N/a security reports

Stratas Foods is a North American supplier specializing in fats, oils, mayonnaise, dressings, sauces, and related food products targeting foodservice, food ingredient manufacturers, and retail private label markets. The company maintains a professional website with clear navigation and product offerings, supported by active social media channels. Technically, the site uses legacy JavaScript libraries alongside modern frameworks like Bootstrap and Font Awesome, hosted on a SiteWrench CMS platform. While HTTPS is enabled, the use of outdated jQuery versions introduces potential security vulnerabilities. The absence of visible privacy and cookie policies, as well as missing WHOIS registration data, reduces compliance and trustworthiness. Overall, the website is functional and professional but requires improvements in security and privacy transparency.

V

VTTI

vtti.com

36

VTTI is a large, industry-leading energy infrastructure company specializing in storage terminals for energy and essential products including chemicals, LNG, renewable natural gas, and hydrogen. The company positions itself at the forefront of the energy transition with a global network and ambitious sustainability goals. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content about their business, sustainability efforts, and career opportunities. Technically, the site is built on WordPress with modern libraries and integrates third-party services such as Google Analytics, Vimeo, and Cookiebot for analytics and consent management. Security posture is good with HTTPS enforced and privacy compliance mechanisms in place, though explicit security policies and incident response contacts are absent. The domain WHOIS data is missing, which raises concerns about registration legitimacy, but the website content and external references suggest a credible business. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and verifying domain registration details.

The website steppingstone.ws currently serves as a simple placeholder page indicating that an 'Awesome Site' is under construction. There is no substantive business content, contact information, or policies present. The site uses basic HTML, CSS, and SVG graphics with Google Fonts for typography. No advanced frameworks, CMS, or analytics tools are detected. Security posture is minimal with no HTTPS or security headers evident in the provided data. The WHOIS data is privacy protected, which limits the ability to verify registrant legitimacy. Overall, the site is in an early stage of development with very limited digital maturity and no visible compliance or security measures.

A

A&H Software House, Inc.

luxriot.com

54

Luxriot is a technology company specializing in video management software solutions, offering a range of products including standalone and enterprise editions, as well as advanced modules such as license plate recognition, face recognition, and video content analysis. The company targets security professionals, system integrators, and enterprises requiring robust surveillance solutions. Their business model revolves around software licensing, supported by hardware options and client applications for multiple platforms including iOS, Android, and MacOS. The website presents a professional and comprehensive digital presence with detailed product information and customer testimonials, indicating a well-established market position since 2004. Technically, the website is built on WordPress and employs modern web technologies such as jQuery, Slick Slider, and Ninja Forms for interactive features and data collection. Analytics and marketing tools include Google Analytics and Google Tag Manager, supporting moderate user tracking and advertising efforts. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks visible security headers and does not provide explicit security policies or incident response information. The absence of a cookie consent mechanism is a notable gap in privacy compliance. Additionally, the WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and reduces overall trustworthiness. Overall, Luxriot's website reflects a mature business with strong content quality and technical implementation but would benefit from improved security practices and clearer domain registration transparency. Strategic recommendations include implementing security headers, publishing security and incident response policies, adding cookie consent mechanisms, and verifying domain registration details to enhance trust and compliance.

The website at https://restaurant-nois.nl/tkookt.nl/ is currently inaccessible, returning a 403 Forbidden error with minimal HTML content. This prevents any meaningful extraction of business, security, or compliance information. The domain is registered since 2020 with DNSSEC enabled, indicating some legitimacy, but the lack of accessible content severely limits assessment. No metadata, forms, contact details, or policies are available for review. The technical infrastructure cannot be fully evaluated due to blocked access. Security posture is weak as no security headers or best practices are observable, though SSL is presumably enabled given the domain status. Overall, the site is not currently usable for customers or stakeholders, and this represents a significant risk to business credibility and user trust.

S

Sonum International

sonum-int.com

62

Sonum International is a business-oriented website focused on delivering impactful and efficient solutions, as indicated by its tagline. The company appears to have been established in 2010, supported by the domain age. The website is built on WordPress using the Divi theme and hosted on WP Engine, indicating a modern and reliable technical infrastructure. The site employs common analytics and tracking tools such as Google Analytics, Hotjar, and LinkedIn Insight, reflecting a moderate level of digital maturity. Security-wise, the website uses HTTPS and Google reCAPTCHA, but lacks DNSSEC and security headers, which are areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies, and no clear contact or incident response information is provided. Overall, the website is functional and professional but would benefit from enhanced privacy, security, and transparency measures.

