Security Directory

D

DEHN SE

dehn.de

58

DEHN SE is a well-established German family-owned company specializing in electrical safety solutions including lightning protection, surge protection, and occupational safety. With over 100 years of experience and an international presence, DEHN offers a comprehensive portfolio of products and services targeting professionals and companies in energy, transport, and industrial sectors. The website is built on Drupal 11, employs modern technologies, and integrates privacy-compliant tracking and consent mechanisms. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are not found. Overall, the site reflects a mature digital infrastructure supporting a reputable business with clear contact information and legal compliance.

Z

Zaptec

zaptec.com

70

Zaptec is a Norwegian company specializing in the manufacturing of electric vehicle (EV) charging solutions. The company positions itself as a reliable and user-friendly provider of EV charging hardware and software, targeting both residential and commercial customers. Their market presence is supported by a professional website with consistent branding and a clear focus on energy and transportation sectors. The website demonstrates a mature digital infrastructure, leveraging modern web technologies such as Next.js and React, and integrates multiple analytics and marketing tools including Google Tag Manager, HubSpot, and Facebook Pixel. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policies. Security posture is solid with HTTPS enforcement and standard security headers, although the absence of a public security policy and incident response contact points to areas for improvement. The lack of WHOIS data reduces domain trustworthiness, but the overall business credibility remains high based on website content and external references.

G

Graphisoft

dds-cad.de

65

Graphisoft is a technology company specializing in BIM and CAD software solutions, with this website page focused on the DDScad product for the German market. The site is professionally designed, built on WordPress, and uses modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS and reCAPTCHA integration, though explicit security headers and policies are not evident. The absence of WHOIS data limits domain transparency but the website content and branding align with a reputable software provider. Overall, the site presents a trustworthy and professional digital presence with room for improvement in privacy and security disclosures.

G

Gewiss

gewiss.de

72

Gewiss is a well-established company operating in the energy sector, specializing in electrical components and energy management solutions. The website targets industrial and commercial customers, providing detailed product information and corporate content. The company maintains a professional online presence with consistent branding and comprehensive privacy and cookie policies, indicating a mature approach to regulatory compliance. Technically, the website leverages modern web technologies including Google Tag Manager, reCAPTCHA, and Cookiebot for consent management, and appears to be built on Adobe Experience Manager CMS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enforced and bot protection is implemented, though explicit security headers were not detected in the provided data, suggesting room for improvement. The WHOIS data is not publicly available, which is common for commercial entities but reduces transparency. Overall, the website demonstrates a solid security posture and compliance maturity with no critical vulnerabilities detected.

P

PRACHT

pracht.com

49

PRACHT is a German-based manufacturer specializing in industrial and commercial lighting solutions, serving a diverse range of sectors including heavy industry, transportation, and municipal infrastructure. The company operates a B2B e-commerce platform built on PrestaShop, offering a comprehensive catalog of luminaires tailored to specific industry needs. The website demonstrates a professional design with consistent branding and clear navigation, targeting industrial clients seeking specialized lighting products. Technically, the website leverages modern web technologies such as PrestaShop CMS, Elementor, and Google Tag Manager for analytics and marketing. The site is secured with HTTPS and implements a cookie consent mechanism that respects user privacy preferences. However, there is room for improvement in security headers and privacy documentation to enhance compliance and trust. From a security perspective, the site shows good baseline practices with no exposed sensitive data or visible vulnerabilities. The absence of security headers and formal security policies indicates potential areas for strengthening the security posture. The domain registration data is consistent and supports the legitimacy of the business, with a long-standing domain age since 2002. Overall, PRACHT's website is a solid representation of an established industrial manufacturer with a moderate digital maturity level. Strategic enhancements in privacy compliance, security policies, and technical security controls would further improve the site's trustworthiness and regulatory adherence.

S

S. Siedle & Söhne, Telefon- und Telegrafenwerke OHG

siedle.de

51

Siedle is a well-established German manufacturer specializing in building and door communication systems, including intercoms and access control solutions. With a history spanning 275 years, the company holds a strong market position as a leading European provider of high-quality, made-in-Germany products. Their offerings include traditional and IP-based video intercoms, digital services, and customer configurator tools, targeting builders, architects, and trade professionals. The website reflects a mature digital presence with modern technologies and a clear focus on user experience and product information. Technically, the website employs modern JavaScript frameworks, web components, and integrates consent management via Usercentrics, alongside Google Tag Manager for analytics and advertising. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers could be more explicitly implemented. HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected. From a security perspective, the site demonstrates good practices including encrypted connections and cookie consent mechanisms. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. Privacy policies and terms of service are comprehensive and GDPR compliant. Overall, the website is professional, trustworthy, and well-aligned with the company's business stature. Strategic improvements in security transparency and incident readiness would further strengthen its posture.

