Security Directory

N

new-hiemed

hiemed.com

55

Hierros del Mediterráneo (new-hiemed) is a medium-sized Spanish company specializing in steel sector services including distribution, transformation, panel sandwich supply, and industrial supplies. The company positions itself as a leader in the Mediterranean steel market, targeting business customers and professionals. The website is built on WordPress with Elementor and includes modern features such as structured data, cookie consent, and GDPR compliance. Security posture is generally good with HTTPS and reCAPTCHA in use, but lacks explicit security headers and a published security policy. WHOIS data is missing or unavailable, which slightly reduces trust but the website content and business presence appear professional and legitimate. Overall, the site demonstrates good digital maturity with room for improvement in security transparency and technical optimizations.

MAXX Creative s.r.o. is a well-established creative agency based in the Czech Republic, specializing in marketing strategy, creative design, and campaign execution. Founded in 1998, the company has built a solid reputation with approximately 150 clients and multiple industry awards, positioning itself as a trusted partner for businesses seeking comprehensive creative services. The website reflects a professional and consistent brand image, targeting business clients in need of marketing and advertising solutions. Technically, the site employs modern frontend technologies including jQuery, Foundation, and Google Tag Manager, hosted on Tele3 infrastructure. The website is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks advanced security headers and published privacy or terms of service policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the site is trustworthy and professionally maintained, with a moderate to good security posture and compliance level.

R

REGARTIS

prague-chemicals-management-cruise.com

56

The website prague-chemicals-management-cruise.com serves as a professional landing page for the Prague Chemicals Management Cruise 2026, an event organized by REGARTIS and the Association of Chemical Industry of The Czech Republic. It targets chemical industry professionals and regulatory experts, focusing on global chemical regulations including REACH and sustainability strategies. The site provides detailed event information, pricing, and registration options, positioning itself as a niche conference organizer in the manufacturing sector. Technically, the site is built on the LeadPages platform, integrating modern analytics and marketing tools such as Google Analytics, Hotjar, and Google Ads. The site is mobile optimized with good SEO practices but lacks some accessibility features and security headers. Security posture is adequate with HTTPS enabled and domain transfer protections, but could be improved by adding security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced compliance and security transparency.

M

Messe München GmbH

analytica.de

60

analytica.de is the official website for the analytica trade fair, a world-leading event for laboratory technology, analytics, and biotechnology organized by Messe München GmbH. The site serves a large professional audience including market leaders and decision-makers in the industry, providing comprehensive information about upcoming events, exhibitor registration, and conference programs. The website demonstrates a high level of digital maturity with modern web technologies, strong privacy compliance via Usercentrics CMP, and integration of analytics and advertising tools. Security posture is robust with HTTPS, security headers, and no detected vulnerabilities. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

C

CHEMAGAZÍN s.r.o.

pigmentyapojiva.cz

43

The website pigmentyapojiva.cz represents a professional international conference focused on pigments and binders in the coatings industry. It serves as a platform for manufacturers, researchers, academia, and suppliers to collaborate and share knowledge. The event is organized by CHEMAGAZÍN s.r.o. in cooperation with academic and industry partners, positioning itself as a niche but reputable conference within the manufacturing sector in the Czech Republic. The site content is primarily in Czech with an English option, targeting industry professionals and researchers. Technically, the website employs a modern JavaScript stack including jQuery, Foundation framework, and various UI libraries such as SweetAlert2 and Slick Carousel. Google Analytics and Tag Manager are used for visitor tracking. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. No CMS or hosting provider details were detected. Performance is moderate with room for improvement. From a security perspective, the site uses HTTPS (implied by domain and scripts loaded from HTTPS sources), but no explicit security headers were detected in the provided data. A cookie consent banner is implemented, indicating some privacy compliance efforts, but no privacy policy or terms of service are published. Contact information is limited to a phone number, with no email or incident response contacts. No forms or data collection beyond analytics scripts were found. Overall, the website is legitimate and trustworthy with a solid business foundation but could improve its security posture and privacy compliance by publishing relevant policies, enhancing security headers, and providing clearer contact channels for security incidents.

M

Metrohm AG

metrohm.com

62

Metrohm AG operates a professional website targeting the German market, specializing in chemical analysis instrumentation including titration, ion chromatography, electrochemistry, and spectroscopy. The company is positioned as a global leader in manufacturing and distributing laboratory and process analytical systems. The website demonstrates a mature digital presence with modern technologies such as Vue.js, Adobe Experience Manager CMS, and integrated analytics tools like Adobe Analytics and New Relic. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism implemented via OneTrust. Security posture is strong with HTTPS enforced and standard security headers likely in place, although explicit security policies and incident response contacts are not publicly disclosed. The domain WHOIS data is unavailable, which slightly reduces trust but the overall website professionalism and external partner references support legitimacy. Strategic recommendations include publishing explicit security and incident response policies and adding a vulnerability disclosure program to enhance trust and compliance.

C

Construction Management

constructionmanagermagazine.com

64

Construction Management is a well-established UK-based construction industry magazine affiliated with the Chartered Institute of Building. It provides comprehensive news, technical articles, CPD modules, job listings, podcasts, and digital editions targeted at construction professionals and industry stakeholders. The website is professionally designed with excellent content quality and consistent branding, positioning it as a trusted media source in the construction sector. The business model relies on advertising, subscriptions, and content services, supported by a mature digital infrastructure.

