Other security reports

S

Small Business Association of Michigan

sbam.org

59

The Small Business Association of Michigan (SBAM) is a well-established membership organization dedicated to supporting small business owners in Michigan. With a membership base exceeding 33,000, SBAM offers a comprehensive suite of services including business certifications, insurance products, advocacy, networking opportunities, and compliance resources. The website reflects a professional and consistent brand image, targeting small business owners seeking growth, compliance, and employee retention solutions. The organization positions itself as a premier resource and advocate for Michigan's small business community. Technically, the website is built on WordPress and leverages modern web technologies and plugins such as Yoast SEO Premium, Events Calendar Pro, and various analytics and marketing tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile optimized, accessible, and SEO-friendly, indicating a mature digital presence. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and employs secure forms. However, there is a lack of explicit security headers and no visible privacy or cookie policies with consent mechanisms, which are areas for improvement. The WHOIS data is unavailable due to a malformed request, but the website's content and social media presence strongly indicate legitimacy and trustworthiness. Overall, SBAM's website demonstrates a strong business and technical foundation with minor gaps in privacy compliance and security best practices. Addressing these gaps will enhance user trust and regulatory compliance.

Statiiv OÜ operates a professional website focused on creative services including photography, quality calligraphy, and graphic design. The business targets individuals and organizations seeking artistic visual content, positioning itself as a small local creative service provider in Estonia. The website presents a clean, modern design with consistent branding and clear business identification through the company registration number. Technically, the website uses standard web technologies such as HTML5, CSS3, Google Fonts, and JavaScript. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No CMS or complex frameworks are detected, indicating a lightweight custom implementation. From a security perspective, the site does not exhibit advanced security measures such as security headers or documented policies. The email contact is obfuscated via JavaScript to reduce spam risk, and no forms collect sensitive data. However, the SSL status is unknown from the provided data, and no privacy or cookie policies are present, which are important for GDPR compliance. Overall, the website is functional and professional but would benefit from enhanced security practices, explicit privacy and cookie policies, and improved technical SEO and accessibility. The domain WHOIS data aligns well with the business information, supporting legitimacy and trustworthiness.

Agentuur MUST is a small Estonian event organizing company with a Facebook presence dating back to 2009. Their Facebook page serves as their primary digital footprint, offering basic business information, contact details, and social proof through likes and followers. The company targets clients seeking event management services locally. Technically, the page leverages Facebook's robust platform, ensuring good performance, mobile optimization, and security through HTTPS and standard security headers. However, the page lacks explicit privacy, cookie, and security policies, which limits compliance and trust signals. No vulnerability disclosure or incident response information is provided, indicating room for improvement in security transparency. Overall, the business appears legitimate and consistent with its domain registration data, but enhancing privacy and security disclosures would strengthen its digital maturity and user trust.

The website ti.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, which blocks access to any substantive content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and longstanding domain. However, no business information, contact details, or policies are visible on the landing page. The technical infrastructure relies on Cloudflare security and analytics services, but no CMS or additional technologies are detectable. Due to the access block, the content quality and business credibility cannot be assessed. Security posture benefits from Cloudflare protection but lacks visible security headers or policies. Overall, the site presents a low trust profile due to lack of accessible information and transparency.

J

Joss Services

joss-services.com.au

55

Joss Services is a 100% Indigenous owned and operated company specializing in security, construction, and commercial cleaning services primarily serving the Sydney Metro area. The company presents itself as a niche service provider with certifications such as FACCI ASSURED and membership in Supply Nation, indicating a commitment to quality and Indigenous business standards. The website is built on the Squarespace platform, featuring a professional design with clear navigation and mobile responsiveness. However, the absence of privacy and cookie policies, as well as incomplete WHOIS data, limits the overall trust and compliance posture. Security-wise, the site uses HTTPS but lacks security headers and formal security policies. Contact information is clearly provided, enhancing business credibility. Overall, the website reflects a legitimate small business with room for improvement in privacy compliance and security best practices.

The website www.guestjoy.com appears to be a minimal landing page primarily referencing the partner domain siteminder.com and the guestjoy application subdomain. The business focus is likely on guest engagement technology for the hospitality industry, but the site itself lacks substantive content, metadata, or contact information. Technically, the site uses basic HTML with external image resources hosted on siteminder.com domains, indicating a close relationship or ownership. No security headers or HTTPS details were found in the provided data, and WHOIS information is missing, raising concerns about domain legitimacy. Overall, the site has a low security posture and poor privacy compliance, with minimal trust signals.

