Security Directory

L

LIEPS GmbH

lieps.de

66

LIEPS GmbH is a well-established advertising agency based in Neubrandenburg, Germany, offering a comprehensive suite of marketing, design, web development, print, and video production services. With nearly two decades of experience, the agency serves a diverse clientele including startups and established businesses, positioning itself as a full-service creative partner. The website reflects a professional and consistent brand image, showcasing client references and a broad portfolio of services. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and TYPO3 CMS, supported by Cloudflare for DNS and CDN services. The site is mobile-optimized and incorporates standard SEO and accessibility features, although some advanced security headers could be improved. Analytics and marketing tools such as Google Analytics and Metricool are used with appropriate cookie consent mechanisms in place, indicating good privacy compliance. From a security perspective, the site enforces HTTPS and shows no signs of vulnerabilities or exposed sensitive data. However, there is room for enhancement in security headers and incident response transparency. The WHOIS data aligns well with the business claims, showing consistent domain registration and no privacy protection that would obscure legitimacy. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security headers and formal security policies would further strengthen its posture.

M

Marles Montažne hiše

marles.com

68

Marles Montažne hiše is a Slovenian company specializing in the design and construction of prefabricated low-energy houses, with a long-standing tradition dating back to 1899. The company targets home buyers and construction clients primarily in Slovenia and neighboring countries, offering innovative and energy-efficient housing solutions. Their market position is strong regionally, supported by a professional and multilingual website that reflects their heritage and expertise. Technically, the website is built on modern frameworks such as Next.js and React, hosted on Vercel, and integrates advanced analytics and marketing tools including HubSpot, Google Tag Manager, and Facebook Pixel. The site demonstrates excellent performance, mobile optimization, and SEO practices, indicating a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs standard security headers, and uses cookie consent mechanisms compliant with GDPR. However, it lacks a publicly available security policy, incident response contacts, and vulnerability disclosure mechanisms, which are areas for improvement. The absence of WHOIS domain registration data raises concerns about domain legitimacy and ownership transparency. Overall, the website presents a professional and trustworthy front for the business, but the missing domain registration information and limited security disclosures suggest a moderate risk profile. Strategic enhancements in transparency and security governance would strengthen their trustworthiness and compliance posture.

G

Grad Zagreb

zagreb.hr

54

Grad Zagreb is the official governmental entity representing the City of Zagreb, Croatia. The website serves as a comprehensive portal for residents, businesses, and visitors, providing access to city news, administrative information, public services, and digital resources across multiple sectors including education, culture, transportation, social welfare, and urban planning. The site is positioned as the authoritative source for municipal governance and citizen engagement in Zagreb. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and accessible user experience. It integrates Google Analytics for traffic analysis and Kraken Optimize for performance enhancements. The site is mobile-optimized and features clear navigation structures, multi-level menus, and accessibility considerations. From a security perspective, the site enforces HTTPS with a strong SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response information are not publicly available, and no vulnerability disclosure policy was found. The WHOIS data confirms the domain's legitimacy and consistency with the official city government entity. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable digital platform for the City of Zagreb. Strategic improvements could focus on enhancing transparency around security policies and incident response to further strengthen user trust and security posture.

D

Dekra

dekra-arbeit.hr

53

Dekra is a Croatian-based company specializing in human resources outsourcing, event logistics, and market research services. With over 18 years of experience and multiple offices across Croatia, Dekra positions itself as a reliable partner for businesses and job seekers. Their service portfolio includes agency work, HR consulting, recruitment mediation, and innovative solutions like Try & Hire and Mystery Shopping. The website reflects a professional and consistent brand image, targeting Croatian businesses and employees. Technically, the site is built on WordPress with modern libraries and plugins, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, GDPR compliance, and anti-spam measures, though some security headers could be improved. Overall, the site is trustworthy and well-maintained, though WHOIS data is unavailable due to privacy regulations.

S

Sport 360

sport360.hr

58

Sport 360 is a Croatian sports marketing agency providing specialized marketing services within the sports sector. The company targets sports organizations and businesses in Croatia, positioning itself as a local expert in sports marketing. The website is professionally designed using the Wix platform, featuring good content quality and consistent branding. Technical infrastructure relies on Wix's Thunderbolt framework and standard polyfills, ensuring moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. Overall, the site is functional and credible but would benefit from enhanced privacy and security features.

