Security Directory

R

Reed Exhibitions (implied from scripts and hosting)

all-energy.co.uk

63

All-Energy is a leading UK-based renewable and low-carbon energy exhibition and conference, held at the SEC in Glasgow. The website serves as a professional platform to promote the event, targeting industry professionals and stakeholders interested in advancing a Net Zero future. The site is well-branded and provides comprehensive event information, including dates, location, and participation details. Technically, the website leverages modern web technologies such as React, Adobe Experience Manager CMS, and integrates analytics and consent management tools to ensure a robust digital presence. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms, though explicit security headers could be further verified. The WHOIS data query failed due to an invalid domain query format, but the domain itself is legitimate and consistent with the business identity. Overall, the website demonstrates a mature digital infrastructure suitable for a large-scale event organizer in the energy sector.

W

Wave Energy Scotland

waveenergyscotland.co.uk

65

Wave Energy Scotland is a government-backed organization focused on advancing wave energy technology through research, development, and funding programs. The website reflects a professional and authoritative presence with comprehensive information about their technology programs, research strategies, educational resources, and impact. The organization positions itself as a leader in wave energy innovation in Scotland with international collaborations. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, reCAPTCHA, and various UI libraries, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, supporting the organization's mission effectively.

É

École de Management des Industries Créatives (EMIC Paris)

emic-paris.com

63

EMIC Paris is a specialized educational institution focused on management training within the creative industries, including music, audiovisual, and live performance sectors. Founded in 2016, it offers master's level programs and short courses designed to prepare students for immediate professional engagement through practical and operational learning methods. The institution maintains strong industry partnerships with major players such as Mediawan, Sony Music, Deezer, and Believe, enhancing its market position and student employability. Technically, the website is built on modern frameworks like Nuxt.js and Vue.js, integrating essential marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site demonstrates good mobile optimization, accessibility, and SEO practices, providing a professional and user-friendly experience. Cookie consent is managed comprehensively via CookieYes, ensuring GDPR compliance. From a security perspective, the site uses HTTPS with a good SSL configuration and enforces domain status protections. However, it lacks DNSSEC and advanced security headers, and does not publish incident response or vulnerability disclosure information, which are areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, EMIC Paris presents a credible, professional online presence with strong business credibility and compliance posture. Strategic enhancements in security policies and transparency could further strengthen trust and resilience.

K

Kirchliche Zusatzversorgungskasse des VDD (KZVK Köln)

kzvk.de

54

The Kirchliche Zusatzversorgungskasse des VDD (KZVK Köln) operates as a national partner providing supplementary pension services for church-related employers and insured persons in Germany. The website clearly targets employers, insured individuals, and pensioners, offering detailed information on pension schemes, customer portals, seminars, and support services. The organization positions itself as a trusted, established entity within the government/non-profit sector, focusing on pension and social security benefits. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, supported by Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and anti-CSRF measures, though some security headers could be improved. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism in place. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website reflects a mature digital presence suitable for a medium-sized government/non-profit pension fund.

S

Studio SCHNEIDER

studioschneider.cz

54

Studio SCHNEIDER is a small Czech-based creative studio specializing in graphic design, web design, photography, and mobile application design. The website presents a professional image with clear service offerings targeting clients seeking creative and digital design solutions. The business operates primarily as a service provider in the creative sector with a local market focus. Technically, the website employs modern JavaScript libraries, Google Analytics, and a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of WHOIS data and privacy policy pages suggests gaps in transparency and compliance. Security posture is moderate with no detected blocking or WAF, but lacks security headers and explicit incident response information. Overall, the website is functional and professional but would benefit from improved compliance and security practices.

V

vedos.cz

vedos.cz

57

VEDOS.cz is a well-established Czech web hosting and domain registration provider founded in 2010. It serves over 300,000 customers, offering services including webhosting, domain registration, servers, and mailhosting. The company positions itself as a leading hosting provider in the Czech market with competitive pricing and reliable service. Technically, the website is built on WordPress using the Astra theme and integrates modern tools such as Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and SEO-friendly, with good performance and accessibility features. Security-wise, the website enforces HTTPS, uses reCAPTCHA, and implements cookie consent mechanisms, though it lacks a publicly available security policy or incident response information. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, VEDOS.cz demonstrates a mature digital presence with strong business credibility and a solid security posture.

