Security Directory

U

Udruga Prijatelji životinja

prijatelji-zivotinja.hr

0

Udruga Prijatelji životinja is a well-established Croatian non-profit organization founded in 2001, dedicated to promoting animal rights, vegetarianism, and veganism. The website serves as a comprehensive platform for advocacy, education, event promotion, and community engagement, targeting environmentally and ethically conscious individuals. Their market position is strong within the Croatian and regional animal rights community, supported by memberships in European and international organizations. Technically, the website uses a custom or unknown CMS with a traditional tech stack including HTML, CSS, JavaScript, and jQuery, supplemented by Matomo analytics for privacy-conscious tracking. While the site is functional and moderately optimized, some outdated libraries present potential security risks. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and professional, with clear contact information and active social media presence.

The website nitko.info is a personal portfolio and creative expression platform for Ervin Poljak, featuring poetry, stories, family projects, and other artistic content. It targets a general audience interested in literary and cultural works. The site is small-scale and primarily serves as a personal showcase rather than a commercial business. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics, Google Tag Manager, and Mixpanel for visitor tracking. It is built on the Galaksija CMS and hosted under a domain registered with privacy protection. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Security posture is weak, with no visible HTTPS enforcement or security headers, and no privacy or cookie policies present, indicating poor privacy compliance. The WHOIS data shows a domain age consistent with the site's stated founding year and a registrant country matching the website language, supporting legitimacy. Overall, the site is safe for general audiences but requires significant improvements in security and privacy compliance to enhance trust and protection.

The website ekoart.info is currently inaccessible beyond a minimal 404 Not Found error page, providing no business content, metadata, or user interaction elements. The domain WHOIS data is inconsistent, showing a creation date in the future (January 22, 2025), which raises concerns about the legitimacy and operational status of the domain. There is no evidence of privacy policies, cookie consent mechanisms, contact information, or security policies on the site. Technically, the site lacks any detectable technologies, scripts, or frameworks and does not implement DNSSEC or advanced security headers. The hosting provider is the domain registrar REG.RU LLC, but no further hosting details are available. Overall, the site appears inactive or placeholder with very low trustworthiness and business credibility.

A

Association Luxembourg Alzheimer

ala.lu

0

Association Luxembourg Alzheimer is a well-established non-profit organization based in Luxembourg, dedicated to supporting people affected by dementia and their families. The organization offers a comprehensive range of services including counseling, a 24/7 helpline, ambulatory care, day centers, and a specialized care home. Their website reflects a strong commitment to accessibility and user support, with multilingual options and detailed service information. The organization maintains an active presence on social media platforms such as Facebook, LinkedIn, and Instagram, enhancing community engagement and outreach. Technically, the website is built on WordPress with modern plugins like Yoast SEO and accessibility tools, ensuring good SEO and compliance with accessibility standards. The site uses Matomo for analytics, indicating a privacy-conscious approach to user tracking. Performance and mobile optimization are good, though some improvements could be made in hosting transparency and performance metrics. From a security perspective, the site enforces HTTPS and provides a cookie consent mechanism with granular user control, aligning with GDPR requirements. However, it lacks published privacy policies, terms of service, and explicit security or incident response policies, which are important for compliance and user trust. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and well-aligned with its mission, but would benefit from enhanced privacy and security disclosures to improve compliance and user confidence.

The website hsl.fi represents HSL Helsingin seudun liikenne, the Helsinki Regional Transport Authority responsible for public transportation services in the Helsinki metropolitan area. The domain is registered consistently with the organization's identity and has been active since 2009, aligning with the business history. However, the website content is currently inaccessible due to a Cloudflare Turnstile human verification challenge, preventing direct content analysis. This limits visibility into the site's privacy policies, contact information, and user experience. The technical infrastructure includes Cloudflare as a security and performance provider, indicating a modern approach to web delivery and protection. Security posture is difficult to fully assess due to the blocking, but the use of Cloudflare suggests baseline protections are in place. Overall, the site is legitimate and trustworthy based on WHOIS data and domain age, but the current access restrictions significantly reduce the ability to evaluate content quality, privacy compliance, and security details.

P

Planet Zemlja

planet-zemlja.hr

0

Planet Zemlja is a Croatian non-profit organization dedicated to environmental awareness, personal ecology, and ecological news dissemination. The website serves as a community platform offering news articles, event announcements, photo and video galleries, and educational content related to ecology. The target audience is the general public interested in environmental issues within Croatia. The business model is informational and community-driven without evident commercial transactions. Technically, the site uses a custom PHP-based CMS with jQuery and various plugins for RSS feeds, weather, and media galleries. External integrations include Google Analytics and Facebook SDK for tracking and social media engagement. However, the site lacks HTTPS on its main URLs, which is a significant security concern. Security headers are absent, and no advanced security or privacy compliance mechanisms are evident. Contact information is limited to forms without explicit emails or phone numbers. Overall, the site is functional but requires modernization and security improvements.

