Security Directory

I

Industrieverband Technische Textilien-Rollladen-Sonnenschutz e.V. (ITRS e.V.)

itrs-ev.com

59

Industrieverband Technische Textilien-Rollladen-Sonnenschutz e.V. (ITRS e.V.) is a well-established German industry association founded in 1935, representing over 150 member companies in the technical textiles, roller shutters, and sun protection sectors. The organization provides industry representation, training, consulting, and publishes relevant industry news and events. The website is professionally designed, primarily in German, and targets manufacturers, service providers, and stakeholders in the technical textiles industry. Technically, the site runs on WordPress with WPBakery Page Builder and uses Borlabs Cookie for GDPR-compliant cookie management. The hosting and domain registration are consistent with the organization's profile, with no suspicious indicators. Security posture is good with HTTPS enforced and cookie consent implemented, though some HTTP security headers are missing. No incident response or explicit security policies are published. Overall, the site is trustworthy, compliant, and serves its audience effectively.

O

Okendo Pty Ltd

okendo.io

64

Okendo Pty Ltd operates a mature and professional SaaS customer marketing platform targeting e-commerce merchants, especially Shopify users. The platform offers a suite of services including reviews, quizzes, referrals, loyalty programs, and surveys to help brands build stronger customer relationships and drive growth. The website is well-designed, mobile-optimized, and SEO-friendly, leveraging WordPress with Yoast SEO and multiple integrations with major marketing and analytics platforms. Security posture is solid with HTTPS and no exposed sensitive data, though some improvements like enabling DNSSEC and publishing security policies are recommended. Privacy compliance is partial due to missing explicit privacy and cookie policies. Overall, the website and domain registration data indicate a trustworthy and credible business with strong market positioning.

V

Visual Realm

thevisualrealm.com

66

Visual Realm is a Tampa-based digital marketing agency specializing in web design, SEO, PPC, Facebook marketing, graphic design, and logo design. The company positions itself as a trusted partner for businesses seeking to improve their online presence and generate measurable ROI. Their website demonstrates a professional and modern digital infrastructure built on WordPress with the Avada theme, integrating advanced marketing tools such as Google Analytics and LeadConnector chat widgets. The site is well-optimized for SEO and mobile devices, providing a good user experience with clear navigation and rich content including client testimonials and portfolios. Security posture is solid with HTTPS and basic security practices, though there is room for improvement in security headers and published policies. Privacy compliance is lacking, with no visible privacy or cookie policies, which poses a compliance risk. Overall, the business credibility is high, supported by clear contact information and trust signals. The domain uses privacy protection in WHOIS, which is typical for agencies and does not raise immediate concerns.

C

Codrops

tympanus.net

51

Codrops is a well-established online platform founded in 2009 that provides high-quality tutorials, demos, and resources focused on web design and frontend development. It targets web professionals and enthusiasts seeking to stay current with the latest trends and techniques. The website is professionally designed, mobile-optimized, and offers a rich content experience supported by advertising and affiliate marketing. Technically, Codrops is built on WordPress, leveraging modern web technologies and hosted by Liquid Web with a fast and accessible infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though it lacks some advanced privacy compliance features such as cookie consent mechanisms and explicit security policies. Overall, Codrops presents a trustworthy, professional, and valuable resource in the web development community.

D

Divine Moving

divinemoving.com

60

Divine Moving is a small transportation service company specializing in moving and storage services in New York City. The company has a long-established domain since 2001, indicating a stable presence in the market. Their website is built on WordPress with common SEO and performance optimizations, targeting local residential and commercial customers. The technical infrastructure is standard for small businesses, leveraging Google services for fonts, maps, and analytics. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but could improve in privacy and security transparency.

E

Energy Infrastructure Partners

energy-infrastructure-partners.com

55

Energy Infrastructure Partners is a specialized investment firm focused on energy infrastructure projects emphasizing electrification, decarbonization, and energy security. Founded in 2019, the company positions itself as a strategic partner for investments in the evolving energy sector. The website reflects a professional and consistent brand image, targeting investors and stakeholders interested in sustainable energy infrastructure. Technically, the site is built on WordPress, leveraging modern analytics and cookie consent tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the website is trustworthy and professionally maintained, though it lacks explicit contact information and published security or incident response policies.

