Security Directory

T

The Kinetic Co., Inc.

knifemaker.com

59

The Kinetic Co., Inc. is a well-established U.S.-based manufacturer specializing in industrial machine knives and custom blades serving multiple industries including tissue, nonwovens, wood, metal, and packaging. With over 75 years of experience and an ISO 9001:2015 certified manufacturing facility in Milwaukee, WI, the company positions itself as a premier provider offering fast lead times, custom engineering, and contract manufacturing services. Their target audience primarily includes general buyers and procurement teams in industrial sectors seeking high-quality, precision-engineered cutting solutions. Technically, the website is built on WordPress using Elementor, enhanced with performance optimizations such as lazy loading and Google Tag Manager for analytics. The site is mobile-optimized with good SEO practices and clear navigation, reflecting a mature digital presence. Security posture is solid with HTTPS enforced, though some security headers and explicit security policies are absent. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the security posture is good but could be improved by adding security headers, incident response information, and comprehensive privacy policies. The absence of WHOIS data for the domain is a concern and warrants further investigation to confirm domain legitimacy. However, the website content and business information are professional and consistent with a legitimate manufacturing company. Strategically, the company should focus on enhancing transparency around privacy and security policies, verifying domain registration details, and continuing to leverage their strong market position and customer trust to maintain competitive advantage.

Magpie Property Management operates as a local estate and letting agency based in St Neots, Cambridgeshire, UK. The company provides property sales, lettings, and management services targeting property buyers, renters, landlords, and property owners in the local area. The website presents a professional appearance with clear branding and relevant content focused on real estate services. However, the domain WHOIS data indicates that the domain 'www.magpieproperty.co.uk' is invalid under Nominet UK naming rules, suggesting possible misconfiguration or use of a subdomain rather than a registered domain. This discrepancy warrants caution regarding domain legitimacy. Technically, the website uses modern web technologies including Bootstrap, Font Awesome 6 Pro, and various JavaScript libraries for UI enhancements. The site includes a cookie consent mechanism compliant with GDPR principles, but lacks explicit privacy policy and terms of service pages. No security headers were detected in the provided data, and no analytics or tracking beyond cookie consent were found. The site appears mobile-optimized with good design and navigation. From a security perspective, the site benefits from cookie consent but lacks visible security headers and formal privacy documentation. The absence of WHOIS registration data and domain registration issues reduce trustworthiness. No vulnerabilities or adult content were detected. Overall, the security posture is moderate but could be improved with better documentation and security best practices. The overall risk assessment suggests the business is legitimate and professional in its operations but should address domain registration clarity and enhance security and privacy compliance to improve trust and reduce potential risks.

D

Dorset HealthCare University NHS Foundation Trust

dorsethealthcare.nhs.uk

73

Dorset HealthCare University NHS Foundation Trust is a large regional healthcare provider delivering comprehensive mental health and community-based physical health services across Dorset, UK. The organization operates under the NHS framework, serving patients, visitors, carers, and healthcare professionals with a focus on accessibility and quality care. The website reflects a mature digital presence with clear navigation, professional design, and strong trust indicators including an Outstanding CQC rating. Technically, the site is built on Concrete CMS with modern web technologies such as Bootstrap, jQuery, and Owl Carousel, and includes accessibility tools and multilingual support via Google Translate. Security posture is good with HTTPS enforced and cookie consent mechanisms, though explicit security headers and vulnerability disclosure policies are absent. WHOIS data is unavailable due to the domain being a subdomain under nhs.uk, which is consistent with NHS domain management practices. Overall, the site is trustworthy, compliant with GDPR, and well-positioned to serve its audience effectively.

C

CareTech

caretech-uk.com

71

CareTech is a UK-based healthcare and social care service provider specializing in supporting children and adults with complex needs. The company emphasizes empowering individuals to thrive through dedicated care, support, and education services. Their website reflects a professional and consistent brand image, targeting clients and stakeholders in the healthcare sector. The digital infrastructure leverages modern technologies such as Bootstrap for responsive design, Google Tag Manager, and Microsoft Clarity for analytics, alongside a robust cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. The lack of WHOIS data raises some concerns about domain legitimacy, but the overall professional presentation and comprehensive privacy policies mitigate immediate risks. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to strengthen trust and compliance.

M

Michael Bailey Associates

michaelbaileyassociates.com

53

Michael Bailey Associates is a well-established international recruitment consultancy specializing in IT & Technology, Life Sciences, Finance, and Energy sectors. With over 30 years of experience, the company offers recruitment and project resource solutions to a global client base, emphasizing strong local networks and market-focused relationships. The website reflects a professional and consistent brand image, targeting job seekers and corporate clients alike. Technically, the website employs modern web technologies including Bootstrap, jQuery, Owl Carousel, and Google reCAPTCHA v3 for security. It is mobile-optimized with good SEO practices and integrates Google Tag Manager for analytics. The site uses HTTPS exclusively, ensuring secure data transmission. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CAPTCHA integration on forms. However, it lacks visible security headers and explicit incident response or security policy documentation. The absence of WHOIS domain registration data is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly impacts trustworthiness. Overall, the website is professional, secure, and compliant with GDPR, but the missing WHOIS data and lack of explicit security policies suggest areas for improvement. Strategic recommendations include enhancing security headers, publishing incident response policies, and verifying domain registration details to strengthen trust and compliance.