W

Wiener Städtische Versicherungsverein

airt.at

0

The website www.airt.at represents the cultural exhibition series "Architektur im Ringturm" managed by the Wiener Städtische Versicherungsverein, part of the Vienna Insurance Group. It serves as a platform to showcase architectural and cultural exhibitions primarily focused on Central and Eastern Europe. The site offers detailed information about current and past exhibitions, architecture talks, and historical context of the Ringturm building. It targets architecture and culture enthusiasts and operates as a free-entry exhibition series supported by sponsorships. Technically, the site is built on WordPress with modern plugins and libraries, including multilingual support and spam protection via Google reCAPTCHA. The website demonstrates good digital maturity with responsive design, SEO optimization, and accessibility considerations. Security posture is solid with HTTPS enforced and spam prevention on forms, though some security headers could be improved. Privacy compliance is strong, featuring a comprehensive privacy policy, cookie consent banner with opt-in, and GDPR-aligned data collection practices. Overall, the site is professional, trustworthy, and well-maintained, reflecting the reputable parent organization. No critical security or compliance issues were detected.

F

Fiva Events

fivaevents.com

0

Fiva Events operates as a niche platform dedicated to classic and historic vehicle events, providing event listings and application forms primarily for enthusiasts and organizers within this specialized community. The website presents a professional and consistent brand image with a focus on user-friendly event search and application functionalities. Technically, the site leverages modern frontend technologies such as Alpine.js and Laravel Livewire, ensuring a responsive and interactive user experience. The presence of HTTPS and reCAPTCHA integration indicates a baseline commitment to security, although the absence of comprehensive security headers and privacy policies suggests room for improvement in compliance and protection measures. The lack of publicly available WHOIS data raises questions about domain registration transparency, which could impact trustworthiness. Overall, the site is functional and well-designed but would benefit from enhanced privacy compliance and clearer business contact information to strengthen credibility and user trust.

IRTA d.o.o. is a medium-sized regional tourism development agency based in Istria, Croatia, established in 2004. The company manages official tourism portals, contact and sales centers, and develops cultural and outdoor tourism products to promote the Istrian region. Their market position is strong within the regional tourism sector, serving tourists and local businesses with comprehensive information and services. Technically, the website uses a custom CMS with modern JavaScript libraries and Google services, but lacks HTTPS which is a significant security gap. The privacy policy is comprehensive and GDPR compliant, with a named data protection officer, reflecting good privacy awareness. However, the absence of HTTPS and security headers lowers the security posture. Overall, the site is professional and trustworthy but requires security improvements to align with best practices.

The website zhuk.cc is a personal blog primarily focused on technology topics, especially Joomla extensions, Oracle, Java, and various hobbies. It serves a niche audience of developers and technology enthusiasts interested in Joomla components and related software. The site offers technical articles, extension releases, and community forums, positioning itself as a resource hub for Joomla users. The business model revolves around content publishing and software extension distribution, with demonstration sites and forums supporting user engagement. Technically, the site is built on WordPress 6.8.1 using the Total theme and incorporates multiple JavaScript libraries such as jQuery, Owl Carousel, and Font Awesome. The platform is moderately optimized for performance and mobile use, with basic SEO and accessibility features. The site is fully accessible over HTTPS, indicating good SSL configuration, but lacks advanced security headers and privacy compliance mechanisms. From a security perspective, the site shows a moderate security posture with HTTPS enabled and no exposed sensitive data. However, it lacks explicit security headers, privacy and cookie policies, and incident response contacts, which are important for compliance and trust. No WAF or blocking mechanisms are detected, and the site content is safe for general audiences with no adult or questionable material. Overall, the site is a well-maintained personal technology blog with good content quality and business credibility but has room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and providing clear contact information for security incidents to enhance trust and compliance.

N

Naturpark Landseer Berge

landseer-berge.at

0

Naturpark Landseer Berge is a regional nature park located in Austria, focusing on promoting tourism, cultural heritage, and outdoor recreational activities. The website serves as an informational portal providing details about the park's attractions, events, and regional highlights. The target audience includes tourists, families, and nature enthusiasts interested in exploring the area. Technically, the site is built on the Worldsoft CMS platform and uses legacy JavaScript libraries such as jQuery 1.12.4 and jQuery UI 1.12.1, which may pose security risks. The website is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing critical security headers and using outdated libraries. No privacy or cookie policies are present, indicating compliance gaps. Overall, the site is functional and informative but requires updates to improve security, privacy compliance, and technical modernization.

