Security Directory

S

Salacgrivas ostas parvalde

salacgrivaport.lv

43

Salacgrivas ostas parvalde operates as a regional port authority located in Latvia, managing the Salacgrīva port and related maritime infrastructure. The website presents the port's historical significance dating back to 1368 and highlights current cargo handling and fishing activities, as well as yacht marina services. The organization targets regional importers, exporters, fishermen, and maritime transport users. The website is built on DIRcms and utilizes several JavaScript libraries for enhanced user experience, including jQuery, bxSlider, and Fancybox. Google Analytics is employed for visitor tracking. Security posture is moderate with no detected advanced security headers or explicit privacy policies, though cookie consent is implemented. WHOIS data confirms the legitimacy of the registrant as a Latvian legal entity matching the website's business claims. Overall, the site is functional and credible but could improve in privacy transparency and security best practices.

S

SIA Madara

madara.lv

48

SIA Madara operates a website focused on providing office and industrial space rental services in Jelgava, Latvia, alongside metal container sales and machine building services. The company targets local businesses and industrial clients seeking large rental spaces and related manufacturing products. The website is professionally designed with clear navigation and multilingual support, primarily in Latvian with English and Russian options. The technical infrastructure employs a variety of JavaScript libraries and frameworks, including jQuery, Bootstrap, and Google Maps API, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate; while HTTPS is presumed, no explicit security headers or incident response policies are evident. Privacy compliance is good, with a clear privacy policy and cookie consent mechanism implemented. Business credibility is supported by clear contact information and a certification page, though the absence of terms of service and incident response contacts are noted. Overall, the website presents a trustworthy and professional front for a small local business with room for security and compliance improvements.

L

Latvijas Tālmācības profesionālais centrs

ltpc.lv

47

Latvijas Tālmācības profesionālais centrs (LTPC) is a Latvian educational institution specializing in distance learning and professional qualification programs. The organization offers a wide range of vocational and professional development courses accessible globally, targeting students and adult learners. Their business model focuses on flexible, modular education with support for unemployed persons through government programs. The website reflects a medium-sized education provider with consistent branding and a clear presentation of services. Technically, the website employs a modern technology stack including jQuery, Google Analytics, Facebook Pixel, Hotjar, and LiveChat, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO practices but lacks some accessibility features. Performance is moderate, and the site uses HTTPS with secure form submissions, though security headers are missing. From a security perspective, the site demonstrates good baseline practices such as HTTPS and secure data handling in forms. However, it lacks publicly disclosed privacy and cookie policies, security policies, and incident response information, which are critical for GDPR compliance and user trust. The use of multiple tracking and advertising tools suggests moderate user tracking without clear consent mechanisms. Overall, the website is professional and trustworthy with no signs of malicious activity or content safety concerns. Strategic improvements in privacy compliance, security headers, and transparency would enhance the security posture and user confidence.

MediLine.lv is a Latvian-based e-commerce platform specializing in medical supplies, hygiene, and disinfection products targeted at healthcare professionals, clinics, salons, veterinary clinics, and private consumers. The company operates under the legal entity NMS RIGA, SIA, with a clear local presence and product offering tailored to professional and consumer needs in Latvia. The website presents a professional and user-friendly interface with clear navigation and product categorization, supporting an effective online retail business model within the healthcare sector. Technically, the website employs legacy technologies such as jQuery 1.11.0 alongside modern analytics tools like Google Analytics and Google Tag Manager. While the site is functional and moderately optimized for performance and mobile use, there are opportunities for modernization and improved accessibility. The absence of visible security headers and the use of outdated JavaScript libraries present potential security risks that should be addressed to enhance the site's resilience. From a security and compliance perspective, the site includes essential privacy and cookie policies with consent mechanisms, indicating basic GDPR compliance. However, there is no explicit security policy or incident response information publicly available. The WHOIS data confirms the domain is actively maintained by a Latvian legal entity consistent with the website's claims, supporting legitimacy. Overall, the security posture is moderate but could benefit from updates to libraries, implementation of security headers, and enhanced transparency around security practices. Strategically, MediLine.lv is positioned as a niche regional supplier with a focused product range and a clear target audience. To strengthen trust and security, the company should prioritize technical updates, improve security configurations, and expand compliance disclosures. These steps will support sustained growth and customer confidence in a competitive healthcare e-commerce market.

S

SIA NMS RIGA

e-medica.lv

53

E-MEDICA, operated by SIA NMS RIGA, is a Latvian-based supplier specializing in disinfection, hygiene, and medical products with a focus on fast delivery across Latvia. The website presents a professional e-commerce platform targeting both business and consumer customers in the healthcare and hygiene sectors. The company offers a broad catalog of medical supplies, paper hygiene products, and cleaning agents, supported by an online ordering system with integrated cart and checkout functionalities. Technically, the site employs a modern JavaScript stack including jQuery, Select2, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and basic security best practices, though improvements such as enhanced security headers and a vulnerability disclosure policy are recommended. Privacy compliance is supported by a clear cookie consent mechanism and a privacy policy page, aligning with GDPR requirements. Overall, the website is trustworthy, well-structured, and suitable for its target market.

