Security Directory

Z

ZHERO Media

zheromedia.com

64

ZHERO Media is a professional digital communication and marketing agency offering a broad range of services including performance marketing, SEO, social media marketing, branding and design, content marketing, and art design. The company targets businesses seeking to enhance their brand positioning and ROI through strategic marketing campaigns. The website demonstrates a mature digital infrastructure with Webflow CMS, Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. Security posture is solid with HTTPS and anti-CSRF cookies, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the professional presentation and client trust signals mitigate this risk. Overall, the website is well-designed, user-friendly, and compliant with GDPR cookie consent requirements.

G

Granicus

govqa.us

76

Granicus is an established enterprise technology company specializing in government-focused software solutions, particularly in records request management and compliance. Their product GovQA is widely adopted by state and local governments, public safety organizations, schools, and special districts. The company demonstrates a strong market position with a comprehensive suite of government experience cloud solutions. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, New Relic, and Wistia for video content, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain protections in place, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

B

Blis

blis.com

69

Blis is a technology company specializing in location data and analytics, providing businesses with consumer behavior insights to enhance marketing effectiveness. The company operates a professional and well-structured website built on WordPress with modern technologies such as Elementor and Bootstrap, hosted on AWS infrastructure. The site employs Google Tag Manager and LinkedIn Insight for analytics and marketing tracking, alongside Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and domain transfer protection enabled; however, the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is partial, with cookie consent mechanisms present but lacking explicit privacy and terms of service pages. Overall, the website reflects a credible and established business with a solid technical foundation but could enhance transparency and security practices.

HMS Analytical Software GmbH is a German-based technology company specializing in data science and AI-driven software solutions for enterprises. The company positions itself as a full-service partner, offering services ranging from conceptualization to operationalization of data science projects, including AI consulting, SAS migration, SDMX implementation, and medical solutions. Their target audience primarily consists of businesses seeking advanced analytical and AI capabilities. The website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. Technically, the site is built on WordPress with modern JavaScript frameworks like Alpine.js and uses Usercentrics for GDPR-compliant cookie consent. Security posture is solid with HTTPS and consent management, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the domain registration data aligns well with the company's business claims, supporting legitimacy and trustworthiness.

A

ArchiXL B.V.

archixl.nl

58

ArchiXL B.V. is a specialized Dutch company focused on enterprise and information architecture consulting, knowledge management platforms, and training services. Their website presents a professional and comprehensive overview of their offerings, targeting organizations seeking to improve their data, information, and knowledge management capabilities. The company positions itself as a trusted expert in the Dutch market with a strong emphasis on knowledge sharing and pragmatic solutions. Technically, the website employs modern web technologies including jQuery, Matomo analytics, Google Tag Manager, and SVG graphics. The site is mobile optimized, accessible, and well-structured, providing a good user experience. Performance is moderate with no critical technical issues detected. However, the CMS appears custom or proprietary with no common CMS identified. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide explicit privacy or cookie policies, which are compliance gaps. No incident response or vulnerability disclosure information is available. Analytics usage is moderate with Matomo and Google Tag Manager tracking users, but privacy compliance is basic. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices. There are no indications of malicious content or blocking mechanisms, making it fully accessible for analysis.

L

Level27 BV

level27.eu

46

Level27 BV operates a professional hosting service website targeting agencies and businesses seeking reliable and hassle-free web hosting solutions. The company has been established since 2004 and positions itself as a niche provider offering fast, stable hosting with direct support. The website is built on modern technologies including Next.js and React, with a CMS likely based on Strapi. It employs Cookiebot for GDPR-compliant cookie management and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Facebook Pixel. The site demonstrates good mobile optimization and SEO practices, with a clean and professional design.

Š

Študentska sekcija Društva za marketing Slovenije – ŠSDMS

fanfara.si

51

Fanfara.si represents the official website for Fanfara 2025, the largest student marketing conference in Slovenia organized by the Študentska sekcija Društva za marketing Slovenije (ŠSDMS). The conference targets students and young marketing professionals, offering a one-day event with expert speakers, workshops, career speed dating, and networking opportunities. The event is well-established with a history dating back to 2016 and enjoys strong partnerships with reputable Slovenian organizations and sponsors. Technically, the website is built on the Webflow platform, leveraging modern web technologies and hosting infrastructure, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are lacking. Privacy compliance is addressed with clear links to privacy and cookie policies. Overall, the website demonstrates a professional and trustworthy presence suitable for its educational and event-driven business model.

V

Vareo Digital

vareo.si

52

Vareo Digital is a Slovenian digital consulting and solutions provider specializing in digital optimization, marketing automation, and web development primarily targeting medium-sized businesses. The company emphasizes a strategic approach combining marketing and technology to accelerate digital transformation. Their website is professionally designed, mobile-optimized, and provides clear navigation with content primarily in Slovenian and an English language option. Technically, the site uses modern frontend libraries and frameworks such as Bootstrap, jQuery, and GSAP, with Google Tag Manager for analytics and LinkedIn integration for social presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies could be improved. WHOIS data is unavailable due to the .digital TLD restrictions, limiting transparency but the website content and business presence indicate legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

F

FIDIC - International Federation of Consulting Engineers

fidic.org

62

FIDIC is a globally recognized federation representing consulting engineering firms, providing authoritative standards, contracts, training, and certification services to the international construction and infrastructure industry. The organization maintains a strong market position as the global voice of consulting engineers, serving a diverse audience of member associations and industry professionals worldwide. The website reflects a mature digital presence built on Drupal 7, integrating modern front-end technologies and Google Analytics for user insights. Security posture is solid with HTTPS and domain protections, though improvements are recommended in DNS security and security headers. Privacy compliance is currently weak due to missing privacy and cookie policies. Overall, the site is professional, content-rich, and trustworthy, supporting FIDIC's mission effectively.