The website printstudio.hr is currently inaccessible to the public, returning a 403 Forbidden error page. This indicates that access is restricted or blocked, preventing any meaningful content or business information from being displayed. The domain is registered in Croatia with a long history dating back to 1996, suggesting an established presence. However, the lack of accessible content, contact details, or policies severely limits the ability to assess the business or its digital maturity. Technically, no scripts, analytics, or security headers are present, and no HTTPS status could be confirmed from the provided data. The security posture is weak due to the absence of visible security best practices and policies. Overall, the site is currently non-functional for end users, resulting in a low AI score and high risk for trust and usability.

V

Vulkal d.o.o.

vulkal.hr

72

Vulkal d.o.o. is a Croatian retail company specializing in the sale of automotive tires, offering a large inventory of over 100,000 tires including summer, winter, and all-season options for various vehicle types. The company targets individual consumers and businesses across Croatia, providing delivery services nationwide. The website is professionally designed with good content quality and consistent branding, reflecting a strong market position as a leading tire retailer in the region. Technically, the site is built on the nopCommerce platform and integrates modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel, alongside a robust cookie consent management system to ensure GDPR compliance. Security posture is adequate with HTTPS enabled and anti-forgery mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the website presents a trustworthy and professional digital presence with extensive user tracking and advertising vendor integrations, balanced by comprehensive privacy controls.

D

DataBox

databox.hr

64

DataBox is a Croatian technology company specializing in secure data center colocation, cloud computing services, and telecommunication solutions. Established in 2014, the company positions itself as a key provider of secure business infrastructure in Croatia, offering Tier 3 and Tier 4 standard data center facilities, cloud backup, disaster recovery, and advanced IP telephony services. Their market position is supported by over 10 years of experience and a focus on reliability and security for business customers. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and integrates Google Analytics and Tag Manager for tracking. The site is well-optimized for SEO and mobile devices, with a professional design and clear navigation. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website reflects a credible and professional business with room for improvement in privacy and security transparency.

J

Jacques Lemans

jacques-lemans.com

72

Jacques Lemans operates a professional e-commerce platform specializing in wrist watches and jewellery, positioning itself as Austria's largest watch brand. The website targets consumers interested in fashion and luxury retail products, offering a broad range of collections and selections for men and women. The business model is retail-focused with online sales and international shipping capabilities. Technically, the website leverages modern technologies including Shopware 6 CMS, Google Tag Manager, reCAPTCHA, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is strong with HTTPS enforcement, security headers, and secure payment integrations, though the absence of a public security policy and incident response contact reduces transparency. The lack of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the site is professional and trustworthy but would benefit from enhanced transparency in domain registration and security disclosures.

R

ROX doo

rox.hr

10

ROX doo is a well-established regional leader in consumer goods distribution, operating since 1992 with a strong presence in Croatia, Bosnia and Herzegovina, Serbia, and Slovenia. The company offers comprehensive distribution and logistics services, including transport, warehousing, and a B2B web shop, serving over 13,000 points of sale. Their market position is solidified by decades of experience and a broad supplier network. Technically, the website is built on a modern WordPress platform with up-to-date technologies such as jQuery, Bootstrap grid, and SEO optimization via Yoast. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Analytics and advertising tools like Google Analytics and Google Tag Manager are used with a cookie consent mechanism ensuring privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks visible security headers in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business claims, supporting trustworthiness. Overall, ROX doo's digital presence reflects a mature, professional business with good technical and privacy practices. Strategic improvements in security headers and incident response transparency could further enhance their security posture and trust.

F

Franck d.d.

franck.eu

10

Franck d.d. is a well-established Croatian company with over 130 years of history specializing in premium quality coffee, tea, cereal beverages, and food preparation products. The company targets both general consumers and professional hospitality sectors, offering a broad product portfolio and emphasizing corporate social responsibility. The website reflects a mature digital presence with multilingual support and a strong brand identity. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and a comprehensive cookie consent mechanism, indicating a good level of digital maturity. Security-wise, the site enforces HTTPS and cookie consent but lacks explicit security headers and published security policies, which are recommended for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though WHOIS data is privacy-protected, limiting domain age verification. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving accessibility features.

