Security Directory

V

Visit Brussels

visit.brussels

71

Visit Brussels operates as the official tourism website for the city of Brussels, providing rich content about the city's history, architecture, gastronomy, culture, and visitor services. The website targets tourists and visitors seeking information about Brussels, positioning itself as a key resource for travel planning and cultural engagement. The business model focuses on destination marketing and tourism promotion, supported by a medium-sized organizational structure likely linked to government or public tourism bodies. Technically, the website leverages modern web technologies including Adobe Experience Manager CMS, Cookiebot for cookie consent management, Google Tag Manager, and LinkedIn Insight Tag for analytics and marketing. The site is hosted likely behind Cloudflare, ensuring good performance and security. The website demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs a robust cookie consent mechanism compliant with GDPR. However, explicit security headers and detailed security policies are not publicly visible, indicating room for improvement in security transparency and incident response readiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, Visit Brussels presents a trustworthy and professional online presence with strong compliance to privacy regulations and effective use of marketing and analytics tools. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and adding a terms of service page to improve legal clarity and user trust.

E

ELEVEN sportswear

eleven-sportswear.cz

57

ELEVEN sportswear is a Czech-based manufacturer and retailer specializing in sportswear products primarily for cyclists and runners. The company operates an official e-commerce platform offering a wide range of products including clothing for men, women, and children, as well as accessories such as caps, gloves, and socks. The website is professionally designed, supports multiple languages (Czech, English, German), and provides clear navigation and product categorization. The business model focuses on direct online sales complemented by wholesale opportunities. The company maintains an active social media presence and integrates standard marketing and analytics tools to support its digital operations. Technically, the website is built on the Shoptet e-commerce platform, leveraging common web technologies such as JavaScript, jQuery, Google Tag Manager, and Facebook SDK. The site is served over HTTPS with a good SSL configuration and includes cookie consent mechanisms compliant with GDPR. Performance and mobile optimization are adequate, though some accessibility features could be improved. The site uses tracking pixels for marketing and analytics but respects user consent choices. From a security perspective, the website enforces HTTPS and includes CSRF protection on login forms. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, which could be enhanced. No vulnerabilities or exposed sensitive data were found in the analysis. The absence of WHOIS data limits domain trust assessment, but the website content and business presence suggest legitimacy. Overall, ELEVEN sportswear presents a trustworthy and professional online presence with a solid business focus on sportswear retail. Strategic improvements in security headers and transparency around security policies could further enhance trust and compliance.

S

Sportovní oblečení, obuv a doplňky | Skibikecentrum

skibikecentrum.cz

57

Skibikecentrum.cz is an established e-commerce retailer specializing in sports clothing, footwear, and accessories, offering a wide range of over 17,000 products primarily targeting customers in the Czech Republic. The website demonstrates a professional design with good navigation and mobile optimization, leveraging modern web technologies such as Google Tag Manager, Facebook Pixel, and various JavaScript libraries to enhance user experience and marketing capabilities. However, the absence of WHOIS registration data and lack of visible privacy and terms of service pages present concerns regarding transparency and compliance. Security posture is moderate with HTTPS enabled but lacking comprehensive security headers and explicit incident response information. Overall, the site appears legitimate and functional but would benefit from improved compliance documentation and security best practices.

K

Kraje pro bezpečný internet

kpbi.cz

57

Kraje pro bezpečný internet (KPBI.cz) is a Czech Republic-based educational project focused on promoting safe online behavior. The project targets children, parents, and educators by providing e-learning courses, video content, quizzes, and training to combat cyberbullying and protect personal data. Supported by regional governments and notable partners such as Microsoft and the Czech Police, KPBI.cz holds a strong position in the national internet safety education sector. The website is well-branded and content-rich, reflecting a medium-sized, established initiative founded in 2013. Technically, the website employs modern web technologies including React.js and a Strapi CMS backend, hosted on Forpsi infrastructure. It integrates multimedia content via YouTube and uses Google Tag Manager for analytics and tracking. The site is mobile-optimized with good navigation and user experience, though accessibility features are basic. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or security policies. No critical vulnerabilities or suspicious patterns were detected. WHOIS data confirms domain legitimacy and consistency with the project's stated purpose. Overall, the security posture is adequate but could benefit from enhanced transparency and technical hardening. The overall risk assessment is low, with recommendations focusing on publishing privacy and terms of service documents, improving security headers, and enhancing accessibility. These steps would strengthen trust and compliance, supporting KPBI.cz's mission to provide safe internet education effectively.

C

Clearly

clearly.ro

61

Clearly.ro is a newly established Romanian e-commerce website specializing in health and wellness products. The site positions itself as a premium provider focused on clarity and quality, targeting health-conscious consumers. The business operates on the Shopify platform, leveraging a modern tech stack with integrations for marketing, analytics, and customer reviews. The website demonstrates good design quality, mobile optimization, and SEO practices, although it lacks explicit privacy and terms of service documentation. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms in place, but incident response and security policy details are absent. Overall, the site is trustworthy and professional but would benefit from enhanced compliance documentation and clearer contact information.