A

Agencija za lijekove i medicinske proizvode

halmed.hr

52

HALMED is the Croatian Agency for Medicines and Medical Products, serving as the national regulatory authority responsible for the oversight, approval, and monitoring of medicines, medical devices, and homeopathic products. The website provides comprehensive information, publications, news, and resources targeted at patients, healthcare professionals, and industry representatives. It maintains a clear market position as a government healthcare regulator with a medium-sized operational scale and a founding date consistent with its domain registration in 2010. Technically, the website employs a legacy jQuery version alongside modern tracking tools such as Google Analytics, Google Tag Manager, and Google reCAPTCHA v3 for form security. The hosting is provided by a Croatian hosting company, and the site uses HTTPS with a good SSL configuration. However, some modernization opportunities exist, including updating JavaScript libraries and implementing security headers and cookie consent mechanisms. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and form protection via reCAPTCHA. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy and cookie policies, lack of security headers, and use of outdated libraries present moderate risks. The domain WHOIS data aligns well with the website's claims, indicating legitimacy and trustworthiness. Overall, HALMED's website is professional, trustworthy, and serves its regulatory function effectively. Strategic improvements in privacy compliance and technical security would enhance its posture and user trust.

R

Renault Hrvatska

renault.hr

54

Renault Hrvatska operates as the official Croatian website for the Renault automotive brand, providing comprehensive information on new and used vehicles, financing options, after-sales services, and vehicle configurators. The website targets Croatian consumers interested in purchasing Renault vehicles, offering a broad portfolio including electric and hybrid models. The site reflects a mature digital presence consistent with a large automotive brand, supported by structured navigation and official branding. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and Plausible Analytics, alongside a cookie consent mechanism compliant with GDPR signals. Security posture is strong with HTTPS enforced and privacy-respecting analytics loading conditioned on user privacy signals. However, explicit privacy policies, terms of service, and security incident response information are not directly visible in the provided content. WHOIS data confirms domain legitimacy and consistency with Renault's global presence. Overall, the site is professional, trustworthy, and well-optimized for its audience.

K

Kerlink

kerlink.com

75

Kerlink is a leading provider of IoT connectivity equipment, software, and services, specializing in LoRaWAN technology for public and private networks. The company targets businesses, cities, industries, and network operators globally, offering a comprehensive portfolio including outdoor and indoor gateways, network servers, management tools, and value-added IoT applications. Their market position is strong, supported by their role as a founding member of the LoRa Alliance and their listing on the Euronext Growth market. The website reflects a mature digital presence with professional design, clear navigation, and extensive content relevant to their industry. Technically, the site is built on WordPress with WooCommerce, integrating modern analytics and marketing tools, and optimized for mobile and SEO. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS registration data is a notable gap but does not detract significantly from the overall legitimacy given the professional web presence and business indicators. Strategic recommendations include enhancing security headers, publishing a dedicated security policy, and adding a security.txt file to improve vulnerability reporting and trust.

E

euroAWK spol s.r.o.

bilbordovka.sk

66

Bilbordovka.sk is an established Slovak online platform specializing in the rental of outdoor advertising spaces such as billboards and citylights. Operated by euroAWK spol s.r.o., the website offers a user-friendly interface for searching, selecting, and ordering advertising spaces with integrated payment options. The company leverages its long-standing experience since 1991 to provide comprehensive services including printing and graphic design support. Technically, the website employs modern web technologies including Stimulus JS, Google Analytics, and Google Tag Manager, ensuring a responsive and accessible user experience. Security measures include HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be improved. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected. The domain registration details align well with the business claims, supporting the legitimacy of the entity. Strategic recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party scripts to maintain security and compliance.

G

Gold Price Group Inc

goldprice.org

70

GoldPrice.org is a well-established financial information website specializing in live gold price charts and historical data across multiple currencies. Founded in 2003, it serves investors and individuals interested in precious metals pricing worldwide. The site is positioned as a leading resource in its niche, offering fast-loading charts and market insights supported by advertising revenue. Technically, the site uses Drupal 10 CMS, Cloudflare for DNS and CDN, and integrates modern web technologies such as lazy loading and Google Tag Manager for analytics. Privacy compliance is robust with a comprehensive privacy policy and a Cookiebot consent mechanism enabling granular user control over cookies. Security posture is good with HTTPS and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly observed. No contact or incident response information is published, which could be improved. Overall, the site is professional, trustworthy, and safe for general audiences.

B

Bux.sk

bux.sk

66

Bux.sk is a Slovak online bookstore offering a broad selection of books from local and international authors. The website is professionally designed with good content quality and targets general consumers interested in purchasing books online. The technical infrastructure includes modern tracking and analytics tools such as Google Analytics, Adform, and Cookiebot for consent management, indicating a mature digital presence. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security and incident response policies are not publicly available. Privacy compliance is well addressed through a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website presents a trustworthy and professional e-commerce platform with room for improvement in transparency of contact and security policies.