LEDVANCE is a globally recognized company specializing in the development and supply of advanced lighting products and solutions for both professional users and end consumers. The website presents a comprehensive portfolio of lighting products including professional lighting, consumer lighting, renewable energy solutions such as photovoltaics, and smart home lighting. The company positions itself as a leading provider in the general lighting market with a strong focus on innovation and efficiency. The website is well-structured, professionally designed, and targets a German-speaking audience primarily in Germany and neighboring countries. Technically, the site employs modern web technologies including Google Tag Manager and Usercentrics for consent management, indicating a moderate level of digital maturity. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy or recent changes in domain ownership. Security posture is moderate with cookie consent implemented but lacking visible security headers and explicit privacy policies. Overall, the website is professional and trustworthy but would benefit from enhanced transparency in domain registration and improved security and privacy disclosures.

Brumberg Leuchten is a German manufacturer specializing in efficient LED lighting solutions for ceilings, walls, and floors. The company targets both business and consumer markets seeking modern, energy-efficient lighting products. The website is built on TYPO3 CMS and integrates advanced cookie consent management, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. While the site demonstrates good content quality and professional design, it lacks visible privacy policies and contact information, which are critical for compliance and trust. The absence of WHOIS data raises concerns about domain registration legitimacy, although the website content and branding appear consistent with a legitimate business. Security posture is moderate, with room for improvement in security headers and incident response transparency.

K

KEBA

keba.com

77

KEBA is a well-established company specializing in innovative automation solutions, with a history spanning 50 years. The website presents a professional and consistent corporate image focused on industrial and manufacturing automation services. The content is relevant and targeted towards industrial clients, reflecting a large enterprise with a strong market position in the manufacturing sector. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, and integrates Google Tag Manager for analytics and tracking purposes. Mobile optimization and SEO practices are good, though accessibility features are basic. Security posture is weak due to lack of visible security headers and absence of explicit security policies or incident response information. The WHOIS data is missing, which raises concerns about domain registration legitimacy and transparency. No privacy or cookie policies were detected, indicating potential compliance gaps. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.

T

Thorn

thornlighting.de

54

Thorn Lighting is a well-established company specializing in integrated LED lighting solutions for both indoor and outdoor applications, primarily targeting business customers in Germany and Europe. Their website demonstrates a professional presence with comprehensive product offerings, case studies, and energy-saving tools. The technical infrastructure is built on the Plone CMS platform, enhanced with modern JavaScript libraries and third-party services such as Google Analytics and Usercentrics for consent management. Hosting and DNS services are provided via Cloudflare, ensuring reliable delivery and security. The security posture is solid with HTTPS enforced and cookie consent mechanisms blocking third-party content until user opt-in. However, explicit security headers and incident response policies are not publicly visible, representing an area for improvement. Overall, the website is trustworthy, compliant with GDPR, and provides a good user experience with clear navigation and relevant content.

H

homeway

homeway.de

54

homeway is a German-based company specializing in modular communication networks for homes, integrating fiber optics, internet, TV, and multimedia in-house networks. The company targets both private consumers and business sectors such as installers, electrical planners, prefab house manufacturers, and developers. Their offerings include innovative home network solutions and safe electrical power products. The website demonstrates a solid digital presence with modern WordPress infrastructure, SEO optimization, and GDPR-compliant cookie management. Social media engagement is active across major platforms. Security posture is good with HTTPS and privacy plugins, though explicit security policies and vulnerability disclosures are absent. Overall, homeway presents as a trustworthy small business with a clear market niche in telecommunications and energy solutions for residential and commercial clients.

A

achatpublic.com

achatpublic.com

63

achatpublic.com is a leading French platform specializing in services for public procurement. It serves over 22,000 public buyers and 125,000 suppliers, providing a comprehensive suite of tools covering sourcing, document drafting, buyer profiling, procedural management, act tracking, archiving, and electronic auctions. The platform also offers professional training tailored to public buyers and companies, positioning itself as a key player in the French public procurement ecosystem. Technically, the website is built on Drupal CMS and integrates modern analytics and consent management tools such as HubSpot, Google Tag Manager, Didomi, and Piano Analytics, reflecting a mature digital infrastructure. The site is well-structured, mobile-optimized, and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and implements a detailed cookie consent mechanism, but lacks explicit security headers and published security policies. The absence of WHOIS data is a notable concern for domain transparency, though the professional presentation and GDPR compliance indicators suggest legitimate operations. Overall, the site presents a moderate to high level of trustworthiness with room for improvement in security transparency and contact information clarity.