I

Error

intelleco.com

51

The domain intelleco.com is registered since 2000 with OVH sas and currently points to Wix hosting infrastructure. However, the website content is an error page served by Wix indicating that the domain is not connected to any active website. There is no business description, contact information, or policies available on the page, which severely limits the ability to assess the business or its market position. The site uses outdated AngularJS 1.2.28 and jQuery 2.0.3 libraries, hosted on Wix platform, with no visible security headers or HTTPS information in the provided data. The lack of privacy and cookie policies, absence of contact details, and the error page status result in a low trust and security posture. Overall, the site appears inactive or misconfigured, which poses a risk to user trust and business credibility.

M

Manaminds

manaminds.com

49

Manaminds is a global distributor specializing in digital gift cards, video games, and software, serving online retail and gaming partners worldwide. Founded in 2018, the company leverages a team with over 20 years of combined industry experience to provide sourcing, wholesale distribution, and API integration services. Their market position is supported by partnerships with leading global brands and positive client testimonials. Technically, the website is built on WordPress with Elementor, hosted on HostGator, and uses modern analytics tools like Google Analytics and Tag Manager. The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business credibility is strong with clear contact information and trust signals. The domain registration is consistent and appropriate for the business age, indicating legitimacy.

The website www.meliusdesign.com appears to be either under development or inactive, with minimal content and no meaningful business information presented. The site uses modern frontend technologies such as Vue.js and Swiper.js but lacks substantive content, contact details, or privacy and security policies. The WHOIS data query returned no registration information, indicating the domain may not be registered or WHOIS data is not publicly available, which raises significant trust concerns. Technically, the site is accessible and uses HTTPS, but lacks security headers and privacy compliance indicators. Overall, the site presents a low maturity digital presence with poor business credibility and security posture.

B

BranchTrack

branchtrack.com

71

BranchTrack operates as a specialized experiential learning platform focused on delivering simulation-based training solutions to Learning & Development professionals and business managers. The platform offers no-code authoring tools, seamless LMS integrations, and live session capabilities, positioning itself as a scalable and user-friendly solution for corporate training. The website demonstrates a mature digital presence with modern technologies such as Webflow CMS, Google Analytics, Microsoft Clarity, and Google Tag Manager, ensuring good performance, mobile optimization, and user engagement tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies could be improved. The absence of WHOIS data raises concerns about domain registration legitimacy, but the professional website and business content suggest a legitimate operation. Overall, the site scores well on content quality and technical implementation but has room for improvement in business credibility and security transparency.

L

Legalmondo

legalmondo.com

49

Legalmondo operates as an international network platform connecting companies with a curated network of independent lawyers across 62 countries. The website positions itself as a trusted resource for companies seeking legal assistance to grow and manage their business internationally. The platform offers access to over 120 specialized lawyers, practical guides, and a blog to support its users. The business model centers on facilitating legal connections rather than direct legal services, targeting companies expanding globally. Technically, the website is built on WordPress with a modern tech stack including jQuery, amCharts for interactive maps, WooCommerce, and multilingual support via WPML. It employs Google Tag Manager and Google Analytics for tracking and uses reCAPTCHA v3 to protect its contact form from spam. The site is mobile optimized and SEO friendly, with structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS with a valid SSL certificate and uses reCAPTCHA for form security. However, it lacks several security headers and does not provide explicit terms of service or security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the site content and social media presence suggest an active and professional operation. Overall, the website presents a professional and functional platform with good content quality and technical implementation. The main risks relate to the missing WHOIS data and incomplete privacy compliance elements such as cookie consent and terms of service. Strategic improvements in these areas would enhance trust and security posture.

G

greenmart.eu is available for purchase - Sedo.com

greenmart.eu

53

The website is a domain sales landing page hosted on Sedo.com, a well-known domain marketplace platform. It offers the domain greenmart.eu for purchase, targeting domain investors and buyers. The site content is minimal, focusing on domain availability and purchase options, with no direct business operations or services presented. The domain is registered since 1998 with a reputable registrar and uses Cloudflare DNS, indicating a stable technical foundation. However, DNSSEC is not enabled, which is a minor security gap. The website uses HTTPS and includes a cookie consent banner, but lacks privacy policy, terms of service, and contact information, limiting compliance and user trust. No advanced analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the site is functional for its purpose but lacks comprehensive privacy and security disclosures.

