Security Directory

I

Inbank

inbank.eu

0

Inbank operates as an embedded financing platform focused on accelerating sales for merchants and providing tailored financing solutions to consumers across multiple European markets. The company supports a broad range of sectors including retail, eco-friendly products, and automotive financing, positioning itself as a significant player with over 872,000 active contracts and partnerships with more than 6,000 retailers. The website reflects a professional and consistent brand image with clear business information and a user-friendly design. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, styled with Tailwind CSS, and hosted on Amazon AWS infrastructure. While the site performs moderately well and is mobile optimized, it lacks a valid SSL certificate and HTTPS support, which is a critical security flaw. Additionally, no security headers or advanced TLS configurations are present, exposing the site to potential risks. From a security perspective, the absence of HTTPS and security headers significantly lowers the security posture score. Privacy and cookie policies are implemented with consent mechanisms, indicating basic GDPR compliance. Contact information is clearly available, but no explicit security or incident response policies are found. The WHOIS data is consistent with the business claims, supporting domain legitimacy. Overall, the website demonstrates good business credibility and content quality but suffers from critical security shortcomings. Immediate remediation of SSL/TLS issues and implementation of security best practices are recommended to enhance trust and protect users.

The website myzone.app currently serves as a parked domain page indicating that the domain is registered but not linked to any hosting service. It promotes web hosting packages from Zone.eu in multiple languages, targeting domain owners who need hosting services. The site is basic in content and design, with no privacy or cookie policies, no contact information, and no active forms or data collection. Technically, the site uses standard HTML, CSS, and JavaScript but lacks a valid SSL certificate and modern TLS protocols, resulting in no HTTPS support. Security posture is weak due to missing SSL and security headers, although SPF and DMARC records are properly configured. Overall, the site is functional as a parked domain but lacks essential security and compliance features.

The website harno.ee is a government-related domain managed by the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) through its EENet network services. It appears to serve as a portal for educational and research network infrastructure in Estonia. However, the website content is currently inaccessible due to a Cloudflare Turnstile captcha security challenge, preventing direct content analysis. The domain is registered consistently with the governmental entity and has a domain age appropriate for its establishment in 2020. Technically, the site is hosted behind Cloudflare with security measures such as HSTS enabled, but it lacks a valid SSL certificate and modern TLS protocol support, resulting in no HTTPS availability. DNS records show a well-configured SPF and DMARC policy, but DNSSEC is not enabled. Performance is slow, and no content or business contact information is visible on the challenge page. Security posture is weak due to missing HTTPS and incomplete security headers, though email security policies are in place. Privacy compliance is poor with no visible privacy or cookie policies. Business credibility is moderate based on domain registration and affiliation with a government entity but is limited by lack of accessible content and contact details. Overall, the site requires improvements in SSL/TLS configuration, enabling DNSSEC, and publishing privacy and cookie policies. The current WAF challenge limits content accessibility and analysis, impacting trust and user experience.

E

Eesti Hariduse Kvaliteediagentuur

haka.ee

0

Eesti Hariduse Kvaliteediagentuur (HAKA) is a government-affiliated Estonian agency specializing in the external quality assessment and accreditation of educational institutions. It operates under the Education and Youth Board and is recognized as a leading competence center in Estonia for education quality assurance. The agency is a member of prominent European quality assurance networks such as EQAR, ENQA, INQAAHE, and EQAVET, reinforcing its credibility and international cooperation. The website provides comprehensive information about its services, quality culture promotion, and training activities targeted at educational institutions, experts, and students.

I

IT Crafters

itcrafters.eu

0

IT Crafters is an online education platform specializing in training individuals to become Java Software Developers within 8 months. Powered by BCS Koolitus, Estonia's largest training company, it offers a comprehensive program including practical projects, mentoring, and employment support. The website is professionally designed with clear navigation and detailed content, targeting aspiring IT professionals, especially those without prior experience. The technical infrastructure leverages modern web technologies and Tilda CMS, with adequate mobile optimization but slower performance. Security measures include HTTPS with modern TLS versions and basic email authentication records, though improvements like HSTS and OCSP stapling are recommended. Privacy and terms of service are clearly provided, supporting GDPR compliance. Overall, the site presents a credible and trustworthy educational service with strong business partnerships and a focus on user engagement and support.

The website channelprogram.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any substantive content. The domain is mature, registered since 2012 with GoDaddy.com, LLC, and has proper DNS and email security configurations such as SPF and DMARC. However, the SSL certificate is invalid or missing, resulting in no HTTPS support. The lack of accessible content means no business information, policies, or contact details can be verified. The technical infrastructure relies on Cloudflare for security and hosting, but the absence of a valid SSL certificate and security headers indicates a weak security posture. Overall, the site’s risk is elevated due to inaccessibility and missing security best practices, and the AI analysis score is capped low due to these critical issues.