S

StepStone Group

stepstonegroup.com

73

StepStone Group is a global private markets investment advisory and asset management firm, positioning itself as a trusted partner for private wealth and institutional investors worldwide. The company emphasizes its extensive assets under management, global office presence, and comprehensive private markets solutions including advisory services, asset management, data analytics, and private wealth solutions. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on WordPress with modern performance and SEO optimizations, including the use of Yoast SEO, Google Tag Manager, and New Relic monitoring. Accessibility features and cookie consent mechanisms are implemented, indicating a mature digital infrastructure. However, the absence of WHOIS data and explicit privacy and terms of service pages slightly detract from the overall digital maturity. Security posture is solid with HTTPS enforced and no obvious vulnerabilities detected, but the lack of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. The website uses multiple trusted external domains for fonts, analytics, and investor portals, supporting its operational ecosystem. Overall, the site is professional and trustworthy from a content and technical perspective, but the missing WHOIS transparency and incomplete privacy and security documentation present moderate risks. Strategic enhancements in these areas would strengthen trust and compliance.

H

Helaba Invest Kapitalanlagegesellschaft mbH

helaba-invest.de

64

Helaba Invest Kapitalanlagegesellschaft mbH is a well-established German institutional asset management company with over 30 years of experience. The company offers a comprehensive range of services including asset management, alternative investments, asset servicing, and master-KVG services, targeting institutional investors. The website reflects a professional and trustworthy brand with clear navigation and rich content tailored to its audience. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes SEO optimizations and cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the domain registration data aligns well with the business claims, indicating high legitimacy and trustworthiness.

D

Deutsche Finance Group

deutsche-finance-group.de

63

Deutsche Finance Group is an established international investment company specializing in institutional market access and exclusive investments in private equity real estate, infrastructure, and financial services. With over 20 years of experience, it offers institutional club deals and asset management services targeting institutional and private investors. The company maintains a strong market position supported by international awards and a professional digital presence. Technically, the website is built on WordPress with Elementor, incorporating modern SEO and analytics tools, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site reflects a mature and trustworthy business with clear contact information and compliance with GDPR.

W

Wealthcap

wealthcap.com

72

Wealthcap GmbH is a German investment management company specializing in alternative investments such as real estate, private equity, portfolio funds, and energy infrastructure. The company targets both private and institutional investors, offering a broad portfolio of investment products with a strong emphasis on sustainability and ESG principles. The website is professionally designed, well-structured, and optimized for SEO and accessibility, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, including Yoast SEO and Usercentrics for consent management, and integrates Google Tag Manager for analytics. Security posture is strong with HTTPS enforced, secure login portals, and appropriate security headers, although there is room for improvement in publishing explicit security policies and incident response information. The domain WHOIS data is unavailable, which slightly reduces trust but is mitigated by the professional and comprehensive nature of the website content and business information. Overall, the site demonstrates a high level of professionalism, security, and compliance suitable for a large financial services company.

I

ICG

icgam.com

76

ICG is a global alternative asset manager with over three decades of experience, specializing in structured capital, private equity secondaries, real assets, private debt, and credit. The company targets institutional investors and clients seeking differentiated investment opportunities with a focus on responsible investing and sustainability. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that supports its market position as a leading asset manager. Technically, the site is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Tag Manager, and OneTrust for cookie consent, indicating a well-maintained infrastructure. Security posture is strong with HTTPS enforced and security headers present, although the absence of a published security policy and incident response information suggests room for improvement. The missing WHOIS data is a notable concern for domain legitimacy, reducing the overall trust score despite the professional appearance and business credibility. Strategic recommendations include publishing security and incident response policies, improving transparency on data protection officers, and verifying domain registration details to enhance trust.

P

pantamedia communication

pantamedia.com

54

Pantamedia communication is a German full-service agency specializing in public relations, advertising, and marketing with over 30 years of experience. The company focuses on serving clients in the political and economic sectors, offering services such as print design, logo design, text design, and web design. The website reflects a professional and consistent brand image targeting businesses and organizations requiring strategic communication and marketing support. Technically, the site is built on WordPress using the Enfold theme and integrates Cookiebot for GDPR-compliant cookie consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS and uses cookie consent mechanisms, but lacks some advanced security headers and explicit security or incident response policies. The absence of WHOIS data for the domain is a concern for domain legitimacy, although the website's professional presentation and compliance measures suggest a legitimate business. Overall, the site scores well in content quality, technical implementation, and privacy compliance, with room for improvement in business credibility and security transparency.

