Security Directory

Cambridge Insitu Pressuremeter Testing is a specialized service provider offering insitu pressuremeter testing with over 50 years of experience across mining, tunnelling, offshore, and civil engineering sectors. The company positions itself as a world-leading international full-service provider, targeting engineering and construction professionals. The website is built on the Squarespace platform, leveraging modern web technologies including Google Analytics and Google Maps API, indicating a moderate level of digital maturity. The site is well-designed, mobile-optimized, and provides clear navigation, although it lacks explicit privacy and terms of service documentation. Security posture is strong with HTTPS and HSTS enabled, but the absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the website is professional and business-focused but would benefit from enhanced transparency and compliance documentation.

Skyline Taxis is a well-established local taxi and private hire company based in Stourbridge, UK, providing a range of transport services including airport transfers, business travel, and community transport. The company leverages technology such as online booking, mobile apps, and Google Places autocomplete to enhance customer experience. Their market position is strong locally, supported by positive customer testimonials and a solid online reputation. Technically, the website is built on WordPress with a modern tech stack, though some components like jQuery are outdated. Security measures include HTTPS and Google reCAPTCHA, but lack visible security headers and cookie consent mechanisms. Overall, the site is professional and trustworthy, with room for improvement in privacy compliance and security hardening.

M

Momentum Training

momentum-training.com

49

Momentum Training is a small fitness training business based in the United Kingdom, specializing in gym and spin classes. Established in 2012, it offers memberships and trial packages targeting fitness enthusiasts seeking quality coaching and a supportive community. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on health and fitness. Technically, the site is built on WordPress, leveraging Google Analytics, Google Tag Manager, and Mailchimp for marketing and analytics. It uses Google Maps API to display physical gym locations. Security posture is moderate with HTTPS enabled and domain locks in place, but lacks DNSSEC and security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and safe for general audiences.

B

Bajotecho

bajotecho.com.mx

63

Bajotecho is a professional real estate agency based in Mexico, specializing in the buying and selling of properties with a focus on personalized service and certified expertise through AMPI. The company offers comprehensive services including professional photography, social media marketing, legal and fiscal advisory, and client support to maximize property value. Their market position is that of a trusted, small-sized agency with a clear emphasis on quality and client trust. Technically, the website is built on a modern Next.js framework with React, ensuring fast performance, mobile optimization, and good accessibility. The site uses HTTPS with strong security headers, indicating a solid security posture. However, there is no visible cookie consent mechanism or published security/incident response policies, which are areas for improvement. Security-wise, the site demonstrates good practices such as secure forms and no exposed sensitive data, but the absence of WHOIS data limits full trust verification of the domain. The privacy policy is comprehensive and GDPR compliant, supporting privacy compliance. Overall, the website is professional and trustworthy but would benefit from enhanced transparency in security and privacy mechanisms. Strategically, Bajotecho should focus on publishing terms of service, cookie consent, and security policies to improve compliance and trust. Verifying and publishing domain registration details would also enhance legitimacy. These steps will strengthen their security posture and business credibility in the competitive real estate market.

A

Altacom

altacom.eu

61

Altacom is a well-established distributor specializing in cybersecurity and IT infrastructure solutions, serving Baltic countries and Finland. The company partners with globally recognized vendors such as Bitdefender, N-able, and Utimaco, offering a broad portfolio including cybersecurity, data protection, HSM, PKI, and MSP tools. Their market position is solid with over 14 years of experience, targeting businesses seeking reliable IT security solutions. Technically, the website is built using modern technologies including Astro framework and employs Google Tag Manager and Google Maps APIs for analytics and location services. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements are possible. Performance is moderate with optimizations like Partytown for third-party script offloading. From a security perspective, the site uses HTTPS and shows good practices such as no exposed sensitive data and script offloading to improve security. However, it lacks explicit security headers, cookie consent mechanisms, and published security or incident response policies, which are areas for improvement. No critical vulnerabilities or suspicious indicators were found. Overall, the website is professional, trustworthy, and business-focused with a strong regional presence. Strategic enhancements in privacy compliance and security transparency would further strengthen its posture and user trust.

S

SIA Madara

madara.lv

48

SIA Madara operates a website focused on providing office and industrial space rental services in Jelgava, Latvia, alongside metal container sales and machine building services. The company targets local businesses and industrial clients seeking large rental spaces and related manufacturing products. The website is professionally designed with clear navigation and multilingual support, primarily in Latvian with English and Russian options. The technical infrastructure employs a variety of JavaScript libraries and frameworks, including jQuery, Bootstrap, and Google Maps API, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate; while HTTPS is presumed, no explicit security headers or incident response policies are evident. Privacy compliance is good, with a clear privacy policy and cookie consent mechanism implemented. Business credibility is supported by clear contact information and a certification page, though the absence of terms of service and incident response contacts are noted. Overall, the website presents a trustworthy and professional front for a small local business with room for security and compliance improvements.