Kotisivutehdas is a Finnish small-sized technology service provider specializing in professional website development, SEO, AI services, and comprehensive marketing solutions. The company targets small and medium enterprises seeking turnkey, responsive, and SEO-optimized websites. Their market position is strengthened by over 20 years of industry experience and a broad service portfolio including copywriting, website maintenance, and security services. Technically, the website employs modern frameworks like UIkit and integrates popular analytics and marketing tools such as Google Analytics and Facebook Pixel. However, the website suffers from critical security shortcomings, notably the absence of HTTPS and a valid SSL certificate, which severely impacts its security posture. Privacy compliance is addressed through a comprehensive cookie consent mechanism and a detailed privacy policy, though terms of service and security policies are lacking. Overall, the website presents professional content and clear contact information but requires urgent security improvements to protect user data and enhance trust.

B

BCS Koolitus AS

bcskoolitus.ee

0

BCS Koolitus AS is a well-established Estonian company specializing in IT training and certification services for both IT specialists and general computer users. The company offers a broad range of courses including Microsoft Office, IT infrastructure management, programming languages, and e-learning platforms. Their market position is strong within Estonia, supported by extensive project experience and recognized quality certifications such as the HAKA quality mark. The website reflects a professional and consistent brand image with detailed service descriptions and active client engagement through testimonials and project showcases. Technically, the site is built on WordPress with modern technologies and includes multilingual support, though performance optimization is needed due to slow load times and large page size. Security posture is generally good with HTTPS and OCSP stapling, but improvements are recommended in DNS and email security configurations. Privacy compliance is basic with cookie consent mechanisms and privacy policies present, but GDPR compliance could be enhanced. Overall, the company demonstrates credible business operations with clear contact information and a moderate level of digital maturity.

M

MediaSPREA

mediasprea.fi

0

MediaSPREA is a Finnish digital agency specializing in creating effective marketing, sales, and communication tools such as websites, visual identities, electronic marketing, and photography services. The company targets businesses seeking to enhance their digital presence and marketing effectiveness. The website is built on Joomla CMS with common web technologies like jQuery and Bootstrap, and it includes GDPR-compliant cookie consent mechanisms and a validated contact form for customer inquiries. However, the technical infrastructure lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical security vulnerability. The absence of modern security headers and DNS security features further weakens the security posture. Overall, the website content is professional and relevant, but the lack of HTTPS significantly impacts trust and security ratings.

L

Lujakatto Oy

lujakatto.fi

0

Lujakatto Oy is a Finnish company specializing in roofing products and installation services, offering a streamlined e-commerce platform where customers can order both products and installation with transparent pricing. The company targets Finnish homeowners and property managers, positioning itself as a niche regional provider with a focus on quality service and convenience. Technically, the website uses modern front-end technologies such as UIkit and jQuery, but lacks a valid SSL certificate, which impacts security and trust. The site is moderately performant and mobile-optimized, with clear navigation and good content relevance. Security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Privacy policies and terms of service are present but basic, with no advanced compliance or incident response information. Overall, the domain registration data aligns well with the business claims, indicating legitimacy. Strategic improvements in security and privacy compliance are recommended to enhance trust and protect user data.

B

BCS

bcs.ee

0

BCS is a well-established Estonian IT services company founded in 1989, specializing in IT management, cybersecurity, and business IT solutions. The company positions itself as a trusted partner for digital innovation and security, targeting businesses and organizations in Estonia. Their website reflects a mature digital presence with comprehensive service offerings and a focus on cybersecurity through their Infoturbekeskus. Technically, the site is built on WordPress with modern technologies such as TLS 1.3, reCAPTCHA, and LiveChat integration, though performance could be improved due to high resource count and load time. Security posture is solid with proper SSL configuration, SPF and DMARC email protections, and no critical vulnerabilities detected. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though terms of service and explicit security policies are not found. Overall, the site demonstrates good business credibility and technical maturity with room for security header enhancements and performance optimization.

K

Katolle.fi

katolle.fi

0

Katolle.fi is a Finnish e-commerce website specializing in the sale of roofing sheets and related construction materials. The site targets Finnish builders, homeowners, and contractors seeking quality roofing products with competitive pricing and fast delivery. The business operates a Joomla CMS with VirtueMart e-commerce platform, integrating common web technologies such as jQuery and Bootstrap. The website is well-structured with clear product listings and navigation, supporting Finnish language users effectively. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability, exposing users to potential data interception risks. The site includes cookie consent mechanisms and basic privacy information but lacks comprehensive GDPR compliance indicators and security policies. Tracking and advertising tools such as Google Analytics and Google Ads are actively used, indicating moderate user tracking. Overall, the website demonstrates a moderate level of digital maturity but requires urgent security improvements to protect user data and enhance trust.