X

Xplore Fitness Na Příkopě

xplorefitness.cz

0

Xplore Fitness Na Příkopě is a prominent fitness center located in the heart of Prague, offering a wide range of fitness and wellness services including gym facilities, group classes, martial arts, and additional amenities such as solariums and massages. The business positions itself as the largest and most modern fitness center in Prague's city center, targeting fitness enthusiasts and the general public. The website is professionally designed, content-rich, and provides clear navigation and multilingual support (Czech and English). The company maintains active social media channels and regularly updates its content with news and events. Technically, the site is built on WordPress with several plugins for enhanced user experience and analytics integration. However, the WordPress version is outdated, posing potential security risks. The site employs HTTPS and cookie consent mechanisms, demonstrating good privacy compliance. Security policies and incident response information are not explicitly published, representing an area for improvement. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements.

Y

Úvod | Yankeesvicky.cz

yankeesvicky.cz

0

The website www.yankeesvicky.cz is a small-scale e-commerce platform focused on retailing Yankees sports merchandise primarily targeting the Czech Republic market. The site features basic content and design, with a functional user interface and mobile optimization. It integrates several third-party technologies including jQuery, Google Maps API, and delivery service scripts, indicating a moderate level of technical maturity. However, the absence of a privacy policy and limited business information reduces its compliance and trustworthiness. Security posture is moderate with HTTPS usage and CSRF token presence but lacks advanced security headers and explicit vulnerability disclosures. Overall, the site is functional but would benefit from enhanced transparency, security practices, and privacy compliance to improve user trust and regulatory adherence.

C

Croatian Climate Change Panel

solarniklaster.org

0

The Croatian Climate Change Panel operates the solarniklaster.org website as a specialized platform focused on renewable energy, sustainable technologies, and climate change awareness primarily targeting Croatian and regional audiences. The site offers news, expert articles, multimedia content, and educational resources to support green energy transition efforts. Technically, the website uses a standard modern tech stack including Bootstrap, jQuery, and analytics tools, hosted on a domain registered since 2015 with privacy protection. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with policies present but no explicit cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is a credible, niche informational resource with room for security and privacy improvements.

Otok Krk energija d.o.o. is a Croatian limited liability company focused on producing and supplying renewable energy, primarily solar, to achieve energy independence for the island of Krk. The company is relatively new, founded in 2019, and is owned by the local municipality of Baška with plans to include other local government units as co-owners. Their business model centers on local investment and sustainable energy production, positioning themselves as a key player in the regional green energy market. The website reflects this mission with content in Croatian and some English, targeting local residents, investors, and governmental bodies interested in renewable energy projects. Technically, the website uses common web technologies such as Bootstrap, jQuery, and popular carousel libraries, with integration of Google Analytics and Facebook SDK for tracking and marketing purposes. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Security posture is moderate; HTTPS is used but no explicit security headers or incident response policies are published. Privacy and cookie policies exist but lack active consent mechanisms. Overall, the website is professional and trustworthy but could improve in security and privacy compliance. Recommendations include implementing security headers, adding cookie consent, publishing incident response information, and enhancing contact transparency.

A

Aittakoodi Oy

pikavuorot.fi

0

Pikavuorot.fi is a Finnish transportation price comparison website operated by Aittakoodi Oy, founded in 2015. The platform aggregates and compares prices and schedules for bus and train travel across multiple Finnish transportation providers, including major companies such as VR, Matkahuolto, Onnibus, and airlines like Finnair and Norwegian. It serves a general audience seeking convenient travel planning and ticket purchasing options within Finland. The website enjoys a moderate market position as a leading price comparison tool in its niche. Technically, the site employs a modern but somewhat dated technology stack including Bootstrap 3, jQuery, DataTables, and Socket.io for real-time data updates. It integrates multiple third-party services for fonts, advertising, and analytics, including Google Adsense and Facebook SDK. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, HTTPS is used, but explicit security headers are not detected in the provided data. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is basic, with a cookie consent banner and a privacy policy page present, but no detailed security or incident response policies are published. Contact information is limited to an email address, with no phone or physical address provided. Overall, Pikavuorot.fi presents a trustworthy and functional service with room for improvement in security hardening, privacy transparency, and expanded contact options. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing comprehensive policies, and improving user trust signals.

S

Saaristolautat.fi

saaristolautat.fi

0

Saaristolautat.fi is a specialized informational website providing ferry routes and schedules for the Finnish archipelago, including the Turku archipelago and Åland Islands. The site targets travelers and residents needing up-to-date ferry information for over 40,000 islands serviced by approximately 50 ferries and 200 docks. The business model is primarily informational, serving as a public utility platform rather than a commercial enterprise. The website is relatively small in scale, founded in 2017, and operates with a niche focus on regional transportation. Technically, the website employs a modern web stack including HTML5, CSS3, JavaScript with jQuery, Bootstrap for responsive design, FontAwesome for icons, and integrates Google Maps API for route visualization. Hosting appears to be provided by Domainhotelli, a Finnish hosting provider. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance given its European audience. No contact information or incident response details are provided, limiting transparency and trust. The WHOIS data shows the domain is registered to a private person rather than an organization, which is somewhat inconsistent with the public service nature of the site but not necessarily suspicious. No WAF or blocking mechanisms are detected, and the site content is fully accessible. Overall, the website is functional and provides valuable regional transportation information but would benefit from improved security practices, privacy compliance, and clearer business contact details to enhance trust and regulatory adherence.