C

Construction Management

constructionmanagement.co.uk

64

Construction Management is a professional UK-based construction industry magazine affiliated with the Chartered Institute of Building (CIOB). It provides construction news, technical articles, CPD modules, job listings, and digital editions targeting construction professionals and stakeholders. The website is published by Atom Publishing and holds a strong market position as the official CIOB magazine. The content is rich, relevant, and professionally presented, catering to a medium-sized audience within the construction and real estate sectors. The business model is primarily media and advertising-based with subscription options.

S

Steel Construction Institute

steel-sci.com

54

The Steel Construction Institute (SCI) is a well-established UK-based organization providing independent technical expertise, certification, training, and advisory services to the steel construction sector globally. With a domain age dating back to 1995 and a clear market position as a leading authority in steel construction, SCI offers a range of services including product certification, technical advice, membership benefits, and research projects. The website reflects a professional and consistent brand image targeting industry professionals and members. Technically, the website is built on WordPress and utilizes common JavaScript libraries such as jQuery, Owl Carousel, and Featherlight Lightbox. It integrates Google Analytics and Google Tag Manager for user tracking and marketing purposes. The site is mobile-optimized with good navigation and content relevance, though some accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protection. However, it lacks DNSSEC and important security headers, and there is no visible security or incident response policy. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a low-risk profile with strong business credibility and professional content. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance the security posture and user trust.

O

Outokumpu

outokumpu.com

79

Outokumpu is a globally recognized leader in sustainable stainless steel manufacturing, offering a broad range of stainless steel products tailored for various industrial applications. The company positions itself strongly in the manufacturing sector with a clear focus on sustainability and innovation. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation aimed at industrial clients, investors, and sustainability-conscious businesses. Technically, the site employs modern marketing and analytics technologies such as Google Tag Manager, Cookiebot, Eloqua, and Hotjar, indicating a sophisticated digital marketing infrastructure. Security-wise, the website enforces HTTPS, employs cookie consent mechanisms, and uses CSRF protection tokens, reflecting good security hygiene. However, explicit security policies and incident response information are not publicly available, which could be improved. The WHOIS data is not publicly accessible, likely due to privacy protection, which is common for large enterprises but reduces transparency. Overall, the website is professional, secure, and compliant with privacy regulations, with minor areas for enhancement in security transparency and incident response readiness.

T

Telewizja Puls Sp. z o.o.

pulskids.pl

56

Pulskids.pl is a professionally developed children’s entertainment website operated by Telewizja Puls Sp. z o.o., a Polish media company. The site offers family-friendly animated content and related merchandise, targeting children and their families. It maintains a consistent brand presence with active social media channels and clear contact information. The domain is registered since 2019, aligning well with the business age and operations. Technically, the site is built on WordPress with modern SEO and analytics tools, including Google Analytics and Facebook Pixel, integrated with a GDPR-compliant cookie consent mechanism. Security is well managed with HTTPS, DNSSEC, and Cloudflare CDN, although some advanced HTTP security headers could be added. No critical vulnerabilities or suspicious content were found, and the site is safe for general audiences.

D

Developer Express Inc.

devexpress.com

78

Developer Express Inc. operates a professional website offering a comprehensive suite of UI controls, frameworks, and developer tools targeting software developers across multiple platforms including desktop, web, and mobile. The company positions itself as a leading provider of .NET UI controls and related development productivity tools, with a strong market presence and a product portfolio that spans multiple technologies such as WinForms, ASP.NET, MVC, Blazor, and JavaScript frameworks. The website reflects a mature digital presence with well-structured content and modern design elements. Technically, the website employs a modern technology stack including ASP.NET WebForms, JavaScript libraries, Google Tag Manager, and Matomo analytics, alongside a cookie consent mechanism powered by OneTrust. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured data. Performance is moderate, with room for improvement in security headers and explicit privacy disclosures. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the professional nature of the website and its content suggests legitimacy. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, publishing clear privacy and security policies, and improving transparency around data protection and incident response to further strengthen trust and compliance.

V

VNET a.s.

vnet.sk

71

VNET a.s. is a well-established Slovak telecommunications company with over 22 years of experience providing a wide range of services including internet connectivity, digital TV, VoIP phone services, cloud hosting, and data center solutions. The company targets both residential and business customers, leveraging its own optical network and multiple data centers to deliver reliable and modern telecommunication services. Their market position is solid within Slovakia, supported by a strong customer base and strategic partnerships. Technically, the website employs modern technologies such as Bootstrap, Google Tag Manager, and Petite Vue, ensuring a responsive and user-friendly experience. Security measures include HTTPS, CAPTCHA integration, and a coordinated vulnerability disclosure policy, although explicit security headers and incident response contacts could be improved. Overall, the website reflects a professional and trustworthy business with good compliance to privacy and cookie regulations.

Y

YCO digital Kft

yco.hu

55

YCO digital Kft is a Hungarian digital agency established in 2014, specializing in providing comprehensive digital presence services including strategy, marketing, creative design, and development. The company positions itself as a trusted partner for businesses seeking to enhance their digital footprint with a focus on client pride and quality. The website reflects a mature digital infrastructure built on WordPress with Elementor and integrates SEO and analytics tools such as Yoast SEO and Google Tag Manager. Security posture is strong with HTTPS and standard security headers, though explicit privacy and security policies are absent. Overall, the site is professional, well-branded, and user-friendly, targeting business clients primarily in Hungary.

