Security Directory

The domain rauch.cz is currently a parked domain with no active business content or services presented. The website serves primarily as a placeholder indicating the domain is for sale, with minimal design and no substantive information. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript, with hosting likely provided by websupport.cz based on nameservers. There is no evidence of a content management system or advanced frameworks. Security posture is weak, with no HTTPS enforcement or security headers detected, and no privacy or cookie policies present, indicating non-compliance with common data protection regulations. The presence of multiple external advertising and tracking domains suggests monetization through ads rather than direct business operations. Overall, the site lacks business credibility and trust signals, and the domain's long registration history contrasts with the lack of active content.

The website masvsechno.cz represents EasySchool, a small Czech educational business providing vending machines stocked with writing supplies for schools. The service simplifies access to stationery for students and teachers, with machines maintained fully by the company. The business is positioned as a niche educational support provider with a clear target audience and a straightforward business model. The website is well structured, uses modern technologies like Bootstrap and Google Maps API, and includes media coverage and contact details to build trust. However, it lacks formal privacy and cookie policies, and no explicit security policies are present. The site uses HTTPS and third-party scripts but does not implement security headers or vulnerability disclosure mechanisms. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

D

Datatilsynet

datatilsynet.dk

71

Datatilsynet is the central independent Danish authority responsible for supervising compliance with data protection regulations, including GDPR. The organization provides guidance, handles complaints, and conducts oversight of public authorities and businesses. Positioned as a government regulatory body, Datatilsynet serves a broad audience including companies, citizens, and youth, emphasizing responsible data use in a digital society. The website reflects a professional and authoritative presence with comprehensive content tailored to various stakeholders. Technically, the site is built on a custom ASP.NET platform with jQuery and modern web standards, delivering good performance and accessibility. Security posture is solid with HTTPS usage and no visible vulnerabilities, though security headers and explicit incident response policies could be improved. Overall, the site demonstrates strong business credibility and compliance focus, with minor gaps in cookie consent mechanisms and vulnerability disclosure. The WHOIS data is unavailable, likely due to privacy protection common in .dk domains, but the domain and content strongly indicate legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and implementing cookie consent to further strengthen compliance and trust.

LPS Letecké práce a služby s.r.o. is a Czech Republic-based aviation company specializing in helicopter pilot training, helicopter maintenance, aerial surveying, and monitoring services. Established in 1996, the company holds multiple certifications and operates primarily in the transportation and energy sectors. Their website presents a professional image with clear service offerings and contact information, targeting individuals and businesses interested in helicopter-related services. Technically, the website uses modern front-end technologies including Bootstrap, Swiper.js, and Google Analytics, with responsive design and moderate performance. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks explicit security headers and privacy compliance mechanisms such as privacy and cookie policies. The domain WHOIS data is consistent with the business claims, indicating legitimacy and long-term operation. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices.

J

JOB AIR Technic a.s.

jobair.eu

59

JOB AIR Technic a.s. is a Czech Republic-based company specializing in aircraft maintenance, repair, and overhaul (MRO) services, along with training, logistics, and painting facilities. Established in 1993, the company has grown to become a recognized regional MRO provider with certifications including EASA Part 145, Part 147, AS 9100:D, and ISO 14001. It operates under the umbrella of the Czechoslovak Group (CSG), a large industrial conglomerate, enhancing its market position and credibility. The website targets aviation industry professionals, aircraft operators, and potential employees, offering detailed service descriptions and career opportunities.

W

Winremont s.r.o.

winremont.cz

43

Winremont s.r.o. is a small Czech company specializing in glassworks and glazing services, including sales and processing of glass for residential and commercial applications. Their offerings include glass panels for kitchens, glass railings, heat-resistant glass for fireplaces, and glazing of balconies and winter gardens. They also manufacture insulating double-glass units and photovoltaic panels integrated into railings and roofs. The company targets local customers primarily in Šumperk and surrounding regions. The website is professionally designed with good content quality and clear navigation, using a custom CMS and modern web technologies including Google Analytics 4 for visitor tracking. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. The absence of WHOIS data reduces domain trustworthiness and transparency. Overall, the website presents a credible small business with room for improvement in compliance and security documentation.

O

OstseeSparkasse Rostock

ospa.de

70

OstseeSparkasse Rostock is a well-established regional financial institution in Germany, offering a broad range of banking, financing, investment, and insurance services primarily targeting private and corporate customers in the Rostock region. The website reflects a mature digital presence with comprehensive product information, online banking capabilities, and customer engagement tools such as chat and callback services. The site is professionally designed, mobile-optimized, and provides clear navigation and accessibility features. Technically, it leverages modern web technologies and a robust CMS platform, ensuring a stable and user-friendly experience. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, although explicit security policies and vulnerability disclosure channels are not publicly available. Overall, the site demonstrates high business credibility and compliance with privacy regulations, making it a trustworthy platform for its users.