L

Litigato | Kancelaria Prawno-Podatkowa

litigato.pl

66

Litigato is a small Polish legal and tax advisory firm specializing in supporting taxpayers during tax audits, proceedings, and criminal tax defense. The website targets Polish taxpayers and businesses seeking expert legal and tax advice, positioning itself as a niche service provider in Warsaw. The digital infrastructure is built on WordPress with modern technologies such as Bootstrap, jQuery, and Google services, indicating a moderate to good level of digital maturity. The site is mobile optimized and includes a comprehensive cookie consent mechanism, reflecting awareness of privacy compliance requirements. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and policies could be improved. Overall, the website is professional and trustworthy but lacks explicit privacy and terms of service pages, as well as direct contact details, which slightly impacts privacy compliance and business credibility scores.

S

SIA "Cargomax"

cargomax.lv

48

Cargomax is a Latvian transportation company specializing in international cargo shipments via road, air, and sea. Established in 2006, it has grown to become a recognized player in the logistics sector, offering comprehensive services including customized logistics solutions, cargo insurance, and customs brokerage. The website reflects a mature digital presence built on WordPress with multilingual support and SEO optimization. Security posture is adequate with HTTPS enforced, though lacking advanced security headers and formal privacy policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy, serving business clients seeking reliable international cargo transport.

Alfred Emken Lackierfachbetrieb GmbH is a well-established small manufacturing business specializing in automotive and industrial painting services based in Aurich, Germany. Founded in 1984, the company offers a broad range of services including vehicle accident repairs, industrial coatings for construction materials, powder coating with a unique facility in the region, and special coatings using premium products. The website reflects a professional and consistent brand image targeting local customers and businesses. Technically, the site uses a modern but basic tech stack including Bootstrap and jQuery, with Google Maps integration for location display. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and advanced security policies. Privacy compliance is strong with a detailed GDPR-compliant privacy policy, though cookie consent mechanisms are absent. Overall, the site is functional, trustworthy, and well-suited for its business purpose.

D

Danny's

dannysnyc.com

62

Danny's is a small American wine bistro located in New York City, offering dining and private event services. The website is professionally designed using the Squarespace platform, featuring integration with the Resy reservation system and Google Maps for location. The site is mobile optimized and provides clear navigation to menus, hours, and contact information, although contact details are limited to a physical address. Security is well implemented with HTTPS and HSTS, and Google reCAPTCHA is used for form protection. However, the absence of privacy and cookie policies, as well as missing WHOIS data, reduce overall trust and compliance scores.

B

Baptist Health South Florida

baptisthealth.net

73

Baptist Health South Florida is a well-established healthcare provider network serving the South Florida region with a comprehensive range of medical services including hospitals, doctors, urgent care, and outpatient centers. The website reflects a professional and consistent brand presence, targeting patients and healthcare consumers in the region. The business model focuses on delivering healthcare services through multiple facilities and expert medical staff, positioning Baptist Health as a leading healthcare provider in its market. Technically, the website employs a modern technology stack including JavaScript frameworks, Google Maps API, and analytics tools such as New Relic and Yext Answers. The site is built on a CMS likely to be Sitecore, optimized for mobile use, and incorporates SEO best practices. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS, uses security headers for cache control, and has domain registration protections such as clientTransferProhibited status. However, DNSSEC is not enabled, and explicit security or incident response policies are not publicly available. The extensive use of tracking and analytics indicates a high level of user monitoring, balanced by the presence of privacy and cookie policies with consent mechanisms. Overall, the website demonstrates a high level of business credibility and trustworthiness with no signs of blocking or WAF interference. Recommendations include enabling DNSSEC, publishing detailed security policies, and enhancing security headers to further strengthen the security posture.

G

Gemeinde Dottikon

dottikon.ch

47

Gemeinde Dottikon operates as the official municipal government website for the community of Dottikon in Switzerland. It provides residents and visitors with information about local administration, public services, cultural activities, education, and events. The website is positioned as a local government authority portal, offering key services such as online administrative services, waste disposal information, and event calendars. The target audience primarily includes local citizens and stakeholders interested in municipal affairs. Technically, the website is built on the WordPress CMS platform using the Divi theme and incorporates WooCommerce for transactional or booking functionalities. It leverages common web technologies such as jQuery and Google Maps API for enhanced user experience. The site demonstrates good mobile optimization and SEO practices, with structured data and meta tags properly implemented. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious elements were detected in the provided content. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the website is a trustworthy and professional municipal portal with solid business credibility. Strategic improvements in privacy compliance, security policy transparency, and contact information publication would enhance its security posture and user trust.

D

Die Schweizer Schlösser

dieschweizerschloesser.ch

53

The website 'Die Schweizer Schlösser' serves as a tourism portal showcasing 30 castles and fortresses across Switzerland. It offers visitors information about historical sites, events, exhibitions, and guided tours, targeting a general audience interested in cultural heritage and travel within Switzerland. The site is multilingual, primarily in German, with options for French, Italian, and English, enhancing accessibility for diverse visitors. Technically, the site is built on Concrete CMS, uses Google Fonts, jQuery, and integrates Google Maps API for location services. Google Tag Manager is implemented with IP anonymization to track analytics. The website demonstrates good design quality, mobile optimization, and user experience, though accessibility features are basic. Security posture is moderate with HTTPS enabled and some best practices observed, but lacks security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. Business credibility is moderate but limited by lack of visible contact information and trust indicators. Overall, the site is functional and professional but would benefit from enhanced privacy, security, and contact transparency.