I

INSIDE COMMUNICATION

inside-communication.lu

0

INSIDE COMMUNICATION is a communication agency based in Luxembourg focusing on strategies, innovation, and impact. The current website is a placeholder announcing a forthcoming new site and offers a newsletter subscription to keep interested parties informed. The company targets businesses or professionals seeking communication and innovation services. The website's technical infrastructure uses standard web technologies including HTML5, CSS3, JavaScript, and integrates Google Fonts and CreateSend for email marketing. However, the site lacks advanced frameworks or CMS indications and shows basic mobile optimization and accessibility features. Security posture is limited with no visible HTTPS confirmation or security headers, and no privacy or cookie policies are present. The WHOIS data is unavailable due to query rate limits, limiting domain legitimacy verification. Overall, the site is functional but minimal, with room for significant improvements in security, privacy compliance, and content richness.

I

Info-Zenter Demenz

demenz.lu

0

Info-Zenter Demenz is a national information and consultation center in Luxembourg specializing in memory disorders and dementia. The organization provides free services and resources to affected individuals, their families, healthcare professionals, and the general public. The website is professionally designed, well-structured, and offers comprehensive content in French, with multilingual support. It maintains a strong presence through social media and government support, positioning itself as a trusted resource in the healthcare non-profit sector. Technically, the website is built on WordPress with modern technologies including Google Tag Manager, reCAPTCHA, and accessibility tools. It demonstrates good mobile optimization, SEO practices, and performance. The hosting and domain registration appear professional and consistent with the organization's profile. From a security perspective, the site uses HTTPS, has implemented cookie consent mechanisms, and employs reCAPTCHA to protect forms. While explicit security policies and incident response contacts are not found, no vulnerabilities or suspicious activities are detected. Privacy compliance is well addressed with clear policies and consent management. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, publishing a formal security policy, and maintaining regular audits of third-party scripts to further strengthen security posture.

DGTL-FUSION's website is minimalistic, offering very limited content beyond a single image and a brief description tagline 'Technology that works'. The company behind the domain is Drivechain (Pty) Ltd, a South African entity established in 2004, indicating a mature business presence. However, the website lacks detailed business information, contact details, or descriptions of services, limiting its effectiveness as a digital presence. The absence of metadata such as Open Graph or structured data further reduces its discoverability and user engagement potential. From a technical perspective, the website does not utilize any detectable modern frameworks, CMS, or analytics tools. The hosting appears to be managed through cpns.host/cpns.zone name servers, but no advanced technical features or security headers are present. Mobile optimization and accessibility are basic, and SEO is poor due to minimal content and lack of meta tags. Security posture is weak, with no evidence of HTTPS enforcement or security headers. The domain WHOIS data is transparent and consistent with the business identity, which supports legitimacy. However, the lack of privacy, cookie, or terms of service policies indicates non-compliance with common data protection standards such as GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website presents a low-risk profile due to minimal content and no suspicious elements but suffers from poor professionalism, lack of user engagement features, and weak security and privacy practices. Strategic improvements in content, security, and compliance are recommended to enhance trust and digital maturity.

S

Centrum.cz: Fandíme dobrému obsahu

stdout.cz

0

Centrum.cz is a prominent Czech internet portal providing a variety of services including email, current news, weather updates, and search functionalities. It serves a broad Czech audience seeking reliable and timely information. The website leverages modern web technologies such as React and Next.js, ensuring a responsive and user-friendly experience. The presence of multiple reputable news sources and professional design indicates a mature digital presence. Security-wise, the site enforces HTTPS and includes essential security headers, reflecting a good security posture. However, the absence of explicit privacy and cookie policies, as well as contact information, suggests areas for compliance and transparency improvement. Overall, Centrum.cz appears to be a trustworthy and well-established media portal with room to enhance privacy compliance and user trust through clearer policy disclosures.

CEES HARTMAN is a small Dutch business specializing in website creation, online marketing, photography, and video production services. The company uses WordPress as its platform and collaborates closely with clients to design websites that reflect their branding and needs. The website showcases a portfolio of client projects, indicating a focus on small to medium-sized clients. Technically, the website is built on a modern WordPress stack with Elementor and the Customizr theme, providing a responsive and user-friendly experience. However, the site lacks privacy and cookie policies, and no explicit contact emails or phone numbers are provided, which may affect user trust and compliance. Security posture is moderate with HTTPS enabled but missing important security headers. Overall, the site is professional and safe but could improve in privacy compliance and security best practices.