M

Maxima Latvija

maxima.lv

67

Maxima Latvija operates one of the leading retail chains in Latvia, focusing on providing retail services to a broad consumer base. The website presents a professional and consistent brand image with a clear business description emphasizing family values and customer care. The technical infrastructure leverages modern JavaScript libraries and third-party services such as Cookiebot for cookie consent, Google Analytics for analytics, and Cloudflare for hosting and security. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced and use of Cloudflare's protection, though explicit security policies and incident response contacts are not publicly visible. Privacy compliance is well addressed with comprehensive cookie and privacy policies and active consent mechanisms. Overall, the website is trustworthy and professionally maintained, with extensive use of analytics and marketing tools to optimize user engagement and advertising effectiveness.

ALL SENS is a small French manufacturing company specializing in the production and distribution of food ingredients and premixes for animal feed, including aromas, colorants, and additives. The company targets agro-food industrial clients and animal feed manufacturers, offering customized flavor formulations and solutions that comply with regulatory standards. The website is built on the Weebly platform, utilizing common web technologies such as jQuery and Google Analytics for tracking. The site is professionally designed with good navigation and mobile optimization, providing clear contact information and business descriptions. However, it lacks visible privacy and cookie policies, security headers, and incident response information, which are important for compliance and trust. WHOIS data is unavailable due to EURid privacy restrictions, but the domain appears legitimate and consistent with the company's French location. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and security best practices.

Jurapark Aargau is a regional nature park organization based in Switzerland focused on nature conservation, regional development, and community engagement. The website serves as an information hub for visitors, local residents, schools, and companies interested in sustainable tourism, educational programs, and regional products. The organization positions itself as a non-profit entity promoting environmental stewardship and cultural heritage within the Aargau region. Technically, the website is built on the Contao CMS platform, leveraging modern JavaScript libraries and APIs to provide interactive content and event management. The site is mobile-optimized and includes structured data for SEO benefits. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks explicit security policies or incident response information. Overall, the website is professional, trustworthy, and well-maintained, with room for improvement in security transparency and header configurations.

G

GEN energija d.o.o.

esvet.si

53

eSvet.si is an educational website operated under the GEN energija d.o.o. group, focusing on energy topics relevant to Slovenia. It provides comprehensive information on various energy sources including nuclear, hydro, fossil, and renewable energies. The platform targets a broad audience including students, professionals, and the general public interested in energy and sustainability. The site is well-branded, consistent, and supported by recognized energy sector partners, enhancing its credibility and trustworthiness. Technically, the site is built on Drupal CMS with modern JavaScript libraries and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are not published. Overall, the site demonstrates a mature digital presence with good compliance to privacy regulations and a strong educational mission.

P

POČITEK - UŽITEK d.o.o.

vivat.si

45

Terme Vivat is a well-established hospitality and wellness resort located in Moravske Toplice, Slovenia, operating since 2006. The company offers premium accommodation, thermal pools, wellness services including a Thai massage salon, and facilities for business and sports events. The website reflects a high level of professionalism with clear branding, multilingual support, and comprehensive service offerings targeting families, wellness tourists, and business clients. Technically, the site uses modern JavaScript libraries and asynchronous loading to optimize performance and user experience. Security posture is good with HTTPS enforced and secure forms, though some security headers and explicit policies could be improved. Privacy compliance is adequate with clear privacy and cookie policies, but lacks a consent mechanism. Overall, the website is trustworthy, well-maintained, and aligned with the business's market position.

E

Elproms Team j.d.o.o.

elproms.com

54

Elproms Team j.d.o.o. is a Croatian IT company specializing in Internet of Things (IoT) technology and smart business solutions. Founded in 2018 and headquartered in Zagreb, the company offers enterprise software products such as Improve Card for business monitoring and Qualy for ISO 9001 conformity. Their market positioning targets manufacturing companies and businesses seeking smart home, smart city, and Industry 4.0 solutions. The website reflects a professional and consistent brand image with clear contact details and partner affiliations. Technically, the site uses modern web technologies including Bootstrap and jQuery, is mobile optimized, and implements cookie consent mechanisms. Security posture is solid with HTTPS enforced and CSRF protection on forms, though some security headers and DNSSEC are missing. Privacy compliance is well addressed with accessible policies and GDPR consent. Overall, the company presents a credible and trustworthy digital presence.