R

ROTA

rota.com

55

ROTA operates as a workforce management and shift scheduling platform primarily targeting healthcare workers and employers. The website signin.rota.com serves as a login portal redirecting users to the main application at app.rota.com. The business is linked to TTM Healthcare, a known entity in the healthcare staffing sector, which provides credibility and a partner ecosystem. The platform offers mobile applications for candidates, enhancing accessibility and user engagement. Technically, the website is built with standard web technologies including HTML5, CSS3, and JavaScript. The site is functional with basic mobile optimization and moderate performance. However, the technical stack is minimal with no detected advanced frameworks or CMS. The login form is simple, with no visible input fields on this page, likely relying on the redirected app for authentication. From a security perspective, the site uses HTTPS for form submission but lacks visible security headers and advanced protections such as CAPTCHA or bot mitigation. Privacy and cookie policies are present and linked from related domains, indicating compliance with GDPR and data protection standards. No direct contact emails or phone numbers are provided on this page, but a contact support form is linked. WHOIS data for the subdomain is unavailable as expected, with no suspicious patterns detected. Overall, the website presents a moderate risk profile with room for security enhancements and improved transparency. The business credibility is supported by its association with TTM Healthcare. Strategic improvements in security headers, user authentication protections, and direct contact information would strengthen trust and compliance.

I

IREX

irex.org

65

IREX is a well-established global non-profit organization focused on development and education, aiming to create a more just, prosperous, and inclusive world. Their key services include advancing teacher skills, youth leadership development, institutional support, and media literacy. The website demonstrates a strong market position with extensive program reach and impact, supported by clear statistics and social media presence. Technically, the site is built on Drupal 10, uses Google Tag Manager and Analytics, and implements cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security policies and headers suggests room for improvement. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable likely due to privacy protection, which is justified for this type of organization.

I

Intercell Virtual Mentoring Platform

intercellworld.com

64

Intercell Virtual Mentoring Platform operates an online career mentorship service offering 1-1 exclusive mentoring from mentors associated with over 5000 brands and covering more than 250 career specializations. The platform targets individuals seeking career guidance and mentorship, positioning itself as a global player in the education sector. The website presents a professional design with good user experience and mobile optimization, leveraging modern web technologies including Bootstrap, Flatpickr, and integration with Google Analytics and Facebook Pixel for tracking and marketing purposes. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and no explicit GDPR compliance indicators. Overall, the website is functional and professional but requires improvements in transparency, privacy, and security documentation to enhance trustworthiness and compliance.

S

Sacred Miles

sacredmiles.com

54

Sacred Miles is a niche travel service provider specializing in spiritual and educational tours in the Baltic States and Russia. The website presents basic information about travel opportunities focused on religious and cultural experiences, targeting travelers interested in Christian and spiritual tours. The business appears to be small and established since 2009, with a consistent domain registration history. Technically, the website uses standard web technologies including Google Analytics, Google Adsense for advertising, and Woopra for user tracking. The site is hosted with DNS services via Cloudflare and uses HTTPS, ensuring encrypted communication. However, the site lacks modern security headers and advanced SEO or accessibility features, indicating room for technical improvement. From a security perspective, the site has a moderate posture with HTTPS enabled but no visible security headers or privacy policies. There are no forms or data collection points, reducing attack surface, but also limiting user engagement. The absence of privacy and cookie policies and contact information reduces compliance with GDPR and general trustworthiness. Overall, the website is functional but basic, with moderate risk due to missing privacy and security best practices. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and reduce risk.

M

MEGOGO

megogo.net

68

MEGOGO is a well-established online streaming platform founded in 2011, offering a wide range of legal movies, TV channels, cartoons, and audiobooks. It targets a broad audience with a focus on Ukrainian viewers for specific subscription packages. The platform operates on a freemium business model, combining free ad-supported content with paid subscriptions. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages to cater to an international user base. Technically, MEGOGO employs modern web technologies including Google Tag Manager, Google Analytics, and lazy loading for performance optimization. The site is hosted via GoDaddy.com, LLC and uses HTTPS with good SSL configuration. While DNSSEC is not enabled, other security best practices such as domain status protections and CSRF tokens are in place. The website integrates multiple advertising networks and tracking services with consent mechanisms, reflecting a moderate level of user tracking balanced with privacy compliance. From a security perspective, the platform demonstrates a solid posture with no critical vulnerabilities detected. The domain registration is consistent with the business claims, showing a long-standing presence and legitimate operation. Privacy policies and terms of service are comprehensive and GDPR compliant, with clear contact information for user support. Overall, MEGOGO presents a trustworthy and professional online media service. Strategically, MEGOGO should consider enabling DNSSEC to enhance DNS security and regularly audit third-party scripts to mitigate potential vulnerabilities. Enhancing explicit security headers and expanding incident response disclosures could further strengthen its security maturity.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) displaying the offline dinosaur game. There is no actual website content, business information, or contact details available. The page serves as a browser error placeholder rather than a public-facing website. The technical infrastructure is limited to embedded JavaScript and CSS for the dinosaur game, with no external dependencies or advanced frameworks. Security posture is minimal due to the nature of the page, with no security headers or policies present. Overall, the site is inaccessible as a business or service platform, resulting in a low risk profile but also no meaningful business or security posture to evaluate.

