Security Directory

O

Obiteljski centar

obiteljski.hr

48

Obiteljski centar is a Croatian public institution dedicated to providing counseling services and programs aimed at children, youth, parents, and families. The organization operates with a mission to support personal growth, strengthen family relationships, and foster community engagement. Their services are offered free of charge, emphasizing accessibility and social welfare. The website reflects a well-established entity with a domain age consistent with its founding year of 2013. The content is professionally presented in Croatian, targeting local audiences in need of social and family support services. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO and user experience. The site is mobile optimized and includes cookie consent mechanisms compliant with GDPR, reflecting a mature digital infrastructure. While the hosting provider is not explicitly identified, the site uses HTTPS with a good SSL configuration, contributing to secure communications. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected and could be improved. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of a security policy or incident response page suggests room for enhancement in security transparency. Overall, the website presents a low-risk profile with strong compliance to privacy regulations and a clear focus on social services. Recommendations include implementing additional security headers, publishing security policies, and maintaining regular updates to WordPress and plugins to sustain security posture.

S

Scenoteka Zagreb

scenoteka.hr

48

Scenoteka Zagreb is a cultural and theatrical venue located in the heart of Zagreb, Croatia, offering a platform for independent theater productions, stand-up comedy, and other performing arts. The organization focuses on providing accessible cultural experiences and operates through event organization, ticket sales, and venue rental. The website reflects a well-established regional cultural institution with a clear target audience of theater enthusiasts and local community members. Technically, the website is built on WordPress using modern themes and plugins, ensuring a responsive and visually appealing user experience. The presence of structured data and social media integration enhances its digital maturity. Security-wise, the site enforces HTTPS and includes GDPR-compliant cookie consent mechanisms, though it lacks some advanced security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the organization's cultural mission effectively.

P

Pozitivan ritam

pozitivanritam.hr

44

Pozitivan ritam is a Croatian independent media and event organization specializing in music festivals, club events, and independent music production and distribution. The website showcases a variety of music-related content including festival announcements, club event schedules, and record label news, targeting music enthusiasts primarily in Croatia and the surrounding region. The business operates multiple music venues and organizes notable festivals such as Sea Sound Festival and Martinska Punk, positioning itself as a key player in the regional independent music scene. Technically, the website is built on Drupal CMS with a modern tech stack including jQuery, Font Awesome, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile optimized with good navigation and content quality, although some accessibility features are basic. Performance is moderate, with standard use of third-party scripts and advertising networks. From a security perspective, the site enforces HTTPS and includes a Content-Security-Policy header, but could improve by adding additional security headers and tightening CSP rules. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a GDPR-compliant cookie consent banner and a privacy policy page in Croatian. However, no terms of service or explicit contact information for security or incident response was found. Overall, the website presents a professional and trustworthy front for a small independent music business. The lack of WHOIS data due to privacy protection is typical and justified for this business type. Recommendations include enhancing security headers, publishing terms of service, and providing clearer contact information to improve trust and compliance.

C

Cesarica [ Glazbena nagrada publike ]

cesarica.org

45

Cesarica.org is a music award platform focused on audience choice awards, primarily serving a regional music community. The website is built on WordPress using Elementor and optimized with Yoast SEO and WPRocket, indicating a moderate level of digital maturity. The technical infrastructure is standard for small to medium-sized event or media websites, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC, and no visible privacy or cookie policies, which are critical for compliance and trust. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures to improve user trust and regulatory compliance.

H

Hrvatsko knjižničarsko društvo

hkdrustvo.hr

10

Hrvatsko knjižničarsko društvo is a well-established Croatian non-profit professional association dedicated to the advancement of librarianship since 1940. The organization provides key services including organizing professional events, publishing scholarly journals, and advocating for Croatian libraries. Their website reflects a strong market position within the Croatian educational and cultural sectors, targeting library professionals and researchers. The site is professionally designed with consistent branding and rich content relevant to its audience. Technically, the website is built on a modern WordPress platform with WooCommerce for e-commerce functionality, Yoast SEO for search optimization, and Google Analytics for user tracking. The infrastructure is hosted under Croatian academic network CARNET, ensuring regional consistency and reliability. The site demonstrates good mobile optimization and moderate performance, with room for improvement in accessibility. From a security perspective, the website enforces HTTPS and uses standard WordPress security practices but lacks explicit security headers and published security policies. There is no visible cookie consent mechanism, which is a compliance gap under GDPR. No vulnerabilities or malicious content were detected, but the absence of incident response information and vulnerability disclosure reduces the overall security maturity. Overall, the website is trustworthy and professional with a solid business credibility score. Strategic recommendations include implementing GDPR-compliant cookie consent, publishing security and incident response policies, and enhancing security headers to improve the security posture and compliance. These improvements will strengthen user trust and regulatory adherence.