U

Udruga konzultantskih društava u graditeljstvu

ukdg.hr

45

UKDG is a Croatian non-profit association representing consulting companies in the construction sector. Founded in 2011, it aims to protect and enhance the business interests and reputation of its members by promoting professional standards and ethics. The website reflects a mature organization with clear business objectives, member services, and international affiliation through FIDIC membership. Technically, the site uses a modern stack including Bootstrap, jQuery, and various UI libraries, hosted under Croatian registrar CARNET with consistent domain registration data. Security posture is solid with HTTPS and cookie consent implemented, though it lacks explicit security policies and some security headers. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

Kozák Svitavy, s.r.o.

kozak-svitavy.cz

52

Kozák Svitavy, s.r.o. operates a wholesale e-commerce platform specializing in candles, home and garden accessories, and related decorative products. The website targets wholesale customers primarily in the Czech Republic, offering a broad product range including seasonal and floristry items. The business model focuses on B2B sales through an online portal, positioning itself as a regional supplier with a clear product focus. The website content is professionally presented in Czech, with clear navigation and relevant business information, including contact details and ethical reporting channels. Technically, the site is built on ASP.NET WebForms with Kentico CMS, utilizing common JavaScript libraries such as jQuery, bxSlider, and fancyBox. Google Analytics and Google Tag Manager are employed for user tracking and analytics. The site shows moderate performance and good mobile optimization but lacks some advanced accessibility features. Security measures include HTTPS and CSRF tokens, but there is an absence of security headers and cookie consent mechanisms, indicating room for improvement in security posture and privacy compliance. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. The website provides clear contact information and an ethical whistleblowing email, which are positive trust signals. Overall, the security posture is moderate but could be enhanced by implementing security headers, cookie consent, and publishing a vulnerability disclosure policy. The overall risk assessment suggests the website is functional and legitimate for its business purpose but would benefit from improved transparency in domain registration and enhanced privacy and security practices. Strategic recommendations include verifying domain registration details, implementing GDPR-compliant cookie consent, adding security headers, and establishing a formal security policy to strengthen trust and compliance.

B

Breedveld Staal

breedveldstaal.nl

60

Breedveld Staal is a well-established steel and metal supplier based in the Netherlands, with a business history dating back to 1946 and an active domain since 2003. The company serves industrial and business clients requiring steel products, positioning itself as a trusted B2B supplier in the manufacturing sector. The website reflects a professional business presence with good content quality and clear navigation, targeting business customers in need of steel and metal materials. Technically, the site uses modern JavaScript libraries such as Swiper.js and Fancybox, along with Google reCAPTCHA for form security, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and policies could be improved or explicitly published. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, suitable for its industry and audience.

A

Atom Publishing

atompublishing.co.uk

54

Atom Publishing is a boutique content and events agency specializing in connecting brands with audiences in the built environment sector. The company offers a diverse range of services including magazines, websites, events, commercial content, editorial, design, podcasts, video, webinars, social media, and recruitment. Their market position is that of a specialized agency with a strong focus on the built environment, serving clients primarily in the UK. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. From a technical perspective, the website is built on WordPress and utilizes modern JavaScript libraries such as jQuery, SAL.js, Fancybox, and Tiny Slider. Hosting appears to be managed by electricbloom.co.uk. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Accessibility features are basic but present. Analytics are implemented via Google Analytics and Google Tag Manager, indicating moderate user tracking. Security posture is generally good with HTTPS enabled and no exposed sensitive data. However, the absence of key security headers and a cookie consent mechanism are notable gaps. The WHOIS lookup failed due to domain registration issues with Nominet UK, which introduces some uncertainty about domain legitimacy. Despite this, the website content and business information appear credible and professional. Overall, the site presents a low risk but would benefit from enhanced security headers, privacy compliance improvements, and clarification of domain registration status to strengthen trust and compliance.

F

Fantaisie Software

purebasic.com

48

PureBasic.com is the official website for PureBasic, a modern BASIC programming language developed by Fantaisie Software since 1998. The site provides comprehensive information about the language's features, supported platforms, and related products such as SpiderBasic. The business targets both beginner and expert programmers seeking a fast, portable, and easy-to-use BASIC compiler and IDE. The website is professionally designed with clear navigation and relevant content, supporting multiple languages and offering user login functionality. Technically, the site uses a modern tech stack including HTML5, CSS3, JavaScript libraries like jQuery, Modernizr, and Google Analytics for tracking. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. No CMS or hosting provider details are evident. Performance is moderate with no blocking or WAF detected. Security posture is moderate; the site uses HTTPS but lacks visible security headers and published security policies. Forms use POST methods but no explicit cookie consent or GDPR compliance mechanisms are present. WHOIS data is missing, which reduces trustworthiness but the site content and business information appear legitimate. No vulnerabilities or exposed sensitive data were detected. Overall, PureBasic.com is a trustworthy and professional site for a niche programming language product. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and compliance.

D

DANIELO Sportswear

danielo.pl

38

DANIELO Sportswear is a Polish small business specializing in the manufacturing and retail of custom cycling and sportswear. The company targets sports teams, groups, and individual customers seeking professional and custom-designed sports apparel. Their business model combines B2B custom orders with B2C retail through an online shop. The website reflects a niche market position with a focus on quality and customer collaboration. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and slick carousel, ensuring a responsive and user-friendly experience. The presence of Google Analytics indicates moderate user tracking. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit security policies. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces transparency but is common for small businesses. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations.