A

Apodi

apodi.co.uk

60

Apodi is a UK-based healthcare services provider specializing in facilitating access to medicines and healthcare services, primarily serving pharmaceutical companies, healthcare professionals, and patients. Their offerings include market insight services, specialist healthcare professional (HCP) services, homecare, recruitment, HR and development, and a patient portal. The company positions itself as a trusted partner with strong industry certifications and a focus on improving patient outcomes through innovative healthcare solutions. The website reflects a professional and consistent brand image with clear navigation and comprehensive service descriptions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI/UX enhancement libraries. It is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Analytics tools such as Google Analytics and planned LinkedIn analytics are integrated with user consent. However, some security best practices like security headers are not visibly implemented, representing an area for improvement. From a security perspective, the site uses HTTPS with a strong SSL configuration and does not expose sensitive data. The cookie consent mechanism and privacy policy indicate good privacy compliance. The absence of a dedicated security policy or incident response contact reduces transparency. WHOIS data for the domain is unavailable or indicates the domain queried is not registered, which slightly impacts trust from a domain legitimacy standpoint but does not detract from the professional presentation and certifications. Overall, Apodi's website demonstrates a solid business and technical foundation with good security and privacy practices. Strategic improvements in security headers, incident response transparency, and domain registration clarity would enhance trust and security posture further.

M

Molesey Metal Works Ltd

moleseymetalworksltd.co.uk

44

Molesey Metal Works Ltd is a well-established, third-generation metal fabrication and welding company based in West Molesey, Surrey, serving local areas including Esher, Kingston, and Walton-on-Thames. The company offers a broad range of metalworking services including bespoke metalwork, structural steelwork, and architectural metalwork, targeting private, commercial, and industrial clients. Their business model focuses on custom fabrication with direct delivery and strong customer relationships, supported by a skilled team with City & Guilds qualifications and liability insurance. The website reflects a professional and trustworthy business with positive client testimonials and a history of work for prestigious clients such as royal households.

I

Ian Hitchman Fabrications Ltd

ianhitchmanfabrications.co.uk

50

Ian Hitchman Fabrications Ltd is a small, established steel fabrication business based in Troon, UK, with over 40 years of experience specializing in bespoke metalwork including gates, railings, handrails, and industrial metal projects. The company targets residential and industrial clients primarily in Ayrshire and Glasgow. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Bootstrap and jQuery, with analytics and tag management implemented via Google services. Security posture is adequate with HTTPS and a Content Security Policy header, but lacks some advanced security headers and explicit incident response information. Privacy compliance is well addressed with a privacy policy and cookie consent mechanism. However, the domain WHOIS data is unavailable and shows an error indicating the domain cannot be registered, which raises concerns about domain legitimacy despite the professional website content. Overall, the site is trustworthy from a business and content perspective but would benefit from clarifying domain registration and enhancing security disclosures.

S

Sooriya Hospital

sooriyahospital.com

41

Sooriya Hospital is a well-established multispeciality tertiary care hospital located in Chennai, India, with a strong reputation for providing comprehensive healthcare services across multiple specialties including cardiology, gynaecology, paediatrics, and respiratory medicine. The hospital emphasizes advanced medical technologies, multidisciplinary care, and patient-centric services, positioning itself as a leading healthcare provider in the region. The website reflects a medium-sized healthcare institution with a focus on quality patient care and international patient services. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, delivering a responsive and visually appealing user experience. While the site is mobile optimized and SEO friendly, there is room for improvement in accessibility and performance optimization. The absence of a CMS suggests a custom or static site approach. From a security perspective, the website uses HTTPS and has domain transfer protections in place, but lacks visible security headers and published security policies. No privacy or cookie policies are present, indicating compliance gaps with data protection regulations. The WHOIS data supports the legitimacy of the domain with consistent registration details and a long domain age. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

О

ООО "VIRTUAL CLOUDS"

onesec.uz

60

ONESEC.UZ is a specialized information security service provider based in Uzbekistan, offering a range of services including security analysis, load testing, consulting, training, forensics, OSINT, and regulatory document development. The website targets businesses and organizations in Uzbekistan seeking cybersecurity solutions. The technical infrastructure includes modern frontend technologies such as Bootstrap and Owl Carousel, integration with Yandex Maps, and tracking via Google Analytics, Facebook Pixel, and Yandex Metrika. The website is hosted by ООО "VIRTUAL CLOUDS", a hosting and registrar company, with domain registration dating back to 2021. Security posture is generally good with HTTPS enabled and Cloudflare DNS usage, but lacks published security policies and incident response contacts. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. Overall, the website is professional and functional but could improve transparency and compliance.