N

Nacionalna i sveučilišna knjižnica u Zagrebu

nsk.hr

10

The website represents the Nacionalna i sveučilišna knjižnica u Zagrebu, the largest Croatian national and university library. It serves as a central resource for academic and public users in Croatia, providing extensive library services and resources. The domain is well-established since 1997 and registered under CARNET, a reputable Croatian academic network, supporting its legitimacy. Technically, the site is built on WordPress with modern SEO and accessibility features, including multilingual support and cookie consent mechanisms. Security posture is good with HTTPS and reCAPTCHA usage, though security headers and explicit policies could be enhanced. User tracking is moderate via Google Analytics and Tag Manager. Overall, the site is professional, trustworthy, and safe for general audiences.

K

Knjižnice grada Zagreba

kgz.hr

10

Knjižnice grada Zagreba operates as the official public library network for the City of Zagreb, Croatia. The website provides comprehensive information about library services, locations, events, and digital resources targeting a broad audience including children, youth, and adults. The organization is positioned as a key cultural and educational institution within the region, with a history dating back to 2000. The site demonstrates consistent branding and a professional online presence with active social media engagement.

L

LIBUSOFT CICOM d.o.o.

otvorenigrad.hr

58

LIBUSOFT CICOM d.o.o., operating under the brand SPI, is a Croatian technology company founded in 2011, providing software platform solutions and technology services primarily targeting businesses in Croatia and neighboring countries. The website reflects a professional B2B service provider with a regional market focus. The company maintains a consistent brand presence and offers customer service in multiple languages including English, Croatian, and German. Technically, the website is built on WordPress using the Enfold theme, integrates modern web technologies such as Google Analytics, Google Tag Manager, and reCAPTCHA, and is hosted on Amazon AWS infrastructure. Security measures include HTTPS enforcement and standard security headers, contributing to a good security posture. However, the site lacks explicit privacy and cookie policies, which impacts privacy compliance scores. Overall, the website is functional, professional, and trustworthy, but could improve transparency and compliance with data protection regulations.

G

Getim d.o.o.

getim.hr

10

Getim d.o.o. is a Croatian IT company established in 1998, providing comprehensive IT solutions including sales and servicing of computer equipment, IT system maintenance, remote support, web design, hosting, and marketing services. The company positions itself as a key IT partner for business clients in Croatia, offering tailored solutions to meet diverse client needs. The website reflects a professional and consistent brand image with clear contact information and a modern technical infrastructure based on Joomla CMS and Helix Ultimate framework. Security posture is solid with HTTPS enabled and no exposed sensitive data, though there is room for improvement in privacy compliance and security headers. Overall, the website is trustworthy and well-maintained, supporting the company's business credibility.

G

Gärtner von Eden e.G.

gaertner-von-eden.de

56

Gärtner von Eden e.G. is a professional garden design and construction company based in Germany, specializing in exclusive garden planning and landscaping services. The company targets private and commercial clients seeking high-quality garden solutions. Their website reflects a mature digital presence with a focus on user experience, SEO, and privacy compliance. Technically, the site is built on WordPress using the Divi theme, incorporating modern tools such as hCaptcha and Cookiebot for security and privacy. Security posture is good with HTTPS and security headers implemented, though the absence of a public security policy and incident response details suggests room for improvement. The domain WHOIS data is missing, which raises concerns about domain legitimacy, but the website content and business information appear consistent and professional. Overall, the site scores well on content quality and technical implementation but should address WHOIS transparency and security policy publication to enhance trust.

S

Sport Schreiner Tischtennis

sport-schreiner-tt.de

54

Sport Schreiner Tischtennis operates a specialized German-language e-commerce platform focused on table tennis equipment including blades, rubbers, tables, clothing, and accessories. The website is built on the Shopware 6 platform, leveraging modern web technologies and integrating analytics tools such as Matomo and Google Tag Manager. The site demonstrates good design quality, mobile responsiveness, and clear navigation, targeting table tennis players and enthusiasts primarily in Germany. Security posture is solid with HTTPS enforced and privacy-conscious analytics configurations, although explicit privacy and terms policies are not detected in the provided content. The domain WHOIS data is limited, with an unusual domain status and non-matching nameservers, which slightly reduces trust but does not indicate malicious intent. Overall, the site is professional, trustworthy, and well-positioned within its niche market.

J

JAKO AG

jako.de

69

JAKO AG operates a professional e-commerce platform specializing in sportswear and equipment for men, women, and children. The company targets sports teams, clubs, and individual consumers, offering a wide range of customizable sports apparel and accessories. The website demonstrates a mature digital presence with modern search capabilities, multi-language support, and integration of trusted third-party services such as Trusted Shops for customer assurance. Technically, the site employs contemporary JavaScript libraries and analytics tools, ensuring a responsive and user-friendly experience across devices. Security measures include HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, but the overall site professionalism and trust signals mitigate this concern. Strategic recommendations include enhancing transparency around security policies and providing clear contact information to improve user trust and compliance posture.