C

Castelli-Cycling

castelli-cycling.com

71

Castelli-Cycling is a premium cycling apparel brand offering high-performance and custom cycling clothing targeted at cycling enthusiasts and athletes globally. The website is professionally designed with a clear focus on e-commerce retail, providing a broad range of products and custom options. The company maintains a consistent brand presence with multilingual support and strong social media integration. Technically, the site uses modern web technologies including Google Analytics, HubSpot forms, Cookiebot for consent management, and Matomo analytics, hosted on a CMS platform named Kleecks. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced, use of reCAPTCHA Enterprise, and cookie consent mechanisms, though explicit security headers and policies could be improved. The absence of WHOIS domain registration data is a notable concern for domain transparency and trustworthiness. Overall, the site is reliable and professional but would benefit from enhanced domain registration transparency and explicit security policies.

Grupo Hiemesa is a leading Spanish group specializing in the manufacturing, transformation, commercialization, and distribution of steel products. Established in 1962, it has grown to become a major player in the steel sector in Spain, serving various industrial markets with a comprehensive range of services including distribution, steel profiling, sandwich panel manufacturing, and export. The company operates multiple subsidiaries and maintains a strong presence in Iberia and neighboring regions. Technically, the website employs modern web technologies such as Bootstrap 3.0, jQuery, and Google Maps API, offering a responsive and content-rich user experience. Security posture is adequate with HTTPS enabled and secure forms, though improvements in security headers and incident response documentation are recommended. Privacy compliance is supported by clear privacy and cookie policies, though an active cookie consent mechanism is absent. Overall, the site reflects a professional and trustworthy business with room for enhanced security and compliance maturity.

C

Construction Management

constructionmanagement.co.uk

64

Construction Management is a professional UK-based construction industry magazine affiliated with the Chartered Institute of Building (CIOB). It provides construction news, technical articles, CPD modules, job listings, and digital editions targeting construction professionals and stakeholders. The website is published by Atom Publishing and holds a strong market position as the official CIOB magazine. The content is rich, relevant, and professionally presented, catering to a medium-sized audience within the construction and real estate sectors. The business model is primarily media and advertising-based with subscription options.

F

FETMED

fetmed.cz

47

FETMED is a specialized healthcare provider in the Czech Republic focusing on fetal medicine, genetics, and gynecology. The company operates two physical centers in Olomouc and Ostrava, offering comprehensive prenatal diagnostics, genetic consultations, psychological counseling, and pediatric cardiology. Their market position is that of a trusted regional specialist with experienced medical professionals and advanced diagnostic technologies. The website is professionally designed, mobile-optimized, and provides clear service information and contact channels. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Google reCAPTCHA, ensuring a functional and user-friendly experience. Performance is moderate with good mobile responsiveness and basic accessibility features. However, some security best practices such as security headers are missing, and no privacy policy or terms of service pages are present, which impacts compliance and trust. Security posture is generally good with HTTPS enforced and use of CAPTCHA for forms, but the absence of security headers and WHOIS transparency reduces the overall security confidence. No vulnerabilities or exposed sensitive data were detected. Cookie consent is implemented properly, supporting GDPR compliance to some extent. Overall, the website is a credible and professional healthcare service platform with room for improvement in privacy disclosures and security hardening. The lack of WHOIS data is a concern but may be due to local registry policies. Strategic recommendations include publishing privacy and terms policies, adding security headers, and maintaining updated libraries to enhance security and compliance.

F

Frogblue

frogblue.com

61

Frogblue is a German-based company specializing in smart home and building technology solutions that emphasize simplicity, wireless connectivity, and security. The company targets consumers and businesses interested in modern, flexible smart home systems. Their market position is that of a niche manufacturer with a focus on German engineering quality. The website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, the site is built on WordPress with modern plugins and analytics tools, including GDPR-compliant cookie consent mechanisms and hCaptcha for form security. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, though explicit security headers could be improved. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues or privacy protection, which slightly reduces trustworthiness. Overall, the site presents a credible and professional business presence in the smart home technology sector.

A

Ace IT s.r.o.

gdpr-experts.cz

44

GDPR Experts, operated by Ace IT s.r.o., is a specialized small business based in the Czech Republic providing GDPR compliance and IT security consulting services. Their offerings include GDPR training, audits, legal documentation, and IT security assessments tailored for companies and entrepreneurs within the EU. The website is professionally designed with clear navigation and relevant content targeting businesses needing GDPR solutions. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies. Security posture is adequate with HTTPS implied but lacks visible security headers and incident response information. Overall, the domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

S

SzeneSchweiz – Berufsverband Darstellende Künste

szeneschweiz.ch

38

SzeneSchweiz is the largest and most important Swiss professional association for performing artists in theater, film, and TV. It provides a range of services including legal advice, protection against abuse, pension schemes for freelancers, continuing education, and a casting platform. The organization targets professional artists in Switzerland and operates as a non-profit entity with a strong market position in the Swiss performing arts sector. The website is multilingual and professionally designed, reflecting a medium-sized organization founded around 2017. Technically, the website is built on WordPress 6.8.3 with modern plugins for social sharing and forms. It uses Google Analytics for tracking and is mobile-optimized with good SEO practices. Performance is moderate, and accessibility is basic. The site uses HTTPS with excellent SSL configuration but lacks some security headers and a cookie consent mechanism. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks explicit security policies, incident response information, and cookie consent banners, which are important for GDPR compliance. No vulnerabilities or suspicious content were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's Swiss identity. Overall, the website is professional, trustworthy, and well-positioned in its niche but could improve privacy compliance and security posture by adding cookie consent, security headers, and incident response details.