M

MEDIA BUS d.o.o

mediabus.si

41

Media Bus d.o.o is a Slovenian company established in 2004, specializing in outdoor advertising with a focus on bus advertising, vehicle wrapping, digital printing, and digital messaging services. It holds a leading market position in Slovenia as the largest provider of bus advertising. The website is built on WordPress with common plugins such as Revolution Slider and Mailchimp integration for newsletter subscriptions. The technical infrastructure is moderate in performance and mobile optimized, though it uses an outdated jQuery version which poses security risks. The security posture is basic with HTTPS enabled but lacks important security headers and uses outdated libraries. Privacy compliance is limited, with no visible cookie consent or GDPR-specific policies, although a terms of service document is available. Business credibility is strong with clear contact information, customer testimonials, and an ISO certification displayed. Overall, the website is professional and trustworthy but would benefit from security and privacy improvements.

Media In is a Slovak PR and marketing agency with over 23 years of experience, offering a wide range of services including media relations, media lobbying, event marketing, and digital communication. The company is positioned as a trusted partner in the media sector, with a strong local presence and membership in the international Cohn & Wolfe PR network. Their website reflects a professional business model targeting organizations seeking integrated PR and marketing consultancy. Technically, the site is built on WordPress with Bootstrap and uses common analytics and marketing tools such as Google Analytics and Facebook Pixel. While the site is accessible and well-structured, it lacks explicit privacy and cookie policies, and some security best practices like security headers are missing. The SSL configuration is good, but some external resources are loaded over HTTP, which could pose mixed content risks. Overall, the security posture is moderate, with room for improvement in compliance and security hardening. Contact information is clearly provided, enhancing business credibility. The site content is safe for general audiences and professionally presented.

L

Living Lab Koprivnica

living-lab.hr

46

Living Lab Koprivnica is a collaborative innovation platform focused on testing and developing smart outdoor lighting and smart city solutions in Koprivnica, Croatia. The project connects technology providers, research institutions, public bodies, and citizens to foster sustainable energy development and smart urban infrastructure. The website presents detailed information about partners, technologies, and test fields, reflecting a mature and professional digital presence. Technically, the website uses modern web technologies including Google Maps API for interactive maps, Google Analytics for tracking, and jQuery for scripting. The site is hosted by Hrvatski Telekom d.d., a reputable Croatian provider, and employs HTTPS for secure communication. While the site is well-structured and mobile-optimized, it lacks some security headers and cookie consent mechanisms, which are recommended for enhanced security and privacy compliance. From a security perspective, the site demonstrates good practices such as encrypted connections and no visible sensitive data exposure. However, the absence of explicit security policies and incident response contacts indicates room for improvement in security governance. The WHOIS data aligns well with the website's claims, supporting the legitimacy of the domain and business. Overall, Living Lab Koprivnica's website is a trustworthy and informative resource for stakeholders interested in smart city innovations, with recommendations to strengthen privacy compliance and security posture for future resilience.

T

The International Sava River Basin Commission

savagis.org

47

The International Sava River Basin Commission operates the Sava GIS Geoportal, a specialized platform providing geospatial data and tools for river basin management and navigation safety in the Sava River Basin region. The portal offers access to real-time and historical hydrological data, waterway marking, navigation safety inspection information, and a metadata catalogue, targeting government agencies, environmental professionals, and stakeholders. Technically, the site employs established JavaScript frameworks such as Ext JS and OpenLayers, integrates Google Maps API, and uses Google Analytics for user tracking. The domain is registered since 2015 with transparent WHOIS data, consistent with the organization's profile. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and privacy compliance documentation. Overall, the site is professional, trustworthy, and serves a niche governmental/non-profit audience effectively.

SOMA is a manufacturing company specializing in the production of flexo presses, with a history spanning approximately 25 years. The company positions itself as a top global manufacturer in its niche, emphasizing unique technology development. The website reflects a professional and consistent brand image targeted at businesses requiring specialized industrial equipment. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Smartlook, and integrates Google Maps API for location services. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the website is legitimate and professional but would benefit from enhanced security and privacy disclosures.

E

EKOME, spol. s.r.o.

ekome.cz

40

EKOME, spol. s.r.o. is a Czech company specializing in environmental emission measurements and ecological consulting, with a focus on stationary pollution sources and workplace risk factors. The company holds multiple accreditations and authorizations from the Ministry of the Environment, indicating a reputable position in its sector. Their website reflects a professional service provider targeting businesses and organizations requiring environmental compliance and consulting services. Technically, the website is built on WordPress with modern plugins and demonstrates good SEO and privacy compliance, including GDPR and cookie consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. The absence of WHOIS data limits full trust assessment but the visible business information and certifications support legitimacy.