A

Adovinci

adovinci.com

62

The website 'Adovinci' appears to be a small business or service platform with a focus on campaigns, as indicated by the URL and page title. The domain is registered since 2019 with a reputable registrar and has a long expiry date, indicating stability. The website uses modern frontend technologies such as Bootstrap 5 and Font Awesome 5, and integrates Google Tag Manager for analytics. However, the content is minimal with no visible privacy, cookie, or terms of service policies, and lacks explicit contact or security policy information. The site is accessible without any WAF or security challenge blocking content. The SSL configuration is good, but DNSSEC is not enabled, and no security headers were detected, which could be improved for better security posture.

Christiansen Consulting OÜ is an international consulting firm with offices in Estonia, Denmark, and Greece, specializing in business development, organizational change, and leveraging cultural diversity. Their services include serious games development, team building, and strategic consulting projects across multiple countries. The website is professionally designed using Voog CMS, with good mobile optimization and clear navigation. Technically, it uses modern JavaScript libraries and supports HTTPS with no detected vulnerabilities. However, the site lacks privacy and cookie policies, security headers, and incident response information, which are important for compliance and security posture. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but could improve in privacy compliance and security best practices.

The website www.marines.com is currently inaccessible due to a 403 error generated by AWS CloudFront, indicating that access is blocked either by a Web Application Firewall (WAF) or a configuration issue. This prevents any meaningful content analysis or extraction of business, security, or compliance information. The WHOIS lookup for the domain returned no registration data, suggesting the domain may not be registered, is under privacy protection, or there is a data retrieval issue. Consequently, no metadata, contact details, or policy documents are available for review. The lack of accessible content and registration data severely limits the ability to assess the business operations, technical infrastructure, or security posture of the entity behind this domain.

C

For Sale Page

copterline.com

51

The website copterline.com currently serves as a domain parking and sales page hosted by the Spaceship.com marketplace platform. It does not represent an active business but offers the domain for sale with a fixed price and option to make an offer. The site targets domain investors and buyers, providing secure payment options and transaction support. The branding is consistent with the Spaceship marketplace, and the site includes a contact form for potential buyers to submit their information. Technically, the site uses standard HTML, CSS, and JavaScript, hosted on Spaceship's CDN infrastructure, with moderate performance and good mobile optimization. However, the site lacks advanced SEO, accessibility features, and security headers. The WHOIS data shows inconsistencies such as a future creation date and missing registrant details, which lowers trustworthiness. No privacy, cookie, or terms of service policies are present, and no direct company contact emails or phone numbers are provided. Overall, the site is functional for domain sales but lacks comprehensive business and security information.

P

Publicon OÜ

publicon.ee

52

Publicon OÜ is a professional conference organizer based in Estonia with over 10 years of experience. The company specializes in organizing traditional, virtual, and hybrid conferences both locally and internationally. The website is built on the Wix platform, indicating a moderate level of digital maturity with standard Wix technologies and scripts. The site is mobile-optimized and presents a professional design with clear navigation and relevant content for its target audience. Security posture is adequate with HTTPS enforced and some JavaScript hardening, but lacks explicit security headers and visible privacy or cookie policies. Overall, the website is trustworthy but could improve in privacy compliance and security transparency.

R

riks.no - Domain for sale

riks.no

51

The website riks.no is currently a minimal placeholder page indicating the domain is for sale. It does not represent an active business or service provider. The site is targeted at potential domain buyers and is operated likely by a domain brokerage service (websecured.io). The technical infrastructure is basic, using standard JavaScript and Google Fonts with AMP markup, but lacks advanced frameworks or CMS. Security posture is minimal with no detected security headers or privacy policies, and no HTTPS status was explicitly provided. The site does not collect user data beyond a mailto contact link, indicating low privacy compliance. Overall, the site is low risk but also low trust and low business credibility due to its placeholder nature.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is inaccessible or not loaded. Consequently, no business information, metadata, or security policies are present to evaluate. The page is a technical placeholder rather than a functional website, preventing meaningful analysis of business operations or security posture.