M

MicroMedia

microacademy.ba

49

MicroAcademy is an educational platform specializing in practical courses for design, marketing, and web development, backed by the experienced agency MicroMedia. The website positions itself as a practical academy offering mentorship, real project experience, and employment opportunities for top students, targeting individuals seeking career advancement in digital fields. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile devices, though performance is moderate. Security posture is solid with HTTPS and secure forms, but lacks advanced security headers and visible privacy compliance documentation. Overall, the site is professional, trustworthy, and content-rich, but would benefit from enhanced privacy and security policies to improve compliance and user trust.

S

Smart kolektiv

smartkolektiv.org

45

Smart kolektiv is a well-established non-profit organization based in Serbia, focused on promoting corporate social responsibility (CSR), social innovation, and supporting civil society organizations and social entrepreneurs. Founded in 2003, it has built a strong market position as a pioneer in CSR development in Serbia, offering educational programs, consultancy, and networking services. The website reflects a professional and consistent brand image, with clear navigation and multilingual support. Technically, the site is built on WordPress using modern plugins and frameworks, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enabled and domain protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a clear privacy policy, but lacks a cookie consent mechanism and vulnerability disclosure. Overall, the website is trustworthy and serves its target audience effectively.

T

Tempor Expo

tempor-expo.de

10

Tempor Expo is a specialized trade fair platform focusing on temporary infrastructure solutions for events, industry, logistics, and disaster relief sectors primarily in Germany and Europe. The website presents a professional and consistent brand image, supported by structured data and clear contact information. The business model centers on organizing trade fairs and providing a networking platform for industry stakeholders. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Smart Slider 3, hosted on Hetzner servers, and optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and incident response details. Overall, the site is trustworthy, compliant with GDPR, and well-positioned within its niche market.

L

Lujo Software

initiumit.de

43

Lujo Software is a small German software development company founded in 2016, specializing in custom software, app development, and web design services. The company positions itself as a provider of innovative and functional software solutions tailored to business needs, aiming to reduce operational costs and improve performance. The website is built on WordPress using the Avada theme and Fusion Builder, with good SEO and structured data implementation. However, the site lacks explicit privacy and cookie policies, contact details, and security headers, which impacts its overall security and privacy posture. HTTPS is enabled, ensuring basic transport security. The absence of detailed WHOIS registrant information slightly reduces trust but is not uncommon for small businesses. Overall, the website is professional and safe for general audiences but would benefit from enhanced privacy compliance and security practices.

M

MicroMedia

micromedia.ba

46

MicroMedia is a small, professional full-service digital marketing and creative agency based in Bijeljina, Bosnia and Herzegovina. The company specializes in web design, graphic design, online marketing, and related creative services, targeting businesses seeking to enhance their digital presence. The website reflects a consistent brand image with a well-structured portfolio and clear service offerings. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and user experience, demonstrating a moderate to good level of digital maturity. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Svi odgovori na jednom mjestu - pressrs.ba

pressrs.ba

52

Pressrs.ba is a Bosnian content portal launched in 2021, providing educational and informational articles across various life topics. The website targets a general audience seeking knowledge and answers to everyday questions. Technically, the site is built on WordPress using the Divi theme, leveraging Google Fonts, Google Tag Manager, and Google Adsense for content delivery and monetization. The site demonstrates moderate digital maturity with good mobile optimization and SEO practices but lacks advanced security headers and explicit privacy or cookie policies. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal policies. Overall, the site is legitimate and functional but would benefit from enhanced privacy compliance and clearer contact information to improve trust and regulatory adherence.

N

NALAS

nalas.eu

43

NALAS is a well-established non-profit network representing local authorities across South-East Europe, coordinating regional initiatives and promoting decentralisation and European integration. The website is professionally designed using WordPress, with good mobile optimization and clear navigation. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is solid with HTTPS but could be improved by adding security headers and incident response information. Contact information is limited to a newsletter subscription form, which restricts direct communication channels. Overall, the site reflects a credible and trustworthy organization with room for compliance and security enhancements.

I

interstruct AG

interstruct.com

55

interstruct AG is a Berlin-based digital creative agency specializing in UX/UI design, web development, and digital strategy. The company positions itself as a specialist in transforming complex business challenges into impactful digital platforms, focusing on measurable results and user-centric solutions. Their key services include consulting, concept development, UX/UI design, content creation, technical implementation, and analytics. The website reflects a mature, professional business with a consistent brand and clear market positioning in the technology sector.