K

Klemm Security

klemmsecurity.hr

44

Klemm Security is a well-established Croatian company specializing in professional security solutions including physical protection, technical security systems, detective services, and risk assessment. Founded in 2003, it operates multiple subsidiaries and maintains a strong market position with premium quality services and numerous business collaborations. The website reflects a professional business model targeting companies requiring comprehensive security services. Technically, the site is built on WordPress with modern plugins and frameworks, including Avada theme and Slider Revolution, and implements essential security features such as HTTPS, Google reCAPTCHA, and cookie consent mechanisms. However, it lacks publicly accessible privacy policy and terms of service pages, which are critical for compliance and trust. Security posture is good with no visible vulnerabilities, but the absence of a security policy and incident response information is a gap. Overall, the website is trustworthy, well-branded, and provides clear contact information and social media presence.

J

Jamnica plus d.o.o.

jamnica.hr

10

Jamnica plus d.o.o. operates a professional website focused on promoting its natural mineral water and beverage products primarily targeting Croatian consumers. The company maintains a consistent brand presence with product information, recipes, and news updates. The website leverages common web technologies such as jQuery, Slick Carousel, and SVG icons, providing a good user experience with mobile optimization and clear navigation. Privacy and cookie policies are implemented with GDPR compliance, reflecting a mature approach to user data protection. However, the site lacks explicit security policies and uses an outdated jQuery version, which may pose security risks. No blocking or WAF mechanisms interfere with content accessibility, and social media integration is active, enhancing brand engagement.

G

Groupama osiguranje d.d.

groupama.hr

56

Groupama osiguranje d.d. is a Croatian insurance company operating as part of the larger French Groupama Group. The company offers a broad range of insurance products including life, motor vehicle, health, and property insurance, targeting both individual and corporate clients in Croatia. The website reflects a professional and consistent brand image aligned with its parent company. Technically, the site uses a combination of established front-end frameworks and libraries such as Bootstrap, jQuery, and Google Analytics for tracking, with a moderate performance profile and good mobile optimization. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. Overall, the domain registration and WHOIS data support the legitimacy of the business. The site is safe for general audiences and does not contain any adult or questionable content.

B

Ban Tours

bantours.hr

10

Ban Tours is a Croatian travel agency specializing in organizing various types of travel including group, individual, private, and corporate trips, seminars, congresses, incentive travels, and team building events. The company holds a strong market position as a leader in sports travel with over 15 years of experience and owns a fleet of 44 Dufour sailing yachts for Adriatic charters. Their target audience includes sports enthusiasts, corporate clients, and individual travelers. The website is professionally designed using Webflow, with good mobile optimization and clear navigation. Technical infrastructure includes modern web technologies and CDN hosting, providing moderate performance. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and dedicated security policies. Privacy and cookie policies are present, supporting basic GDPR compliance. Contact information is clearly provided, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with business claims, supporting a high trust score. Overall, the website is a reliable and professional digital presence for Ban Tours.

R

RALU Logistika d.d.

ralulogistics.com

60

RALU Logistika d.d. is a well-established third-party logistics provider specializing in integrated cold chain services, including international and national transport, warehousing, and distribution across Croatia, Serbia, and Europe. The company has a strong market position supported by over 30 years of experience and a large fleet and infrastructure. Their website reflects a professional digital presence built on WordPress with Elementor, incorporating modern analytics and cookie consent mechanisms. Security posture is solid with HTTPS, domain transfer lock, and no detected vulnerabilities, though some security policies and disclosures could be improved. Overall, the company demonstrates transparency and compliance with GDPR, enhancing trustworthiness.

Castore is a premium sportswear brand focused on delivering precision performance apparel to athletes worldwide. The company operates a professional e-commerce platform built on Shopify, leveraging modern marketing and analytics tools such as Google Tag Manager, Yotpo, Klarna, and Boost Commerce. The website demonstrates a mature technical infrastructure with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and domain registration through Cloudflare, though DNSSEC is not enabled and some security headers are not explicitly present. Privacy compliance is limited as no explicit privacy or cookie policies were found in the analyzed content. Overall, the site is trustworthy and professionally maintained, serving a global audience with a focus on high-quality sportswear.

