Security Directory

S

swissporTON

creaton.pl

55

swissporTON is a reputable manufacturer and distributor of roofing materials, specializing in ceramic and cement roof tiles, roofing accessories, and integrated photovoltaic systems. The company targets professional builders, distributors, architects, and individual investors primarily in Poland and Europe. The website reflects a mature digital presence with comprehensive product information, professional design, and clear navigation. Technically, the site uses modern web technologies and integrates popular analytics and marketing tools while maintaining good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable publicly, consistent with .pl domain privacy norms, and does not raise legitimacy concerns. Overall, swissporTON presents a trustworthy and professional business with a solid online presence.

C

Cloudflare, Inc

wonderchat.io

66

Wonderchat.io is a technology startup focused on providing no-code AI chatbot solutions for websites, leveraging ChatGPT-based automation to enhance customer support and sales analytics. The company targets businesses seeking to automate up to 70% of support queries with custom AI agents, positioning itself as an emerging player in the AI SaaS market. The website is built using modern frameworks like Framer and is hosted via Cloudflare, indicating a contemporary technical infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protections in place, but lacks advanced DNS security features such as DNSSEC and does not publish security or privacy policies. The site integrates multiple analytics and marketing tools, reflecting a data-driven approach to user engagement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact and security information.

V

Van der Horst aannemers

vanderhorstaannemers.nl

51

Van der Horst aannemers is a medium-sized Dutch construction company specializing in complex building projects with a strong focus on budget management, planning, logistics, and fire safety. The company maintains a significant portfolio of residential and commercial properties and has a solid regional market presence. Their website reflects a professional and consistent brand image, targeting construction clients and municipalities. Technically, the website employs modern analytics and marketing tools, including Google Analytics, Facebook Pixel, and Hotjar, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. No critical vulnerabilities or blocking mechanisms were detected, and WHOIS data supports the legitimacy of the domain and business. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

C

Cornelissen aannemingsbedrijf

cornelissenbouw.nl

43

Cornelissen aannemingsbedrijf is a Dutch construction contracting company specializing in managing both large and small building projects with an emphasis on craftsmanship and customer involvement. The company targets individuals and businesses in the Netherlands seeking reliable construction services. The website is built on WordPress, utilizing Yoast SEO for search engine optimization and Google Analytics for visitor tracking. The technical infrastructure is modern but lacks some advanced security headers and privacy compliance features. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to align with best practices and regulatory requirements.

C

Comité régional du Tourisme de la région Centre-Val de Loire

tourisme-pro-centre-valdeloire.fr

10

The website 'Tourisme Pro' serves as the official digital platform for the Comité régional du Tourisme de la région Centre-Val de Loire, targeting tourism professionals within the region. It offers a comprehensive range of services including tourism data, professional training, innovation support, publications, and sustainable tourism initiatives. The site positions itself as a key regional resource and authority in tourism promotion. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for content management, GDPR compliance, and user engagement. Hosting is provided by Infomaniak Network SA, a reputable provider. The site demonstrates good mobile optimization, moderate performance, and solid SEO practices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. While explicit security headers are not fully detected, no vulnerabilities or exposed sensitive data were found. The absence of direct contact emails or phone numbers suggests reliance on contact forms for communication. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. It maintains good privacy compliance and provides a safe browsing experience. Strategic recommendations include enhancing security headers, expanding contact information transparency, and continuous security monitoring.

K

kimverlag GmbH

kimverlag.de

10

kimverlag GmbH is an independent, artist-led publishing company specializing in children's media, hobby art, and creativity. They develop and publish magazines, audio content, and digital media, also producing and licensing content for German and international book publishers. The company positions itself as a niche publisher with a focus on creative and child-friendly content, targeting children and hobby artists. The website reflects a small-sized business with a professional and consistent brand presence, founded around 2020 in Germany. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS platform with good SEO practices. Hosting is provided by rzone.de, a German hosting provider, and the site uses Google Analytics and a consent management platform for tracking and privacy compliance. The site is mobile optimized with moderate performance and basic accessibility features. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. However, no direct contact emails or phone numbers were found in the content provided. Overall, the website is trustworthy, professional, and compliant with privacy regulations, suitable for its target audience. Strategic recommendations include enhancing security headers, publishing a security policy, and providing clearer contact information for security or incident response purposes.

H

Hurricane Electric

he.net

61

Hurricane Electric is a well-established Internet backbone and colocation provider founded in 1995, offering global IP Transit, Layer 2 transport, colocation, dedicated servers, and IPv6 certification services. The company targets ISPs, enterprises, and network operators seeking reliable and scalable Internet infrastructure. Their market position is strong, supported by a large IPv6 deployment and global network presence. Technically, the website uses standard web technologies with Google Analytics and Google Ads integrated for tracking and marketing. The site is moderately optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is moderate; while HTTPS is implied, no DNSSEC or security headers are enabled, and no explicit security policies or incident response contacts are published. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the domain WHOIS data confirms legitimacy and long-term operation, enhancing trust. Strategic improvements in security headers, DNSSEC, and privacy compliance would strengthen the security and compliance posture.