D

DANA4D

pipfrog.com

52

The website www.pipfrog.com operates as an Indonesian online gambling platform branded as DANA4D, specializing in slot games and offering a QRIS-based deposit payment method. The site targets Indonesian users interested in convenient and secure online slot gaming. Technically, the site leverages the AMP framework for fast mobile performance and uses external content delivery networks for images and game hosting. However, the domain WHOIS data is unavailable, raising concerns about domain legitimacy and registration status. Security posture is weak due to missing security headers, malformed form URLs, and absence of privacy and cookie policies. Overall, the site presents basic content and functionality but lacks critical compliance and security features, which impacts trustworthiness and business credibility.

The website laavatech.com currently serves a 404 Page Not Found error, indicating that no accessible content is available. The domain is registered since 2018 and is active until 2027, but the absence of any business-related content, metadata, or contact information suggests the website is either abandoned or misconfigured. The only external links present are to tilda.cc and tilda.ws, which are related to the 404 error page template provider, confirming no original content is served. From a technical perspective, the website appears to be hosted behind Cloudflare DNS, but no security challenge or WAF is detected. There is no evidence of HTTPS or security headers, and no privacy or cookie policies are present. The lack of any forms, social media links, or business contact details further reduces the digital maturity and trustworthiness of the site. Security posture is weak due to the absence of HTTPS, security headers, and privacy compliance mechanisms. The domain registration is consistent and legitimate, but the lack of website content and security best practices poses a risk to business credibility and user trust. Overall, the website is currently non-functional from a user and security perspective, with critical issues that must be addressed to establish a professional and secure online presence.

W

Walless

walless.com

66

Walless is a modern Baltic law firm established in 2008, providing bespoke legal services focused on client trust, openness, and innovation. The firm targets businesses in the Baltic region and offers services including arbitration, dispute resolution, and corporate legal advisory. Their market position is that of a growing regional legal services provider with a professional online presence. Technically, the website is built on WordPress, leveraging modern plugins and technologies such as Google Analytics, reCAPTCHA, and GDPR cookie consent mechanisms. The site is well optimized for performance and mobile devices, with good SEO and accessibility features. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website reflects a credible and professional business with a high trustworthiness rating.

The website www.bal.com.mx is currently inaccessible due to a Web Application Firewall (WAF) protection by Incapsula, which blocks direct access to the site's content. As a result, no meaningful business, technical, or security information could be extracted from the provided HTML content. The lack of accessible content prevents evaluation of the company's market position, services, or digital maturity. Security posture cannot be assessed beyond the presence of the WAF itself, which indicates some level of security awareness but also limits transparency. Overall, the site is effectively locked down, which hinders external analysis and may impact user trust and SEO.

E

Eesti Disaini Maja / Estonian Design House

estoniandesignhouse.ee

49

Estonian Design House is a platform dedicated to promoting Estonian design and supporting local designers. The website serves as a showcase for Estonian design products and aims to connect designers with a broader audience interested in unique, locally crafted design. The business operates within a niche market focused on design enthusiasts and customers valuing Estonian cultural products. Technically, the website is built on WordPress with SEO optimization via Yoast and includes social media integration, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS, but lacks advanced security headers and explicit security or privacy policies, which could be improved to enhance trust and compliance. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

T

Tartu Loomemajanduskeskus

lmk.ee

40

Tartu Loomemajanduskeskus (LMK) is a well-established creative industries development center and incubator based in Tartu, Estonia, founded in 2009. It focuses on supporting creative enterprises through incubation programs, mentoring, training, and providing rental spaces. The organization targets creative startups and existing businesses in the South Estonia region, aiming to boost innovation and export potential in sectors such as fashion, contemporary art, film, and performing arts. The website reflects a professional and consistent brand presence with active social media engagement and regularly updated news content. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating modern JavaScript libraries like Swiper.js and jQuery. It employs Google Analytics and Jetpack for visitor tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Hosting and domain registration are stable and consistent with the business's geographic location. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and formal security or incident response policies. No privacy or cookie policies were found, indicating potential compliance gaps with GDPR requirements. No vulnerability disclosure or security.txt files are present, which could be improved to enhance trust and transparency. Overall, the website is functional, professional, and credible but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

The website at axxisgeo.com/lander is a minimal landing page with no substantive business content, contact information, or policies. The domain is registered since 2015 with GoDaddy.com, LLC and shows standard domain protections but lacks DNSSEC. The site uses React and JavaScript technologies and loads Google Adsense scripts, indicating some advertising activity. However, the absence of privacy, cookie, or terms of service policies and lack of contact details reduce trust and compliance posture. Security headers are missing, and DNSSEC is not enabled, representing minor security gaps. Overall, the site appears to be a placeholder or parked domain rather than a fully operational business website.