U

Unisender

unisender.com

0

Unisender is a well-established Russian email marketing service founded in 2009, serving over 870,000 companies primarily in Russia and Belarus. The platform offers a comprehensive suite of marketing tools including email campaigns, chat-bots, SMS messaging, landing page creation, and automation features. The website is professionally designed, content-rich, and targets businesses and marketers seeking efficient communication solutions. Technically, the site is hosted on Yandex Cloud and built on WordPress, utilizing common JavaScript libraries and marketing SDKs. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy and cookie policies are present and indicate GDPR compliance, though user tracking is extensive. Overall, the business demonstrates strong credibility and market presence but must urgently address security vulnerabilities to protect user data and maintain trust.

I

Inbokss Ltd.

inbox.eu

0

Inbox.eu is a privacy and security oriented email and cloud storage service provider based in Latvia, operating since 2001. The company offers both business domain email solutions and personal email accounts with features such as spam filtering, data encryption, and synced contacts and calendar. With over 20 years of experience and processing over 21 million emails weekly, Inbox.eu positions itself as a trusted provider in the privacy-focused email market. The website is professionally designed, multilingual, and targets users seeking secure and private email services. Technically, the site uses standard web technologies including JavaScript, Google Tag Manager, and Facebook Pixel for analytics and marketing. However, the website currently lacks a valid SSL certificate and does not support modern TLS protocols, which significantly impacts its security posture. DNS records are well configured with SPF and DMARC policies, but DNSSEC and CAA records are absent. Incident response contact is available via DMARC abuse email. Privacy and terms of service policies are present and appear comprehensive, but no cookie consent mechanism was detected. Overall, the site demonstrates moderate digital maturity but requires urgent improvements in SSL/TLS security to protect user data and trust.

J

JanLa Oy

janla.fi

0

JanLa Oy is a Finnish wholesale and service center specializing in roofing and sheet metal products, including steel roofing, solar power solutions, rainwater systems, and safety equipment. The company serves construction industry professionals, sheet metal businesses, private customers, and housing companies, positioning itself as a leading player in its sector with a focus on quality and innovation. The website reflects a medium-sized enterprise with multiple physical locations across Finland and a comprehensive product offering.

U

UAB Toode

toode.lt

0

UAB Toode is a medium-sized Lithuanian company specializing in manufacturing and retailing steel roofing materials and accessories, with a strong presence in the Baltic region supported by factories in Estonia, Latvia, and Finland. The company holds recognized certifications such as ISO 9001 and CE marking, reinforcing its market position as a reputable supplier in the construction sector. Their website provides comprehensive product catalogs, customer testimonials, and multiple contact channels, targeting construction professionals and retail customers. Technically, the website is built on WordPress with WooCommerce, leveraging common web technologies and marketing tools like Google Analytics and Tag Manager. However, the site suffers from significant security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which critically undermines user trust and data protection. Privacy compliance is addressed through GDPR-aligned cookie consent and a privacy policy document, but terms of service and explicit security policies are missing. Overall, the website demonstrates good business credibility and content quality but requires urgent improvements in security infrastructure and performance optimization to enhance user trust and operational resilience.

T

Toode

toode.ee

0

Toode AS is an established Estonian company specializing in roofing materials, rainwater systems, and roofing accessories, with a history dating back to 1991. The company serves the Baltic region with a medium-sized business model that includes manufacturing, retail, and e-commerce components. Their website reflects a consistent brand presence and targets customers seeking quality roofing solutions. Technically, the site is built on WordPress with a variety of plugins and third-party integrations, but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS, lack of security headers, and no advanced TLS configurations. Privacy compliance is basic with a privacy policy and cookie consent mechanism present but could be enhanced. Overall, the domain and WHOIS data confirm the legitimacy and maturity of the business. Strategic improvements in security and performance are recommended to enhance trust and compliance.

S

SIA "Laba Sēta"

labaseta.lv

0

SIA "Laba Sēta" is a Latvian small manufacturing business specializing in the production and installation of concrete products, fences, gates, and related territory landscaping services. The company offers a comprehensive range of products including concrete fence posts, gates, PVC fences, and gate automation solutions. Their market position is that of a local specialized manufacturer and installer serving residential and commercial customers. The website is built on WordPress using common plugins and themes, with moderate digital maturity evidenced by the use of Google Analytics and Tag Manager. However, the site lacks a valid SSL certificate, which severely impacts security posture and user trust. No privacy or terms of service pages were found, though a cookie consent banner is present. Contact information is clearly provided, supporting business credibility. Overall, the website is functional and professionally designed but requires significant security improvements.

S

SIA IMPROVEMENT

improvement.lv

0

SIA IMPROVEMENT is a Latvian small business specializing in landscaping, paving, road construction, and bulk material delivery services. Founded in 2018, the company positions itself as a reliable local specialist offering quality full-cycle paving stone installation, greening, and construction services. The website is professionally designed using WordPress and Elementor, providing clear navigation and multilingual support. Contact information is prominently displayed, including multiple phone numbers, emails, and physical addresses in Riga, Latvia. Social media presence on Facebook and Instagram supports brand visibility. Technically, the website uses a modern WordPress stack with WooCommerce and Elementor plugins, but performance is hindered by a large page size and slow load times. Security posture is basic with a valid SSL certificate but lacks advanced security headers and HSTS enforcement. No explicit privacy, cookie, or terms of service policies are found, indicating gaps in compliance. Tracking is moderate via Google Tag Manager and reCAPTCHA. Overall, the site is functional and credible for its business scope but requires improvements in security best practices, privacy compliance, and performance optimization to enhance trust and user experience.