U

Upbooking

upbooking.lu

0

Upbooking is a Luxembourg-based online platform dedicated to the recycling and exchange of used school books, promoting environmental sustainability and offering incentives such as vouchers for new book purchases. The platform targets students and families within Luxembourg, supported by government initiatives as evidenced by the presence of the Luxembourg government logo. Technically, the website is built on WordPress with a custom theme, uses modern tools like Google Tag Manager and Axeptio for cookie consent, and implements good accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms in place. Overall, the website is professional, trustworthy, and well-aligned with its educational and governmental mission.

P

Prva sušačka hrvatska gimnazija u Rijeci

pshg.net

0

Prva sušačka hrvatska gimnazija u Rijeci is a Croatian secondary school providing general and specialized education including classical ballet and contemporary dance programs. The institution is well-established with a domain age since 2007 and holds Erasmus accreditation, indicating active participation in European educational programs. The website serves students, parents, and educators with relevant news, schedules, and contact information. Technically, the site uses standard web technologies such as HTML5, CSS3, jQuery, and Font Awesome, hosted under a reputable registrar. The site is moderately optimized for performance and mobile use, with clear navigation and consistent branding. Security posture is moderate; while HTTPS is assumed, no advanced security headers or DNSSEC are implemented, and no cookie consent mechanism is present, which may affect compliance with privacy regulations. Overall, the site is trustworthy and professional but could improve in security and privacy compliance.

Energetska zadruga "Otok Krk" is a small Croatian energy cooperative focused on promoting renewable energy and energy independence on the island of Krk. The cooperative provides consulting, project support, collective purchasing, and education services to local residents and businesses. Their website reflects a community-oriented business model with clear contact information and active social media presence. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Owl Carousel, providing a moderate performance and good mobile optimization. Security posture is moderate with HTTPS usage but lacks explicit security headers and incident response policies. Privacy compliance is basic with privacy and cookie policies present but no consent mechanism. Overall, the website is professional and trustworthy, with a legitimacy score supported by consistent WHOIS data and domain age.

G

Galaksija

galaksija.hr

0

Galaksija.hr is a Croatian online magazine focused on popularizing science across various disciplines including natural sciences, technology, social sciences, ecology, and medicine. The website offers news articles, blogs, multimedia galleries, and videos targeting a general audience interested in science and education. The business model appears to be content publishing supported by advertising and partnerships with related portals. Technically, the site uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Flexslider, and integrates analytics tools like Google Analytics, Histats, and Mixpanel. The site is accessible via HTTPS and includes a login form for registered users, but lacks advanced security headers and explicit GDPR cookie consent mechanisms. No incident response or security contact information is provided, which could be improved to enhance trust and compliance. Overall, the website is professionally designed with good content quality and moderate technical implementation, suitable for its niche media role.

E

Eko Kvarner

ekokvarner.hr

0

Eko Kvarner is a Croatian non-profit environmental organization focused on promoting sustainable energy, climate change awareness, and ecological protection in the Kvarner region. The website serves as an information hub providing news, activities, projects, and educational resources to local communities and stakeholders interested in environmental issues. The organization appears well-established with a domain registered since 2012 and clear contact information including physical address, phone numbers, and email. The site content is primarily in Croatian and targets regional audiences. Technically, the website uses an older CMS platform called Galaksija and relies on legacy JavaScript libraries such as jQuery and Fancybox. While the site is accessible and contains meaningful content, it loads some external scripts over unsecured HTTP, which introduces mixed content risks. The site lacks modern security headers and advanced privacy or cookie consent mechanisms, indicating room for improvement in security and compliance maturity. Hosting is provided by Totohost, a Croatian hosting provider, and the domain registrar is CARNET, a reputable Croatian academic network. From a security perspective, the site uses HTTPS but does not implement additional security headers or content security policies. No incident response or security policy pages are found, and no vulnerability disclosure or security.txt files are present. The WHOIS data is consistent with the website's business profile and geographic location, supporting legitimacy. No suspicious or malicious indicators were detected. Overall, the website is functional and provides valuable content for its target audience but would benefit from technical modernization, improved security practices, and enhanced privacy compliance to strengthen trust and resilience against threats.

G

Gemeindeamt Markt St. Martin

marktstmartin.at

0

The website marktstmartin.at serves as the official online presence of the Gemeindeamt Markt St. Martin, a municipal government entity in Austria. It provides comprehensive information about the community, including news, events, municipal services, tourism, and contact details. The site targets local residents and visitors, offering a user-friendly platform to access essential community resources and updates. The business model is typical of a government website, focusing on public service and community engagement rather than commercial activities. Technically, the website employs a modern but straightforward technology stack including jQuery, Tether, Bootstrap, and PhotoSwipe for image galleries. The site is mobile responsive and well-structured, with good SEO and accessibility basics. Performance is moderate, and the site uses HTTPS, although explicit security headers are not detected. Google Analytics is included but commented out, indicating a cautious approach to user tracking and privacy. From a security perspective, the site demonstrates a basic but adequate posture. There are no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, consistent with GDPR requirements. Overall, the website is trustworthy and professional, reflecting the legitimacy of a local government entity. It effectively balances user experience, content quality, and privacy considerations. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen the site's security and compliance posture.