R

Reworld Media Connect

reworldmediafactory.com

53

Reworld Media Connect is the advertising sales division of Reworld Media, a leading French thematic media group owning 80 proprietary media brands. The website targets advertisers and media buyers interested in thematic media advertising in France. The business model focuses on media representation and advertising sales. The website is built on WordPress with modern plugins and SEO optimizations, including Google Tag Manager and a GDPR-compliant cookie consent mechanism via Didomi. However, no explicit privacy policy or terms of service pages were detected, and no direct contact information was found in the HTML content. The WHOIS data for the domain is missing or unavailable, which is inconsistent with the active and professional website presence, lowering trustworthiness. Security posture is basic with HTTPS enabled but lacking visible security headers or explicit security policies. Overall, the website is professional and functional but would benefit from improved transparency and security disclosures.

E

Eesti Inimõiguste Keskus

humanrights.ee

45

Eesti Inimõiguste Keskus is an established independent non-profit organization focused on promoting and protecting human rights in Estonia. The organization provides comprehensive services including human rights reporting, advocacy, refugee counseling, events, and educational materials. Their website reflects a professional and consistent brand image, targeting Estonian residents, NGOs, policymakers, and human rights advocates. The domain has been active since 2010, supporting their credibility and long-term presence in the sector. Technically, the website is built on WordPress with WooCommerce and integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and CookieYes for consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience.

D

Državna škola za javnu upravu

dsju.hr

10

Državna škola za javnu upravu is a Croatian government educational institution specializing in public administration training and development. The website serves as an official portal offering information about their programs, services, international cooperation, and contact details. It targets public sector professionals and government employees seeking training and capacity building. The institution holds a stable market position as the national public administration school, founded in 2011, with a medium organizational size. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. It integrates Google Tag Manager and OneSignal for analytics and notifications, and complies with GDPR through cookie consent mechanisms. The site is mobile-optimized and provides a good user experience with clear navigation and search functionalities. From a security perspective, the site uses HTTPS with good SSL configuration and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy pages and incident response contacts, which are recommended for enhanced transparency and readiness. The WHOIS data confirms domain legitimacy and consistent government affiliation, reinforcing trust. Overall, the website presents a professional, secure, and compliant digital presence suitable for its government educational role. Strategic improvements in security policy disclosure and accessibility could further strengthen its posture.

R

Razvojni center Murska Sobota

rcms.si

39

Razvojni center Murska Sobota is a regional development institution focused on fostering economic, social, and cultural growth in the Pomurje region of Slovenia. The organization provides project management, entrepreneurship support, and regional development services primarily targeting local businesses, entrepreneurs, and government stakeholders. The website reflects a professional and consistent brand presence with clear contact information and active engagement in regional projects and tenders. Technically, the site employs modern web technologies including jQuery, Slick Carousel, and accessibility tools, hosted by a reputable Slovenian provider. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are absent. Overall, the site is trustworthy, compliant with GDPR, and well-structured for its audience.

E

Expano

expano.si

43

Expano.si is a well-established regional cultural and tourism promotion website focused on the Pomurje region in Slovenia. It offers immersive exhibitions, event information, ticket sales, and a retail shop, targeting tourists, families, and business visitors. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages. Technically, it uses modern web technologies including Google Maps API, jQuery, and Google Tag Manager, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and consent mechanisms, though it lacks explicit security policies and vulnerability disclosures. Overall, the site is trustworthy and compliant with GDPR, supported by official EU and Slovenian government partnerships and certifications.

Z

Zavod za kulturo, turizem in šport Murska Sobota

zkts-ms.si

40

Zavod za kulturo, turizem in šport Murska Sobota is a Slovenian public institution dedicated to promoting culture, tourism, and sports within the Murska Sobota municipality. Established in 2011, it operates as a local government entity providing cultural events, tourism information, and sports facility management. The website serves as an information portal targeting the general public interested in these sectors. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and hosting services consistent with its regional presence. The site is mobile-optimized, accessible, and includes a cookie consent mechanism aligned with GDPR requirements, although explicit privacy and terms of service pages were not found in the provided content. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities detected, but could benefit from enhanced security headers and incident response disclosures. Overall, the website reflects a professional and trustworthy digital presence for a local government institution.

