Skip to main content
Local BusinessMixed

SEO Report: apprrr.hr

Generated 8 maý 2026 · 45 findings · 10.8s

89
report.overallScore
88
seo
90
security
0
performance
92
accessibility
85
Best Practices

Service businesses need to dominate local search results with correct NAP data, reviews, and local signals to attract nearby customers.

Score Breakdown

Average Local Business score: 54

seo
88(+40 vs avg)
security
90(+28 vs avg)
performance
0(-50 vs avg)
accessibility
92(+36 vs avg)
Best Practices
85(+25 vs avg)

Score Projection

Estimated improvement based on the findings in this report

Current score: 89Projected score: 94
Current score
Free (+1)
Starter (+3)
Pro (+1)

Ready to improve your SEO?

Start a free trial and see how your score can improve.

Module Breakdown

headers
108 findings
reputation
208 findings
content
644 findings
technology
704 findings
page experience
702 findings
log analyzer
702 findings
rate limits
753 findings
news mentions
751 finding
structured data
784 findings
brand checker
802 findings
dns
853 findings
uptime checker
851 finding
accessibility
921 finding
sitemap
951 finding
cookies
100
ssl
100
meta
100
robots
100
mobile
1001 finding
layout scan
100
social checker
100
crawl budget
100
indexing checker
100

All Findings (43)

Critical (4)

  • highheaders

    Missing strict-transport-security

    HSTS header is missing. The site may be vulnerable to downgrade attacks.

    Add Strict-Transport-Security header with max-age of at least 31536000

  • highcontent

    No H1 tag found

    The page has no H1 heading

    Add exactly one H1 tag with the primary keyword

  • highpage experience

    Intrusive interstitials detected

    Found 3 potential popup/overlay elements

    Reduce intrusive interstitials — they hurt mobile experience and can trigger Google penalties

  • highreputation

    Missing AggregateRating in schema

    Found GovernmentOrganization/Organization schema without AggregateRating — missing rich snippet opportunity

    Add aggregateRating with ratingValue, ratingCount, and bestRating to your structured data for star ratings in search results

Medium (18)

  • mediumheaders

    Missing content-security-policy

    CSP header is missing. The site may be vulnerable to XSS attacks.

    Add a Content-Security-Policy header to restrict resource loading

  • mediumheaders

    Missing x-content-type-options

    X-Content-Type-Options is missing. MIME-sniffing attacks are possible.

    Add X-Content-Type-Options: nosniff header

  • mediumheaders

    Missing x-frame-options

    X-Frame-Options is missing. The site may be vulnerable to clickjacking.

    Add X-Frame-Options: DENY or SAMEORIGIN header

  • mediumstructured data

    Missing @type in schema

    A structured data object has no @type

    Add a @type property (e.g. Organization, WebSite)

  • mediumtechnology

    Render-blocking scripts

    29 scripts load synchronously without async/defer

    Add async or defer to non-critical scripts to improve page load speed

  • mediumcontent

    External links without noopener

    3 external links with target="_blank" lack rel="noopener"

    Add rel="noopener noreferrer" to all target="_blank" links

  • mediumaccessibility

    Missing main landmark

    No <main> element or role="main" found

    Wrap primary content in a <main> element for screen reader navigation

  • mediumrate limits

    No rate limiting detected

    10 rapid requests all succeeded without any rate-limit headers or 429 responses. The site may be vulnerable to abuse.