W

Well BP

wellbp.com

68

Well BP is a newly founded digital consulting agency specializing in custom software development, digital product creation, and digital marketing services. The company positions itself as a trusted partner offering flexible engagement models and comprehensive digital solutions across various industries. Their website is professionally designed using WordPress and integrates modern technologies such as Google Maps API and advanced WordPress plugins. The technical infrastructure is solid with Cloudflare DNS and HTTPS enabled, though there is room for improvement in security headers and privacy compliance. The security posture is moderate with no critical vulnerabilities detected but lacks published security policies and cookie consent mechanisms. Overall, the website is safe, professional, and trustworthy, targeting businesses seeking digital transformation services.

K

Karlsruher Pässe

karlsruher-pass.de

49

Karlsruher Pässe operates as a regional government-supported social benefit program providing passes such as the Karlsruhe Pass, Children's Pass, and 60 Plus Pass to residents of Karlsruhe and surrounding municipalities. The website serves as an informational and service portal, offering access to social discounts, cooperation details, and contact points for multiple municipalities. The business model focuses on social inclusion and support through municipal partnerships, positioning itself as a trusted regional social service provider. Technically, the website is built on WordPress with modern plugins like Slider Revolution and Borlabs Cookie for consent management. The infrastructure is hosted by saasweb.gmbh and uses standard web technologies including jQuery and Bootstrap. The site is moderately performant, mobile-optimized, and SEO-friendly, with good content quality and consistent branding. Security posture is adequate with HTTPS enabled and cookie consent implemented. However, some security headers are not explicitly detected, and there is room for improvement in security best practices such as CSP implementation and plugin vulnerability management. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact information and policies. It is safe for general audiences and does not contain adult or questionable content. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and improving accessibility features.

J

John Brightman

john-brightman.com

10

John Brightman is a Paris-based creative agency specializing in web design, brand identity, graphic design, UI/UX, and digital strategy. Founded in 2009, the company emphasizes agile, personalized teams and long-term client relationships, serving a diverse range of businesses seeking professional branding and digital presence. The website reflects a mature digital infrastructure built on WordPress with Elementor, enhanced by SEO and performance optimizations. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. The missing WHOIS data raises some concerns about domain registration legitimacy, but the professional presentation and compliance with GDPR indicate a trustworthy business. Strategic improvements in security headers, contact transparency, and WHOIS clarity would enhance trust and compliance.

S

SimpleThings GmbH

simplethings.de

64

SimpleThings GmbH is a small, established internet agency based in Bonn, Germany, founded in 2001. The company specializes in full-service digital solutions including consulting, web design, software development, online marketing, and hosting. Their market position is strengthened by a focus on open-source technologies such as TYPO3 and Symfony, catering primarily to businesses and organizations seeking professional digital services. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website is built on TYPO3 CMS with integrations of modern frameworks like Symfony and supports various platforms including Magento and Shopware for e-commerce. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The absence of cookie consent mechanisms and explicit security headers suggests room for improvement in privacy and security compliance. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, the lack of explicit security policies and incident response contacts indicates a moderate security posture. No WAF or blocking mechanisms were detected, and the domain appears legitimate and consistent with the business claims. Overall, SimpleThings GmbH presents a trustworthy and professional digital presence with strong business credibility and technical maturity. Strategic enhancements in privacy compliance and security best practices would further strengthen their security posture and regulatory adherence.

I

Imagine 2030

zamisli2030.ba

45

Imagine 2030 is a government and non-profit aligned platform dedicated to promoting and implementing the Sustainable Development Goals (SDGs) in Bosnia and Herzegovina. It serves as a central hub for information dissemination, event promotion, and resource sharing related to Agenda 2030. The platform targets government bodies, local self-governments, businesses, NGOs, and citizens interested in sustainable development. The website is built on WordPress using modern themes and plugins, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

А

Аутопутеви Републике Српске

autoputevirs.com

46

Аутопутеви Републике Српске is a public enterprise responsible for the construction, maintenance, and management of highways and major roads in Republika Srpska, Bosnia and Herzegovina. The website serves as an information portal for infrastructure projects, public procurement, and traffic updates, targeting citizens, drivers, and governmental stakeholders. The company holds a significant position as a key state entity in transportation infrastructure within the region. Technically, the website is built on WordPress, utilizing common plugins such as RevSlider and Contact Form 7, with Google Analytics for traffic monitoring. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some modern security headers and privacy compliance mechanisms are missing, indicating room for improvement in security and GDPR adherence. Security posture is moderate, with HTTPS enforced and domain transfer protection enabled, but lacking DNSSEC and advanced security headers. No vulnerability disclosure or incident response information is publicly available. Overall, the site is trustworthy and professionally maintained but could enhance its security and privacy compliance. The overall risk is low, but strategic improvements in security headers, cookie consent, and transparency policies are recommended to strengthen compliance and user trust.