D

Département de la Marne

marne.fr

56

The Département de la Marne website serves as the official digital portal for the regional government of the Marne department in France. It provides comprehensive information about the department's missions, actions, elected officials, and public services. The site targets residents and stakeholders within the region, offering resources such as contact information, news, tourism details, and access to administrative procedures. The website maintains a professional and consistent brand image aligned with government standards. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Matomo for analytics. It employs accessibility features and cookie consent management, ensuring compliance with basic privacy norms. The site is mobile-optimized and uses HTTPS, contributing to a secure and user-friendly experience. However, some advanced security headers and explicit privacy policies are not evident, indicating areas for improvement. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits full trust verification, but the official .fr domain and government affiliation support legitimacy. Overall, the site presents a moderate to high security posture with room for enhanced transparency and policy documentation. Strategically, the website effectively supports the department's public service mission, providing clear navigation and relevant content. It integrates social media channels to extend outreach and engagement. Recommendations include publishing detailed privacy and security policies, implementing additional security headers, and establishing a vulnerability disclosure process to strengthen trust and compliance.

B

Busbetrieb Aarau AG (BBA)

busaarau.ch

52

Busbetrieb Aarau AG (BBA) is a regional public transportation company operating bus services in Aarau, Switzerland. The company provides comprehensive transit services including bus lines, schedules, ticketing options, and customer support. Their website is designed to serve local commuters and visitors with real-time information and service updates. The business operates in the transportation sector with a medium-sized organizational footprint and a clear focus on regional mobility solutions. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses a secure CMS platform but lacks some advanced security headers and does not publish a formal security or incident response policy. Privacy compliance is partially addressed with a privacy policy and cookie information, though no explicit cookie consent mechanism is present. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives.

H

HOSTING CENTAR d.o.o.

moj-film.hr

43

Moj Film is a Croatian film portal established in 2011, providing comprehensive film-related content including news, reviews, trailers, cinema programs, and community forums. It targets a general audience interested in Croatian and international cinema, positioning itself as a regional media portal with consistent branding and regular content updates. The business model revolves around media content delivery and community engagement within the film industry niche. Technically, the website uses a mix of older and moderately modern web technologies such as jQuery 1.7.1, RoyalSlider, Owl Carousel, and Flowplayer 5, hosted by HOSTING CENTAR d.o.o. The site shows moderate performance and basic mobile optimization with good SEO practices.

J

Julianus Inkasso

julianus.ee

44

Julianus Inkasso is a well-established Estonian debt collection company founded in 1995, operating as a leading provider in Estonia and the Baltic region. The company offers comprehensive credit management services including debt collection, legal proceedings, and purchase of debt portfolios. It is part of the Aktiva Finance Group, which enhances its market position and operational scale. The website reflects a professional and consistent brand image, targeting both debtors and creditors with multilingual support and self-service portals. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and credible business presence.

M

MONTI SYSTEM, s.r.o.

monti.cz

54

MONTI SYSTEM, s.r.o. is a Czech company specializing in the development and manufacturing of advanced technology solutions for fuel stations. With over 20 years of experience, they provide hardware and software systems that automate fuel station management, optimize logistics, and ensure compliance with legislative requirements. Their market position is strong within the Czech Republic, serving major clients and fuel station networks. Technically, the website employs modern JavaScript libraries, analytics tools like Google Analytics and Microsoft Clarity, and a comprehensive cookie consent mechanism, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and cookie consent but lacks visible security headers and formal security policies, indicating room for improvement. The absence of WHOIS data is a concern for domain legitimacy, though the business content and client references support authenticity. Overall, the company demonstrates a professional online presence with good privacy compliance but should enhance security transparency and domain registration clarity.

5

Přední český portál pro recenze a srovnání online služeb

5nej.cz

38

The website www.5nej.cz is a leading Czech portal specializing in reviews and comparisons of online services, particularly in finance, e-commerce, lifestyle, and online tools. It targets Czech-speaking consumers seeking objective and comprehensive information to make informed decisions about financial products, online shopping, and digital services. The business model revolves around content creation, likely monetized through affiliate links and advertising. Technically, the site is built on WordPress CMS with a modern tech stack including jQuery, Yoast SEO Premium, WP Rocket for performance optimization, and analytics tools such as Microsoft Clarity and Google Tag Manager. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and explicit privacy disclosures. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML. However, it lacks visible security headers and explicit privacy and cookie policies, which are important for GDPR compliance and user trust. No vulnerabilities or malware indicators were detected. The absence of WHOIS data suggests domain privacy protection, which is common and acceptable for this business type. Overall, the website presents a professional and trustworthy front for its target audience but would benefit from enhanced privacy disclosures, security headers, and clearer contact information to improve compliance and user confidence.