T

TVN MEDIA SP. Z O.O.

tvnmedia.pl

62

TVN Media Sp. z o.o. operates as the advertising sales office for TVN and associated media platforms in Poland, offering a comprehensive portfolio of advertising services including TV spots, sponsoring, addressable TV, and online advertising. The company is positioned as a leading media advertising entity within the Polish market, affiliated with Warner Bros. Discovery. The website reflects a professional and business-focused approach targeting advertisers and marketing agencies. Technically, the site employs modern analytics and marketing technologies such as Google Tag Manager and Gemius, and integrates GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data limits domain trust verification but does not detract from the professional presentation and legitimacy of the business. Overall, the site demonstrates good digital maturity and compliance with privacy regulations.

W

WarnerMedia Direct, LLC

cartoonnetwork.pl

69

HBO Max, operated by WarnerMedia Direct, LLC, is a leading subscription-based streaming service offering a wide range of entertainment content including movies, TV shows, originals, and live sports. The website analyzed is a 404 error page in German language, indicating the requested content is unavailable. Despite this, the site demonstrates a mature technical infrastructure using modern web technologies such as React and Next.js, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms in place. Privacy policies are comprehensive and GDPR compliant. However, direct contact and security policy information are not present on this error page, limiting some aspects of compliance verification. WHOIS data for the domain is not publicly available in the provided raw output, but the branding and domain usage strongly indicate legitimacy as part of WarnerMedia's portfolio.

W

Warner Bros. Entertainment Inc.

warnerbros.pl

63

WarnerBros.pl is the official Polish website for Warner Bros. Entertainment Inc., providing information and promotion for movies and video games including popular franchises like Harry Potter and DC Comics. The site targets a general audience interested in entertainment media and offers rich content such as featured films, upcoming premieres, and press releases. The website is built on a modern React framework with Material-UI components, ensuring a responsive and accessible user experience. Privacy and cookie compliance are well implemented with OneTrust and clear links to comprehensive privacy and terms policies. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response contacts could be improved. Overall, the site demonstrates high professionalism and trustworthiness, consistent branding, and effective digital marketing integration.

T

The smarter E Europe

thesmartere.de

53

The smarter E Europe is a leading organizer of exhibitions and conferences focused on integrated energy solutions, including green hydrogen, solar energy, storage, and e-mobility. The website serves a broad audience of industry professionals, exhibitors, visitors, and startups, providing comprehensive event information, exhibitor services, and digital content. The platform is well-positioned in the European energy event market with a strong brand presence and consistent messaging. Technically, the website employs modern JavaScript libraries, professional iconography, and integrates a GDPR-compliant consent management platform (Usercentrics). It uses Google Tag Manager and Jentis for analytics and tracking, alongside Friendly Captcha for bot protection. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses consent management and bot mitigation tools, indicating a mature security posture. However, it lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable platform for its target audience. Strategic improvements in security headers and transparency around security policies could further enhance its posture.

E

EM-Power Europe – Home

em-power.eu

52

EM-Power Europe is a professional international exhibition and conference platform focused on energy management and integrated energy solutions. The website serves as a comprehensive resource for visitors, exhibitors, and conference attendees, providing detailed information about event dates, venue, programs, and participation opportunities. The business model centers on event organization within the energy sector, leveraging partnerships with related exhibitions and conferences to enhance market reach. Technically, the website employs modern web technologies including FontAwesome Pro, jQuery DateTimePicker, Usercentrics for consent management, Google Tag Manager, and Friendly Captcha for bot protection. The site is well-structured, mobile-optimized, and uses HTTPS to secure communications. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and consent management integration. However, there is room for improvement in implementing security headers and publishing explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained, with no signs of malicious activity or content safety concerns. The lack of WHOIS data is due to standard EURid privacy protection for .eu domains and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and improving contact transparency to further strengthen trust and compliance.

E

ees Europe

ees-europe.com

56

ees Europe operates as Europe's largest and most international exhibition and conference platform focused on batteries and energy storage systems. The website presents a professional and comprehensive digital presence, targeting industry professionals, exhibitors, and visitors interested in energy storage technologies. The business model centers on event organization, providing exhibition spaces, conference programs, and industry networking opportunities. The site is well-branded and consistent, with a clear focus on the energy sector and related innovations such as green hydrogen and battery production. Technically, the website employs modern JavaScript libraries, consent management tools, and tracking services, indicating a mature digital infrastructure. The site is mobile-optimized and offers good SEO and accessibility features, though some improvements in accessibility could be made. Security posture is solid with HTTPS enforced and use of captcha and consent management, but lacks explicit security policies and incident response information. The absence of WHOIS registration data raises concerns about domain legitimacy and registration status, which impacts trustworthiness. However, the website content and structure strongly suggest a legitimate and professional business operation. No direct contact emails or phone numbers were found on the homepage, which could be improved to enhance business credibility. Overall, the site is well-designed and functional, with good privacy compliance and moderate user tracking. Strategic recommendations include publishing detailed security policies, improving contact information availability, and verifying domain registration details to enhance trust and compliance.

