Website Security
Guard

B

Bajotecho

bajotecho.com.mx

63

Score

Bajotecho is a professional real estate agency based in Mexico, specializing in the buying and selling of properties with a focus on personalized service and certified expertise through AMPI. The company offers comprehensive services including professional photography, social media marketing, legal and fiscal advisory, and client support to maximize property value. Their market position is that of a trusted, small-sized agency with a clear emphasis on quality and client trust. Technically, the website is built on a modern Next.js framework with React, ensuring fast performance, mobile optimization, and good accessibility. The site uses HTTPS with strong security headers, indicating a solid security posture. However, there is no visible cookie consent mechanism or published security/incident response policies, which are areas for improvement. Security-wise, the site demonstrates good practices such as secure forms and no exposed sensitive data, but the absence of WHOIS data limits full trust verification of the domain. The privacy policy is comprehensive and GDPR compliant, supporting privacy compliance. Overall, the website is professional and trustworthy but would benefit from enhanced transparency in security and privacy mechanisms. Strategically, Bajotecho should focus on publishing terms of service, cookie consent, and security policies to improve compliance and trust. Verifying and publishing domain registration details would also enhance legitimacy. These steps will strengthen their security posture and business credibility in the competitive real estate market.

T

travex-energy.de

travex-energy.de

55

Score

Travex Energy operates in the energy sector, likely providing energy-related services or trading solutions. The website is built on WordPress and uses standard web technologies including Google Fonts and JavaScript. The site content is minimal and lacks detailed business or security information, with no visible privacy or cookie policies, contact details, or social media presence. Security posture is basic, with no detected security headers or vulnerability disclosures. WHOIS data indicates a legitimate domain registration consistent with a German business. Overall, the website shows a low to moderate level of digital maturity and security readiness.

N

NightCord

nightcord.online

53

Score

Nightcord is a niche technology company offering a custom Discord client enhanced with unique features and third-party plugins. The company targets Discord users seeking additional functionalities beyond the official client. The business model revolves around open-source software distribution with downloadable installers and plugin support, positioning itself as a specialized alternative in the Discord ecosystem. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Nuxt.js and Vue.js, hosted with Cloudflare DNS services, ensuring good performance and accessibility. Security posture is strong with HTTPS and security headers properly implemented, though the site lacks explicit privacy, cookie, and security policies. No contact information is readily available, which slightly impacts business credibility. Overall, the website is trustworthy, safe, and well-maintained, but could improve compliance and transparency aspects.

K

Kasper Bergholt

bergholt.art

40

Score

The website bergholt.art serves as a personal portfolio and link aggregation platform for Kasper Bergholt, a Copenhagen-based artist and photographer with academic credentials from the University of Copenhagen. The site showcases various art projects, photography series, music interests, and technical essays, targeting art enthusiasts and academic audiences. The business model is primarily personal branding and portfolio presentation without commercial transactions or e-commerce. The market position is niche and specialized within the art and photography community. Technically, the website is built with clean HTML5 and CSS3, featuring modern styling and responsive design optimized for mobile devices. It uses JSON-LD structured data to enhance SEO and semantic understanding. Hosting and domain registration are managed through PDR Ltd. with DNS nameservers under get.art. Performance is moderate with no detected heavy scripts or analytics, indicating a lightweight and privacy-conscious approach. From a security perspective, the site uses HTTPS (implied by domain and modern standards though SSL details are unknown), but lacks visible security headers and policies such as privacy, cookie, or terms of service. WHOIS data is privacy protected but shows an anomalous future creation date, which reduces trust slightly. No forms or contact emails are provided, limiting direct communication channels and incident response readiness. No tracking or advertising scripts are present, enhancing privacy but also indicating minimal marketing or analytics. Overall, the site is safe, professional, and focused on artistic content with moderate trustworthiness. Strategic improvements include adding privacy and cookie policies, security headers, and clear contact information to enhance compliance and trust. Addressing the WHOIS data anomaly would also improve legitimacy perception.

Madbevægelsen.dk is a niche Danish website launched in 2010 that serves as a comprehensive index and archive of Danish food blogs. It aggregates links to approximately 200 food blogs, many of which are no longer active, redirecting users to archived versions on the Wayback Machine. The site targets Danish food enthusiasts and bloggers, providing historical and culinary content without commercial or transactional features. Technically, the site is simple, built with basic HTML and meta tags, lacking modern CMS or advanced frameworks. It does not implement visible security headers or HTTPS enforcement, and no privacy or cookie policies are present. The absence of WHOIS data limits domain legitimacy verification, but the content and structure suggest a legitimate, small-scale archival project. Overall, the site has a basic security posture and limited privacy compliance, with no evident vulnerabilities or malicious content.

K

Kasper Bergholt

bergholt.net

46

Score

Kasper Bergholt's website serves as a digital portfolio showcasing his art and photography projects, primarily focused on themes related to Copenhagen and Danish culture. The site positions itself as a niche artist platform with a small-scale, personal business model centered on artistic expression and exhibitions. Technically, the website is built on WordPress with a custom theme and uses Matomo analytics configured to disable cookies, reflecting some privacy awareness. The site is moderately optimized for mobile and SEO, with good content quality and navigation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no formal privacy or cookie policies are present. Overall, the site is trustworthy for its purpose but would benefit from enhanced privacy compliance and security hardening.

P

Productboard

productboard.com

70

Score

Productboard is a leading product management software provider offering a comprehensive SaaS platform that helps product managers and teams understand customer needs, prioritize features, and align stakeholders around product roadmaps. The company targets enterprises and fast-scaling startups, boasting a strong customer base including Autodesk, Salesforce, and Coca-Cola. Their platform integrates AI capabilities to enhance workflows such as customer insights, strategic planning, and product operations. Technically, the website is built on modern frameworks like Next.js and React, uses Builder.io as CMS, and integrates marketing and analytics tools such as Marketo and Google Tag Manager. The site is well-optimized for SEO, mobile, and accessibility, providing a professional user experience. Security posture is strong with HTTPS, security headers, and secure forms, though explicit vulnerability disclosure and incident response contacts are not publicly available. Overall, the website reflects a mature, trustworthy business with a solid digital presence.

O

ottawa.place

ottawa.place

56

Score

ottawa.place is a community-driven Mastodon instance serving residents of Ottawa, Gatineau, and surrounding regions. It provides a decentralized social networking platform leveraging Mastodon and the Hometown fork, targeting local users interested in federated social media. The platform is small in scale with approximately 88 active users, emphasizing community engagement without commercial advertising or tracking. The website content is bilingual and focuses on promoting local social connectivity within the fediverse ecosystem. Technically, the site uses modern web technologies including JavaScript ES modules and CSS, with a responsive design suitable for mobile users. The platform is hosted securely with HTTPS enforced, though lacks some advanced security headers and cookie consent mechanisms. Security posture is moderate with no visible vulnerabilities or exposed sensitive data. Privacy compliance is basic, with a privacy policy present but no cookie consent or terms of service pages. Business credibility is moderate given the clear administration presence and active user base, though contact information is not publicly disclosed. Overall, ottawa.place represents a legitimate, community-focused social platform with room for improvement in security and privacy transparency.

P

PopAI Technologies

popaitechnologies.com

61

Score

PopAI Technologies is a technology company specializing in advanced AI automation solutions, offering proprietary AI agents and sovereign deployment infrastructure tailored for enterprise clients. Their market position is that of an innovative AI provider focused on delivering human-in-the-loop verified AI services to optimize business workflows and profitability. The website demonstrates a mature technical infrastructure built on modern frameworks like Next.js and React, hosted with Cloudflare DNS and CDN services, and integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and domain transfer protection, but lacks DNSSEC and explicit security policies on the site. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional, well-branded, and targets enterprise customers seeking AI-driven operational transformation.

S

SAKRET

sakret.lv

55

Score

SAKRET operates as a medium-sized manufacturing and e-commerce business specializing in construction materials such as paints, coatings, insulation systems, and fillers. The company targets construction professionals and retail customers primarily in Latvia, offering a comprehensive product catalog organized by product type and application. The website is built on the Magento 2 platform, leveraging modern JavaScript libraries and Magento modules to provide a responsive and structured user experience. Security measures include HTTPS enforcement and Magento Captcha integrations, though there is room for improvement in security headers and published policies. Overall, the site is professionally designed with good navigation and content relevance but lacks visible privacy and cookie policies, which impacts compliance and trust. The domain registration details align well with the business claims, supporting legitimacy. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and security posture.

G

Google LLC

youtube.com

76

Score

YouTube, owned by Google LLC, is the world's leading online video sharing and streaming platform, serving a global audience with diverse content ranging from entertainment to education. The platform operates on a robust advertising-based business model complemented by premium subscription services. Its market position as a dominant player in the technology and media sectors is well established, supported by a comprehensive suite of video hosting, content creation, and advertising services. Technically, YouTube leverages modern web technologies including Polymer, service workers, and Google APIs, hosted on Google's global infrastructure, ensuring fast performance and excellent mobile optimization. Security-wise, the site enforces HTTPS, employs strong security headers, and maintains best practices in privacy and data protection, including GDPR compliance. No critical vulnerabilities or suspicious patterns were detected, and the domain is highly trusted despite WHOIS privacy protection. Overall, YouTube demonstrates a mature digital presence with strong business credibility and security posture.

E

Eldia Studio

eldia-studio.eu

50

Score

Eldia Studio is a small technology-focused fullstack agency specializing in custom Discord bots, bespoke PHP/MySQL web development, OSINT lookup engines, PC optimization utilities, and high-speed hosting services. The company positions itself as a premium partner offering tailored digital solutions with a strong emphasis on client project management and secure development practices. The website presents a professional and consistent brand image with clear service descriptions and pricing models, targeting businesses and clients seeking custom automation and hosting solutions. Technically, the website is built using standard web technologies including PHP, MySQL, JavaScript, CSS, and HTML. It is hosted by HOSTINGER operations, UAB, a reputable hosting provider. The site demonstrates good performance, mobile optimization, and SEO practices but lacks advanced frameworks or CMS indications. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS (implied by the URL), but no explicit security headers were found in the provided data. The site mentions secure session validation and encrypted developer chat, indicating some security awareness. However, the absence of privacy, cookie, and terms of service policies, as well as lack of incident response or vulnerability disclosure information, suggests gaps in compliance and transparency. Overall, Eldia Studio's website is professional and trustworthy with a solid business model and technical foundation. To improve security posture and compliance, the company should implement and publish privacy and cookie policies, add security headers, provide clear contact information for security incidents, and establish vulnerability disclosure procedures.