S

Soсius

socius.lv

41

The website socius.lv represents a small business specializing in graphic design, commercial and art photography, and web design services primarily using WordPress with the Divi theme. The site content is accessible and provides basic information about the services offered, targeting clients interested in design and photography. The technical infrastructure includes standard web technologies such as Google Analytics and Google Tag Manager for tracking, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data limits the ability to fully verify domain legitimacy and registration details. Overall, the site demonstrates a basic digital presence with room for improvement in security, privacy, and business transparency.

M

Error

mazzy.eu

47

The domain mazzy.eu currently hosts an error page served by Wix indicating that the domain is not connected to an active website. There is no business content, contact information, or policies available on the site. The website uses AngularJS and jQuery libraries and is hosted on the Wix platform. The technical infrastructure is basic and typical for a placeholder Wix error page. Security posture is minimal with no visible security headers or SSL configuration details provided. The lack of privacy and cookie policies, absence of contact information, and minimal content result in a low trust and credibility score. Overall, the site does not present an active business or service and is likely not operational at this time.

The website maru-world.com presents minimal content, primarily consisting of an iframe embedding external content from the domain yfdpco.com, which is suspicious and lacks transparency. There is no visible business information, contact details, or privacy and cookie policies, indicating a very low level of digital maturity and professionalism. The domain is registered since 2019 with a reputable registrar, but the website itself does not reflect a legitimate or mature business presence. Technically, the site lacks HTTPS, security headers, and accessibility features, and it performs poorly in mobile optimization and SEO. The security posture is weak, with no protections or best practices implemented, and the use of an iframe to an unknown external domain raises potential security concerns. Overall, the site scores very low on content quality, security, privacy compliance, and business credibility, indicating high risk and low trustworthiness.

D

Dura-Line

duraline.com

64

Dura-Line is a global manufacturer specializing in HDPE conduits and microducts primarily serving the telecommunications, energy, and transportation sectors. The company positions itself as a leader in conduit technology and installation training, offering a comprehensive product catalog and digital tools to support network deployment. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. The technical infrastructure leverages modern analytics and marketing technologies including HubSpot, Microsoft Application Insights, Hotjar, and Google Tag Manager, indicating a data-driven approach to user engagement and marketing. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Overall, the site is professional and trustworthy from a content and technical perspective but would benefit from enhanced transparency in domain registration and security disclosures.

D

Dreams and Wishes of Tennessee

dreamsandwishesoftn.org

56

Dreams and Wishes of Tennessee is a small, established 501(c)(3) non-profit organization dedicated to granting wishes to children and young adults aged 5-21 who have relapsed from cancer. The organization operates primarily within Tennessee and relies on donations, volunteers, and fundraising events to fulfill its mission. The website reflects a focused non-profit with clear calls to action for donations and volunteer involvement, supported by a professional design and consistent branding. Technically, the website is built on WordPress using the Avada theme, with WooCommerce and Gravity Forms plugins for e-commerce and form management. The site integrates PayPal for donations and uses standard web technologies such as jQuery. Performance and mobile optimization are adequate, though accessibility and SEO could be improved. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and domain registration protections but lacks DNSSEC and security headers, which are recommended to enhance security posture. No privacy or cookie policies were found, representing a compliance gap with GDPR and other privacy regulations. Incident response and vulnerability disclosure information are absent, which could be improved to build trust. Overall, the website is functional and trustworthy for its non-profit purpose but would benefit from enhanced privacy compliance, security hardening, and transparency in registrant information to improve credibility and user trust.

