N/a security reports

C

Church & Dwight Co., Inc.

oralcarepro.com

65

The Hygiene Squad website represents a consortium of trusted oral care brands under the Church & Dwight Co., Inc. umbrella, offering a range of dental hygiene products and professional educational resources. The site targets dental professionals and their patients, providing product information, sample requests, and training programs to support oral health. The business model combines B2B and B2C elements, leveraging well-known brands such as ARM & HAMMER, Spinbrush, Therabreath, Orajel, and Waterpik. The website positions itself as a reliable partner in oral care with consistent branding and professional content. Technically, the website employs modern web technologies including Bootstrap for responsive design, Google Tag Manager and Analytics for tracking, OneTrust for cookie consent management, and LiveHelpNow for live chat support. Hosting and security are supported by Imperva Incapsula, indicating a robust infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although explicit security headers are not detected. From a security perspective, the site uses HTTPS and cookie consent mechanisms compliant with GDPR. However, there is no publicly available security policy or incident response information, and no vulnerability disclosure or security.txt file is found. The absence of WHOIS registration data for the domain is a notable anomaly, potentially due to privacy protection or proxy registration, which slightly reduces trustworthiness but does not outweigh the strong brand association and professional presentation. Overall, the website is well-designed, secure, and compliant with privacy regulations, serving its business purpose effectively. Strategic improvements include publishing explicit security policies, enhancing security headers, and clarifying domain registration details to strengthen trust and transparency.

M

Mobil

mobil.eu

72

Mobil.eu is a professionally maintained website representing Mobil, a globally recognized brand under ExxonMobil specializing in industrial lubricants, oils, and greases. The site targets business and industrial clients, offering a comprehensive range of synthetic and mineral lubrication products tailored to various industrial applications. The website demonstrates strong branding consistency and high content quality, reflecting the enterprise-level stature of the company. Technically, the site leverages modern web technologies including Sitecore CMS, AWS hosting, and integrates advanced analytics and marketing tools such as Google Tag Manager and OneTrust for privacy compliance. Security posture is robust with strict Content Security Policies and HTTPS enforcement, although some improvements could be made to reduce reliance on unsafe inline scripts and to publish explicit security policies. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. Overall, the domain and website present a trustworthy and professional digital presence consistent with a major energy sector enterprise.

The website lubricantescolombia.com is currently inaccessible due to an SSL handshake failure between Cloudflare and the origin server, resulting in a Cloudflare error 525 page. This prevents access to any business content, policies, or contact information. The domain is registered since 2017 with GoDaddy and uses Cloudflare DNS, but the SSL configuration on the origin server is incompatible with Cloudflare's requirements. No metadata, structured data, or forms are present in the accessible HTML content. The site lacks privacy, cookie, and terms of service policies, as well as any contact or social media information. Overall, the website's digital presence is minimal and blocked, limiting any meaningful content or business insights.

E

Emerson Electric Co.

protoolsportal.com

68

Emerson Professional Tools Portal serves as a centralized login platform for distributors of RIDGID and Greenlee products, both brands under the Emerson Electric Co. umbrella. The portal consolidates functionalities from previous distributor sites to streamline access and ordering processes for authorized users. The website targets B2B customers, specifically distributors and suppliers, providing a professional and branded interface consistent with Emerson's corporate identity. Technically, the site employs modern web technologies including jQuery, Bootstrap, Vue.js, and Google Tag Manager for analytics and marketing. The design is responsive and user-friendly, with clear navigation and a focus on functionality. However, some security headers and advanced accessibility features appear to be missing or not detectable in the provided data, suggesting room for improvement in security hardening and compliance. From a security perspective, the site uses HTTPS and secure form submission methods, but lacks visible advanced security headers and explicit incident response or vulnerability disclosure information. Privacy and cookie policies are linked to Emerson's main corporate site, indicating a centralized compliance approach. No WHOIS data was found for the domain, which is unusual and warrants verification to confirm domain registration and ownership legitimacy. Overall, the portal presents a professional and trustworthy front for Emerson's distributor network, but would benefit from enhanced security practices and verification of domain registration details to strengthen trust and compliance posture.

E

Emerson Professional Tools

ridgidportal.com

59

Emerson Professional Tools operates a secure distributor portal for its RIDGID and Greenlee brands, enabling authorized distributors to access product information and place orders through a unified login system. The website reflects a mature business model focused on B2B distribution within the manufacturing sector, leveraging the strong Emerson brand. The portal is designed with modern web technologies including Vue.js and Bootstrap, ensuring a responsive and user-friendly experience. While the site uses HTTPS and standard security practices, the absence of WHOIS data and security headers suggests areas for improvement in transparency and security hardening. Privacy and cookie policies are linked to the main Emerson corporate site, indicating compliance with GDPR and related regulations. Overall, the site is professional, trustworthy, and well-positioned for its target audience, though enhanced security measures and clearer contact information would strengthen its posture.