T

TESVOLT AG

tesvolt-projects.com

52

TESVOLT Projects is a specialized full-service provider focused on battery parks and energy storage solutions tailored for municipal utilities. The company offers comprehensive services from planning through operation, leveraging deep expertise in storage technology and municipal project experience. Their market position is supported by multiple references and partnerships with notable industry players. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience in the energy sector. Technically, the site uses the CIDEMOS CMS platform with modern web technologies and integrates Google Tag Manager for analytics and marketing. Security posture is generally good with HTTPS enforced and cookie consent implemented, though the absence of security headers and published security policies suggests room for improvement. The WHOIS data for the domain is missing, which slightly reduces trustworthiness, but the website content and business information align well with the TESVOLT AG brand. Overall, the site demonstrates a solid digital presence with good privacy compliance and business credibility.

RT Radiologie Technik + IT-Systeme is a specialized German trade publication focused on healthcare technology, specifically radiology and medical imaging IT systems. It serves healthcare professionals and decision makers by providing product catalogs, news, and industry insights. The website is professionally designed, uses a modern CMS (Contao), and integrates standard web technologies including jQuery and Google Analytics with privacy controls. The business is part of medhochzwei Verlag GmbH, a recognized publishing house in the healthcare sector. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and offers clear contact information.

B

Banca Națională a României

bnro.ro

70

The website www.bnr.ro represents the official online presence of the National Bank of Romania (BNR), the country's central bank. It provides comprehensive information about the bank's functions, currency issuance, statistics, publications, and contact points, targeting a broad audience including the general public, financial institutions, and government entities. The site is professionally designed with consistent branding and clear navigation, reflecting its authoritative role in Romania's financial sector. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with integration of Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO metadata completeness. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. However, explicit security headers are not evident in the provided data, and no public security or incident response policies are published. The WHOIS data is not publicly available due to ROTLD privacy policies, which is typical for .ro domains and justified for a government entity. Overall, the website demonstrates a strong business credibility and privacy compliance posture, with moderate technical and security maturity. There are no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, improving accessibility, and publishing explicit security policies to further strengthen trust and compliance.

N

National Bank of Belgium

nbb.be

77

The National Bank of Belgium operates as the central financial institution of Belgium, providing essential banking and monetary services. The website serves a broad audience including the general public, financial professionals, and researchers, offering multilingual support and comprehensive information about the bank's functions. The site is built on Drupal 10, leveraging modern web technologies and analytics platforms such as Matomo and Google Analytics, with a strong emphasis on privacy and cookie consent compliance. Technically, the website demonstrates a mature digital infrastructure with good mobile optimization, accessibility, and SEO practices. Security posture is robust with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers could be improved. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the domain WHOIS data is privacy protected, which is justified for a governmental financial institution. Despite the lack of WHOIS transparency, the website exhibits strong trust indicators and professionalism. The risk assessment is low, with recommendations focusing on enhancing security headers and publishing security policies to further strengthen trust and compliance.

T

Teamdash

teamdash.com

10

Teamdash is a technology company specializing in AI-enabled recruitment software designed for in-house talent acquisition teams. Their platform offers a comprehensive suite of tools including applicant tracking, recruitment marketing, video interviewing, automation, and analytics to streamline hiring processes and improve recruitment outcomes. The company positions itself as a highly customizable and innovative solution in the recruitment software market, supported by positive user ratings and industry recognition. Technically, the website is built on WordPress with modern performance optimizations such as WP Rocket and Google Tag Manager integration. The site is well-structured with SEO best practices and mobile optimization, providing a professional user experience. However, the absence of WHOIS data and registrant information introduces some uncertainty about domain registration legitimacy. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms, but lacks explicit security headers and published privacy or terms of service pages. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the security posture is good but could be improved with additional transparency and security controls. The overall risk assessment is moderate with recommendations to publish clear privacy and terms policies, enhance security headers, and clarify domain registration details to improve trust and compliance.

EVENT PARTNER is a well-established German media brand specializing in the event industry, providing news, trends, and educational content such as webinars and whitepapers. The website targets event professionals and marketers, offering subscription-based and single-issue sales alongside digital downloads. Technically, the site is built on WordPress with modern integrations including Usercentrics for consent management and Google Tag Manager for analytics and advertising. The site demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent management, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned in its niche.