The website construction-eg.com currently serves as a simple directory index page with a single downloadable zip file and lacks any meaningful business content or branding. The domain is registered since 2010 via NameCheap, indicating a potentially long-standing registration, but the website itself does not reflect an active or professional business presence. There are no privacy, cookie, or terms of service policies, nor any contact information or social media links, which limits user trust and compliance with data protection regulations. From a technical perspective, the site is hosted on a LiteSpeed Web Server with DNS servers under vfecloud.com and vfecloud.net domains. The website lacks modern CMS or frameworks, has no SEO or accessibility optimizations, and exposes directory listing which can lead to information disclosure risks. No security headers are present, and DNSSEC is not enabled, indicating a basic security posture. Security-wise, the site uses HTTPS but lacks additional security best practices such as security headers and policies. The exposure of directory listing is a vulnerability that should be addressed promptly. There is no evidence of incident response or vulnerability disclosure mechanisms. Overall, the security posture is weak and the site is not GDPR compliant. The overall risk assessment suggests that while the domain registration is legitimate, the website content and security practices are poor, which could negatively impact business credibility and user trust. Strategic improvements in website content, security hardening, and compliance policies are recommended to enhance the site's professionalism and security.

V

VIVID TECH

vividtech.eu

58

VIVID TECH is a technology company specializing in smart shelf labels with interactive full-color displays designed to enhance retail environments by increasing customer engagement and sales. Their solutions target a variety of retail sectors including airports, pharmacies, tourist shops, wine and beverage stores, restaurants, home & DIY stores, shoes & apparel, hotels, and electronics stores. The company offers a B2B model focusing on hardware and software integration, including API connectivity and customer analytics. The website demonstrates a moderate level of digital maturity, employing modern JavaScript libraries such as Alpine.js, Flowbite, and FancyApps UI, alongside analytics tools like Google Analytics and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and content relevance, though some accessibility features could be improved. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is privacy protected by EURid, which is typical for .eu domains, limiting the ability to fully verify domain registration details. Overall, the website presents a professional and trustworthy front with clear contact information and social media presence. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility and privacy compliance to strengthen trust and compliance posture.

The domain kics.nu is registered since 2009 and maintained by Key-Systems Gmbh registrar. However, the website content is completely empty with no metadata, no visible text, no forms, no contact information, and no security or privacy policies. This indicates the site is either inactive, under construction, or abandoned. The lack of HTTPS and security headers further reduces the security posture and trustworthiness of the site. There are no indications of business operations or services offered on the website itself. The domain age suggests it could have been used for a legitimate purpose in the past, but currently, it provides no business or user value. The absence of any technical or marketing technologies, external links, or social media presence points to minimal digital maturity and no active engagement with users or customers. Overall, the site is not suitable for business or user interaction in its current state.

The website mintworksdigital.com currently presents minimal content with no visible business information, contact details, or security and privacy policies. The domain WHOIS data is inconsistent, showing a creation date in the future, which raises concerns about legitimacy. Technically, the site lacks HTTPS and security headers, and no analytics or tracking technologies are detected. Overall, the site appears to be a placeholder or under construction with very limited digital maturity and security posture. Strategic recommendations include enabling HTTPS, adding comprehensive privacy and cookie policies, publishing contact and incident response information, and improving content quality and SEO to build trust and compliance.

L

LHouse.eu

rcg-lighthouse.eu

52

LHouse.eu operates as a small business specializing in Lighting as a Service (LaaS), focusing on energy efficiency and environmental sustainability. Their market position is niche, targeting organizations seeking cost-effective and sustainable lighting solutions. The website presents a professional image with clear descriptions of their services and a consistent brand identity. Technically, the site is built on WordPress with standard plugins for SEO, forms, and cookie management, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is good with HTTPS enabled and reCAPTCHA implemented, but lacks comprehensive security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the site is trustworthy but could improve transparency and security documentation.

I

Error

itsmdelivery.com

49

The website itsmdelivery.com currently displays a default Wix error page indicating that the domain is not connected to any active website. There is no business-related content, contact information, or policies available on the site. The page is minimal and serves only as a placeholder, providing instructions on how to connect the domain to a Wix website. The technical infrastructure is based on Wix's platform using AngularJS and jQuery, but no custom content or services are present. Security posture cannot be fully assessed due to lack of content and security headers, but no WAF or blocking mechanisms are detected. Overall, the site is non-operational and does not provide any business or security assurances.

M

MIMOSA

mimosa.org

41

MIMOSA is a well-established non-profit industry trade association focused on developing open, supplier-neutral IT and information management standards for physical asset lifecycle management across industrial sectors, particularly energy and critical infrastructure. The organization collaborates with multiple industry partners and standards bodies to promote interoperability and digital transformation through initiatives like the Open Industrial Interoperability Ecosystem (OIIE). Their website reflects a mature digital presence with comprehensive content about their standards, working groups, and projects, targeting industry professionals and organizations seeking interoperability solutions. Technically, the website is built on WordPress with common plugins and frameworks such as Bootstrap and jQuery, providing a responsive and navigable user experience. Security measures include HTTPS enforcement and Google reCAPTCHA v3 integration on forms, though some security headers are missing and privacy compliance documentation is absent. The WHOIS data is incomplete, limiting domain trust verification, but the site's content and partnerships support its legitimacy. Overall, MIMOSA demonstrates a solid security posture with room for improvement in privacy policy transparency and security header implementation. The website is professional and trustworthy, serving as a valuable resource for its target audience. Strategic enhancements in privacy compliance and incident response disclosures would further strengthen its security and compliance profile.