I

Intersolar Europe

intersolar.de

57

Intersolar Europe operates as the world’s leading exhibition platform for the solar industry, focusing on photovoltaics, energy storage, and related renewable energy technologies. The website provides comprehensive information for visitors, exhibitors, and conference attendees, positioning itself as a key industry event organizer in Germany. The platform supports event applications, exhibitor services, and industry news dissemination, targeting solar industry professionals globally. Technically, the website employs modern JavaScript libraries, FontAwesome Pro icons, and integrates Google Tag Manager and Usercentrics for analytics and privacy compliance. The site is mobile-optimized with good SEO practices and uses HTTPS with strong SSL configuration. Security measures include bot protection via Friendly Captcha and cookie consent management, though explicit security policy and incident response pages are absent. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through a comprehensive privacy policy and cookie consent mechanism. The WHOIS data is minimal but consistent with a legitimate business domain. The website maintains a professional design, clear navigation, and trustworthy content, supported by active social media channels and partner event links. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Recommendations include publishing dedicated security and incident response policies and enhancing security headers to further improve the security posture.

G

GS1 Germany GmbH

gs1-germany.de

66

GS1 Germany GmbH is a medium-sized company providing global product identification standards such as EAN/GTIN barcodes and GS1 Complete services to businesses primarily in retail, manufacturing, and transportation sectors. The company holds a strong market position as the official GS1 standards provider in Germany, serving over 95,000 customers. Their website is built on TYPO3 CMS, featuring modern technologies including jQuery and Google Tag Manager, and implements cookie consent management via CookieFirst. The site is well-structured, mobile-optimized, and provides comprehensive contact information including emails, phone numbers, and a customer login portal. Security posture is good with HTTPS enforced and secure login forms, though additional security headers and published policies could enhance trust. No adult or questionable content is present, making the site suitable for general audiences.

H

HARDY SCHMITZ

hardy-schmitz.de

66

HARDY SCHMITZ operates a professional B2B online shop specializing in electrical wholesale products for industry, trade, and crafts in Germany. The company offers a comprehensive product range exceeding 500,000 items, emphasizing fast delivery with next-day shipping for orders placed before 19:00. Their services extend beyond product sales to include logistics, cable assembly, KNX programming, and lighting planning, positioning them as a versatile supplier in the energy and industrial retail sectors. The website is well-structured and designed to cater to a professional audience, reflecting a medium-sized enterprise with consistent branding and a strong market presence. Technically, the website employs modern JavaScript libraries such as Tiny Slider and integrates Google Tag Manager and Usercentrics for analytics and consent management, indicating a mature digital infrastructure. Hosting is managed via cows.de, with Pimcore CMS inferred from HTML structure. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Performance is moderate, with asynchronous script loading enhancing user experience. From a security perspective, the site enforces HTTPS and uses a consent management platform, but lacks explicit security headers and visible privacy or security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is minimal but consistent with the hosting provider, with no privacy protection or suspicious patterns identified. Overall, the security posture is solid but could be improved by publishing clear privacy policies and enhancing header configurations. The overall risk assessment is low, with no signs of malicious content or blocking mechanisms. Strategic recommendations include adding comprehensive privacy and terms of service documents, improving security headers, and making contact and incident response information more accessible to enhance trust and compliance.

M

MEVA-HU Kft

mevakomi.hu

44

MEVA-HU Kft is a Hungarian company specializing in industrial products including waste storage, oil management, warehousing, workshop equipment, and outdoor equipment. The company operates a B2B e-commerce platform supported by regional partner sites in Slovakia, Poland, Germany, and the Czech Republic. Their market position is that of an established regional supplier with a comprehensive product catalog and ISO 9001:2015 certification, indicating quality management standards. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience for industrial clients. Technically, the site uses a BohemiaSoft e-commerce platform with common JavaScript libraries and Google Analytics for tracking. Security posture is generally good with HTTPS, CSRF protections, and cookie consent mechanisms, though some outdated libraries and missing security headers present moderate risks. Privacy compliance is strong with clear GDPR-aligned policies and consent banners. Overall, the site is trustworthy and credible, with clear contact information and certifications. Recommendations include updating JavaScript libraries, enhancing security headers, and publishing a vulnerability disclosure policy to further strengthen security and trust.

Unilabs Slovensko, s. r. o. is a well-established healthcare company specializing in laboratory diagnostics services in Slovakia since 1997. It operates as part of the larger Unilabs Group, a leading European diagnostic network. The website serves both the general public and medical professionals, offering comprehensive diagnostic testing services, including specialized and veterinary diagnostics, with online test ordering options for self-paying customers. The company maintains a strong market position as a large, reputable healthcare provider with a broad service portfolio and a professional digital presence. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, Smartlook, and reCAPTCHA, built on a custom CMS likely using the Nette Framework. The site is mobile-optimized, well-structured, and provides good SEO and accessibility features. Security posture is solid with HTTPS enforced, secure forms, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is robust with clear GDPR-aligned policies and cookie management. Overall, the website reflects a high level of professionalism, trustworthiness, and business credibility.