S

SIA Madara

madara.lv

48

SIA Madara operates a website focused on providing office and industrial space rental services in Jelgava, Latvia, alongside metal container sales and machine building services. The company targets local businesses and industrial clients seeking large rental spaces and related manufacturing products. The website is professionally designed with clear navigation and multilingual support, primarily in Latvian with English and Russian options. The technical infrastructure employs a variety of JavaScript libraries and frameworks, including jQuery, Bootstrap, and Google Maps API, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate; while HTTPS is presumed, no explicit security headers or incident response policies are evident. Privacy compliance is good, with a clear privacy policy and cookie consent mechanism implemented. Business credibility is supported by clear contact information and a certification page, though the absence of terms of service and incident response contacts are noted. Overall, the website presents a trustworthy and professional front for a small local business with room for security and compliance improvements.

3

3PIĘTRO

3pietro.eu

42

3PIĘTRO is a small real estate agency based in Poland, specializing in property sales, rental management, and home staging services primarily in Sosnowiec and nearby cities. The website presents a professional and content-rich platform with detailed property listings and team member contacts, supported by active social media channels. Technically, the site uses a custom real estate CMS with common web technologies such as jQuery, Bootstrap, and Google Fonts, delivering a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks important security headers and explicit privacy or cookie policies, which are compliance gaps. WHOIS data is unavailable due to registry privacy, limiting domain trust assessment, but the website content and structure indicate a legitimate local business. Overall, the site scores moderately well in content quality and business credibility but should improve privacy compliance and security best practices.

S

Samorząd Województwa Mazowieckiego

mazovia.pl

59

Mazovia.pl is the official website of the Samorząd Województwa Mazowieckiego (Mazowieckie Voivodeship Government) in Poland. It serves as a comprehensive information portal providing news, announcements, and resources related to regional governance, culture, transport, health, education, ecology, and public safety. The site targets residents, local government officials, businesses, media, and NGOs within the Mazowieckie region. Its business model is that of a public sector communication platform, emphasizing transparency and citizen engagement. Technically, the website is built on a custom CMS platform (SmartSite by BIT Sp. z o.o.) and leverages common web technologies such as jQuery, Bootstrap, Font Awesome, and various carousel and UI libraries. The site is hosted by home.pl sp. z o.o., a reputable Polish hosting provider. The site demonstrates good mobile optimization, accessibility features including contrast toggles and sign language translation links, and SEO best practices with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks visible security headers in the provided HTML. DNSSEC is not enabled for the domain, which is a recommended improvement. There is no visible security policy, incident response contact, or vulnerability disclosure mechanism such as a security.txt file. Cookie consent and privacy policies are present and appear GDPR compliant. No critical vulnerabilities or exposed sensitive data were detected in the analysis. Overall, mazovia.pl is a trustworthy and professionally maintained government website with a strong focus on accessibility and compliance. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security policies, and implementing a vulnerability disclosure process to enhance security posture further.

CraftW. is a Latvian IT services company established in 2005, specializing in software development, network infrastructure design, and IT support services. The company targets business clients seeking tailored IT solutions and has a moderate market presence with over 15 years of experience. The website reflects a professional digital presence with clear service descriptions and project references. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Google services for analytics and advertising. However, there is a lack of visible privacy and cookie policies, and no explicit security headers or HTTPS status were confirmed, indicating room for improvement in security and compliance. Overall, the security posture is moderate but could benefit from enhanced policies and technical safeguards. The domain registration aligns with the company's founding date, supporting legitimacy. Strategic recommendations include implementing privacy and cookie policies, improving security headers, and publishing incident response contacts to enhance trust and compliance.

N

NetApp Instaclustr

instaclustr.com

80

NetApp Instaclustr operates a managed platform specializing in open source data infrastructure technologies such as Apache Kafka, Cassandra, PostgreSQL, OpenSearch, and others. Positioned as an enterprise-grade solution, it targets organizations seeking to simplify and scale their data infrastructure both on-premises and in the cloud. The company leverages its parent company NetApp's brand and resources to establish market trust and credibility. The website demonstrates a mature digital presence with comprehensive content, professional design, and strong SEO and accessibility features. The technical infrastructure is modern, utilizing WordPress CMS with advanced marketing and analytics integrations. Security posture is robust, supported by multiple certifications including GDPR, SOC2, and ISO standards, though explicit security headers could be further verified. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for enterprise domains. Overall, the site reflects a secure, compliant, and professional business operation with a clear focus on managed open source services.

P

Platon Technologies, s.r.o.

platon.org

64

Platon Technologies, s.r.o. is a Slovak-based technology company specializing in domain registration, web hosting, server management, SSL certificates, mass mailing, and CDN cloud services. With over 15 years of experience, they operate their own data center infrastructure and provide fully managed services targeting businesses and individuals seeking reliable internet infrastructure solutions. The website is professionally designed, mobile-optimized, and offers clear navigation and comprehensive contact options including email, phone, and contact forms. Technically, the site uses modern frontend libraries such as jQuery, Bootstrap, and Google reCAPTCHA v3 for security on forms. While HTTPS is enforced and no sensitive data is exposed, the absence of explicit security headers and lack of a published security policy or incident response information are areas for improvement. The WHOIS data is malformed and unavailable, which slightly reduces domain trustworthiness, but the overall business presence and transparency on the site support legitimacy. Cookie consent mechanisms and privacy policies are implemented, indicating good privacy compliance. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility.