M

Microsoft

powerbi.com

75

Microsoft Power BI is a leading business intelligence and data visualization platform offered by Microsoft Corporation. The website analyzed is the official sign-in portal for Power BI users, providing secure access to interactive dashboards and analytics tools. The platform targets business and enterprise users, data analysts, and organizations seeking advanced data insights. The site demonstrates strong branding consistency and professional content aligned with Microsoft's global market position in technology and analytics services. Technically, the site leverages a modern technology stack including JavaScript, Microsoft Azure Active Directory for authentication, telemetry via Microsoft Application Insights, and Localytics for user activity tracking. The hosting infrastructure is Microsoft Azure, ensuring high performance and scalability. The site is optimized for mobile devices and incorporates good SEO and accessibility practices, although accessibility could be further enhanced. From a security perspective, the site enforces HTTPS, uses secure authentication mechanisms, and includes telemetry for monitoring. However, it lacks visible cookie consent mechanisms, published security policies, incident response contacts, and vulnerability disclosure information, which are areas for improvement. No vulnerabilities or suspicious elements were detected, and the site maintains a high security posture consistent with enterprise standards. Overall, the website is trustworthy, professionally maintained, and aligned with Microsoft's corporate standards. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, and enhancing accessibility and contact transparency to further strengthen user trust and compliance.

L

LifeBlock

lifeblock.eu

48

LifeBlock appears to be a technology service platform with a login portal built using Angular and Material Design. The website is professionally designed with good user experience and mobile optimization, but content is minimal and focused solely on authentication. The lack of visible business information, privacy policies, and contact details limits transparency and trust. Technical infrastructure uses modern frameworks but lacks visible security headers and analytics tools. The security posture is weak due to missing security best practices and no SSL/HTTPS details available. Overall, the site is functional but lacks critical compliance and trust indicators.

The website createsend.com provides email newsletter software services, targeting businesses and individuals who require tools to create and manage email marketing campaigns. Established since 2005, the company appears to be a mature player in the email marketing SaaS industry. The website content is minimal on the analyzed login page but indicates a professional service with integrated modern analytics and marketing technologies. The technical infrastructure leverages React, Sentry, Datadog, Google Analytics, Facebook Pixel, Hotjar, and Segment, reflecting a modern digital maturity level. Security posture is generally good with HTTPS enforced and domain registration protections in place, though DNSSEC is not enabled and explicit security headers are not detected. Privacy compliance is weak on this page, with no visible privacy or cookie policies and no GDPR compliance indicators. Contact information is limited to an embedded contact form with no direct emails or phone numbers. Overall, the website is functional and moderately professional but could improve transparency and compliance documentation.

M

MemberSpace

memberspace.com

68

MemberSpace is a technology company providing a SaaS membership platform that enables entrepreneurs, business owners, and creators to monetize their websites by selling memberships and digital products such as content libraries, online courses, and newsletters. The platform integrates with Stripe for payment processing and offers flexible pricing models including subscriptions and payment plans. The website demonstrates a mature technical infrastructure built on WordPress with Elementor and Yoast SEO, supported by modern analytics and marketing tools such as Google Tag Manager, Hotjar, and Fathom Analytics. Security measures include HTTPS enforcement, Cloudflare bot management, Google reCAPTCHA, and a comprehensive cookie consent mechanism. However, the absence of publicly available WHOIS data and lack of visible contact information or Terms of Service slightly reduce transparency. Overall, MemberSpace presents a professional and trustworthy online presence with strong compliance and user experience, suitable for its target market of digital content creators and entrepreneurs.

PlayOnContent S.L. operates the PlayOncenter platform, an online video platform and multimedia content aggregator aimed at providing innovative solutions for audience targeting and content management. The website analyzed is an administrative login portal designed for authorized users to access platform management features. The business appears to be a small technology company focused on niche online video services. The website content is minimal but functional, primarily serving as a secure entry point for administrators. Technically, the site uses standard web technologies including HTML5, CSS3, and JavaScript with Modernizr for feature detection. The site enforces HTTPS on its login form, but lacks advanced security headers and visible modern frameworks or CMS platforms. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site has a moderate posture with HTTPS enabled but lacks important security headers such as Content-Security-Policy and HSTS. The login form collects username and password but does not show additional protections like CAPTCHA or multi-factor authentication. No privacy or cookie policies are present, which is a compliance gap. WHOIS data is unavailable or missing, raising concerns about domain legitimacy and registration transparency. Overall, the site is functional but lacks comprehensive security and privacy measures. The absence of WHOIS data and privacy policies reduces trustworthiness. Strategic improvements in security headers, privacy compliance, and domain registration transparency are recommended to enhance the platform's credibility and protect user data.

E

Ezassi

ezassi.com

56

Ezassi is a technology company specializing in innovation management software and open innovation platforms. Their offerings include AI-powered ideation platforms, technology scouting, and innovation research reports, targeting corporate innovation teams and R&D departments. The company has a well-structured website with professional design and clear navigation, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and Astra theme, integrating modern analytics and marketing tools such as Google Analytics, HubSpot, and LinkedIn Insight. Security posture is good with HTTPS enabled and domain registration transparency, though improvements like DNSSEC and security headers are recommended. Privacy compliance is partially addressed with a cookie consent mechanism but lacks explicit privacy and terms of service pages. Overall, the website presents a credible and professional business image with moderate to good security and privacy practices.