U

Unite Caribbean

unite-caribbean.com

55

Unite Caribbean is a Caribbean-based consulting firm specializing in sustainable development and regional cooperation, with offices in Guadeloupe and Saint Lucia. The company offers consulting services and initiates cooperative projects in partnership with public, private, and philanthropic sectors in the Caribbean. The website is professionally designed using WordPress and Elementor, with multilingual support and SEO optimization. The technical infrastructure includes modern analytics and tracking tools such as Google Analytics and Tag Manager. Security posture is good with HTTPS enabled and domain transfer protection, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy or terms of service pages found. Overall, the website presents a trustworthy and professional image suitable for its target audience.

J

Judyth Dressing

judythdressing.com

53

Judyth Dressing is a French-based e-commerce retailer specializing in elegant, colorful, and modern women's fashion collections. The website offers a range of products including dresses, tops, pants, jewelry, and accessories, targeting women who want to express their femininity and character through fashion. The business appears to be newly founded in 2024, with a domain registration date consistent with this timeline. The company operates on a WordPress platform using WooCommerce for e-commerce functionality and Elementor for page building, indicating a modern and flexible technical infrastructure. Hosting is provided by OVH sas, a reputable European hosting provider. From a security perspective, the website uses HTTPS with a valid SSL certificate and has domain status protections to prevent unauthorized transfers or deletions. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML source, which could be improved to enhance security posture. Privacy and cookie policies are not found on the site, and no consent mechanisms are implemented, which may pose compliance risks under GDPR. Google Analytics is used for tracking, integrated via the Site Kit plugin, indicating moderate user tracking. Overall, the website is professionally designed with good content quality, clear navigation, and mobile optimization. The business credibility is supported by consistent branding and transparent domain registration data. The security posture is moderate but could benefit from additional hardening measures. Privacy compliance is currently weak due to missing policies and consent mechanisms. Strategic improvements in these areas would enhance trust and regulatory compliance.

V

Val de Loire TV

valdeloire.tv

65

Val de Loire TV is a regional French television channel focused on providing local news, entertainment, and event coverage for the Indre-et-Loire and Loir-et-Cher regions. The website offers live streaming and replay services, targeting a regional French-speaking audience interested in local content. The business model appears to be ad-supported media broadcasting with a digital presence. Technically, the site is built on WordPress with modern plugins for video delivery, consent management, and analytics integration. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is basic, with no explicit privacy policy page found in the scanned content but a robust cookie consent mechanism is present. WHOIS data is privacy protected, which is common for media websites, and no suspicious patterns were detected. Overall, the website is professional, trustworthy, and serves its regional audience effectively.

P

Publicore

publicore.fr

52

Publicore is a well-established communication agency based in Colmar, France, specializing in content marketing, branding, video and photo production, web development, and social media strategy. The website reflects a professional and comprehensive digital presence with clear service offerings and client engagement. Technically, the site uses modern web technologies and integrates multiple analytics and marketing tools, ensuring good performance and user experience. Security posture is solid with HTTPS and reCAPTCHA protections, though some security headers and explicit policies could be improved. The absence of WHOIS data limits domain trust verification but does not detract significantly from the overall legitimacy given the professional content and contact transparency. Overall, the site is safe, well-structured, and compliant with privacy regulations.

F

FNCOF

fncof.com

46

FNCOF is a French website established since 2001, hosted by OVH sas, and built on WordPress using the Elementor page builder and Astra theme. The site employs modern web technologies and includes cookie consent mechanisms via TRUENDO Privacy Center. Google Analytics is used for visitor tracking with default denial of consent until user approval. The website content is primarily in French and appears business-oriented, though no explicit business description or contact information is provided on the homepage or metadata. The domain registration data is consistent with the website's language and hosting location, indicating legitimacy. However, the absence of privacy policy, terms of service, and contact details limits transparency and user trust.

A

Arbeitsgemeinschaft Medienwerbung GmbH im Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke

arge-medien.de

41

ArGe Medien im ZVEH is a marketing and PR service provider operating within the German electrical trade sector, affiliated with the Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH). The organization focuses on advertising, public relations, and developing marketing concepts aimed at both trade members and end customers, including campaigns for image building and recruitment. The website demonstrates a strong market position within its niche, supported by a broad network of reputable industry partners and suppliers. Technically, the site is built on TYPO3 CMS, hosted on RZone infrastructure, and employs modern web technologies including Usercentrics for consent management and Google Analytics for tracking. The site is mobile-optimized and accessible, with good SEO practices.

Zweckverband Verkehrsverbund Oberlausitz-Niederschlesien (ZVON) operates a regional public transportation portal serving the Oberlausitz and Niederschlesien regions in Germany. The website provides comprehensive information on public transit schedules, ticketing, network maps, and current service updates, targeting local commuters and travelers. The business model centers on facilitating access to public transport services and enhancing user experience through digital tools such as real-time departure monitors and fare calculators. The organization holds a solid regional market position as a trusted mobility service provider.