EM-Immobilien is a small real estate company based in Vienna, Austria, specializing in property management and brokerage services. The website serves as a basic informational portal targeting individuals and businesses seeking real estate services locally. The company branding is moderately consistent, with a focus on personal and individual service as indicated by the tagline and logo. The website content is primarily in German and includes references to key services such as property management and real estate brokerage. However, the site lacks comprehensive business contact details and formal privacy or terms of service documentation.

Mic Dorin Bau GmbH is a small, family-run construction company based in Austria, specializing in residential building services including shell construction, facades, outdoor areas, and renovations. With over 10 years of experience, the company targets private homeowners and clients seeking personalized construction solutions. The website reflects a professional and consistent brand image, providing clear contact information and a user-friendly interface. Technically, the site is built using modern frameworks like React and Phenomic, with Google Analytics integrated for visitor tracking and a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and trustworthy entity.

LingOA is a foundation dedicated to supporting Diamond Open Access journals in the field of linguistics, hosting 45 journals and publishing over 600 articles annually. The website is built on WordPress using the Enfold theme and employs modern web technologies such as jQuery and Google Fonts. The site is accessible, mobile-optimized, and presents a professional design tailored to an academic audience. However, it lacks explicit privacy, cookie, and terms of service policies, as well as detailed contact information, which impacts its compliance and trustworthiness scores. From a security perspective, the website uses HTTPS, ensuring encrypted communication, but does not implement common security headers, which could improve protection against certain web attacks. No vulnerability disclosure or incident response information is provided, which is a gap for transparency and security readiness. The absence of WHOIS registrant data is due to EURid's privacy policies for .eu domains, which is typical and justified for this type of non-profit academic entity. Overall, the website is safe, professional, and serves its niche academic community well but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

Mathematics in Open Access (MathOA) is a non-profit foundation dedicated to promoting Fair Open Access principles in the mathematics scholarly publishing community. The organization supports the creation and transition of mathematics journals to Diamond Open Access models, providing funding, advisory services, and community engagement. The website reflects a focused academic mission with endorsements from notable scholars and support from reputable institutions. Technically, the site is built on WordPress with a modern theme and standard libraries, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and formal policies are absent. The lack of privacy and cookie policies indicates compliance gaps that should be addressed to meet GDPR and other regulations. WHOIS data is unavailable or malformed, limiting domain trust verification, but the website content and external references support legitimacy. Overall, the site is professional, content-rich, and trustworthy within its niche, but could improve privacy compliance and security transparency.

S

SCRIPT

heydoo.lu

0

Heydoo.lu is an official educational content platform operated under the auspices of Luxembourg's Ministry of National Education, Childhood and Youth, branded as SCRIPT. The platform aggregates a wide range of educational materials including publications, audio, video, apps, and websites, targeting students, teachers, parents, and educators. It supports multilingual content in Luxembourgish, French, and German, enhancing accessibility for its diverse audience. The website is built on Drupal 10 with modern UI frameworks and integrates analytics tools such as Google Analytics and Facebook Pixel for user behavior insights. Technically, the site demonstrates a solid infrastructure with good mobile optimization, accessibility, and SEO practices. Security posture is adequate with HTTPS enforced and anti-bot measures, though some security headers could be improved. Privacy compliance is strong, featuring comprehensive privacy and cookie policies aligned with GDPR requirements. Contact information is primarily provided via a contact form, with no direct emails or phone numbers publicly listed. The absence of WHOIS data due to a malformed domain query limits domain registration trust analysis. However, the official government affiliation and quality content strongly support the site's legitimacy. No adult or questionable content is present, making it safe for general audiences. Overall, Heydoo.lu is a credible, well-maintained educational resource platform with room for minor security enhancements.

I

Istra Bike

istria-bike.com

0

Istra Bike is an official regional cycling tourism portal for the Istria region in Croatia, providing comprehensive information on bike trails, accommodation, events, and related services. The website targets cycling tourists and outdoor enthusiasts, positioning itself as a key resource for promoting cycling tourism in the area. The platform offers detailed trail information, event calendars, multimedia content, and service listings such as bike rentals and transport. Technically, the website employs modern web technologies including Bootstrap 5, jQuery, Slick Carousel, and Lightbox2, ensuring a responsive and user-friendly experience. The site is served over HTTPS and includes cookie consent mechanisms, indicating awareness of privacy regulations. However, some security best practices such as explicit security headers and detailed security policies are missing. From a security perspective, the site maintains a good baseline with HTTPS and cookie consent but lacks advanced security headers and incident response information. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and partner affiliations suggest legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professionally designed and functional, with good content quality and user experience. The main risk lies in the missing WHOIS registration data, which slightly reduces trustworthiness. Strategic improvements in security headers, transparency policies, and domain registration clarity are recommended to enhance trust and compliance.