    Implement rate limiting (e.g., 429 Too Many Requests) to protect against brute-force attacks

  • mediumuptime checker

    Slow response time

    Average response time is 2420ms (should be < 2000ms)

    Optimize server response time — consider CDN, caching, or server upgrades

  • mediumbrand checker

    No Organization schema

    No Organization JSON-LD found

    Add Organization structured data with name, logo, and contact information

  • mediumlog analyzer

    Server version exposed

    Server header reveals version: Microsoft-IIS/10.0

    Remove version numbers from the Server header to reduce attack surface

  • mediumlog analyzer

    X-Powered-By header exposed

    X-Powered-By: PHP/8.4.14, ASP.NET

    Remove the X-Powered-By header to reduce information leakage

  • mediumreputation

    No review platform links found

    No links to Trustpilot, Google Business, TripAdvisor, Yelp, G2, Capterra, or Glassdoor detected on the homepage

    Add links to your review profiles to build trust signals and improve local SEO

  • mediumreputation

    LocalBusiness missing "telephone"

    LocalBusiness/Organization schema found but "telephone" is not set

    Add "telephone" to your LocalBusiness schema for better local search visibility

  • mediumreputation

    LocalBusiness missing "openingHours"

    LocalBusiness/Organization schema found but "openingHours" is not set

    Add "openingHours" to your LocalBusiness schema for better local search visibility

  • mediumreputation

    LocalBusiness missing "geo"

    LocalBusiness/Organization schema found but "geo" is not set

    Add "geo" to your LocalBusiness schema for better local search visibility

  • mediumreputation

    LocalBusiness missing "priceRange"

    LocalBusiness/Organization schema found but "priceRange" is not set

    Add "priceRange" to your LocalBusiness schema for better local search visibility

  • mediumreputation

    LocalBusiness missing "image"

    LocalBusiness/Organization schema found but "image" is not set

    Add "image" to your LocalBusiness schema for better local search visibility

Low (21)

  • lowdns

    No IPv6 (AAAA) records

    The domain has no AAAA records for IPv6 connectivity

    Add AAAA DNS records for IPv6 support

  • lowdns

    DMARC policy is 'none'

    DMARC is set but policy is 'none' (monitoring only).

    Consider upgrading DMARC policy to 'quarantine' or 'reject'

  • lowdns

    Only one MX record (no redundancy)

    A single MX record means no failover if the mail server goes down.

    Add a secondary MX record for email redundancy

  • lowheaders

    Missing referrer-policy

    Referrer-Policy is not set. Full URLs may leak to third parties.

    Add Referrer-Policy: strict-origin-when-cross-origin

  • lowheaders

    Missing permissions-policy

    Permissions-Policy is missing.

    Add Permissions-Policy to restrict browser feature access

  • lowheaders

    Server header exposes software

    Server: Microsoft-IIS/10.0

    Remove or obfuscate the Server header to reduce information leakage

  • lowheaders

    X-Powered-By exposes technology

    X-Powered-By: PHP/8.4.14, ASP.NET

    Remove the X-Powered-By header

  • lowstructured data

    Missing Organization schema

    No Organization or LocalBusiness structured data found

    Add Organization schema with name, logo, and contact info

  • lowstructured data

    Missing WebSite schema

    No WebSite structured data found

    Add WebSite schema with SearchAction for sitelinks search box

  • lowsitemap

    Sitemap not updated recently

    Newest lastmod is 2025-09-18T06:38:35+00:00 (232 days ago)

    Keep sitemap lastmod dates current

  • lowtechnology

    Many inline scripts

    18 inline <script> blocks found

    Move inline scripts to external files for caching and CSP compliance

  • lowtechnology

    Many external CSS files

    42 external stylesheets loaded

    Consider bundling CSS files to reduce HTTP requests

  • lowtechnology

    Many third-party domains

    17 external domains — may impact performance and privacy

    Reduce third-party dependencies or self-host critical resources

  • lowcontent

    Low text-to-HTML ratio

    Text/HTML ratio is 3% (recommended: >5%)

    Consider adding more descriptive text content

  • lowcontent

    Empty anchor links

    6 links point to "#" or "javascript:void(0)"

    Use proper URLs or button elements instead of empty anchors

  • lowrate limits

    No WAF detected

    No Web Application Firewall (Cloudflare, AWS, Akamai, Vercel, Sucuri, Fastly) was detected in response headers.

    Consider using a WAF to protect against common web attacks (XSS, SQL injection, DDoS)

  • lowrate limits

    No bot protection detected

    No CAPTCHA, challenge page, or bot detection was triggered during rapid requests.