P

Printera Grupa d.o.o.

printera.hr

53

Printera Grupa d.o.o. is a Croatian boutique printing company specializing in a wide range of paper-based printing services including brochures, catalogs, magazines, cookbooks, monographs, and direct mailing. Established in 2008, the company has over 30 years of experience and serves both domestic and international markets including Austria, Germany, Slovenia, France, Denmark, Belgium, Italy, Lichtenstein, and the USA. The website reflects a professional business with a clear market position as a leader in quality printing services in Croatia. Technically, the website uses modern technologies such as Google Tag Manager, Google Analytics 4, and Cloudflare DNS, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, though some security headers and explicit security policies are missing. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website is trustworthy and professionally maintained.

T

Thomastik-Infeld GmbH

thomastik-infeld.com

71

Thomastik-Infeld GmbH is a well-established Austrian company specializing in the development and production of high-quality music strings since 1919. The company targets musicians and music professionals worldwide, offering a broad portfolio including orchestral, guitar, and folk strings. Their website reflects a mature digital presence with professional design, multilingual support, and integrated e-commerce and consulting tools. Technically, the site employs modern frameworks such as Bootstrap and jQuery, enhanced with Google Tag Manager and reCAPTCHA for security. The security posture is solid with HTTPS and consent management, though explicit security headers and incident response policies are absent. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further investigation. Overall, the website is trustworthy, professional, and compliant with GDPR, serving as a strong digital asset for the company.

G

Glazba.hr

glazba.hr

10

Glazba.hr is a Croatian music-focused website providing music content and related media services. The site targets a general audience interested in music and entertainment. It leverages WordPress CMS and integrates modern marketing and analytics tools such as Google Analytics and Facebook Pixel, indicating a moderate level of digital maturity. The website implements a cookie consent mechanism compliant with GDPR, enhancing privacy compliance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though some security headers could be improved. Overall, the site presents a professional and trustworthy front with good content quality and user experience.

P

Plus Hosting Grupa d.o.o.

nacional.hr

59

Nacional.hr is a Croatian political news portal operated by Plus Hosting Grupa d.o.o., established in 2014. It serves as a leading platform for political news and analysis targeting the Croatian-speaking audience. The website leverages WordPress CMS with a variety of plugins for content management, advertising, and user engagement. It employs Cloudflare for DNS and security, ensuring robust protection and performance. The site integrates multiple advertising networks and analytics services, including Google Analytics, Gemius, and Umami, to optimize monetization and user insights. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a detailed privacy policy in Croatian, aligned with GDPR requirements. However, direct contact information and explicit security policies are not publicly available, which could be improved to enhance trust and transparency.

Časopis Zagreb moj grad is a Croatian online magazine dedicated to the culture, history, and education about the city of Zagreb. It targets local residents and enthusiasts of Zagreb, providing well-curated articles without sensationalism. The website is built on WordPress with modern plugins such as Yoast SEO and Elementor, indicating a moderate level of digital maturity. Hosting is provided by cyber_Folks d.o.o., a Croatian registrar and hosting provider, which aligns with the local focus of the publication. Security posture is good with HTTPS enforced and use of Google reCAPTCHA on forms, but lacks explicit privacy and cookie policies, which are important for GDPR compliance. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

D

DIGITALNI SVEMIR, računalalno programiranje

digitalnisvemir.hr

10

DIGITALNI SVEMIR is a Croatian small technology service provider specializing in web design, mobile application development, ecommerce solutions, and IT maintenance. Founded in 2015, the company serves a variety of clients primarily in Croatia, including cultural institutions and businesses. Their website showcases a professional portfolio and clear contact information, reflecting a credible and established presence in the local market. Technically, the website is built on WordPress with Elementor and the Bridge theme, indicating a modern and maintainable infrastructure. The site is mobile optimized and SEO friendly, though some accessibility features could be improved. Security posture is good with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal security policies. Overall, the website is trustworthy and professional, though it would benefit from adding privacy and terms of service pages to improve compliance and user trust.

G

Gradska knjižnica Sveti Ivan Zelina

knjiznica-zelina.hr

10

Gradska knjižnica Sveti Ivan Zelina is a public library serving as a cultural, educational, and social hub for the local community in Sveti Ivan Zelina, Croatia. The website provides information about library services, events, special collections, and access to an online catalog. The target audience includes children, youth, and adults interested in literature and cultural activities. The library operates as a non-profit public institution with a focus on community engagement and education. Technically, the website is built on Joomla CMS and utilizes common frontend technologies such as jQuery, Bootstrap, UIkit, and Smart Slider 3. It integrates Facebook SDK for social media and includes an accessibility widget (UserWay). The site is hosted under a Croatian academic registrar (CARNET), indicating a stable and appropriate hosting environment. The website is moderately performant and well-optimized for mobile devices with good accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and a dedicated security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic, with no dedicated privacy policy page found, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional, serving its public service mission effectively. Strategic recommendations include adding a comprehensive privacy policy, implementing security headers, and publishing incident response contacts to enhance security posture and compliance.