Z

Zaklada GNK Dinamo Nema Predaje

zakladanemapredaje.hr

48

Zaklada GNK Dinamo Nema Predaje is a Croatian non-profit foundation officially affiliated with the GNK Dinamo football club. The foundation focuses on promoting equality, social inclusion, and providing humanitarian aid, particularly targeting persons with disabilities, socially vulnerable groups, and young talented athletes. The website serves as a platform to communicate the foundation's mission, programs, and events, and facilitates donations and community engagement. It maintains a strong presence on social media and provides comprehensive contact and legal information.

Promoprint d.o.o. is a Croatian small business specializing in graphic design and printing services, including digital and offset printing, large format printing, and promotional materials such as business cards, brochures, and rollup banners. The company has an established market presence since 2008 and targets businesses and individuals seeking promotional printing solutions. The website is built on WordPress with WooCommerce and Elementor, indicating a modern and flexible technical infrastructure. It includes e-commerce capabilities and uses popular plugins for SEO and cookie consent management. Security posture is adequate with HTTPS, Google reCAPTCHA, and cookie consent mechanisms, but lacks explicit privacy policy, terms of service, and incident response information, which are important for compliance and trust. Overall, the website is professional and functional with moderate performance and good mobile optimization.

W

Wiener osiguranje Vienna Insurance Group d.d.

wiener.hr

73

Wiener osiguranje Vienna Insurance Group d.d. is a well-established insurance provider operating in Croatia since 2013. The company offers a range of insurance products and advisory services tailored to the Croatian market. The website reflects a professional and consistent brand presence, targeting Croatian customers seeking insurance solutions. The business is part of the larger Vienna Insurance Group, indicating a strong market position and backing. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and integrates third-party services including Cookiebot for cookie consent management, Google Tag Manager for analytics, and LiveChat by Infobip for customer interaction. The site is hosted likely by Hrvatski Telekom d.d., consistent with the registrar information. Performance and mobile optimization are good, though accessibility could be improved. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms that comply with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not published, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained, with a strong business legitimacy profile. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility, and providing clearer contact information to improve user trust and compliance posture.

W

Willkommen in MV

willkommeninmv.de

53

Willkommen in MV is a regional government and non-profit portal dedicated to providing comprehensive integration support services for migrants and refugees in Mecklenburg-Vorpommern, Germany. The website offers extensive categorized information on social services, language courses, job centers, medical and psychosocial help, and legal advice. It targets migrants, refugees, and residents seeking integration assistance, positioning itself as a key public service resource in the region. The business model is primarily public service funded, focusing on accessibility and community support.

L

Landesportal Mecklenburg-Vorpommern

mv-tut-gut.de

44

The website www.mv-tut-gut.de is the official Landesportal (state portal) for Mecklenburg-Vorpommern, Germany. It serves as a comprehensive information hub presenting the state's strengths in economy, education, culture, tourism, and government services. The portal targets a broad audience including residents, visitors, and businesses, providing access to various official partner portals and service platforms. The content is professionally curated with multimedia elements, event calendars, and regional news, reflecting a mature and well-established digital presence. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies such as jQuery, YouTube APIs, and Typekit fonts. It implements a cookie consent mechanism with opt-in for web analytics, indicating good privacy awareness. The site is mobile optimized and accessible, with clear navigation and consistent branding. Performance is moderate, suitable for a content-rich government portal. From a security perspective, the site uses HTTPS with strong SSL configuration and employs spam-protection techniques for email addresses. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not published, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It is a reliable digital asset for the Mecklenburg-Vorpommern government, though enhancing transparency around security policies and incident handling would strengthen its security posture further.

3

3sat / Satellitenfernsehen des deutschen Sprachraums

3sat.de

61

3sat is a well-established public broadcasting media platform serving the German-speaking audience with a focus on cultural, scientific, and societal content. The website offers video streaming, live TV, documentaries, and magazines, positioning itself as a trusted source of quality media content. It operates under the umbrella of ZDF, a major German public broadcaster, ensuring strong market presence and credibility. The platform targets a general audience interested in educational and cultural programming.

D

Datalab

datalab.hr

58

Datalab is a regional technology company specializing in business management software, prominently featuring their PANTHEON ERP solution. The website targets businesses seeking efficient and organized business operations, positioning itself as a trusted software provider in Croatia and neighboring countries. The digital infrastructure is built on WordPress with a professional theme and includes modern tracking and consent technologies such as Google Analytics, Facebook Pixel, and Cookiebot. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements are recommended in security headers and explicit privacy documentation. Overall, the site reflects a mature digital presence with good SEO and user experience, but lacks visible direct contact information and comprehensive privacy disclosures.