W

World Kidney Day 2026

worldkidneyday.org

64

World Kidney Day 2026 is a global health awareness campaign focused on educating the public, health professionals, patients, and researchers about the importance of kidney health. The website serves as a central hub for campaign information, educational resources, interactive quizzes, and global event coordination. It positions itself as a reputable non-profit initiative with a consistent brand and strong social media presence across major platforms. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and a clearly visible privacy policy page, which are areas for improvement. The WHOIS data is privacy protected or unavailable, which is common for non-profit organizations, but the overall legitimacy is supported by professional site design and external social media links. The site does not contain any adult or questionable content and is safe for general audiences.

Z

Zone Media OÜ

kuhuviia.ee

42

Kuhuviia.ee is a localized Estonian platform focused on facilitating waste sorting and repair services by providing an interactive map and search functionality for users to find waste disposal points and repair locations. The service is supported by Zone Media OÜ, a local Estonian company, and has been operational since 2014. The platform integrates Google Maps API for geolocation and mapping, and offers user engagement features such as adding new repair points and saving favorites. The website targets general users interested in environmental sustainability and waste management within Estonia. Technically, the website employs a modern JavaScript stack including jQuery, jQuery UI, and Google Maps API, with asynchronous loading of data from a dedicated API. The site is mobile-optimized and provides a good user experience with clear navigation and search autocomplete. However, some minor server-side errors are exposed in the HTML source, and no advanced security headers are implemented, indicating room for improvement in security hardening. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, and exposes a PHP warning which could leak information. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism detected. No direct contact information or incident response contacts are found, which may impact trust and compliance. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk assessment suggests the site is legitimate and functional but would benefit from improvements in security and privacy compliance to enhance trustworthiness and regulatory adherence. Strategic recommendations include fixing server-side errors, enabling DNSSEC, implementing security headers, and adding cookie consent mechanisms to align with GDPR requirements.

Č

Česká nefrologická společnost, o.s.

nefrol.cz

48

The Česká nefrologická společnost (Czech Society of Nephrology) is a non-profit professional organization dedicated to nephrology, encompassing medical professionals and researchers focused on kidney diseases. The website serves as an information hub for both professionals and patients, providing news, event calendars, and partner collaborations. The organization holds a reputable position within the Czech healthcare sector, supported by partnerships with recognized international nephrology bodies. Technically, the website employs modern analytics tools such as Google Analytics and Fathom, integrates Google Maps API, and demonstrates good mobile responsiveness and accessibility features. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is generally good with HTTPS enforced, but the absence of security headers and vulnerability disclosures suggests room for improvement. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and partner affiliations support its legitimacy. Overall, the site is well-maintained and trustworthy but should enhance privacy compliance and security transparency.

BigMedia, spol. s r.o. is a well-established leader in the Central European outdoor advertising market, specializing in a broad range of advertising formats including billboards, digital displays, and transport advertising. The company offers comprehensive services from rental to production and installation, targeting businesses and advertisers seeking out-of-home advertising solutions. Their market position is strong, supported by a domain registered since 2008 and active social media presence. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Quantcast Choice for consent management, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and professional design. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found. Overall, the website is professional and trustworthy but could improve transparency and security practices.

Rolf Kind GmbH is a medium-sized German manufacturing company specializing in the production of high-quality forged steel components, including rings, shafts, and custom shapes made from high-alloy stainless steels and special materials such as nickel and titanium alloys. Founded in 1969, the company has a strong market position as a family-owned business with over 50 years of experience, serving industrial clients requiring precision and customized forging solutions. Their website reflects a professional digital presence built on TYPO3 CMS, featuring multimedia content, a cookie consent mechanism, and multilingual support (German and English). Technically, the website employs modern web technologies including HTML5 video, jQuery, and Google Maps API integration. The site is mobile-optimized and SEO-friendly, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data, but security headers are not explicitly detected and no dedicated security or incident response policies are published. Overall, the website demonstrates good privacy compliance with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR. Contact information is clearly presented, and social media channels are active, enhancing business credibility. No critical security or content safety issues were found, and the domain registration appears legitimate and consistent with the business profile. Strategic improvements could focus on enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving accessibility compliance.