Red Robin Books is an independent children's book publisher and retailer specializing in high-quality books for early years to early teens. The company offers a range of products including picture books, board books, audio books, and educational resources, targeting children, parents, and educators. The website serves as an e-commerce platform built on WordPress and WooCommerce, providing a professional and user-friendly shopping experience. The business appears to be small-sized and niche-focused with a consistent brand presence and active social media engagement. Technically, the website leverages modern web technologies such as WordPress CMS, WooCommerce for e-commerce, jQuery, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile-optimized with good SEO practices implemented via Yoast SEO plugin. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration and secure form handling. However, it lacks visible security headers and does not display privacy or cookie policies, which are important for compliance and user trust. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website content. Overall, the website is functional, professional, and safe for general audiences, but improvements in privacy compliance, security best practices, and domain registration transparency are recommended to enhance trust and security posture.

V

Verlagsgruppe Oetinger Service GmbH

oetinger.de

56

Verlagsgruppe Oetinger Service GmbH is a well-established German publishing group specializing in children's and youth literature. Their website offers a broad catalog of books, including popular titles like Pippi Langstrumpf and Tintenwelt, targeting children and young readers. The company maintains a consistent brand presence with active social media channels and a professional online storefront. Technically, the website is built on Drupal 10 with the Thunder distribution, integrating modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Cookiebot for GDPR-compliant cookie management. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security-wise, the site enforces HTTPS, employs standard security headers, and uses a cookie consent mechanism, though it lacks a publicly stated security policy or incident response contact. WHOIS data aligns well with the business claims, indicating legitimacy and consistent domain registration. Overall, the website is professional, secure, and compliant with privacy regulations, serving its target audience effectively.

K

KIDDINX Media GmbH

kiddinx.de

47

KIDDINX Media GmbH is a reputable German media company specializing in children's entertainment, particularly audio plays and licensing of popular brands such as Bibi Blocksberg and Benjamin Blümchen. The company operates under the parent company GT-Holding and maintains a strong market position in the children's media sector. The website is built on Drupal 10, featuring modern consent management and analytics integration, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, anonymized analytics, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR-aligned consent. Overall, the site presents a professional and trustworthy digital presence with good content quality and user experience.

M

MyDataKnox hosting

mydataknox.com

61

MyDataKnox hosting is a Croatian-based technology company specializing in web hosting, virtual private servers, domain registration, cloud backup, and related IT infrastructure services. Established in 2010, it has grown to become one of the fastest growing hosting providers in Croatia, supported by multiple ISO certifications that demonstrate its commitment to quality, security, and environmental responsibility. The company targets businesses and individuals seeking reliable and scalable hosting solutions, offering 24/7 customer support and free migration services to enhance customer satisfaction. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. The site is well-optimized for mobile devices, accessible, and structured with clear navigation. Cookie consent mechanisms comply with GDPR requirements, providing users control over functional, analytics, and marketing cookies. From a security perspective, MyDataKnox demonstrates strong practices including HTTPS enforcement, domain status protections, and adherence to ISO 27001 standards. However, enabling DNSSEC and publishing an incident response contact or security.txt file could further enhance security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the website and business present a high level of professionalism, trustworthiness, and compliance, making it a reliable service provider in the hosting industry.

E

ERGO Aktiv

ergoaktiv.cz

45

ERGO Aktiv is a specialized neurorehabilitation center based in the Czech Republic, focusing on patients with acquired brain injuries such as stroke and head trauma. The organization offers comprehensive rehabilitation services including expert consultations, tailored rehabilitation programs, home rehabilitation, and social support to help patients return to normal life and employment. Their market position is that of a niche healthcare provider with a unique rehabilitation concept and advanced equipment. Technically, the website is built on WordPress with modern plugins and multimedia integration, demonstrating a moderate to good level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the credibility of the business.

C

CEREBRUM 2007

cerebrum2007.cz

51

CEREBRUM 2007 is a Czech non-profit patient organization dedicated to supporting individuals who have suffered brain injuries, including strokes, trauma, and tumors. The organization provides a community center, counseling services, educational workshops, and publishes informational materials to aid patients and their families. The website is well-structured, professionally designed, and targets patients, caregivers, healthcare professionals, and the general public interested in brain injury awareness. It maintains an active presence on multiple social media platforms and offers a newsletter for ongoing engagement. Technically, the website is built on WordPress with a modern plugin ecosystem including Yoast SEO, Contact Form 7, and Google services such as Analytics and reCAPTCHA. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, some security headers are missing, and there is no explicit cookie consent banner, which could be improved for better GDPR compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and spam protection on forms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable publicly, likely due to privacy protection, but the website content and business information appear consistent and legitimate. Overall, the site presents a trustworthy and professional digital presence for a small non-profit organization. Strategically, the organization should enhance its privacy compliance by implementing a cookie consent mechanism and consider publishing a security or incident response policy to further build trust. Regular updates and security header improvements will strengthen its security posture. The website effectively supports its mission and audience with clear navigation, relevant content, and community engagement tools.