M

Muzej Sveti Ivan Zelina

muzej-zelina.hr

47

Muzej Sveti Ivan Zelina is a small, government-affiliated cultural institution dedicated to preserving and showcasing the heritage of Sveti Ivan Zelina, Croatia. The website provides detailed information about the museum's history, collections, events, and projects, targeting local visitors, tourists, and cultural enthusiasts. The digital presence is supported by a moderate technology stack including jQuery, Bootstrap, and various UI libraries, with Google Analytics for visitor tracking. The site is mobile responsive and includes accessibility features, enhancing user experience. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and a formal privacy policy, indicating room for compliance improvement. WHOIS data confirms domain legitimacy and consistency with the museum's identity. Overall, the website is professional and trustworthy but could benefit from enhanced privacy and security practices.

T

Turistička zajednica grada Sv. I. Zeline

visitzelina.hr

41

The website represents the official tourism board of Sveti Ivan Zelina, Croatia, providing comprehensive information about local culture, events, gastronomy, sports, and accommodation. It serves as a key resource for tourists and local visitors, promoting sustainable tourism and regional attractions. The site is well-branded and consistent with its government and non-profit identity. Technically, it is built on Joomla CMS with modern libraries such as Bootstrap, jQuery, and Owl Carousel, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site is mobile-optimized and offers interactive features like maps and video content. Security-wise, the site uses HTTPS with good SSL configuration but lacks some security headers and formal security policies. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service. Overall, the domain registration data aligns well with the website's purpose and location, indicating legitimacy and trustworthiness.

G

Grad Sveti Ivan Zelina

zelina.hr

49

The website www.zelina.hr/portal serves as the official municipal portal for the city of Sveti Ivan Zelina in Croatia. It provides a broad range of public information including local government structure, public tenders, news, events, and citizen services. The site targets residents and stakeholders of the municipality, offering them access to official announcements and resources. The business model is that of a government public service platform, with a focus on transparency and community engagement. The domain is well-established since 2001, reinforcing its credibility as an official source. Technically, the site is built on Joomla CMS with several common web technologies such as jQuery, MooTools, Bootstrap, and UIkit frameworks. It uses K2 for content management and RokSprocket for interactive features like slideshows. The site is moderately performant, mobile-optimized, and includes accessibility features such as dyslexia-friendly fonts and contrast controls. SEO and metadata are properly implemented, including Open Graph and Twitter cards. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism with opt-in functionality. CSRF tokens are present, and no sensitive data is exposed in the HTML. However, security headers like CSP and HSTS are not detected, and there is no published security policy or incident response contact information. Google Analytics is used for visitor tracking, with moderate user tracking levels and good privacy compliance. Overall, the website demonstrates a solid security posture and good privacy compliance for a government portal. The domain WHOIS data aligns well with the website content and geographic location, indicating high legitimacy. No critical vulnerabilities or suspicious content were found. Strategic recommendations include adding security headers, publishing a security policy, and providing incident response contacts to enhance trust and security maturity.

P

PANTHEON

datalab.bg

56

Datalab.bg is a Bulgarian regional provider of the PANTHEON business information system, offering ERP and business process optimization software solutions. The company targets businesses seeking to improve efficiency and organization through digital transformation. The website demonstrates a mature digital presence with multi-country partner domains, indicating a well-established market position in the Balkan region. Technically, the site is built on WordPress with the Enfold theme, integrating modern tools such as Google Tag Manager, Cookiebot for GDPR compliance, and Google reCAPTCHA for bot protection. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are not publicly available. Overall, the domain registration data aligns with the business claims, supporting legitimacy. The website is safe, professional, and compliant with privacy regulations.

D

Datalab.MN d.o.o.

datalab.me

53

Datalab.MN d.o.o. operates a professional website promoting the PANTHEON ERP business information system, targeting enterprises in Montenegro and Southeast Europe. The company offers comprehensive ERP software solutions, digitalization tools, cloud hosting, and support services, positioning itself as a regional leader with a strong user base and over 20 years of market presence. The website is well-structured, multilingual, and rich in content, including testimonials, knowledge bases, and webinars, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, employs HTTPS with reCAPTCHA for form security, and demonstrates good SEO and mobile optimization. Security posture is solid but could be enhanced with additional HTTP headers. WHOIS data is privacy protected, which is common for business domains, and no suspicious patterns were detected. Overall, the site presents a trustworthy and professional business front with effective digital infrastructure.

D

Datalab

datalab.al

57

Datalab is a well-established Slovenian technology company specializing in ERP software solutions, primarily through their flagship product PANTHEON. The company has a strong regional presence with sister sites across multiple Balkan countries, indicating a broad market reach. Their website is built on a modern WordPress CMS with a professional design and good SEO practices, integrating essential marketing and analytics tools such as Google Tag Manager, Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie consent. Security posture is solid with HTTPS and reCAPTCHA implemented, though there is room for improvement in security headers and explicit security policies. The absence of clear privacy and terms of service pages slightly impacts privacy compliance scores. Overall, the website reflects a mature digital infrastructure suitable for a medium-sized enterprise in the technology sector.