G

GWS Ground Waterproofing Systems, s.r.o.

gwsystems.cz

50

GWS Ground Waterproofing Systems, s.r.o. is a Czech-based manufacturer specializing in ground waterproofing materials, thermal insulation, and construction geosynthetics with over 25 years of industry experience. The company targets construction professionals and distributors across Europe, offering a broad portfolio of products including PVC foils, mineral insulation, and concrete additives. Their market position is strong within the regional manufacturing and construction sectors, supported by a professional and content-rich website that reflects their expertise and product range. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Google Tag Manager, and Google Analytics, ensuring a responsive and user-friendly experience. The site is well-optimized for mobile devices and includes accessibility features, though some improvements could be made. Security measures include HTTPS enforcement, reCAPTCHA integration, and a comprehensive cookie consent mechanism, indicating a mature approach to user privacy and data protection. From a security perspective, the site demonstrates good practices but lacks explicit HTTP security headers and a public security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern, reducing trustworthiness and suggesting the need for further verification of domain registration status. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and active social media presence. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and verifying domain registration details to improve trust and compliance.

M

Mesto Prešov

presov.sk

58

Mesto Prešov operates an official municipal website serving as the primary digital portal for the city government of Prešov, Slovakia. The site provides comprehensive information on city governance, public services, social programs, urban development, and cultural events. It targets local residents, investors, and visitors, positioning itself as a trusted source for municipal information and services. The website is professionally designed with consistent branding and clear navigation, supporting a good user experience and accessibility.

G

Global Services Slovakia s.r.o.

fcpetrzalka.sk

43

FC Petržalka is a Slovak football club with a professional online presence focused on engaging fans, providing club news, match results, and youth football training information. The website is managed by Global Services Slovakia s.r.o., which also provides the CMS platform. The club targets local football enthusiasts, youth players, and the community, offering services such as ticket sales, fan shop, and football school programs. The site demonstrates consistent branding and a good level of content quality with active updates and social media integration. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, reCAPTCHA, and slick carousel plugins. It uses a proprietary CMS (GlobalWeb) and is served over HTTPS, ensuring secure communications. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the website enforces HTTPS and uses security tools like reCAPTCHA to protect forms. However, it lacks visible security headers and does not provide a privacy policy or cookie consent mechanism, which are important for GDPR compliance. No vulnerability disclosure or incident response information is present, indicating room for improvement in security transparency. Overall, the website is trustworthy and professional but should enhance privacy compliance and security best practices to reduce risk and improve user trust. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure process.

Kvítkovská konírna is a small, traditional hospitality business operating a local pub in the Czech Republic. The website presents the business as a community-focused venue offering a variety of alcoholic and non-alcoholic beverages, food specialties, and an outdoor terrace with a grill. The business targets local residents and visitors along a cycling route, positioning itself as a cozy and authentic pub experience. The company behind the site is LIPEX PLUS s.r.o., indicating a formal business entity. The website is built on WordPress with a dated but functional technology stack including jQuery and Cufon font replacement. While the site is accessible and provides essential information such as phone contact and social media presence, it lacks critical compliance elements like privacy and cookie policies, and no email or physical address is provided. Security posture is moderate with HTTPS enabled but missing security headers and no visible vulnerability disclosures. The absence of WHOIS data reduces transparency but is likely due to privacy protection, which is common for small businesses. Overall, the site is functional and trustworthy for its business type but requires improvements in compliance and security to enhance trust and regulatory adherence.

K

KANAL M.P.S. s.r.o.

kanal-mps.sk

43

KANAL M.P.S. s.r.o. is a Slovak company specializing in sewer and drainage system services including electromechanical cleaning, high-pressure cleaning, and TV monitoring of sewer pipes. Established in 2003, it holds a stable market position with a medium-sized operation focused on servicing Slovak businesses and institutions. The website reflects a professional business model with clear service offerings and a consistent brand presence. Technically, the site uses modern JavaScript libraries such as jQuery, Lodash, Swiper.js, and Fancybox, hosted likely on Websupport infrastructure with DNSSEC enabled, ensuring domain security. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and DNSSEC but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. Privacy compliance is partial, with a cookie consent mechanism but no dedicated privacy policy or terms of service pages. Overall, the site is trustworthy and safe, with no adult or questionable content detected.

C

Capexus

capexus.sk

54

Capexus SK is a Slovak company specializing in custom commercial interior design and build services. Operating since 2011 and part of the Esco Slovensko group, it offers a comprehensive portfolio including architecture, workplace consultancy, acoustics, building technologies, and project documentation. The company has a strong market presence, evidenced by awards such as the Office Roka 2022 for Healthy Office. The website reflects a mature digital infrastructure built on WordPress with modern technologies and performance optimizations. Security posture is solid with HTTPS, DNSSEC, and best practices in place, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site projects professionalism, trustworthiness, and business credibility.