I

iLearn Online Learning Centre

ilearn.sk

40

iLearn Online Learning Centre is a Slovak-based educational platform focused on providing knowledge and training in the creation of identity and culture for companies, organizations, and individuals. The website positions itself as a platform for education and innovation, targeting businesses and professionals interested in corporate culture development. The business model revolves around online learning and knowledge dissemination. Technically, the website is built on WordPress using the Divi theme, enhanced with SEO tools like Rank Math and analytics via Google Analytics and Tag Manager. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. Security-wise, the site uses HTTPS with a good SSL configuration but lacks security headers and explicit security policies. No privacy or cookie policies were detected, indicating potential GDPR compliance gaps. Contact information is not explicitly provided in the analyzed content, which may affect user trust and compliance. Overall, the website is professional and content-rich but would benefit from enhanced privacy, security, and contact transparency measures.

N

NENBRA Transfer Services

taxi-vienna-bratislava.com

51

NENBRA Transfer Services operates a professional luxury taxi transfer business specializing in airport and cross-border transfers between Vienna, Bratislava, Budapest, Prague, and Schwechat. The company targets travelers seeking premium, reliable, and comfortable transportation with fixed pricing and 24/7 availability. Their market position is niche, focusing on high-end clientele with a fleet of luxury Mercedes Benz vehicles. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses Google Tag Manager and reCAPTCHA for analytics and security. The site is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is solid with HTTPS and basic security practices, though improvements are recommended in DNSSEC and security headers. Privacy compliance is good with GDPR and cookie policies implemented. Overall, the business demonstrates credibility with consistent WHOIS data and clear contact information.

J

JOER s.r.o.

vasaskrina.sk

40

JOER s.r.o. operates the website vasaskrina.sk, offering luxury custom furniture manufacturing services including built-in wardrobes, kitchen units, and wardrobes with an emphasis on online configurators for customer convenience. The company positions itself as a specialist with 15 years of experience in Slovakia, targeting consumers seeking tailored furniture solutions. The website is professionally designed with good navigation and content relevance, supporting a positive user experience. Technically, the site uses modern web standards, Google Fonts, and Google Tag Manager for analytics, hosted on a provider indicated by the nameservers (websupport.sk). Security posture is solid with HTTPS and DNSSEC enabled, though explicit security headers and cookie consent mechanisms are absent. Contact information is clearly provided, enhancing business credibility. Overall, the site is trustworthy and functional with room for improvement in privacy compliance and security transparency.

E

euroAWK

euroawk.sk

64

euroAWK is a well-established international advertising company specializing in outdoor advertising media such as billboards, megaboards, citylights, and urban furniture across Slovakia, Czech Republic, and Hungary. With over two decades of market presence since 2001, euroAWK holds a leading position in the Slovak outdoor advertising sector, offering a comprehensive portfolio of advertising surfaces in prime locations. The website reflects a professional business model focused on providing effective advertising solutions to corporate clients seeking visibility in these regions. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential marketing and analytics tools such as Google Analytics, Google Tag Manager, and Cookiebot for GDPR-compliant cookie management. The site demonstrates good mobile optimization, SEO practices, and accessibility at a basic level. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms, though it lacks explicit incident response or security policy disclosures. Overall, the domain registration data aligns well with the business claims, showing a long-standing and legitimate presence. Strategic recommendations include adding explicit security and incident response policies, enhancing accessibility, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

3

365 Fit&Co

365fitco.sk

55

365 Fit&Co is a modern fitness center chain operating multiple locations in Slovakia, including Bratislava, Košice, and Prešov. The company offers well-equipped gym facilities, group training spaces, and wellness amenities such as Finnish saunas. Their market position is that of a regional fitness provider targeting health-conscious individuals seeking quality fitness and wellness services. The website reflects a professional digital presence with localized content and social media integration. Technically, the site is built on WordPress using the Salient theme and includes modern technologies such as Google Tag Manager and reCAPTCHA for security and analytics. Security posture is solid with HTTPS enforced and GDPR cookie compliance implemented, though explicit privacy policies and security disclosures are absent. Overall, the site is trustworthy and well-maintained, supporting the company's business credibility.

V

VOBACOM sp. z o.o.

vobacom.pl

51

VOBACOM sp. z o.o. is a well-established Polish technology company specializing in intelligent IT solutions for businesses and institutions. Their offerings include web and mobile solutions based on Drupal 10 CMS, augmented reality applications, teletechnical systems, and professional training through their NewTech Academy. The company has a strong regional presence with notable clients such as PKP, PGNiG, and several Polish cities, reflecting a solid market position. The website is professionally designed, accessible, and optimized for mobile devices, providing clear navigation and relevant content tailored to their B2B audience. Technically, the website leverages modern technologies including Drupal 10, Google Tag Manager, and Google Analytics, hosted by OVH SAS. The site demonstrates good performance and accessibility standards, with appropriate SEO and privacy compliance measures such as cookie consent banners and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though DNSSEC is not enabled and security headers could be improved. Overall, the security posture is robust for a medium-sized technology firm, with no critical vulnerabilities detected. The domain registration data is consistent with the business claims, showing a long operational history since 2005. Privacy compliance is strong, with GDPR-aligned policies and user consent mechanisms in place. The website content is safe for general audiences, with no adult or questionable material. Strategically, VOBACOM should consider enhancing DNS security by enabling DNSSEC and implementing additional HTTP security headers. Publishing a security.txt file could improve vulnerability disclosure transparency. These steps would further strengthen their security posture and trustworthiness in the market.