Istra Trails is an official regional tourism website focused on promoting cycling trails, accommodation, and events in the Istrian peninsula, Croatia. The site targets tourists and outdoor enthusiasts seeking detailed trail information and related services. It maintains a consistent brand presence with partner tourism companies and active social media channels. Technically, the website uses a mix of legacy and modern technologies including jQuery, Google Analytics, Facebook SDK, and Google Maps API v2, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks DNSSEC and security headers, and uses deprecated APIs. Privacy compliance is addressed with a privacy policy and cookie consent banner, though terms of service and incident response policies are absent. Overall, the site is trustworthy and professionally maintained but could improve security and compliance aspects.

M

MXGP Czech republic 26.-27.7.2025 - Home

mxgploket.com

0

The website www.mxgploket.com serves as an informational portal for the MXGP Czech Republic motocross event scheduled for July 26-27, 2025. It provides event details, ticketing links, accommodation, maps, and contact navigation. The site targets motocross enthusiasts and event attendees primarily in the Czech Republic region. Technically, it is built on Joomla CMS with standard web technologies including jQuery, Bootstrap, and Google Maps API integration. The site includes Google Analytics for visitor tracking but lacks visible privacy or cookie policies, which is a compliance gap. Security posture is basic with no detected security headers or advanced protections. WHOIS data for the domain is unavailable, raising concerns about domain registration legitimacy. Overall, the site is functional but requires improvements in privacy compliance, security hardening, and domain legitimacy verification.

Z

ZONER, a.s.

zonerai.com

0

Zoner AI Image Creator is a recently launched online platform by ZONER, a.s., offering free and easy-to-use AI-powered image generation with 4K resolution. The service targets general users interested in creative AI-generated images and is accessible globally via web browsers. The website is built using modern web technologies including Material UI and JavaScript ES modules, hosted likely on infrastructure associated with ZonerCloud. The domain is newly registered in 2023, consistent with the launch of this new service. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, indicating room for compliance improvements.

W

Wiener Städtische Versicherungsverein

wst-versicherungsverein.at

0

Wiener Städtische Versicherungsverein is a medium-sized Austrian non-profit organization dedicated to promoting art, culture, and social engagement. The website reflects a well-established entity with a clear focus on cultural exhibitions, social initiatives, and community involvement. Their market position is that of a reputable cultural non-profit with partnerships in the arts and academic sectors. The website is built on a modern WordPress platform with relevant plugins for SEO and user interaction, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and headers. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving a general audience interested in cultural and social topics.

The website online.hafanplus.cz is an online platform offering pet insurance products primarily targeting dog owners in the Czech Republic. The site provides forms to collect pet and insurance information and offers optional add-ons for working and special dogs. The business model focuses on direct online insurance product offerings with a simple user interface. Technically, the site uses modern frontend technologies including React, Ant Design, and Bootstrap frameworks, with Google Tag Manager for analytics. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is basic; HTTPS is assumed but no security headers were detected, and no explicit security or incident response policies are published. Privacy compliance is partially addressed via a cookie consent banner and a linked privacy policy page. However, no contact information or business registration details are provided, and WHOIS data is unavailable, which reduces trustworthiness. Overall, the site is functional and safe but would benefit from enhanced transparency, security practices, and business credibility disclosures.

S

Solar Action Alliance

solaractionalliance.org

0

Solar Action Alliance is a small environmental advocacy group focused on promoting solar energy as a clean, reliable, and abundant renewable energy source. The website provides comprehensive information on solar panel costs, financing options, and state-specific installation guides, targeting homeowners and environmentally conscious individuals in the US. The business model centers on education and advocacy, supported by donations and informational content. Technically, the site is built on WordPress with Bootstrap for responsive design, leveraging common plugins and tracking tools such as Google Analytics and Facebook Pixel. Hosting is provided by SiteGround, and the domain is registered since 2015, indicating a stable presence. Security posture is moderate with HTTPS enforced and some security best practices observed, but lacks advanced security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from improved compliance and security transparency.

I

Info-Zenter Demenz

demence.lu

0

Info-Zenter Demenz is a national information and consultation center based in Luxembourg, specializing in dementia and memory disorders. It serves affected individuals, their families, healthcare professionals, and the general public by providing free consultation services, educational events, and resources. The organization positions itself as a trusted authority in dementia care and information within Luxembourg, supported by government and community partnerships. The website is professionally designed, multilingual, and accessible, reflecting a strong commitment to user experience and inclusivity. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and Consent Magic for privacy compliance. Hosting is managed via EuroDNS nameservers, and the site employs HTTPS with reCAPTCHA for security. Accessibility features such as an accessibility toolbar are implemented, and SEO best practices are evident through structured data and meta tags. Security posture is solid with HTTPS and privacy consent mechanisms, though explicit security headers and a formal security policy are absent. No vulnerabilities or suspicious activities were detected. Privacy compliance is robust, with clear cookie and privacy policies and user consent management. Contact information is comprehensive and clearly presented. Overall, the website demonstrates a high level of professionalism, security awareness, and compliance, making it a trustworthy resource for its target audience. Strategic improvements could include adding explicit security headers and publishing a security incident response policy to further enhance trust and resilience.