O

Open Subscription Platforms

opensubscriptionplatforms.com

56

Open Subscription Platforms is a niche informational and advocacy website focused on promoting open subscription platforms that empower independent businesses to own and control their subscription and payment data. The platform provides detailed comparisons between open and closed subscription services, highlighting the importance of data portability and customer ownership. The website targets independent content creators, small businesses, and subscription entrepreneurs seeking transparency and control over their customer data. Technically, the site is built using the Hugo static site generator, hosted and registered via Cloudflare, and employs Plausible Analytics for privacy-conscious visitor tracking. The site is performant, mobile-optimized, and well-structured, though it lacks explicit privacy and cookie policies, which are important for compliance. Security posture is generally good with HTTPS enforced and secure form handling, but the absence of security headers and incident response information are areas for improvement. Overall, the website is trustworthy and professional, serving as a valuable resource for its target audience.

N

NodeCMSGuide | Node.js Content Management System leaderboard

nodecms.guide

57

NodeCMSGuide is a specialized online platform that provides a leaderboard and ranking system for Node.js content management systems. It targets developers and technical decision-makers interested in evaluating and selecting Node.js CMS solutions. The website offers filtering and sorting capabilities for various CMS projects, linking directly to their repositories and project pages. The platform positions itself as a niche resource within the broader technology industry, focusing on open source and closed source Node.js CMS projects. Technically, the site is built using modern JavaScript frameworks such as React and Styled Components, delivering a responsive and well-structured user experience. However, it lacks comprehensive privacy, cookie, and terms of service policies, which impacts its privacy compliance score. Security-wise, the site enforces HTTPS but does not implement additional security headers, which could be improved to enhance protection. Overall, the domain registration is privacy protected, which is common for small technical sites, and no suspicious patterns were detected. The website is accessible without WAF or blocking mechanisms, allowing full content analysis.

Ghost Foundation operates Ghost.org, a leading open source platform for professional publishing, enabling creators, publishers, and businesses to build websites, send newsletters, and manage paid subscriptions. The company positions itself strongly in the creator economy with a subscription-based SaaS model complemented by an open source core, appealing to a broad audience including creators, publishers, and modern businesses. The website demonstrates a mature digital presence with excellent content quality, professional design, and clear navigation, supporting a high level of user engagement and trust. Technically, the site leverages modern technologies including the Hugo static site generator, Cloudflare DNS, and various analytics and marketing tools. The platform is mobile-optimized, fast, and SEO-friendly, reflecting a high level of digital maturity. However, some minor security enhancements such as enabling DNSSEC and publishing explicit security policies could further strengthen the infrastructure. From a security perspective, the site enforces HTTPS and protects domain transfer, but lacks visible security headers and formal incident response disclosures. No vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with clear privacy and cookie policies. Overall, the security posture is solid but could benefit from additional transparency and technical hardening. The overall risk assessment is low, with no critical issues identified. Strategic recommendations include enabling DNSSEC, publishing a security policy and vulnerability disclosure, and enhancing security headers. These steps will improve trust and resilience, supporting Ghost's continued growth and leadership in the professional publishing space.

E

EGI Federation

egi.eu

71

EGI Federation is an international federation providing advanced computing and data analytics services to support research and innovation. The organization targets researchers, businesses, and federations requiring scalable computing infrastructure and data services. Their website reflects a professional and modern digital presence built on Next.js with integrated analytics and marketing tools. Security posture is strong with HTTPS and security headers implemented, though explicit privacy and cookie policies are not clearly presented. WHOIS data is privacy protected by EURid, which is typical for European domains and justified for this type of organization. Overall, the website demonstrates good technical maturity and business credibility, supporting its role as a federation in the technology sector.

M

MIRRI-ERIC

mirri.org

63

MIRRI-ERIC is a pan-European research infrastructure dedicated to microbial resource preservation, investigation, and provision. It aggregates over 50 microbial Biological Resource Centres across ten European countries, serving bioscience and bioindustry sectors with access to microbial strains, data, and services. The organization focuses on domains such as Health & Food, Agro-Food, and Environment & Energy, contributing to life sciences research and sustainable bioeconomy development. Technically, the website is built on WordPress with modern plugins and frameworks, offering good mobile optimization and user experience. Security posture is solid with HTTPS and reCAPTCHA, though it lacks some security headers and explicit privacy/cookie policies. WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of entity. Overall, the site is professional and trustworthy but could improve compliance transparency and security headers.

L

LifeWatch ERIC

lifewatch.eu

72

LifeWatch ERIC is a European research infrastructure focused on biodiversity and ecosystem research, providing advanced ICT tools, services, and virtual research environments to the scientific community. The website reflects a well-established organization with a clear mission to support researchers, policy makers, and students in this domain. The site is professionally designed using WordPress and modern plugins, ensuring a good user experience and mobile optimization. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Security posture is solid with HTTPS enabled and no visible vulnerabilities, although security headers could be improved. The lack of WHOIS data is due to privacy protection, which is justified for this type of entity. Overall, the website demonstrates a mature digital presence suitable for a European non-profit research infrastructure.

The website at dotdigital-pages.com currently serves only a 404 error page indicating that the intended content is missing or the page never existed. There is no visible business information, contact details, or policies available on the site. The domain is registered with 1API GmbH since 2018 and is valid until 2028, showing a consistent registration history. However, the lack of active content and absence of security or privacy policies significantly limit the ability to assess the business or security posture. Technically, the site does not show signs of a WAF or security challenge but lacks modern web features and optimization. Security posture is weak due to missing HTTPS and security headers information. Overall, the site is non-functional in its current state and requires restoration of content and implementation of standard security and compliance measures.