C

Clearly

clearly.pl

61

Clearly is an established e-commerce business founded in 2012, specializing in health supplements and wellness products primarily targeting the Polish and broader European markets. The website is built on the Shopify platform, leveraging a modern tech stack including Google Tag Manager, Facebook Pixel, and Klaviyo for marketing and analytics. The brand positions itself as a premium health-focused company emphasizing clarity and quality in its offerings. The website demonstrates good design quality, mobile optimization, and user experience, with consistent branding and trust signals such as customer reviews and secure HTTPS connections. However, explicit privacy and terms of service policies are not clearly found, which may impact compliance perception. Security posture is generally good with HTTPS and consent mechanisms, but could be improved by enabling DNSSEC and adding security headers. Overall, the domain registration data supports legitimacy and business continuity.

C

Clearly

clearly.no

70

Clearly is a Norway-based e-commerce company specializing in health and wellness products, founded in 2022. The company operates multiple regional partner domains across Europe, indicating a strategic market presence. The website is built on Shopify, leveraging a modern tech stack with integrated marketing and analytics tools such as Google Analytics, Facebook Pixel, Klaviyo, and Judge.me for customer reviews. The site demonstrates good design quality, mobile optimization, and accessibility, providing a professional user experience. Privacy and cookie consent mechanisms are implemented in compliance with GDPR standards, although explicit security and incident response policies are not publicly detailed. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website presents a trustworthy and professional e-commerce platform with room for improvement in explicit security disclosures.

C

Clearly

clearly.nl

10

Clearly is an established e-commerce business founded in 2007, specializing in health and wellness products targeted primarily at the Dutch market and broader European audience through multiple regional domains. The company leverages a mature digital infrastructure built on Shopify, integrating advanced marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Klaviyo, and Judge.me for customer reviews. The website demonstrates good design quality, mobile optimization, and SEO practices, supporting a positive user experience and strong market positioning in the health supplement sector. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements are recommended in DNS security and explicit security headers. Privacy compliance is partially addressed with cookie consent but lacks visible privacy and terms of service documentation. Overall, the website is professional, trustworthy, and well-positioned for continued growth in the e-commerce health market.

C

Clearly

clearly.lv

66

Clearly is an e-commerce retailer specializing in health-related products, operating primarily through a Shopify platform with multiple country-specific domains. The website is professionally designed with consistent branding and targets a general audience interested in health and wellness. The business model focuses on online retail with integrated marketing and affiliate programs to drive sales. Technically, the site leverages modern e-commerce technologies including Shopify's Dawn theme, Google Tag Manager, Facebook Pixel, and other marketing and analytics tools, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the site is accessible, compliant with GDPR, and demonstrates good business credibility with customer review integrations and privacy policies.

C

Clearly

clearly.lu

68

Clearly is a European e-commerce retailer specializing in health-related products, operating multiple country-specific domains to serve a broad audience. The website is built on Shopify, leveraging a modern tech stack with extensive marketing and analytics integrations. The site demonstrates good content quality, professional design, and clear navigation, targeting general consumers interested in health and wellness. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site is trustworthy and compliant with GDPR, but could improve transparency around security and contact information.

C

Clearly

clearly.lt

10

Clearly is a Lithuanian-based e-commerce business specializing in health and wellness products, aiming to help customers live healthier lives. The website is professionally designed using the Shopify platform, with a consistent brand presence and good content quality. It targets health-conscious consumers primarily in Lithuania and the broader EU market. The business is newly established in 2024, reflected by the recent domain registration. Technically, the site leverages a modern tech stack including Shopify Dawn theme, multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, Klaviyo, and Judge.me for customer reviews. The site is well-optimized for performance and mobile devices, with good SEO and basic accessibility features.

C

Clearly

clearly.it

64

Clearly is an established e-commerce retailer specializing in health supplements and wellness products, primarily targeting health-conscious consumers in Italy and broader Europe. Founded in 2011, the company operates a professionally designed Shopify-based online store with multi-language and multi-country support. The website features comprehensive customer review integration, cookie consent mechanisms, and extensive marketing and analytics tools, reflecting a mature digital marketing strategy. Technically, the site leverages modern e-commerce technologies and third-party services to optimize user experience and conversion tracking. Security posture is strong with HTTPS, DNSSEC, and cookie consent compliance, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the business demonstrates high legitimacy and trustworthiness with a well-aged domain and consistent WHOIS data.

C

Clearly

clearly.gr

10

Clearly is a Greece-based e-commerce retailer specializing in health and wellness products, operating on the Shopify platform with a multi-country European presence. The website is professionally designed with a clear focus on customer experience, leveraging multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, Klaviyo, and Judge.me for reviews. GDPR compliance is well implemented with a cookie consent mechanism and a comprehensive privacy policy. The technical infrastructure is modern and performant, hosted on Shopify's secure environment, and the site is mobile optimized. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence with good business credibility and trust indicators.