E

E-COMMERCE BROKER SIA

finlat.lv

0

Finlat.lv is a Latvian-based credit comparison and brokerage platform operated by E-COMMERCE BROKER SIA, founded in 2021. The platform offers a wide range of financial services including consumer loans, mortgage-backed loans, auto loans, business loans, refinancing, and credit consolidation. It serves individuals and businesses in Latvia, providing a convenient one-application process to access multiple lenders. The website is well-structured with clear navigation, client testimonials, and partner logos enhancing its credibility. Technically, it is built on WordPress with Elementor and uses modern web technologies, but lacks a valid SSL certificate, which is a critical security concern. The absence of a cookie consent mechanism also poses potential GDPR compliance issues. The platform integrates several analytics and marketing tools such as Google Analytics, Yandex Metrica, and Facebook Pixel, indicating moderate user tracking. Overall, the business appears legitimate with consistent WHOIS data and transparent contact information, but needs to address security and privacy compliance gaps to improve trust and security posture.

S

SIA Toode

toode.lv

0

SIA Toode is a medium-sized manufacturing company based in Latvia specializing in steel roofing and wall profiles, rainwater drainage systems, and related construction materials. The company has a regional presence with partner sites in Estonia, Lithuania, and Finland, positioning itself as a key player in the Baltic and Nordic construction materials market. Their website reflects a professional business with clear product offerings and a focus on construction professionals and building owners. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Cookiebot for tracking and compliance. However, performance is somewhat slow, and accessibility is basic. Security posture is adequate with HTTPS and SPF/DMARC records but lacks advanced SSL features such as HSTS and OCSP stapling, and no security headers are detected. Privacy compliance is supported by a privacy policy and cookie consent mechanism, though no incident response or security policy is visible. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in security headers, SSL configuration, and incident response transparency would enhance the site's security and trustworthiness.

L

LU Matemātikas un informātikas institūts

latnet.lv

0

The website latnet.lv represents the academic network laboratory of the University of Latvia's Institute of Mathematics and Computer Science, operating under the brand SigmaNet. It provides domain registration, email hosting, and internet connectivity services primarily targeting academic institutions and educational organizations in Latvia. The organization has a long-standing history dating back to 1993, positioning itself as a trusted academic network operator with a medium-sized operational scale. The website content is well-structured, informative, and consistent with the institutional identity, offering clear contact information and social media presence. From a technical perspective, the site uses legacy JavaScript libraries such as jQuery 1.9.1 and jQuery UI 1.12.0, integrates Google Maps API for location display, and employs parallax effects for visual enhancement. The hosting is managed by SigmaNet itself, reflecting an in-house academic infrastructure. Performance is moderate with basic mobile optimization and accessibility features. SEO is basic but sufficient for the target audience. Security posture is a significant concern due to the absence of HTTPS/SSL certificate, exposing users to potential data interception risks. Although SPF and DMARC DNS records are configured correctly, the lack of DNSSEC and CAA records reduces DNS security. No security policies or incident response contacts are published, and no cookie consent mechanism is implemented, which may impact GDPR compliance. The site uses Google Analytics for user tracking without visible consent banners. Overall, the website is credible and trustworthy from a business perspective but requires urgent security improvements to protect user data and comply with modern security standards. Strategic recommendations include implementing HTTPS, enhancing DNS security, publishing security policies, and introducing privacy compliance mechanisms.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website www.1a.lv is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page blocking access. As a result, no actual website content, business information, or contact details are available for analysis. The domain is registered and active with DNS hosted on Cloudflare, but the SSL/TLS configuration is invalid or missing, resulting in no HTTPS support. The DNS records show standard configurations including SPF and DMARC for email protection. The website performance is moderate based on DNS resolution and load time data, but the lack of accessible content severely limits the ability to assess the business or technical maturity. Security posture is weak due to missing HTTPS and security headers, and no privacy or cookie policies are found. Overall, the site is currently not usable for end users due to the WAF block, and the trustworthiness and professionalism cannot be evaluated beyond domain legitimacy.

N

Nelio Software

neliosoftware.com

0

Nelio Software is a mature and established WordPress-focused technology company specializing in marketing optimization plugins such as A/B testing, content management, session recordings, popups, and forms. The company targets WordPress site owners and marketers seeking to improve engagement and conversions through data-driven tools. Their market position is strengthened by their WordPress VIP Technology Partner status and a consistent brand presence. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the business credibility is high, supported by testimonials and active social media engagement.