S

Stadtwerke Rostock AG

swrag.de

56

Stadtwerke Rostock AG operates as a regional energy provider serving the Rostock area and coastal regions in Germany. The company offers a broad portfolio of energy services including electricity, natural gas, district heating, heat pumps, internet services, and eco-mobility solutions such as electric vehicle charging and bio-CNG. Their business model focuses on providing personalized service both in physical locations and online, targeting private and business customers. The website reflects a strong regional market position with community engagement and customer-centric offerings.

P

PPush

ppush.eu

54

PPush is a German-based technology service offering a free push notification app designed for organizations such as clubs, municipalities, and local businesses to send regional news and updates without requiring a dedicated app. The service emphasizes GDPR compliance and privacy by enabling anonymous message reception without collecting personal data like email or phone numbers. The website is professionally designed, multilingual, and provides comprehensive information about the service, including FAQs, testimonials, and API integration options. Technically, the site is built on WordPress with modern plugins for security, multilingual support, and cookie consent management. Security posture is strong with HTTPS, Wordfence protection, and Google reCAPTCHA integration. Privacy compliance is well addressed with a detailed privacy policy and cookie consent mechanism. Overall, the site presents a trustworthy and professional digital presence for a niche technology service focused on privacy and regional communication.

S

Die Stelle deines Lebens – Ausbildung und Studium bei der AVG und VBK

stelle-deines-lebens.de

57

The website www.stelle-deines-lebens.de is a Wix-hosted site with minimal visible business content and no explicit privacy, cookie, or terms of service policies detected. The site uses standard Wix technologies and includes accessibility scripts such as eyeAble. There is no contact information or business details visible in the provided HTML content, limiting the ability to assess business credibility fully. Technically, the site uses HTTPS and some JavaScript security hardening but lacks visible security headers and comprehensive privacy compliance mechanisms. Overall, the site appears accessible and functional but lacks critical trust and compliance elements.

The website www.wir-bewegen-alle.de serves as a comprehensive career portal for the Karlsruher Verkehrsverbund (KVV) and its associated companies VBK and AVG, which are key players in regional public transportation in Karlsruhe, Germany. It offers detailed job listings, career information, and multimedia content to attract a diverse range of candidates including professionals, students, and career changers. The site is well-structured, mobile-optimized, and incorporates accessibility features to enhance user experience. Technically, it is built on Silverstripe CMS with modern JavaScript libraries such as Swiper.js and HTMX, hosted on rzone.de infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some advanced security headers and explicit security policies are absent. Overall, the site reflects a mature digital presence aligned with the business's public transportation focus.

M

Monoplay

monoplay.eu

41

Monoplay is a well-established international contemporary dance festival based in Zadar, Croatia, specializing in solo dance performances and educational workshops. The website reflects a mature digital presence built on WordPress with modern plugins and SEO optimization. The festival targets dance professionals, students, and the general public interested in contemporary dance. While the site is professionally designed and content-rich, it lacks critical privacy and cookie policies, which affects compliance. Security posture is moderate with HTTPS enabled but missing some security headers. Contact information is primarily via forms, with no explicit emails or phone numbers published. Overall, the site is trustworthy and credible but would benefit from enhanced privacy compliance and security hardening.

T

Turistička Zajednica Grada Zagreba

infozagreb.hr

52

The website www.infozagreb.hr serves as the official tourism portal for the city of Zagreb, Croatia, managed by the Turistička Zajednica Grada Zagreba. It provides comprehensive information about the city's cultural heritage, attractions, events, accommodation, and lifestyle, targeting tourists and visitors. The site is well-positioned as a trusted source for Zagreb tourism, offering detailed guides and multimedia content to enhance visitor experience. Technically, the website employs modern web technologies including React and Cloudflare services for DNS and CDN, ensuring moderate performance and good mobile optimization. The site structure and navigation are clear, with SEO-friendly metadata and structured data enhancing search visibility. However, accessibility features could be improved. From a security perspective, the site uses HTTPS and benefits from Cloudflare's infrastructure, but lacks explicit security headers and formal security policies. There is no visible privacy or cookie policy, nor incident response or vulnerability disclosure information, which are areas for improvement to enhance compliance and trust. Overall, the website is professional and trustworthy with a strong business credibility score. The absence of privacy and cookie policies and limited security headers slightly reduce the security and privacy posture. Strategic enhancements in these areas would improve compliance and user trust.