L

Le Meteor

lemeteor.fr

53

Le Meteor is a small hospitality business operating a brasserie and bar located in the center of Strasbourg, France. The business offers Alsatian cuisine throughout the day along with a full range of METEOR beers, positioning itself as a local gathering place and a venue for culinary and beverage experiences. The website is built on the Readymag platform and integrates several third-party services for analytics, font management, and booking functionalities. The technical infrastructure is modern and hosted by OVH, a reputable provider. Security posture is solid with HTTPS and security headers implemented, though privacy compliance is lacking due to missing privacy and cookie policies. Overall, the website presents a professional image with good design and user experience, targeting a mature audience interested in local cuisine and beer culture.

L

Lyra Network

lyra.com

61

Lyra Network is a technology-driven payment service provider specializing in online and POS payment solutions. The company develops its own payment technologies, offering a comprehensive platform called Lyra Collect that enables businesses to manage payments efficiently and reduce administrative overhead. The website targets online merchants, marketplaces, and enterprises seeking flexible and secure payment options. Lyra positions itself as an innovative player with international reach and a strong partner ecosystem. Technically, the website is built on WordPress with modern JavaScript frameworks and SEO optimizations, providing a good user experience and mobile responsiveness. Security-wise, the site enforces HTTPS, holds PCI DSS certification, and implements anti-fraud tools, although explicit security policies and incident response information are not publicly detailed. The absence of WHOIS registration data suggests domain privacy protection, which is reasonable given the business type but slightly impacts trust. Overall, Lyra Network presents a professional and trustworthy online presence with room for improvement in privacy transparency and security disclosures.

S

SOCOMEC USA

socomec.us

67

SOCOMEC USA operates as a manufacturer specializing in electrical equipment focused on power control, safety, energy efficiency, power conversion, and energy storage solutions. The company targets industrial and commercial sectors requiring low-voltage electrical network performance enhancements. The website reflects a mature digital presence with professional design, clear navigation, and a broad product catalog, supporting a large enterprise business model within the energy sector. Technical infrastructure is based on Drupal CMS with modern analytics and marketing tools integrated, indicating a moderate to advanced digital maturity level. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and privacy policies suggests room for improvement. The lack of WHOIS data limits domain trust verification but does not contradict the legitimacy suggested by the website content. Overall, the site presents a trustworthy and professional business front with moderate technical and privacy compliance maturity.

R

RadioKing

radioking.com

56

RadioKing is a professional SaaS platform enabling users to create and manage their own internet radio stations easily. The company targets individuals, associations, and professional entities such as brands and marketing agencies. With over 10 years of experience and more than 4,000 radio stations trusting their services, RadioKing offers a comprehensive suite of tools including media library management, scheduling, live broadcasting, widgets, mobile apps, and smart speaker integration. The website is well-branded, mobile-friendly, and rich in multimedia content, supporting a strong market position in the internet radio hosting industry. Technically, the site is built on WordPress with Elementor and uses modern web technologies and SEO best practices, though hosting details are not explicit.

A

Atelier SO CUSTOM

socustom.fr

53

Atelier SO CUSTOM is a small French business specializing in communication through image, focusing on textile and object marking, graphic design, and web design services primarily in Strasbourg. The website presents a professional and consistent brand image, targeting businesses and individuals seeking specialized marking and communication services. The technical infrastructure is based on WordPress CMS with modern plugins such as Elementor and Yoast SEO, hosted by a reputable provider IONOS SE. The site is mobile optimized and uses Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security posture is good with HTTPS enabled and no exposed sensitive data, though security headers and incident response information could be improved. Privacy compliance is lacking due to absence of explicit privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