F

FETMED

fetmed.cz

47

FETMED is a specialized healthcare provider in the Czech Republic focusing on fetal medicine, genetics, and gynecology. The company operates two physical centers in Olomouc and Ostrava, offering comprehensive prenatal diagnostics, genetic consultations, psychological counseling, and pediatric cardiology. Their market position is that of a trusted regional specialist with experienced medical professionals and advanced diagnostic technologies. The website is professionally designed, mobile-optimized, and provides clear service information and contact channels. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Google reCAPTCHA, ensuring a functional and user-friendly experience. Performance is moderate with good mobile responsiveness and basic accessibility features. However, some security best practices such as security headers are missing, and no privacy policy or terms of service pages are present, which impacts compliance and trust. Security posture is generally good with HTTPS enforced and use of CAPTCHA for forms, but the absence of security headers and WHOIS transparency reduces the overall security confidence. No vulnerabilities or exposed sensitive data were detected. Cookie consent is implemented properly, supporting GDPR compliance to some extent. Overall, the website is a credible and professional healthcare service platform with room for improvement in privacy disclosures and security hardening. The lack of WHOIS data is a concern but may be due to local registry policies. Strategic recommendations include publishing privacy and terms policies, adding security headers, and maintaining updated libraries to enhance security and compliance.

P

Python Łódź

pythonlodz.org

60

Python Łódź is a community-driven organization focused on Python programming enthusiasts in Łódź, Poland. The website serves as a hub for event announcements, community engagement, and sponsor information. It targets local developers and technology enthusiasts interested in Python. The business model is centered around community meetups and knowledge sharing rather than commercial activities. The website is built using the Hugo static site generator and hosted by OVH sas, indicating a modern and cost-effective technical infrastructure. The site includes common analytics and tracking tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced DNS security features like DNSSEC and security headers. Privacy compliance is basic, with a cookie policy present but no explicit privacy policy or terms of service found. Overall, the site is professional and trustworthy for its community purpose but could improve in security and privacy transparency.

J

JetBrains

kotlinlang.org

72

Kotlinlang.org is the official website for the Kotlin programming language, developed and maintained by JetBrains. The site serves as a comprehensive resource for developers interested in Kotlin, offering documentation, code examples, API references, and community engagement. It positions Kotlin as a concise, multiplatform language suitable for server-side, mobile, web, and desktop applications, reflecting JetBrains' strong market presence in developer tools and programming languages. The website is professionally designed with excellent content quality and clear navigation, targeting developers and enterprises leveraging JVM and multiplatform technologies. Technically, the site employs modern web frameworks such as Next.js and React, hosted on AWS infrastructure. It integrates analytics and marketing tools like Google Tag Manager and Optimizely, alongside a cookie consent mechanism compliant with GDPR. The site demonstrates good performance, mobile optimization, and accessibility standards, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS with strong domain registration protections, including clientDeleteProhibited and clientTransferProhibited statuses. While DNSSEC is not enabled, the overall SSL configuration and security headers indicate a solid security posture. However, explicit security policies and incident response contacts are not publicly available, suggesting room for improvement in transparency and vulnerability management. Overall, kotlinlang.org is a trustworthy, professional, and well-maintained platform that effectively supports the Kotlin developer community. Strategic recommendations include enabling DNSSEC, publishing a dedicated security policy, and providing clear incident response contacts to enhance security transparency and compliance.

E

Examples.com

examples.com

59

Examples.com is an educational website offering a wide range of free interactive resources, including guides, lessons, practice tests for AP exams, and various online calculators and converters. The site targets teachers and students seeking comprehensive educational materials across subjects such as English, Maths, Science, and more. The business model focuses on providing free educational content to support learning and exam preparation, positioning itself as a valuable resource in the education sector. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Owl Carousel, MathJax, and Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices, with clear navigation and structured content. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. The absence of WHOIS data for the domain raises some concerns about registration transparency, although the website content and structure appear professional and trustworthy. Overall, Examples.com presents a solid educational platform with good content quality and user experience. Strategic improvements in security headers, privacy compliance, and domain registration transparency would enhance its trustworthiness and compliance posture.

T

twik

twik.io

51

Twik is a technology SaaS company specializing in AI-driven web journey management and analytics optimization for e-commerce businesses and digital marketers. Their platform offers autonomous AI optimization, private and cookieless analytics, marketing attribution, and personalized product catalogs to increase conversions and ROI. The website is professionally designed with strong branding, client testimonials, and clear calls to action such as free trials and demos. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, and Quora Pixel. Security posture is good with HTTPS enforced and no exposed sensitive data, though some security headers and explicit policies are missing. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, likely due to privacy protection, which is common for SaaS companies. Overall, the site is trustworthy, professional, and well-optimized for its target audience.

K

Kardioakademie IKEM

kardioakademie.cz

64

Kardioakademie IKEM is a specialized educational platform focused on postgraduate training in cardiology, offering modular courses targeted at medical professionals and cardiology specialists primarily in the Czech Republic. The website presents a professional and consistent brand image with good content quality and relevant educational information. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern plugins such as Yoast SEO and Cookiebot for SEO and privacy compliance respectively. The infrastructure is hosted via a Czech registrar and hosting provider, ensuring regional consistency and domain legitimacy. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, although there is room for improvement in security headers and explicit privacy policy documentation. Overall, the site is safe, trustworthy, and well-positioned within its niche educational market.