Z

ZnajomaMarka.pl

znajomamarka.pl

38

ZnajomaMarka.pl is a Polish creative agency specializing in comprehensive branding, website development, SEO, copywriting, and social media marketing services. The company targets businesses and individuals seeking to establish or enhance their online presence with professional design and marketing solutions. The website showcases a diverse portfolio of projects, indicating active engagement in the creative sector since its founding in 2024. Technically, the site is built on WordPress with Elementor, integrating modern web technologies and Google analytics tools, providing a solid digital infrastructure. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks advanced security headers and visible security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Z

Zentrale Stelle Rettungsdienst AöR

zsr-sh.de

58

The Zentrale Stelle Rettungsdienst AöR (ZSR AöR) is a government entity established in 2023 to centralize and ensure quality assurance in emergency medical services across Schleswig-Holstein, Germany. The organization focuses on collecting and analyzing standardized data from rescue services to improve structural, process, and outcome quality. The website reflects this mission with professional content, clear navigation, and relevant information targeted at rescue service providers and government stakeholders. Technically, the site is built on WordPress with modern plugins for cookie consent and basicBlocks for layout, hosted under a reputable registrar with DNS hosted on cloudpit domains. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and DNSSEC are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie banner. No incident response or security policy information is published, which could be improved. Overall, the site is trustworthy, professional, and serves its governmental function effectively.

R

RES Team

redditenhancementsuite.com

56

Reddit Enhancement Suite (RES) is a well-established, community-driven open source browser extension designed to enhance the Reddit user experience. With over 1 million users across multiple browsers, it holds a strong position in the niche market of Reddit enhancement tools. The project is supported by an active community on Reddit, GitHub, and Discord, reflecting a collaborative development and support model. The website provides clear information about the extension, download links for various browsers, and community resources, though it has entered maintenance-only mode as per the notice. Technically, the website uses a straightforward tech stack including Bootstrap for styling and Google Analytics for user tracking. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Hosting and domain registration are stable and consistent with the project's age and scope. However, there is room for improvement in security practices, such as enabling DNSSEC, implementing security headers, and adding cookie consent mechanisms. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks explicit security policies, incident response information, and GDPR compliance indicators. No critical vulnerabilities or suspicious content were detected. The use of Google Analytics without visible cookie consent may pose privacy compliance risks. Overall, the security posture is moderate but could be enhanced with additional controls and transparency. The overall risk assessment is low, with the main recommendations focusing on improving privacy compliance, security headers, and incident response readiness. The website is trustworthy, professional, and safe for general audiences, with no adult or explicit content. Strategic improvements in security and privacy policies would further strengthen user trust and regulatory compliance.

MetroTwit is a software application developed by Pixel Tucker Pty Ltd, designed as a Twitter client for Windows platforms including Windows 7, Vista, and Windows 8 tablets. The product embraced Microsoft's Metro design language and offered features such as multiple account support, undo tweet functionality, and real-time Twitter streaming. The website clearly communicates that the product has been discontinued and the download is no longer available. The target audience was Windows users seeking a modern Twitter client experience. The company is a small Australian technology firm founded around 2010. Technically, the website is built on WordPress with standard web technologies and integrates social media widgets and Google Analytics for tracking. The site is hosted behind Cloudflare, ensuring good availability and performance. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Business credibility is supported by clear company information, testimonials, and a privacy policy. Overall, the website is functional, safe, and professional but could improve in security and privacy compliance.

M

med update GmbH

anaesthesie-update.com

54

Anästhesie Update 2025 is a specialized medical education platform operated by med update GmbH, focused on delivering annual seminars and updates in anesthesiology and related medical fields. The website serves healthcare professionals with event information, livestream access, and digital educational materials. The platform is well-established with a domain age consistent with its business history and is supported by reputable scientific leadership and partnerships. Technically, the site is built on WordPress with modern plugins for video, analytics, and GDPR compliance, offering a good user experience and mobile optimization. Security posture is solid with HTTPS, domain status locks, and cookie consent mechanisms, though DNSSEC is not enabled and some security headers could be improved. Overall, the site demonstrates a high level of professionalism and trustworthiness suitable for its target audience.

U

Universitätsstadt Garching b. München

karriere-garching.de

57

The website karriere-garching.de serves as the official career portal for the city of Garching b. München, Germany. It provides comprehensive information about job opportunities, benefits, training, and working conditions within the municipal government. The portal targets job seekers interested in public sector employment and offers a secure and stable work environment with various employee benefits. The site is well-branded with official city logos and links to the main city homepage, reinforcing its legitimacy and trustworthiness. From a technical perspective, the website employs modern web technologies including JavaScript, CSS, and Google Fonts, and is hosted on infrastructure linked to resellerinterface.de. It uses HTTPS with an excellent SSL configuration and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and features good SEO practices, although some security headers could be improved. Security posture is solid with no visible vulnerabilities or exposed sensitive data. The site uses Matomo analytics for user tracking with moderate tracking levels and respects user privacy through consent banners. However, explicit security policies and incident response contacts are not published, which could be enhanced to improve transparency and trust. Overall, the website presents a professional and trustworthy digital presence for the city’s employment services. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and providing clearer contact information for security and privacy concerns.

I

Inscribe Labs

mcdowell.com

61

The website www.mcdowell.com serves as a professional personal profile for John McDowell, Founder and CEO of Inscribe Labs. It highlights his extensive experience in technology product management and leadership roles at major companies such as Intel and Microsoft. The site is designed to showcase his professional background, education, and contact information primarily targeting technology professionals and potential collaborators. The website is hosted on the Strikingly platform and employs standard web technologies including JavaScript, Google Analytics, and Bugsnag for error monitoring. While the site is well-structured and professionally presented, it lacks a privacy policy and terms of service pages, which are important for compliance and user trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the site content itself is professional and consistent with a legitimate business profile.