B

Blackpearl Group Limited

pearldiver.io

65

Pearl Diver, operated by Blackpearl Group Limited, is a New Zealand-based B2B SaaS company specializing in intent data and prospect identification solutions for marketers and sales teams. The platform leverages real-time buyer signals beyond traditional ad platforms to improve targeting accuracy, reduce wasted ad spend, and increase conversion rates. The company is well-positioned in the marketing technology sector with a strong user base and positive market reputation, supported by numerous customer testimonials and G2 reviews. Technically, the website is built on Webflow CMS and integrates advanced marketing and analytics tools such as HubSpot, Microsoft Clarity, and Google Tag Manager. The site demonstrates excellent design quality, mobile optimization, and SEO practices, ensuring a smooth user experience and effective digital presence. Security-wise, the site enforces HTTPS and uses controlled third-party scripts, though it lacks some advanced security headers and a published security policy. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR and CCPA considerations. However, the WHOIS data is privacy protected, limiting transparency on domain registration details, though this is common and justified for commercial SaaS providers. Overall, Pearl Diver presents a professional, trustworthy, and technically mature online presence with minor recommendations to enhance security headers and incident response transparency. The business is credible and well-aligned with its market claims, making it a reliable partner for marketers seeking intent data solutions.

N

National Education Union

teachers.org.uk

62

The National Education Union (NEU) is a prominent UK-based education union focused on advocating for better school funding, teacher pay, and member support. The website serves as a comprehensive platform offering campaigns, advice, training courses, and union publications targeted at education professionals and union members. The NEU positions itself as a leading union in the education sector with a large membership base and a strong advocacy role. Technically, the website is built on Drupal 10 with Commerce 2, leveraging modern web technologies and analytics tools such as Google Tag Manager and Microsoft Clarity. The site demonstrates good digital maturity with responsive design, accessibility features, and SEO optimization. Performance is moderate, with room for optimization. From a security perspective, the site employs HTTPS with strong SSL configuration and security headers. It includes a cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, which could be improved. Overall, the NEU website is a professional, trustworthy, and well-maintained platform that effectively supports its business objectives. The risk profile is low, with recommendations focusing on enhancing transparency around security policies and incident response to further strengthen trust and compliance.

N

NASUWT

nasuwt.org.uk

61

NASUWT is a prominent UK-based teachers' union dedicated to protecting the status and working conditions of teachers and school leaders. The website serves as a comprehensive platform offering member support, advice, training, news, and campaign information. It targets educators across the UK, providing resources tailored to different regions and professional needs. The union operates a membership-based model, emphasizing advocacy and professional development. Technically, the website employs modern web technologies including Google Tag Manager, jQuery, and Bootstrap, ensuring a responsive and user-friendly experience. The presence of cookie consent mechanisms and privacy policies indicates a commitment to GDPR compliance. Security-wise, the site uses HTTPS and secure login forms but lacks explicit security headers and incident response information. The WHOIS data is unavailable due to domain naming rules errors, but the website's content and branding strongly support its legitimacy. Overall, the site is professional, trustworthy, and well-maintained, serving a large audience in the education sector.

A

Acas

acas.org.uk

71

Acas is a UK government-affiliated organization providing free and impartial workplace advice, training, and dispute resolution services to employers and employees across England, Wales, and Scotland. The website reflects a mature digital presence with a clear focus on accessibility, user experience, and compliance with privacy regulations such as GDPR. The technical infrastructure is based on Drupal CMS, enhanced with modern consent management and analytics tools, ensuring a balance between functionality and user privacy. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high professionalism and trustworthiness appropriate for a government service.

W

WebMD Ignite

webmdignite.com

65

WebMD Ignite is a healthcare-focused business launched in 2023, providing marketing, analytics, platform, clinical, and content solutions to healthcare organizations. The company positions itself as a premier growth partner empowering decision-making and action across the health journey. The website is professionally designed with consistent branding and targets health systems, plans, associations, government, and healthcare organizations. Technically, the site uses a modern tech stack including Google Tag Manager, OneTrust for cookie consent, and Cloudflare DNS, with Drupal as the CMS. Performance and mobile optimization are good, though accessibility is basic. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks DNSSEC and security headers. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service. Business credibility is strong with clear branding and contact form presence, though no direct emails or phone numbers are found. Overall, the site is trustworthy and safe for general audiences.