O

Ontraport

ontraport.com

62

Ontraport is a mature SaaS company founded in 2010, providing an enterprise-level CRM and marketing automation platform tailored for mid-sized businesses. The platform integrates marketing, sales, payments, and customer support into a unified system, enabling businesses to scale efficiently without the complexity and cost of larger enterprise solutions. The website reflects a professional and consistent brand with clear messaging targeting marketing, sales, operations, and support teams. Technically, the site uses a proprietary CMS (Ontraport Pages v3) hosted on AWS infrastructure, integrating multiple modern analytics and marketing tools such as Google Analytics, TikTok Pixel, and LinkedIn Insight. The site is mobile-optimized and designed for good user experience and SEO. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service in the provided content. Overall, the site is trustworthy and professionally maintained, suitable for its target audience.

S

Sectigo Limited

positivessl.com

72

PositiveSSL.com is the official website for PositiveSSL certificates, a product line of Sectigo Limited, one of the world's largest commercial certificate authorities. The site offers a range of SSL certificates including domain validated, organization validated, extended validation, and code signing certificates. It targets businesses and website owners seeking cost-effective and trusted digital security solutions. The website is professionally designed with clear navigation, comprehensive product information, and multiple purchase options, reflecting a mature e-commerce business model with a strong market position in the digital security industry. Technically, the website employs modern JavaScript libraries such as RequireJS, jQuery, and Slick Carousel, alongside marketing and analytics tools including Google Tag Manager, Visual Website Optimizer, HubSpot, and Cookiebot. The site is mobile optimized and uses HTTPS with strong security headers, indicating a good digital maturity level. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site demonstrates strong SSL configurations and uses WebTrust certified certificates, enhancing trustworthiness. Security best practices such as HTTPS enforcement and security headers are in place. However, there is no explicit security policy or vulnerability disclosure page, and no data protection officer contact information is found, suggesting areas for compliance enhancement. Overall, the website presents a low-risk profile with high professionalism and trust indicators. The missing WHOIS data slightly reduces trust but is mitigated by the strong brand presence and security certifications. Strategic recommendations include publishing a security policy, vulnerability disclosure, and improving accessibility to further strengthen the security posture and compliance.

XTRA™ Laundry is a consumer brand focused on laundry products, likely detergents, marketed through an e-commerce style website featuring product information and customer testimonials. The website uses common marketing and analytics technologies such as Google Tag Manager, Bazaarvoice for reviews, and OneTrust for cookie consent. The technical infrastructure is moderate with Bootstrap and Owl Carousel frameworks, but lacks advanced CMS or hosting details. Security posture is basic with HTTPS implied but no visible security headers or incident response contacts. The absence of WHOIS data for the domain raises concerns about domain legitimacy and ownership transparency. Privacy compliance is minimal with no privacy policy found, though cookie consent is implemented. Overall, the website is functional but lacks critical trust and compliance elements.

C

Church & Dwight Co., Inc.

orajel.com

66

Orajel.com is the official website for Orajel™, a well-established oral care brand owned by Church & Dwight Co., Inc. The site provides comprehensive product information, educational resources, customer testimonials, and support channels including a contact form and embedded chat service. The website targets a general audience including adults and children, emphasizing trusted oral care solutions. Technically, the site employs modern web technologies such as jQuery, Google Tag Manager, Facebook Pixel, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile optimized and SEO friendly with clear navigation and professional design. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. Privacy compliance is strong, with clear privacy and cookie policies linked to the parent company. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for corporate brands. Overall, the website is professional, secure, and trustworthy, supporting the brand's market position.

C

Church & Dwight Co., Inc.

oxiclean.com

58

OxiClean.com is the official website for the OxiClean brand, a leading stain remover and home cleaning product line owned by Church & Dwight Co., Inc. The site offers comprehensive product information, multimedia content including instructional videos, and customer testimonials, targeting consumers seeking effective stain and odor removal solutions. The website is professionally designed with consistent branding and good mobile optimization, reflecting a mature digital presence. Technically, the site employs a modern technology stack including jQuery, Bootstrap, and multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, TikTok Analytics, and Salesforce chat integration. Privacy compliance is well addressed with a OneTrust cookie consent mechanism and links to comprehensive privacy and terms policies hosted on the parent company’s domain. Security posture is strong with HTTPS enforced and no obvious vulnerabilities, though security headers could be improved and explicit security policies are absent. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces transparency but does not detract from the overall legitimacy given the brand and corporate association. Overall, the website demonstrates a solid business and technical foundation with room for enhanced security disclosures and direct contact information.

F

Finishing Touch Flawless™

flawlessbeauty.com

69

Flawlessbeauty.com is an established e-commerce retail website specializing in beauty and personal care products targeted primarily at women. The brand, Finishing Touch Flawless™, has been in operation since 2000, indicating a mature market presence. The website employs modern technologies such as Google Tag Manager, OneTrust for cookie consent, and Bazaarvoice for customer reviews, reflecting a moderate level of digital maturity. The technical infrastructure is hosted via MarkMonitor Inc., a reputable domain registrar and brand protection service, which adds to the business credibility. However, the website lacks visible privacy and terms of service policies in the provided content, which is a compliance gap.