Z

Zoho Corporation Pvt. Ltd.

zohorecruit.eu

77

Zoho Recruit is a comprehensive cloud-based recruitment platform designed for HR teams and staffing agencies to efficiently find, track, evaluate, and hire candidates. Positioned as a market leader in talent acquisition technology, Zoho Recruit offers an integrated ATS and CRM solution with extensive automation and over 50 integrations, including mobile app support. The platform targets corporate HR departments, staffing agencies, and temporary workforce management, providing scalable and customizable recruitment tools. Technically, the website employs modern JavaScript frameworks and Zoho's proprietary scripts, delivering fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and multiple ISO certifications, although explicit security headers could be more visible. Privacy compliance is robust, with comprehensive policies and GDPR adherence. Overall, Zoho Recruit presents a professional, trustworthy, and user-friendly digital presence aligned with Zoho Corporation's enterprise-grade standards.

M

Marburger Bund

marburger-bund.de

62

Marburger Bund is a prominent German professional association representing physicians, focusing on advocacy and support for medical professionals. The website serves as the federal association's online presence, targeting German-speaking physicians and healthcare stakeholders. The site is built on Drupal 11, reflecting a modern and maintainable technical infrastructure. It incorporates a consent management platform (Usercentrics), demonstrating compliance efforts with GDPR regulations. However, explicit privacy policies and terms of service were not detected in the provided content, indicating areas for improvement in transparency and compliance documentation. Security posture is moderate, with HTTPS likely enabled and consent management in place, but lacking visible security headers and vulnerability disclosure mechanisms. Overall, the website is professional, trustworthy, and well-targeted to its audience, with room to enhance privacy and security documentation.

T

Tourismus und Stadtmarketing Husum GmbH

nordsee-congress.de

49

Nordsee Congress is a regional event and tourism marketing organization focused on promoting Husum, Germany as a premier destination for conferences, trade fairs, and congresses. The website provides comprehensive information about venues, hotels, event planning services, and local attractions, targeting event organizers and business travelers. The organization appears established with over 25 years of experience in hosting large events, supported by professional content and a consistent brand presence. Technically, the website uses a modern tech stack including HTML5, CSS3, JavaScript, Google Analytics, and Google Tag Manager, with a CMS likely based on LIS CMS. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Cookie consent is implemented with an opt-in mechanism, reflecting good privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms, which could be improved to enhance trust and compliance. Contact information is clearly provided, including email, phone, and social media channels, supporting business credibility. Overall, the website is professional, trustworthy, and well-suited for its target audience, with room for improvement in security transparency and accessibility compliance.

D

danielvarberg.com

danielvarberg.com

56

DanielVarberg.com is a personal website and blog operated by an individual, providing content and insights primarily targeted at general internet users interested in the blog's topics. The website is built on WordPress with a child theme and hosted by Simply within the EU/EØS region, ensuring compliance with GDPR and data protection regulations. The site employs modern analytics and tracking tools such as Google Analytics, Amplitude, and Stape.io, alongside Cookiebot for consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled. Privacy policies are comprehensive and clearly presented in Danish, demonstrating a commitment to regulatory compliance.

N

Norton Rose Fulbright

nortonrosefulbright.com

79

Norton Rose Fulbright is a globally recognized law firm offering comprehensive legal services across various sectors including energy, infrastructure, and financial institutions. The website reflects a professional and enterprise-level digital presence, targeting corporate clients and legal professionals. The firm leverages modern web technologies and third-party services such as Cookiebot for consent management and Google Analytics for visitor insights, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security headers and incident response contacts are not evident in the provided data. The absence of WHOIS registration details is a minor concern but does not detract significantly from the overall legitimacy given the professional website and branding. Strategic recommendations include enhancing transparency with clear privacy and security policies, publishing a security.txt file, and adding explicit security headers to further strengthen the security posture.

CMS Legal Services EEIG operates an international law firm website focused on Germany, providing a wide range of legal and tax advisory services. The firm targets business clients requiring expertise in areas such as corporate law, banking, compliance, dispute resolution, and various industry sectors including automotive, energy, and healthcare. The website reflects a mature and professional market position with multiple offices in Germany and abroad, supporting a large enterprise scale. Technically, the website employs modern web technologies including Bootstrap for responsive design, Piwik PRO for analytics, and is hosted behind Cloudflare DNS services. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers and DNSSEC are not enabled, indicating room for improvement in security hardening. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or blocking mechanisms were detected, and the domain WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the website presents a trustworthy and professional digital presence for CMS Legal Services EEIG, with recommendations to enhance privacy compliance, security policies, and DNS security to further strengthen its posture.