C

Clearly

clearly.fr

10

Clearly.fr is an e-commerce website specializing in health and wellness products, operating primarily in the French market with sister sites across Europe. The company was founded in 2021 and leverages the Shopify platform for its online retail operations. The website demonstrates a mature digital marketing infrastructure with extensive use of analytics, tracking, and customer review integrations. While the site enforces HTTPS and includes cookie consent mechanisms, it lacks explicit privacy policy and terms of service pages, which are critical for full GDPR compliance. No direct contact information or security policies are published, which could impact user trust and compliance. The technical infrastructure is modern and performant, with good mobile optimization and SEO practices.

C

Clearly

clearly.fi

10

Clearly is a Finnish-based e-commerce company specializing in health and wellness products, aiming to help consumers live healthier lives with clear and quality offerings. The website is built on the Shopify platform, leveraging modern e-commerce technologies and multiple marketing and analytics integrations to optimize customer engagement and sales. The domain is newly registered in 2024, consistent with the company's founding timeline, and is transparently registered via Dan.com, a domain marketplace service. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms in place, though DNSSEC is not implemented. No critical vulnerabilities or suspicious indicators were found in the website content or WHOIS data.

C

Clearly

clearly.ee

10

Clearly is a newly established European e-commerce retailer specializing in health and wellness products, operating primarily through the Shopify platform. The website is professionally designed with a consistent brand identity and targets health-conscious consumers across multiple European countries. The business model focuses on online retail with affiliate marketing components, supported by a robust marketing and analytics infrastructure including Klaviyo, Facebook Pixel, Google Analytics, and Judge.me for customer reviews. Technically, the site leverages modern Shopify Dawn theme technology, CDN hosting, and multiple third-party integrations to ensure fast performance and good user experience across devices. Security posture is strong with HTTPS enforced, standard security headers, and cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response information are not publicly available, and no vulnerability disclosure program is evident. The domain registration is recent but consistent with the business launch, registered through a reputable registrar without privacy protection. Overall, the site demonstrates a good balance of business professionalism, technical maturity, and privacy compliance, with room for improvement in transparency around security policies and contact information.

C

Clearly

clearly.dk

10

Clearly.dk is a Danish e-commerce website specializing in health and wellness products, operating on the Shopify platform since 2011. The company targets health-conscious consumers primarily in Denmark and across Europe, offering supplements and related products. The website is professionally designed with consistent branding and good content quality, supported by customer reviews and affiliate marketing. Technically, the site leverages a modern tech stack including Shopify Dawn theme, Google Tag Manager, Facebook Pixel, Klaviyo, and Judge.me for reviews, ensuring good performance, mobile optimization, and SEO. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no obvious vulnerabilities, although DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is well addressed with GDPR-consent tools and clear privacy and cookie policies. Business credibility is supported by domain age and consistent WHOIS data, but direct contact information is not prominently available. Overall, the site is safe, trustworthy, and well-positioned in its niche.

C

Clearly

clearly.co.uk

68

Clearly is a UK-based e-commerce retailer specializing in health and wellness products, operating on the Shopify platform with a multi-country presence. The website is professionally designed with good content quality, clear navigation, and consistent branding. It leverages multiple marketing and analytics tools to optimize customer engagement and sales. The technical infrastructure is modern and performant, hosted by a reputable provider with strong SSL and security headers in place. Privacy compliance is well addressed through a comprehensive cookie consent mechanism and clear privacy policies. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website demonstrates a solid security posture with no critical vulnerabilities detected, supporting a high level of trustworthiness.

C

Clearly

clearly.eu

69

Clearly is a European e-commerce retailer specializing in health and wellness products, operating a multi-country online store primarily hosted on Shopify. The website is professionally designed with good content quality, clear branding, and consistent user experience. It targets health-conscious consumers across Europe, leveraging affiliate marketing and multiple marketing and analytics platforms to optimize customer engagement and sales. Technically, the site uses a modern tech stack including Shopify's Dawn theme, Google Tag Manager, Facebook Pixel, Klaviyo, and Judge.me for reviews, ensuring fast performance and good SEO. Security posture is strong with HTTPS enforced, security headers present, and a comprehensive cookie consent mechanism, although explicit security and incident response policies are not published. Privacy compliance is good with GDPR consent mechanisms in place. Overall, the site is trustworthy and well-maintained, with room for improvement in publishing dedicated security policies and providing direct contact information.

Q

QooQee

qooqee.com

41

QooQee is a small e-commerce focused business specializing in premium Shopify templates designed to help entrepreneurs and store owners launch stylish and responsive online stores. The website is currently in a 'Coming soon' phase, offering an email subscription form for updates. The business appears to have been established in 2012, consistent with the domain registration date, and positions itself as a niche provider within the Shopify template market. Technically, the site uses modern web technologies including Google Tag Manager, Google Analytics, and Mailchimp for marketing and analytics, hosted on DigitalOcean infrastructure. The site is mobile optimized and has basic SEO elements in place, but content is minimal due to the pre-launch status.