C

Cineplexx

cineplexx.at

63

Cineplexx is a prominent cinema chain operating primarily in Austria, offering movie screenings and related entertainment services to a broad audience. The website reflects a professional and modern digital presence, leveraging React technology and integrating comprehensive cookie consent mechanisms to comply with GDPR requirements. The business targets general moviegoers and positions itself as a leading player in the Austrian cinema market. Technically, the site employs modern frontend frameworks and integrates third-party analytics and advertising platforms such as Google Analytics, Facebook, Pinterest, and TikTok, indicating a mature digital marketing strategy. Security-wise, the website enforces HTTPS, implements strong security headers, and provides a detailed privacy policy, although it lacks visible terms of service and explicit security policy pages. Overall, the site demonstrates good security hygiene and privacy compliance but could improve transparency by publishing additional security and incident response information.

P

Privacy service provided by Withheld for Privacy ehf

zakon.ai

46

Zakon.ai is a technology company offering an AI-powered legal search platform focused on Croatian and European law. The platform provides instant access to laws, regulations, court decisions, and EU directives, targeting legal professionals, entrepreneurs, and citizens. The business model is subscription-based with free trials and multiple pricing tiers. The website is professionally designed using WordPress and Elementor, integrating modern tools such as Google Analytics and cookie consent management. The technical infrastructure is solid, with HTTPS enabled and a secure domain status, although DNSSEC is not enabled. Security posture is good but could be improved by adding security headers and publishing security policies. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy policy found. Overall, the site is trustworthy and safe for general audiences.

C

Comp-On AG, HR Solutions

comp-on.ch

58

Comp-On AG is a Swiss-based company specializing in HR compensation solutions, targeting businesses seeking practical and understandable approaches to remuneration questions. The company operates a professional website built on WordPress with the Divi theme, integrating modern SEO and analytics tools such as Yoast SEO and Google Analytics. The website content is well-structured and relevant to its niche market, reflecting a small-sized enterprise with a clear business focus. Technically, the site demonstrates moderate performance and good mobile optimization, though some accessibility features could be enhanced. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but missing a formal privacy policy and terms of service. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the site is trustworthy and professional but would benefit from improved privacy and security documentation to enhance compliance and user trust.

H

heckersolar.com

heckert-solar.com

47

Heckert Solar Shop is a German-based specialized provider of photovoltaic (PV) modules, inverters, and storage solutions targeting both private consumers and business customers. The company offers a comprehensive product range including solar modules, balcony power plants, inverters from multiple brands, PV storage systems, commercial storage, mounting systems, e-mobility products, and accessories. The website is professionally designed, mobile-optimized, and built on the Shopware CMS platform, indicating a mature digital infrastructure. The presence of multiple advertising and tracking technologies such as Google Analytics 4, Facebook Pixel, and various ad networks reflects an active marketing strategy. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified. The website lacks explicit privacy policy and terms of service pages, though it implements a cookie consent mechanism. Security posture is generally good with HTTPS enforced but could be improved by adding security headers and publishing security policies. Overall, the site presents a trustworthy and professional front for a medium-sized energy sector business in Germany.

C

CoolHotels.in

coolhotels.in

53

CoolHotels.in is a boutique online platform specializing in discovering and booking unique, luxurious, and curated hotels worldwide. Founded in 2021, the company targets travelers seeking distinctive hotel experiences through expert-curated guides and simple online booking links. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including Google Fonts, Leaflet for maps, and Google Analytics for tracking, with a custom CMS or framework. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and formal security policies are absent. Privacy compliance is well addressed with a clear privacy and cookie policy. Overall, the business appears legitimate and trustworthy with consistent WHOIS data and no suspicious indicators.

W

Where to Stay

wheretostay.in

9

Wheretostay.in is a niche travel guide website offering detailed neighborhood and area guides for travelers worldwide. The site integrates high-quality maps and hotel listings to assist users in selecting accommodation based on neighborhood characteristics. The business targets travelers seeking comprehensive and up-to-date local insights to enhance their travel experience. Technically, the website employs modern web technologies including JavaScript, CSS, and integrates Google Analytics and Google Ads for tracking and advertising. The site is mobile optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS but lacks security headers and published security policies, which are areas for improvement. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Overall, the website is functional and trustworthy but would benefit from enhanced privacy and security practices to improve compliance and user trust.

Jessica Stuart-Beck's website serves as a personal portfolio for an artist specializing in watercolor paintings, with a focus on showcasing artwork and providing exhibition information. The site targets art enthusiasts and potential visitors primarily in Sweden. The business model is centered on art promotion and sales through exhibitions and books authored by the artist. The website is hosted on Netlify and uses modern web technologies including Google Analytics and Tag Manager for visitor tracking. The technical infrastructure is moderate in performance and mobile optimized, though accessibility and SEO are basic. Security posture is limited due to lack of visible security headers and missing privacy and cookie policies. The WHOIS data is unavailable, raising concerns about domain registration legitimacy, although the website content appears genuine and professional. Overall, the site is functional but lacks critical compliance and security features.