J

Jasněna Vláhová s.r.o.

vlahova.cz

53

Jasněna Vláhová s.r.o. operates the website vlahova.cz, a well-established Czech family business specializing in the design and distribution of watches, clocks, and jewelry products across Europe. The company has a strong retail presence with nearly two thousand stores supplied and offers a variety of collections targeting women, men, and children. The website reflects a professional e-commerce platform with clear navigation, product showcases, and marketing integrations. Technically, the site uses a combination of jQuery, Alpine.js, and other modern JavaScript libraries, supported by Google Tag Manager and Facebook Pixel for analytics and marketing. Security measures include HTTPS enforcement and cookie consent mechanisms, although explicit security headers and incident response information are not publicly detailed. Overall, the site demonstrates a mature digital presence aligned with its business operations.

N

Nadační fond Čas je mozek

nfcasjemozek.cz

42

Nadační fond Čas je mozek is a Czech non-profit organization dedicated to stroke awareness, education, and patient rehabilitation support. The foundation educates the public on stroke symptoms and the importance of timely emergency response, organizes fundraising events, and provides financial aid to stroke survivors. The website reflects a focused mission with clear content and active social media engagement. Technically, the site uses standard web technologies including jQuery, Font Awesome, and Google Analytics, with a cookie consent mechanism implemented. However, the absence of a privacy policy and security headers indicates room for improvement in privacy and security compliance. The WHOIS data is missing, which limits domain trust verification, but the website content and contact information support legitimacy. Overall, the site is well-structured and professional, serving a clear non-profit healthcare mission.

N

Nadační fond Čas je mozek

casjemozek.cz

44

The website www.casjemozek.cz represents a Czech non-profit initiative named 'Čas je mozek' focused on educating the public about stroke symptoms, prevention, and treatment. Founded in 2015, it is affiliated with reputable Czech medical societies, providing authoritative content and organizing charitable events. The site offers extensive educational resources, patient stories, and news updates, targeting the general public and healthcare professionals in the Czech Republic. Technically, the site uses modern web technologies including JavaScript libraries and tracking tools such as Google Analytics and Facebook Pixel. It is mobile-optimized and provides a good user experience with clear navigation and professional design. However, the absence of a privacy policy and terms of service pages, as well as missing WHOIS domain registration data, slightly reduce its trustworthiness. Security posture is moderate with HTTPS usage and cookie consent but lacks visible security headers and incident response contacts. Overall, the site is a credible and valuable resource for stroke awareness but would benefit from enhanced transparency and security best practices.

L

LangShop

langshop.app

67

LangShop is a SaaS provider specializing in e-commerce translation solutions, offering a Shopify translation app and Magento 2 translation extension. The company targets e-commerce store owners seeking multilingual capabilities and seamless migration between Magento and Shopify platforms. The website demonstrates a solid market position with clear service offerings and a professional digital presence. Technically, the site is built on Magento 2 with integrations of modern JavaScript libraries and marketing tools, supported by Cloudflare for DNS and CDN services. The site is mobile-optimized and SEO-friendly, with comprehensive privacy and cookie policies including consent mechanisms. Security posture is good with HTTPS enforced and domain registration locked, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained, with room for improvement in publishing explicit security policies and incident response contacts.

U

University of Alaska

alaska.edu

67

The University of Alaska operates the website www.alaska.edu as a subdomain under its main alaska.edu domain, serving as a digital portal for educational and research services. The institution is a large public university system focused on providing higher education and community outreach within the state of Alaska. The website targets students, faculty, researchers, and the general public interested in academic programs and university resources. The business model is that of a public educational institution, with a strong market position as the primary higher education provider in Alaska. Technically, the website employs modern frontend technologies such as Bootstrap 4.6.1 and FontAwesome 6.7.2, along with multiple analytics and marketing tools including Google Tag Manager, Google Analytics, Hotjar, and Facebook Pixel. The site appears to be mobile optimized and has a moderate performance profile. However, no CMS or hosting provider details were explicitly identified from the provided data. From a security perspective, the site uses HTTPS and standard third-party scripts but lacks visible security headers and explicit privacy or cookie policies in the analyzed content. No forms or contact information were detected, which limits the assessment of input security and user data handling. The absence of privacy and cookie policies suggests potential compliance gaps with GDPR and other privacy regulations. Overall, the website is legitimate and trustworthy as an educational institution's digital presence, but it would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

Ö

ÖKO-TEST

oekotest.de

60

ÖKO-TEST is a well-established German media company specializing in independent product testing, consumer advice, and related news. With a history spanning over 30 years, it holds a strong market position as a trusted source for product evaluations and lifestyle guidance. The website offers subscription-based content and integrates modern consent management and subscription authentication systems to comply with GDPR requirements. Technically, the site leverages Cloudflare for DNS and likely CDN services, uses Google Analytics for tracking, and employs a custom or proprietary CMS framework. The design is professional, mobile-optimized, and content-rich, targeting a general audience interested in consumer products and lifestyle topics. Security posture is solid with HTTPS and Cloudflare protection, though explicit security headers and incident response information are not evident. Overall, the site is trustworthy and professionally maintained, with room for improvement in transparency of privacy and security policies.