F

FreeWheel

freewheel.tv

72

FreeWheel operates as a leading technology platform that connects advertisers directly to streaming video inventory from top publishers, eliminating intermediaries to maximize working media dollars. Their offerings include suites tailored for media buyers and sellers, facilitating programmatic video advertising and monetization strategies. The website demonstrates a mature digital infrastructure with WordPress CMS, integrated analytics, and marketing tools such as Google Analytics, Facebook Pixel, and OneTrust for cookie consent, reflecting a high level of digital maturity and compliance awareness. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of visible security headers and a public security policy suggests room for improvement. The WHOIS data is unavailable, which slightly impacts transparency but the professional website and consistent branding support the company's legitimacy. Overall, FreeWheel presents a trustworthy and professional online presence suitable for enterprise-level media advertising clients.

S

Semasio

semasio.com

66

Semasio is a technology company specializing in privacy-first advertising solutions that leverage semantic technology and real-time predictive targeting. Their platform offers a suite of products including audience targeting, audience extension, contextual targeting, and media activation services aimed at brands and agencies seeking efficient and privacy-compliant marketing strategies. The website demonstrates a modern, professional digital presence with clear messaging focused on data-driven advertising in a privacy-conscious environment. Technically, the site is built on Webflow CMS, uses Google Fonts, Google Tag Manager, and a Usercentrics consent management platform, indicating a mature digital infrastructure. Security posture is good with HTTPS and consent mechanisms in place, though the absence of explicit security headers and policies suggests room for improvement. The lack of WHOIS data reduces domain trust slightly, but overall the site appears legitimate and professionally maintained.

O

OnAudience Ltd

onaudience.com

57

OnAudience Ltd is a global data provider specializing in high-quality audience and raw data solutions for digital marketing and business intelligence. Established in 2015 and operating under the parent company Cloud Technologies, OnAudience serves a broad target audience including marketers, agencies, data science teams, and publishers. The company emphasizes privacy-safe, GDPR-compliant data services with a global reach across 200+ markets. Their offerings include AI-powered audiences, data enrichment, alternative data, and cookieless solutions, positioning them as a trusted partner in the AdTech industry. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, Google Analytics, and Google reCAPTCHA Enterprise for security and analytics. The site demonstrates good performance, mobile optimization, accessibility, and SEO practices. Hosting is managed via home.pl DNS servers, and the site uses HTTPS with a secure SSL configuration. From a security perspective, OnAudience employs best practices including HTTPS, cookie consent management, and bot protection. While explicit security headers were not detected in the HTML content, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The domain registration is consistent and transparent, enhancing trustworthiness. Overall, OnAudience presents a professional, secure, and privacy-conscious digital presence with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and maintaining rigorous privacy compliance to sustain trust and market position.

F

Fiskars

fiskars.com

64

Fiskars is a well-established international retail brand specializing in gardening tools, cookware, craft supplies, and scissors. The website presents a professional and consistent brand image targeting consumers interested in home and garden products. The business model is primarily e-commerce with a global presence, supported by localized country sites. Technically, the site uses modern JavaScript frameworks, analytics, and marketing tools such as Datadog RUM, Google Tag Manager, Exponea, and Klarna for payment services. The site is hosted behind Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and user input masking in analytics, though explicit security headers and policies are not evident in the provided content. Privacy compliance is basic with consent mechanisms but lacks visible privacy and cookie policies in the analyzed HTML snippet. WHOIS data is missing or unavailable, which reduces transparency but does not contradict the legitimacy of the brand. Overall, the site is professional, secure, and trustworthy with room for improvement in explicit privacy disclosures and security documentation.

B

BALL Watch

ballwatch.ch

58

BALL Watch Online Boutique is a professional e-commerce platform specializing in luxury Swiss watches. The website showcases a broad range of watch collections, including Engineer Hydrocarbon, Roadmaster, and Trainmaster series, targeting watch enthusiasts and collectors. The business model focuses on direct online sales, pre-orders, and exclusive offers, positioning BALL Watch as a niche luxury brand with a strong heritage. Technically, the site uses a modern tech stack including jQuery, Bootstrap datetimepicker, Flickity, and integrates major analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The platform is built on OpenCart CMS, optimized for mobile devices, and offers a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is present, indicating room for improvement in transparency and compliance. Overall, the website is trustworthy and well-branded but should enhance privacy compliance and security best practices to strengthen user trust and regulatory adherence.

S

SecurityMetrics

securitymetrics.com

73

SecurityMetrics is a well-established enterprise focused on providing compliance and cybersecurity solutions, specializing in PCI DSS, HIPAA, and HITRUST assessments. The company serves a broad market including small businesses to large enterprises across multiple sectors such as finance, healthcare, retail, and government. Their website reflects a mature digital presence with comprehensive service offerings, educational resources, and strong trust indicators including a large client base and certifications. Technically, the site leverages modern web technologies, analytics, and consent management tools, ensuring good performance and privacy compliance. Security posture is strong with HTTPS, reCAPTCHA, and incident response contact information, though explicit security policies and vulnerability disclosures are not publicly detailed. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, which is common for security-focused companies. The site is professional, trustworthy, and well-positioned in its market.