L

Living Lab Koprivnica

living-lab.hr

46

Living Lab Koprivnica is a collaborative innovation platform focused on testing and developing smart outdoor lighting and smart city solutions in Koprivnica, Croatia. The project connects technology providers, research institutions, public bodies, and citizens to foster sustainable energy development and smart urban infrastructure. The website presents detailed information about partners, technologies, and test fields, reflecting a mature and professional digital presence. Technically, the website uses modern web technologies including Google Maps API for interactive maps, Google Analytics for tracking, and jQuery for scripting. The site is hosted by Hrvatski Telekom d.d., a reputable Croatian provider, and employs HTTPS for secure communication. While the site is well-structured and mobile-optimized, it lacks some security headers and cookie consent mechanisms, which are recommended for enhanced security and privacy compliance. From a security perspective, the site demonstrates good practices such as encrypted connections and no visible sensitive data exposure. However, the absence of explicit security policies and incident response contacts indicates room for improvement in security governance. The WHOIS data aligns well with the website's claims, supporting the legitimacy of the domain and business. Overall, Living Lab Koprivnica's website is a trustworthy and informative resource for stakeholders interested in smart city innovations, with recommendations to strengthen privacy compliance and security posture for future resilience.

D

Digital Innovation Hub North

dih-north.eu

41

Digital Innovation Hub North is a regional innovation hub focused on supporting creative industries and businesses in Northern Croatia to grow and internationalize through digital transformation. The website presents a professional image with clear descriptions of services such as ecosystem building, strategy development, prototyping, and networking. Partnerships with regional innovation centers like Enter Koprivnica, TechPark Varaždin, and TICM reinforce its market position. Technically, the site uses modern web technologies including Google Analytics and Tag Manager, with a responsive design and moderate performance. Security posture is adequate with HTTPS enabled but lacks some security headers and formal privacy and cookie policies, which are important for compliance. Overall, the site is trustworthy and business credible but could improve privacy compliance and security best practices.

T

Ton a.s.

ton.cz

65

Ton a.s. is a well-established furniture manufacturer specializing in designed chairs and tables, with a heritage spanning over 160 years. The company targets a general audience interested in quality handcrafted furniture, positioning itself as a reputable player in the manufacturing sector. The website reflects this with professional design and clear branding, emphasizing craftsmanship and design excellence. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, and Cookiebot for cookie consent management. The site is mobile-optimized and includes SEO best practices such as meta tags and structured data. However, some technical improvements could be made, such as adding security headers to enhance protection. From a security perspective, the site uses HTTPS and implements a comprehensive cookie consent mechanism, indicating good privacy compliance. The extensive use of third-party analytics and marketing tools suggests a moderate to extensive user tracking level, but the presence of consent mechanisms aligns with GDPR requirements. The lack of a visible privacy policy or terms of service page is a minor gap. Overall, the website is professional and trustworthy, with no signs of malicious content or security risks. The domain WHOIS data is privacy protected, which is standard for .eu domains, and does not raise concerns. Strategic recommendations include publishing explicit privacy and security policies, enhancing security headers, and providing more direct contact information to improve transparency and trust.

I

InfluxData

influxdata.com

64

InfluxData operates a leading time series data platform, InfluxDB, which is widely adopted by developers and enterprises for real-time data ingestion, analytics, and monitoring. The company offers both open source and enterprise-grade solutions, including cloud-managed and self-managed deployments, targeting industries such as IoT, AI, and infrastructure monitoring. Their market position is strong, supported by a large developer community, extensive integrations, and recognized industry leadership. Technically, the website is built on modern frameworks and technologies, with excellent performance, mobile optimization, and SEO. The presence of multiple client libraries and code examples demonstrates a mature developer ecosystem. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are not published. WHOIS data is missing, which is unusual but does not detract significantly from the site's legitimacy given its professional presentation and community trust. Overall, InfluxData presents a credible, professional, and technically advanced platform with room to improve transparency around security policies and incident response.

S

SafetyWing

safetywing.com

66

SafetyWing is a specialized insurance provider offering global health and travel insurance products tailored for remote workers, digital nomads, and remote companies. Founded in 2017, the company positions itself as a modern alternative to traditional national welfare systems, targeting a niche but growing market segment. The website presents a professional and consistent brand image with clear product offerings such as Nomad Insurance and Remote Health Insurance. The technical infrastructure leverages modern web technologies including React and Next.js, supported by a variety of marketing and analytics tools such as HubSpot, Google Tag Manager, and Facebook Pixel. Hosting and DNS services are provided by reputable providers, ensuring reliable performance and availability. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data, but lacks some security headers and explicit privacy and cookie policies, which are critical for compliance and user trust. The WHOIS data confirms the domain's legitimacy and appropriate age for the business history. Overall, SafetyWing demonstrates a solid digital presence with room for improvement in privacy compliance and security best practices.