N

Nelio Software

nelioabtesting.com

0

Nelio Software operates a mature and professionally maintained website offering a native A/B testing and conversion optimization service specifically designed for WordPress users. The company holds a reputable position in the WordPress ecosystem, evidenced by its WordPress VIP Technology Partner status and comprehensive service offerings including heatmaps, popups, and analytics. The website demonstrates excellent content quality, clear navigation, and strong branding consistency, targeting marketers, eCommerce businesses, publishers, and agencies seeking to optimize their WordPress sites. Technically, the site is built on WordPress with modern plugins and integrations such as Yoast SEO, Nelio A/B Testing, and Nelio Popups. Hosting is provided by SiteGround, and the site employs standard web technologies including jQuery and Google Tag Manager. While performance and mobile optimization are good, the SSL certificate is expired, and security best practices like HSTS and DNSSEC are not implemented, which lowers the overall security posture. Security-wise, the site uses HTTPS with TLS 1.3 and 1.2 protocols and shows no signs of known SSL vulnerabilities or exposed sensitive data. However, the expired SSL certificate and lack of domain protection mechanisms present risks that should be addressed promptly. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, the website is trustworthy and professional but requires immediate attention to SSL certificate renewal and enhanced domain security measures to maintain its credibility and protect user data. Strategic improvements in security headers and domain protection will further strengthen its security posture and business reputation.

G

GRIMEX SIA

grimex.lv

0

GRIMEX SIA is a Latvian company offering a diverse range of services including web development, advertising, rental of offices, warehouses, equipment, and professional workers, as well as sales agency services. The company targets businesses looking to expand or operate in Latvia and Scandinavia, positioning itself as a versatile business partner with a 5-year presence in the Scandinavian market. The website content is basic and marketing-focused, with limited detailed business information and no visible privacy or cookie policies. Technically, the website is built on WordPress with Yoast SEO and uses common marketing and analytics tools such as Google Tag Manager, Google Analytics, and Facebook Pixel. However, the site suffers from a lack of a valid SSL certificate and does not serve content over HTTPS, which is a critical security shortfall. Performance is slow, and mobile optimization and accessibility are basic. SEO is reasonably well implemented through meta tags and structured data. From a security perspective, the site has some positive configurations such as SPF and DMARC DNS records and HSTS header enabled, but the absence of a valid SSL certificate and modern TLS protocols severely undermines the security posture. No security policies, incident response contacts, or vulnerability disclosures are present, and domain registration lacks protection locks, which could pose risks. Overall, the website presents moderate business credibility but has significant security and privacy compliance gaps. Strategic improvements in SSL deployment, privacy policy publication, and security best practices are recommended to enhance trust and compliance.

G

GRIMEX SIA

seotips4u.com

0

SEO TIPS FOR YOU, operated by GRIMEX SIA, is a small Latvian digital agency specializing in SEO and web design services. The company offers a mix of free educational content and professional services aimed at helping beginners and small businesses improve their online presence and search engine rankings. Their service portfolio includes SEO audits, web development, website design, ecommerce solutions, and logo design. The website is built on WordPress with WooCommerce and Elementor, reflecting a modern and flexible technical infrastructure. However, the absence of a valid SSL certificate is a significant security concern, exposing users to potential risks and impacting trust. The site implements GDPR-compliant cookie consent mechanisms, demonstrating awareness of privacy regulations. Overall, the business appears legitimate and consistent with its WHOIS registration data, but it should prioritize securing its website with HTTPS to enhance security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 13 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website trodo.lv is currently inaccessible to general users due to a Cloudflare Web Application Firewall (WAF) challenge page requiring human verification. This prevents access to any substantive business content, contact information, or policies. The domain is registered and active with DNS and mail configurations indicating use of Microsoft Outlook mail protection and Google-related services. The SSL certificate is valid but short-lived, and no advanced security headers or DNSSEC are enabled. The lack of visible privacy or cookie policies and absence of contact details limit the ability to assess compliance and business credibility. Overall, the site appears to be protected by Cloudflare but lacks publicly accessible content for full evaluation.

Z

ZAAO

zaao.lv

0

ZAAO is a Latvian waste management company providing comprehensive services including collection, sorting, transportation, and disposal of various waste types in an environmentally friendly manner. The company targets private individuals, businesses, farmers, and public event organizers within its regional operational area. The website reflects a medium-sized enterprise with a clear business model focused on waste management and recycling services. Technically, the site is built on WordPress with Elementor, hosted on Google Cloud infrastructure, and uses modern web technologies and analytics tools. However, the absence of a valid SSL certificate significantly impacts the security posture, exposing users to potential risks. While cookie consent and privacy policies are well implemented, the lack of HTTPS and security headers are critical vulnerabilities. Overall, the domain registration is consistent and trustworthy, but security improvements are urgently needed to protect user data and enhance trust.

