documents limits user trust and regulatory adherence. From a security perspective, the site uses HTTPS but does not implement key security headers, and the WHOIS data is incomplete, which raises concerns about domain transparency. No forms or sensitive data collection mechanisms were detected, reducing immediate risk exposure. However, the lack of privacy and cookie policies indicates potential compliance gaps with GDPR and related regulations. Overall, the website reflects a legitimate government entity with a focused mission but requires improvements in transparency, security best practices, and privacy compliance to enhance trustworthiness and regulatory alignment.

M

mCloud doo

certrs.org

0

CERT RS is a governmental Computer Emergency Response Team website focused on cybersecurity incident response and awareness in Serbia. The site is built on WordPress with common plugins such as WooCommerce and GiveWP, indicating some donation or e-commerce capabilities. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. The domain is expired, which poses a significant risk to service continuity and trust. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the website serves an important governmental function but requires improvements in domain management, security practices, and privacy compliance.

В

Влада Републике Српске

srpska2030.rs

0

The website srpska2030.rs serves as the official government platform for the Sustainable Development Strategy of Republika Srpska for 2024-2030. It provides comprehensive information on sustainable development goals, normative frameworks, strategic platforms, and public consultation mechanisms. Supported by the UNDP and the Slovak Ministry of Finance, it targets citizens, government officials, and stakeholders interested in sustainable development. The platform is built on WordPress with modern frontend technologies like Bootstrap and AOS, offering a responsive and user-friendly experience. Security posture is adequate with HTTPS and secure forms, but lacks advanced security headers and privacy compliance elements such as privacy and cookie policies. The domain registration is consistent with the business purpose and recent project timeline, enhancing trustworthiness.

L

Lanaco d.o.o

skolers.org

0

The website skolers.org serves as a centralized portal hub for the Ministry of Education and Culture of Republika Srpska, Bosnia and Herzegovina. It provides access to multiple educational eServices including portals for education, electronic courses, student enrollment, and electronic diaries for various school levels. The target audience includes students, parents, teachers, and educational institutions within Republika Srpska. The business model is government-affiliated digital service provision, positioning itself as an official and trusted educational platform in the region. Technically, the website uses standard HTML5, CSS3, and jQuery 3.5.1, with a moderate performance and good mobile optimization. The site lacks advanced frameworks or CMS indications and does not show evidence of analytics or tracking scripts in the provided content. SEO and accessibility are basic but functional. The domain is registered with Lanaco d.o.o in Bosnia and Herzegovina, consistent with the website's purpose and geographic focus. From a security perspective, the site uses HTTPS but lacks DNSSEC and visible security headers, which are recommended for enhanced protection. No privacy, cookie, or terms of service policies are present, indicating gaps in compliance with GDPR and related regulations. No forms or data collection mechanisms are visible on the main page, reducing immediate data exposure risks. Social media links connect to official Ministry accounts, enhancing trust. Overall, the website is a credible and functional government educational portal with good business credibility but requires improvements in privacy compliance and security best practices to strengthen its posture and user trust.

R

Republicka uprava civilne zastite RS

ruczrs.org

0

The website represents the Republic Civil Protection Administration of Republika Srpska, Bosnia and Herzegovina, providing governmental civil protection and emergency preparedness services. It serves as an official communication channel for public safety information, warnings, and organizational updates. The organization is positioned as a regional government authority with a focus on protecting citizens and property from natural and other disasters. The site content is primarily in Serbian Cyrillic, targeting the local population and stakeholders. Technically, the website is built on WordPress CMS with a suite of common plugins for SEO, forms, translation, and media display. The infrastructure is moderately modern with good mobile optimization and SEO practices. Performance is moderate, and accessibility is basic. The site uses HTTPS with a valid SSL certificate but lacks DNSSEC and some security headers, indicating room for security enhancements. Security posture is adequate but could be improved by enabling DNSSEC, adding security headers, and publishing explicit security and incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms, which is critical for GDPR adherence. Business credibility is strong given the official nature, consistent branding, and social media presence. Overall, the site is trustworthy and professional but should address privacy compliance and security best practices to enhance user trust and regulatory adherence.

П

Пореска Управа РС

poreskaupravars.org

0

The Poreska Uprava Republike Srpske (Tax Administration of Republika Srpska) is a government entity responsible for the impartial and efficient collection and control of public revenues in Republika Srpska, Bosnia and Herzegovina. The website serves as an official portal providing information, e-services, and updates to taxpayers including individuals, legal entities, and entrepreneurs. It maintains a strong market position as the authoritative tax administration body in the region, offering key services such as e-fiscalization and electronic services to facilitate tax compliance. The site is multilingual, primarily in Serbian Cyrillic and Latin scripts, with an English version available, targeting local citizens and businesses.