B

Bündnis für Demokratie und Menschenrechte

buendnis-demokratie-menschenrechte.de

47

The website 'Bündnis für Demokratie und Menschenrechte' represents a regional civil society and governmental alliance based in Baden-Württemberg, Germany, focused on promoting democracy and human rights. It serves as a platform for organizations, churches, political parties, and governmental institutions to collaborate and advocate for these values. The website is built on WordPress using the Divi theme and includes event management functionality via the Modern Events Calendar plugin. The technical infrastructure is modern and moderately optimized for performance and mobile devices, with good SEO practices implemented through the Rank Math plugin and structured data markup. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and incident response contact information. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices to improve compliance and user trust.

M

meinKölnBonn

meinkoelnbonn.de

48

meinKölnBonn is a regional content platform operated in affiliation with Sparkasse KölnBonn, providing residents of the Köln and Bonn area with financial advice, lifestyle content, business insights, and local event information. The website positions itself as a trusted source for regional financial and lifestyle topics, leveraging the brand strength of Sparkasse KölnBonn. Technically, the site is built on WordPress with modern frontend technologies such as Swiper.js and lazy loading for images, ensuring a good user experience and mobile optimization. SEO practices are well implemented with Yoast SEO and structured data markup. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the site lacks explicit security headers and a public security policy. Privacy compliance is moderate, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Middle East Network Operators Group

menog.org

67

The Middle East Network Operators Group (MENOG) operates as a regional platform for Internet network operators and key Internet builders in the Middle East. It facilitates knowledge sharing through meetings, roadshows, and fellowship programs, positioning itself as a vital community organization in the telecommunications sector. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience of network professionals. Technically, the site is built on WordPress using the Divi theme, incorporating modern JavaScript libraries and Matomo analytics with cookies disabled, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and some security plugins in use, but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Overall, the site is trustworthy and functional but could improve transparency and security practices to enhance credibility and compliance.

E

Europ Assistance

europ-assistance.com

63

Europ Assistance is a globally recognized assistance and insurance company, operating since 1963 and part of the Generali Group. The company provides a broad range of services including travel insurance, mobility assistance, home and living support, health services, senior care, and concierge offerings. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to both consumers and business partners worldwide. Technically, the site is built on WordPress using Elementor, enhanced with modern plugins and analytics tools such as Piwik PRO, ensuring a robust and scalable infrastructure. Security posture is strong with HTTPS enforcement and multiple security headers, although explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the strong brand presence and corporate affiliation. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility, and maintaining vigilance on third-party plugin security.

D

Dobra knjiga

dobraknjiga.ba

56

Dobra knjiga is a well-established Bosnian bookstore and publisher specializing in offset and digital printing, publishing, and design services. With over 18 years of experience, it serves readers across Bosnia and Herzegovina and the diaspora, offering a curated selection of quality books through an online e-commerce platform. The website is built on WordPress with WooCommerce and Elementor, reflecting a modern digital infrastructure suitable for retail and publishing operations. Security posture is solid with HTTPS and password strength enforcement, though improvements in security headers and GDPR compliance mechanisms are recommended. Overall, the site presents a professional and trustworthy online presence with clear contact information and active social media engagement.

A

Agencija za upravljanje oduzetom imovinom Republike Srpske

auoirs.net

56

The website represents the Agencija za upravljanje oduzetom imovinom Republike Srpske, a government agency under the Ministry of Justice of Republika Srpska, Bosnia and Herzegovina. The agency manages assets confiscated through criminal proceedings, as established by law. The website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity with good SEO practices but lacking advanced security configurations such as DNSSEC and security headers. The site is accessible via HTTPS, ensuring encrypted communication, but lacks visible privacy, cookie, or terms of service policies, which are important for compliance and user trust. No contact emails, phone numbers, or social media links were found, limiting direct communication channels. Overall, the site is professional and consistent with a government entity but could improve in privacy compliance and security posture.