Z

Zone Media OÜ

rahinge.ee

47

Rahinge.ee is a small Estonian website focused on promoting and providing information about Rahinge Wakepark, a water sports and relaxation destination near Tartu, Estonia. The site offers content about wakeboarding, SUP boards, canoe and kayak rentals, and leisure facilities such as beaches and ball courts. The business model centers on regional water sports enthusiasts and visitors seeking recreational activities. The website is built on WordPress with popular plugins and themes, showing moderate performance and good mobile optimization. SEO practices are adequately implemented with proper meta tags and structured data. Security posture is basic with HTTPS enabled but lacks DNSSEC and security headers, and no cookie consent mechanism is present. Contact information is limited to a contact form without explicit emails or phone numbers. The domain is newly registered in 2025 by Zone Media OÜ, a known Estonian registrar and hosting provider, consistent with the website's launch timeframe. Overall, the site is functional and professionally designed but could improve in privacy compliance and security best practices.

W

Walless

derling.ee

64

Walless is a modern Baltic law firm established in 2008, offering innovative and bespoke legal solutions primarily targeting businesses in the Baltic region. The firm emphasizes client trust, openness, and innovation, positioning itself as a growing and reputable player in the regional legal market. Their key services include legal advisory, arbitration, and dispute resolution. The website reflects a professional and consistent brand image with multi-language support and clear navigation. Technically, the site is built on WordPress, leveraging modern tools such as Google Analytics, MailerLite for marketing, and Google reCAPTCHA for form security. Hosting and DNS services are provided by reputable providers including Cloudflare and Tucows Domains Inc. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or suspicious domain registration patterns.

S

Sviiter Studio

sviiter.ee

56

Sviiter Studio is a small, independent full-service design-oriented studio based in Estonia, specializing in branding, digital, and print design services. The company positions itself as innovative and client-focused, targeting businesses and organizations seeking comprehensive design solutions. The website is professionally designed using the Squarespace platform, featuring clear navigation, responsive design, and integration with social media channels such as Instagram, Facebook, and Behance. Technical infrastructure leverages modern web technologies and content delivery networks to ensure moderate performance and good user experience across devices. Security posture is strong with HTTPS enforced, HSTS enabled, and a cookie consent mechanism in place, although explicit privacy policies and incident response information are absent. Overall, the website reflects a trustworthy and credible business presence with room for improvement in privacy compliance and security transparency.

ID Production is an event marketing and production company that specializes in creating event identities. Their Facebook business page serves as their primary online presence, showcasing their services and engaging with a moderate follower base of approximately 1.1K followers. The company targets event organizers and marketers seeking professional event marketing and production services. The business model is service-oriented, focusing on event marketing and production within a niche market segment. Technically, the page is hosted on the Facebook platform, leveraging Facebook's infrastructure, React framework, and secure HTTPS environment. The page is well-optimized for mobile devices and provides a good user experience with clear navigation and relevant content. The technical implementation benefits from Facebook's robust hosting and security features, ensuring fast performance and accessibility. From a security perspective, the page benefits from Facebook's platform security, including HTTPS enforcement and secure login forms. No direct security vulnerabilities or exposed sensitive data were detected. However, the page lacks explicit privacy, cookie, or terms of service policies specific to the business, relying instead on Facebook's overarching policies. Contact information is limited to an email address, with no phone numbers or physical addresses provided. Overall, the risk profile of the page is low given its hosting on a reputable platform and absence of suspicious indicators. Strategic recommendations include enhancing privacy compliance disclosures, providing additional contact channels, and maintaining strong administrative security practices. The business should also consider linking to a dedicated website for more comprehensive corporate information and policies.

M

M-Partner

mpartner.ee

41

M-Partner is an established Estonian recruitment company specializing in the effective hiring of managers and specialists, with over 20 years of experience and more than 1000 successful recruitments. Their business model focuses on full search and headhunting services, targeting Estonian companies seeking qualified personnel. The website reflects a professional and consistent brand image, supported by client logos and clear service descriptions. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates essential tools such as Google Tag Manager and reCAPTCHA, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement, email obfuscation, and cookie consent mechanisms, though additional security headers and formal policies could enhance protection. Overall, the site is accessible, well-structured, and compliant with GDPR, presenting a trustworthy and credible online presence.