H

Hrvatski audiovizualni centar

havc.hr

45

The Hrvatski audiovizualni centar (HAVC) is a Croatian public institution dedicated to supporting and promoting the audiovisual sector, including film production and cultural initiatives. The website serves as an authoritative portal providing news, event calendars, film catalogs, and official publications relevant to the Croatian and international film community. It targets industry professionals, cultural stakeholders, and the general public interested in audiovisual culture. The business model is primarily public funding and cultural promotion, positioning HAVC as a key national player in the media sector. Technically, the website employs a modern JavaScript-based frontend with libraries such as jQuery, Nivo Slider, and Google Fonts, alongside integrations with Google Maps API, Facebook Pixel, and Google Analytics for tracking and user engagement. The site is mobile-optimized and accessible, with features to adjust contrast and font size, enhancing usability. Hosting and domain registration are consistent with a Croatian academic network registrar, indicating a stable and legitimate infrastructure. From a security perspective, the site uses HTTPS and includes tracking scripts responsibly. However, it lacks visible security headers and does not publish a security policy or incident response contacts, which are areas for improvement. Privacy compliance is partial; while a cookie banner is present, it lacks explicit consent mechanisms, and no privacy policy or terms of service are directly linked or found on the homepage. The absence of vulnerability disclosure mechanisms also suggests room for maturity in security practices. Overall, HAVC's website is professional, content-rich, and trustworthy, with a strong business credibility score. The main risks relate to privacy compliance and security best practices, which if addressed, would enhance user trust and regulatory adherence. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and improving cookie consent mechanisms.

D

Dineplan

dineplan.com

10

Dineplan is a South African-focused online restaurant reservation platform offering consumers the ability to book tables, browse menus, and read reviews for over 2,000 restaurants. It also provides reservation software solutions for restaurateurs, positioning itself as a key player in the hospitality sector within South Africa. The website promotes mobile app usage for enhanced user experience and convenience. Technically, the site employs a modern technology stack including Google Maps API, reCAPTCHA, and multiple analytics and marketing tools such as Google Analytics, HubSpot, Hotjar, and TikTok Pixel. Security measures include HTTPS enforcement and CAPTCHA protections on user authentication forms, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain is a notable gap, reducing trustworthiness from a domain registration perspective. Overall, the site is professionally designed, mobile-optimized, and provides comprehensive privacy and terms documentation, supporting a good security and privacy posture.

S

SteelMed

steelmed.com

58

SteelMed is a medium-sized Spanish company specializing in the sale and distribution of industrial steel sheeting and coils, offering custom cutting services for various industrial sectors including automotive, construction, and renewable energies. It operates as part of the Hiemesa Group, a well-established steel sector conglomerate. The website demonstrates a professional digital presence with comprehensive product information, certifications, and contact details. Technically, the site uses modern web technologies such as Bootstrap and jQuery, with responsive design and integration of Google services like Maps and reCAPTCHA. Security posture is moderate, with some best practices observed but lacking visible security headers and explicit incident response contacts. Privacy compliance is strong, with clear policies and cookie consent mechanisms. The absence of WHOIS data raises some concerns about domain registration legitimacy, but the overall business credibility and trust indicators are high. Strategic recommendations include enhancing security headers, verifying SSL configuration, and improving incident response transparency.

Grupo Hiemesa is a leading Spanish group specializing in the manufacturing, transformation, commercialization, and distribution of steel products. Established in 1962, it has grown to become a major player in the steel sector in Spain, serving various industrial markets with a comprehensive range of services including distribution, steel profiling, sandwich panel manufacturing, and export. The company operates multiple subsidiaries and maintains a strong presence in Iberia and neighboring regions. Technically, the website employs modern web technologies such as Bootstrap 3.0, jQuery, and Google Maps API, offering a responsive and content-rich user experience. Security posture is adequate with HTTPS enabled and secure forms, though improvements in security headers and incident response documentation are recommended. Privacy compliance is supported by clear privacy and cookie policies, though an active cookie consent mechanism is absent. Overall, the site reflects a professional and trustworthy business with room for enhanced security and compliance maturity.

G

Generon

generon.sk

43

Generon is a Slovakian company specializing in integrated solar roofing solutions, developed under the parent company Terran Slovakia s.r.o., a leading roofing tile manufacturer in Central and Eastern Europe. Their product uniquely integrates solar cells into traditional roofing tiles, offering an aesthetic and ecological alternative for energy-conscious customers. The website is well-structured, professionally designed, and optimized for SEO and mobile devices. Technically, it leverages WordPress with Elementor, includes modern JavaScript libraries, and integrates Google Analytics and MailerLite for marketing and analytics. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms, though additional security headers and policies could enhance protection. No critical vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with comprehensive policies and consent management. Overall, the site reflects a mature digital presence aligned with the company's market position and business goals.

T

TVN MEDIA SP. Z O.O.

tvnmedia.pl

62

TVN Media Sp. z o.o. operates as the advertising sales office for TVN and associated media platforms in Poland, offering a comprehensive portfolio of advertising services including TV spots, sponsoring, addressable TV, and online advertising. The company is positioned as a leading media advertising entity within the Polish market, affiliated with Warner Bros. Discovery. The website reflects a professional and business-focused approach targeting advertisers and marketing agencies. Technically, the site employs modern analytics and marketing technologies such as Google Tag Manager and Gemius, and integrates GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data limits domain trust verification but does not detract from the professional presentation and legitimacy of the business. Overall, the site demonstrates good digital maturity and compliance with privacy regulations.