    Consider implementing bot protection (e.g., Cloudflare Turnstile, hCaptcha) for sensitive endpoints

  • lownews mentions

    No press or news presence

    No press pages found on the site and no external news mentions detected

    Create a /news or /press page with company updates — this builds authority and earns links

  • lowbrand checker

    No web app manifest

    No manifest.json linked — PWA features unavailable

    Add a web app manifest for installability and brand customization

  • lowpage experience

    No resource hints

    No preload or preconnect hints found

    Add preload for critical resources and preconnect for important third-party origins

  • lowreputation

    Only 0 sameAs entries

    Found 0 sameAs URLs across all JSON-LD entities — search engines use sameAs to verify brand identity

    Add sameAs URLs for all your social profiles, Wikipedia page, and business directory listings (aim for 3+)

AI Fix Prompt

Copy this prompt into ChatGPT or Claude to get step-by-step fix instructions

Fix all SEO issues found in the audit of apprrr.hr.

Prioritize high-severity issues first, then medium. For each fix, make the actual code change — don't just describe what to do.

```json
{
  "domain": "apprrr.hr",
  "scores": {
    "overall": 89,
    "performance": 0,
    "seo": 88,
    "accessibility": 92,
    "bestPractices": 85,
    "security": 90
  },
  "findings": [
    {
      "module": "headers",
      "severity": "high",
      "title": "Missing strict-transport-security",
      "description": "HSTS header is missing. The site may be vulnerable to downgrade attacks.",
      "recommendation": "Add Strict-Transport-Security header with max-age of at least 31536000"
    },
    {
      "module": "headers",
      "severity": "medium",
      "title": "Missing content-security-policy",
      "description": "CSP header is missing. The site may be vulnerable to XSS attacks.",
      "recommendation": "Add a Content-Security-Policy header to restrict resource loading"
    },
    {
      "module": "headers",
      "severity": "medium",
      "title": "Missing x-content-type-options",
      "description": "X-Content-Type-Options is missing. MIME-sniffing attacks are possible.",
      "recommendation": "Add X-Content-Type-Options: nosniff header"
    },
    {
      "module": "headers",
      "severity": "medium",
      "title": "Missing x-frame-options",
      "description": "X-Frame-Options is missing. The site may be vulnerable to clickjacking.",
      "recommendation": "Add X-Frame-Options: DENY or SAMEORIGIN header"
    },
    {
      "module": "structured-data",
      "severity": "medium",
      "title": "Missing @type in schema",
      "description": "A structured data object has no @type",
      "recommendation": "Add a @type property (e.g. Organization, WebSite)"
    },
    {
      "module": "technology",
      "severity": "medium",
      "title": "Render-blocking scripts",
      "description": "29 scripts load synchronously without async/defer",
      "recommendation": "Add async or defer to non-critical scripts to improve page load speed"
    },
    {
      "module": "content",
      "severity": "high",
      "title": "No H1 tag found",
      "description": "The page has no H1 heading",
      "recommendation": "Add exactly one H1 tag with the primary keyword"
    },
    {
      "module": "content",
      "severity": "medium",
      "title": "External links without noopener",
      "description": "3 external links with target=\"_blank\" lack rel=\"noopener\"",
      "recommendation": "Add rel=\"noopener noreferrer\" to all target=\"_blank\" links"
    },
    {
      "module": "accessibility",
      "severity": "medium",
      "title": "Missing main landmark",
      "description": "No <main> element or role=\"main\" found",
      "recommendation": "Wrap primary content in a <main> element for screen reader navigation"
    },
    {
      "module": "rate-limits",
      "severity": "medium",
      "title": "No rate limiting detected",
      "description": "10 rapid requests all succeeded without any rate-limit headers or 429 responses. The site may be vulnerable to abuse.",
      "recommendation": "Implement rate limiting (e.g., 429 Too Many Requests) to protect against brute-force attacks"
    },
    {