The website vanglateenistus.ee is currently inaccessible beyond a Cloudflare Turnstile captcha challenge page, preventing access to any substantive content. The domain is very recently registered (December 2023) and is owned by Elkdata OÜ, a hosting and registrar provider, indicating the site is likely new or under development. Due to the WAF challenge, no business, security, or compliance information is available for analysis. The technical infrastructure relies on Cloudflare's security and analytics services, but no CMS or frameworks are detectable. The security posture cannot be fully assessed, but the presence of Cloudflare WAF indicates some baseline protection. Overall, the site is low trust at this stage due to lack of accessible content and new domain age.

L

Lindab

lindab.si

40

Lindab.si is a Slovenian content and blogging website established in 2022, offering articles on a variety of topics including home, health, sports, services, and technology. The site targets a general Slovenian-speaking audience interested in diverse lifestyle and technology content. The business model is primarily content publishing with no direct e-commerce or transactional services evident. The website is built on WordPress CMS, utilizing Yoast SEO for search optimization and Google reCAPTCHA for form security. The technical infrastructure is modern and moderately performant with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enforced and form protection via reCAPTCHA, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy page present but no cookie consent mechanism detected. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website is legitimate, consistent with its domain registration data, and presents a moderate trust level. Strategic improvements in privacy compliance, security policy transparency, and contact information availability would enhance credibility and user trust.

T

terasbeach.ee

terasbeach.ee

57

The website www.terasbeach.ee appears to be a small business site based in Estonia, built using modern frontend technologies such as Gatsby and Bootstrap. However, the provided HTML content is largely technical and lacks visible business descriptions, contact information, or policy documents. The site does not present privacy, cookie, or terms of service policies, which are critical for compliance and user trust. Technically, the site uses a modern stack but lacks security headers and explicit security policies, indicating a low security maturity level. No analytics or tracking scripts were detected, suggesting minimal user tracking. The WHOIS data is consistent with the website's country and domain, indicating legitimacy. Overall, the site scores low to moderate on content quality, security posture, and privacy compliance, with recommendations to improve policy transparency, security headers, and contact information to enhance trust and compliance.

The website epicenter.ee is currently inaccessible due to an HTTP 403 Forbidden error, indicating that access to the site's content is blocked or restricted by server configuration or security policies. As a result, no metadata, structured data, contact information, or business content is available for analysis. The domain is registered to Zone Media OÜ since 2012, which suggests a legitimate and established presence in Estonia. However, the lack of accessible content severely limits the ability to assess the company's business model, services, or compliance posture. Technically, the site runs on an Apache server hosted by Zone Media OÜ, but no further technology stack details or security headers are visible due to the access restriction. Security posture cannot be evaluated beyond the presence of HTTPS (implied by port 443) and the 403 error. Overall, the site scores very low on content quality, technical implementation, security, privacy compliance, and business credibility due to the blocked content.

The website iaconsulting.info currently presents minimal content, consisting solely of a frameset that redirects visitors to an external domain (www.searchvity.com). There is no visible business information, contact details, or policies on the site, which severely limits the ability to assess the company's market position or services. The domain is registered since 2015 with privacy protection, but the lack of transparency and meaningful content raises concerns about legitimacy and professionalism. From a technical perspective, the website lacks modern infrastructure elements such as HTTPS, security headers, and accessible HTML structure. The use of framesets is outdated and negatively impacts user experience and SEO. No scripts, analytics, or tracking technologies were detected, indicating a very basic or placeholder site. Security posture is weak due to the absence of HTTPS, security headers, and any visible security or privacy policies. The WHOIS privacy protection, while common for small businesses, combined with the minimal content and redirect behavior, suggests a low trust level. There are no indications of incident response readiness or certifications. Overall, the website poses a high risk from a security and trust perspective. It is recommended to implement HTTPS, develop meaningful content including privacy and cookie policies, provide clear contact information, and modernize the technical implementation to improve credibility and compliance.