C

Coop Eesti Keskühistu

coopkokad.ee

10

Coop Eesti Keskühistu operates the Coop Kokad website, a retail cooperative focused on selling food products in Estonia. The company is well-established with a domain age consistent with its founding year 2017. The website is built on a modern Drupal 10 CMS with Commerce 3, integrating advanced cookie consent management via Cookiebot and analytics tools such as Google Analytics and Hotjar. Advertising is managed through major networks including Adform and Meta Platforms, ensuring targeted marketing and retargeting capabilities. The website demonstrates good technical maturity with HTTPS, responsive design, and clear business information. Security posture is solid with encrypted connections and consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

C

Coop Pank

cooppank.ee

64

Coop Pank is a well-established Estonian bank offering a comprehensive range of retail and business banking services including loans, savings, insurance, and payment solutions. The bank positions itself as a local partner for customers both in urban and rural areas, emphasizing innovative and customer-centric financial products. The website reflects a mature digital presence with modern technologies such as React and Next.js, and integrates multimedia content and social media channels effectively. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit cookie consent mechanisms and published security policies could be improved. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives and regulatory requirements.

TJ Niva Hladké Životice is an amateur football club based in Severní Morava, Czech Republic, with a long-standing tradition dating back to 1950. The website serves as a community hub providing match results, team rosters, photo galleries, and news updates. It targets local football enthusiasts and community members. The business model is non-profit and community-focused, emphasizing local sports engagement. Technically, the site is built on WordPress using the Avada theme, enhanced with Yoast SEO for search optimization and Google Tag Manager for analytics. The site is moderately performant and mobile-optimized, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal incident response policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy for its purpose but could improve compliance and security practices.

PostNord International is a leading logistics and postal service provider focused on delivering borderless e-commerce solutions globally. The company offers customizable logistics services that enable clients to expand their markets worldwide, targeting e-commerce businesses and retailers. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, indicating a global audience. The technical infrastructure leverages modern technologies including Episerver CMS, Azure hosting, and advanced analytics tools such as Google Analytics and Microsoft Application Insights, demonstrating a commitment to performance monitoring and user experience optimization. Security posture is strong with HTTPS enforcement, comprehensive security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the website and business presence indicate a reputable and established enterprise with a focus on compliance and user privacy.

A

Abicart.se

abicart.se

57

Abicart.se is a Swedish e-commerce platform operated by Textalk AB, offering a comprehensive SaaS solution for businesses to start and manage online shops. The platform provides modern payment integrations, logistics support, multilingual capabilities, and AI-powered features such as automatic product description generation and translations. Positioned as one of Sweden's leading e-commerce platforms, Abicart targets entrepreneurs and businesses seeking affordable and scalable online store solutions. Technically, the website employs modern web technologies including React and Bootstrap, with good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and a public security policy are absent. WHOIS data for the www subdomain is unavailable, but the main domain and business legitimacy are supported by consistent branding and contact information. Overall, the site demonstrates a professional, trustworthy, and user-friendly e-commerce service with strong market positioning in Sweden and the Nordic region.

J

Joker

joker.hr

50

Joker.hr is the official website of Joker, a retail shopping center located in the heart of Split, Croatia. The site offers comprehensive information about the shopping center's stores, restaurants, entertainment options, and services such as parking and fitness. The business targets local shoppers and visitors seeking a diverse retail and leisure experience. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and tracking tools, including Google Tag Manager and Mailchimp integration. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the domain registration aligns with the business claims, supporting legitimacy and trustworthiness.

A

Avenue Mall

avenuemall.hr

52

Avenue Mall is a well-established retail shopping center located in Zagreb, Croatia, offering a wide range of retail stores, food and beverage outlets, and entertainment options. The website reflects a medium-sized business with a strong local market presence and a focus on customer engagement through promotions, events, and a loyalty program. Technically, the site employs modern web technologies including jQuery UI, Slick Slider, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, user-friendly, and trustworthy, supporting the business's retail and hospitality operations effectively.