R

Republički centar za istraživanje rata, ratnih zločina i traženje nestalih lica

rcirz.org

44

The Republika Srpska Center for Research of War, War Crimes, and Searching for Missing Persons is a government institution dedicated to the investigation, documentation, and analysis of war crimes and missing persons related to conflicts in Bosnia and Herzegovina and the former Yugoslavia. The organization provides expert services including data archiving, forensic support, and cooperation with judicial and international bodies. The website serves as an informational and research platform primarily targeting government entities, researchers, and families of missing persons. Technically, the website is built on WordPress using the Divi theme, incorporating standard SEO and analytics tools such as Yoast SEO and Google Analytics. The site demonstrates moderate performance and good mobile optimization but lacks advanced security headers and comprehensive privacy compliance features. The absence of visible contact information and policy documents limits user trust and regulatory adherence. From a security perspective, the site uses HTTPS but does not implement key security headers, and the WHOIS data is incomplete, which raises concerns about domain transparency. No forms or sensitive data collection mechanisms were detected, reducing immediate risk exposure. However, the lack of privacy and cookie policies indicates potential compliance gaps with GDPR and related regulations. Overall, the website reflects a legitimate government entity with a focused mission but requires improvements in transparency, security best practices, and privacy compliance to enhance trustworthiness and regulatory alignment.

Ц

Центар за бесплатну правну помоћ

mpr-centar.org

54

The website represents the 'Центар за бесплатну правну помоћ', a government-affiliated legal aid center in Republika Srpska, Bosnia and Herzegovina. It provides free legal assistance and representation before courts and other competent authorities, targeting socially vulnerable citizens. The organization is established by the Government of Republika Srpska and operates through offices in multiple cities. The website is built on WordPress using the Divi theme and employs Yoast SEO for optimization. The technical infrastructure is modern and moderately performant, with mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Business credibility is high given the official nature and consistent WHOIS data. Overall, the site is professional, trustworthy, and safe for general audiences.

L

Lanaco

nasljedje.org

50

The website represents the official online presence of the Republika Srpska Institute for the Protection of Cultural-Historical and Natural Heritage, a government agency under the Ministry of Education and Culture of Republika Srpska, Bosnia and Herzegovina. It provides information on cultural and natural heritage protection, public procurement, news, projects, and contact details. The site targets the general public, cultural professionals, and government stakeholders. The business model is a government service institution focused on heritage preservation and public information dissemination. Technically, the website is built on WordPress with common plugins such as Slider Revolution and Unyson Framework, using jQuery and Bootstrap for frontend functionality. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Hosting details are not explicitly stated but domain registration and DNS indicate a stable infrastructure. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. No privacy or cookie policies are found, indicating compliance gaps. Contact information is clearly provided, enhancing trust. No signs of malicious content or adult material are present. Overall, the website is a credible government resource with good content and moderate technical maturity. Improvements in privacy compliance and security hardening are recommended to enhance trust and protect user data.

M

mCloud doo

certrs.org

48

CERT RS is a governmental Computer Emergency Response Team website focused on cybersecurity incident response and awareness in Serbia. The site is built on WordPress with common plugins such as WooCommerce and GiveWP, indicating some donation or e-commerce capabilities. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. The domain is expired, which poses a significant risk to service continuity and trust. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the website serves an important governmental function but requires improvements in domain management, security practices, and privacy compliance.

П

Пореска Управа РС

poreskaupravars.org

48

The Poreska Uprava Republike Srpske (Tax Administration of Republika Srpska) is a government entity responsible for the impartial and efficient collection and control of public revenues in Republika Srpska, Bosnia and Herzegovina. The website serves as an official portal providing information, e-services, and updates to taxpayers including individuals, legal entities, and entrepreneurs. It maintains a strong market position as the authoritative tax administration body in the region, offering key services such as e-fiscalization and electronic services to facilitate tax compliance. The site is multilingual, primarily in Serbian Cyrillic and Latin scripts, with an English version available, targeting local citizens and businesses.

I

Izrada web stranica

izradawebstranica.ba

47

Izrada web stranica is a small digital agency based in Bosnia and Herzegovina specializing in the creation of unique websites and e-commerce shops. The company positions itself as a full-service digital agency focused on brand growth and web development services. The website is built on WordPress using Elementor, enhanced with SEO tools like Rank Math, and includes modern web technologies such as Lottie animations and Google Analytics for tracking. The technical infrastructure is solid with HTTPS enabled and a professional design, although some security best practices like security headers and privacy policies are missing. The security posture is moderate with no visible vulnerabilities but lacks formal security and privacy documentation. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and security practices.