T

TAUW

tauw.com

57

TAUW is an established environmental consultancy firm focused on shaping a vital living environment through expert solutions and partnerships. The company targets businesses and organizations requiring environmental and sustainability consulting services, positioning itself as a reputable international player in the energy and environmental sectors. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive privacy and cookie compliance mechanisms. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, Cookiebot for consent management, and Sooqr for search functionality, indicating a well-integrated digital infrastructure. Security posture is strong with HTTPS enforced and multiple security headers present, although the absence of a public security policy or incident response contact is noted. The lack of WHOIS data is unusual but does not detract significantly from the site's legitimacy given the professional content and compliance features. Overall, the website presents a trustworthy and professional image suitable for its business domain.

D

Deutschlandfunk Kultur

deutschlandfunkkultur.de

60

Deutschlandfunk Kultur is a prominent German cultural media platform providing high-quality journalism, cultural debates, and podcasts. It operates under the Deutschlandradio umbrella, serving a broad audience interested in culture, politics, music, and literature. The website demonstrates a professional and consistent brand presence with rich content and multimedia offerings. Technically, the site uses modern web technologies and is hosted on reputable infrastructure, ensuring reliable performance and accessibility. Security posture is strong with HTTPS enforcement and meta verification tags, although explicit security headers and privacy policies are lacking. The absence of visible privacy and cookie policies, as well as contact information, represents a compliance gap. Overall, the site is trustworthy and well-positioned in the media sector but should enhance privacy transparency and security disclosures.

T

Tourismus und Stadtmarketing Husum GmbH

husum-tourismus.de

10

The website www.husum-tourismus.de serves as the official tourism portal for Husum and the Husumer Bucht region in Germany. It provides comprehensive information on accommodations, events, cultural activities, and travel services, targeting tourists and visitors interested in the North Sea area. The business operates as a regional tourism marketing organization, facilitating bookings and promoting local attractions. The site demonstrates a consistent brand presence and professional content quality, supported by active social media channels and clear contact information. Technically, the website employs a modern JavaScript stack including Matomo Tag Manager for analytics and Consentmanager.net for GDPR-compliant cookie management. It is built on the LIS CMS platform and hosted with domain control services linked to GoDaddy. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. However, security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security perspective, the site uses HTTPS and implements a consent mechanism for cookies, reflecting good privacy compliance. No critical vulnerabilities or exposed sensitive data were found. However, the absence of a published security policy or incident response contact limits transparency. The WHOIS data aligns with a legitimate regional tourism entity, with no suspicious registration patterns. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

The website www.wit-kongress.at is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha verification. This prevents access to any meaningful content, metadata, or business information. Consequently, no business overview, market position, or key services can be determined. The technical infrastructure is limited to Cloudflare's security platform, with no visible CMS or additional technologies. Security posture cannot be assessed beyond the presence of Cloudflare's WAF protection. Overall, the site is effectively blocked from analysis, resulting in a low AI score and unknown compliance or trustworthiness.

S

Signal

signal.me

61

Signal is a well-established nonprofit organization providing a secure, privacy-focused messaging platform widely recognized for its strong encryption and open-source approach. The website signal.me serves as a contact and redirect landing page, linking users to the main signal.org domain and app download resources. The business is positioned as a leader in secure communications, targeting privacy-conscious users globally. The domain and website content align with the organization's mission and market presence. Technically, the site uses modern CSS frameworks like Bulma and JavaScript, hosted behind Cloudflare DNS services. The site is mobile optimized with responsive navigation and basic accessibility features. However, some security best practices such as DNSSEC and security headers are not implemented on this domain. The site uses HTTPS with good SSL configuration, ensuring secure connections. From a security perspective, the website shows good domain registration protections and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong on the main domain, though this subdomain lacks explicit cookie consent mechanisms. No forms or tracking scripts are present, minimizing data collection risks. Contact information is limited to a media inquiry email, with no phone or physical address listed. Overall, the website is trustworthy, professional, and safe for general audiences. Recommendations include enabling DNSSEC, adding security headers, and publishing a vulnerability disclosure policy to enhance security posture and transparency.

L

Livens

livens.co

61

Livens is a Croatia-based digital solutions provider specializing in web development, booking systems, CMS, and dashboards. The company targets businesses seeking to establish or enhance their digital presence with innovative and engaging digital experiences. Their portfolio includes projects in luxury sailing, vacation rentals, and financial services, positioning them as a niche player in the technology sector. The website demonstrates a modern technical infrastructure built on Next.js and React, hosted likely on Vercel, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, Livens presents a professional and trustworthy digital presence with room for enhanced security transparency.

M

mediaform, s.r.o.

mediaform.cz

45

mediaform, s.r.o. is a boutique marketing, UX, and design studio based in Prague, Czech Republic, founded in 2011. The company specializes in creating technologically advanced and aesthetically pleasing digital applications and presentations, focusing on effective user experience and attention to detail. Their client portfolio includes notable brands such as L'Oréal, Marks & Spencer, and the Ministry of Interior of the Czech Republic, indicating a strong market position within the media and marketing sector. The website reflects a professional and consistent brand image targeting businesses seeking specialized marketing and design services. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates analytics tools like Google Analytics and Facebook Pixel. Hosting is provided by VAS Hosting, with domain registration dating back to 2011, consistent with the company's founding year. The site is mobile optimized and provides a good user experience, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security practices.