The website salto.co is currently inaccessible, returning a 403 Forbidden error with minimal HTML content. This prevents any meaningful extraction of business, security, or compliance information. The domain is registered through GoDaddy with privacy protection enabled, which obscures registrant details. The domain age suggests it has been active since 2013, but the lack of accessible content limits verification of business operations or legitimacy. Technical infrastructure details such as hosting and SSL configuration cannot be confirmed due to the blocked content. Security posture cannot be evaluated, and no privacy or cookie policies are present. Overall, the site appears to be either restricted or misconfigured, resulting in a very low trust and credibility score.

N

Nordic Consult

nordicconsult.ee

40

Nordic Consult is a small Estonian corporate services provider specializing in online company registration, legal address provision, accounting, and e-Residency support. Established since 1997, it targets entrepreneurs and e-Residents seeking efficient company formation in Estonia. The website is built on WordPress with SEO and form plugins, offering a user-friendly experience with clear navigation and relevant content. Technically, the site is hosted via Zone Media OÜ and uses HTTPS with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and secure form handling but lacks important security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy and security practices.

The website leegohansson.com is currently inaccessible due to an origin web server downtime, as indicated by the Cloudflare 521 error page. The domain is very recently registered (July 2024) and uses Cloudflare as a CDN and security provider. There is no accessible business content, contact information, or policies available on the site, which severely limits the ability to assess the business or its market position. Technically, the site relies on Cloudflare but lacks DNSSEC and security headers, and the server is currently non-responsive. The security posture is weak due to the downtime and lack of standard security configurations. Overall, the site presents a high risk due to unavailability and lack of transparency, and it is recommended to restore server availability, implement security best practices, and publish necessary compliance policies to improve trust and security.

F

Ferdio

ferdio.com

57

Ferdio is a Denmark-based visual communication agency founded in 2014, specializing in creating infographics, animations, presentations, and other visual storytelling content. The company targets businesses and organizations that require professional visual explanations of complex information. Their market position is supported by a portfolio featuring notable clients and a consistent brand presence across their website and social media channels. Technically, the website is built on WordPress hosted on WP Engine, utilizing modern web technologies such as jQuery, Vimeo API, and Google Analytics, with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS with a valid SSL certificate and implements cookie consent mechanisms compliant with GDPR. However, there is room for improvement in security headers and publishing formal security policies or incident response plans. Overall, Ferdio presents a professional, trustworthy, and well-maintained digital presence with moderate technical maturity and good privacy compliance.

The website lasitamaja.com/lander is a newly registered domain (August 2023) currently serving a minimal placeholder or parking page with no substantive business content. The site uses React and JavaScript technologies and includes Google AdSense scripts, indicating an intent to monetize traffic. However, there is no visible business information, contact details, privacy or cookie policies, or terms of service, which limits trust and credibility. Technically, the site is hosted via GoDaddy with domain status locks enabled but lacks DNSSEC and security headers, which are important for domain and web security. The minimal content and lack of SEO or accessibility features suggest a low level of digital maturity. No forms or user data collection mechanisms are present. From a security perspective, the absence of HTTPS enforcement details, security headers, and privacy compliance measures indicates a basic security posture with room for improvement. The domain registration is consistent with a new business but the lack of transparency and content reduces confidence. Overall, the site scores low on content quality, privacy compliance, and business credibility, with moderate technical implementation.

A

Ave Munde

avemunde.com

63

Ave Munde is a small lifestyle and wellness brand focused on introducing consumers to global foods and promoting healing to embrace the outside world. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and hosting services. The technical infrastructure is standard for Wix sites, with moderate performance and basic mobile optimization. Security posture is basic with HTTPS enabled but lacks important security headers and privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the site provides basic content and branding but lacks comprehensive security and privacy compliance measures.

The website duendekoolitused.ee currently presents no visible content, with an empty HTML body and no metadata, scripts, or forms. The domain is registered since 2010 with Zone Media OÜ, a known Estonian registrar and hosting provider, indicating a legitimate registration history. However, the lack of website content and absence of contact or policy information significantly limit the ability to assess the business operations or digital maturity. The technical infrastructure appears minimal, with no detected CMS, frameworks, or security headers. Security posture is weak due to missing HTTPS information and lack of security best practices. Overall, the website is either inactive or a placeholder, resulting in a low trust and security score.