N

Nelnet Inc

nelnetinc.com

68

Nelnet Inc is a diversified enterprise primarily focused on student loan servicing, education technology, government services, consumer financial services, and renewable energy investments. Founded in 2000 and publicly traded on the NYSE (NNI), Nelnet serves millions of customers across multiple sectors including education, government, and finance. The company operates numerous subsidiaries and business units, offering a broad range of services from loan servicing to payment processing and fiber communications. Their market position is strong, supported by decades of experience and a large associate base. Technically, Nelnet's website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, analytics, and user experience enhancements. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Hosting and domain registration are managed through reputable providers, with domain age consistent with company history. From a security perspective, the site enforces HTTPS and employs domain registration protections. However, it lacks visible security headers and published security policies or incident response contacts. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Tracking technologies such as Google Tag Manager and Facebook Pixel are used, indicating moderate user tracking. Overall, Nelnet presents a professional, trustworthy online presence with strong business credibility and good technical implementation. Security posture is solid but could be enhanced by adding security headers and formal incident response disclosures. No critical vulnerabilities or blocking mechanisms were detected, and the content is safe for general audiences.

D

Deutsche Gesellschaft Club of Rome

clubofrome.de

49

The Deutsche Gesellschaft Club of Rome is a well-established non-profit organization focused on sustainability, future studies, and fostering knowledge exchange to promote a life-supporting future. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that aligns with the organization's mission. Technically, the site is built on WordPress with modern plugins and integrations such as Google Analytics and Iubenda for privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration data is consistent and supports the legitimacy of the organization. Overall, the site presents a trustworthy and professional image suitable for its target audience.

A

Agencija WEB Studio

webstudio.ba

49

Agencija WEB Studio is a full service digital marketing agency based in Bosnia and Herzegovina, positioning itself as the first such agency in the country. The website presents a professional digital marketing service offering focused on business growth and client acquisition. The technical infrastructure is built on WordPress CMS, utilizing the All in One SEO plugin and a custom theme, indicating a moderate level of digital maturity. The website is mobile optimized and has good SEO practices but lacks comprehensive privacy and cookie policies. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Overall, the website is functional and professional but could improve in privacy compliance and security best practices to enhance trust and regulatory adherence.

E

Emarsys

emarsys.net

70

SAP Emarsys is a well-established enterprise providing an AI-powered omnichannel customer engagement platform targeted at marketers and large enterprises. The company is recognized as a leader in personalization and marketing automation, supported by industry accolades such as Gartner Magic Quadrant and IDC ROI reports. The website demonstrates a mature digital infrastructure with a modern tech stack, including WordPress CMS, advanced marketing tools, and analytics services. Security posture is strong with HTTPS enforced and no critical vulnerabilities detected, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is evident with privacy and cookie policies and consent mechanisms in place. Overall, the website reflects a professional, trustworthy, and technically sound enterprise presence.

P

Pluro

wp-accessibility.org

64

Pluro is a technology company specializing in web accessibility solutions, offering an accessibility operating system, widget, and scanner-fixer tools to help developers and website owners make their sites accessible. The company positions itself as a niche provider in the accessibility technology market, offering a SaaS subscription model with a free trial. Technically, the website is built on WordPress with WooCommerce and integrates multiple modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and FullStory. The site includes accessibility features and an accessibility toolbar, reflecting its business focus. Security-wise, the site uses HTTPS and some security-related plugins but lacks explicit security headers in the HTML source, which could be improved. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy policy or terms of service detected. Overall, the domain WHOIS data is privacy protected, which is reasonable for this business type, and the website appears legitimate and professional.

F

Firstmark Services

firstmarkservices.com

66

Firstmark Services is a division of Nelnet providing secure, innovative, and flexible financial solutions focused on loan servicing, customer service, and portfolio performance. The company targets financial institutions and private loan clients, positioning itself as an investment-grade rated servicer with a strong market presence supported by its parent company Nelnet. The website reflects a professional and trustworthy business with clear service offerings and a user-friendly interface. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and privacy tools such as Google Analytics, Hotjar, and the Transcend Privacy Plugin. Security posture is solid with HTTPS enabled and domain registration protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website and business demonstrate a mature digital presence with good security hygiene and compliance awareness.

V

Volkshochschule Karlsruhe

vhs-karlsruhe.blog

62

The website 'die vhs Welt' is an educational blog operated by Volkshochschule Karlsruhe, a German adult education institution. It provides content focused on learning, community engagement, and educational topics primarily in German. The site targets a diverse audience including adults, students, and professionals interested in continuing education and language learning. The business model is non-profit and community-oriented, with a strong local presence in Karlsruhe, Germany. Technically, the website is built on WordPress using the Uncode theme and several plugins including The SEO Framework and an interactive 3D flipbook plugin. The site uses HTTPS and has moderate performance and good mobile optimization. SEO practices are well implemented with structured data and meta tags. However, some security headers are missing and DNSSEC is not enabled, which could be improved. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and some HTTP security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear privacy policy, cookie consent mechanism, and GDPR adherence. Contact information is minimal on the blog itself but likely available on the main vhs site. Overall, the website is trustworthy, professionally maintained, and suitable for its educational purpose. Strategic recommendations include enabling DNSSEC, adding security headers, and enhancing accessibility features to further improve security and user experience.