D

Dubrovačka baština

dubrovackabastina.com

47

Dubrovačka baština is a small hospitality and tourism-focused website promoting the cultural heritage of Dubrovnik, Croatia. The site targets tourists and visitors interested in local heritage and events. The business appears to be relatively young, founded in 2019, and operates primarily as a regional tourism promoter. The website is built on WordPress using common plugins such as WooCommerce, WPBakery, and Slider Revolution, indicating a moderate level of digital maturity. The technical infrastructure is standard for small business websites, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages. Contact information is limited to a contact form, with no direct emails or phone numbers published. Overall, the website is functional but could benefit from enhanced security practices and clearer privacy disclosures.

N

NK Slaven Belupo

nk-slaven-belupo.hr

46

NK Slaven Belupo is a Croatian football club with a professional online presence providing comprehensive information about the club, its teams, matches, and football academy. The website is built on Joomla CMS with modern frameworks and includes accessibility features and GDPR-compliant cookie consent. The site uses Google Analytics and Tag Manager for user tracking with consent mechanisms in place. Security posture is moderate with HTTPS enabled but lacks explicit security headers. WHOIS data is privacy protected, which is common and justified for this type of organization. Overall, the website is trustworthy, well-structured, and serves its target audience effectively.

U

Ustanova Zoološki vrt Grada Zagreba

zoo.hr

51

Ustanova Zoološki vrt Grada Zagreba operates the Zagreb Zoo, a well-established public institution dedicated to animal care, conservation, and education. The website provides comprehensive information about the zoo's exhibits, educational programs, conservation projects, and visitor services. It targets a broad audience including families, schools, and tourists, positioning itself as a key cultural and educational entity in Croatia. The presence of ISO 9001 and ISO 14001 certifications underscores its commitment to quality and environmental management. Technically, the website is built on WordPress using the Divi theme, leveraging modern web technologies such as jQuery and Google Fonts. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and a cookie consent mechanism, which are recommended for compliance with EU regulations. The absence of a public vulnerability disclosure or incident response policy suggests room for improvement in security transparency. Overall, the website is professional, trustworthy, and aligned with the institution's public service mission. The lack of WHOIS data due to GDPR privacy is typical and justified. Strategic recommendations include implementing cookie consent, enhancing security headers, and publishing clear security policies to strengthen compliance and trust.

P

Pučko Otvoreno Učilište Krapina

krapina.net

50

Pučko Otvoreno Učilište Krapina is a Croatian educational and cultural institution established in 1997, providing adult education, cultural programming, and venue rental services primarily serving the local community. The website is professionally designed using WordPress with Elementor and Yoast SEO, offering rich content about educational programs, cultural events, and organizational information. The technical infrastructure is modern and includes standard web technologies and Google Analytics for visitor insights. Security posture is good with HTTPS enabled and domain transfer protections, though DNSSEC is not enabled and no explicit security incident response information is provided. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the website is trustworthy, well-maintained, and serves its community effectively.

P

Pučko otvoreno učilište Sveti Ivan Zelina

pou-zelina.hr

54

Pučko otvoreno učilište Sveti Ivan Zelina is a Croatian public educational and cultural institution serving the local community of Sveti Ivan Zelina. The website showcases a variety of cultural events, educational programs, exhibitions, and publications, positioning itself as a regional hub for cultural and educational activities. The institution appears well-established with a domain age since 2008 and consistent WHOIS data. Technically, the website is built on Joomla CMS with modern frontend frameworks like Bootstrap and UIkit, and integrates marketing tools such as MailerLite. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and explicit security policies. Privacy compliance is basic, with no dedicated privacy or terms of service pages found. Overall, the website is professional, trustworthy, and serves its community effectively.

K

Kazalište Trešnja

kazaliste-tresnja.hr

43

Kazalište Trešnja is a well-established theatre company based in Zagreb, Croatia, with a domain registered since 1999. The website serves as a comprehensive platform for theatrical performances, ticket sales, schedules, and ensemble information, targeting the general public interested in cultural events. The business operates as a small cultural institution with a consistent brand presence and clear contact information. Technically, the site is built on WordPress using modern libraries such as jQuery, Bootstrap, and Font Awesome, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and GDPR compliance evident through cookie consent mechanisms and privacy policies, although security headers are lacking. Overall, the site is professional, trustworthy, and safe for general audiences.