A

Arstay s. r. o.

artstay.co

55

Arstay s. r. o. is a small technology-focused digital product design and development agency based in the Czech Republic. The company specializes in strategic consulting, user interface design, and full-scale development to help clients succeed in the evolving digital landscape. Their website reflects a professional and consistent brand image, targeting businesses seeking impactful digital solutions. The site is built using Framer, leveraging modern web technologies and Google Analytics for performance insights. While the site is visually appealing and mobile-optimized, it currently lacks key compliance documents such as privacy and cookie policies, which are critical for GDPR adherence and user trust. Security posture is adequate with HTTPS enabled, but the absence of security headers and vulnerability disclosures indicates room for improvement. Contact information is limited to an email address, with no phone or physical address provided, which may affect user confidence. Overall, the website presents a credible business presence but should enhance compliance and security transparency to strengthen trust and regulatory adherence.

R

Rakuten Advertising

linkshare.com

70

Rakuten Advertising is a leading global affiliate marketing network that connects advertisers and publishers using advanced AI and data analytics to maximize growth. The company offers a comprehensive suite of digital marketing solutions including affiliate marketing, audience targeting, display advertising, influencer marketing, and paid search and social campaigns. Positioned as a market leader with over 25 years of experience and the #1 global traffic rank, Rakuten Advertising targets advertisers and publishers seeking performance-driven marketing outcomes. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, HubSpot, and OneTrust for cookie consent management. The site demonstrates excellent SEO, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Hosting is supported by NS1 DNS services, and the site uses HTTPS with strong SSL configuration. From a security perspective, the site enforces HTTPS, employs clientTransferProhibited domain status, and integrates cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and explicit security headers like CSP and X-Frame-Options are not visibly configured in the HTML. No vulnerabilities or exposed sensitive data were detected. Incident response and security policy information are not publicly available. Overall, Rakuten Advertising presents a high level of professionalism, trustworthiness, and compliance with privacy regulations. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enabling DNSSEC, publishing security policies and incident response contacts, and enhancing security header configurations to further strengthen security posture.

R

Rakuten Advertising

rakutenadvertising.com

11

Rakuten Advertising is a leading global affiliate marketing and digital advertising platform that connects advertisers and publishers using advanced AI and data analytics. The company operates an enterprise-scale network with over 25 years of experience and claims the #1 position in global traffic. Their services include affiliate marketing, audience targeting, display advertising, influencer marketing, media buying, paid search, and paid social campaigns. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the site is built on WordPress with modern analytics and marketing tools integrated, including HubSpot, Google Tag Manager, Facebook Pixel, and OneTrust for cookie consent, indicating a high level of digital maturity. Security posture is strong with HTTPS enforced and clientTransferProhibited domain status, though some security headers could be improved. Privacy compliance is well addressed with GDPR-compliant cookie consent and a comprehensive privacy policy. Overall, the website and domain registration data support a legitimate, trustworthy enterprise business with a strong market position.

Q

Qualibooth.com

qualibooth.com

74

Qualibooth.com is an enterprise-focused digital accessibility software provider offering solutions to help organizations comply with global accessibility standards such as ADA, EAA, and WCAG 2.2. Their product suite includes real-time monitoring toolkits, accessibility scanners, testing workbenches, and consulting services. The company targets medium to large enterprises and is trusted by notable global brands, positioning itself as a leader in the accessibility compliance market. Technically, the website is built on modern platforms like Webflow and integrates advanced analytics and marketing tools such as Google Analytics, Microsoft Clarity, Facebook Pixel, and HubSpot. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting the company's domain expertise. Security posture is strong with HTTPS enforcement and secure form handling, though explicit security headers and policies could be improved. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with user consent mechanisms. However, the absence of WHOIS registration data reduces domain trustworthiness, though the overall business credibility remains high due to strong branding and external trust signals.

O

Onlysollo

onlysollo.cz

42

Onlysollo.cz is a niche e-commerce website specializing in premium gymnastics and bodyweight training equipment. Founded by a professional gymnast, the brand leverages expert knowledge to offer high-quality mats, balance tools, and accessories, targeting athletes and fitness enthusiasts primarily in the Czech Republic but shipping worldwide. The website is built on WordPress with WooCommerce, featuring a modern and responsive design with integrated social media and multi-currency support. Security posture is adequate with HTTPS and anonymized analytics but lacks advanced security headers and published policies. Privacy compliance is limited due to missing cookie consent mechanisms and GDPR-specific disclosures. Overall, the site presents a trustworthy and professional front for a small retail business with room for improvement in privacy and security transparency.

E

European Gymnastics

europeangymnastics.com

63

European Gymnastics is a prominent sports organization representing 50 national member federations and over 10 million gymnasts across Europe. The organization promotes gymnastics in various forms, including Olympic disciplines and gymnastics for all, positioning itself as a unifying body for gymnastics in Europe. The website reflects a professional and consistent brand image, targeting athletes, federations, and gymnastics enthusiasts. Technically, the site leverages modern web technologies such as Angular, Google Analytics, and Google Adsense, ensuring a responsive and user-friendly experience across devices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are absent. Privacy compliance is addressed with clear privacy and cookie policies including consent mechanisms. Overall, the site is trustworthy and well-maintained, though the lack of WHOIS data and security disclosure policies suggests areas for improvement in transparency and security maturity.