M

Mechanical & Electrical Fixings Ltd

mef.co.uk

69

Mechanical & Electrical Fixings Ltd (MEF) is a UK-based company specializing in the supply of mechanical and electrical fixings with over 20 years of market presence. Their website serves as a Shopify-powered e-commerce platform offering a wide range of products tailored to trades professionals and contractors. The company emphasizes sourcing specialized and elusive products, supported by detailed datasheets and technical documentation. The business targets the manufacturing sector and operates primarily within the UK market. The website reflects a consistent brand identity and professional presentation, supporting its position as a trusted supplier in its niche.

O

Obeta

obeta.de

70

The website obeta.de appears to be a German-language e-commerce or product catalog platform, leveraging modern web technologies such as Next.js and custom JavaScript frameworks like Sirius and Oxomi. It integrates third-party services including Cookiebot for cookie consent management and Google Maps API for location services. The site is accessible without any blocking or WAF challenges, indicating good availability. However, the absence of explicit privacy policies, terms of service, and contact information on the main page limits transparency and user trust. The WHOIS data is minimal and shows an unusual domain status 'connect', which may indicate incomplete registration or a parked domain, raising concerns about domain legitimacy. Overall, the technical infrastructure is modern and moderately optimized for performance and mobile use, but security posture could be improved by implementing security headers and explicit policies.

Pykonik is a well-established community organization focused on Python programming enthusiasts in Kraków, Poland. The website serves as a hub for event announcements, speaker presentations, and community engagement. It has a strong local presence with a history dating back to 2008, supported by active social media channels and meetup events. The business model revolves around organizing and promoting Python user group meetings and related social gatherings. Technically, the site is built on a modern stack including Python, Django, Bootstrap, and uses Google Analytics for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate; HTTPS is enabled but lacks advanced security headers and DNSSEC is not configured. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is trustworthy but could improve in security and compliance areas.

benevol-jobs.ch is a well-established Swiss non-profit volunteering platform owned by benevol Switzerland. It serves as the largest Swiss platform connecting volunteers with nonprofit organizations, offering a wide range of volunteer opportunities across various sectors and regions in Switzerland. The platform is self-financed through service sales and partnerships, maintaining a strong market position in the non-profit volunteering domain. Technically, the website is built on Drupal CMS with integrations such as Google Tag Manager, Google Maps API, and LiveChat, reflecting a modern and functional digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS and secure forms but lacks some advanced security headers and explicit incident response policies, indicating room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website demonstrates high professionalism, trustworthiness, and a solid business credibility profile.

Skupina GEN is a major Slovenian energy group focused on sustainable and low-carbon electricity production, primarily through nuclear and hydroelectric power. The company also engages in electricity trading and strategic investments, including the development of the second block of the Krško nuclear power plant (JEK2). Their website reflects a professional corporate presence with clear navigation and relevant content for stakeholders and the general public. Technically, the site uses established JavaScript libraries and Google services, hosted on Microsoft Azure DNS infrastructure, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements are recommended such as updating libraries and publishing formal security policies. Overall, the domain and WHOIS data confirm a legitimate and established business entity with consistent registration details.

P

PIKA SERVIS d.o.o.

mojsvet.com

46

PIKA SERVIS d.o.o. is a small Slovenian technology company specializing in computer hardware sales, repair services, web hosting, domain registration, and website development. Established in 2002, it serves local businesses, individual consumers, and educational institutions primarily in Murska Sobota. The company emphasizes customer satisfaction and offers integrated web solutions including AI-assisted site building. Technically, the website uses modern web technologies and is mobile optimized, though it lacks some advanced security headers. The site is served over HTTPS with a valid SSL certificate and includes a cookie consent mechanism, indicating basic privacy compliance. However, the domain is a subdomain without public WHOIS registration, which introduces some legitimacy concerns. Overall, the business appears credible with moderate trustworthiness but would benefit from improved security practices and clearer domain registration transparency.

M

Ministrstvo za kohezijo in regionalni razvoj

evropskasredstva.si

53

The website evropskasredstva.si serves as the official Slovenian government portal dedicated to European structural and investment funds. It provides comprehensive information on EU programs, projects, calls for proposals, and advisory support to stakeholders and the general public. The portal is managed by the Ministry of Cohesion and Regional Development of Slovenia, reflecting its authoritative position in the government sector. The site targets Slovenian citizens, government entities, and project participants interested in EU funding opportunities and related news. Technically, the website is built on WordPress CMS, leveraging a modern technology stack including jQuery, Google Maps API, and various plugins for SEO, analytics, social media integration, and GDPR compliance. Hosting is facilitated through Cloudflare, ensuring reliable DNS and security services. The site demonstrates good performance and mobile optimization, with structured data enhancing SEO and discoverability. From a security perspective, the site employs HTTPS with good SSL configuration and some security headers. It uses content security policy monitoring and security-focused plugins, though it lacks a publicly available security policy or incident response information. No vulnerabilities or security issues were detected in the analyzed content. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found. Overall, the website presents a professional, trustworthy, and well-maintained government portal with strong business credibility. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing incident response transparency, and improving accessibility compliance to further strengthen trust and security posture.