G

G2O Brand Builders

g2o.nl

62

G2O Brand Builders is a specialized branding bureau based in Veenendaal, Utrecht, Netherlands, focusing on building strong brands through comprehensive brand strategy, design, and marketing services. The company positions itself as more than a traditional advertising agency, emphasizing brand building and strategic consultancy. Their website reflects a professional and modern digital presence, leveraging WordPress CMS with a robust tech stack including Bootstrap, jQuery, and various marketing and analytics tools. The site is well-optimized for performance, mobile responsiveness, and SEO, providing a rich user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and use of reCAPTCHA on forms, though there is room for improvement in security headers and explicit cookie consent mechanisms. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

V

Ville de Tours

tours.fr

55

The website www.tours.fr is the official digital presence of the city of Tours, France, serving as a comprehensive portal for municipal information, citizen services, news, and events. It targets residents, visitors, businesses, and community organizations, providing access to administrative procedures, cultural activities, and participatory governance platforms. The site is well-branded with official logos and consistent design, reflecting its government entity status. Technically, the site is built on WordPress 6.7.2, leveraging modern web technologies such as jQuery, Matomo analytics, and a cookie consent framework (Tarteaucitron). The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security is robust with HTTPS enforced and privacy compliance evident through GDPR-aligned cookie consent and a detailed privacy policy. Security posture is strong, though the absence of explicit security headers and incident response contacts suggests areas for improvement. No vulnerabilities or suspicious content were detected. The lack of WHOIS data limits domain registration trust assessment, but the official nature and content quality strongly support legitimacy. Overall, the site presents a trustworthy, professional, and user-friendly government portal with minor technical and security enhancements recommended to further strengthen its posture.

Asociacija ,,Padedu augti“ is a Lithuanian non-profit organization dedicated to supporting families with premature and seriously ill newborns. Established in 2011, it provides various services including social support projects, educational initiatives, and direct assistance to hospitals and families. The organization maintains a strong community presence through storytelling, events, and partnerships with healthcare institutions. Their website reflects a well-structured, content-rich platform with clear navigation and engagement tools such as a live chat widget. Technically, the website employs modern web technologies including jQuery, jQuery UI, Fancybox, and Google Fonts, hosted behind Cloudflare DNS and nameservers ensuring reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and formal security policies. From a security and compliance perspective, the site lacks visible privacy and cookie policies, which is a notable compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Contact information is clearly available, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

visitnovalja.net

35

visitnovalja.net is an established Croatian hospitality platform specializing in private accommodation listings on the island of Pag. The website offers a comprehensive catalog of apartments, rooms, villas, and family hotels with direct contact options for travelers. It targets tourists seeking affordable and diverse lodging options in popular destinations such as Novalja, Stara Novalja, and surrounding areas. The business model focuses on connecting travelers directly with property owners, avoiding intermediaries. Technically, the site uses a custom CMS with common web technologies including jQuery, Bootstrap, and Google services for analytics and bot protection. The site is mobile optimized and provides a user-friendly search experience. Security posture is moderate with HTTPS enabled and reCAPTCHA integration, but lacks advanced security headers and has minor form input issues. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR explicit statements. Overall, the domain registration is consistent and supports the legitimacy of the business. Strategic improvements in security and privacy compliance would enhance trust and user safety.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

visitpag.net

35

Visitpag.net is an established Croatian online accommodation platform specializing in private rentals on the island of Pag, particularly in Novalja and surrounding areas. The website offers a comprehensive catalog of apartments, rooms, villas, and family hotels with direct booking contact forms, targeting tourists seeking affordable and direct accommodation options. The business operates with a mature domain registered since 2014 and maintains a consistent brand presence with a focus on local hospitality services. Technically, the site uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Google Analytics, providing a moderately optimized user experience including mobile responsiveness. Security posture is basic with HTTPS implied but lacking advanced security headers and best practices, and privacy compliance is minimal with no cookie consent mechanisms despite GDPR applicability. Overall, the site is functional and credible but would benefit from enhanced security and privacy features to improve trust and compliance.

P

PagFerry.com

pagferry.com

45

PagFerry.com is a small Croatian website providing up-to-date ferry schedules, real-time ferry status, weather forecasts, and webcam feeds for the Prizna - Žigljen ferry route. It serves a niche audience of travelers and locals seeking reliable maritime transport information. The website is well-branded and consistent, with a clear focus on transportation services in the Croatian region. Technically, the site leverages modern web technologies including AMP for mobile optimization, jQuery, Bootstrap, and integrates third-party services such as Google Analytics and Facebook SDK for analytics and social media engagement. The site is mobile-friendly and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and registers a service worker, but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data for the domain is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the site is functional and useful but would benefit from enhanced security practices and verified domain registration to improve trustworthiness.