The website envir.ee is currently inaccessible beyond a Cloudflare Turnstile security challenge page, which blocks direct content access. The domain is registered since 2010 with an Estonian registrar, indicating a potentially established entity. However, no business, contact, or policy information is publicly visible, limiting the ability to assess the company's operations or compliance. The technical infrastructure relies on Cloudflare's security and performance services, including Turnstile captcha and insights beacon. Due to the access restrictions, the security posture cannot be fully evaluated, but the presence of Cloudflare indicates a baseline security layer. Overall, the site lacks publicly accessible content, policies, or contact details, resulting in a low trust and compliance profile.

The website aktamedika.org is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents retrieval of any meaningful content or business information. The domain is registered through GoDaddy with privacy protection by Domains By Proxy, LLC, and has been active since 2007. The lack of accessible content and absence of privacy, cookie, or terms of service policies limit the ability to assess the business or security posture comprehensively. Technically, the site uses Cloudflare services for DNS and security, but DNSSEC is not enabled, representing a potential security enhancement. The security posture cannot be fully evaluated due to the blocking mechanism, but no immediate vulnerabilities are visible from the limited data. Overall, the site scores low on content quality, technical implementation, privacy compliance, and business credibility due to the lack of accessible information.

The website ww38.mineprofs.org is a domain parking page indicating that the domain mineprofs.org is potentially for sale. It lacks substantive business content, contact information, or any active services. The site primarily serves as a placeholder with advertising scripts and links to domain sale services. The technical infrastructure relies on basic HTML, CSS, and JavaScript, with third-party ad networks such as Google Adsense Domains and Youseasky tracking scripts. Hosting is via Amazon Cloudfront CDN. Security posture is minimal with no visible HTTPS enforcement or security headers, and privacy compliance is weak due to absence of cookie consent mechanisms despite extensive tracking. The WHOIS data is unavailable due to a malformed request, suggesting privacy protection or restricted access, which aligns with the domain's parked status. Overall, the site presents low business credibility and trustworthiness.

P

Printlanti Oy

printlanti.fi

49

Printlanti Oy is a Finnish print management company specializing in print brokerage and production management services. With over 10 years of experience and a strong network across Finland and the Baltic region, they provide cost-effective print solutions to small and medium-sized enterprises. Their website reflects a professional and consistent brand image, targeting businesses seeking expert print management to optimize resources and reduce costs. Technically, the site is built on WordPress using the Enfold theme, incorporating modern web technologies and marketing tools such as Google Analytics and Survicate. Security posture is solid with HTTPS enabled and standard domain protections, though DNSSEC is not enabled and no explicit security policies or vulnerability disclosures are present. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is trustworthy and well-positioned in its niche, though improvements in privacy and security transparency are recommended.

The website at https://apwiser.com/lander is a minimal landing page with very limited content and no visible business information or user engagement features. The domain is registered with GoDaddy.com, LLC since 2021, consistent with a small business age. The site loads a Google AdSense script indicating some advertising intent but lacks privacy, cookie, or terms of service policies, which are critical for compliance and user trust. Technically, the site uses JavaScript and is hosted on GoDaddy infrastructure, but lacks modern SEO and accessibility features. Security posture is basic with no DNSSEC and no visible security headers, though HTTPS is assumed. No contact information or incident response details are provided, limiting transparency and trust. Overall, the site appears to be a placeholder or underdeveloped landing page with low content quality and business credibility.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) which indicates that the actual website content for the domain 'chromewebdata' is not accessible or blocked. This page primarily contains embedded Chromium offline game scripts and styling, with no real business or website content available. Consequently, no privacy, cookie, or terms of service policies are present, nor is there any contact or security policy information. The technical infrastructure is limited to Chromium's internal JavaScript and canvas-based game code, with no external hosting or CMS detected. Security posture is minimal due to lack of accessible content and absence of security headers or HTTPS enforcement details. The domain WHOIS data is not provided, preventing any domain legitimacy or registration analysis. Overall, the site is inaccessible for meaningful business or security evaluation, resulting in a low AI score and no trust indicators.

F

Fed Africa

fedafrica.com

62

Fed Africa is a recruitment consultancy specializing in senior and middle management placements across Africa and the Middle East, operating from offices in Paris and Abidjan. The company targets expatriates, diasporas, and local professionals seeking executive roles, as well as companies looking to recruit top talent. The website reflects a professional and consistent brand presence with clear navigation and sector-specific job listings. Technically, the site employs a modern tech stack including Bootstrap, jQuery, and integrates marketing and analytics tools such as Google Analytics, Pardot, and Criteo. The site is mobile-optimized and uses HTTPS with CSRF protections on forms, indicating a good security baseline. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the active and professional website presence mitigates some risk. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanisms. Overall, the site demonstrates a solid business and technical foundation but would benefit from enhanced transparency on security policies and domain registration.