E

ERN GENTURIS

genturis.eu

56

ERN GENTURIS operates as a European Reference Network dedicated to patients with rare genetic tumour risk syndromes, aiming to improve diagnosis, treatment, and healthcare quality across Europe. The organization is positioned as a key healthcare network funded by the European Commission, collaborating with healthcare providers, researchers, and patient advocacy groups. Their services include expert healthcare access, patient referral guidance, educational initiatives, and research facilitation. The website reflects a professional and consistent brand aligned with European healthcare standards. Technically, the website employs a traditional JavaScript and jQuery-based stack with additional libraries such as Magnific Popup and Google Tag Manager for analytics. The site is mobile-optimized with moderate performance and basic accessibility features. While HTTPS is enforced, the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. From a security perspective, the site demonstrates good practices with no exposed sensitive data or vulnerable libraries detected. However, the lack of security headers and incident response information suggests moderate maturity in security posture. The domain WHOIS data is protected by EURid privacy policies, which is typical for .eu domains and justified given the healthcare context. Overall, the website presents a trustworthy and professional front for ERN GENTURIS, with strong business credibility and good content quality. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance the security posture and regulatory alignment.

Teva Pharmaceutical Company is a leading global biopharmaceutical enterprise specializing in innovative medicines, generics, biosimilars, and consumer healthcare products. The website reflects a mature digital presence with comprehensive content targeting patients, caregivers, healthcare professionals, investors, and job seekers. The company emphasizes scientific innovation and quality medication delivery worldwide. Technically, the site employs modern JavaScript libraries, Microsoft Azure-based telemetry, and robust cookie consent mechanisms, indicating a well-maintained infrastructure. Security posture is strong with HTTPS enforcement and privacy compliance, though explicit security headers and incident response contacts are absent. The lack of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting Teva's market position as a healthcare leader.

S

Sandoz

sandoz.com

71

Sandoz is a global leader in generic and biosimilar medicines, dedicated to pioneering access to medicines for patients worldwide. The company operates an enterprise-scale digital presence with a modern tech stack including Next.js and React, hosted on Amazee.io, and integrates Google Tag Manager for analytics and cookielaw.org for cookie consent management. The website demonstrates excellent content quality, professional design, and clear navigation targeting patients, healthcare professionals, investors, and partners. Security posture is strong with HTTPS enforcement and cookie consent, though some security headers could be more explicitly implemented. WHOIS data is unavailable or privacy protected, which is common for large enterprises, but the website's legitimacy is supported by consistent branding and corporate governance disclosures. Overall, the site is secure, compliant with privacy regulations, and professionally maintained.

J

JetBrains

jetbrains.com

32

JetBrains is a leading software vendor specializing in intelligent development tools such as IntelliJ IDEA and the Kotlin programming language. The company targets software developers and teams, offering a broad portfolio of IDEs, team collaboration tools, and AI-powered developer solutions. Their market position is strong, supported by a professional and content-rich website that reflects their technology focus and innovation leadership. The technical infrastructure includes modern JavaScript frameworks, Google Tag Manager, and Optimizely for analytics and experimentation, alongside a robust cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and error reporting mechanisms, though explicit security headers and vulnerability disclosure policies are absent. Overall, the website demonstrates high professionalism, excellent user experience, and strong privacy compliance, though WHOIS data is unavailable, which slightly impacts domain trust assessment.

J

Jasněna Vláhová Design (JVD)

lacerta-watch.com

51

Jasněna Vláhová Design (JVD) operates an e-commerce retail website specializing in watches and jewelry, primarily targeting Czech-speaking consumers. The brand Lacerta, founded in 1993, is featured prominently, indicating a niche market focus on design and fashion accessories. The website demonstrates a moderate level of digital maturity with modern JavaScript frameworks and integration of popular analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. Hosting and domain registration are consistent with the Czech Republic location, supporting business legitimacy. From a security perspective, the website enforces HTTPS and employs Cloudflare Turnstile captcha for bot mitigation, but lacks visible security headers and a published security policy or incident response contacts. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service found on the analyzed page. The absence of direct contact information on this page limits immediate customer support visibility. Overall, the website is professionally designed with good user experience and navigation clarity, suitable for its retail business model. The security posture is adequate but could be improved by implementing additional security headers and publishing comprehensive privacy and security policies. The domain's long age and consistent registration details contribute positively to trustworthiness. Strategic recommendations include enhancing privacy and security disclosures, improving accessibility features, and increasing transparency of contact information to strengthen customer trust and compliance posture.

S

Sbírka Bílá pastelka

bilapastelka.cz

57

The website bilapastelka.cz represents a well-established charitable campaign focused on supporting people with visual impairments in the Czech Republic. It operates as a non-profit initiative, encouraging donations and volunteer participation to fund training programs, guide dog services, and employment opportunities for the visually impaired. The site is professionally designed, with clear navigation and integration of donation widgets, social media links, and volunteer statistics, reflecting a mature digital presence. Technically, the website is built on the Webnode CMS platform, leveraging modern web technologies including HTTPS, CDN delivery via Amazon Cloudfront, and analytics tools such as Google Analytics and Google Tag Manager. The site demonstrates good mobile optimization and basic accessibility features, although there is room for improvement in security headers and explicit privacy documentation. From a security perspective, the site enforces HTTPS and provides a cookie consent mechanism with granular user options, aligning with GDPR requirements. However, the absence of explicit privacy policies, terms of service, and security.txt files indicates gaps in compliance and vulnerability disclosure practices. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a trustworthy and professional front for its charitable mission, but the lack of WHOIS data and formal privacy documentation slightly reduces its trust score. Strategic improvements in security headers, privacy policy publication, and domain registration transparency would enhance its security posture and compliance standing.