A

ASCL / Asiaspirit

ascl.com

44

ASCL (Asiaspirit) is a small technology service provider specializing in web design, hosting, e-commerce, and website promotion services. The company has a long-standing domain registration dating back to 1996, indicating an established presence in the market. Their website targets businesses and individuals seeking comprehensive internet presence solutions, offering a range of related services. Technically, the website is built on basic HTML, CSS, and JavaScript without modern frameworks or CMS, and shows moderate performance and basic mobile optimization. Security posture is weak, with no HTTPS enforcement visible, no security headers, and no privacy or cookie policies published. Contact information is limited to a single email address, with no phone or physical address provided. Overall, the site is functional but lacks modern security and privacy compliance features.

E

Epata Studio

epatastudio.com

41

Epata Studio is a small audiovisual content company focused on producing documentary projects from Europe. The website is hosted on WordPress.com and uses standard WordPress technologies and advertising networks such as Amazon Ads and Google DoubleClick. The site content is minimal and currently displays a message indicating the site was 'hijacked by future,' suggesting the site is inactive or under transition. There is no contact information, privacy policy, or terms of service published, which limits user trust and compliance. Technically, the site uses HTTPS and has domain registration protections but lacks DNSSEC and security headers, which are recommended for improved security posture. Advertising and analytics scripts are present but without visible consent mechanisms, indicating poor privacy compliance.

N

Nikki Beach

nikkibeach.com

63

Nikki Beach is a globally recognized luxury hospitality brand specializing in resorts, beach clubs, restaurants, and branded residences. Established in 1999, it has positioned itself as a premium lifestyle destination offering barefoot luxury experiences in key international locations. The website reflects a mature digital presence with rich multimedia content, clear navigation, and a consistent brand identity. Technically, the site is built on WordPress with modern libraries and frameworks, delivering good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or compliance gaps were detected. Overall, Nikki Beach demonstrates a strong business credibility and digital maturity suitable for its market segment.

The website www.trodo.com is currently inaccessible due to a Cloudflare security challenge page requiring human verification via Turnstile captcha. This prevents automated access and blocks content visibility. No business information, contact details, or policies are available on the page. The WHOIS lookup failed to return any registration data, indicating the domain may be unregistered, newly registered, or protected by privacy services. The technical infrastructure relies on Cloudflare's security and performance services, but no further technology or CMS details are discernible. The security posture cannot be fully assessed due to lack of accessible content and headers. Overall, the site presents a high risk due to lack of transparency and accessibility.

F

Fuse Marketing

fusemarketing.com

59

Fuse Marketing is an independent, award-winning marketing agency specializing in reaching teens, young adults, and millennials. The company positions itself as a niche agency focused on youth marketing, providing tailored marketing services to brands targeting these demographics. The website reflects a professional and modern digital presence built on WordPress with the Divi theme and optimized using NitroPack, indicating a mature technical infrastructure. Social media presence on Facebook and Twitter supports their marketing outreach. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is basic with a cookie consent mechanism but no clear privacy policy or terms of service found. The domain WHOIS data is missing, raising concerns about domain registration legitimacy. Overall, the website is professional and functional but would benefit from enhanced transparency and compliance documentation.

The website zizu.lv is a parked domain landing page primarily aimed at domain resale. It lacks substantive business content, contact information, or branding, indicating it is not actively used for a commercial business. The technical infrastructure relies on standard HTML and JavaScript with advertising scripts from Google Adsense and Youseasky, served via Amazon Cloudfront CDN. There is no evidence of HTTPS or advanced security headers, and privacy compliance is minimal with only a basic privacy policy page present. The absence of WHOIS data due to query limits prevents a full legitimacy assessment, but the domain appears to be privacy protected and used for domain parking. Overall, the site has a low trustworthiness and business credibility score.