C

Czech Gymnastics Federation

gymtv.cz

55

GymTV is the official TV channel of the Czech Gymnastics Federation, providing live streaming and archived video content of gymnastics competitions. The website serves a niche audience of gymnastics enthusiasts primarily in the Czech Republic and operates as a non-profit media outlet affiliated with the national federation. The digital infrastructure is based on WordPress CMS with common plugins for analytics, translation, and UI enhancements, reflecting a moderate level of digital maturity. The site is well-branded, mobile-optimized, and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and published security policies. The absence of WHOIS registrant data is likely due to privacy protection, which is common for such organizations. Overall, the website is legitimate, professional, and focused on its core mission of gymnastics event broadcasting.

The European Theater Technicians Education (ETTE) website represents a European non-profit educational project coordinated by Deutsche Theatertechnische Gesellschaft (DTHG) e.V. The project aims to improve safety competencies for theatre technicians and stage professionals across Europe, leveraging ESCO competences and the European Safety Passport. The site provides multilingual educational content and openly licensed materials, supported by Erasmus+ funding and multiple European partners. The target audience includes theatre technicians, stage hands, and event professionals seeking safety training. Technically, the website is built using RapidWeaver CMS with Foundation framework and includes standard web technologies such as jQuery and Google Analytics. While the site is functional and professionally presented, it lacks modern security headers, updated libraries, and explicit privacy or cookie policies. No contact information or incident response channels are provided, which limits user trust and compliance. Overall, the site is safe, educational, and trustworthy but would benefit from improved security practices and privacy compliance.

L

LIVELINE

livelinefund.uk

60

The Liveline Fund is a newly established UK-based non-profit organization focused on supporting the independent grassroots music scene. Its primary mission is to strengthen the future viability of the UK's grassroots music ecosystem through curated investments in infrastructure, events, and touring. The fund enables grassroots music venues, artists, and independent promoters to apply for funding via an open application process. The website reflects a professional and consistent brand presence with active social media engagement on Instagram, TikTok, Facebook, and LinkedIn. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google Analytics and Facebook Pixel for tracking, alongside reCAPTCHA for form security. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Performance is moderate, typical for a Squarespace-hosted site. From a security perspective, the site enforces HTTPS with HSTS enabled, uses cookie consent banners compliant with GDPR, and employs reCAPTCHA to mitigate spam. However, it lacks some advanced security headers and does not publish a formal security or incident response policy. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with a strong focus on compliance and user privacy. The domain registration details are consistent with the organization's founding date and purpose, enhancing trustworthiness. Strategic recommendations include enhancing security headers, publishing security policies, and expanding contact information to improve transparency and trust.

L

Landesinnung Saarland der Elektro- und Informationstechnischen Handwerke

elektrohandwerk-saar.de

38

The Landesinnung Saarland der Elektro- und Informationstechnischen Handwerke is a well-established regional trade association in Germany, serving the electrical and information technology trades with a history spanning 50 years. The organization provides member services including training, certification, industry news, and event organization, positioning itself as a trusted entity within its sector. The website reflects this professionalism with good content quality, clear navigation, and consistent branding aimed at members and stakeholders in the Saarland region. Technically, the website is built on TYPO3 CMS and employs modern web technologies including Usercentrics for consent management and Google Analytics for tracking, all served over HTTPS with good mobile optimization. While performance is moderate, the site is accessible and SEO-friendly. Security practices include HTTPS enforcement and consent mechanisms, though explicit security headers and incident response information are absent. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear policies and consent management. The WHOIS data aligns with the business claims, showing domain age and registration consistency that support legitimacy. Overall, the site is low risk with good trust indicators. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and implementing a vulnerability disclosure mechanism to further strengthen security and trust.

L

Landesinnungsverband der Elektro- und Informationstechnischen Handwerke Mecklenburg-Vorpommern

eh-mv.de

40

The Landesinnungsverband der Elektro- und Informationstechnischen Handwerke Mecklenburg-Vorpommern operates as a regional trade association focused on the electrical and information technology sectors within Mecklenburg-Vorpommern, Germany. The website serves as a comprehensive portal offering member services, training, certification programs, industry news, and job postings, positioning itself as a key resource for professionals in the electrical trade industry. The business model centers on supporting and representing member companies, providing educational resources, and facilitating industry collaboration. Technically, the website is built on the TYPO3 CMS platform and employs modern web technologies including JavaScript, AJAX for search functionality, and integrates third-party services such as Usercentrics for cookie consent management, Google Analytics, Google Tag Manager, and TikTok Pixel for analytics and marketing. The site is hosted on infrastructure associated with DomainControl, with good mobile optimization, accessibility, and SEO practices observed. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, demonstrating compliance with GDPR. However, explicit security headers and incident response policies are not evident, suggesting areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data aligns well with the website's business claims, supporting legitimacy. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for the trade association, with moderate to good scores across content quality, technical implementation, security posture, privacy compliance, and business credibility. Strategic enhancements in security headers and incident response transparency would further strengthen the security posture and trustworthiness.