C

CTVNews

ctvnews.ca

65

CTVNews is a leading Canadian news media organization providing comprehensive coverage of local, national, and international news. The website offers a rich mix of live updates, video content, and trusted reporting across multiple sectors including politics, health, business, and sports. Operated under Bell Media, CTVNews holds a strong market position as a trusted news source in Canada with a large audience base. Technically, the website leverages modern web technologies such as React and Bootstrap, supported by a robust advertising and analytics infrastructure including Amazon Ads, Rubicon Project, and Comscore. The site is well-optimized for mobile and accessibility, ensuring a positive user experience.

T

The Frick Collection

frick.org

67

The Frick Collection is a well-established non-profit art museum located in New York City, specializing in Renaissance to 19th-century art. The website serves as a comprehensive digital portal offering information on exhibitions, collections, educational programs, and membership opportunities. It targets art enthusiasts, researchers, students, and donors, positioning itself as a reputable cultural institution with a strong online presence. Technically, the website is built on Drupal 10, leveraging modern front-end technologies such as Tailwind CSS and Swiper.js for responsive design and user experience. It integrates Google Analytics and Tag Manager for visitor tracking and marketing insights. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes standard security headers, indicating a solid baseline security posture. However, the absence of a publicly available security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and readiness. The WHOIS data is unavailable or malformed, which slightly impacts domain trust assessment but does not detract significantly from the overall credibility given the professional website content. Overall, the Frick Collection website is a professional, secure, and user-friendly platform that effectively supports the institution's mission and audience engagement. Strategic enhancements in security transparency and domain registration clarity would further strengthen trust and compliance.

O

Ogden City

ogdencity.com

56

Ogden City operates an official municipal government website serving residents, businesses, and visitors of Ogden, Utah. The site provides comprehensive access to city services, community resources, government agendas, and contact information. It maintains a consistent brand presence and integrates social media channels to engage the community. The website is built on a CivicPlus CMS platform and leverages modern JavaScript libraries and analytics tools to monitor performance and user engagement. While the site is well-structured and professionally designed, it lacks some advanced privacy compliance features such as explicit cookie consent and published security policies. The absence of WHOIS data is typical for government domains due to privacy protections and does not detract from the site's legitimacy. Overall, the site demonstrates a solid digital infrastructure suitable for a government entity.

U

University of Washington

washington.edu

57

The University of Washington website serves as the official digital presence of a major public research university in the United States. It offers comprehensive information about academic programs, research initiatives, campus news, and community engagement. The site targets students, faculty, staff, alumni, and the general public, providing resources and updates relevant to these groups. The university holds a strong market position as a leading educational institution with a broad range of services including continuing education and online learning. Technically, the website is built on WordPress and leverages a modern technology stack including jQuery, Backbone.js, and multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers could be improved. Performance is moderate, with a well-structured and professional design that supports a positive user experience. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts for analytics and marketing. However, it lacks some recommended security headers like Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a gap. WHOIS data is unavailable due to .edu domain restrictions, but the site’s branding and content strongly indicate legitimacy. Overall, the University of Washington website is a high-quality, trustworthy platform that effectively supports its educational mission. Strategic improvements in security headers and privacy consent mechanisms would enhance its security posture and compliance. The site’s extensive use of analytics and marketing tools suggests a mature digital strategy, balanced with a professional and user-friendly design.

B

Buffer

buffer.com

69

Buffer is a well-established social media management platform founded in 1996, offering a comprehensive suite of tools for content creation, publishing, analytics, engagement, and team collaboration. The company targets small businesses and social media professionals, positioning itself as a trusted and user-friendly SaaS solution with over 190,000 active users. The website reflects a mature digital presence with excellent design, clear navigation, and strong branding consistency. Technically, Buffer employs modern web technologies including React and Next.js, hosted behind Cloudflare, ensuring fast performance and robust security. The site implements comprehensive cookie consent mechanisms aligned with GDPR requirements and uses multiple analytics and marketing tools responsibly. Security posture is strong with HTTPS, security headers, and CSRF protections, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, Buffer demonstrates high business credibility and digital maturity, with minor recommendations to enhance security transparency and DNS security. The website content is safe for general audiences and free from adult or questionable material.

@

@levelsio.com | techno optimist wear

levelsio.com

10

The website levelsio.com operates as a niche e-commerce platform specializing in techno optimism themed merchandise, including apparel and accessories. Founded in 2017, it targets a small but dedicated audience interested in technology-positive lifestyle products. The business leverages the Fourthwall e-commerce platform for its online store, integrating modern payment processing and analytics tools. The site demonstrates a good level of digital maturity with fast performance, mobile optimization, and consistent branding. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Technically, the site uses a modern tech stack including HTML5, CSS3, JavaScript, Google Tag Manager, Microsoft Clarity, and Stripe for payments. Hosting and DNS are managed via Cloudflare, providing robust infrastructure and security. The site employs HTTPS with excellent SSL configuration and some security best practices such as reCAPTCHA Enterprise for bot protection. However, DNSSEC is not enabled, and explicit security headers like Content-Security-Policy are not evident. From a security perspective, the site is well-protected against common threats but could improve by publishing formal privacy, cookie, and security policies, as well as a vulnerability disclosure mechanism. No critical vulnerabilities or exposed sensitive data were detected. The absence of contact information and data protection officer details limits transparency and trust. Overall, levelsio.com is a professionally designed and secure e-commerce site with moderate privacy compliance and business credibility. Strategic improvements in privacy documentation and user consent mechanisms would enhance its trustworthiness and compliance posture.