D

DATALAB

datalabks.com

51

DATALAB operates a website focused on providing ERP software solutions, specifically the DATALAB PANTHEON system. The company appears to target businesses seeking ERP systems to optimize their operations. The website is built on WordPress using the Divi theme and integrates common analytics and marketing tools such as Google Analytics and ActiveCampaign. The technical infrastructure is modern but lacks visible advanced security configurations. The absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional presentation of the website. No privacy, cookie, or security policies are published, which impacts compliance and trust. Overall, the site is functional and business-oriented but requires improvements in transparency and security to enhance credibility.

D

Datalab SR d.o.o.

datalab.rs

51

Datalab SR d.o.o. is a well-established Serbian technology company specializing in ERP and business information systems, primarily through their flagship product PANTHEON. With a domain age since 2008 and a strong regional presence across multiple Balkan countries, the company offers comprehensive software solutions tailored to various industries including manufacturing, retail, accounting, and public sector. Their business model focuses on software sales, support, implementation, and training services, targeting small to medium enterprises and larger organizations. The website reflects a professional and consistent brand image with rich content and user testimonials, reinforcing their market position as a trusted ERP provider. Technically, the website is built on WordPress with a modern theme and plugins supporting multilingual content, security (Google reCAPTCHA), and marketing automation (ActiveCampaign). The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is good with HTTPS enforced and some security best practices observed, though improvements in security headers and DNSSEC are recommended. Privacy compliance is strong with clear GDPR-aligned privacy and cookie policies. Overall, the security posture is solid with no critical vulnerabilities detected, and the business credibility is high given the transparent contact information, long domain history, and trust signals. The website is accessible without WAF or blocking mechanisms, enabling full content analysis. Strategic recommendations include enhancing security headers, enabling DNSSEC, and publishing explicit security and incident response policies to further strengthen trust and compliance. This assessment positions Datalab SR d.o.o. as a credible and mature technology provider with a stable digital presence and good security hygiene, suitable for business partnerships and customer trust.

D

Datalab BH d.o.o.

datalab.ba

53

Datalab BH d.o.o. operates a professional ERP and business information system platform named PANTHEON, targeting small to medium enterprises and accounting services primarily in Bosnia and Herzegovina and the wider Southeast European region. The company offers a comprehensive suite of software solutions including ERP modules, cloud hosting, and digital business tools, supported by consulting and training services. The website reflects a mature digital presence with multilingual support and a strong focus on customer engagement through testimonials and educational content. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

P

PANTHEON - Datalab

datalab.eu

59

Datalab operates the PANTHEON ERP Business Information System, targeting businesses seeking efficient and organized business process management solutions. The company appears to have a strong regional presence across multiple European countries, indicated by multiple localized domains. The website is professionally designed using WordPress with the Enfold theme and incorporates modern SEO and analytics tools such as Yoast SEO and Google Analytics. Security posture is solid with HTTPS enforced and a cookie consent mechanism implemented, though explicit privacy and terms of service pages are not detected in the provided content. The absence of direct contact information and security.txt file suggests areas for improvement in transparency and incident response readiness. Overall, the domain is privacy protected as per EURid policy, which is typical for European businesses, and the website content and structure indicate a legitimate and established business.

D

Datalab

datalab.si

57

Datalab is a well-established Slovenian technology company specializing in ERP software solutions, notably the PANTHEON business information system. With a domain age dating back to 1997 and multiple regional partner sites, Datalab demonstrates a mature market presence in the technology sector, targeting businesses seeking comprehensive ERP solutions. The website is built on a modern WordPress platform using the Enfold theme, integrated with standard SEO and analytics tools such as Yoast SEO, Google Analytics, and Cookiebot for GDPR compliance. The technical infrastructure is hosted on Azure DNS, indicating a reliable hosting environment. Security measures include HTTPS encryption and reCAPTCHA integration; however, the absence of security headers suggests room for improvement in security posture. The site implements a robust cookie consent mechanism, reflecting good privacy compliance practices, though explicit privacy policy and terms of service pages were not detected in the provided content. Overall, the website presents a professional and trustworthy digital presence with moderate to good performance and user experience.

D

digitales MV

digitalesmv.de

67

digitales MV is a government-supported digital innovation and community platform focused on Mecklenburg-Vorpommern, Germany. It serves as a hub for information dissemination, event promotion, and fostering digital competencies across various sectors including government, business, and academia. The platform is well-positioned regionally with strong branding and partnerships, leveraging modern web technologies such as Drupal 10 and integrating multimedia and interactive widgets to engage its audience effectively. Technically, the website is well-implemented with good mobile optimization, accessibility, and SEO practices, though hosting provider details are not explicit. Security posture is strong with HTTPS and security headers in place, but lacks explicit security policies or incident response information. Privacy compliance is robust with clear cookie consent mechanisms and a comprehensive privacy policy in German. Overall, digitales MV presents a professional, trustworthy, and content-rich digital presence aligned with its mission to promote digital transformation in the region.