W

Welkeys

welkeys.com

56

Welkeys operates a professional luxury vacation rental platform focused on France and Europe, offering villas, chalets, and concierge services. The website is well designed, mobile optimized, and integrates modern technologies such as Webflow CMS, Weglot for translations, and various marketing and analytics tools. Security posture is strong with HTTPS and security headers, but the absence of privacy and cookie policies is a compliance gap. The missing WHOIS data for the domain raises some concerns about domain registration transparency, though the active and professional website mitigates this somewhat. Overall, the business appears credible and positioned well in the luxury travel market, but should improve privacy compliance and domain registration transparency.

N

Nutricia Medical Oy

nutricia.fi

63

Nutricia Medical Oy operates a professional healthcare website focused on medical nutrition products and services in Finland. The website targets healthcare professionals and patients, providing resources and product information. The company maintains a consistent brand presence with social media links and structured data confirming its identity. Technically, the site is built on WordPress, leveraging modern tracking and consent management tools such as Google Tag Manager and OneTrust, indicating a mature digital infrastructure. Security measures include HTTPS enforcement and standard security headers, with no evident vulnerabilities or exposed sensitive data. Privacy compliance is supported by a cookie consent mechanism and inferred privacy policy, aligning with GDPR requirements. Overall, the website presents a trustworthy and professional digital presence suitable for its healthcare audience.

D

Danone Finland Oy

danone.fi

60

Danone Finland Oy operates as a subsidiary of the global Danone group, focusing on nutrition and health-related food products within Finland. The website is localized for Finnish users and presents a corporate presence consistent with the company's business sector. The domain has been registered since 2003, indicating a stable and established market presence. The website uses WordPress CMS and integrates modern tools such as Google Tag Manager and reCAPTCHA to support analytics and security. Cookie consent is managed through OneTrust, reflecting attention to privacy compliance. Security posture is generally good with HTTPS enabled and some security best practices observed, though additional security headers could enhance protection. No critical vulnerabilities or blocking mechanisms were detected, and the WHOIS data aligns well with the website's business claims, supporting legitimacy and trustworthiness.

N

Nutricia A/S

nutricia.dk

58

Nutricia A/S is a well-established healthcare company specializing in medical nutrition products for adults and children, supporting nutritional management before, during, and after disease treatment. The company operates under the global parent Danone and maintains a strong market position in Denmark and beyond. Their website reflects a professional digital presence with clear branding, relevant content, and a focus on patient and healthcare professional audiences. Technically, the site is built on WordPress with modern tools such as Google Tag Manager and OneTrust for cookie consent, and it employs New Relic for performance monitoring. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers are not detected. Privacy compliance is well addressed with comprehensive policies and GDPR adherence. However, the absence of WHOIS data limits domain trust verification, slightly impacting overall credibility. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

D

Danone

danone.dk

57

Danone.dk is the Danish localized website of Danone, a large multinational food-products corporation specializing in dairy, plant-based products, bottled water, and specialized nutrition. The website serves as a corporate and consumer information portal for the Danish market. The technical infrastructure is based on WordPress CMS version 6.8.1, with integration of Google Tag Manager and Google reCAPTCHA for analytics and security respectively. The site implements a cookie consent mechanism via OneTrust, indicating awareness of privacy compliance requirements. However, the website lacks visible privacy policy, terms of service, and contact information, which are critical for full compliance and user trust. Security posture is moderate with HTTPS enabled and some bot protection, but lacks DNSSEC and security headers that could enhance protection against common web threats. Overall, the site is functional but could benefit from improved content richness, privacy disclosures, and enhanced security configurations.