A

Arena Center Zagreb d.o.o.

arenacentar.hr

63

Arena Centar is a well-established large retail shopping center located in Croatia, operated by Arena Center Zagreb d.o.o. and owned by the parent company NEPI Rockcastle. The website provides comprehensive information about the shopping center's services, including retail stores, dining, entertainment, parking, and customer engagement via a mobile app and gift cards. The site targets a broad audience including local residents, families, and visitors seeking shopping and leisure experiences. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for analytics and marketing tools like Google Tag Manager, Facebook Pixel, and TikTok Pixel. Hosting and DNS are managed by reputable providers, ensuring stable performance and security. Security posture is good with HTTPS enforced and consent mechanisms for cookies, though explicit security policies and incident response details are not publicly available. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, providing a positive user experience and strong business credibility.

C

City Center One

citycenterone.hr

43

City Center One operates as a major retail shopping center brand in Croatia, with locations in Zagreb and Split. The website presents a professional and well-structured digital presence, highlighting over 450 international and domestic stores. The business model focuses on retail space leasing, advertising, and shopping center management, targeting general consumers in Croatia. The domain age and WHOIS data align well with the business claims, supporting legitimacy. Technically, the site uses WordPress with common JavaScript libraries and a consent management platform to ensure GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though additional security headers and explicit security policies could enhance trust. Privacy and cookie policies are present and comprehensive, supporting regulatory compliance. Overall, the website is a trustworthy and professional representation of a large retail business in Croatia.

G

Gransy d.o.o.

jeftinije.hr

57

Jeftinije.hr is a Croatian price comparison website operated by Gransy d.o.o., established in 2016. The platform offers comprehensive online price comparisons, shopping guides, and product reviews targeted at Croatian consumers seeking the best deals. It holds a strong market position as a leading price comparison portal in Croatia, leveraging partnerships with regional sites across Central and Eastern Europe. Technically, the website employs modern JavaScript libraries, Cloudflare DNS, and integrates Google Tag Manager and DoubleClick for advertising and analytics. The site is mobile-optimized with good SEO practices but lacks explicit privacy and terms of service documentation in the accessible content. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and incident response information are missing. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

H

Hrvatski Telekom d.d.

akz.hr

52

The website www.akz.hr serves as the official online platform for the Zagreb Bus Station, providing extensive bus ticketing services across Croatia and neighboring countries. It offers users the ability to search for bus schedules, purchase tickets online up to 15 minutes before departure, and access real-time status updates for arrivals and departures. The platform supports mobile app integration, enhancing accessibility for travelers. The business is positioned as a key transportation service provider in the region, backed by Hrvatski Telekom d.d., a reputable Croatian telecommunications company. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Tag Manager and Google Analytics for marketing and analytics purposes. Hosting is managed by Hrvatski Telekom with Cloudflare DNS services, ensuring reliable domain resolution. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers such as Content Security Policy and HSTS, which are recommended for enhanced protection. Privacy compliance is limited due to the absence of a visible privacy policy and terms of service, representing a compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. Strategic improvements in privacy policy publication, security header implementation, and comprehensive compliance documentation would elevate its security posture and user trust.

H

Hrvatska narodna banka

hnb.hr

63

Hrvatska narodna banka (HNB) is the central bank of the Republic of Croatia, responsible for monetary policy, financial stability, banking supervision, and currency issuance. The website serves as an official portal providing comprehensive information about the bank's functions, regulatory framework, statistics, publications, and consumer protection. It targets a broad audience including the general public, financial institutions, and government entities. The site is well-structured and professionally maintained, reflecting the bank's authoritative position in the Croatian financial sector. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript frameworks such as React and Alloy UI. It employs Google Tag Manager for analytics and tracking, and the site is optimized for both desktop and mobile devices with a moderate performance profile. Accessibility and SEO practices are basic but adequate for the target audience. From a security perspective, the site enforces HTTPS, includes standard security headers, and avoids exposing sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly documented, representing areas for improvement. Privacy and cookie policies are present and indicate GDPR compliance, with consent mechanisms implemented. Overall, the website demonstrates a strong business credibility and security posture appropriate for a national central bank. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility features, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

B

BLITZ - CINESTAR d.o.o.

blitz-cinestar.hr

58

CineStar Cinemas, operated by BLITZ - CINESTAR d.o.o., is the largest multiplex cinema chain in Croatia, established in 2003. The company operates 16 locations across 11 cities, offering a wide range of cinema experiences including premium formats such as IMAX, 4DX, ScreenX, and Gold Class. The website provides comprehensive information about movie screenings, ticket sales, loyalty programs, and concessions, targeting a general audience including families and cinema enthusiasts. The business model focuses on retail cinema operations with an integrated online ticketing platform and ancillary services such as snacks and event hosting. Technically, the website is built using modern web technologies including Bootstrap, FontAwesome, Swiper.js, and Google Tag Manager for analytics. It is hosted behind Cloudflare CDN and DNS services, ensuring good performance and security. The site is mobile-optimized and includes accessibility features, although some improvements could be made. SEO practices are well implemented with structured data and meta tags. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present. No vulnerability disclosures or incident response contacts are published, which could be areas for improvement. No critical vulnerabilities or suspicious activities were detected. Overall, CineStar Cinemas presents a professional, trustworthy, and user-friendly online presence with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party scripts to maintain a robust security posture.