R

Rolph

rolph.de

55

Rolph.de is a regional public transport information portal dedicated to mobility in Rheinland-Pfalz, Germany. It provides news, updates, and resources related to local public transportation, including bus networks and the Deutschlandticket. The website targets residents and travelers in the region seeking reliable and up-to-date transit information. The platform appears to be affiliated with regional transport authorities or government entities, supported by references to official ministries and verified Facebook domain ownership. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Slick Carousel for UI components. It integrates common marketing and analytics tools including Google Tag Manager, Google Analytics, Facebook Pixel, and advertising networks like DoubleClick and The Trade Desk. The site implements a GDPR-compliant cookie consent mechanism and is mobile-optimized with good accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent opt-in mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration data is consistent and appropriate for a public service website, enhancing trustworthiness. Overall, Rolph.de presents a professional, secure, and privacy-conscious platform serving the transportation sector in Rheinland-Pfalz. Strategic improvements could include adding explicit security headers, publishing terms of service and security policies, and providing direct contact information to enhance transparency and user trust.

R

Regentalbahn GmbH

zugsammen.de

51

Die Länderbahn GmbH, betrieben unter Regentalbahn GmbH, ist ein führendes privates Eisenbahnverkehrsunternehmen im regionalen Personennahverkehr in Deutschland und Tschechien. Die Website präsentiert umfassende Karriere- und Ausbildungsangebote, unterstützt durch moderne Technologien wie Talention für Recruiting und Matomo sowie Google Tag Manager für Analytics. Die technische Infrastruktur ist modern, mobiloptimiert und nutzt Cloudflare als Hosting- und DNS-Anbieter. Die Sicherheitslage ist solide mit HTTPS und Cookie-Consent-Mechanismen, jedoch fehlen explizite Sicherheitsrichtlinien und Incident-Response-Kontakte. Die Website ist vertrauenswürdig, professionell gestaltet und bietet klare Kontaktinformationen, was die Glaubwürdigkeit stärkt.

H

Hunkemöller

hunkemoller.pl

76

Hunkemöller is a well-established European retailer specializing in lingerie, swimwear, and nightwear, targeting a mature audience interested in fashion and comfort. The website is professionally designed and leverages a robust e-commerce platform (Salesforce Commerce Cloud) with integrations for marketing, analytics, and customer engagement. The technical infrastructure reflects a modern digital maturity with service workers, multiple tracking and marketing tools, and cookie consent mechanisms in place. Security posture is generally good with HTTPS enforced and service workers registered, though there is room for improvement in security headers and explicit security policies. Privacy compliance is basic, with cookie consent present but no clear privacy policy or terms of service pages detected in the analyzed content. Overall, the website presents a trustworthy and professional front for a large retail business, though enhancing transparency and security documentation would strengthen user trust and compliance.

H

Hunkemöller

hunkemoller.no

74

Hunkemöller is a leading European retailer specializing in lingerie, swimwear, and nightwear, targeting a mature general audience primarily in Norway and other European countries. The website presents a professional e-commerce platform with consistent branding and a clear focus on fashion retail. The company leverages multiple marketing and analytics technologies such as Google Tag Manager, Yotpo, and Bloomreach to enhance customer engagement and optimize sales. The technical infrastructure is built on Salesforce Commerce Cloud, ensuring a scalable and robust platform. Security measures include HTTPS enforcement, modern security headers, and cookie consent mechanisms compliant with GDPR. However, the absence of publicly available WHOIS data due to privacy protection limits domain registration transparency. Overall, the website demonstrates a mature digital presence with good security posture and privacy compliance, suitable for a large retail business.

H

Hunkemöller

hunkemoller.se

72

Hunkemöller is a well-established European lingerie and swimwear retailer operating a professional e-commerce platform targeting the Swedish market. The website offers a comprehensive product range including bras, panties, swimwear, and nightwear, catering to a general adult audience. The technical infrastructure leverages Salesforce Commerce Cloud (Demandware) and integrates multiple marketing and analytics tools such as Google Tag Manager, Bloomreach Exponea, Yotpo, and Visual Website Optimizer, indicating a mature digital marketing strategy. Security posture is solid with HTTPS enforced and service workers implemented, though explicit security headers are not clearly visible in the HTML content. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or contact information was found in the provided content. WHOIS data for the exact domain is missing, suggesting it is a subdomain or delegated domain, which slightly reduces trustworthiness. Overall, the site is professional, secure, and well-optimized for e-commerce, but could improve transparency around privacy and contact details.