N

Nutricia

nutricia.be

73

Nutricia is a well-established healthcare nutrition company focused on providing specialized medical nutrition products and support services in Belgium. Their website demonstrates a professional digital presence with comprehensive content targeting patients, caregivers, and healthcare professionals. The site leverages Adobe Experience Manager CMS and integrates modern marketing and analytics tools such as Google Tag Manager and Adobe Launch. Privacy and cookie compliance are well implemented, reflecting adherence to GDPR requirements. Security posture is good with HTTPS enforced and consent mechanisms in place, though there is room for improvement in security headers and explicit incident response policies. Overall, the website is trustworthy and professionally managed, supporting Nutricia's market position as a leading medical nutrition provider.

Nutricia is a well-established leader in the medical enteral nutrition sector, operating under the Danone umbrella. The website targets patients, healthcare professionals, and midwives primarily in the German-speaking DACH region. It offers a comprehensive portfolio of specialized nutrition products and services, including personalized nutrition teams and risk assessment tools. Technically, the site is built on Adobe Experience Manager, leveraging modern analytics and privacy tools, and is hosted on a reliable cloud platform. Security posture is solid with HTTPS and privacy consent mechanisms, though improvements in security headers and explicit security policies are recommended. Overall, the site demonstrates strong business credibility and digital maturity with good content quality and user experience.

A

Arrowhead Winch

paccarwinch.com

60

Arrowhead Winch is a professional industrial manufacturing company specializing in hydraulic winches, hoists, and drive systems under the well-known brands BRADEN, CARCO, and Gearmatic. The company targets industrial and commercial sectors requiring heavy-duty engineered solutions. Their website demonstrates a strong market position with a comprehensive product portfolio and a global distributor network. Technically, the website is built on WordPress with WooCommerce and integrates modern marketing and analytics tools such as HubSpot, Google Tag Manager, and LinkedIn Insight Tag, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement, reCAPTCHA on forms, and cookie consent management, though explicit security policies and incident response contacts are not published. The WHOIS data is missing, which raises concerns about domain registration transparency, but the website's professional presentation and consistent branding mitigate some trust issues. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a credible online presence for the business.

P

PacLease

paclease.com

71

PacLease is a well-established commercial truck rental and leasing company, operating under the parent company PACCAR Inc. The website presents a professional image with clear branding and a focus on premium truck rental and leasing services. The target audience includes commercial fleet operators and businesses requiring medium to heavy-duty trucks. The company leverages multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and ClickDimensions to optimize user engagement and advertising effectiveness. Technically, the website uses modern JavaScript libraries like jQuery and integrates Cookiebot for GDPR-compliant cookie consent management. However, some areas such as explicit privacy policy, terms of service, and contact information are not clearly found in the analyzed content. Security posture is good with HTTPS enabled and domain protections in place, but could be improved by adding security headers and publishing security policies. Overall, the website is credible, secure, and professionally maintained, with room for enhanced transparency and compliance documentation.

D

DAF Caminhões Brasil

dafcaminhoes.com.br

63

DAF Caminhões Brasil is a prominent commercial truck brand operating in Brazil, part of the global PACCAR group. The company offers a range of trucks, customer services, parts, financial solutions, and training programs tailored to the Brazilian market. Their website reflects a professional and consistent brand image, targeting commercial truck buyers and operators. The digital infrastructure includes modern technologies such as jQuery, Google Tag Manager, and OneTrust for cookie consent, hosted on a professional platform with MarkMonitor DNS services. Security posture is solid with HTTPS enforcement and privacy consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the website is well-structured, mobile-optimized, and compliant with basic privacy regulations, supporting a trustworthy online presence.

M

Médiář

mediar.cz

64

Médiář is a Czech online media publication focused on daily news about media, marketing, advertising, and PR industries. It serves professionals and agencies within the Czech media and marketing sectors by providing news, industry insights, job listings, and advertising galleries. The website is well-structured with a consistent brand presence and targets a specialized audience interested in media and marketing developments. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, and Seznam SSP ads, indicating a mature digital infrastructure. The site employs Google Consent Mode and cookie consent mechanisms to address privacy concerns, although an explicit privacy policy page was not found in the provided content. Security posture is good with HTTPS and some security best practices, but could be improved by adding explicit security headers and clearer incident response contacts. The absence of WHOIS data reduces domain transparency and slightly impacts trustworthiness, but the website content and technical setup suggest a legitimate and professional media outlet. Overall, the site scores well in content quality, technical implementation, and security, with room for improvement in privacy compliance and business credibility transparency.