F

Fachverband Elektro- und Informationstechnik Hessen/Rheinland-Pfalz

liv-fehr.de

39

The Fachverband Elektro- und Informationstechnik Hessen/Rheinland-Pfalz (FEHR) operates as a regional trade association providing comprehensive support, consulting, and training services to entrepreneurs and businesses in the electro-technology sector within Hessen and Rheinland-Pfalz, Germany. The website serves as an information hub offering access to legal advice, technical consultations, training seminars, and member benefits, targeting local industry professionals and companies. The association maintains a strong market position as a trusted regional entity with a consistent brand presence and active member engagement. Technically, the website is built on TYPO3 CMS and integrates modern web technologies including Usercentrics for consent management, Google Analytics, Google Tag Manager, and TikTok Pixel for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Hosting and DNS are managed via DomainControl (GoDaddy), indicating a professional infrastructure. From a security perspective, the site enforces HTTPS and uses a consent management platform to comply with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly implemented, and no public security or incident response policies are published. No vulnerabilities or sensitive data exposures were detected. The WHOIS data aligns with the website's legitimacy, showing consistent domain registration without privacy protection, appropriate for a trade association. Overall, the website demonstrates a good balance of content quality, technical implementation, security posture, privacy compliance, and business credibility, scoring an overall AI rating of 82. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would further enhance trust and resilience.

L

Landesinnungsverband für das Bayerische Elektrohandwerk

elektroverband-bayern.de

37

The Landesinnungsverband für das Bayerische Elektrohandwerk is a regional trade association representing the Bavarian electrical craft sector. It provides member services including training, certification (E-Marke), public relations, and a platform for news and events. The website targets professionals, trainees, and stakeholders in the electrical industry within Bavaria, positioning itself as an authoritative and trusted organization in this niche. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates a consent management platform (Usercentrics) alongside analytics tools such as Google Analytics and TikTok Pixel. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place; however, there is room for improvement in publishing explicit security policies and implementing additional HTTP security headers. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency. The site is free from blocking mechanisms or WAF challenges, enabling full content accessibility.

F

Fachverband Elektro- und Informationstechnik Baden-Württemberg

fv-eit-bw.de

43

The Fachverband Elektro- und Informationstechnik Baden-Württemberg is a regional industry association focused on the electrical and information technology sectors in Baden-Württemberg, Germany. It provides its members with industry news, training, networking opportunities, and advocacy services. The website reflects a professional and well-structured digital presence, targeting professionals and businesses within the regional energy and technology sectors. The association maintains a strong market position as a trusted regional body with a clear focus on quality and member services. Technically, the website is built on TYPO3 CMS and integrates modern technologies including Usercentrics for consent management, Google Analytics, and TikTok Pixel for analytics and marketing. The site is hosted on a domain controlled by DomainControl, likely GoDaddy, and shows good mobile optimization and SEO practices. Performance is moderate with no critical technical issues detected. From a security perspective, the website uses HTTPS with SSL and implements privacy best practices such as IP anonymization and cookie consent mechanisms. However, it lacks explicit security headers and does not provide visible security or incident response policies. No vulnerabilities or suspicious content were detected. Overall, the security posture is good but could be improved with additional headers and documented policies. The overall risk assessment is low with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining regular audits of third-party scripts to ensure ongoing compliance and security.

R

RTL

rtl.lu

69

RTL Lëtzebuerg operates as a leading media and broadcasting company in Luxembourg, offering a comprehensive range of services including news, television, radio, and digital content. The website is professionally designed with excellent content quality and clear navigation, targeting a general audience interested in regional and international news and entertainment. Technically, the site employs a modern technology stack with extensive use of JavaScript libraries, consent management tools, and analytics platforms, supporting both web and mobile app platforms. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is robust, featuring a comprehensive GDPR consent mechanism. The absence of WHOIS data due to malformed queries slightly reduces domain trustworthiness but does not detract from the overall legitimacy of the site. Strategic recommendations include publishing security and incident response policies, providing clear contact information, and adding terms of service to enhance legal clarity and user trust.

Ř

Římskokatolická farnost Klimkovice

farnostklimkovice.cz

56

The website www.farnostklimkovice.cz represents the Roman Catholic parish of Klimkovice, a small non-profit religious organization serving its local community. The site provides parish news, religious service schedules, historical information, and contact details. It targets local parishioners and visitors interested in the parish's activities and spiritual services. The business model is community and faith-based, with no commercial intent. Technically, the website is built on the Webnode CMS platform and uses Cloudfront CDN for content delivery. It incorporates Google Analytics with IP anonymization for visitor tracking. The site is mobile-optimized and has a moderate performance profile. However, it lacks advanced accessibility features and comprehensive SEO optimization. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and Strict-Transport-Security. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is weak due to the absence of privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the website is safe, professional, and trustworthy for its intended audience. The lack of WHOIS data suggests privacy protection, which is typical for small non-profits. Strategic improvements in privacy compliance and security headers would enhance the site's security posture and regulatory adherence.