C

Cineplexx

cineplexx.hr

65

Cineplexx is a well-established cinema chain operating primarily in Austria and surrounding regions, offering movie screenings and related entertainment services. The website reflects a professional digital presence with a focus on user experience and compliance with privacy regulations such as GDPR. The company leverages modern web technologies including React and Google Tag Manager to deliver content and track user interactions effectively. The presence of Cookiebot ensures transparent cookie consent management, enhancing user trust and regulatory compliance. Security posture is solid with HTTPS enforced and standard security headers present, although there is room for improvement in implementing a full Content-Security-Policy and publishing explicit security policies. Overall, the website is trustworthy, well-maintained, and suitable for its target audience of general moviegoers.

Cheap Motels Near Me is a niche affiliate website focused on providing users with listings of budget motels near their current location. The site leverages a partnership with Booking.com to offer a best price guarantee, positioning itself as a price comparison and booking facilitator in the hospitality sector. The target audience primarily consists of travelers seeking affordable lodging options. The business model is based on affiliate commissions through Booking.com, with no direct booking or payment processing handled on the site itself. Technically, the website employs modern web technologies including Vue.js for frontend interactivity, Google Analytics and Tag Manager for tracking, and Google Maps API for location services. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile optimized and presents a clean, user-friendly interface with good navigation and relevant content. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, no explicit security headers such as Content-Security-Policy or HSTS were detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance and user trust. No contact information or incident response details are provided, limiting transparency. The WHOIS data shows a legitimate domain registration with a reputable registrar and no privacy protection, consistent with the business type. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

Motels Near Me is a niche hospitality website operated by Heylab AB, a Swedish company founded in 2017. The site provides a location-based motel search service, helping travelers find motels with available rooms near their current location, emphasizing best price guarantees. The business model centers on facilitating motel discovery and potentially bookings, targeting travelers seeking convenient and affordable lodging options. The website is professionally designed with a clear user interface and good mobile optimization, leveraging modern web technologies including Vue.js, Google Analytics, and Google Maps API. Hosting and DNS services are provided via Cloudflare, ensuring reliable performance and security at the infrastructure level. Security posture is moderate with HTTPS enforced and domain transfer protections in place; however, the absence of DNSSEC and security headers like CSP and HSTS represent areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms, which could expose the business to regulatory risks. Contact information is minimal, limited to personal links in the about section, with no direct company emails or phone numbers disclosed. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy practices to improve compliance and user trust.

J

Julianus Inkasso

julianus.ee

44

Julianus Inkasso is a well-established Estonian debt collection company founded in 1995, operating as a leading provider in Estonia and the Baltic region. The company offers comprehensive credit management services including debt collection, legal proceedings, and purchase of debt portfolios. It is part of the Aktiva Finance Group, which enhances its market position and operational scale. The website reflects a professional and consistent brand image, targeting both debtors and creditors with multilingual support and self-service portals. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and credible business presence.

Credit24.ee is a well-established Estonian online consumer finance provider offering a variety of loan products including credit accounts, car loans, and personal loans. The company operates under IPF Digital AS and has a strong regional presence with subsidiaries and partner brands across the Baltics and Australia. The website is professionally designed using modern web technologies such as React and Next.js, hosted on AWS, and incorporates GDPR-compliant cookie consent mechanisms. Analytics and marketing tools like Microsoft Clarity and Google Tag Manager are used for user behavior tracking and advertising. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

T

Telia Eesti AS

telia.ee

79

Telia Eesti AS operates a comprehensive telecommunications platform in Estonia, offering mobile, internet, TV, and IT solutions to both private individuals and businesses. The company holds a strong market position as a leading telecom provider with a broad portfolio of services and a well-established brand. The website reflects a mature digital presence with multi-language support and a user-friendly interface. Technically, the site leverages modern frameworks such as React and integrates analytics and consent management tools, ensuring a balance between user experience and compliance. Security posture is robust with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly disclosed. Overall, the site demonstrates high professionalism and trustworthiness, supporting Telia's reputation in the telecommunications sector.