Impuls savjetovanje is a professional consulting firm specializing in securing and managing EU funds, international cooperation projects, education, and sustainability advisory services. The company has a strong market presence in Croatia and the surrounding region, demonstrated by its extensive portfolio of over 400 successful projects and partnerships with recognized organizations. Their website reflects a mature digital infrastructure built on WordPress with modern frameworks and plugins, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, hCaptcha, and GDPR-compliant cookie consent are implemented effectively, indicating a solid security posture. However, the absence of publicly available WHOIS data due to privacy protection is noted but justified given the business nature. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

E

Elproms Team j.d.o.o.

elproms.com

54

Elproms Team j.d.o.o. is a Croatian IT company specializing in Internet of Things (IoT) technology and smart business solutions. Founded in 2018 and headquartered in Zagreb, the company offers enterprise software products such as Improve Card for business monitoring and Qualy for ISO 9001 conformity. Their market positioning targets manufacturing companies and businesses seeking smart home, smart city, and Industry 4.0 solutions. The website reflects a professional and consistent brand image with clear contact details and partner affiliations. Technically, the site uses modern web technologies including Bootstrap and jQuery, is mobile optimized, and implements cookie consent mechanisms. Security posture is solid with HTTPS enforced and CSRF protection on forms, though some security headers and DNSSEC are missing. Privacy compliance is well addressed with accessible policies and GDPR consent. Overall, the company presents a credible and trustworthy digital presence.

A

Auraknihy

auraknihy.sk

41

Auraknihy.sk is a Slovak online bookstore specializing in a wide range of books, 3D puzzles, audiobooks, and educational products. The business targets general consumers interested in literature and educational hobbies, operating primarily as a small regional e-commerce retailer. The website is built on Joomla CMS with VirtueMart e-commerce, featuring user accounts, shopping cart, and newsletter subscription functionalities. The site is well-branded, with consistent design and clear navigation, supporting a positive user experience. Technically, it uses modern JavaScript libraries and frameworks, with moderate performance and good mobile optimization. Security posture is solid with HTTPS, CSRF protection, and cookie consent, but lacks a dedicated security policy or incident response information. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

U

Udruga konzultantskih društava u graditeljstvu

ukdg.hr

45

UKDG is a Croatian non-profit association representing consulting companies in the construction sector. Founded in 2011, it aims to protect and enhance the business interests and reputation of its members by promoting professional standards and ethics. The website reflects a mature organization with clear business objectives, member services, and international affiliation through FIDIC membership. Technically, the site uses a modern stack including Bootstrap, jQuery, and various UI libraries, hosted under Croatian registrar CARNET with consistent domain registration data. Security posture is solid with HTTPS and cookie consent implemented, though it lacks explicit security policies and some security headers. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

W

Weidmüller Lanškroun s.r.o.

weidmueller-lanskroun.com

42

Weidmüller Lanškroun s.r.o. is a manufacturing subsidiary of the multinational Weidmüller Holding Co&KGaA, specializing in the production of precise spare parts, tools, molds, and providing metal and plastic pressing along with simple automation solutions. The company targets industrial clients requiring high-quality manufacturing services. The website reflects a professional and consistent brand image with clear contact details and partner affiliations, positioning the company as a reliable manufacturing entity within its sector. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Active24 infrastructure. The site is mobile optimized with good navigation and moderate performance. However, no CMS or advanced frameworks were detected, indicating a straightforward static or custom-built site. From a security perspective, the site uses HTTPS (implied by domain status and typical practice), but lacks visible security headers and does not implement DNSSEC. There is no privacy or cookie policy present, which is a compliance gap. No incident response or security policy information is provided. No forms are present on the main page, reducing attack surface but also limiting user interaction. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its security posture and regulatory adherence.

S

SOLEN, s. r. o.

mudr.online

54

mudr.online is an online platform operated by SOLEN, s. r. o., providing online events, webinars, and AD tests primarily for medical professionals in Slovakia. The website is professionally designed with a clear focus on educational services in the healthcare sector. The platform leverages modern web technologies including jQuery, Vimeo API, and Cookiebot for consent management, ensuring GDPR compliance. The domain registration and business information are consistent and legitimate, supporting the credibility of the service. Security posture is good with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and some security headers could be improved. Overall, the site presents a trustworthy and compliant online educational service.

BigMedia, spol. s r.o. is a well-established leader in the Central European outdoor advertising market, specializing in a broad range of advertising formats including billboards, digital displays, and transport advertising. The company offers comprehensive services from rental to production and installation, targeting businesses and advertisers seeking out-of-home advertising solutions. Their market position is strong, supported by a domain registered since 2008 and active social media presence. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Quantcast Choice for consent management, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and professional design. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found. Overall, the website is professional and trustworthy but could improve transparency and security practices.