The website vinagecko.com currently serves as a minimal placeholder page indicating that the site is 'coming soon'. There is no substantive business information, contact details, or service descriptions available. The domain has been registered since 2014, suggesting a long-term ownership, but the lack of content indicates the business may be inactive or in early development stages. The hosting provider is InMotion Hosting, and the domain registrar is GoDaddy.com, LLC. Technically, the site lacks modern SEO, accessibility, and security features, with no security headers or DNSSEC enabled. There are no privacy or cookie policies, nor any contact or incident response information, which limits compliance and trustworthiness. Overall, the site’s security posture is minimal, with no detected vulnerabilities but also no proactive security measures.

I

Izrada web stranica

izradawebstranica.ba

0

Izrada web stranica is a small digital agency based in Bosnia and Herzegovina specializing in the creation of unique websites and e-commerce shops. The company positions itself as a full-service digital agency focused on brand growth and web development services. The website is built on WordPress using Elementor, enhanced with SEO tools like Rank Math, and includes modern web technologies such as Lottie animations and Google Analytics for tracking. The technical infrastructure is solid with HTTPS enabled and a professional design, although some security best practices like security headers and privacy policies are missing. The security posture is moderate with no visible vulnerabilities but lacks formal security and privacy documentation. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and security practices.

B

Biserje

biserje.ba

0

Biserje is an online cultural magazine based in Bosnia and Herzegovina, focusing on the intersection of tradition and modernity in culture and society. It serves a niche audience interested in Bosnian history, Islam, art, and social topics. The website is powered by WordPress with a modern tech stack including Elementor and Yoast SEO, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced but lacks comprehensive security headers and incident response information. Privacy compliance is limited, with no cookie consent mechanism detected. Overall, the site is legitimate, professionally presented, and trustworthy within its domain.

NMLS Consumer Access is a publicly operated website providing consumers with a free and authoritative service to verify licensing and registration information of financial services companies and professionals across the United States. It is managed by State Regulatory Registry LLC, a subsidiary of the Conference of State Bank Supervisors (CSBS), positioning it as a trusted source in the financial regulatory space. The website primarily serves consumers seeking to confirm the legitimacy and authorization status of mortgage and financial services providers. Technically, the website employs standard web technologies including jQuery and Microsoft Ajax, with custom scripts to support search functionality. The site is hosted under a reputable registrar, GoDaddy, and shows moderate performance and basic mobile optimization. However, there is room for improvement in accessibility and SEO practices. The absence of DNSSEC and security headers indicates some gaps in the security posture, though no critical vulnerabilities or blocking mechanisms were detected. From a security perspective, the website demonstrates basic best practices such as clientTransferProhibited domain status and frame busting scripts to prevent clickjacking. However, it lacks explicit security policies, vulnerability disclosure mechanisms, and privacy or cookie policies, which are important for compliance and user trust. The site does not appear to collect extensive user data beyond search inputs and does not employ tracking or advertising technologies, which reduces privacy risks. Overall, the website is a legitimate, professional, and trustworthy resource with a strong business credibility score. Strategic improvements in security headers, DNSSEC, privacy compliance, and mobile accessibility would enhance its security posture and user experience. No adult or questionable content is present, making it safe for general audiences.

D

Deutsche Gesellschaft Club of Rome

clubofrome.de

0

The Deutsche Gesellschaft Club of Rome is a well-established non-profit organization focused on sustainability, future studies, and fostering knowledge exchange to promote a life-supporting future. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that aligns with the organization's mission. Technically, the site is built on WordPress with modern plugins and integrations such as Google Analytics and Iubenda for privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration data is consistent and supports the legitimacy of the organization. Overall, the site presents a trustworthy and professional image suitable for its target audience.

A

Agencija WEB Studio

webstudio.ba

0

Agencija WEB Studio is a full service digital marketing agency based in Bosnia and Herzegovina, positioning itself as the first such agency in the country. The website presents a professional digital marketing service offering focused on business growth and client acquisition. The technical infrastructure is built on WordPress CMS, utilizing the All in One SEO plugin and a custom theme, indicating a moderate level of digital maturity. The website is mobile optimized and has good SEO practices but lacks comprehensive privacy and cookie policies. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Overall, the website is functional and professional but could improve in privacy compliance and security best practices to enhance trust and regulatory adherence.

The website samsonite.ca is currently inaccessible due to a PerimeterX Web Application Firewall (WAF) security challenge page that blocks direct content access. This prevents a full analysis of the website's content, policies, and user interface. The domain is registered to Samsonite Canada, Corp, a legitimate and established entity with a domain age of over 20 years, indicating a stable business presence in Canada. The website appears to be protected by advanced security measures, but this also limits visibility into its technical and compliance posture. From the technical perspective, the site uses PerimeterX for bot mitigation and security, and the DNS is managed via AT&T nameservers. However, no other technologies, CMS, or analytics tools are visible due to the blocked content. There is no evidence of privacy or cookie policies, contact information, or terms of service in the accessible HTML, which limits assessment of compliance with GDPR or other privacy regulations. Security-wise, the presence of a WAF is a positive indicator of proactive defense, but the lack of visible security headers or policies in the accessible content is a gap. The WHOIS data is consistent with the brand and geographic location, supporting legitimacy. Overall, the site’s security posture is difficult to fully evaluate due to content blocking, but the domain registration and WAF presence suggest a legitimate and security-conscious organization. Given the current access limitations, the overall risk assessment is moderate with recommendations to improve transparency by providing accessible privacy, cookie, and security policies, and ensuring that security headers and compliance information are publicly available. This will enhance trust and compliance posture once the WAF challenge is passed.