N

NBCUNIVERSAL MEDIA

peacocktv.com

64

NBCUniversal Media is a leading global media and entertainment company specializing in the development, production, and marketing of entertainment, news, and information to a worldwide audience. As a subsidiary of Comcast Corporation, NBCUniversal holds a strong market position with diversified services including sports broadcasting, theme parks, and film production. The website reflects a mature digital presence with rich multimedia content and consistent branding across social media platforms. Technically, the site is built on Drupal 10 and integrates modern analytics and consent management tools, indicating a robust infrastructure. Security posture is generally strong with HTTPS and cookie consent mechanisms, though explicit security headers and detailed privacy policies are not evident in the provided content. The absence of WHOIS data for the domain www.nbcuniversal.com is notable and warrants further investigation to confirm domain registration legitimacy. Overall, the site demonstrates high professionalism and trustworthiness, suitable for its enterprise scale and industry.

A

AiSDR

aisdr.com

67

AiSDR is a technology company specializing in AI-powered sales outreach solutions. Their platform enables sales teams to identify prospects with high purchase intent and engage them through personalized, multichannel communications including email, LinkedIn, and SMS. The company targets enterprises and sales professionals seeking to improve lead generation and meeting booking efficiency. The website reflects a mature SaaS business model with a focus on AI-driven automation and integration with popular CRM systems like HubSpot. Technically, the site is built on WordPress with advanced performance optimizations using NitroPack and integrates multiple marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, and Visual Website Optimizer. Security posture is strong with HTTPS enforced and domain locking, though DNSSEC is not enabled. However, the site lacks published privacy and cookie policies, which is a compliance gap. No direct company contact emails or phone numbers are provided, with contact primarily via embedded HubSpot forms. Overall, the website is professional, well-branded, and trustworthy, serving a clear business purpose in the AI sales outreach market.

S

Sirma

sirma.com

74

Sirma is a well-established technology company specializing in AI, data, cloud migration, tailored software development, managed IT services, business and IT consulting, cyber security, and system integration. With over 33 years of experience and a presence in more than 170 countries, Sirma serves a broad enterprise audience seeking advanced technology solutions. The company maintains multiple global offices and partners with leading technology providers such as Apple, IBM, Oracle, Microsoft, and VMware. Technically, the website employs modern web technologies including Astro framework, JavaScript libraries like jQuery, Tiny Slider, and Headroom.js, and integrates advanced analytics and tracking tools such as Google Analytics, Amplitude, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good SEO and accessibility features, hosted via GoDaddy with HTTPS enabled. From a security perspective, the site uses HTTPS and Google reCAPTCHA v3 for form protection but lacks DNSSEC and security headers, and does not publish a security policy or incident response contacts. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. No terms of service page was found. Overall, the website is professional, trustworthy, and content-rich, with moderate security posture and privacy compliance. Strategic improvements in DNS security, cookie consent, and security transparency would enhance trust and compliance.

GoFor!Artists is a German-based online platform specializing in local artist booking and event entertainment services. Supported by the German Federal Ministry for Economic Affairs and Climate Action (BMWK), it offers a transparent, user-friendly marketplace for event organizers to find and book artists for various occasions including weddings, corporate events, and private parties. The platform emphasizes ease of use, legal compliance, and secure payment processing. Technically, the website is built on modern React and Next.js frameworks, integrating multiple analytics and marketing tools such as Google Tag Manager, HubSpot, and Matomo. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is strong with clear policies and cookie consent mechanisms. However, the WHOIS data is missing or not publicly available, which slightly reduces trust but may be due to privacy protection or recent domain registration. Overall, the site is professional, well-structured, and trustworthy for its business purpose.

S

Stroka produkt d.o.o.

stroka.si

55

Stroka produkt d.o.o., operating under the brand Skupina stroka.si, is a well-established Slovenian IT service provider founded in 2005. The company offers a broad range of IT solutions including infrastructure management, business software integration (notably PANTHEON), digital workplace services leveraging Office 365, business analytics, custom software development, and digital transformation consulting. Their market position is strengthened by a Microsoft Gold Partner certification and multiple industry awards, reflecting a strong reputation in the Slovenian technology sector. The website content and design reflect a professional and mature digital presence targeting business clients seeking comprehensive IT solutions. Technically, the website is built on the DotNetNuke CMS platform, utilizing modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the company demonstrates a mature digital infrastructure and credible business operations.

S

SAB servis s.r.o.

myplann.cz

65

SAB servis s.r.o. operates as a brokerpool providing comprehensive support services for financial advisors and leaders of advisory firms primarily in the Czech Republic. The company emphasizes simplifying the operational life of its clients through education, events, and a suite of tools designed to enhance advisory practices. Their market position is supported by a clear vision and active engagement with their target audience, positioning them as a proactive player in the financial advisory sector. Technically, the website is built on the Solidpixels CMS platform and leverages modern web technologies including Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and a professional design, though some accessibility features could be improved. Performance is moderate, with a well-structured navigation system and clear content presentation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, no advanced security headers were detected, and there is no visible security or incident response policy published. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, though the professional web presence and social media footprint support the company's credibility. Overall, SAB servis presents a trustworthy and professional digital presence with room for improvement in security transparency and domain registration disclosure. Strategic enhancements in security policies and WHOIS transparency would further strengthen their risk posture and trustworthiness.