F

Fantaisie Software

purebasic.com

48

PureBasic.com is the official website for PureBasic, a modern BASIC programming language developed by Fantaisie Software since 1998. The site provides comprehensive information about the language's features, supported platforms, and related products such as SpiderBasic. The business targets both beginner and expert programmers seeking a fast, portable, and easy-to-use BASIC compiler and IDE. The website is professionally designed with clear navigation and relevant content, supporting multiple languages and offering user login functionality. Technically, the site uses a modern tech stack including HTML5, CSS3, JavaScript libraries like jQuery, Modernizr, and Google Analytics for tracking. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. No CMS or hosting provider details are evident. Performance is moderate with no blocking or WAF detected. Security posture is moderate; the site uses HTTPS but lacks visible security headers and published security policies. Forms use POST methods but no explicit cookie consent or GDPR compliance mechanisms are present. WHOIS data is missing, which reduces trustworthiness but the site content and business information appear legitimate. No vulnerabilities or exposed sensitive data were detected. Overall, PureBasic.com is a trustworthy and professional site for a niche programming language product. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and compliance.

Q

QM Sports Care

qmsportscare.eu

44

QM Sports Care is a small retail business specializing in premium, natural-based massage and sports care products targeted at professional and recreational athletes. The company positions itself as a trusted supplier in the sports care market, emphasizing natural ingredients and quality. The website reflects a professional brand image with consistent branding and a clear focus on its target audience. Technically, the website uses a modern front-end stack including Bootstrap, jQuery, and various UI libraries, providing a good user experience with mobile optimization and clear navigation. However, the site lacks visible privacy and cookie policies, which impacts compliance and trust. Security posture is moderate with HTTPS implied but no visible security headers or vulnerability disclosures. Overall, the site is safe and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Ř

Řešení pro audio / videokonference

headsety.cz

45

The website www.headsety.cz is an e-commerce platform specializing in professional audio and videoconferencing equipment, primarily targeting call centers, offices, and industrial users in the Czech Republic. The site offers a range of products including headsets, videoconferencing devices, and hands-free communication tools. The business presents itself professionally with clear product offerings, pricing, and customer support channels. The website is built on the OpenCart CMS platform and employs modern web technologies such as jQuery, Bootstrap, and Google Analytics for tracking and marketing purposes. Privacy and cookie policies are present and indicate GDPR compliance, enhancing user trust. However, the absence of WHOIS registrant data and lack of explicit security policies or incident response information slightly reduce the overall trustworthiness. The site uses HTTPS and has a cookie consent mechanism, but lacks visible security headers and a vulnerability disclosure page. Overall, the website is functional, secure at a basic level, and professionally maintained, suitable for its niche market.

S

Steel Construction Institute

steel-sci.com

54

The Steel Construction Institute (SCI) is a well-established UK-based organization providing independent technical expertise, certification, training, and advisory services to the steel construction sector globally. With a domain age dating back to 1995 and a clear market position as a leading authority in steel construction, SCI offers a range of services including product certification, technical advice, membership benefits, and research projects. The website reflects a professional and consistent brand image targeting industry professionals and members. Technically, the website is built on WordPress and utilizes common JavaScript libraries such as jQuery, Owl Carousel, and Featherlight Lightbox. It integrates Google Analytics and Google Tag Manager for user tracking and marketing purposes. The site is mobile-optimized with good navigation and content relevance, though some accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protection. However, it lacks DNSSEC and important security headers, and there is no visible security or incident response policy. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a low-risk profile with strong business credibility and professional content. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance the security posture and user trust.

R

Regionalverband Großraum Braunschweig

regionalverband-braunschweig.de

49

Regionalverband Großraum Braunschweig is a regional governmental organization responsible for regional development, mobility, and sustainable planning in the Großraum Braunschweig area of Germany. It coordinates public transport services, regional planning, and climate protection initiatives, serving multiple cities and counties. The website reflects a mature digital presence using TYPO3 CMS and modern frontend technologies, with good mobile optimization and accessibility. Privacy and cookie consent mechanisms are implemented in compliance with GDPR. Security posture is solid with HTTPS and consent management, though additional security headers and explicit security policies could enhance protection. Overall, the site is professional, trustworthy, and well-aligned with its public service mission.

M

MEVA-HU Kft

mevakomi.hu

44

MEVA-HU Kft is a Hungarian company specializing in industrial products including waste storage, oil management, warehousing, workshop equipment, and outdoor equipment. The company operates a B2B e-commerce platform supported by regional partner sites in Slovakia, Poland, Germany, and the Czech Republic. Their market position is that of an established regional supplier with a comprehensive product catalog and ISO 9001:2015 certification, indicating quality management standards. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience for industrial clients. Technically, the site uses a BohemiaSoft e-commerce platform with common JavaScript libraries and Google Analytics for tracking. Security posture is generally good with HTTPS, CSRF protections, and cookie consent mechanisms, though some outdated libraries and missing security headers present moderate risks. Privacy compliance is strong with clear GDPR-aligned policies and consent banners. Overall, the site is trustworthy and credible, with clear contact information and certifications. Recommendations include updating JavaScript libraries, enhancing security headers, and publishing a vulnerability disclosure policy to further strengthen security and trust.