C

ClearAgile Consulting

clearagile.com

45

ClearAgile Consulting is a small technology consulting firm specializing in agile architecture, program management, lean startup methodologies, and technical strategy. Their website presents a professional image with clear service offerings targeted at businesses seeking agile transformation and technical roadmap development. The site is built on WordPress with common plugins and frameworks, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is generally good with HTTPS enabled, but lacks important security headers and visible privacy or cookie policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content is consistent and professional. Overall, the site demonstrates a functional consulting business presence but requires improvements in compliance and security transparency.

E

EDGE Optical Solutions

edgeoptic.com

57

EDGE Optical Solutions is a specialized technology company focused on providing optical transceivers, direct attach cables (DACs), and xWDM solutions primarily for telecommunications and data center markets. The company operates a professional website built on WordPress, optimized with Yoast SEO, and hosted behind Cloudflare services, indicating a moderate level of digital maturity. The website design and content quality are good, targeting B2B customers in the optical networking sector. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website and domain registration appear legitimate and stable, but improvements in privacy and security transparency are recommended to enhance trust and compliance.

R

RightHand IT

righthandit.com

53

RightHand IT is a managed IT services provider offering comprehensive technology support designed to act as an extension of client teams. Their services include helpdesk support, systems administration, project management, and database expertise, targeting businesses seeking cost-effective outsourced IT departments. The website is professionally designed using Joomla CMS and modern frameworks, providing a good user experience and mobile optimization. However, the absence of privacy and cookie policies and lack of security headers indicate gaps in compliance and security best practices. The domain WHOIS data is missing, raising concerns about domain registration legitimacy. Overall, the site demonstrates moderate technical maturity but requires improvements in security posture and privacy compliance to enhance trust and regulatory adherence.

M

Mann Lines

mannlines.com

47

Mann Lines is a privately owned shipping and logistics company specializing in liner ro-ro and container vessel services, ships agency, warehousing, forwarding, and distribution primarily in the North Sea and Baltic regions. The website presents a professional image with clear descriptions of their services and subsidiaries, targeting a broad audience involved in transportation and logistics. Technically, the site uses a range of established JavaScript libraries and Google Maps API to enhance user experience, though some libraries are outdated. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Security posture is moderate with no HTTPS or security headers information available from the data, and no explicit privacy or cookie policies are present, indicating compliance gaps. The absence of WHOIS data raises concerns about domain legitimacy and ownership transparency. Overall, the site is functional and informative but requires improvements in security, privacy compliance, and domain registration transparency to enhance trust and reduce risk.

R

Rivers Digital

riversdigital.com

52

Rivers Digital is a specialized digital marketing agency focused on delivering data-driven Google Ads and Meta advertising services primarily targeting small and medium-sized businesses. Established in 2013, the company positions itself as a trusted partner to maximize leads, sales, and ROI through cost-efficient paid advertising strategies. Their service portfolio includes Google Ads management, Meta Advertising, TikTok Ads, marketing strategy, tracking and analytics, and business growth consulting. The website reflects a professional and consistent brand image with client testimonials and mentions of certifications such as Google Partners and Bing Accredited Professionals, enhancing credibility. Technically, the website is built on WordPress using Elementor and jQuery, with modern fonts and SVG icons. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enabled and domain registration protections in place; however, DNSSEC is not enabled and security headers are missing, which are areas for enhancement. Privacy compliance is currently weak, with no visible privacy or cookie policies or consent mechanisms, which could expose the company to regulatory risks. Contact information is limited to an email address and contact form, with no phone numbers or physical addresses provided. No explicit security policies or incident response contacts are present. Overall, Rivers Digital presents a credible and professional digital marketing service with a solid technical foundation but should prioritize improving privacy compliance and security best practices to strengthen trust and regulatory adherence.

The website fortapro.com is currently inaccessible due to an SSL handshake failure between Cloudflare and the origin server, resulting in a Cloudflare error 525 page. This indicates a misconfiguration of SSL/TLS on the origin server, preventing secure connections and blocking access to any actual website content. The domain is registered with GoDaddy.com, LLC since 2018, which suggests a stable registration history, but no business or contact information is available on the site. The lack of privacy, cookie, or terms of service policies further limits the ability to assess compliance or business credibility. Technically, the site uses Cloudflare as a CDN and security provider, but the origin server's SSL issues critically impact availability and security posture.

The domain grupolatoja.es currently serves as a parked domain page hosted by Arsys, offering promotional links to domain registration, hosting, and related services. There is no active business content or identifiable company information on the site, indicating it is not currently used for operational business purposes. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with external resources from Arsys. Mobile optimization and accessibility are minimal but functional. Security posture is weak due to lack of HTTPS enforcement, absence of security headers, and no visible privacy or cookie policies. WHOIS data is inaccessible due to Red.es restrictions, limiting transparency and trust. Overall, the site presents low business credibility and minimal user engagement.