C

critical

critical.cz

54

Critical.cz is a Czech digital agency specializing in web design and online marketing services. The website presents a professional image with a clear focus on delivering digital solutions to businesses seeking web and marketing expertise. The presence of EU funding logos and detailed case studies enhances the company's credibility and market positioning within the Czech Republic. The business model revolves around providing tailored digital agency services with a small-sized team, targeting local and regional clients.

F

FLY UNITED s.r.o.

mujlet.cz

57

FLY UNITED s.r.o. operates the website mujlet.cz, a professional travel booking platform primarily serving the Czech market. The company specializes in corporate travel management and general travel services including flight reservations, hotel bookings, car rentals, and travel insurance. Established in 2005 and holding ISO 9001:2008 certification, the company presents itself as a reputable and established player in the transportation sector. The website supports Czech and English languages and targets both corporate clients and general travelers. Technically, the website uses a custom travel booking system named Symphony, built with AngularJS and enhanced by common JavaScript libraries such as jQuery and Moment.js. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is hosted likely via Active24, consistent with the WHOIS data. Performance is moderate with basic mobile optimization and accessibility features. From a security perspective, the site enforces HTTPS and uses secure login forms but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with no visible cookie consent mechanism and limited GDPR indicators. Contact information and business legitimacy are well presented, enhancing trustworthiness. Overall, the website is professionally designed and functional with good business credibility but could improve in privacy compliance and security best practices to enhance user trust and regulatory adherence.

E

Electric Ireland

electricireland.ie

72

Electric Ireland is a leading energy supplier in Ireland providing electricity and gas services to residential and business customers. Their website offers comprehensive information on price plans, smart meters, solar PV solutions, and customer support, reflecting a mature and customer-focused business model. The company targets Irish energy consumers with a broad portfolio of energy products and services. Technically, the website is built on the Sitefinity CMS platform, uses modern web technologies including Google Tag Manager and OneTrust for cookie consent, and demonstrates good mobile optimization and accessibility. Security-wise, the site enforces HTTPS, implements key security headers, and manages cookie consent effectively, though explicit security policies and incident response information are not prominently published. The absence of WHOIS data limits domain trust verification, but the website's professional presentation and comprehensive content suggest legitimacy. Overall, the site scores well on content quality, technical implementation, security posture, and privacy compliance, with room for improvement in business credibility transparency and security disclosures.

E

ESB Networks

esbnetworks.ie

72

ESB Networks is the primary electricity distribution network operator in Ireland, providing essential services such as power outage management, connection services, meter management, and safety education. The website is designed to serve residential, commercial, and industrial customers with clear navigation and relevant content. Technically, the site uses a modern CMS (Sitefinity) and integrates common technologies such as jQuery, Google Tag Manager, and OneTrust for cookie consent, hosted partly on Microsoft Azure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. The absence of WHOIS data limits domain legitimacy verification, but the professional presentation and official contact details support trustworthiness. Overall, the site is well-structured, compliant with privacy regulations, and suitable for its audience.

E

EDF power solutions UK and Ireland

edf-re.ie

56

EDF power solutions UK and Ireland is a company focused on providing clean energy solutions and combating climate change, aiming to create a net zero future. The website positions the company as an established player in the energy sector within the UK and Ireland, emphasizing renewable energy and sustainability. The digital infrastructure is built on WordPress with modern technologies such as React and Bootstrap, supported by SEO tools like Yoast and tracking via Google Tag Manager. The site includes a cookie consent mechanism compliant with privacy regulations but lacks visible privacy policy and terms of service documents. Security posture is generally good with HTTPS enforced, but the absence of security headers and explicit security policies suggests room for improvement. WHOIS data is unavailable, limiting domain trust verification. Overall, the website presents a professional and credible business presence with moderate risk due to missing compliance documentation and WHOIS transparency.

RWE AG operates a comprehensive transparency platform providing detailed real-time data on electricity generation from its power plants across multiple countries, primarily Germany, the Netherlands, the UK, and the USA. The website serves as a free resource for the public and market participants, showcasing RWE's commitment to transparency and compliance with European energy market regulations. The platform uses modern web technologies including Angular and integrates consent management tools to ensure GDPR compliance. While the site is professionally designed and content-rich, the absence of WHOIS registration data for the domain raises questions about domain legitimacy, although the content and branding strongly align with RWE AG's corporate identity. Security posture is generally strong with HTTPS and consent mechanisms, but could be improved with explicit security headers and incident response information. Overall, the site is a valuable resource with moderate risk due to domain registration opacity.