B

Bošnjačka zajednica kulture

bzk.ba

0

Bošnjačka zajednica kulture (BZK) is a well-established non-profit cultural organization dedicated to preserving and promoting Bosniak culture, literature, and heritage primarily in Bosnia and Herzegovina. The website serves as a platform for news, cultural projects, publications, and events, targeting the Bosniak community and cultural scholars. The organization maintains a consistent brand presence and provides valuable cultural content, positioning itself as a key cultural institution in the region. Technically, the website is built on WordPress using common plugins such as Slider Revolution, Contact Form 7, and Mailchimp integration. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled, but lacks important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional, with no signs of malicious content or blocking mechanisms. However, it would benefit from enhanced privacy compliance and improved security headers to strengthen its security posture and user trust. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and conducting regular security audits to maintain a robust security posture.

U

up PAMINA vhs

up-pamina-vhs.org

0

up PAMINA vhs is a small, regionally focused non-profit educational institution offering bilingual German-French adult education programs, including language courses, cultural workshops, and cross-border excursions. The website targets residents in the PAMINA region, emphasizing cultural exchange and lifelong learning. Technically, the site is built on TYPO3 CMS, uses standard web technologies, and provides a good user experience with mobile optimization and accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. WHOIS data is incomplete, which slightly reduces domain trustworthiness, but the website's clear contact information and professional presentation support its legitimacy. Overall, the site is well-structured, GDPR compliant, and trustworthy for its educational purpose.

B

Blaetterbuch - professionell online blättern

blaetterbuch.de

0

Blaetterbuch is a specialized technology provider offering professional online flipbook solutions that digitize print media such as flyers, catalogs, and brochures with realistic page-turning effects. Their service targets businesses seeking to extend the reach of their print publications into digital formats accessible across all major browsers and mobile devices. The company positions itself as a niche provider with a comprehensive service including hosting, customization, and integration of multimedia elements like videos and links. Technically, the website employs a modern web stack including Bootstrap, jQuery, and popular UI libraries such as Owl Carousel and Revolution Slider. The site is mobile-optimized and features a custom CMS backend indicated by dynamic content calls. While performance is moderate, the site is well-structured with good SEO and accessibility basics. From a security perspective, the site uses HTTPS (assumed from URL), implements cookie consent mechanisms, and provides a comprehensive privacy policy compliant with GDPR. However, explicit security headers and incident response policies are not evident, suggesting room for improvement in security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of blocking or malicious content. Strategic recommendations include enhancing security headers, publishing a security policy, and improving technical performance for a stronger security and user experience profile.

The website at vhs-brb.de currently serves only a TYPO3 CMS error page indicating that no site configuration is found, rendering the site inaccessible to users. There is no meaningful business content, contact information, or policy documentation available. The domain is registered with name servers at kasserver.com but lacks detailed WHOIS registrant information. Technically, the site uses TYPO3 CMS but is not properly configured or published. Security posture cannot be fully assessed due to lack of accessible content and missing security headers or HTTPS data. Overall, the site appears inactive or under development, with minimal digital maturity and no visible compliance or security measures.

V

VHS-Einstufungstest

vhseinstufungstest.de

0

VHS-Einstufungstest.de is a German-language educational website focused on providing information about Volkshochschule (VHS) courses and language placement tests. The site offers a variety of articles covering language courses such as German, Italian, French, Spanish, English, and others, as well as practical courses like bicycle repair. The business model centers on content provision for learners seeking VHS course information, positioning itself as a niche educational resource in Germany. Technically, the website is built on WordPress using the GeneratePress theme and Rank Math SEO plugin, hosted on servers associated with kasserver.com. The site demonstrates good SEO practices, mobile optimization, and moderate performance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks security headers and cookie consent mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie policy or terms of service. No direct contact information or incident response details are provided. Overall, the site is professional and trustworthy but could improve in privacy compliance and security best practices.

I

Islamske informativne novine Preporod

preporod.com

0

Preporod.com is the online presence of Islamske informativne novine Preporod, an established Islamic informational newspaper based in Bosnia and Herzegovina. The website serves a Bosnian-speaking Muslim audience with news, cultural, spiritual, and community content. It operates a print and digital media model with subscription options and advertising. Technically, the site is built on Joomla CMS with modern web technologies like Bootstrap and jQuery, and integrates Google Analytics and Facebook Pixel for user tracking. The security posture is moderate with HTTPS enabled and CSRF protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, content-rich, and trustworthy, but could improve privacy and security practices.