D

Dateks

dateks.lv

0

Dateks.lv operates as a medium-sized e-commerce retailer based in Latvia, specializing in a broad range of technology and consumer electronics products. The website offers extensive product categories including computers, components, office equipment, and home appliances, targeting both consumers and businesses in the Baltic region. The company maintains partnerships with major technology brands such as Asus, Dell, Intel, Lenovo, and Nvidia, reinforcing its market position as a reputable regional retailer. From a technical perspective, the website employs modern tracking and marketing technologies including Google Tag Manager, Facebook Pixel, and Cookiebot for consent management. However, the site suffers from slow performance due to a large page size and numerous resources. Mobile optimization is good, but accessibility features are basic. The lack of a valid SSL certificate is a critical security shortfall, impacting user trust and data protection. Security posture reveals several vulnerabilities including missing DMARC, DNSSEC, and CAA records, and no domain protection locks, which collectively increase risk exposure. While HSTS is enabled, the absence of a valid SSL certificate and other security best practices lowers the overall security score. Privacy and cookie policies are present and GDPR compliant, with clear contact information provided. Overall, Dateks.lv presents a professional and content-rich e-commerce platform with moderate technical maturity and security posture. Strategic improvements in SSL/TLS implementation, email security, and DNS hardening are recommended to enhance trust and compliance.

E

efficy

tribecrm.es

0

Tribe CRM, operated under the parent company efficy, offers a highly adaptable CRM platform designed to help businesses grow by integrating sales, marketing, and customer service functions with AI capabilities. The website targets Spanish-speaking businesses seeking customizable CRM solutions with seamless integrations and workflow automation. The company positions itself as a modern, customer-centric CRM provider with a growing client base exceeding 10,000 users. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Piwik PRO, and Cookiebot for consent management. However, the site suffers from a lack of valid SSL/TLS certificates, resulting in insecure HTTP connections and no HTTPS enforcement, which is a critical security concern. Performance is suboptimal with slow load times and a large page size, though mobile optimization and content quality are strong. Security posture is weak due to missing HTTPS, lack of security headers, and no DMARC record, exposing the site to potential risks. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism in place. Business credibility is supported by clear contact information, professional content, and trust signals such as testimonials and partner links. Overall, while the business and content aspects are strong, the security deficiencies significantly impact the risk profile. Immediate remediation of SSL/TLS and security headers is recommended to protect user data and improve trust.

E

efficy

tribecrm.se

0

Tribe CRM, operated by efficy, offers a comprehensive, customizable CRM platform designed to help businesses grow by streamlining customer relationship management, sales, marketing, and project management processes. The platform integrates AI-driven tools and supports seamless integration with popular business applications, targeting medium-sized enterprises primarily in Sweden and surrounding markets. The website is professionally designed with rich content, multiple language support, and clear calls to action, reflecting a mature digital presence. However, the technical infrastructure shows critical security weaknesses, notably the absence of a valid SSL certificate and HTTPS, which severely undermines user trust and data security. Despite extensive use of analytics and marketing tools with consent mechanisms, the lack of HTTPS and security headers poses significant risks. Overall, the business appears legitimate and well-positioned in the CRM market, but urgent improvements in security posture are necessary to protect users and comply with best practices.

E

efficy

tribecrm.eu

0

Tribe CRM is a technologically advanced, no-code CRM platform designed to empower businesses with customizable sales, marketing, and customer service tools integrated with AI capabilities. The platform targets medium-sized businesses seeking scalable and adaptable CRM solutions. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS implementation represents a critical security vulnerability that undermines user trust and data protection. The site employs multiple third-party analytics and marketing tools, including Piwik PRO, Google Analytics, and Cookiebot, with a comprehensive cookie consent mechanism ensuring GDPR compliance. Overall, while the business and technical maturity are strong, the security posture requires urgent improvement to meet industry standards and protect user data effectively.

E

efficy

tribecrm.fr

0

Tribe CRM is a French-language SaaS CRM platform operated by efficy, targeting businesses seeking a flexible, AI-powered CRM solution. The website presents a professional, content-rich experience with clear business offerings, pricing, and multilingual support. Technically, the site is built on WordPress with modern marketing and analytics integrations, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which severely impacts security posture. Privacy compliance is well addressed with comprehensive cookie consent and privacy policies. Overall, the business appears legitimate and well-positioned in the CRM market, but the security weaknesses pose risks that should be urgently addressed.

P

PerfectView CRM Online

perfectview.nl

0

PerfectView CRM Online is a well-established Dutch CRM software provider with over 36 years of experience and a strong customer base exceeding 5,200 clients. The company offers a comprehensive SaaS CRM platform targeting Dutch businesses, emphasizing data privacy by hosting data within the Netherlands and maintaining ISO 27001 certification. The website reflects a professional and consistent brand presence with good content quality and clear navigation. Technically, the site is built on WordPress using common frameworks like Bootstrap and jQuery, with integration of marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Hotjar, and LinkedIn Insight Tag. However, the website suffers from a critical security issue due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture and user trust. Other security best practices like HSTS and security headers are also missing. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