@

@levelsio.com | techno optimist wear

makeeuropegreatagain.co

67

The website levelsio.com is an e-commerce platform specializing in branded apparel and merchandise themed around techno optimism and European identity. It offers a niche collection of products such as organic cotton t-shirts, hats, hoodies, mugs, and stickers. The business appears to be small-sized, founded in 2017, and operates primarily online with a focused target audience interested in techno optimism and European culture. The site is powered by the Fourthwall platform and hosted via Cloudflare, indicating a modern and scalable technical infrastructure. Technically, the website employs a robust stack including Google Tag Manager, Google Analytics, Microsoft Clarity, Facebook Pixel, TikTok Analytics, Klaviyo for marketing, Stripe for payments, and Google reCAPTCHA Enterprise for bot protection. The site is mobile-optimized, fast-loading, and uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and some recommended security headers are missing, which could be improved to enhance security posture. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent mechanisms, and bot protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and appear GDPR compliant, though no explicit security policy or incident response information is published. The domain WHOIS data is consistent and legitimate, with no privacy protection, indicating transparency. Overall, the website is professionally designed, secure, and compliant with privacy regulations, serving a niche retail market effectively. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen trust and security posture.

SOMA is a manufacturing company specializing in the production of flexo presses, with a history spanning approximately 25 years. The company positions itself as a top global manufacturer in its niche, emphasizing unique technology development. The website reflects a professional and consistent brand image targeted at businesses requiring specialized industrial equipment. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Smartlook, and integrates Google Maps API for location services. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the website is legitimate and professional but would benefit from enhanced security and privacy disclosures.

S

SANELA spol. s r.o.

sanela.cz

53

SANELA spol. s r.o. is a Czech-based company specializing in sanitary technology products, including stainless steel sanitary equipment, RFID payment systems, and smart sanitary water and energy management solutions. The company targets business and institutional customers requiring advanced sanitary technology solutions. The website reflects a medium-sized manufacturing business with a consistent brand presence and a professional digital footprint. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google Tag Manager and Analytics for tracking, and uses a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and includes reCAPTCHA for forms, but lacks explicit security headers and incident response information. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility.

O

ORPA Papír a.s.

orpa.cz

59

ORPA Papír a.s. is a well-established Czech manufacturer specializing in paper-based tubular packaging solutions, including Tubusbox and paper tubes, serving food and industrial sectors. With over 140 years of tradition and multiple ISO and industry certifications, the company positions itself as a reliable and quality-focused packaging partner. The website reflects a professional and modern digital presence with rich multimedia content, clear navigation, and multilingual support. Technically, the site uses modern frameworks and tracking technologies with appropriate consent mechanisms, hosted by a reputable Czech provider. Security posture is good with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration data aligns well with the company's history and location, supporting legitimacy.

K

Kozák Svitavy, s.r.o.

kozak-svitavy.cz

52

Kozák Svitavy, s.r.o. operates a wholesale e-commerce platform specializing in candles, home and garden accessories, and related decorative products. The website targets wholesale customers primarily in the Czech Republic, offering a broad product range including seasonal and floristry items. The business model focuses on B2B sales through an online portal, positioning itself as a regional supplier with a clear product focus. The website content is professionally presented in Czech, with clear navigation and relevant business information, including contact details and ethical reporting channels. Technically, the site is built on ASP.NET WebForms with Kentico CMS, utilizing common JavaScript libraries such as jQuery, bxSlider, and fancyBox. Google Analytics and Google Tag Manager are employed for user tracking and analytics. The site shows moderate performance and good mobile optimization but lacks some advanced accessibility features. Security measures include HTTPS and CSRF tokens, but there is an absence of security headers and cookie consent mechanisms, indicating room for improvement in security posture and privacy compliance. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. The website provides clear contact information and an ethical whistleblowing email, which are positive trust signals. Overall, the security posture is moderate but could be enhanced by implementing security headers, cookie consent, and publishing a vulnerability disclosure policy. The overall risk assessment suggests the website is functional and legitimate for its business purpose but would benefit from improved transparency in domain registration and enhanced privacy and security practices. Strategic recommendations include verifying domain registration details, implementing GDPR-compliant cookie consent, adding security headers, and establishing a formal security policy to strengthen trust and compliance.

V

VOŠPS a SPgŠ Kroměříž

ped-km.cz

50

VOŠPS a SPgŠ Kroměříž is an educational institution based in the Czech Republic offering secondary and higher vocational education focused on pedagogical professions. The website targets students, parents, and educational professionals seeking meaningful pathways into teaching careers. It provides comprehensive information about study programs, admissions, school events, and additional educational services. The institution maintains a consistent brand presence and clear communication channels including phone, email, and social media. Technically, the website is built on the iCard.cz platform using Bootstrap 3.3.2 and Vue.js 3.2.45, with modern UI components and responsive design. It integrates Google Tag Manager for analytics and employs a robust cookie consent mechanism supporting GDPR compliance with multi-language support. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent best practices. However, no explicit security headers were detected, and there is no visible security policy or incident response information. The WHOIS data for the domain is missing, which reduces domain trustworthiness but the website content and contact details appear legitimate and professional. Overall, the website is well-structured, content-rich, and compliant with privacy regulations, making it a trustworthy source for educational information. The main risk lies in the lack of domain registration transparency and some missing security best practices. Strategic improvements in security headers and domain registration visibility are recommended.