R

RWE Turcas Güney Elektrik Üretim A.Ş.

rwe-turcas.com

64

RWE Turcas Güney Elektrik Üretim A.Ş. is a joint venture between the German utility RWE AG and Turkish energy company Turcas, operating a large, efficient, and environmentally friendly gas-fired combined-cycle power plant in Denizli, Turkey. The company holds a significant market position supplying approximately 1.2% of Turkey's electricity and operates from multiple locations including Ankara, Istanbul, and Denizli. The website presents a professional and comprehensive overview of the business, its mission, and its operations, targeting stakeholders in the energy sector and the general public. Technically, the website uses modern web technologies including JavaScript, CSS, SVG, and UIkit framework, with integration of Google Tag Manager and Usercentrics for consent management. The site is mobile optimized, accessible, and SEO friendly, with good performance metrics. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and incident response policies are not published. The security evaluation shows no critical vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a clear privacy policy and cookie consent. However, the WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration transparency and reduces overall trustworthiness. Despite this, the website content and branding align with a legitimate corporate entity. Overall, the site is professional, secure, and compliant with privacy regulations, but the lack of WHOIS data and explicit security policies suggests areas for improvement to enhance trust and security posture.

R

RWE AG

rwe.asia

68

RWE AG is a major European energy company with a growing presence in China, focusing on renewable energy, energy trading, and technical advisory services. The website highlights its subsidiaries, RWE Supply & Trading (Shanghai) Co. Ltd. and RWE Technology International GmbH, emphasizing their roles in energy infrastructure and trading within China. The company targets industrial, commercial, and public sector clients, leveraging its extensive experience and global footprint. Technically, the website employs modern web technologies including jQuery, UIKit, and Usercentrics CMP for privacy compliance, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and secure forms, though additional security headers could enhance protection. Privacy policies and cookie consent mechanisms are present and GDPR compliant. WHOIS data is unavailable, likely due to privacy protection, but the website's branding and content strongly support legitimacy. Overall, the site is professional, trustworthy, and well-aligned with RWE's corporate identity.

R

Recupel

recupel.be

63

Recupel is a Belgian organization dedicated to reducing electronic waste by promoting repair, reuse, and proper recycling of electrical appliances. The website targets consumers and businesses interested in sustainable waste management solutions. It operates likely as a non-profit or collective organization with a strong environmental mission. The site uses modern web technologies including Drupal 10 CMS, Google Tag Manager, and Cookiebot for cookie consent management, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit privacy policies. The extensive use of major advertising and tracking platforms is balanced by a clear consent mechanism. Overall, the website is professional, trustworthy, and well-optimized for mobile and SEO, serving its audience effectively.

I

Invest North East England

investnortheastengland.co.uk

61

Invest North East England is a strategic inward investment agency supporting businesses to relocate and invest in the North East of England. It operates as part of the North East Combined Authority and provides free support services including a land and property database. The website presents a professional image with sector-specific information, testimonials from major companies, and multiple contact channels. Technically, the site is built on WordPress with modern plugins and SEO tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and security plugins, though some security headers and policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and well-positioned as a government-related business support platform.

N

North East Combined Authority

northeast-ca.gov.uk

72

The North East Combined Authority (NECA) is a regional governmental body serving the North East England area, focusing on regional governance, economic development, and transport infrastructure. The website serves as an official portal for residents and stakeholders, providing information and resources related to the authority's activities. The site is positioned as a key regional government entity with a medium organizational size and a focus on public sector services. Technically, the website employs modern web technologies including Vue.js, jQuery, Google Tag Manager, Hotjar for analytics, and OneTrust for cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some technical details such as hosting provider and CMS are not explicitly identified. Performance is moderate, with a professional design and clear navigation. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or vulnerability disclosures. No critical vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is unavailable due to .gov.uk domain privacy policies, but the domain's legitimacy is supported by its official government TLD and consistent branding. Overall, the website presents a trustworthy and professional digital presence for a government authority, with recommendations to enhance security posture by adding security headers, publishing security policies, and improving privacy policy visibility to strengthen compliance and user trust.

E

Elavon UK

sagepay.com

70

Elavon UK is a well-established payment processing company operating under the parent organization U.S. Bancorp. The company provides a comprehensive suite of card payment solutions and merchant services tailored for businesses ranging from small retailers to large enterprises. Their market position is strong, supported by a large customer base across multiple countries and a wide range of industry-specific payment solutions. The website reflects a mature digital presence with professional design, clear navigation, and detailed service offerings. Technically, the site uses modern frameworks and technologies such as Adobe Experience Manager and Google Tag Manager, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy could enhance trust further. Overall, the site is trustworthy, compliant with GDPR, and provides multiple contact channels for customer support and sales.

T

Tiny Technologies Inc.

tiny.cloud

73

Tiny Technologies Inc. operates the website tiny.cloud, offering the widely trusted TinyMCE WYSIWYG rich text editor, along with complementary products like MoxieManager and Drive for media and cloud file management. The company targets web developers and enterprises seeking advanced text editing solutions, positioning itself as a market leader with over 1.5 million developers relying on its technology. The business model combines SaaS offerings with licensing options, supported by comprehensive documentation and AI-powered tools to enhance user experience. Technically, the website is built on modern frameworks including React and Gatsby, hosted on AWS infrastructure, and integrates multiple marketing and analytics tools such as Google Tag Manager and Visual Website Optimizer. The site demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs security headers, and uses CAPTCHA and consent management tools to protect user data and privacy. While DNSSEC is not enabled, the domain registration is consistent and secure, with clientTransferProhibited status preventing unauthorized transfers. No critical vulnerabilities or exposed sensitive data were detected, indicating a strong security posture. Overall, tiny.cloud presents a professional, trustworthy, and well-maintained online presence with strong business credibility and compliance with privacy regulations. Strategic recommendations include enabling DNSSEC, publishing a formal security policy, and establishing a vulnerability disclosure program to further enhance security transparency and resilience.