A

Able.cz s.r.o.

abletocompete.ai

55

Able.cz s.r.o. operates the website abletocompete.ai, a Czech-based platform focused on promoting AI innovation and leadership in Europe. The site offers an AI challenge for developers with monetary rewards and a waiting list service for companies serious about AI adoption. Positioned as a European initiative, it aims to empower local talent and businesses to lead in AI technology. The website is professionally designed using modern web technologies, including Framer for CMS, and integrates common analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Hosting is provided by Webglobe.cz, as indicated by the domain's nameservers.

H

Highlands and Islands Enterprise

hie.co.uk

66

Highlands and Islands Enterprise (HIE) is a well-established economic and community development agency serving the Highlands and Islands region of Scotland. The organization supports businesses, social enterprises, and communities through funding, property assistance, training, and advisory services. With over 60 years of operation, HIE positions itself as a key regional development entity focused on sustainable growth and prosperity. The website reflects a professional and comprehensive digital presence, targeting a broad audience including local businesses, investors, and community groups. Technically, the website employs modern web technologies including Google Tag Manager, Facebook Pixel, Hotjar, and Google reCAPTCHA, indicating a mature digital infrastructure with attention to user experience and security. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and well-structured content. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, some advanced security headers are missing, and there is no publicly available security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. The main limitation is the lack of WHOIS data for the queried domain 'www.hie.co.uk', which appears to be an invalid domain format. The actual domain is likely 'hie.co.uk', which aligns with the organization's identity. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

S

Statkraft

statkraft.co.uk

68

Statkraft UK is a major player in the renewable energy sector, positioning itself as Europe's largest developer and producer of renewable energy including hydropower, wind, and solar power. The website reflects a professional corporate presence with clear branding and a focus on sustainability. The company targets a broad audience including business partners, stakeholders in the energy sector, and the general public interested in renewable energy solutions. The business model centers on renewable energy production and development, leveraging large-scale infrastructure and technology partnerships.

S

SSEN Transmission

ssen-transmission.co.uk

67

SSEN Transmission is a key electricity transmission network operator in the United Kingdom, focused on delivering a reliable, resilient, and innovative energy transmission infrastructure. The company operates under the parent organization Scottish and Southern Electricity Networks (SSEN) and targets stakeholders in the energy sector including regulators and customers. Their website reflects a professional and consistent brand image, emphasizing network safety, smart technology, and environmental sustainability. Technically, the website employs modern tools such as Google Tag Manager, Microsoft Azure Application Insights, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is built on a CMS platform likely Episerver, hosted on Microsoft Azure, and demonstrates good performance, mobile optimization, and accessibility features. From a security perspective, the site enforces HTTPS, implements multiple security headers, and integrates cookie consent mechanisms, reflecting a strong security posture. However, explicit security policies and incident response information are not prominently available, suggesting room for improvement in transparency and preparedness. Overall, the website is trustworthy and professional with no signs of blocking or WAF interference. The WHOIS data is unavailable due to the domain being a subdomain, which is consistent with the organizational structure. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and enhancing visibility of data protection contacts to further strengthen trust and compliance.

S

SSE Renewables

sserenewables.com

54

SSE Renewables is a large, established renewable energy company operating as part of the FTSE-100 SSE plc. The company focuses on the operation, development, and construction of renewable energy assets including offshore and onshore wind, solar, battery storage, and hydro power. Their website reflects a strong commitment to sustainability, community engagement, and career development, targeting investors, local communities, and job seekers. Technically, the website is built on the Umbraco CMS platform, uses modern web technologies, and is optimized for mobile and accessibility. The presence of cookie consent mechanisms and comprehensive privacy policies indicates good privacy compliance. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but the absence of security headers and explicit incident response policies suggests room for improvement. The WHOIS data is unavailable or inconsistent, which raises questions about domain registration legitimacy and warrants further investigation. Overall, the website is professional, trustworthy, and content-rich, supporting SSE Renewables' market position as a leading energy company in renewables.