C

culture.lu, Inc.

culture.lu

0

culture.lu is a specialized cultural portal serving the Luxembourg cultural community and enthusiasts. It offers a variety of content including articles, videos, podcasts, event listings, calls for participation, and job offers, positioning itself as a key media hub in the Luxembourg cultural sector. The website is built on Drupal 10 with modern web technologies and integrates social media and newsletter marketing tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some HTTP security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie management. The absence of explicit contact information and terms of service pages is noted but does not significantly detract from overall credibility. The domain registration aligns well with the website's cultural and governmental affiliations, supporting legitimacy. Overall, culture.lu presents a professional, trustworthy, and content-rich platform for its target audience.

F

Free Journal Network

freejournals.org

0

Free Journal Network (FJN) is a small nonprofit organization based in the United States, founded in 2018, dedicated to promoting scholarly journals that adhere to the Fair Open Access model. The organization supports academic journals by facilitating coordination, funding, quality assurance, promotion, and advocacy for open access publishing without author fees. The website serves as an informational and organizational hub for members and interested parties in the scholarly publishing community. Technically, the website is built on WordPress, hosted by Bluehost, and uses common plugins and scripts such as Contact Form 7 and jQuery. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers, representing areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced security and privacy practices.

H

Hrvatsko meteorološko društvo

meteohmd.hr

0

Hrvatsko meteorološko društvo (HMD) is a well-established Croatian non-profit meteorological society dedicated to promoting meteorological science and practice. The website serves as an information hub for members and enthusiasts, offering news, events, project details, and membership services. The organization has a clear national presence with a domain registered since 2001 and consistent WHOIS data aligning with its Croatian roots. Technically, the website uses a traditional tech stack with jQuery and Google Analytics, but some libraries are outdated, posing potential security risks. Accessibility features are commendable, though mobile optimization is basic. Security posture is moderate with HTTPS usage but lacks visible security headers and cookie consent mechanisms, indicating partial GDPR compliance. Overall, the site is professional and trustworthy but would benefit from technical and compliance improvements.

S

SCHIOCCO LTD

board.support

0

Support Board is a technology company specializing in AI-driven chatbots and live chat support solutions primarily for WordPress and PHP platforms. The company offers products that automate customer communication, enhance marketing workflows, and improve customer service efficiency. With over 10,000 global clients and positive expert reviews, Support Board holds a strong position in the customer support software market. The website reflects a professional and modern digital presence with clear navigation and comprehensive content about their offerings. Technically, the site uses a modern tech stack including PHP, WordPress, Bootstrap, and jQuery, hosted on Google Cloud DNS infrastructure, delivering fast and mobile-optimized performance. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is evident with clear privacy and terms of service pages, though cookie consent mechanisms are absent. Overall, the website and business demonstrate high credibility and trustworthiness with no critical security or content safety concerns.

The website empl.io appears to be a small business or startup registered in the US since 2019. The site is built on WordPress using Bootstrap 3.3.4 and the Yoast SEO plugin, indicating a basic level of technical infrastructure. However, the content is minimal with no visible privacy, cookie, or terms of service policies, and no contact information is provided. The technical setup lacks modern security headers and DNSSEC is not enabled, which are areas for improvement. The security posture is basic with no detected vulnerabilities but also no advanced protections. Overall, the site presents a low level of business credibility and privacy compliance, limiting trustworthiness. Strategic improvements in security, privacy policies, and contact transparency are recommended to enhance the site's professionalism and compliance.

A

APPKEE s.r.o.

appkee-manager.cz

0

APPKEE s.r.o. operates a Czech-language software platform focused on mobile application management and development, primarily targeting businesses and developers requiring app creation and management tools for iOS and Android. The company has established a consistent brand presence since its domain registration in 2020 and maintains a professional website with clear navigation and relevant business content. The platform leverages modern JavaScript libraries and the Nette Framework, hosted on Czech-based servers, indicating a localized and technically competent infrastructure. From a security perspective, the website employs client-side validation and uses HTTPS (implied though not explicitly confirmed in provided data). However, it lacks visible security headers such as Content Security Policy or HSTS, and no explicit cookie consent mechanism is present, which are areas for improvement. The absence of contact information and incident response details on the login page limits transparency and user trust. No signs of WAF or blocking mechanisms were detected, allowing full content accessibility. Overall, the website demonstrates moderate technical maturity and business credibility but would benefit from enhanced security practices and privacy compliance measures. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in security headers, cookie consent, and contact transparency would strengthen the platform's trustworthiness and compliance posture.