F

Fair-ON-Pay Association

fair-on-pay.com

52

Fair-ON-Pay Association is a Swiss-based non-profit organization founded in 2022 that promotes equal pay in companies through certification and auditing services. It offers a recognized certification process with multiple levels, audited by SGS, to help companies demonstrate their commitment to equal pay and social responsibility. The association is a member of the Equal Pay International Coalition (EPIC), enhancing its credibility and international standing. The website is professionally designed using WordPress and the Divi theme, with good SEO and mobile optimization. It integrates Google Analytics and a GDPR-compliant cookie consent mechanism, reflecting a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Overall, the website and business present a trustworthy and professional image with clear contact information and partner relationships.

H

Hager Group

elcom.de

66

Hager Group operates a professional website focused on door communication and security solutions, targeting primarily B2B customers in the energy sector. The company has a long-standing market presence since 1976, supported by a domain registered since 1997. The website content is well-structured, professionally designed, and consistent with the company's branding and business model. The technical infrastructure leverages modern technologies including Sitecore CMS, Akamai CDN, and advanced search capabilities via Algolia, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and domain transfer protections in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy policy and terms of service on the analyzed page. Overall, the website reflects a credible and trustworthy enterprise with room for enhanced security and privacy transparency.

E

EVBox

evbox.com

11

EVBox is a well-established global provider of electric vehicle charging stations and software solutions, founded in 2007. The company targets businesses, resellers, distributors, installers, OEMs, and electric vehicle users, offering scalable and modular charging solutions alongside partner support and maintenance services. Their market position is strong within the energy and transportation sectors, supported by a global partner network and certifications. Technically, the website is built on WordPress with modern SEO and analytics tools, hosted by OVH sas, and optimized for performance and mobile devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers could be added. The domain registration is consistent and trustworthy, with no privacy protection but with domain status flags to prevent unauthorized changes. Overall, the website is professional, secure, and compliant with GDPR, providing a trustworthy digital presence for EVBox.

BIOK laboratorija is a Lithuanian cosmetics manufacturing company specializing in natural and innovative cosmetic and oral care products. They manage multiple brands and serve Nordic and European markets with over 250 products. The website is professionally designed, mobile-optimized, and includes comprehensive privacy and cookie policies compliant with GDPR. Technically, the site uses a mix of legacy and modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and tracking. Security posture is generally good with HTTPS and reCAPTCHA implemented, but lacks explicit security headers and uses an outdated jQuery version. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and professional but could improve security and domain registration visibility.

K

Kökstavlor.se

xn--kkstavlor-07a.se

48

Kökstavlor.se is a Swedish niche affiliate marketing website specializing in kitchen posters and wall art. The site aggregates product information and links to partner retailers such as Designtorget, KitchenTime, Confident Living, and Solhem Inredning, providing users with curated selections and price comparisons. The business model relies on affiliate commissions while maintaining editorial independence and transparency through affiliate disclosures. The website is built on WordPress using Elementor and Yoast SEO, indicating a mature digital infrastructure with good SEO practices and mobile optimization. Security posture is solid with HTTPS enforced and standard security headers, though improvements like DNSSEC and Content-Security-Policy headers are recommended. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. Overall, the site is professional, trustworthy, and well-positioned within its retail niche.

Á

Árvakur hf.

mogginn.is

59

Árvakur hf. operates the www.mbl.is website, a leading Icelandic news media platform offering a broad range of news content including domestic, international, business, sports, and cultural news. The site supports multiple content formats such as PDF newspapers, text articles, audio summaries, and daily podcasts, targeting the general Icelandic-speaking public and subscribers. The business model is subscription-based with additional free content, positioning it as a major player in Iceland's media landscape. Technically, the website employs a modern tech stack including JavaScript frameworks, Google Analytics, Microsoft Clarity, and the Piano paywall system for subscription management. The site is mobile-optimized and uses responsive design principles, with good SEO and accessibility features. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses secure forms and cookie consent mechanisms. However, explicit security headers like Content-Security-Policy are not evident, and no public security or incident response policies are published. The absence of WHOIS data limits domain registration transparency, though the site content and branding strongly support legitimacy. Overall, the website presents a professional, trustworthy, and user-friendly platform with extensive analytics and advertising integrations. Strategic improvements in security policy transparency and domain registration visibility would enhance trust and compliance.

L

L'Occitane en Provence

loccitane.com

72

L'Occitane en Provence operates a global e-commerce platform specializing in premium beauty and skincare products inspired by the Provence region. The website demonstrates a mature digital infrastructure leveraging Salesforce Commerce Cloud, React, and modern web technologies to deliver a responsive and accessible user experience. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a strong commitment to user data protection. Security posture is robust with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not prominently disclosed. Overall, the website presents a professional and trustworthy front for a large retail brand, with minor gaps in transparency around security and contact information.