S

SSE plc

sse.com

65

SSE plc is a major UK-based energy company focused on delivering cleaner, homegrown energy through investments in renewable technologies such as offshore wind, hydro, and battery storage. The company operates across multiple segments including renewables, thermal generation, transmission, and distribution, serving a broad audience including investors, customers, and job seekers. The website reflects a mature digital presence with comprehensive investor relations, sustainability initiatives, and career opportunities. Technically, the site uses modern web technologies including Umbraco CMS, Google Tag Manager, and various analytics and tracking tools, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not found. Overall, the website is professional, trustworthy, and aligned with industry best practices, though WHOIS data is unavailable for the www subdomain queried, which slightly impacts domain trust analysis.

MarramWind Ltd is a joint venture between ScottishPower and Shell New Energies UK focused on developing a large-scale floating offshore windfarm off the north-east coast of Scotland. The project aims to deliver up to 3 GW of renewable energy, powering over 3.5 million homes, and contributing to the UK's net-zero targets. The website provides detailed information about the project, partners, vision, and stakeholder engagement opportunities, reflecting a professional and credible business presence. Technically, the website is built on ASP.NET Web Forms and leverages modern JavaScript libraries such as jQuery, Bootstrap, and Modernizr, along with Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized and accessible, though some SEO and security header enhancements could improve its digital maturity. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security headers and a dedicated security policy or incident response contact. The WHOIS lookup failed due to a domain naming rule violation, which may be a querying artifact rather than a true registration issue, as the site is live and professional. Overall, the security posture is moderate but could be strengthened with additional controls and transparency. The overall risk assessment is low, with recommendations to implement security headers, cookie consent mechanisms, and publish security policies to enhance trust and compliance. The site is safe for general audiences and aligns well with its business objectives and market positioning.

ScottishPower Ltd is a major UK energy company specializing in renewable energy generation, network distribution, and transmission. It operates as part of the Iberdrola Group, a global leader in wind energy. The website reflects a professional corporate presence with clear focus on sustainability and green energy initiatives. The technical infrastructure is based on ASP.NET with modern consent management and analytics tools, ensuring good performance and accessibility. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. The domain WHOIS data is missing, which slightly impacts transparency but the website content and external references support legitimacy. Overall, the site is well-structured, compliant with privacy regulations, and serves its target audience effectively.

Not a number is a Dutch digital agency specializing in knowledge digitization to reduce organizational dependency on specialists by making specialist knowledge accessible across the entire organization. Their market position is supported by over 100 partners and multiple detailed case studies showcasing successful digital transformation projects including product configurators, document configurators, and ERP integrations. The company targets businesses seeking to streamline and scale specialist knowledge digitally. Technically, the website uses a modern stack including React and WordPress as a headless CMS, with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response information are not publicly available. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting a positive business credibility profile.

P

Planetum

planetum.cz

58

Planetum is a Czech educational and cultural organization operating a modern planetarium and multiple observatories. The website provides detailed program schedules, branch information, and educational offerings targeting astronomy enthusiasts and the general public interested in space. The technical infrastructure is modern, leveraging Nuxt.js and Vue.js frameworks, with integration of Google Fonts and Google Tag Manager for analytics. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and standard security headers present, though there is room for improvement in publishing explicit privacy and security policies. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract from the professional presentation and operational transparency of the website. Overall, Planetum demonstrates a mature digital presence suitable for its educational mission.

C

Čtenářský deník k maturitě, pro základní školu - Čtenářský-deník.cz

ctenarsky-denik.cz

44

Čtenářský-deník.cz is a Czech educational website providing a large database of literary analyses, summaries, biographies, and study materials primarily targeted at students preparing for maturita exams and basic school students. The platform offers both free and paid downloadable content, positioning itself as a significant resource in the Czech educational market. Technically, the site employs a traditional web stack with JavaScript, jQuery, and integrates multiple third-party advertising and analytics services including Google Tag Manager, Google Analytics, and Gemius Audience. While the site is accessible and functional with a good user experience, it uses an outdated jQuery version and lacks some modern security headers and explicit security policies. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, reflecting GDPR awareness. The absence of WHOIS data limits domain trust assessment, but the website's content and partner ecosystem suggest legitimacy. Overall, the site scores moderately well in content quality, technical implementation, security posture, privacy compliance, and business credibility.