M

MAS Blaník, z. s.

masblanik.cz

44

MAS Blaník is a Czech non-profit organization dedicated to regional development, supporting local agriculture, education, and social services in the Blaník region. The website serves as an official portal providing information about projects, events, and community initiatives, with visible EU co-financing support. Technically, the site is built on WordPress using the Avada theme and Fusion Builder, incorporating modern JavaScript libraries and responsive design. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain trust verification, though the website content and social presence support legitimacy. Overall, the site is well-structured and professional but could improve privacy compliance and security transparency.

S

SeenThis

seenthis.co

74

SeenThis is a technology-driven digital advertising company specializing in adaptive streaming technology to enhance creative activation and engagement. Positioned as an innovative ad tech provider, it targets advertisers and marketing agencies seeking to boost digital campaign performance. The website is built on modern frameworks such as React and Gatsby, indicating a mature technical infrastructure with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and bot protection via Google reCAPTCHA, although explicit security policies and incident response details are absent. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Overall, the website presents a professional and trustworthy digital presence with moderate tracking and analytics integration.

S

SeenThis AB

sitestream.co

57

Sitestream, operated by SeenThis AB, is a technology company specializing in optimizing website image delivery to reduce data waste and improve user experience. Their solution automatically selects the fastest and most data-efficient image formats tailored to each user's device and connection, contributing to reduced carbon emissions from internet usage. The company targets website owners and developers seeking performance and environmental benefits through a SaaS model with easy integration options. Technically, the website is built using modern frameworks like Svelte, with fast performance and good mobile optimization. Security posture is solid with HTTPS and some security headers, though improvements like a comprehensive Content-Security-Policy and security.txt are recommended. Privacy compliance is adequate with accessible privacy and cookie policies, though no explicit consent mechanism was detected. Overall, the site is professional, trustworthy, and aligned with its business goals.

E

EDUin, o. p. s.

eduina.cz

38

EDUína is a Czech non-profit organization focused on recognizing and awarding innovative projects in formal and informal education. The organization has been active for over 10 years, celebrating educational achievements and honoring significant contributors to Czech education. The website reflects a well-structured digital presence with clear branding, contact information, and social media integration. Technically, the site is built on WordPress using popular plugins such as Yoast SEO and Elementor, ensuring good SEO and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and trust signals on the site. Overall, EDUína presents a credible and professional front for its educational award activities.

L

Landesportal Mecklenburg-Vorpommern

studieren-mit-meerwert.de

47

The website 'Studieren mit Meerwert' serves as a comprehensive regional education portal promoting universities and study programs in Mecklenburg-Vorpommern, Germany. It targets prospective and current students, including international visitors, by providing detailed information about study opportunities, campus life, and career prospects. The platform is operated under the Landesportal Mecklenburg-Vorpommern, reflecting a public sector educational initiative with a strong regional focus. Technically, the site is built on TYPO3 CMS and employs modern web technologies such as jQuery, YouTube iframe API, and Typekit fonts. It features a responsive design with good accessibility and SEO practices. Cookie consent is implemented with an opt-in mechanism, ensuring GDPR compliance. The site integrates social media channels and interactive elements like study program search and multimedia galleries. From a security perspective, the website uses HTTPS and obfuscates email addresses to prevent spam. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or malicious content were detected. The WHOIS data aligns with the website's regional educational purpose, showing consistent domain usage and hosting. Overall, the website demonstrates a high level of professionalism, content quality, and user experience, with minor recommendations to enhance security headers and publish vulnerability disclosure information.

P

Paysan Breton

paysanbretoncharcuterie.com

56

Paysan Breton is a French brand specializing in charcuterie products made from 100% Breton pork, raised by cooperative farmers emphasizing quality, sustainability, and regional economic development. The website presents a professional and consistent brand image, targeting general consumers interested in authentic regional food products. Technically, the site is built on Drupal 10 with modern JavaScript libraries and includes GDPR-compliant cookie management. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and parent company linkage to Eureden support its authenticity. Security posture is moderate with cookie consent implemented but lacking visible security headers and explicit contact information on the homepage. Overall, the site is well-designed and functional but would benefit from enhanced security practices and clearer business contact details.

D

Dimedia internet tehnologije d.o.o.

dimedia.hr

43

Dimedia internet tehnologije d.o.o. is a Croatian technology company specializing in custom software development, mobile applications, web design, and internet marketing services. Established in 2010, the company targets businesses seeking comprehensive digital solutions to enhance their online presence and operational efficiency. Their market position is supported by a portfolio of clients across real estate, tourism, and corporate sectors, demonstrating a solid foothold in the regional IT services market. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Facebook SDK, and Google reCAPTCHA, ensuring basic security and user engagement features. The site is mobile-optimized with good SEO practices, though some accessibility features could be improved. Hosting and domain registration are consistent with the company's Croatian location, enhancing trust. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic with presence of privacy and cookie policies, but no explicit GDPR compliance statements or data retention policies were found. Overall, the website is trustworthy and professionally maintained, with moderate technical sophistication and a solid business credibility profile. Strategic improvements in security policy transparency and accessibility would further enhance their posture.