E

:: ERLEBE DEINEN MARKT ::

erlebedeinenmarkt.org

44

The website erlebedeinenmarkt.org serves as a promotional platform for the "Erlebe Deinen Markt" campaign, which supports and celebrates local weekly markets primarily in Germany and Europe. The campaign emphasizes fresh produce, community engagement, and cultural experiences, involving around 400 markets and international participation. The site content is informative and targeted at consumers interested in local market culture and events. Technically, the website is built with basic HTML, CSS, and JavaScript without modern frameworks or CMS, resulting in moderate performance and poor mobile optimization. Security posture is weak due to lack of DNSSEC, security headers, and no visible HTTPS enforcement details. Privacy compliance is minimal as no privacy or cookie policies are present. Business credibility is moderate, supported by the campaign's longevity and partnerships, but contact information is not explicitly provided. Overall, the site is functional but requires improvements in security, privacy compliance, and technical modernization.

H

Hrvatska energetska regulatorna agencija (HERA)

hera.hr

10

HERA (Hrvatska energetska regulatorna agencija) is the Croatian Energy Regulatory Agency responsible for overseeing and regulating the energy sector in Croatia, including electricity, gas, and heat markets. The agency provides regulatory decisions, licensing, public consultations, and consumer information, positioning itself as a key national authority in the energy domain. The website serves as an official portal for regulatory documents, announcements, and tools for consumers and market participants. Technically, the website is built with standard HTML, CSS, and JavaScript, incorporating Google Tag Manager for analytics. It is hosted under a Croatian academic network registrar (CARNET) and uses HTTPS, ensuring secure communications. The site has basic mobile optimization and accessibility features but lacks advanced security headers and cookie consent mechanisms. Security posture is solid with no visible vulnerabilities or exposed sensitive data, but could be improved with enhanced security policies and incident response information. Overall, the site is trustworthy, professional, and compliant with GDPR, though it could benefit from improved privacy and security transparency.

H

HAKOM

hakom.hr

10

HAKOM is the Croatian national regulatory agency responsible for overseeing electronic communications, postal services, and railway transport sectors. Established in 2009, it operates as a government entity providing regulatory oversight, licensing, market analysis, and consumer protection services. The website serves as an information portal and digital service platform for users and operators within these sectors, offering multiple e-services applications to facilitate electronic submissions and data management. The agency maintains a strong national presence with consistent branding and official social media channels, reinforcing its credibility and trustworthiness. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, and SVG icons, with a responsive design optimized for mobile devices. The site uses HTTPS and includes cookie consent mechanisms, demonstrating compliance with privacy regulations. While no advanced frameworks or CMS are explicitly detected, the site performs moderately well with good accessibility and SEO practices. From a security perspective, the site benefits from HTTPS and cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain legitimacy with consistent registration details matching the agency's official profile. Overall, HAKOM's website is a professional, secure, and compliant platform that effectively supports its regulatory mission. Strategic improvements could include publishing detailed security policies and incident response information to enhance transparency and trust further.

M

Ministarstvo unutarnjih poslova Republike Hrvatske

mup.hr

10

The Ministry of the Interior of the Republic of Croatia operates the official government website mup.gov.hr, providing authoritative information and services related to internal affairs, police operations, and citizen support. The website serves a broad audience including Croatian citizens, residents, media, and international visitors seeking official updates and resources. It maintains a strong market position as the primary government entity responsible for internal security and public safety in Croatia. Technically, the website employs a modern technology stack including Google Analytics, Google Tag Manager, Facebook Pixel, and JavaScript libraries such as Galleria and Fancybox for enhanced user experience. The site is mobile-optimized and accessible, with a clear navigation structure and professional design. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. From a security perspective, the site enforces HTTPS and uses tracking consent banners, but lacks visible security headers in the HTML source. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is due to GDPR privacy protections, which is typical for government domains. Overall, the domain and website exhibit high legitimacy and trustworthiness. The overall risk assessment is low, with recommendations to enhance security headers, publish a formal security policy, and consider a vulnerability disclosure mechanism to further strengthen security posture and transparency.

The website at brandsly.com currently serves a Cloudflare Turnstile security challenge page, preventing access to any substantive content. Due to this, no business information, contact details, or policies are visible. The domain harvesthq.com is referenced in the URL path but no related content is accessible. The domain is registered since 2015 with Dynadot10 LLC and uses Cloudflare DNS and security services. The lack of accessible content limits the ability to assess the company's market position, services, or compliance posture. Technically, the site uses modern Cloudflare security mechanisms but no further technology or CMS details are available. Security posture is strong in terms of protection by Cloudflare but no internal security policies or incident response information is visible. Overall, the site is inaccessible for analysis and scores low on content quality and privacy compliance.