A

AMOS KamPoMaturite.cz, s.r.o.

adresarskol.cz

44

AdresářŠkol.cz is a well-established Czech educational directory portal operated by AMOS KamPoMaturite.cz, s.r.o. It provides comprehensive listings of various types of schools across the Czech Republic, including universities, secondary schools, language schools, and vocational institutions. The site also offers educational articles, news, and preparation resources for students. The business targets students, parents, and educators seeking detailed educational information and study support. The portal integrates advertising and promotional partnerships with related educational projects, enhancing its market position as a key educational resource in the region. Technically, the website uses a custom CMS developed by ANAWEb and incorporates common web technologies such as jQuery 1.9.1, Slippry slider, and Fancybox for UI components. It employs Google Fonts and Google Tag Manager for analytics and tracking, along with regional retargeting services. The site is moderately optimized for mobile devices and SEO, with a clear navigation structure and good content quality. However, the use of an outdated jQuery version and absence of visible HTTP security headers suggest areas for technical improvement. From a security perspective, the site implements a comprehensive cookie consent mechanism aligned with GDPR requirements and provides a privacy policy. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The lack of WHOIS data limits domain trust assessment, but the professional presentation, clear contact information, and partner affiliations support the site's legitimacy. Advertising practices are standard for educational portals, with no suspicious or malicious elements identified. Overall, AdresářŠkol.cz presents a trustworthy and valuable educational resource with solid content and user experience. Strategic improvements in security headers, technology updates, and domain registration transparency would further enhance its security posture and trustworthiness.

A

AMOS KamPoMaturite.cz, s.r.o.

autoskoly.com

45

Autoskoly.com is a Czech Republic-based online directory and informational portal specializing in driving schools across the country. Operated by AMOS KamPoMaturite.cz, s.r.o., the site offers a comprehensive listing of driving schools categorized by region and license type, supplemented by educational articles and news updates. The business targets individuals seeking driving education and related services, positioning itself as a trusted resource with a long operational history dating back to 1998. Technically, the website employs a custom CMS with a technology stack including jQuery 1.9.1, Slippry slider, Fancybox, and Google Tag Manager for analytics and marketing. The site is moderately optimized for performance and mobile devices, with good SEO practices and clear navigation. However, some technical debt is evident due to the use of outdated libraries and lack of modern security headers. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. There is no evidence of advanced security policies or incident response information publicly available. The absence of WHOIS registrant data reduces trust slightly but is likely due to privacy protection. No critical vulnerabilities or adult content were detected, and the site maintains a good overall security posture. Overall, Autoskoly.com presents a professional and trustworthy educational directory with room for technical and security improvements. Strategic recommendations include updating third-party libraries, enhancing security headers, and publishing explicit security and incident response policies to strengthen user trust and compliance.

A

AMOS KamPoMaturite.cz, s.r.o.

jazykoveskoly.com

45

JazykoveSkoly.com is a Czech Republic-based online directory and informational portal specializing in language schools and language courses. Operated by AMOS KamPoMaturite.cz, s.r.o., the site provides comprehensive listings, educational articles, and advertising opportunities targeting students and individuals seeking language education. The website has a consistent brand presence and a good content quality level, serving as a trusted resource in its niche. Technically, the site uses a custom CMS with legacy JavaScript libraries like jQuery 1.9.1, and integrates common web technologies such as Google Fonts and Google Tag Manager. While the site is mobile-optimized and SEO-friendly, there is room for improvement in security headers and updating outdated libraries. The security posture is moderate with cookie consent mechanisms and HTTPS usage, but lacks explicit security policies or incident response contacts. WHOIS data is missing or inaccessible, which raises concerns about domain registration transparency despite the professional appearance and business legitimacy. Overall, the site is functional and credible but would benefit from enhanced security and compliance measures.

A

AMOS KamPoMaturite.cz, s.r.o.

zakladniskoly.com

45

The website zakladniskoly.com is an established Czech educational portal operated by AMOS KamPoMaturite.cz, s.r.o., providing a comprehensive directory of basic schools in the Czech Republic along with educational articles, exam preparation materials, and related resources. It targets students, parents, and educators, positioning itself as a trusted resource in the Czech education sector since 1998. The site integrates multiple partner domains within the educational ecosystem, enhancing its market presence. Technically, the site uses a custom CMS with common JavaScript libraries such as jQuery 1.9.1, Slippry slider, and Fancybox, along with Google Fonts and Google Tag Manager for analytics. The site is moderately optimized for performance and mobile devices, with good SEO practices and accessibility at a basic level. Cookie consent mechanisms and privacy policies are implemented, reflecting GDPR compliance. From a security perspective, while HTTPS usage is assumed, no explicit security headers were detected in the provided data, and the use of an outdated jQuery version poses potential vulnerabilities. The site employs standard advertising and tracking scripts from known ad networks and retargeting services. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business information appear consistent and legitimate. Overall, the site presents a good balance of content quality, technical implementation, and privacy compliance, with room for improvement in security hardening and modernization of libraries. The risk profile is moderate, primarily due to missing WHOIS transparency and minor technical security gaps.