C

CompanyWall Business

companywall.hr

61

CompanyWall Business is a Croatian-based financial data platform established in 2013, providing comprehensive business credit and financial information services. It serves a broad audience including SMEs, large enterprises, financial institutions, startups, and non-profits, offering subscription-based access to detailed company data, credit reports, ownership structures, and insolvency information. The platform is positioned as a leading business intelligence provider in Croatia with regional presence in multiple Balkan countries and the UK. Technically, the website employs modern web technologies such as Bootstrap, jQuery UI, FontAwesome, Google reCAPTCHA, and Facebook Pixel, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforced and anti-bot measures in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

S

Sinch

sinch.com

73

Sinch is a well-established enterprise technology company specializing in programmable communication APIs including SMS, voice, email, video, and verification services. Recognized as a leader in the CPaaS market by Gartner, Sinch targets developers, enterprises, telcos, and marketing teams with a comprehensive suite of communication solutions. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern SEO and performance optimizations, hosted on AWS infrastructure. Security posture is robust with HTTPS enforcement, ISO 27001 certification, and domain security best practices, though DNSSEC is not enabled and incident response contacts are not explicitly published. Overall, Sinch demonstrates a high level of business credibility and digital maturity.

D

Dynamic

dynamicauth.com

74

Dynamic is a fintech and crypto-focused company providing wallet infrastructure solutions including authentication, smart wallets, and secure key management via a flexible SDK. Positioned as an enterprise-grade provider, Dynamic supports multi-chain coverage and third-party wallets, targeting fintech companies, crypto businesses, and stablecoin platforms. The company recently became part of Fireblocks, enhancing its market position. The website demonstrates a mature technical infrastructure with modern web technologies, strong design quality, and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and contact information are lacking. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

+

+Pluswerk AG

pluswerk.ag

62

Pluswerk AG is a leading full-service digital agency specializing in open-source technologies such as TYPO3, Pimcore, and Shopware. With a strong presence in Germany and other European countries, the company serves a broad B2B audience including enterprises, public sector, and educational institutions. Their service portfolio covers consulting, UX/UI design, corporate websites, e-commerce solutions, online marketing, and cloud hosting, positioning them as a comprehensive digital transformation partner. The website reflects a mature, professional brand with consistent messaging and multiple industry certifications and awards. Technically, the website is built on TYPO3 CMS with integrations of Pimcore and Shopware technologies. It employs modern web standards, is mobile-optimized, and uses privacy-respecting analytics tools like Matomo and Visitor Analytics. The site includes a GDPR-compliant cookie consent mechanism and multilingual support, enhancing user experience and compliance. Performance and SEO optimizations are well implemented, contributing to a fast and accessible user interface. From a security perspective, the site enforces HTTPS and demonstrates good security hygiene with no exposed sensitive data or vulnerable libraries detected. However, explicit security headers like X-Frame-Options and a published security policy or incident response contacts are absent, representing areas for improvement. The WHOIS data is unavailable due to privacy protection, which is common and justified for this business type, and does not detract from the site's legitimacy. Overall, Pluswerk AG's website presents a trustworthy, professional digital presence with strong business credibility and a solid security posture. Strategic enhancements in security transparency and incident response readiness would further strengthen their risk management and trustworthiness.

P

pxMEDIA.de GmbH

pxmedia.de

45

pxMEDIA.de GmbH is a specialized online marketing agency based in Germany, focusing on systematic personnel recruiting, employer branding, and customer acquisition for ambitious medium-sized enterprises. The company positions itself as a partner for sustainable business success, offering consulting, conception, implementation, and ongoing support services. Their market niche is well-defined, targeting the medium-sized business sector with tailored digital marketing solutions. The website demonstrates a professional and consistent brand image, supported by award recognition and client testimonials. Technically, the site is built on WordPress with modern plugins and integrations such as Wistia for video hosting and Google Maps API for location services. Hosting is provided by Alfahosting, a reputable German hosting provider. Security posture is solid with HTTPS enforced and CAPTCHA protection on forms, though explicit security headers and incident response policies are absent. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website is well-designed, mobile-optimized, and trustworthy, with no signs of suspicious or adult content.

G

GlücksSpirale

gluecksspirale.de

60

GlücksSpirale is a well-established German lottery organization offering various lottery ticket options with significant prizes, including immediate and long-term monthly winnings. The business model integrates social responsibility by funding welfare, monument restoration, and sports projects, positioning itself as a socially conscious lottery provider. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on reliable infrastructure including Amazon S3 and Deutsche Telekom DNS servers. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is evident through cookie consent mechanisms and a comprehensive privacy policy. Overall, the site demonstrates high trustworthiness and professionalism suitable for its regulated gambling industry context.