K

Kulturni centar Travno

kuctravno.hr

50

Kulturni centar Travno is a well-established cultural and educational center based in Zagreb, Croatia, founded in 2013. It organizes a variety of cultural events, workshops, exhibitions, and community inclusion projects, particularly focusing on youth and migrant integration through Erasmus+ funded initiatives. The website reflects a professional and community-focused organization with active event promotion and educational content. Technically, the site is built on WordPress with modern plugins and SEO tools, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS and some security best practices, though explicit security headers and policies could be improved. Privacy compliance is basic, with cookie consent implemented but no visible privacy policy or terms of service. Overall, the domain registration and website content are consistent and trustworthy, supporting the legitimacy of the organization.

Z

Zagrebačko gradsko Kazališta Komedija

komedija.hr

10

Zagrebačko gradsko Kazalište Komedija is a well-established cultural institution based in Croatia, specializing in theatrical performances including operettas, musicals, rock operas, and ballets. The website serves as a comprehensive platform for showcasing their repertoire, news, ticket sales, and organizational information. The theater targets a broad audience interested in performing arts and cultural events. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO and various plugins, ensuring good SEO and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The domain registration data aligns well with the business, indicating legitimacy and trustworthiness.

Z

Zagrebačka filharmonija

zgf.hr

48

Zagrebačka filharmonija is a well-established Croatian cultural institution specializing in classical music performances and orchestral concerts. With a domain age dating back to 2003 and registration through a reputable Croatian registrar (CARNET), the organization demonstrates a stable and credible presence in the cultural sector. The website serves as a comprehensive portal for concert schedules, ticket sales, news, and educational projects, targeting classical music enthusiasts and the general public in Croatia. The institution maintains active social media channels and partnerships with media outlets and ticketing platforms, enhancing its outreach and engagement.

G

GNK Dinamo

gnkdinamo.hr

11

GNK Dinamo is a prominent Croatian football club with a well-established digital presence, offering comprehensive services including news, membership, ticketing, merchandising, and academy information. The website targets football fans and club members, providing a professional and engaging user experience. The technical infrastructure leverages modern web technologies, including Cloudflare DNS, Google Analytics, Microsoft Clarity, and Facebook Pixel for analytics and marketing. Hosting is managed by a Croatian provider, ensuring regional consistency. Security posture is strong with HTTPS enforced and secure forms, though formal security policies and incident response details are absent. Privacy compliance is robust with clear policies and cookie consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity.

D

DEKOD d.o.o.

dekod.hr

52

DEKOD d.o.o. is a well-established Croatian ticketing organization with over two decades of experience and a leading market position in the region. The company offers a comprehensive suite of ticketing and event management services, including e-ticketing systems, payment solutions, and web shop capabilities. Their clientele includes cultural institutions, event organizers, and public venues, supported by a strong regional presence and trusted partnerships such as with ulaznice.hr. The website reflects a professional business focus with clear contact information and client testimonials, reinforcing their credibility. Technically, the site is built on WordPress with the Enfold theme and uses common web technologies, but it runs outdated software versions that pose security risks. Security posture is moderate with HTTPS enabled but lacks modern security headers and visible privacy or cookie policies, indicating room for compliance improvement. Overall, the website is functional and trustworthy but would benefit from technical and compliance updates to enhance security and user trust.

W

WTSH GmbH

kuenstliche-intelligenz.sh

11

KI.SH is a regional open network initiative operated by WTSH GmbH, focused on promoting and facilitating the adoption of Artificial Intelligence technologies in Schleswig-Holstein, Germany. The platform offers tailored AI solutions, access to scientific research, workshops, funding opportunities, and networking for businesses and organizations in the region. The website is professionally designed, content-rich, and well-structured, targeting companies interested in leveraging AI for their challenges. Technically, the site uses the gradwerk CMS with standard web technologies and includes accessibility and SEO best practices. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy compliance is strong with comprehensive cookie consent and privacy policies. Overall, the site reflects a credible, government-affiliated business support platform with a clear mission and professional execution.