S

SOLEN, s. r. o.

solen.sk

58

SOLEN, s. r. o. is a Slovak company specializing in professional healthcare events, medical journals, and books. The website serves healthcare professionals by providing access to specialized medical publications and organizing relevant medical congresses and events. The company appears to hold a solid position in the Slovak healthcare publishing market with a focused business model on education and professional development. The website content is well-structured, professionally presented, and targeted primarily at medical practitioners and healthcare professionals in Slovakia. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Font Awesome, and Owl Carousel, with additional tools for form validation and cookie consent management. The site is mobile-optimized and uses HTTPS with CSRF protection, indicating a mature digital infrastructure. Google Analytics and Cookiebot are used for analytics and privacy compliance, respectively, reflecting adherence to GDPR requirements. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, CSRF tokens, and a comprehensive cookie consent mechanism. However, some standard security headers are missing, and there is no public incident response or security policy documentation. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is consistent with the website's business claims, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong privacy compliance and a professional online presence. Strategic improvements could include adding security headers, publishing incident response policies, and enhancing accessibility features to further strengthen security and compliance posture.

F

FETMED

fetmed.cz

47

FETMED is a specialized healthcare provider in the Czech Republic focusing on fetal medicine, genetics, and gynecology. The company operates two physical centers in Olomouc and Ostrava, offering comprehensive prenatal diagnostics, genetic consultations, psychological counseling, and pediatric cardiology. Their market position is that of a trusted regional specialist with experienced medical professionals and advanced diagnostic technologies. The website is professionally designed, mobile-optimized, and provides clear service information and contact channels. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Google reCAPTCHA, ensuring a functional and user-friendly experience. Performance is moderate with good mobile responsiveness and basic accessibility features. However, some security best practices such as security headers are missing, and no privacy policy or terms of service pages are present, which impacts compliance and trust. Security posture is generally good with HTTPS enforced and use of CAPTCHA for forms, but the absence of security headers and WHOIS transparency reduces the overall security confidence. No vulnerabilities or exposed sensitive data were detected. Cookie consent is implemented properly, supporting GDPR compliance to some extent. Overall, the website is a credible and professional healthcare service platform with room for improvement in privacy disclosures and security hardening. The lack of WHOIS data is a concern but may be due to local registry policies. Strategic recommendations include publishing privacy and terms policies, adding security headers, and maintaining updated libraries to enhance security and compliance.

E

Examples.com

examples.com

59

Examples.com is an educational website offering a wide range of free interactive resources, including guides, lessons, practice tests for AP exams, and various online calculators and converters. The site targets teachers and students seeking comprehensive educational materials across subjects such as English, Maths, Science, and more. The business model focuses on providing free educational content to support learning and exam preparation, positioning itself as a valuable resource in the education sector. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Owl Carousel, MathJax, and Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices, with clear navigation and structured content. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. The absence of WHOIS data for the domain raises some concerns about registration transparency, although the website content and structure appear professional and trustworthy. Overall, Examples.com presents a solid educational platform with good content quality and user experience. Strategic improvements in security headers, privacy compliance, and domain registration transparency would enhance its trustworthiness and compliance posture.

N

Nemocnice České Budějovice, a.s.

csklg.cz

43

The website csklg.cz serves as the official platform for the 1st Czechoslovak Congress of Medical Genetics, scheduled for April 2025 in Luhačovice, Czech Republic. It is organized by Nemocnice České Budějovice and associated professional genetics societies from Czechia and Slovakia. The site provides detailed program schedules, speaker information, venue details, registration instructions, and contact information, targeting medical genetics professionals and researchers. The business model focuses on event organization and professional networking within the healthcare genetics sector. The domain is newly registered in 2024, aligning with the event timeline, and hosted via Active24.

K

Kardioakademie IKEM

kardioakademie.cz

64

Kardioakademie IKEM is a specialized educational platform focused on postgraduate training in cardiology, offering modular courses targeted at medical professionals and cardiology specialists primarily in the Czech Republic. The website presents a professional and consistent brand image with good content quality and relevant educational information. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern plugins such as Yoast SEO and Cookiebot for SEO and privacy compliance respectively. The infrastructure is hosted via a Czech registrar and hosting provider, ensuring regional consistency and domain legitimacy. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, although there is room for improvement in security headers and explicit privacy policy documentation. Overall, the site is safe, trustworthy, and well-positioned within its niche educational market.

Q

Q12

q12.ch

58

Q12 is a collaborative network of small and medium-sized cultural and congress venues across Switzerland, providing event locations primarily for cultural and congress events. The website presents a professional and consistent brand image, targeting event organizers and cultural institutions within Switzerland. The technical infrastructure relies on legacy JavaScript libraries such as jQuery 1.8 and includes Google Analytics for visitor tracking. Mobile optimization is good, and the site includes basic SEO and accessibility features. Security posture is moderate but impacted by the use of outdated libraries and lack of visible security headers. Privacy compliance is addressed with a cookie consent banner and a privacy policy, though no terms of service or incident response policies are evident. Overall, the site is safe with no adult or questionable content, but improvements in security and compliance documentation are recommended.

Skupina GEN is a major Slovenian energy group focused on sustainable and low-carbon electricity production, primarily through nuclear and hydroelectric power. The company also engages in electricity trading and strategic investments, including the development of the second block of the Krško nuclear power plant (JEK2). Their website reflects a professional corporate presence with clear navigation and relevant content for stakeholders and the general public. Technically, the site uses established JavaScript libraries and Google services, hosted on Microsoft Azure DNS infrastructure, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements are recommended such as updating libraries and publishing formal security policies. Overall, the domain and WHOIS data confirm a legitimate and established business entity with consistent registration details.

A

Aarau Regio

aarau-regio.ch

44

Aarau Regio is a regional governmental entity focused on coordinating cooperation and projects within the Aarau region in Switzerland. The website serves as an information portal highlighting current projects, regional cooperation efforts, and news relevant to residents and stakeholders. The organization emphasizes regional development, spatial and traffic planning, and nature and landscape protection. The website is built on the TYPO3 CMS platform and incorporates modern web technologies including jQuery, Owl Carousel, and analytics tools such as Google Analytics and Matomo. While the site is well-structured and professionally designed, it lacks visible cookie consent mechanisms and detailed privacy compliance features, which may pose GDPR compliance challenges. Security posture is moderate with HTTPS enforced but missing advanced security headers and explicit security policies. Overall, the domain registration and WHOIS data align well with the website's governmental nature, indicating legitimacy and trustworthiness.

A

Ace IT s.r.o.

gdpr-experts.cz

44

GDPR Experts, operated by Ace IT s.r.o., is a specialized small business based in the Czech Republic providing GDPR compliance and IT security consulting services. Their offerings include GDPR training, audits, legal documentation, and IT security assessments tailored for companies and entrepreneurs within the EU. The website is professionally designed with clear navigation and relevant content targeting businesses needing GDPR solutions. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies. Security posture is adequate with HTTPS implied but lacks visible security headers and incident response information. Overall, the domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

N

NordNet SA (Registrar)

tourisme-en-champagne.com

57

The website tourisme-en-champagne.com serves as a comprehensive regional tourism portal for the Champagne region in France, offering information on destinations, cultural heritage, accommodations, and activities. It targets tourists and visitors interested in exploring the Champagne terroir and related experiences. The site is well-established with a domain age dating back to 1999, indicating a mature presence in the tourism sector. Technically, the site is built on Drupal 7 with a variety of JavaScript libraries for UI enhancements and analytics, including Matomo and Google Analytics. While the site is functional and provides good content quality and navigation, it uses some outdated JavaScript libraries that may pose security risks. Security posture is moderate with HTTPS enabled but lacks visible security headers and DNSSEC. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Overall, the site is credible and trustworthy but would benefit from improvements in security and privacy compliance.

P

Pomurska gospodarska zbornica

pgz.si

10

Pomurska gospodarska zbornica (PGZ) is a regional economic chamber based in the Pomurje region of Slovenia, established in 2008. The organization focuses on uniting and supporting local businesses through networking events, consulting services, public documentation, and educational programs. The website reflects a professional and consistent brand presence, targeting a broad audience including businesses and stakeholders in the region. The site content is primarily in Slovenian and provides comprehensive information about the chamber's activities, projects, and regional economic data. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, FontAwesome, and Owl Carousel, with Google Analytics integrated for user tracking. The site is mobile-optimized and demonstrates good SEO practices.

M

MENTOR - Die Leselernhelfer Nordhessen e.V.

mentor-nordhessen.de

45

MENTOR - Die Leselernhelfer Nordhessen e.V. is a regional non-profit organization dedicated to improving children's literacy and language skills through individual mentoring programs. Affiliated with the national MENTOR federation, it connects volunteer mentors with schools to provide weekly reading support for children aged 6 to 16. The website reflects a clear mission and target audience focused on education and community support. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap 5 and jQuery. It is hosted on servers indicated by the nameservers from agenturserver, suggesting a professional hosting environment. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. From a security perspective, the site uses HTTPS and includes CSRF tokens and a GDPR-compliant cookie consent mechanism. However, it lacks visible security headers and does not provide explicit security policies or incident response contacts. No vulnerability disclosure or security.txt files are present, which could be improved to enhance trust and security posture. Overall, the website is safe, professional, and trustworthy with a strong focus on privacy compliance and user protection. The main risks relate to missing security headers and lack of formal security documentation. Strategic improvements in these areas would strengthen the organization's digital security and compliance standing.

E

ESYLUX Deutschland GmbH

services-esylux.de

49

ESYLUX Deutschland GmbH operates a professional website offering intelligent automation and lighting solutions focused on energy efficiency and human-centric lighting. The company targets business and professional customers in the technology and energy sectors, providing a broad product portfolio and digital tools. The website is built on TYPO3 CMS with modern technologies and includes comprehensive privacy and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and no exposed sensitive data, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance.

E

ESYLUX GmbH & Co. KG

esylux.com

10

ESYLUX GmbH & Co. KG is a medium-sized German technology company specializing in intelligent automation and lighting solutions, targeting business sectors such as offices, education, healthcare, and outdoor environments. The company offers a broad portfolio including presence and motion detectors, lighting systems, and control technologies, positioning itself as an established specialist with international reach. The website reflects a mature digital presence with a professional design, multilingual support, and comprehensive product and service information. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and analytics tools, delivering good performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though there is room for improvement in published security policies and incident response transparency. The absence of WHOIS registration data slightly impacts domain trust but is mitigated by the professional and consistent web presence. Overall, ESYLUX demonstrates a solid business and technical foundation with good compliance and security practices.

S

smARTec Veranstaltungstechnik AG

smartec.com

38

smARTec Veranstaltungstechnik AG is a Swiss-based company specializing in mobile event technology and digital events, offering services such as lighting, sound, and video technology rental and operation. Positioned as a Swiss industry leader with approximately 2000 projects annually, the company targets corporate, public, and exhibition event organizers. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and integrates analytics tools like Google Analytics and Matomo, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website and certifications. Overall, the site is trustworthy and business credible but would benefit from improved transparency in domain registration and security policies.

B

Busbetrieb Aarau AG (BBA)

busaarau.ch

52

Busbetrieb Aarau AG (BBA) is a regional public transportation company operating bus services in Aarau, Switzerland. The company provides comprehensive transit services including bus lines, schedules, ticketing options, and customer support. Their website is designed to serve local commuters and visitors with real-time information and service updates. The business operates in the transportation sector with a medium-sized organizational footprint and a clear focus on regional mobility solutions. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses a secure CMS platform but lacks some advanced security headers and does not publish a formal security or incident response policy. Privacy compliance is partially addressed with a privacy policy and cookie information, though no explicit cookie consent mechanism is present. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives.

M

MENTOR - Die Leselernhelfer Bundesverband e.V.

mentor-bundesverband.de

44

MENTOR - Die Leselernhelfer Bundesverband e.V. is a German non-profit organization dedicated to improving literacy and language skills among children and youth through volunteer reading mentors. With a large volunteer base and partnerships, it supports thousands of students nationally, offering both in-person and online reading sessions. The website reflects a well-established educational non-profit with clear contact information and community engagement. Technically, the site is built on Joomla CMS with Bootstrap and common JavaScript libraries, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and CSRF protections, but lacks advanced security headers and explicit incident response policies. Privacy compliance is strong with visible cookie consent and a comprehensive privacy policy. Overall, the site is trustworthy and professionally maintained, though improvements in security policies and vulnerability disclosure could enhance its posture.

gis.Point is a specialized media portal operated by VDE VERLAG GmbH, focusing on geoinformation and geodesy sectors. It offers industry news, podcasts, videos, event listings, and subscription-based magazines, serving professionals and enthusiasts in the geospatial domain. The website is well-structured, content-rich, and targets a niche audience with relevant and up-to-date information. The business model revolves around media publishing and information dissemination, supported by advertising and book sales through affiliated partners.

V

Ville de Vandœuvre

vandoeuvre.net

52

The website www.vandoeuvre.fr serves as the official digital presence of the city of Vandœuvre in France, providing residents and visitors with access to city news, event agendas, and a variety of public services including online administrative procedures. The site is positioned as a municipal government portal with a medium-sized audience primarily localized to the city and surrounding region. The content is well-structured, professionally presented, and consistent with official city branding, targeting a general audience with information relevant to local governance and community engagement. Technically, the site is built on WordPress CMS, utilizing common plugins such as Yoast SEO for search optimization and Matomo for privacy-conscious analytics. The technology stack includes modern JavaScript libraries and UI frameworks, ensuring a good user experience with mobile responsiveness and moderate performance. However, some accessibility features could be improved, and security headers are not explicitly detected in the provided data. From a security standpoint, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism, reflecting awareness of privacy regulations. No critical vulnerabilities or exposed sensitive data were identified in the HTML content. However, the absence of a published privacy policy, terms of service, and security incident contact information represents compliance and transparency gaps. The WHOIS data for the domain is unavailable, which reduces trust signals but may be due to AFNIC's query restrictions or privacy protections. Overall, the website demonstrates a solid foundation for municipal digital services with good content quality and technical implementation. Strategic improvements in security headers, privacy documentation, and WHOIS transparency would enhance trust and compliance. The risk profile is moderate with no immediate critical issues detected.

V

Vodovod i kanalizacija d.o.o. Ogulin

vodovod-ogulin.hr

43

Vodovod i kanalizacija d.o.o. Ogulin is a local public utility company providing potable water supply and sewage services to the Ogulin region in Croatia. The company emphasizes quality water provision, environmental protection, and customer satisfaction. The website serves as an information portal for consumers, offering news, service information, and contact options. The business operates in the energy sector with a small company size and targets local residents and water consumers. Technically, the website is built on WordPress using common plugins and libraries such as jQuery, Bootstrap, and Google reCAPTCHA. It features accessibility tools and is mobile optimized, providing a good user experience. However, the site lacks some advanced SEO and security configurations, such as security headers and detailed privacy policies. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. Google reCAPTCHA is used to protect forms from abuse. However, there is no published security or incident response policy, and the domain registration uses privacy protection, which reduces transparency. No critical vulnerabilities or malicious content were detected. Overall, the website is functional, professional, and trustworthy for its purpose but would benefit from enhanced privacy disclosures, security headers, and transparency in domain registration to improve trust and compliance.