W

Whistleblowing Experte

whistleblowing-experte.de

55

Whistleblowing Experte operates a specialized digital whistleblower reporting and compliance management platform targeted primarily at small and medium-sized enterprises (KMU) in Germany. The company offers a comprehensive compliance tool integrated with qualified legal support and an ombudsperson network, positioning itself as a niche provider in the compliance and whistleblowing sector. The website is professionally designed using the Contao CMS, with modern web technologies and responsive design ensuring good user experience across devices. The technical infrastructure is hosted by Timme Hosting and includes Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit incident response policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

J

Julia Boldt Fotografie

juliaboldt.de

55

Julia Boldt Fotografie is a small, locally focused photography and photo training business based in Rostock, Germany. The company offers relaxed photoshoots and photo workshops primarily targeting individuals and families interested in nature photography. The website is professionally designed using WordPress with the Divi theme and integrates e-commerce capabilities via WooCommerce, enabling product sales or bookings. The technical infrastructure includes modern web technologies and consent management tools, reflecting a mature digital presence for a small business. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms implemented, although no explicit security policy or incident response information is published. Overall, the website demonstrates good privacy compliance and business credibility with clear contact information and comprehensive policies. The domain registration data aligns well with the website content, indicating legitimacy and consistency.

U

Uplift Founders

upliftfounders.com

59

Uplift Founders is a specialized coaching service focused on empowering startup founders to scale their businesses faster by addressing both the inner psychological aspects and the outer strategic business challenges. Founded in 2023 and based in Germany, the company targets seed-stage founders approaching Series A funding as well as bootstrapped founders with significant traction. Their offerings include a proprietary Founder Audit, shift sessions, a Clarity Program for bi-weekly coaching, and an intensive Series A Co-Pilot mode for hands-on support. The website is professionally designed, mobile-optimized, and rich in content, including detailed FAQs and client testimonials, which enhance trust and credibility. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and Swiper.js for UI components, alongside Matomo for privacy-conscious analytics. The domain is registered with a reputable registrar and secured with HTTPS, although DNSSEC is not enabled. No major security vulnerabilities or exposed sensitive data were detected. However, the site lacks some security headers and a cookie consent mechanism, which are recommended for enhanced compliance and security. Overall, the security posture is solid but could be improved by implementing additional HTTP security headers, enabling DNSSEC, and publishing formal security and incident response policies. The business credibility is high due to transparent contact information, professional content, and consistent branding. No adult or questionable content is present, making the site safe for general audiences.

K

Karlsruher Kind

karlsruher-kind.de

64

Karlsruher Kind is a regional magazine targeting parents and children in the Karlsruhe area, providing editorial content, event calendars, and community engagement features. The website is built on WordPress with a modern plugin ecosystem supporting event management and user interaction. The technical infrastructure includes HTTPS, security headers, and structured data for SEO, reflecting a mature digital presence. Security posture is strong with no evident vulnerabilities or exposed sensitive data, though privacy compliance could be improved by publishing explicit privacy and terms policies. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

R

rabbitAI

rabbitai.de

59

rabbitAI is a specialized technology company providing high-precision training data and ground truth solutions for computer vision engineers and AI developers. Their offerings focus on device-specific ground truth data capture and augmentation to accelerate AI algorithm development, particularly in 3D perception, XR, and in-cabin sensing applications. The company positions itself as a reliable partner for enhancing AI reliability and safety through superior training data. Technically, the website is hosted on AWS infrastructure, uses modern web technologies including HTML5, CSS3, JavaScript, and employs Matomo analytics with privacy-conscious configurations. The site is well-designed, mobile-optimized, and SEO-friendly, providing a professional user experience. However, some technical improvements such as adding security headers and explicit cookie consent mechanisms could enhance security and compliance. From a security perspective, the site enforces HTTPS and avoids cookie tracking, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. The absence of a security policy, incident response contacts, or vulnerability disclosure mechanisms suggests room for maturity in security governance. Overall, rabbitAI presents a trustworthy and professional online presence with a strong focus on AI training data solutions. Strategic improvements in privacy compliance and security best practices would further strengthen their digital maturity and trustworthiness.

K

Kinder Praxis & Klinik

kinder-und-klinik.de

52

Kinder Praxis & Klinik is a specialized pediatric dental practice and clinic located in Böblingen, Germany, focusing on dental care for children and teenagers. The practice emphasizes creating a child-friendly, anxiety-free environment with a comprehensive range of dental services including prophylaxis, caries treatment, milk tooth crowns, and oral surgery. The website presents a professional and well-structured digital presence with detailed service descriptions and a strong focus on patient comfort and education. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, and Matomo analytics, hosted on a reputable DNS provider. Security posture is good with HTTPS enforced and no visible vulnerabilities, though cookie consent and explicit security policies are lacking. Overall, the site is trustworthy and professionally maintained, serving a local healthcare niche effectively.