C

Croatia Rally

rally-croatia.com

10

Croatia Rally is a prominent sporting event organizer focused on the ERC Croatia Rally 2025, a major motorsport event that attracts global spectators and promotes Croatia as a tourist destination. The website effectively communicates the event's details, hospitality packages, merchandising, and calendar, targeting motorsport fans, tourists, media, and competitors. The business operates in the transportation and tourism sectors with a medium-sized footprint and a founding date consistent with the domain registration in 2015. Technically, the website employs modern web technologies including JavaScript libraries, analytics, and marketing tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and domain transfer protection, though improvements in security headers and DNSSEC are recommended. Privacy compliance is addressed with clear policies and consent mechanisms. Overall, the site presents a professional and trustworthy digital presence with strong business credibility.

M

Ministarstvo gospodarstva

szp.hr

52

The website szp.hr is the official Croatian government consumer protection portal managed by the Ministry of Economy (Ministarstvo gospodarstva). It provides comprehensive information and guidance on consumer rights, dispute resolution, public service complaints, and relevant legislation. The portal targets Croatian consumers and serves as a central resource for consumer protection issues. Technically, the site is built on ASP.NET Web Forms, uses Bootstrap icons, and is hosted by CARNET, a reputable Croatian academic network. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and no exposed sensitive data, though security headers are not explicitly visible. Privacy and cookie policies are not found, indicating a compliance gap. Contact information is clearly provided with official emails and phone numbers. Overall, the domain registration and website content align well, indicating high legitimacy and trustworthiness.

H

Hrvatski zavod za mirovinsko osiguranje

mirovinsko.hr

64

Hrvatski zavod za mirovinsko osiguranje (HZMO) is a Croatian government public institution responsible for managing the pension insurance system. Established by law in 2001, it serves employees, agricultural workers, craftsmen, and other insured persons by administering pension rights and benefits based on generational solidarity. The website provides comprehensive information about pensions, child allowances, insurance registrations, and electronic services, targeting Croatian residents and pensioners. It holds a strong market position as the official national pension authority with a large organizational size and a well-established digital presence. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages and accessibility features.

P

PRIMOPRO Sp. z o.o. Sp. k.

programedukacjionkologicznej.pl

58

The Program Edukacji Onkologicznej website is a Polish national educational platform focused on oncology, targeting patients, their families, and medical professionals. It offers comprehensive educational content including modular courses, guides, multimedia, and events. The platform is supported by numerous pharmaceutical companies and medical organizations, indicating a strong market position within healthcare education in Poland. The business operates under PRIMOPRO Sp. z o.o. Sp. k., with a clear focus on oncology education and patient support. Technically, the website employs modern JavaScript libraries such as Swiper.js and Choices.js, and integrates Google Tag Manager for analytics. The site is mobile-optimized with good navigation and content structure, though some accessibility features are basic. Performance is moderate, with no critical technical issues detected. Privacy compliance is well addressed with clear cookie and privacy policies, including a consent mechanism. From a security perspective, the site uses HTTPS (implied by external scripts loaded via HTTPS), but lacks visible HTTP security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is typical for .pl domains with privacy protection and does not raise immediate concerns given the professional nature of the site and its sponsors. Overall, the website presents a trustworthy, professional, and well-maintained educational resource with moderate technical sophistication and good privacy practices. Strategic improvements in security headers and incident response transparency would enhance its security posture and trustworthiness.

F

Fundacja Polska Koalicja Pacjentów Onkologicznych

pkpo.pl

45

Fundacja Polska Koalicja Pacjentów Onkologicznych is a Polish non-profit coalition that unites oncology patient organizations to provide support, advocacy, and information to cancer patients and their families. The website serves as a hub for resources, cooperation with partner organizations, and public engagement. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and a cookie consent mechanism, hosted by home.pl S.A. The security posture is solid with HTTPS enforced and secure forms, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Overall, the website is professional, trustworthy, and well-positioned in the healthcare non-profit sector in Poland.

Síť pro rodinu, z.s. is a Czech non-profit organization established in 2015 that serves as an umbrella for maternity, family, and community centers. It focuses on promoting family-friendly legislation, supporting family centers, and fostering a family-friendly climate in society and the labor market. The organization offers advocacy, networking, educational events, and family-friendly company audits and awards. The website reflects a stable market position with clear communication and trust indicators such as testimonials and social media presence. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and libraries like Modernizr and FastClick. It is hosted by a Czech hosting provider and shows good mobile optimization and SEO practices. However, it lacks some security headers and privacy compliance elements such as privacy and cookie policies. From a security perspective, the site enforces HTTPS and does not expose sensitive data. No vulnerabilities or malicious content were detected. The absence of security headers and privacy policies are notable gaps. There is no evidence of incident response or vulnerability disclosure mechanisms. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