N

NBtech

nbtech.fr

46

NBtech is a French industrial engineering and technical consulting company founded in 2014, specializing in automotive, aeronautics, railway, and industrial maintenance sectors. The company provides pragmatic and comprehensive solutions including mechanical and electronic testing, incident analysis, and industrial methods consulting. Their client portfolio includes major industry players such as Bosch, Thales, Airbus, Renault, Stellantis, and SNCF, indicating a strong market position. The website is professionally designed, well-structured, and includes detailed information about services, partners, and company values. Technically, the site is built on WordPress with Elementor, uses modern libraries and frameworks, and is hosted by PLANETHOSTER. It implements GDPR-compliant cookie consent and privacy policies, and integrates Google Analytics and Tag Manager for analytics. Security posture is strong with HTTPS enforced and security headers present, though no explicit security policy or incident response contacts are published. Overall, the website reflects a mature digital presence with good privacy compliance and trustworthy business information.

achatpublic.info is a French media and information platform specializing in public procurement news, updates, and documentation. It serves public sector professionals, buyers, and suppliers by providing continuous coverage of market developments, regulatory changes, and practical tools. The website demonstrates a solid market position within the niche of government procurement information. Technically, the site is built on Drupal CMS, uses modern web technologies including Bootstrap and Google Tag Manager, and implements a GDPR-compliant cookie consent mechanism via Didomi. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit security policies. WHOIS data is unavailable due to privacy or query failure, which slightly reduces transparency but is common for such websites. Overall, the site is professional, trustworthy, and well-optimized for its audience.

M

MarchesOnline

marchesonline.com

62

MarchesOnline is a French online platform specializing in providing access to public and private tender notices, including public procurement and adapted procedures (MAPA). It serves as a reference site for businesses and professionals seeking to monitor and respond to over 400,000 market notices across various sectors in France. The website targets companies involved in services, public works, studies, and supplies, positioning itself as a key player in the French government and business procurement ecosystem. Technically, the site is built using modern JavaScript frameworks (Nuxt.js) and integrates monitoring and analytics tools such as New Relic and Google Tag Manager, indicating a moderate level of digital maturity. However, the absence of visible privacy and cookie policies, as well as incomplete WHOIS data, suggests areas for improvement in compliance and transparency. Security posture is moderate with no evident blocking or WAF mechanisms, but lacks explicit security headers and policies. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and clearer business contact information to improve trust and regulatory adherence.

M

Mitegro GmbH & Co. KG

mitegro.de

61

Mitegro GmbH & Co. KG operates as a cooperative alliance of eight medium-sized, owner-managed electrical wholesale companies in Germany and Austria, collectively managing approximately 250 locations. The company primarily serves the industrial sector and electrical installation trades, providing marketing, sales promotion, digitalization, IT concepts, training, centralized billing, and contract negotiations with industry partners to strengthen market position and competitiveness. The website is professionally designed using TYPO3 CMS, featuring modern technologies such as Google Tag Manager and Google Analytics with a compliant cookie consent mechanism. The site is well-structured, mobile-optimized, and provides clear contact information and social media presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the digital maturity is moderate to good, supporting the business model effectively.

C

CONCEPTNET GmbH

conceptnet.de

53

CONCEPTNET GmbH is a well-established media agency based in Regensburg, Germany, founded in 1996. The company specializes in creative and technical services including web development, app development, marketing, SEO, corporate design, and digital business solutions. They leverage TYPO3 CMS and operate their own hosting infrastructure, ensuring data security and performance. Their market position is strong regionally with a Silver Membership in the TYPO3 Association and a comprehensive portfolio of services targeting businesses seeking professional media and digital solutions. The website reflects a professional and consistent brand image with clear navigation and detailed service descriptions. Technically, the site uses modern web technologies and analytics tools such as Matomo and Google Analytics, with a good security posture including a strict Content-Security-Policy. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the site is trustworthy, well-maintained, and suitable for its target audience.

P

Power2Drive Europe

powertodrive.de

50

Power2Drive Europe operates as a prominent international exhibition and conference platform specializing in charging infrastructure and e-mobility. The website provides comprehensive event information, exhibitor resources, and industry news, targeting professionals and stakeholders in the energy and transportation sectors. The business model centers on event organization and industry engagement, positioning itself as a key player in the European e-mobility market. Technically, the website employs modern JavaScript libraries, including FontAwesome Pro and Usercentrics for consent management, alongside Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices, although some technical details such as CMS and hosting specifics remain unclear. Performance is moderate with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and use of captcha mechanisms, but lacks explicit security policies and vulnerability disclosure channels. Privacy compliance is strong, evidenced by a comprehensive privacy policy and active cookie consent management. Business credibility is supported by consistent branding, social media presence, and detailed event content, though direct contact details and company registration information are limited. Overall, the website is professional, trustworthy, and well-suited for its audience, with recommendations to enhance security headers, publish incident response contacts, and improve accessibility for a more robust digital presence.

M

Münchener Verein Versicherungsgruppe

muenchener-assekuranz.de

63

Münchener Assekuranz is an insurance service platform associated with the Münchener Verein Versicherungsgruppe, a well-established insurance group in Germany. The website serves primarily German-speaking customers, offering insurance brokerage and customer login services. The business model focuses on providing insurance products and customer service through a secure online portal. The company maintains a consistent brand presence and targets a medium-sized market segment within the finance industry in Germany. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery and Usercentrics for consent management. Hosting and DNS services are provided via Cloudflare, enhancing security and performance. The site demonstrates good mobile optimization, accessibility, and basic SEO practices, although there is room for improvement in metadata and structured content. From a security perspective, the site enforces HTTPS and uses secure login forms. However, it lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partially addressed through a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found. Overall, the website presents a professional and trustworthy front for an insurance business but would benefit from enhanced privacy disclosures, security headers, and formalized security policies to improve compliance and user trust.