B

Bošnjačka zajednica kulture

bzk.ba

42

Bošnjačka zajednica kulture (BZK) is a well-established non-profit cultural organization dedicated to preserving and promoting Bosniak culture, literature, and heritage primarily in Bosnia and Herzegovina. The website serves as a platform for news, cultural projects, publications, and events, targeting the Bosniak community and cultural scholars. The organization maintains a consistent brand presence and provides valuable cultural content, positioning itself as a key cultural institution in the region. Technically, the website is built on WordPress using common plugins such as Slider Revolution, Contact Form 7, and Mailchimp integration. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled, but lacks important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional, with no signs of malicious content or blocking mechanisms. However, it would benefit from enhanced privacy compliance and improved security headers to strengthen its security posture and user trust. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and conducting regular security audits to maintain a robust security posture.

HERDT-Verlag für Bildungsmedien GmbH is an established German company specializing in IT training and educational media. Their website offers online platforms and training materials targeted at businesses, government agencies, educational institutions, and training providers. The company has a strong market presence with a domain registered since 1998 and operates multiple related domains for e-commerce and campus services. Technically, the website is built on WordPress using the Avada theme, with Cloudflare DNS and Cookiebot for privacy compliance. The site is well-optimized for SEO, mobile, and accessibility, providing a professional user experience. Security posture is good with HTTPS and cookie consent mechanisms, though some improvements like enabling DNSSEC and additional security headers are recommended. Overall, the website is trustworthy, compliant with GDPR, and suitable for its educational audience.

I

Initiative Pro Recyclingpapier

ceos-bekennen-farbe.de

34

The website 'CEOs bekennen Farbe' is a German non-profit campaign led by the Initiative Pro Recyclingpapier, promoting the use of recycled paper with the Blue Angel eco-label among CEOs of notable companies. It features endorsements from over 100 CEOs, news updates, and educational content aimed at encouraging sustainable paper use in the business community. The campaign is well-positioned within the German environmental non-profit sector and collaborates with recognized partners such as BMUV, NABU, and the Club of Rome. Technically, the website is built on WordPress, utilizing jQuery and Slider Revolution for interactive content, and employs Matomo for privacy-conscious analytics. Hosting is provided by kasserver.com, with proper HTTPS encryption and a cookie consent mechanism in place. The site demonstrates good mobile optimization and SEO practices but lacks some advanced security headers and formal security policies. From a security perspective, the site enforces HTTPS and uses minimal cookies, with Matomo configured to disable cookies, reflecting good privacy compliance. However, it does not publish explicit security policies or incident response contacts, and no vulnerability disclosure mechanisms are evident. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and aligned with its non-profit environmental mission. Strategic recommendations include enhancing security headers, publishing incident response information, and adding a vulnerability disclosure policy to strengthen security posture and stakeholder trust.

S

Schmeck den Süden

schmeck-den-sueden.de

48

Schmeck den Süden is a regional culinary platform dedicated to promoting the cuisine and gastronomy of Baden and Württemberg in Germany. The website offers a variety of recipes, product information, and a directory of local gastronomes, targeting food enthusiasts and regional consumers. The business model focuses on content marketing and regional product promotion, supported by newsletters and partnerships. Technically, the site is built on WordPress using common plugins such as Contact Form 7 and Borlabs Cookie for privacy compliance. The design is responsive and accessible, with good SEO practices and clear navigation. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, although the absence of security headers and explicit incident response policies suggests room for improvement. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, serving as a valuable resource for its target audience.

N

norm-4 GmbH

norm-4.com

59

norm-4 GmbH is a full-service digital agency based in Cologne, Germany, specializing in custom digital solutions including websites, online portals, TYPO3 and WordPress CMS, e-commerce platforms, accessible websites, and mobile apps for iOS and Android. The company targets businesses, institutions, and public sector clients, positioning itself as a technologically competent and creative partner. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service offerings. Technically, the site is built on WordPress with modern plugins such as WPBakery Page Builder and Yoast SEO, and it employs Cookiebot for GDPR-compliant cookie consent management. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS registration data is a concern but does not detract significantly from the overall legitimacy given the professional web presence. Overall, norm-4 GmbH demonstrates a solid digital maturity and trustworthy business profile.