C

Civilstyrelsen

lovtidende.dk

0

Lovtidende.dk is the official Danish government platform for publishing laws and regulations, managed by Civilstyrelsen. It serves as a critical resource for government officials, legal professionals, and the public to access official legal documents. The website provides structured access to legal publications and links to other official government legal information portals. Technically, the site is built using modern frontend technologies such as React and employs SVG icons and CSS-in-JS styling. However, the site suffers from significant security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. The site also lacks security headers and cookie consent mechanisms, although it claims not to use cookies. Overall, the website is content-rich and professionally presented but requires urgent security improvements to protect user data and ensure trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, sslTls. 13 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

APSIS

apsis.dk

0

APSIS is a Denmark-based technology company specializing in AI-driven email marketing and marketing automation solutions through its flagship platform, Apsis One. The platform offers a comprehensive suite of marketing tools including email marketing, AI assistant, SMS marketing, CRM, and integrations designed to empower marketers to create personalized and data-driven customer experiences. The company operates under the parent company Efficy and serves a medium-sized market segment with a strong focus on seamless user experience and advanced marketing capabilities. Technically, the website is built on Drupal 10 and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. However, the website currently suffers from a critical security issue due to an invalid or missing SSL certificate and lack of modern TLS protocol support, which significantly impacts its security posture. Despite this, the site maintains good privacy and cookie policies with consent mechanisms, and no exposed sensitive data was detected. Overall, APSIS presents a professional and trustworthy marketing technology provider with room for improvement in its security infrastructure.

A

APSIS

apsis.se

0

APSIS is a Swedish technology company specializing in marketing technology solutions, offering a comprehensive SaaS platform called Apsis One that integrates AI-driven email marketing, marketing automation, SMS marketing, event management, and CRM integrations. The company targets modern marketers and businesses seeking to optimize their digital marketing efforts with data-driven tools. The website is professionally designed, content-rich, and well-structured, providing clear navigation and multiple calls to action such as free trials and demos. Technically, the site uses Drupal 10 CMS and integrates popular marketing and tracking technologies including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. Security headers are present but the absence of TLS protocols and valid certificates significantly lowers the security posture. Privacy and cookie policies are present and appear GDPR compliant, with consent mechanisms implemented. Contact information is primarily via contact forms; no explicit emails or phone numbers were found. WHOIS data is consistent with the business claims, showing no suspicious registration patterns. Overall, the site demonstrates good business credibility and privacy compliance but requires urgent improvements in SSL/TLS security to protect user data and improve trust.

C

Civilstyrelsen

statstidende.dk

0

Statstidende.dk is an official Danish government website operated by Civilstyrelsen under the Ministry of Justice. It serves as the official publication platform for legally mandated notices, allowing users to search, read, subscribe to, and submit official announcements. The site targets Danish citizens and organizations required to publish legal notices, positioning itself as a critical government information service. Technically, the site is built using modern JavaScript frameworks such as React and Webpack, providing a responsive and user-friendly interface. However, performance is suboptimal with a slow load time and large page size, indicating potential optimization opportunities. From a security perspective, the site lacks a valid SSL certificate and HTTPS support, which is a critical vulnerability for any public-facing website, especially a government platform. Additionally, no security headers or incident response policies are evident, and cookie consent mechanisms are absent, raising compliance concerns. Overall, while the business credibility and content quality are strong due to official government backing, the technical and security posture require urgent improvements to ensure user trust and regulatory compliance.

U

UVdata A/S

uvdata.dk

0

UVdata A/S is a Danish software company specializing in providing comprehensive software solutions for private and free schools, afterschools, and educational institutions in Denmark. Their product portfolio includes school management systems, payroll solutions, guidance software, and time management tools, positioning them as a key player in the Danish education technology sector. The company operates under the parent company KMD, enhancing its market credibility and reach. The website content is well-structured, primarily in Danish, and targets educational institutions with relevant services and support information. Technically, the website is built on WordPress using the Avada theme and integrates several JavaScript libraries and plugins, including Matomo for analytics. However, the site suffers from performance issues with slow load times and a large number of resources. Security-wise, the website lacks a valid SSL certificate, serving content without HTTPS, which is a critical vulnerability. Additionally, it lacks essential security headers and advanced SSL features such as HSTS and OCSP stapling. Privacy compliance is addressed with clear privacy and cookie policies and a consent mechanism, aligning with GDPR requirements. Overall, while the business and content aspects are strong and credible, the technical and security posture require significant improvements to ensure user trust and data protection.

S

Sekoia

sekoia.dk

0

Sekoia is a Danish healthcare software company providing a specialized app for care centers and social service providers to improve planning, documentation, and communication. The company is well-established with a mature domain and a clear market position supported by integrations with KMD Nexus and usage by multiple municipalities. The website is built on WordPress with modern marketing and analytics tools integrated, including consent management for GDPR compliance. However, the site currently lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability that undermines user trust and data protection. Privacy policies and cookie consent mechanisms are well implemented, and contact information is clearly presented. Overall, the business demonstrates good digital maturity but requires urgent security improvements to meet modern standards.