R

Red Monkeys GmbH

red-monkeys.de

46

Red Monkeys GmbH is an independent advertising agency based in Konstanz, Germany, specializing in brand building, communication, and activation services. Their website presents a professional and comprehensive overview of their offerings, targeting businesses seeking creative marketing solutions. The agency showcases a strong portfolio with client logos and case studies, emphasizing their regional market presence and creative expertise. Technically, the website employs modern web standards, including HTML5, CSS3, JavaScript, and integrates Vimeo for video content and analytics tools such as Google Analytics and Matomo. The site is mobile-optimized and features a cookie consent mechanism compliant with GDPR requirements. Security-wise, the website uses HTTPS with good SSL configuration and enforces cookie consent for tracking scripts, though it lacks a publicly available security policy or incident response contacts. Overall, the site is trustworthy, well-designed, and compliant with privacy standards, making it a reliable digital presence for the agency.

I

IBB Wörn Ingenieure GmbH

ibb-woern.de

58

IBB Wörn Ingenieure GmbH is a small, established engineering firm based in Germany specializing in infrastructure planning and project execution in the sectors of transportation and energy. Founded in 1996, the company offers comprehensive services including planning, construction supervision, and project management primarily in road construction, civil engineering, and water management. Their website reflects a professional and regionally focused business with detailed project references and industry memberships, indicating a solid market position within their niche. Technically, the website is built with standard modern web technologies (HTML5, CSS3, JavaScript) and hosted via INWX. It demonstrates good mobile optimization, SEO practices, and moderate performance. The site uses HTTPS with excellent SSL configuration but lacks some advanced security headers. Analytics are handled via Plausible, indicating a privacy-conscious approach with minimal user tracking. From a security perspective, the site is well-configured with no visible vulnerabilities or exposed sensitive data. However, it lacks published security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance and user trust. The WHOIS data is consistent with the business claims, showing no privacy protection or suspicious registration patterns, supporting the legitimacy of the domain. Overall, the website presents a trustworthy and professional image with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

F

fingolex

fingolex.com

61

fingolex is a boutique law firm specializing in IT law, with a focus on cloud computing, artificial intelligence, digitalization, and data protection. The company targets technology sector clients seeking customized legal solutions optimized for their success. Founded in 2019, fingolex positions itself as a pragmatic and entrepreneurial legal partner offering modular and product-focused legal advice. The website reflects a professional and consistent brand image with detailed team profiles and insightful articles, supporting its market niche. Technically, the website is built with modern web standards including HTML5, CSS3, and JavaScript, and employs Matomo analytics with cookies disabled to respect user privacy. The site is mobile-optimized, fast-loading, and SEO-friendly, though it lacks explicit CMS identification and some advanced security headers. Hosting details are limited but the domain registrar is reputable. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There is no explicit security policy or incident response information published, and no cookie consent mechanism is present, which could be improved for GDPR compliance. No vulnerabilities or suspicious content were detected. Overall, fingolex presents a trustworthy and professional online presence with strong business credibility and good technical implementation. Strategic improvements in security headers, cookie consent, and published policies would enhance compliance and security posture.

B

Bagatelle Tattoo

bagatelletattoo.com

59

Bagatelle Tattoo is a small, artistic tattoo studio located in Stuttgart West, Germany. The business emphasizes tattooing as an art form and storytelling medium, offering personalized tattoo services by a team of resident artists. The website showcases artist portfolios, booking options, and studio workspace availability, positioning itself as a community-oriented gallery and tattoo studio. Technically, the site is built with modern web standards, likely using TYPO3 CMS, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS and secure form handling, though some security headers and cookie consent mechanisms are missing. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and contact information appear professional and trustworthy. Overall, the site presents a credible business with room for improvement in privacy compliance and domain registration transparency.

I

Immodera

immodera.de

54

Immodera is a small, regionally focused real estate brokerage and property development company based in Germany, specifically serving the Zollernalbkreis region. The company offers services including property valuation, sales, rentals, and exclusive condominium development. The website reflects a professional and consistent brand image with clear contact information and customer testimonials, indicating a trustworthy market position. Technically, the website uses modern web standards with HTTPS and Matomo analytics for privacy-conscious tracking. However, it lacks some security headers and a cookie consent mechanism, which are important for GDPR compliance. No security policies or incident response contacts are published, which could be improved to enhance trust and compliance. Overall, the site is accessible, well-structured, and safe, with no signs of malicious content or blocking mechanisms.

E

EYTYS

eytys.com

68

EYTYS is a Swedish contemporary fashion brand specializing in unisex footwear and ready-to-wear apparel, operating primarily through an e-commerce platform hosted on Shopify. The brand emphasizes craftsmanship and bold design, targeting a general audience interested in modern fashion. The website is professionally designed with consistent branding and good content quality, supporting a medium-sized business established since 2012. Technically, the site leverages Shopify's robust infrastructure, modern JavaScript, and CSS technologies, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies could enhance protection. Privacy compliance is well addressed with clear policies and consent banners. Overall, the site presents a trustworthy and professional online retail presence with moderate user tracking for analytics and marketing purposes.