M

migrolino

migrolino.ch

70

Migrolino operates as a well-established retail convenience store chain in Switzerland, providing quick and convenient shopping options for daily needs. The website serves primarily as a shop finder and promotional platform, targeting the general Swiss public with localized language options in German, French, and Italian. The business model focuses on retail convenience with a strong physical presence across Switzerland, supported by an interactive map of store locations. Technically, the website leverages modern web technologies including Google Maps API, Google Fonts, and Google Analytics, ensuring a functional and user-friendly experience with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and basic privacy controls such as cookie consent, though explicit privacy policies and security headers could be improved. Overall, the domain registration and website content are consistent and trustworthy, reflecting a legitimate business entity. Strategic recommendations include enhancing privacy compliance, publishing clear policies, and strengthening security headers to improve trust and compliance.

Invest Pomurje is a regional development agency focused on promoting foreign direct investment in the Pomurje region of Slovenia. The website highlights the region's strategic location in Central Europe and offers detailed information on business opportunities in sectors such as tourism, sport, renewable energy, advanced agriculture, and metal processing. The agency provides support services to investors and showcases success stories to build credibility. The target audience includes foreign investors and businesses seeking expansion in Central and South-Eastern Europe. Technically, the website is built on WordPress using the Uncode theme and integrates common tools like Yoast SEO, Google Analytics, and Google Maps API. The site is mobile optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security policies or incident response information. No vulnerabilities or suspicious content were detected, and the domain registration is consistent with a legitimate business entity. Overall, the website presents a professional and trustworthy front for regional investment promotion.

R

RVK

rvk.ch

52

RVK is an independent and leading service provider in the Swiss healthcare market, offering specialized services including risk and performance management, insurance medicine consulting, and education through its RVK Academy. The company targets insurers, pension funds, and enterprises, providing tailored insurance and educational solutions. The website is professionally designed, consistent in branding, and provides clear contact information and trust signals such as client testimonials and SQS-Audit certification. Technically, the site uses modern web technologies like Swiper.js and Google Maps API, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

H

Helvetia Insurance

helvetia.ch

70

Helvetia Insurance is a well-established Swiss insurance company with over 160 years of history, serving more than 1.3 million customers. The company offers a broad range of insurance and pension products targeting private customers in Switzerland. Their website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding. The technical infrastructure leverages Adobe Experience Manager CMS, integrates multiple analytics and marketing tools, and employs modern web technologies ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance mechanisms in place. However, WHOIS data is not publicly available, likely due to privacy protection, which is common for large enterprises. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

R

Regional Development Partnership

pomurjeregion.si

10

Pomurje Region is a regional development partnership focused on promoting tourism and investment opportunities in the Pomurje region of Slovenia. The website serves as an informational and marketing platform targeting tourists, investors, and businesses interested in the region's cultural heritage, quality of life, and economic potential. The organization positions itself as a government or non-profit entity dedicated to regional growth and sustainability. Technically, the website is built on WordPress using the Avada theme and several popular plugins such as Yoast SEO and Revolution Slider. It integrates Google Analytics and Google Maps APIs, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the website uses HTTPS and employs a cookie consent mechanism, but lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration data is consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional and trustworthy front for the Pomurje regional development partnership, with room for improvement in security best practices and privacy documentation to enhance compliance and user trust.

R

Razvojni center Murska Sobota

spotpomurje.si

45

SPOT svetovanje Pomurje is a regional business support initiative operated by Razvojni center Murska Sobota, providing free consulting, mentoring, and business registration services to entrepreneurs and SMEs in the Pomurje region of Slovenia. The website reflects a well-established public service supported by European and national government funds, with clear partnerships and a focus on fostering regional economic development. Technically, the site uses modern JavaScript libraries, Google Maps API, and Google Tag Manager for analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although formal security policies and incident response information are absent. Overall, the domain registration and WHOIS data align well with the business profile, indicating legitimacy and trustworthiness.

V

Vector Informatik GmbH

vector.de

77

Vector Informatik GmbH is a well-established technology company specializing in software tools, software components, and engineering services for networking electronic systems in the automotive sector and related industries. The company operates internationally with multiple subsidiaries and offices across Europe, Asia, and the Americas, reflecting a strong market presence and a B2B business model focused on automotive and transportation sectors. Their website is professionally designed, content-rich, and localized in multiple languages, targeting automotive industry professionals and partners. Technically, the website is built on the TYPO3 CMS platform, integrating modern technologies such as Google Tag Manager, Google Maps API, and OneTrust for cookie consent management. The site demonstrates good performance, mobile optimization, and accessibility features, indicating a mature digital infrastructure. The presence of comprehensive metadata, Open Graph tags, and SEO best practices further enhance its online visibility. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a publicly available security policy or incident response contact information suggests areas for improvement in transparency and readiness. The WHOIS data for the domain is unavailable, which is unusual but does not detract significantly from the site's legitimacy given the professional presentation and extensive contact information. Overall, Vector Informatik GmbH's website reflects a high level of professionalism, technical maturity, and compliance with privacy regulations, supporting its position as a trusted provider in the automotive software industry. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to further enhance trust and security posture.