E

Edlund A/S

edlund.dk

0

Edlund A/S is a Danish company specializing in flexible software solutions and consulting services for the life and pension insurance sector. Established in 1998, the company offers modular standard software and expert consulting to help clients modernize and optimize their insurance administration systems. The website reflects a professional and consistent brand presence targeting Danish life and pension companies. Technically, the site uses ASP.NET with Umbraco CMS, modern JavaScript modules, and is hosted behind Cloudflare. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly undermines the site's security posture. Privacy and cookie policies are present with consent mechanisms, and contact information is comprehensive. Analytics and marketing tools are actively used, indicating a moderate level of user tracking. Overall, the site is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

C

Civilstyrelsen

civilstyrelsen.dk

0

Civilstyrelsen is a Danish government agency under the Ministry of Justice, responsible for ensuring the fundamental principles of the rule of law. The agency provides a wide range of public services including legal aid, permissions for property acquisition, compensation claims, and oversight of various legal and administrative functions. The website targets Danish citizens, legal professionals, and organizations requiring governmental legal services. It operates as an official government entity with a medium organizational size and a consistent brand presence. The content is well-structured and relevant, supporting the agency's mission and services effectively. Technically, the website is built on the GoBasic CMS platform with jQuery and uses embedded Vimeo videos. Hosting appears to be on cloud infrastructure with IPv4 and IPv6 addresses. However, the website suffers from slow performance with a load time exceeding 15 seconds and a relatively large page size. Mobile optimization and accessibility are good, but SEO optimization is basic. The site lacks modern security configurations, notably missing a valid SSL certificate and HTTPS support, which is a critical vulnerability. From a security perspective, the absence of HTTPS and TLS protocols, lack of security headers, and missing DNS security features expose the site to potential risks. No incident response or vulnerability disclosure mechanisms are evident. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Contact information is clearly provided, enhancing trust and credibility. Overall, while the website serves its governmental purpose with good content and user experience, the critical lack of HTTPS and modern security measures significantly lowers its security posture and trustworthiness. Addressing these issues is paramount to protect user data and maintain public trust.

K

KMD A/S

kmd.dk

0

KMD A/S is a leading Danish IT and software company specializing in delivering comprehensive IT solutions to the public sector and businesses, with a strong focus on sectors such as energy, education, healthcare, and government. The company operates as a subsidiary of NEC Corporation and offers a broad portfolio of services including HR and payroll systems, data analytics, electronic document management, IT security, and SAP services. The website reflects a mature, well-established enterprise with extensive content and a professional digital presence. Technically, the website utilizes modern web technologies including ASP.NET, JavaScript modules, and is hosted behind Cloudflare with Umbraco CMS. It employs multiple security headers and analytics tools such as Google Analytics and Siteimprove. However, the absence of a valid SSL certificate and lack of enabled TLS protocols represent significant security weaknesses that must be addressed to ensure secure communications. From a security perspective, the site has implemented strong security headers and a strict DMARC policy, indicating good email security practices. Yet, the invalid SSL configuration and missing modern TLS support severely impact the overall security posture. Privacy compliance is well managed with clear privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, KMD's website demonstrates high business credibility and professionalism but requires urgent remediation of its SSL/TLS configuration to protect user data and maintain trust. Strategic improvements in security infrastructure will enhance the company's risk management and compliance stance.

U

Ubivox Technologies ApS

ubivox.com

0

Ubivox Technologies ApS operates a GDPR-compliant SaaS platform specializing in newsletters, email campaigns, and transactional emails, targeting companies, webshops, and governmental institutions primarily in Denmark. The company has a strong market presence with over 1,000 clients including notable Danish government bodies. Their platform emphasizes user-friendliness, legal compliance, and integration capabilities with over 1,000 external systems. Technically, the website is built on WordPress with the Avada theme and incorporates modern JavaScript libraries and marketing tools such as Matomo, Facebook Pixel, and LinkedIn Insight Tag. Security measures include TLS 1.3 support and OCSP stapling, though improvements like enabling HSTS and DNSSEC are recommended. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, with a moderate to good security posture and strong business credibility.

D

Danish Research Institute for Economic Analysis and Modelling

dreamgruppen.dk

0

DREAMgruppen.dk represents the Danish Research Institute for Economic Analysis and Modelling, an independent institution specializing in economic modeling and analysis of the Danish economy. The organization offers a suite of economic and demographic models and provides services such as policy evaluation, custom analyses, and training. The website is professionally designed with comprehensive content targeting public and private sector stakeholders interested in economic data-driven decision making. Technically, the site is built on ASP.NET with GoBasic CMS and uses jQuery, but suffers from slow load times and lacks modern security implementations such as HTTPS. Security posture is weak due to the absence of a valid SSL certificate, no TLS protocols enabled, and missing security headers, which poses a significant risk to user data and trust. Privacy compliance is adequate with clear privacy and cookie policies, though no explicit consent mechanism is observed. Overall, the site is credible and trustworthy from a business perspective but requires urgent security improvements to protect visitors and maintain institutional reputation.