W

Waterpik

waterpik.com

67

Waterpik is a leading brand in the oral health industry, specializing in water flossers, electric toothbrushes, and whitening products. The website presents a professional and consumer-focused platform, targeting individuals seeking dental care products. The brand is positioned as the #1 recommended by dental professionals, indicating strong market presence and trust. Technically, the website employs modern technologies such as Google Tag Manager for analytics and OneTrust for cookie consent, demonstrating a commitment to compliance and user experience. However, the absence of WHOIS data and registrant information raises questions about domain registration transparency. Security posture is moderate, with HTTPS implied but lacking explicit security headers in the provided data. Privacy compliance is basic, with cookie consent present but no visible privacy policy or terms of service. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

C

Church & Dwight Co., Inc.

replens.com

60

Replens.com is a professionally designed website representing a healthcare brand specializing in vaginal moisturizers and lubricants. The site is linked to Church & Dwight Co., Inc., a large and reputable parent company. The business focuses on providing clinically tested and FDA cleared products aimed at women experiencing vaginal dryness, positioning itself as a trusted and doctor-recommended brand in the women's health sector. The website content is relevant, well-structured, and targets a general adult female audience seeking intimate health solutions. Technically, the site uses modern web technologies including ASP.NET, Bootstrap, jQuery, and integrates marketing and analytics tools such as Google Tag Manager and MikMak. Privacy compliance is well addressed with a comprehensive privacy policy hosted on the parent company’s domain and an embedded cookie consent mechanism that supports GDPR compliance. However, direct contact information such as emails or phone numbers is not explicitly provided, relying instead on a contact form. The WHOIS data for the domain is unavailable, which raises some transparency concerns, but the overall trust signals and business legitimacy are strong given the association with Church & Dwight. Security posture is moderate with HTTPS implied but lacking explicit security headers or published security policies. Overall, the website presents a low-risk profile with good privacy and compliance practices but could improve transparency and security documentation.

R

repHresh

rephresh.com

63

RepHresh is a feminine care brand focused on promoting vaginal health, pH balance, and feminine hygiene through its product offerings. The website positions itself as a trusted source for women's health products, targeting a female audience seeking solutions for feminine discomfort and odor elimination. The digital presence is supported by modern marketing and analytics tools, including Google Tag Manager and Bazaarvoice for customer reviews, alongside a comprehensive cookie consent mechanism via OneTrust. The website is well-structured, mobile-optimized, and provides clear privacy and cookie policies, reflecting a good level of digital maturity. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is strong with HTTPS and security headers, but lacks published security policies or incident response information, which could be improved to enhance trust. Overall, the site is professional and safe for general audiences, but the domain registration opacity slightly reduces business credibility.

L

L'il Critters

lilcritters.com

63

L'il Critters is a well-established brand specializing in children's gummy vitamins and supplements, targeting parents seeking nutritious and tasty health products for their kids. The website demonstrates a professional e-commerce platform with clear navigation, rich content, and strong branding consistency. Technically, the site employs modern marketing and analytics technologies including Google Tag Manager, Facebook Pixel, Hotjar, and Bazaarvoice, indicating a mature digital marketing infrastructure. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are lacking. The absence of WHOIS registration data is a notable anomaly that reduces overall trust and should be investigated further. Overall, the site is safe, user-friendly, and compliant with privacy regulations, but could improve transparency and security disclosures.

The website kellanova.com is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content. This prevents any meaningful extraction of business, security, or compliance information from the site itself. The domain is registered with CSC Corporate Domains, Inc. since 2022, indicating a relatively new but legitimate registration. Due to the lack of accessible content, no privacy, cookie, or terms of service policies are available, nor are there any contact details or security disclosures. The technical infrastructure cannot be fully assessed, and no security headers or SSL details are observable. Overall, the site appears to be blocked or restricted, limiting the ability to evaluate its digital maturity or security posture.

ELI ERIC operates as a European Research Infrastructure Consortium managing the world's largest and most advanced high-power laser facilities across Central Eastern Europe. The organization provides access to cutting-edge laser technology for academic and industrial researchers, positioning itself as a global leader in high-intensity laser science. The website reflects a professional and consistent brand image, targeting a specialized scientific audience with detailed information about its facilities and research applications. Technically, the site uses legacy JavaScript libraries but maintains functional performance and basic mobile responsiveness. Security posture is adequate with HTTPS and no visible vulnerabilities, though improvements in security headers and privacy compliance are recommended. Overall, the domain and website present a legitimate and trustworthy research infrastructure with room for enhanced privacy and security practices.

The website kangabell.com serves as a personal portfolio for Kay Belardinelli, an artist and web accessibility specialist. The site is minimalistic, focusing on presenting the individual's name, pronouns, and professional identity without additional business or contact information. The domain is well-established, registered since 2008, and hosted by DreamHost, indicating a stable digital presence. However, the site lacks critical business and compliance elements such as privacy policies, cookie consent mechanisms, and contact details, which limits its professional completeness. Technically, the website is built with standard HTML and CSS, utilizing custom fonts and a clean design. There is no evidence of modern frameworks, CMS platforms, or analytics tools. The site appears mobile-optimized and accessible, but performance and SEO optimizations are basic. Security posture is weak due to the absence of HTTPS confirmation and security headers, which poses risks for visitor trust and data protection. From a security perspective, no WAF or blocking mechanisms are detected, and no vulnerabilities or sensitive data exposures are apparent. However, the lack of HTTPS and security policies is a significant gap. The site does not collect user data or employ tracking, which reduces privacy risks but also limits business engagement capabilities. Overall, the website is safe and suitable for general audiences but requires improvements in security, privacy compliance, and business information transparency to enhance trustworthiness and professional credibility.

E

Emerson Automation Solutions

emersonautomationexperts.com

80

Emerson Automation Experts is a professional B2B platform providing insights, resources, and information related to Emerson Automation Solutions' products and services. The website targets industrial professionals and businesses in sectors such as energy, manufacturing, and process control. It serves as a knowledge hub connecting users with expertise in automation technologies. Technically, the site is built on WordPress using the Divi theme, optimized with NitroPack, and integrates modern analytics and marketing tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Security posture is strong with HTTPS, security headers, and reCAPTCHA protection on forms, though explicit security policy and incident response information are absent. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy, but the website branding and content strongly align with the reputable Emerson brand. Overall, the site is well-designed, secure, and compliant with privacy regulations, making it a trustworthy resource for its target audience.

E

Emerson Global Users Exchange

emersonexchange365.com

57

Emerson Exchange 365 is a well-established online community platform serving global users of Emerson Automation Solutions products and services. It provides a collaborative environment for knowledge sharing, technical discussions, and networking among industry professionals. The platform is supported by Emerson Electric Co., reflecting a strong market position in the energy and industrial automation sector. The website offers a variety of resources including forums, blogs, events, and user groups, targeting a specialized audience of automation professionals worldwide. Technically, the site is built on the Telligent Community platform, leveraging modern JavaScript libraries such as jQuery and integrating marketing and analytics tools like Eloqua and Google Analytics. The site is SSL secured and demonstrates moderate performance and good mobile optimization. However, there is room for improvement in accessibility and SEO practices. The presence of Google Translate enhances accessibility for a global audience. From a security perspective, the website enforces HTTPS and has domain registration protections in place. However, it lacks visible security headers and explicit security or incident response policies on the site. There is no cookie consent mechanism detected, which may affect privacy compliance. No vulnerabilities or suspicious activities were identified in the content or scripts. The WHOIS data aligns well with the business purpose, indicating a legitimate and trustworthy domain. Overall, Emerson Exchange 365 presents a professional, credible, and secure community platform with minor gaps in privacy compliance and security transparency. Strategic enhancements in cookie consent, security headers, and published security policies would strengthen its security posture and regulatory compliance.

E

ExxonMobil Chemical

exxonmobilchemical.com

71

ExxonMobil Chemical is a global leader in the petrochemical industry, offering a broad portfolio of petrochemical and polymer products. The website reflects a mature enterprise-level digital presence with professional design, comprehensive content, and strong branding consistency. The technical infrastructure leverages modern technologies including Sitecore CMS, AWS hosting, and advanced analytics and consent management tools, indicating a high level of digital maturity. Security posture is strong with HTTPS, strict Content-Security-Policy headers, and cookie consent mechanisms in place, though explicit security policy and incident response information are not publicly available. Overall, the website presents a low risk profile with high trustworthiness based on content and technical implementation, despite the absence of WHOIS registration data which warrants cautious monitoring.

E

Euro-BioImaging

eurobioimaging-access.eu

55

Euro-BioImaging Access Portal serves as a European research infrastructure platform providing access to advanced imaging technologies and image data analysis services for biological and biomedical sciences. The portal targets researchers and scientists across Europe, facilitating proposal submissions for imaging services. The website reflects a professional and consistent brand image aligned with its scientific mission. Technically, the site employs modern frontend technologies including jQuery, Bootstrap 5, RequireJS, and integrates Google Analytics and Tag Manager for user tracking and analytics. The site is mobile optimized with good navigation and content relevance. Security posture is moderate with HTTPS enabled and cookie consent implemented; however, security headers and explicit security policies are absent, representing areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies, indicating GDPR awareness. WHOIS data is privacy protected, which is typical for research infrastructure domains, and no suspicious patterns were detected. Overall, the site is trustworthy, professional, and safe for general audiences.

F

Home Page

fheritale.eu

49

The website represents the FHERITALE project or organization, likely focused on academic or scientific collaboration. It provides information about governance, partners, work packages, and resources such as publications and white papers. The target audience appears to be researchers and stakeholders in the relevant field. The site uses modern web technologies including React and Material-UI, with Matomo analytics for user tracking. However, it lacks critical privacy and cookie policies, contact information, and visible security headers, which impacts its compliance and trustworthiness. The domain is registered through a reputable registrar but lacks detailed WHOIS data to fully verify legitimacy. Overall, the site is functional but basic in content and security posture.

E

EOSC Beyond

eosc-beyond.eu

70

EOSC Beyond is a European Union funded research infrastructure project focused on advancing innovation and collaboration within the European Open Science Cloud (EOSC) ecosystem. The project enhances EOSC Core capabilities by delivering new services such as the Innovation Sandbox, Execution Framework, and Integration Suite, targeting researchers and EOSC Nodes to facilitate seamless access to open science resources. The website reflects a professional and well-structured digital presence, emphasizing transparency and community engagement through newsletters and pilot programs. Technically, the website leverages modern web technologies including Next.js and React, with integration of Matomo analytics and MailerLite for marketing and user engagement. The site is mobile optimized, fast loading, and SEO friendly, demonstrating a mature digital infrastructure suitable for its audience. However, some security best practices such as explicit security headers and cookie consent mechanisms could be improved. From a security perspective, the site enforces HTTPS and uses secure forms with CAPTCHA, minimizing exposure to common vulnerabilities. The lack of published security policies or incident response information suggests room for enhancement in transparency and preparedness. The domain WHOIS data is privacy protected by EURid, which is common and justified for EU-funded projects, supporting the legitimacy of the domain. Overall, EOSC Beyond presents a trustworthy and professional online presence aligned with its mission in the open science community. Strategic improvements in security transparency and privacy compliance would further strengthen its posture and stakeholder confidence.

E

empirica

eosc4cancer.eu

55

EOSC4Cancer is a European Union funded research project focused on creating an interoperable data infrastructure for cancer research. The project aims to make diverse cancer data types accessible across borders, supporting advanced analytics including AI and machine learning. The website reflects a well-structured, professional digital presence targeting researchers, healthcare professionals, and the EU research community. Technically, the site is built on WordPress with Elementor and uses modern plugins for SEO, privacy compliance, and analytics. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration and website content are consistent and trustworthy, with no blocking or WAF detected, and no adult or questionable content present.

F

Fragment-Screen

fragmentscreen.org

57

Fragment-Screen is a European research project focused on advancing fragment-based drug discovery by integrating structural biology, medicinal chemistry, and artificial intelligence. The project collaborates with major European research infrastructures and industry partners to develop innovative workflows and instrumentation, targeting early phase drug discovery for a broad range of biological targets. The website reflects a specialized scientific audience, primarily researchers in academia and industry. Technically, the site is built using modern web technologies including React and Material-UI, hosted on Hover with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

I

iNEXT-Discovery

inext-discovery.eu

55

iNEXT-Discovery is a European Commission funded Horizon 2020 project providing open access to advanced structural biology research infrastructures such as NMR, electron microscopy, and X-ray technologies. The project targets researchers, including non-experts, aiming to facilitate translational research and discovery through a collaborative consortium model. The website serves as a portal for access requests, training, networking, and dissemination of project outputs. Technically, the site employs a modern web stack including Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for tracking. Security posture is solid with HTTPS and bot protection via reCAPTCHA, but lacks visible security headers and cookie consent mechanisms. The domain registration is consistent with the project's timeline and legitimacy, registered through a reputable registrar without privacy protection, appropriate for a public EU-funded initiative.

C

canSERV

canserv.eu

60

canSERV is a multidisciplinary European consortium focused on providing cutting-edge cancer research services across Europe. The consortium comprises 19 partners including research infrastructures, key oncology organizations, patient organizations, and sustainability experts. The website presents a professional image with clear branding and a focus on collaboration and research support. Technically, the site is built on WordPress using the Divi theme, incorporating modern tools such as Google Tag Manager and Cookiebot for analytics and consent management. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are not clearly published. The absence of publicly available WHOIS data is consistent with EURid's privacy policies for .eu domains, and the domain appears legitimate based on website content and structured data. Overall, the site serves its target audience of researchers and oncology professionals effectively but would benefit from enhanced transparency in privacy and security policies.

I

ISIDORe project

isidore-project.eu

78

The ISIDORe project website serves as a professional platform offering integrated services for infectious disease outbreak research, primarily targeting researchers and public health professionals. Founded in 2020, the project focuses on advancing pandemic preparedness through specialized research services. The website is well-branded and consistent, presenting clear information about its mission and services. The presence of structured data and SEO optimizations enhances its digital visibility. Technically, the site is built on WordPress 6.8.3, leveraging popular plugins such as Yoast SEO and Cookiebot for consent management. Google Analytics is integrated with user consent, reflecting a moderate level of digital maturity. The site demonstrates good mobile optimization, accessibility, and moderate performance, hosted under a reputable registrar, GANDI. From a security perspective, the website enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie declaration. However, the absence of terms of service and incident response information suggests areas for improvement. Overall, the website is trustworthy, safe, and professionally maintained, with a solid foundation in privacy compliance and user experience. Strategic enhancements in security headers and transparency policies would further strengthen its posture.

The website www.artic.edu is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct content access. This challenge page prevents extraction of meaningful business or content data. The domain WHOIS query returned no registration data, indicating either a privacy-protected or unregistered domain status, which limits trust and legitimacy assessment. The technical infrastructure includes Cloudflare security services but lacks visible security headers or SSL configuration details. No privacy, cookie, or terms of service policies are present, and no contact or business information is available on the page. Overall, the site appears to be protected by a strong WAF but lacks transparency and accessible content for analysis.

S

Shoffi App

shoffi.app

62

Shoffi is a specialized affiliate marketing platform designed to help Shopify app developers grow their apps through partnerships. The website positions itself as a niche player within the Shopify ecosystem, targeting app developers and affiliates. The business model revolves around providing affiliate marketing tools and a marketplace to facilitate growth. The site demonstrates a professional design with consistent branding and clear messaging tailored to its target audience. Technically, the site is built on WordPress using Elementor, integrating modern JavaScript libraries and analytics tools such as Google Analytics and Crisp chat for customer engagement. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is solid with HTTPS enabled and cookie consent implemented, but lacks some advanced security headers. Privacy compliance is partial, with a cookie banner present but no explicit privacy policy or terms of service found on the homepage. Overall, the site reflects a legitimate small technology business with room for improvement in privacy and security documentation.

N

Newsie.social

newsie.social

10

Newsie.social is a professionally administered Mastodon instance that serves as a social media platform primarily for journalists and news outlets. It focuses on hosting content related to news and current events, positioning itself as a significant node within the fediverse. The platform leverages the open-source Mastodon software, version 4.3.9, and provides a modern, mobile-optimized user experience with a moderate performance profile. The website is well-branded and consistent, with a clear focus on news-related social networking. From a technical perspective, the site uses modern web technologies including JavaScript and WebSockets for real-time communication. Security practices are solid, with HTTPS enforced and integrity checks on scripts, although some improvements could be made in accessibility and explicit security policy disclosures. Privacy compliance is partially addressed with a privacy policy present, but lacks cookie consent mechanisms and terms of service documentation. The security posture is strong with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data due to TLD restrictions limits domain registration insights, but the platform's active user base and transparent administration team indicate legitimacy. No advertising or tracking services were detected, supporting a privacy-conscious environment. Overall, Newsie.social presents a trustworthy and professional social media platform for news dissemination, with recommendations to enhance privacy compliance and transparency to further strengthen user trust and regulatory adherence.

P

Point S group

point-s-group.com

59

Point S group operates as a leading global independent tyre dealer and car maintenance network with presence in 51 countries and over 6,700 points of sale. The company offers modern retail concepts adaptable to various business environments and focuses on providing vehicle maintenance services through a network of independent dealers. The website is professionally designed, SEO optimized, and uses modern web technologies including WordPress, jQuery, and Google Analytics. Privacy compliance is well addressed with a consent management platform and clear cookie policies. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and incident response information are not published. WHOIS data is missing or unavailable, which slightly reduces trustworthiness but the overall business credibility remains high based on website content and branding.

S

SiteGround

siteground.us

71

SiteGround is a large, well-established web hosting provider offering a range of hosting services including managed WordPress hosting, cloud hosting, and domain registration. The company serves over 3 million domains globally, targeting website owners and businesses seeking reliable, fast, and secure hosting solutions. The website is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the website employs modern technologies such as Cookiebot for cookie consent management, Google Tag Manager, and YouTube APIs. The hosting is self-managed by SiteGround, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and a dedicated security policy page are absent. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR compliance indicators. However, incident response and vulnerability disclosure information are not publicly available, which could be improved. Overall, the website and business demonstrate high trustworthiness and professionalism. The lack of public WHOIS data is due to privacy protection, which is justified for this business type. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

PortCheckTool.com is a free online utility tool designed to help users check open ports on their network connections and verify port forwarding configurations. The service is associated with NoIP.com, a known provider of dynamic DNS and related network services. The website targets general internet users and network administrators seeking to diagnose firewall or ISP port blocking issues. The business model relies on providing free tools supported by advertising revenue, primarily through Google Adsense. The site content is straightforward, focusing on technical utility rather than commercial sales or extensive business information. Technically, the website uses an older Bootstrap framework and jQuery library, with Google Fonts and Google Analytics integrated for styling and tracking. The site implements a consent management platform for cookie and tracking consent, indicating some level of privacy compliance. However, the site lacks explicit privacy, terms of service, or security policy pages, and no direct contact information is provided. Mobile optimization and accessibility are basic but functional. From a security perspective, the site uses HTTPS and includes a consent mechanism for cookies, but lacks visible security headers and published security policies. The absence of WHOIS registration data for the domain is a significant concern, as it suggests the domain may be unregistered or the WHOIS data is private or unavailable, which is inconsistent with the active website presence. This discrepancy reduces the overall trustworthiness of the domain. Overall, PortCheckTool.com offers a useful network diagnostic tool with moderate technical implementation and basic privacy compliance. The key risks relate to the missing domain registration data and lack of published security and contact information. Strategic recommendations include improving transparency with privacy and security policies, verifying domain registration, enhancing mobile and accessibility features, and providing clear contact and incident response channels.

C

Conductrics

conductrics.com

61

Conductrics is a technology company offering a unified customer experience platform that integrates A/B testing, machine learning predictions, and customer surveys to help enterprises optimize customer satisfaction and behavior. The website presents a professional and consistent brand image with clear navigation and relevant content targeting businesses seeking advanced experimentation tools. Technically, the site uses modern web technologies including Bootstrap and JavaScript libraries, with good mobile optimization and SEO practices. However, the absence of WHOIS registration data raises concerns about domain legitimacy or recent registration status. Security posture is moderate with HTTPS implied but lacking visible security headers and cookie consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced security and compliance transparency.

The domain tranquilveil.com currently serves a 404 Not Found error page with content describing the hosting service provided by Admiral, a company specializing in copyright access control and privacy compliance solutions for digital publishers. The site lacks active business content, contact information, or marketing materials, indicating it is either under development or inactive. The technical infrastructure is based on Google Cloud Platform with AWS DNS servers, and the domain is very recently registered (January 2024), consistent with its current inactive status. Security posture is reasonable with HTTPS enforced and no executable content hosted, but lacks DNSSEC and explicit security headers. Privacy compliance is basic, with a privacy statement present but no cookie consent mechanism. Overall, the site is not operational and scores low on content quality and business credibility.