Museu.ms is a well-established online platform founded in 2010 that serves as one of the largest global cultural heritage resources, providing extensive information on museums, galleries, exhibitions, events, educational programs, and collections worldwide. The platform targets museum visitors, cultural enthusiasts, and museum employees, offering a comprehensive and user-friendly experience with multiple search and filtering options. The website demonstrates consistent branding and regularly updated content, supported by active social media channels and a newsletter subscription service. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Leaflet.js for maps, Google Analytics, Facebook SDK, Twitter widgets, Hotjar, and Google Maps API. The site is mobile-optimized with good SEO practices and basic accessibility features. Hosting details are not explicitly identified, but the site uses a custom CMS inferred from the URL structure and login portals. From a security perspective, the site uses HTTPS with a good SSL configuration and secure login forms. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data, representing areas for improvement. The site uses multiple third-party analytics and tracking tools, with a cookie consent mechanism indicating GDPR compliance. No direct contact emails or phone numbers are publicly available, and no formal security policy or incident response information is found. Overall, Museu.ms presents a trustworthy and professional platform with a solid business model and technical foundation. Strategic recommendations include enabling DNSSEC, implementing security headers, enhancing transparency with contact and security policies, and regularly auditing third-party scripts to maintain security and compliance.

E

Expano

expano.si

43

Expano.si is a well-established regional cultural and tourism promotion website focused on the Pomurje region in Slovenia. It offers immersive exhibitions, event information, ticket sales, and a retail shop, targeting tourists, families, and business visitors. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages. Technically, it uses modern web technologies including Google Maps API, jQuery, and Google Tag Manager, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and consent mechanisms, though it lacks explicit security policies and vulnerability disclosures. Overall, the site is trustworthy and compliant with GDPR, supported by official EU and Slovenian government partnerships and certifications.

KADOS s.r.o. is a small Czech company specializing in retail sales of construction materials and CNC machining services. The company operates a physical store in Hladké Životice near Nový Jičín and offers a broad range of building products including bagged mixtures, masonry materials, waterproofing, roofing, concrete products, drywall, insulation, and more. Their business model combines retail sales with CNC machining services such as drilling, milling, and turning. The website is professionally designed using WordPress with WooCommerce and the Avada theme, providing a good user experience and clear navigation. Technical infrastructure is modern and includes integration with Google Maps for location display. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. WHOIS data is unavailable, which slightly reduces trustworthiness but the website content and contact information support legitimacy. Overall, the site is safe, professional, and targeted at construction professionals and customers in the Czech Republic.

H

Vozni red vlakova | Udaljenosti.com

hznet.hr

44

Udaljenosti.com is a Croatian travel information website specializing in train schedules and travel planning for Croatian Railways. It targets travelers and commuters in Croatia, providing distance calculations and schedule lookups. The site operates primarily on an advertising revenue model and has been active since at least 2012. Technically, it uses a mix of legacy and modern web technologies including Google Fonts, Leaflet maps, Google Maps API, and Google Analytics. The site implements a cookie consent mechanism and integrates multiple advertising and tracking services. Security posture is moderate but could be improved by updating outdated libraries and adding security headers. WHOIS data is unavailable, which raises some concerns about domain legitimacy despite the active and functional website. Overall, the site is functional and provides relevant content but should address security and legitimacy concerns for improved trust.

Cheap Motels Near Me is a niche affiliate website focused on providing users with listings of budget motels near their current location. The site leverages a partnership with Booking.com to offer a best price guarantee, positioning itself as a price comparison and booking facilitator in the hospitality sector. The target audience primarily consists of travelers seeking affordable lodging options. The business model is based on affiliate commissions through Booking.com, with no direct booking or payment processing handled on the site itself. Technically, the website employs modern web technologies including Vue.js for frontend interactivity, Google Analytics and Tag Manager for tracking, and Google Maps API for location services. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile optimized and presents a clean, user-friendly interface with good navigation and relevant content. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, no explicit security headers such as Content-Security-Policy or HSTS were detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance and user trust. No contact information or incident response details are provided, limiting transparency. The WHOIS data shows a legitimate domain registration with a reputable registrar and no privacy protection, consistent with the business type. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

Motels Near Me is a niche hospitality website operated by Heylab AB, a Swedish company founded in 2017. The site provides a location-based motel search service, helping travelers find motels with available rooms near their current location, emphasizing best price guarantees. The business model centers on facilitating motel discovery and potentially bookings, targeting travelers seeking convenient and affordable lodging options. The website is professionally designed with a clear user interface and good mobile optimization, leveraging modern web technologies including Vue.js, Google Analytics, and Google Maps API. Hosting and DNS services are provided via Cloudflare, ensuring reliable performance and security at the infrastructure level. Security posture is moderate with HTTPS enforced and domain transfer protections in place; however, the absence of DNSSEC and security headers like CSP and HSTS represent areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms, which could expose the business to regulatory risks. Contact information is minimal, limited to personal links in the about section, with no direct company emails or phone numbers disclosed. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy practices to improve compliance and user trust.