H

Harbour Enterprise Group | Latvija, Lietuva, Igaunija

harbour.lv

53

The website www.harbour.lv is a small business site hosted on the Wix platform, targeting a Latvian audience. The site uses standard Wix technologies and integrates Google Analytics for visitor tracking. However, the site lacks comprehensive business information, privacy policies, and contact details, which limits its credibility and user trust. Technically, the site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. Overall, the site presents a minimal digital footprint with room for significant improvements in privacy compliance, security, and business transparency.

E

Edurus AB

edurus.se

51

Edurus AB operates a professional website focused on providing personalized gravestone design services in Sweden. The company positions itself as a family-owned business offering a simple three-step process to design custom gravestones, targeting individuals seeking memorial solutions. The website demonstrates a moderate level of digital maturity, utilizing WordPress CMS, Gravity Forms for data collection, and integrating marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Bing Ads. Cookie consent is implemented via Cookiebot, indicating awareness of privacy compliance requirements. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, but lacks explicit security headers and visible incident response contacts. The absence of WHOIS data for the domain www.edurus.se raises concerns about domain registration legitimacy, although the website content and branding appear consistent and professional. Overall, the site scores moderately on content quality, technical implementation, security, privacy compliance, and business credibility.

The survease.io domain currently serves only a 404 Not Found error page with no accessible website content. This prevents any meaningful analysis of the company's business operations, services, or compliance posture. The domain is registered through a privacy protection service based in Iceland and hosted with Cloudflare DNS, indicating some level of infrastructure maturity but no direct evidence of active business presence. The lack of privacy policies, contact information, or security disclosures suggests the website is either inactive or under development. From a security perspective, the site uses HTTPS but lacks security headers and DNSSEC, which are recommended for improved protection. Overall, the site presents a low trust profile due to missing content and transparency.

D

DELUNA4D

seguru.io

51

DELUNA4D operates as an online Toto Macau 4D lottery betting platform targeting Indonesian players who prefer low minimum bets. The website is built on Squarespace, leveraging its CMS and hosting infrastructure, with proper HTTPS and HSTS security configurations. However, the site lacks critical privacy and security disclosures, including privacy policies, cookie consent mechanisms, and incident response contacts, which limits its compliance posture and trustworthiness. The domain registration is stable and consistent with the business age, but the absence of registrant details and minimal contact information reduces transparency. Overall, the platform appears functional but requires significant improvements in privacy, security, and business credibility to enhance user trust and regulatory compliance.

The website laanekv.ee is currently non-functional due to a critical PHP fatal error in the Redux Framework WordPress plugin. This error causes the site to crash and exposes internal file paths, which is a significant security concern. The domain is registered through Zone Media OÜ, an Estonian hosting and registrar provider, with a creation date in 2016, indicating a small business presence. However, the website lacks any accessible content, metadata, or business information, making it impossible to assess the company's services or market position from the site itself. Technically, the site uses WordPress with the Redux Framework plugin but suffers from poor performance and no visible SEO or accessibility features. Security posture is weak due to exposed errors and missing security headers. No privacy, cookie, or terms of service policies are present, and no contact information is available on the site. Overall, the site appears neglected or under maintenance, severely limiting trust and usability.

The website jpcordial.com is currently under construction and does not provide any active business content or services. The domain is registered since 2008 with a reputable registrar, indicating a legitimate domain ownership, but the lack of content suggests the site is either inactive or in redevelopment. The technical infrastructure includes Bootstrap 3.3.7 and jQuery 3.1.1, with Google Adsense integrated for advertising. Mobile optimization and accessibility are basic to poor, and SEO is minimal due to the lack of content and meta tags. Security posture is limited; while HTTPS is enabled, no DNSSEC or security headers are present, and no forms or inputs exist to secure. Privacy and cookie policies are absent, and no contact or business information is provided, which negatively impacts trust and compliance. Overall, the site has a low maturity level and requires significant improvements in content, security, and compliance to be considered a professional and trustworthy business website.