      "module": "uptime-checker",
      "severity": "medium",
      "title": "Slow response time",
      "description": "Average response time is 2420ms (should be < 2000ms)",
      "recommendation": "Optimize server response time — consider CDN, caching, or server upgrades"
    },
    {
      "module": "brand-checker",
      "severity": "medium",
      "title": "No Organization schema",
      "description": "No Organization JSON-LD found",
      "recommendation": "Add Organization structured data with name, logo, and contact information"
    },
    {
      "module": "page-experience",
      "severity": "high",
      "title": "Intrusive interstitials detected",
      "description": "Found 3 potential popup/overlay elements",
      "recommendation": "Reduce intrusive interstitials — they hurt mobile experience and can trigger Google penalties"
    },
    {
      "module": "log-analyzer",
      "severity": "medium",
      "title": "Server version exposed",
      "description": "Server header reveals version: Microsoft-IIS/10.0",
      "recommendation": "Remove version numbers from the Server header to reduce attack surface"
    },
    {
      "module": "log-analyzer",
      "severity": "medium",
      "title": "X-Powered-By header exposed",
      "description": "X-Powered-By: PHP/8.4.14, ASP.NET",
      "recommendation": "Remove the X-Powered-By header to reduce information leakage"
    },
    {
      "module": "reputation",
      "severity": "medium",
      "title": "No review platform links found",
      "description": "No links to Trustpilot, Google Business, TripAdvisor, Yelp, G2, Capterra, or Glassdoor detected on the homepage",
      "recommendation": "Add links to your review profiles to build trust signals and improve local SEO"
    },
    {
      "module": "reputation",
      "severity": "high",
      "title": "Missing AggregateRating in schema",
      "description": "Found GovernmentOrganization/Organization schema without AggregateRating — missing rich snippet opportunity",
      "recommendation": "Add aggregateRating with ratingValue, ratingCount, and bestRating to your structured data for star ratings in search results"
    },
    {
      "module": "reputation",
      "severity": "medium",
      "title": "LocalBusiness missing \"telephone\"",
      "description": "LocalBusiness/Organization schema found but \"telephone\" is not set",
      "recommendation": "Add \"telephone\" to your LocalBusiness schema for better local search visibility"
    },
    {
      "module": "reputation",
      "severity": "medium",
      "title": "LocalBusiness missing \"openingHours\"",
      "description": "LocalBusiness/Organization schema found but \"openingHours\" is not set",
      "recommendation": "Add \"openingHours\" to your LocalBusiness schema for better local search visibility"
    },
    {
      "module": "reputation",
      "severity": "medium",
      "title": "LocalBusiness missing \"geo\"",
      "description": "LocalBusiness/Organization schema found but \"geo\" is not set",
      "recommendation": "Add \"geo\" to your LocalBusiness schema for better local search visibility"
    },
    {
      "module": "reputation",
      "severity": "medium",
      "title": "LocalBusiness missing \"priceRange\"",
      "description": "LocalBusiness/Organization schema found but \"priceRange\" is not set",
      "recommendation": "Add \"priceRange\" to your LocalBusiness schema for better local search visibility"
    },
    {
      "module": "reputation",
      "severity": "medium",
      "title": "LocalBusiness missing \"image\"",
      "description": "LocalBusiness/Organization schema found but \"image\" is not set",
      "recommendation": "Add \"image\" to your LocalBusiness schema for better local search visibility"
    }
  ]
}
```

Recommendations for your industry

  • 1Optimize Google Business profile
  • 2Add Service/LocalBusiness schema
  • 3Integrate customer reviews with Review schema
  • 4Ensure consistent NAP data across all pages
  • 5Create profiles in local business directories

SEO Checklist for Local Business

Tips for Mixed websites

  • Define clear landing pages for each segment
  • Use different meta strategies per page group
  • Segment sitemap by content type
Start your free trial

Use Ctrl+P / Cmd+P to save as PDF