K

Kaleris

navis.com

75

Kaleris is an enterprise-level supply chain execution software provider offering a comprehensive suite of solutions including terminal operating systems, transportation management, yard management, and visibility platforms. The company targets shippers and logistics professionals seeking real-time insights and operational efficiency. The website demonstrates a mature digital presence built on WordPress with Elementor, integrating advanced marketing and analytics tools such as HubSpot and 6sense. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though some security headers and explicit policies could be improved. Overall, the site is professional, well-branded, and trustworthy, supporting Kaleris's market position as a key player in transportation technology.

C

casting.lv

casting.lv

44

The website casting.lv is a domain parking page primarily monetized through Google Ads and Bodis scripts. It lacks substantive business content, contact information, or branding beyond the domain name itself. The site provides minimal legal and privacy policy pages but does not demonstrate GDPR compliance or cookie consent mechanisms. Technically, the site uses basic HTML and CSS with embedded advertising scripts but lacks modern security headers and advanced technical features. Security posture is weak due to absence of security headers and unclear SSL configuration. Overall, the site presents a low trust profile with limited business credibility and minimal user engagement features.

The website oshoventures.com is currently suspended, displaying only a minimal placeholder page indicating account suspension. There is no active business content, metadata, or contact information available, which severely limits any meaningful analysis of the company's operations or services. The domain is registered with GoDaddy.com, LLC since 2006, indicating a long-standing registration, but the current suspension status suggests the website is inactive or under maintenance. From a technical perspective, the website lacks HTTPS, security headers, and any modern web technologies or frameworks. The hosting provider is GoDaddy, but no CMS or platform is detected. The minimal content and lack of SEO or accessibility features indicate poor technical maturity and performance. Security posture is weak due to the absence of HTTPS and security headers, and the suspended status raises concerns about operational continuity. No privacy, cookie, or terms of service policies are present, indicating non-compliance with common privacy regulations. No contact or incident response information is available, limiting trust and transparency. Overall, the website's suspended state and lack of content result in a low trust and security score. Strategic recommendations include restoring active website content, enabling HTTPS, implementing security best practices, and publishing privacy and cookie policies to improve compliance and user trust.

The website viventor.com is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, preventing access to actual site content. As a result, no business, contact, or policy information is available for analysis. The domain is registered since 2015 with GoDaddy.com, LLC and uses Cloudflare DNS services. The technical infrastructure includes Cloudflare's security mechanisms, indicating a focus on protection against automated threats. However, the lack of accessible content and absence of privacy or cookie policies limit the ability to assess compliance and business credibility. Security posture benefits from HTTPS and Cloudflare protection but cannot be fully evaluated due to content blocking. Overall, the site presents a low risk but also low transparency and trustworthiness from an external perspective.

D

Datadog

sqreen.io

79

Datadog is a leading technology company specializing in cloud monitoring and security solutions. Their App and API Protection product offers comprehensive security features for web applications and APIs, targeting security and DevOps teams. The website reflects a mature, enterprise-grade SaaS platform with strong branding and professional content. Technically, the site uses modern frameworks like Tailwind CSS and Alpine.js, integrates multiple analytics and marketing tools, and is optimized for performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though privacy compliance could be improved by adding explicit privacy and terms of service pages. The absence of WHOIS data limits domain trust analysis but given the brand recognition, the domain is likely legitimate. Overall, the website is professional, secure, and well-positioned in the market.

The website promenadehotel.lv currently presents a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The visible metadata and scripts reveal the use of very outdated content management systems, specifically Joomla 1.5 and WordPress 2.5, which are known to have multiple security vulnerabilities. No business-related content, contact information, or privacy policies are accessible, severely limiting the ability to assess the company's market position or services. The lack of WHOIS data due to query limits further restricts domain legitimacy verification. Overall, the site exhibits poor digital maturity and security posture, with critical recommendations to update CMS platforms, implement modern security headers, and provide transparent business and privacy information.

Squeezmo™ operates an e-commerce website offering a niche tea accessory product designed to improve the tea drinking experience by squeezing tea bags to avoid drips and hide used bags. The website targets tea consumers interested in kitchenware and tea accessories. The site is modest in scale and content, with basic navigation and limited technical sophistication. The technical infrastructure relies on older JavaScript libraries and includes Google Analytics for tracking. Payment processing is securely handled via PayPal, but the site lacks HTTPS, which is a critical security shortfall. No privacy or cookie policies are present, and no contact information is provided, limiting transparency and compliance. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness.