Security Directory

P

Persimmon Homes

persimmonhomes.com

73

Persimmon Homes is a leading UK home builder established in 1972, operating nationwide with a strong market presence and recognized 5 Star builder status. The company offers a wide range of new homes and supportive buying schemes targeting first-time buyers and families. Their website reflects a mature digital infrastructure using Umbraco CMS, integrated analytics, and marketing tools, with a focus on user experience and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response disclosures could be improved. The absence of WHOIS data is a notable concern but does not detract from the overall legitimacy indicated by the website content and branding. Strategic recommendations include enhancing security headers, publishing security policies, and improving domain transparency.

E

East Lindsey Fire Protection Services Ltd

elfps.co.uk

54

East Lindsey Fire Protection Services Ltd is a UK-based small business specializing in fire protection services including industrial fire and rescue cover, fire extinguisher maintenance, detection, and suppression systems. The company targets businesses and organizations requiring fire safety solutions, positioning itself as a local specialist. The website is professionally designed using the Wix platform, featuring structured data and social media integration, indicating a moderate level of digital maturity. Technically, the site uses modern JavaScript libraries and is hosted on Wix, with good mobile optimization and basic SEO. Security posture is adequate with HTTPS enabled and error monitoring via Sentry, but lacks important security headers and privacy compliance elements. The absence of WHOIS data due to domain naming rules violation reduces trustworthiness but the live, professional site suggests legitimate operations. Overall, the website is functional and credible but would benefit from enhanced privacy, security policies, and WHOIS transparency.

D

Disappearing Ink » Professional Laser Aesthetics

disappearing-ink.co.uk

42

Disappearing Ink is a small UK-based professional laser aesthetics service provider with a domain registered since 2010. The website is built on WordPress using WPBakery Page Builder and UIkit framework, indicating a moderate level of technical maturity. The site integrates Facebook SDK for social media but lacks visible privacy, cookie, or terms of service policies, which impacts its compliance posture. Security headers are not detected, and no explicit contact information is found in the analyzed content, suggesting areas for improvement in transparency and security. Overall, the business appears legitimate with a stable domain history but would benefit from enhanced privacy and security practices.

Spirit Hair Design is a small, established hairdressing salon based in Christchurch, UK, operating since 2001. The business offers a comprehensive range of hairdressing services including cuts, colours, wedding packages, and discount schemes targeting students, NHS staff, and children. The website reflects a professional local business with clear contact details and a focus on customer care and quality products. Technically, the site is built using Adobe Muse with a static architecture and includes common web technologies such as jQuery and RequireJS. While the site is accessible and functional, it lacks modern security headers and privacy compliance features. The Facebook SDK is loaded insecurely over HTTP, posing a mixed content risk. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and contact information appear genuine. Overall, the site demonstrates moderate digital maturity with room for security and compliance improvements.

D

Diena

diena.lv

51

Diena.lv is the largest national newspaper and news portal in Latvia, providing comprehensive news coverage across various sectors including local, international, sports, culture, and lifestyle. The website supports subscription services and integrates multiple advertising and analytics platforms to monetize and analyze user engagement. The technical infrastructure is modern with HTTPS enforcement, use of popular web fonts, social media SDKs, video players, and ad networks. Security posture is solid with appropriate headers and no visible vulnerabilities, though explicit privacy and terms of service documents are not found, indicating room for compliance improvement. Overall, the site is professional, content-rich, and trustworthy, serving a broad general audience with safe content.

L

LSC

lscgroup.lv

58

LSC is a Latvian maritime transportation and ship management company with a significant fleet and workforce, delivering cargoes globally. Their website reflects a mature business with clear service offerings in technical management, crew management, safety, and legal/accounting services. The company targets maritime professionals and clients seeking reliable shipping services. Technically, the website is built on WordPress with modern SEO and security features like HTTPS and hCaptcha, though it lacks some advanced security headers and explicit incident response information. Overall, the security posture is solid but could be improved with better header implementation and transparency on security policies. The site is professional, well-branded, and trustworthy, with clear contact details and social media presence. No blocking or WAF interference was detected, allowing full content access and analysis.

P

PCexpres

pcexpres.sk

52

PCexpres is a Slovakian company specializing in the service, buyback, and sale of electronic devices, particularly mobile phones and smart gadgets. The website presents a focused retail and service business model targeting general consumers in Slovakia. The company leverages the Shoptet e-commerce platform, integrating common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook SDK for user engagement and tracking. The site is well-structured with good design quality and mobile optimization, although it lacks explicit privacy and terms of service documentation. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but could be improved by adding explicit security headers and updating outdated libraries. Overall, the domain registration data aligns with the business claims, indicating legitimacy and consistent operation.

L

LawNewz

lawandcrime.com

61

Law & Crime is a specialized media company focused on delivering live courtroom streaming and in-depth legal and crime news analysis. Established in 2009, it serves a general audience interested in legal affairs and crime stories, leveraging video content, podcasts, and live trial coverage to engage users. The website is professionally designed with consistent branding and clear navigation, supporting a medium-sized media business model reliant on advertising and subscriptions. Technically, the site is built on WordPress, uses Cloudflare DNS, and integrates multiple third-party advertising and analytics services, including Google Analytics, AdThrive, and OneSignal for push notifications. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is solid with HTTPS enforced and domain status protections, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the site is trustworthy, with no signs of blocking or malicious content, and maintains an extensive social media presence.

M

Mladinska knjiga

mladinska-knjiga.si

60

Mladinska knjiga is a leading Slovenian publishing and retail company specializing in books, magazines, school supplies, and office materials. The website reflects a mature digital presence with a comprehensive catalog, multimedia content, and active marketing channels. The company targets a broad audience including children, students, and general readers, positioning itself as a cultural and educational hub in Slovenia. Technically, the site is built on Drupal 8, integrating modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Hotjar, ensuring good performance and user experience across devices. Security posture is solid with HTTPS, cookie consent, and domain verification, though explicit security policies and vulnerability disclosures are absent. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

G

Global Services Slovakia s.r.o.

spravodajstvo.sk

42

The website www.spravodajstvo.sk operates as a Slovak-language PR and SEO article publishing platform primarily serving Slovak businesses and individuals seeking to publish PR news, SEO articles, and build backlinks. The business is operated by Global Services Slovakia s.r.o., which is consistently represented in both the website content and WHOIS registration data. The platform offers free and paid services including article publication, company catalog listings, and market monitoring. Technically, the site uses an older jQuery version alongside Google Analytics, Google Adsense, Facebook SDK, and Google reCAPTCHA for form protection. The site is hosted on HTTPS with basic security measures but lacks advanced security headers and uses outdated libraries, which may pose security risks. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism despite tracking scripts. Overall, the site is professionally presented with good content quality and navigation, but technical and privacy improvements are recommended.

G

Golf Channel

golfchannel.com

48

Golf Channel is a prominent media brand specializing in golf-related content including live streams, news, videos, and podcasts. It operates under the NBC Sports Group umbrella, targeting golf enthusiasts and sports fans primarily in the United States. The website offers a rich multimedia experience with integrated live streaming and extensive editorial content, positioning itself as a leading golf media outlet. Technically, the site employs modern technologies such as JW Player for video streaming, OneTrust for cookie consent, and various advertising and analytics platforms, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, implements key security headers, and maintains privacy compliance with GDPR indicators, although it lacks a public security policy or incident response contact. The WHOIS data is unavailable or privacy protected, which is common for large media brands but slightly reduces transparency. Overall, the site is professional, secure, and trustworthy with excellent content quality and user experience.

I

Istarski filmski ured

istriafilmcommission.com

44

Istarski filmski ured is a regional film commission established in 2015 under the Istarska kulturna agencija (IKA) to promote and facilitate audiovisual production in the Istria region of Croatia. The website serves as an informational and promotional platform targeting filmmakers and producers, offering services such as location scouting, permit facilitation, and liaison with public and private entities. Technically, the site is built on WordPress using the Divi theme and several plugins for multilingual support, SEO, accessibility, and cookie compliance. The security posture is adequate with HTTPS enabled and some security best practices observed, though there is room for improvement in security headers and incident response visibility. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service. The absence of WHOIS data for the domain is a notable concern, impacting trust and legitimacy assessment. Overall, the site is professional, content-rich, and serves its business purpose well, but could enhance transparency and security practices.

N

NBC Sports

nbcsportsedge.com

67

NBC Sports operates a comprehensive fantasy sports media platform under the Rotoworld brand, delivering news, videos, stats, and live coverage to fantasy sports enthusiasts primarily in the United States. The website is part of the larger NBCUniversal media conglomerate, reflecting a strong market position in sports media. The platform leverages a modern technical infrastructure including Brightspot CMS, JWPlayer for video, and multiple advertising and analytics services to deliver a rich user experience. Privacy compliance is well addressed with cookie consent mechanisms and clear privacy policies. Security posture is solid with HTTPS and standard best practices, though some security headers could be enhanced. Overall, the site demonstrates a mature digital presence with professional content and branding consistency.

A

Access

accessonline.com

58

The website www.accessonline.com presents itself as an entertainment news platform branded as 'Access', focusing on celebrity news, TV, music, and movie videos. The content is professionally structured with good design and moderate technical implementation, including the use of modern JavaScript libraries and advertising networks. However, the WHOIS data for the domain is missing, indicating the domain may not be registered or is inactive, which raises concerns about the legitimacy of this specific domain. The website lacks visible privacy, cookie, and terms of service policies, as well as contact information, which are critical for compliance and user trust. Security posture is weak with no detected security headers or explicit security policies, and the site relies heavily on third-party advertising and tracking scripts. Overall, the site is safe for general audiences but requires significant improvements in security, privacy compliance, and business credibility to enhance trustworthiness.

D

Designspiration - Design Inspiration | Inspirational Art, Photography & Typography Images

designspiration.com

49

Designspiration is a niche technology platform focused on providing design inspiration through an image and color search engine. It targets creative professionals and enthusiasts who seek to create mood boards and find art, design, logos, photography, and UI inspiration. The platform offers a freemium business model with a Pro subscription for enhanced features and includes a browser extension to facilitate saving creative inspiration. The website is professionally designed with consistent branding and good content quality, though explicit business registration details are not available. Technically, the website uses modern JavaScript technologies, integrates Google Tag Manager for analytics, Stripe for payment processing, and social media SDKs for user engagement. The site is moderately optimized for performance and mobile use, with basic accessibility and good SEO practices. However, no CMS or hosting provider information is discernible from the content. From a security perspective, the site uses HTTPS and includes CSRF tokens for form security, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy and cookie policies are not explicitly found, which may impact compliance with GDPR and other regulations. No contact information for security incidents or data protection officers is provided. Overall, the site is accessible and functional with a moderate security posture and some gaps in privacy compliance and transparency. The lack of WHOIS data raises concerns about domain registration legitimacy, which should be further investigated. Strategic improvements in security headers, privacy disclosures, and contact transparency would enhance trust and compliance.

E

Experiment

experiment.com

67

Experiment.com is a well-established crowdfunding platform dedicated to funding and sharing scientific research across diverse disciplines. It serves researchers, scientists, and science enthusiasts by providing a marketplace to fund innovative projects and share findings openly. The platform positions itself as the world's largest open platform for science funding, emphasizing transparency and community engagement. Technically, the website employs modern web technologies including JavaScript frameworks, cloud CDN hosting, and integrates analytics and bot protection tools such as Google Analytics, Mixpanel, Facebook SDK, and Google reCAPTCHA. The site is mobile-optimized with a professional design and clear navigation, supporting a positive user experience. Security-wise, the platform enforces HTTPS, uses reCAPTCHA for bot mitigation, and includes some security headers, though DNSSEC is not enabled and some headers could be added to enhance protection. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Overall, the website demonstrates a mature digital presence with strong business credibility and a secure, user-friendly environment.

C

CreativeLive

creativelive.com

64

CreativeLive is an established online education platform specializing in creative and business skills, offering a wide range of courses in photography, design, craft, music, and entrepreneurship. The platform targets creative professionals and hobbyists seeking flexible learning options. The website integrates modern analytics and marketing technologies, including Google Analytics, Segment, Facebook SDK, and New Relic, indicating a mature digital infrastructure. However, the site is currently in a 'Site Closing' state, which may impact content availability and user engagement. From a security perspective, the website employs HTTPS and includes bot protection via reCAPTCHA, alongside cookie consent mechanisms compliant with privacy regulations. Nonetheless, the absence of explicit privacy policies, terms of service, and contact information reduces transparency and compliance confidence. The lack of WHOIS data further complicates trust assessment, suggesting possible privacy protection or domain registration issues. Overall, the website demonstrates a solid technical foundation and professional content quality but requires improvements in privacy compliance, security headers, and business transparency to enhance trustworthiness and regulatory adherence. Strategic recommendations include publishing comprehensive privacy and terms documents, enhancing security headers, and verifying domain registration details.

D

Dineplan

dineplan.com

10

Dineplan is a South African-focused online restaurant reservation platform offering consumers the ability to book tables, browse menus, and read reviews for over 2,000 restaurants. It also provides reservation software solutions for restaurateurs, positioning itself as a key player in the hospitality sector within South Africa. The website promotes mobile app usage for enhanced user experience and convenience. Technically, the site employs a modern technology stack including Google Maps API, reCAPTCHA, and multiple analytics and marketing tools such as Google Analytics, HubSpot, Hotjar, and TikTok Pixel. Security measures include HTTPS enforcement and CAPTCHA protections on user authentication forms, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain is a notable gap, reducing trustworthiness from a domain registration perspective. Overall, the site is professionally designed, mobile-optimized, and provides comprehensive privacy and terms documentation, supporting a good security and privacy posture.

Fedron BVBA is a Belgian IT services company founded in 2008, specializing in software solutions, custom software development, website creation, and consultancy services in technologies such as PROGRESS, .NET, PHP, and QlikView. The company targets startups, self-employed professionals, small retail businesses, SMEs, and other companies, positioning itself as a flexible and knowledgeable partner in IT. The website reflects a professional and consistent brand image with clear navigation and relevant content for its audience. Technically, the site uses standard JavaScript libraries including Google Analytics and Facebook SDK, hosted under a Belgian registrar consistent with the company's location. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. Security posture is basic with HTTPS enabled but lacking advanced security headers and published security policies. Privacy compliance is limited, with no cookie consent mechanism or explicit GDPR compliance statements. Overall, the site is trustworthy but could benefit from enhanced security and privacy practices.

S

Safety Jogger

safetyjogger.com

65

Safety Jogger is a well-established international brand specializing in safety footwear, workwear, and head protection, with additional lifestyle and adventure shoe lines. The company targets industrial and professional markets globally, supported by a strong dealer network and multiple regional offices. Their website reflects a mature digital presence with comprehensive product information, customer engagement, and multimedia content. Technically, the site leverages modern web technologies including HubSpot CMS, Google Tag Manager, and various analytics and tracking tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response details. The absence of WHOIS data is a minor concern but does not detract significantly from the overall legitimacy given the strong branding and business presence. Strategic recommendations include enhancing security transparency and vulnerability disclosure to further build trust.

H

Hiansa

hiansa.com

56

Hiansa is a Spanish manufacturing company specializing in the production and distribution of steel sandwich panels and profiled sheets, serving industrial, commercial, and architectural sectors. With over 40 years of experience, it holds a strong market position supported by technical expertise and a broad product catalog. The company is part of GRUPO HIEMESA and a member of the Asociación de Fabricantes Españoles de Paneles Sándwich, reinforcing its industry credibility. Technically, the website is built on WordPress with modern JavaScript libraries and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and Smartlook. Privacy compliance is well addressed with a comprehensive cookie policy and consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the overall business presence and content quality indicate a legitimate and professional operation.

B

Bellacer

bellacer.com

55

Bellacer is a medium-sized construction product distributor and service provider based in Andorra, operating under the parent company GRUPO HIEMESA S.L. The company specializes in steel distribution, transformation, industrial supplies, and renewable energy products, serving construction professionals and businesses in the region. Their website is professionally designed, multilingual, and provides comprehensive information about their services and projects. Technically, the site is built on WordPress with modern plugins and integrates social media and analytics tools effectively. Security posture is good with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and incident response information. The absence of WHOIS registration data is a notable concern but does not detract significantly from the overall trustworthiness given the professional presentation and parent company association. Strategic recommendations include enhancing security headers, publishing a security policy, and improving WHOIS transparency.

Focus Rostfrei is a specialized German trade magazine dedicated to stainless, acid-resistant, and heat-resistant steels. It serves industry professionals by providing news, technical articles, event information, and directories. The website is professionally designed using WordPress CMS and integrates multiple plugins for enhanced user experience, including e-paper subscriptions and event management. The site is GDPR compliant with a clear privacy and cookie policy, and it supports multilingual sister publications targeting broader European markets. Technically, the site uses modern web technologies and maintains good performance and mobile optimization. Security posture is solid with HTTPS and secure login forms, though improvements like implementing a Content-Security-Policy header and publishing incident response contacts are recommended. The domain WHOIS data is missing or not publicly available, which raises concerns about registration legitimacy despite the active and professional website presence. Overall, the site is a credible industry resource but should address WHOIS transparency and enhance security headers to improve trust and compliance.

F

Fundacja TV Puls „Pod Dębem”

fundacjapoddebem.pl

61

Fundacja TV Puls „Pod Dębem” is a Polish non-profit organization dedicated to supporting needy seniors in care facilities across Poland. Founded in 2013 by Telewizja Puls Sp. z o.o., the foundation operates through donations, corporate funding, and tax 1.5% contributions. The website presents a professional and consistent brand image, with clear navigation and relevant content targeting donors, partners, and the general public interested in senior welfare. The foundation maintains a strong partnership network and active social media presence, enhancing its outreach and credibility. Technically, the website is built on WordPress, leveraging common plugins such as Cookie Law Info for GDPR compliance and Google Analytics for visitor tracking. The site is hosted by OVH SAS, a reputable provider, and enforces HTTPS with good SSL configuration. Mobile optimization and SEO practices are good, though accessibility could be improved. The cookie consent mechanism is comprehensive, offering granular user control and transparency. From a security perspective, the site benefits from HTTPS and cookie consent but lacks explicit security headers in the provided data. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows a consistent and legitimate domain registration with a long expiry date, supporting the foundation's credibility. No incident response or security policy pages were found, indicating an area for potential enhancement. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations, serving its mission effectively. Strategic improvements in security headers, accessibility, and incident response transparency would further strengthen its posture.

I

Institute of Organic Chemistry and Biochemistry of the CAS

uochb.cz

61

The Institute of Organic Chemistry and Biochemistry of the CAS is a prominent Czech academic research institution specializing in organic chemistry and biochemistry. It operates under the Czech Academy of Sciences and offers extensive research programs, including PhD and postdoctoral opportunities, as well as technology transfer initiatives. The website reflects a well-established organization with a strong academic and scientific focus, targeting researchers, students, and industry collaborators. Technically, the website employs modern web technologies such as Vue.js and integrates multiple third-party services including Google Analytics, Facebook SDK, and Twitter widgets. The site is mobile-optimized, accessible, and features a comprehensive cookie consent mechanism, demonstrating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and anonymizes user data in analytics. However, it lacks explicit published security policies, incident response plans, and vulnerability disclosure information. The absence of WHOIS data limits domain trust verification, though the website content and branding are professional and consistent with a legitimate academic entity. Overall, the website presents a low-risk profile with strong content quality and privacy compliance, but would benefit from enhanced transparency in security policies and domain registration details.

M

Mladinska knjiga

mladinska.com

60

Mladinska knjiga is a leading Slovenian publishing and retail company specializing in books, magazines, school supplies, and office materials. The website reflects a mature digital presence with a strong focus on user engagement through events, newsletters, and social media. The company maintains a consistent brand image and offers a comprehensive product catalog targeting a broad audience including children, students, and businesses. Technically, the site is built on Drupal 8 and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a data-driven approach to customer insights. Security posture is good with HTTPS enforced and consent-based script loading, though improvements can be made by adding explicit security headers and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations.

Museu.ms is a well-established online platform founded in 2010 that serves as one of the largest global cultural heritage resources, providing extensive information on museums, galleries, exhibitions, events, educational programs, and collections worldwide. The platform targets museum visitors, cultural enthusiasts, and museum employees, offering a comprehensive and user-friendly experience with multiple search and filtering options. The website demonstrates consistent branding and regularly updated content, supported by active social media channels and a newsletter subscription service. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Leaflet.js for maps, Google Analytics, Facebook SDK, Twitter widgets, Hotjar, and Google Maps API. The site is mobile-optimized with good SEO practices and basic accessibility features. Hosting details are not explicitly identified, but the site uses a custom CMS inferred from the URL structure and login portals. From a security perspective, the site uses HTTPS with a good SSL configuration and secure login forms. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data, representing areas for improvement. The site uses multiple third-party analytics and tracking tools, with a cookie consent mechanism indicating GDPR compliance. No direct contact emails or phone numbers are publicly available, and no formal security policy or incident response information is found. Overall, Museu.ms presents a trustworthy and professional platform with a solid business model and technical foundation. Strategic recommendations include enabling DNSSEC, implementing security headers, enhancing transparency with contact and security policies, and regularly auditing third-party scripts to maintain security and compliance.

K

Katalozi.net / Svi katalozi na jednom mjestu

katalozi.net

56

Katalozi.net is a Croatian retail catalog aggregation website established in 2012, providing users with access to various promotional catalogs and offers from multiple retailers. The site leverages WordPress CMS with Yoast SEO for content management and optimization, and monetizes through Google Adsense advertising. The technical infrastructure includes Cloudflare DNS and hosting via GoDaddy.com, LLC. The website is well-structured with good navigation and content relevance, targeting general retail consumers in Croatia and neighboring regions. Security posture is moderate with HTTPS enabled and domain registration locks, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. No direct contact or incident response information is provided, limiting transparency. Overall, the site is functional and trustworthy for its business purpose but requires improvements in privacy and security disclosures.

C

Find postal codes in Canada

canadapostalcode.net

9

The website canadapostalcode.net is a niche utility platform providing Canadian postal code lookup services. It allows users to search postal codes by address and also displays the user's current postal code based on GPS location if supported by the browser. The site is small-scale, founded in 2013, and primarily serves a general Canadian audience with free access supported by advertising. The business model is informational with no direct e-commerce or subscription services. Technically, the site uses a basic frontend stack including jQuery 1.8.3, Mapbox GL, Leaflet CSS, and Google Fonts. It integrates third-party services such as Google Analytics, Facebook SDK, Twitter widgets, and Google Adsense for advertising and tracking. Hosting and DNS are managed via Cloudflare, providing HTTPS and DNS-level protections, though DNSSEC is not enabled. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks important security headers like CSP and HSTS. No privacy, cookie, or terms of service policies are published, indicating low privacy compliance. No contact or incident response information is available, which limits transparency and trust. Advertising scripts introduce moderate user tracking, but no critical vulnerabilities or malware indicators were found. Overall, the site is functional and safe for general users but would benefit from improved privacy compliance, enhanced security headers, and clearer business and contact information to increase trust and professionalism.

WhatAltitude.com is a small, niche website created by Jonatan Heyman in 2013 that provides users with altitude information based on their GPS location. The site is a single-purpose informational tool supported by advertising revenue and uses multiple ad networks and tracking services. Technically, the site employs standard web technologies including jQuery, Google Fonts, Google Analytics, and social media SDKs, hosted behind Cloudflare DNS. Security posture is adequate with HTTPS enforced and domain transfer lock enabled, though DNSSEC is not active and security headers are not explicitly detected. Privacy compliance is addressed via an embedded consent management platform, ensuring GDPR adherence. The site lacks formal contact emails or phone numbers and does not provide terms of service or explicit security policies. Overall, the website is safe, professional, and trustworthy for general audiences.

W

What is my address?

whatismyaddress.net

9

The website 'What is my address?' is a small personal project created in 2020 that provides users with their current physical address based on GPS location. It offers an interactive map interface allowing users to fine-tune their location. The site targets general internet users needing quick geolocation services and operates on a free, ad-supported model. The technical infrastructure is built on Flask with Leaflet for mapping, supplemented by common web technologies and third-party analytics and social media integrations. Hosting and DNS are managed via Cloudflare, ensuring basic performance and security. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Business credibility is moderate given the personal nature of the project and limited contact information. Overall, the site is functional and trustworthy for its purpose but would benefit from enhanced security and privacy practices.

WhatIsMyZip.com is a small personal project created by Jonatan Heyman in 2012 to provide users with a simple utility to find their current ZIP code based on GPS location or address input. The website is straightforward, free to use, and monetized through Google Adsense advertising. It targets general internet users who need quick postal code information. Technically, the site uses a Flask backend with Leaflet for mapping and JavaScript Geolocation API for location detection. It integrates social media widgets and analytics for user engagement and tracking. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism. Overall, the site is functional, safe, and trustworthy for general audiences but could improve in security and privacy practices.

Longitude.me is a small technology service operated by Heylab AB, based in Sweden, offering a simple and privacy-conscious real-time location sharing platform. The website is authored by Jonatan Heyman and is part of a portfolio of related travel and location-based projects. The service targets general internet users who want to share their location easily and temporarily. Technically, the site uses modern JavaScript libraries, integrates social media widgets, and is hosted with Cloudflare DNS services. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No direct contact information or incident response details are provided, limiting transparency. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

A

Asociacija „Kraujas“

bukgeras.lt

40

The website bukgeras.lt represents the non-profit initiative "Būk geras" operated by Asociacija „Kraujas", focused on raising awareness about blood cancer and bone marrow donation in Lithuania. It serves as an informational and advocacy platform encouraging donor registration and financial support. The site is well-positioned within the Lithuanian health non-profit sector, targeting the general public and potential donors with educational content and personal stories. Technically, the website is built on WordPress using established libraries such as Bootstrap and Font Awesome, with integration of Google Analytics and Facebook SDK for tracking and social engagement. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, HTTPS is enforced, and cookie consent mechanisms are implemented, though security headers and incident response policies are absent, indicating room for improvement. Overall, the domain registration data aligns well with the website's claims, supporting its legitimacy and trustworthiness.

Valga Kultuurikeskus is a local cultural center based in Valga, Estonia, established in 2010. It serves as a community hub offering a variety of cultural experiences including theater, concerts, exhibitions, cinema, and room rental services. The website effectively communicates event information and provides contact details, positioning itself as a trusted local institution. Technically, the site uses a modern CMS (Greativ) and integrates popular JavaScript libraries and marketing tools such as Facebook Pixel and Google Analytics. However, it lacks published privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing key security headers and vulnerability disclosure mechanisms. Overall, the site is accessible, professionally designed, and serves its target audience well but should improve privacy compliance and security transparency.

F

Fotoklub Čakovec

fotoklub-cakovec.hr

40

Fotoklub Čakovec is a small, local photography club based in Croatia, established in 2008. The organization focuses on photography education, community workshops, exhibitions, and publishing photography-related books. Their website is built on WordPress and uses a variety of plugins to support photo galleries, user interaction, and SEO. The club targets photography enthusiasts including children and adults, providing educational and cultural services. The website content is rich and professionally presented, with consistent branding and good navigation. Technically, the site uses modern web technologies including WordPress 6.4.7, Yoast SEO, and Google Fonts. It is hosted under a Croatian registrar (CARNET) with DNS managed by infoitdns.com. The site is served over HTTPS with good SSL configuration and includes CAPTCHA protection on forms to prevent abuse. However, some security best practices such as security headers are not explicitly detected, and there is no cookie consent mechanism despite GDPR privacy policy presence. From a security perspective, the site shows a moderate security posture with HTTPS, CAPTCHA, and no visible sensitive data exposure. The absence of explicit security headers and lack of published incident response or vulnerability disclosure policies are areas for improvement. The domain registration data is consistent with the website content and business type, indicating legitimacy and trustworthiness. Overall, the website is a well-maintained, content-rich platform for a non-profit photography club with good technical and security foundations but could enhance privacy compliance and security transparency to improve trust and compliance.

S

Sveitarfélagið Skagaströnd

skagastrond.is

58

Sveitarfélagið Skagaströnd operates an official municipal website serving the local community of Skagaströnd, Iceland. The site provides comprehensive information about local government administration, public services, institutions, news, events, and community resources. It targets residents and visitors seeking municipal information and services. The business model is that of a government service portal, focusing on transparency and community engagement. The website is well-branded and consistent with trust indicators such as official contact details and certifications.

T

tufi.sk

tufi.sk

60

Tufi.sk is a Slovakian e-commerce retailer specializing in furniture, home, garden, sports, and hobby products. The website targets general consumers in Slovakia offering a broad product range with a focus on convenience, competitive pricing, and customer satisfaction. The business operates primarily online using the Shoptet e-commerce platform and integrates multiple marketing and analytics tools to optimize user engagement and sales. The site is well-branded and professionally designed, with clear navigation and mobile optimization.

vykup.sk s.r.o. operates a local business in Bratislava, Slovakia, specializing in the purchase of precious metals such as gold and silver, as well as watches, antiques, paintings, and real estate. The company targets general consumers looking to sell these valuables quickly and at market prices. The website provides a basic online calculator for gold and silver valuation and includes contact information and a physical address, reinforcing its local presence. Partner websites suggest a networked business model within the precious metals and pawnshop sector. Technically, the website uses standard web technologies including JavaScript, Google Analytics, and Facebook SDK for tracking and social engagement. The site is moderately optimized with basic mobile and accessibility features but lacks advanced SEO and security headers. The absence of privacy and cookie policies indicates a gap in compliance with GDPR requirements. Forms collect personal data with consent checkboxes but without visible anti-CSRF protections. Security posture is moderate; HTTPS is implied but not explicitly confirmed in the provided data. No advanced security headers or incident response contacts are present. The WHOIS data is consistent with the business claims, showing no privacy protection and a domain age appropriate for the business history. No suspicious or malicious content was detected, and the site is accessible without WAF or blocking mechanisms. Overall, the website is functional and credible for a small local business but requires improvements in security best practices and privacy compliance to enhance trust and regulatory adherence.

G

Global Services Slovakia s.r.o.

brigada.sk

58

Brigada.sk is a Slovak online job portal specializing in part-time and seasonal jobs primarily targeted at students. Operated by Global Services Slovakia s.r.o., the platform offers a comprehensive range of job listings both within Slovakia and abroad, supplemented by educational resources such as salary calculators, interview simulators, and online courses. The portal enjoys a strong market position as a trusted source for student employment opportunities, supported by regular content updates and active social media engagement. Technically, the website employs standard web technologies including JavaScript, Google Adsense, Facebook SDK, and tracking via Gemius and Google Tag Manager. While the site is served over HTTPS and includes secure login forms, it lacks some modern security headers and a cookie consent mechanism, which are areas for improvement. No explicit security or incident response policies are published, and no direct company contact emails or phone numbers are visible on the homepage, relying instead on contact forms. Overall, the site is professional, content-rich, and trustworthy, but could enhance privacy compliance and security posture.

S

SuperFaktúra

superfaktura.sk

11

Superfaktura.sk is a Slovak-based online invoicing platform targeting small businesses and freelancers. It offers reliable invoicing, offers, credit notes, and delivery notes accessible anywhere and anytime, with a 30-day free trial to attract users. The company positions itself as a leading SaaS provider in the Slovak market for business invoicing solutions. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Tag Manager, Microsoft Clarity, and OneSignal for push notifications. The site is well optimized for mobile and desktop, with fast performance and good accessibility. Security posture is strong with HTTPS, security headers, cookie consent, and no visible vulnerabilities. However, there is no explicit security policy or incident response contact published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a credible service provider in its niche.

M

MR Studio Information Technologies

proon.tech

10

Proon.tech is a Slovak-based technology company offering an integrated SaaS platform for project management, CRM, and business activity management. The platform consolidates multiple business tools into a single solution aimed at improving efficiency and reducing operational costs for small to medium-sized enterprises. The company is positioned as a niche regional provider with a focus on Slovak and EU markets, supported by a development partner MR Studio Information Technologies. The website presents a professional and consistent brand image with clear business messaging and client references. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and various UI enhancement libraries. It uses Google Analytics and Facebook SDK for tracking and marketing purposes, with a compliant cookie consent mechanism in place. Hosting is provided via Websupport.sk, a known Slovak hosting provider. The site is mobile optimized and SEO friendly, though some accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent for privacy compliance. However, it lacks DNSSEC and explicit security headers, and no dedicated security or incident response policies are published. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, Proon.tech demonstrates a solid business and technical foundation with good privacy compliance and moderate security posture. Strategic improvements in security headers, DNSSEC, and explicit security policies would enhance its security maturity and trust further.

V

VSE

vse.sk

69

The website www.vse.sk represents a large Slovak energy supplier offering electricity and gas services to households and businesses. It positions itself as the largest supplier in Slovakia, providing 24/7 service and customer connection options. The site uses modern web technologies including JavaScript ES modules, Google Tag Manager, Cookiebot for cookie consent, and Microsoft Omnichannel for live chat support, indicating a mature digital infrastructure. However, explicit privacy policies, terms of service, and direct contact information are not evident in the provided content, which could impact user trust and compliance transparency. Security measures such as HTTPS and cookie consent are in place, but additional security headers and incident response information are lacking. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security documentation.

O

Odpadový hospodár s.r.o.

odpadovyhospodar.sk

45

Odpadový hospodár s.r.o. is a Slovak consulting company specializing in waste management services for small and medium enterprises as well as municipalities. Founded in 2012, the company offers e-learning, on-site training, consulting on waste legislation compliance, and electronic templates to simplify waste management processes. Their market position is supported by over 200 customers and official certifications from Slovak environmental authorities. The website is professionally designed, content-rich, and targets Slovak-speaking business and municipal clients. Technically, the site is built on WordPress with common plugins for analytics, live chat, and email marketing, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and anti-spam measures but lacks some security headers and explicit incident response contacts. Privacy compliance is basic with privacy and cookie policies present but no active cookie consent mechanism. Overall, the site demonstrates good business credibility and trustworthiness with clear contact information and customer testimonials.

The website andresond.is represents a small Icelandic media business focused on audio book subscriptions and Disney/Pixar related content. The site is built on the LiSA CMS platform by Advania and hosted via an Icelandic provider, reflecting a mature domain established in 2009. The business targets families and children interested in audio books and related media products, operating primarily through e-commerce and subscription models. The site integrates social media sharing via Facebook and tracks user activity with Google Analytics, indicating a moderate level of digital maturity. However, the website lacks critical privacy and cookie policies, and no terms of service or security policies are present, which are important for compliance and user trust. Security posture is basic, with no DNSSEC enabled and no security headers detected, though HTTPS usage is implied by external script loading. Overall, the site is functional but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

S

STOTEN.CZ

stoten.cz

57

STOTEN.CZ operates as a specialized retail e-commerce platform focused on table tennis equipment and apparel, targeting enthusiasts primarily in the Czech Republic. The website offers a broad catalog of products including paddles, rubbers, balls, clothing, and accessories, supported by a physical store and a table tennis academy. The business model centers on niche retail with additional services such as sponsorship and event organization, positioning itself as a trusted provider within its market segment. Technically, the website is built on the Shoptet e-commerce platform, utilizing legacy jQuery libraries alongside modern tracking tools like Google Analytics 4 and Facebook Pixel. The site is served over HTTPS with a good SSL configuration and includes cookie consent mechanisms, indicating a moderate level of digital maturity. Mobile optimization and SEO practices are adequate, though some accessibility features could be enhanced. From a security perspective, the site employs CSRF tokens on forms and uses HTTPS, but the presence of an outdated jQuery version introduces potential vulnerabilities. Security headers are not explicitly detected, suggesting room for improvement in hardening the site against common web attacks. Privacy compliance is basic, with cookie consent present but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website presents a moderate risk profile with no signs of blocking or WAF interference. The lack of public WHOIS data reduces transparency but is typical for small retail businesses. Strategic recommendations include updating JavaScript libraries, implementing comprehensive security headers, and publishing clear privacy and security policies to enhance trust and compliance.

Red Robin Books is an independent children's book publisher and retailer specializing in high-quality books for early years to early teens. The company offers a range of products including picture books, board books, audio books, and educational resources, targeting children, parents, and educators. The website serves as an e-commerce platform built on WordPress and WooCommerce, providing a professional and user-friendly shopping experience. The business appears to be small-sized and niche-focused with a consistent brand presence and active social media engagement. Technically, the website leverages modern web technologies such as WordPress CMS, WooCommerce for e-commerce, jQuery, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile-optimized with good SEO practices implemented via Yoast SEO plugin. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration and secure form handling. However, it lacks visible security headers and does not display privacy or cookie policies, which are important for compliance and user trust. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website content. Overall, the website is functional, professional, and safe for general audiences, but improvements in privacy compliance, security best practices, and domain registration transparency are recommended to enhance trust and security posture.

BIOK laboratorija is a Lithuanian cosmetics manufacturing company specializing in natural and innovative cosmetic and oral care products. They manage multiple brands and serve Nordic and European markets with over 250 products. The website is professionally designed, mobile-optimized, and includes comprehensive privacy and cookie policies compliant with GDPR. Technically, the site uses a mix of legacy and modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and tracking. Security posture is generally good with HTTPS and reCAPTCHA implemented, but lacks explicit security headers and uses an outdated jQuery version. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and professional but could improve security and domain registration visibility.

O

OREON

somelierskepotreby.cz

61

The website somelierskepotreby.cz operates as an e-commerce platform specializing in sommelier supplies and wine accessories, targeting consumers and professionals interested in wine-related products primarily in the Czech Republic and EU. The business offers a range of products including wine cooling containers, racks, serving accessories, glassware, bottles, and gift sets, with additional services such as product branding. The site is professionally designed with clear navigation and multi-language support, enhancing user experience and accessibility. Technically, the website is built on the Shoptet CMS platform, utilizing common web technologies such as jQuery, Google Tag Manager, Google Analytics, Microsoft Clarity, and Facebook SDK. It leverages Amazon Cloudfront CDN for content delivery and integrates modern payment APIs like Google Pay and Apple Pay. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers such as Content-Security-Policy and X-Frame-Options, and uses an outdated jQuery version which could pose vulnerabilities. No critical security issues or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for its niche retail business, though the absence of WHOIS data limits domain transparency and trust assessment. Strategic improvements in security headers and technology updates are recommended to enhance security posture and compliance.

P

PagFerry.com

pagferry.com

45

PagFerry.com is a small Croatian website providing up-to-date ferry schedules, real-time ferry status, weather forecasts, and webcam feeds for the Prizna - Žigljen ferry route. It serves a niche audience of travelers and locals seeking reliable maritime transport information. The website is well-branded and consistent, with a clear focus on transportation services in the Croatian region. Technically, the site leverages modern web technologies including AMP for mobile optimization, jQuery, Bootstrap, and integrates third-party services such as Google Analytics and Facebook SDK for analytics and social media engagement. The site is mobile-friendly and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and registers a service worker, but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data for the domain is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the site is functional and useful but would benefit from enhanced security practices and verified domain registration to improve trustworthiness.