H

HAVC

filmingincroatia.hr

58

Filming in Croatia is an official film commission program managed by HAVC, promoting Croatia as a prime filming destination with attractive incentive programs and a network of regional film offices. The website serves as a comprehensive resource for film producers and industry professionals, offering detailed information on incentives, locations, crews, and services. The site is well-positioned in the media sector, supported by government affiliation and international memberships, enhancing its credibility and market presence. Technically, the website is built on WordPress with modern SEO and tracking tools, hosted via a reputable registrar and DNS infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Overall, the site demonstrates a professional, trustworthy, and user-friendly digital presence suitable for its target audience.

D

Desk Kreativne Europe – Ured MEDIA Hrvatske

mediadesk.hr

54

Desk Kreativne Europe – Ured MEDIA Hrvatske is the official Croatian office supporting the Creative Europe MEDIA sub-programme. It serves Croatian audiovisual creators, film and TV professionals, and video game authors by providing information, organizing workshops, and facilitating access to EU funding opportunities. The website reflects a well-established entity with over 15 years of operation, consistent with its domain age and WHOIS data. The business model is non-profit and government-supported, focusing on cultural and media sector development within Croatia and the EU framework. The target audience includes professionals and organizations in the audiovisual and cultural sectors seeking EU MEDIA programme support. Technically, the website is built on the Webflow CMS platform, utilizing modern web technologies such as jQuery, Google reCAPTCHA, Google Tag Manager, and Plausible Analytics. Hosting and DNS are managed via Cloudflare, ensuring reliable performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with bilingual content in Croatian and English. The presence of accessibility features and cookie consent mechanisms indicates a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms from abuse. However, explicit security headers are not detected in the HTML content, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found. Privacy compliance is supported by visible privacy and cookie policies, with GDPR considerations addressed. Contact information is clearly provided, enhancing trust and transparency. Overall, the website presents a low-risk profile with a strong business credibility and good technical implementation. It effectively serves its niche audience with relevant content and services. Strategic recommendations include enhancing security headers, formalizing incident response policies, and maintaining up-to-date third-party components to sustain security and compliance standards.

P

Pro-Link

pro-link.pl

47

Pro-Link is a Polish digital marketing and web development company specializing in building PrestaShop e-commerce stores, SEO/SEM services, hosting, and domain registration. Established in 2004, the company has a solid market presence with a focus on small to medium businesses seeking online store solutions and digital marketing support. Their website reflects a professional and consistent brand image, targeting businesses in Poland. Technically, the site is built on WordPress with modern technologies such as Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security measures include HTTPS and Google reCAPTCHA on contact forms, but lack advanced security headers and DNSSEC. The site complies well with GDPR, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, Pro-Link demonstrates a mature digital infrastructure with room for security enhancements.

I

International Society of Nephrology

theisn.org

57

The International Society of Nephrology (ISN) is a globally recognized non-profit professional association dedicated to advancing kidney health worldwide through education, research, advocacy, and collaboration. The organization targets healthcare professionals, researchers, and nephrologists, providing key services such as training, conferences, publications, and global health initiatives. The website reflects a mature and professional digital presence consistent with a large healthcare non-profit entity. Technically, the website is built on WordPress with a modern technology stack including popular plugins and marketing tools such as Google Analytics, Facebook Pixel, and Cookiebot for privacy compliance. The site is mobile-optimized, SEO-friendly, and uses structured data to enhance search visibility. Performance is moderate with good accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. While explicit security headers are not fully evident, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for organizations of this nature, and does not raise immediate concerns. Overall, the security posture is solid but could be improved by adding explicit security headers and publishing a security policy. The overall risk assessment is low, with the website demonstrating strong business credibility, good privacy compliance, and a trustworthy online presence. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and formalizing incident response contacts to further strengthen security and trust.

V

Vox Communications

vox-communications.com

60

Vox Communications is a Croatian media and entertainment company specializing in cinema, TV, and digital advertising services, including event hosting and special projects. The company targets advertisers seeking to leverage CineStar cinema networks and related digital platforms. The website is professionally designed, multilingual, and optimized for SEO, reflecting a medium-sized enterprise with a consistent brand presence. Technically, the site runs on WordPress with modern libraries and Google Tag Manager integration, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled but lacks some security headers and cookie consent mechanisms, representing areas for improvement. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional web presence and business information. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing a vulnerability disclosure policy to strengthen trust and compliance.

G

Globe Trade Centre

gtcgroup.com

69

Globe Trade Centre (GTC) is a leading real estate investor and developer focused on commercial office and retail properties in Central and Eastern Europe (CEE) and South Eastern Europe (SEE). The company emphasizes sustainable business practices and ESG initiatives, targeting investors, tenants, and partners in the real estate sector. The website reflects a mature digital presence with structured investor relations, portfolio showcases, and news updates. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and is built on the Sitecore CMS platform, offering good mobile optimization and accessibility. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks visible security headers and explicit incident response information. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues, though the professional website content suggests legitimacy. Overall, the site scores well on content quality and privacy compliance but should improve transparency on security policies and domain registration verification.