Bored Ape Yacht Club (BAYC) is a prominent NFT membership club operated by Yuga Labs, offering exclusive digital collectibles and community perks. The website serves as the official portal for BAYC and its related collections, providing members with login access and information about unique intellectual property rights and benefits. The brand holds a leading position in the NFT space with a large, engaged audience of crypto enthusiasts and digital art collectors. Technically, the website is built on a modern React and Next.js framework, hosted via Cloudflare with robust DNS and SSL configurations. It integrates multiple analytics and marketing tools such as Google Tag Manager and Plausible Analytics, ensuring good performance and mobile optimization. The site demonstrates excellent design quality, clear navigation, and consistent branding, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and domain registration protections but lacks DNSSEC and explicit security headers. There is no visible incident response or vulnerability disclosure policy, and cookie consent mechanisms are absent despite tracking scripts. These gaps suggest room for improvement in compliance and security transparency. Overall, the website is trustworthy and professional, with strong business credibility and technical maturity. Strategic enhancements in privacy compliance, security policies, and DNS security would further strengthen its posture and user trust.

APECHAIN is a blockchain technology platform that serves as a hub for decentralized applications, NFT marketplaces, gaming, and DeFi services on the ApeChain blockchain. It offers a diverse ecosystem including developer tools, bridges, and swap services, targeting web3 developers, gamers, and NFT enthusiasts. The platform integrates multiple partner applications, enhancing its market position as a comprehensive web3 ecosystem. Technically, the website is built using modern web technologies such as React and Next.js, hosted on Cloudflare with Contentful CMS for content management. The site demonstrates good performance and mobile optimization, with proper security headers and HTTPS enforcement. However, there is room for improvement in accessibility and SEO features. From a security perspective, the site employs strong HTTPS and security headers, but lacks DNSSEC and a public vulnerability disclosure policy. No privacy or cookie policies were found, indicating compliance gaps. Contact information is not explicitly provided, which may affect user trust and incident response readiness. Overall, the website is professional and functional with a moderate security posture. Strategic improvements in privacy compliance, security transparency, and user contact channels are recommended to enhance trust and regulatory adherence.

O

Oasys | The Blockchain for Asia and Beyond

oasys.games

61

The website www.oasys.games appears to be a Wix-hosted site with minimal accessible content and no visible business or contact information. The lack of WHOIS data and absence of privacy, cookie, or terms of service policies indicate low transparency and limited compliance maturity. Technically, the site uses standard Wix technologies and polyfills but lacks advanced SEO, accessibility, and security features. No security headers or HTTPS confirmation were found, which raises concerns about the security posture. Overall, the site presents a low trust profile with limited business credibility and technical sophistication.

K

KI Bundesverband

ki-verband.de

10

KI Bundesverband is Germany's largest network for Artificial Intelligence and Deep Tech companies, connecting over 500 members from various sectors including business, politics, research, and investment. The organization acts as a facilitator, advocate, and community builder to promote AI innovation and collaboration in Germany. Their website is built on a modern WordPress platform with professional design and SEO optimization, reflecting a mature digital presence. The technical infrastructure includes popular plugins such as Yoast SEO, Elementor, and Slider Revolution, hosted on Raidboxes, a reputable WordPress hosting provider. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and formal security policies. Overall, the site is trustworthy, professional, and well-positioned in the AI ecosystem.

C

CADMAP Consulting Ingenieurgesellschaft mbH

cadmap.de

49

CADMAP Consulting Ingenieurgesellschaft mbH is a well-established German company specializing in canal management and operational management systems. Founded in 1989, it holds a leading position in the German-speaking market, offering tailored software solutions, consulting, system support, and training services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting municipal and engineering clients. Technically, the site is built on WordPress with modern plugins and integrates Google analytics and consent management, ensuring GDPR compliance. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site demonstrates a trustworthy and professional business with solid technical and security foundations.

SC Networks GmbH operates a marketing automation platform branded as Evalanche, with the analyzed website serving as a secure login portal for existing users. The site is minimalistic, focusing solely on authentication without public-facing content such as privacy policies or contact information. The technical infrastructure leverages AWS DNS services and standard web technologies, but lacks advanced security headers and DNSSEC, indicating moderate digital maturity. Security posture is adequate but could be improved by implementing modern security best practices and visible compliance documentation. Overall, the domain registration is consistent and legitimate, supporting the business's credibility. The absence of public policies and contact details limits transparency and user trust.