P

Printshop • Digitalni tisak

printshop.hr

54

Printshop.hr is a Croatian digital printing service provider established in 2014, offering a wide range of business and promotional printing products such as business cards, flyers, posters, and canvas prints. The company operates an e-commerce platform allowing customers to calculate prices and order online, targeting businesses and individuals within Croatia. The website is professionally designed with good navigation, mobile optimization, and relevant content focused on its core services. Technically, the site uses modern web technologies including Bootstrap, Google Analytics, Microsoft Clarity, and October CMS, hosted likely within Croatia under the CARNET registrar. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is good with visible privacy and cookie policies aligned with GDPR requirements. No critical vulnerabilities or suspicious indicators were found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

WBS.LEGAL is a well-established German law firm specializing in media, internet, e-commerce, and related legal fields with over 30 years of experience. The firm operates nationwide with a strong digital presence, offering comprehensive legal services and free initial consultations. Their website reflects a professional and trustworthy brand with extensive content, client testimonials, and active social media engagement. Technically, the site is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools, ensuring good performance and user experience. Security posture is solid with HTTPS and consent management, though explicit security headers could be enhanced. Overall, the domain's WHOIS data is privacy-protected, which is typical for professional legal entities, and no suspicious indicators were found.

Z

Zavod za javno zdravstvo Krapinsko-zagorske županije

zzjzkzz.hr

47

Zavod za javno zdravstvo Krapinsko-zagorske županije is a regional public health institute serving the Krapina-Zagorje County in Croatia. The organization provides a broad range of public health services including epidemiology, microbiology, health promotion, school medicine, environmental health, and mental health and addiction prevention. The website targets local residents and public health stakeholders, offering news, contact information, and resources relevant to the community. The business model is government-funded, positioning the institute as a key regional health authority. Technically, the website uses a custom ASP-based CMS with legacy JavaScript libraries such as jQuery 1.8.2 and Modernizr, alongside modern UI components like the Revolution Slider and UserWay accessibility widget. The site is moderately optimized for performance and mobile devices, with basic SEO and good accessibility features. However, some technical debt is evident due to outdated libraries and lack of advanced security headers. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, the use of outdated JavaScript libraries and absence of security headers like CSP and HSTS present potential vulnerabilities. No explicit security or incident response policies are published. Contact information is clearly provided, enhancing trust and transparency. Overall, the website is professional, trustworthy, and serves its public health mission effectively. Strategic improvements in updating technical components and enhancing security headers would strengthen its security posture and compliance. The site is safe for general audiences with no adult or questionable content detected.

S

Sveučilište u Rijeci

uniri.hr

60

Sveučilište u Rijeci is a well-established public university in Croatia, recognized as the second oldest with continuous operation in the country. The institution offers a broad range of higher education programs, research initiatives, and community engagement activities. The website reflects a strong academic and institutional presence, targeting students, researchers, and the general public interested in education and research. It maintains a consistent brand identity and provides comprehensive information about its services and partnerships, including international collaborations such as ERASMUS and YUFE.

C

CSL Computer Service Langenbach GmbH d/b/a joker.com

novalja-pag.net

33

Novalja-pag.net is a well-established Croatian hospitality website specializing in private accommodation listings on the island of Pag. Founded in 2002, it offers a comprehensive catalog of apartments, rooms, villas, and hotels with direct booking contact options. The platform targets tourists seeking affordable and diverse lodging options near popular destinations such as Novalja and Zrće beach. Technically, the site uses a custom CMS with common web technologies including jQuery, Bootstrap, and Google services for analytics and reCAPTCHA. While the site is mobile-optimized and provides a good user experience, it lacks HTTPS enforcement and advanced security headers, which are critical for protecting user data and enhancing trust. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is credible and functional but would benefit from security and privacy improvements.

Nikola Tesla Network is a small, non-profit cultural and educational project focused on promoting the legacy of Nikola Tesla through an international cultural and touristic route. The website serves as a hub for information about the network, its partners, events, and educational initiatives such as the Teslina STEM Academy. The project is supported by reputable partners including the Croatian National Tourist Board and is co-financed by the European Union, indicating a solid market position within cultural tourism and education sectors. Technically, the website employs a moderate technology stack including jQuery, Modernizr, and various UI plugins, hosted on infrastructure linked to the NETIM registrar and VIT Web Hosting. The site is mobile optimized with good SEO practices and clear navigation, though accessibility features are basic. Security posture is adequate with HTTPS enforced and CSRF protections in forms, but lacks advanced security headers and a formal security policy. Privacy compliance is partial; a cookie policy and consent mechanism are present, but no explicit privacy policy page was found, representing a compliance gap. Contact information is clearly provided, enhancing business credibility. No signs of malicious content or WAF blocking were detected, and the site content is safe for general audiences. Overall, the website is professionally maintained with good content quality and business credibility but would benefit from enhanced privacy and security policies to improve compliance and trustworthiness.

Športsko ribolovno društvo LUC Novalja is a well-established Croatian sports fishing society founded in 1973. The organization focuses on promoting fishing sports through competitions and community events, serving a local and regional audience of fishing enthusiasts. Their website reflects a community-oriented non-profit model with clear contact information and active event updates. Technically, the site uses a modern tech stack including AMP for mobile optimization, Bootstrap for responsive design, and JavaScript libraries for enhanced user experience. However, the CMS is custom or unknown, and hosting details are not explicit. Security posture is moderate; HTTPS is used, and cookie consent is implemented, but security headers and vulnerability disclosures are lacking. Privacy compliance is basic with a cookie banner and a linked cookie policy page but no explicit privacy policy or terms of service pages. Overall, the website is professional and trustworthy but could improve in security and compliance areas.