M

Meteodyn

meteodyn.fr

53

Meteodyn is a specialized French company with over 20 years of expertise in wind engineering, climatology, and meteorology, focusing on CFD simulation of wind flows. The company targets professional clients in the energy and environmental sectors, offering specialized engineering services and software solutions. The website reflects a mature business with consistent branding and good content quality. Technically, the site is built on WordPress using modern plugins and frameworks, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the domain registration data supports the legitimacy of the business, showing consistent and long-term registration.

S

Stiftung der deutschen Wirtschaft für die Nutzung und Erforschung der Windenergie auf See

offshore-stiftung.de

44

The Stiftung OFFHORE-WINDENERGIE is a well-established German foundation founded in 2005, dedicated to promoting offshore wind energy in Germany and Europe. It operates as a non-profit organization providing networking, political advisory, educational, and project-related services to stakeholders in the energy sector. The website reflects a professional and content-rich platform targeting policymakers, industry participants, and the general public interested in renewable energy. Technically, the site uses modern front-end libraries and is built on the webEdition CMS, hosted on agenturserver infrastructure. Security posture is adequate with HTTPS and secure forms, but lacks some advanced security headers and cookie consent mechanisms. Overall, the site is trustworthy and authoritative within its niche.

G

Green Planet Energy eG

greenplanetenergy.de

63

Green Planet Energy eG operates as a cooperative green energy provider in Germany, offering a range of sustainable energy products including green electricity, gas, heat electricity, and solutions for electric vehicles and heat pumps. The website is professionally designed using TYPO3 CMS and targets environmentally conscious consumers in the German market. The company positions itself as a key player in the energy transition with a focus on renewable energy sources. Technically, the website employs modern web technologies including Usercentrics for cookie consent management and FontAwesome for iconography. The site is mobile-optimized and SEO-friendly, though some accessibility features appear basic. Security posture is moderate with HTTPS assumed and cookie consent mechanisms in place, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is trustworthy and professional, though improvements in privacy policy visibility and security disclosures are recommended.

E

Evonik

evonik.com

68

Evonik is a leading global specialty chemicals company focused on innovative chemical solutions and sustainability. The website demonstrates a strong corporate presence with detailed information on markets, products, governance, and investor relations. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, Alpine.js, and a consent management platform, ensuring good performance and compliance with privacy regulations. Security posture is solid with HTTPS and basic security headers, though additional headers and CSP could enhance protection. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy given the professional website content and corporate information. Strategic recommendations include enhancing security headers, verifying WHOIS data, and maintaining privacy compliance.

L

Not Found | Shlink

lths.cc

3

The website lths.cc currently serves only a 404 error page indicating that the requested content is not found or the site is under development. The domain is newly registered in December 2024 with a 5-year registration period and uses Cloudflare DNS services. There is no visible business information, contact details, or privacy and cookie policies on the site. The technical infrastructure appears minimal, with no advanced technologies or analytics detected in the provided HTML content. Security posture is weak due to lack of HTTPS confirmation, absence of security headers, and no visible compliance documentation. Overall, the site is not currently functional as a business or service platform and presents a low trust and credibility profile.

E

ee-hub

ee-hub.de

54

ee-hub.de is a professional platform focused on the renewable energy sector, providing industry news, event management, and educational content primarily targeting energy professionals in Germany. The website leverages modern web technologies including Laravel and the Statamic CMS, hosted on DigitalOcean infrastructure, and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enforced, though improvements in security headers and explicit cookie consent mechanisms are recommended. Privacy policies and terms of service are present and comprehensive, supporting GDPR compliance. Overall, the site presents a trustworthy and professional digital presence with moderate technical maturity and good user experience.

T

Team Wloka

team-wloka.de

10

Team Wloka is a specialized environmental planning consultancy focused on renewable energy projects such as wind energy and photovoltaic installations, as well as waste management. Their website presents a professional image with clear service offerings and a focus on rapid and pragmatic project implementation. The company targets businesses and project developers in Germany requiring environmental permits and expert reports. Technically, the website is built on WordPress using modern plugins and themes, with SEO and cookie consent mechanisms in place. Security posture is adequate with HTTPS and cookie consent, but lacks explicit security headers and detailed security policies. No privacy policy or terms of service pages were found, which is a compliance gap. Overall, the website is trustworthy and professional, with moderate technical maturity and good business credibility.