ScottishPower Renewables operates as a key part of the ScottishPower group under the Iberdrola umbrella, focusing on renewable energy development, particularly wind energy in the UK. The website reflects a mature business with a strong market position and community engagement initiatives. Technically, the site is built on the Liferay CMS platform with modern web technologies including React and integrates third-party services such as Google Tag Manager and Osano for consent management. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are absent. The absence of WHOIS registration data is a notable gap in transparency but does not detract significantly from the overall legitimacy given the corporate affiliations and professional presentation. Overall, the site is well-structured, accessible, and provides relevant information to its target audience including landowners, suppliers, and the general public interested in renewable energy.

O

Ocean Winds

oceanwinds.com

75

Ocean Winds is a well-established international company specializing in offshore wind energy, jointly owned by EDP Renewables and ENGIE. The company develops, finances, builds, and operates offshore wind farms worldwide, positioning itself as a global leader in the renewable energy sector. Their website reflects a mature digital presence with comprehensive content, professional design, and clear business focus. Technically, the site is built on WordPress with Elementor, leveraging modern SEO and analytics tools, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS, GDPR-compliant cookie consent, and use of reCAPTCHA, though additional security headers and policies could enhance protection. Overall, the domain age and WHOIS data support the legitimacy and credibility of the business.

E

ESB

esb.ie

72

ESB is a large, established Irish utility company operating across the electricity market including generation, transmission, distribution, and supply. The company also has diversified operations in telecommunications and electric vehicle charging infrastructure. The website reflects a mature digital presence with comprehensive corporate governance, sustainability, and investor relations content, targeting a broad audience including consumers, businesses, and investors. The business model is vertically integrated, supporting a strong market position in Ireland and internationally through subsidiaries.

R

RWE

rwe.com

69

RWE is a major global energy company with a strong focus on renewable energy and sustainability. With over 125 years of history, it has transformed into a leading supplier of clean, safe, and affordable electricity. The company operates a diversified portfolio including renewable energies such as solar, wind (onshore and offshore), hydrogen, battery storage, and bioenergy, alongside conventional energy sources. RWE also invests in energy transition projects and provides related services including energy trading and procurement portals. The website reflects a mature corporate presence with comprehensive information for investors, partners, and job seekers. Technically, the website employs modern web technologies including jQuery, UIkit framework, Google Tag Manager, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with fast loading times and structured navigation. The CMS appears to be Progress Sitefinity, supporting a robust content management environment. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements standard security headers. Consent management and privacy policies are comprehensive and GDPR compliant. However, explicit incident response contacts and vulnerability disclosure policies are not publicly visible, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and well-maintained, supporting RWE's market position as a leading energy supplier. The absence of WHOIS data for the domain is unusual but does not detract significantly from the site's credibility given the corporate branding and content quality.

N

NOF

nof.co.uk

72

NOF is a UK-based business development membership organization focused on facilitating valuable connections within the global energy sector. The company positions itself as the strongest energy sector network in the UK, offering services such as business development support, industry introductions, events, and access to an offshore wind projects database. The website is professionally designed, mobile-optimized, and provides comprehensive information about its services and membership benefits. Contact details and social media presence reinforce its credibility. Technically, the website leverages modern technologies including Umbraco CMS, Bootstrap, Google Analytics, HubSpot, and Google reCAPTCHA for security. The site implements HTTPS with a Content Security Policy header, indicating a good security posture. However, additional security headers could enhance protection. The WHOIS data is unavailable due to domain registration constraints, but the website content and contact information strongly indicate a legitimate UK-based business. Security-wise, the site shows good practices such as secure forms with CAPTCHA and no exposed sensitive data. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. No vulnerabilities or suspicious domains were detected. Overall, the site is safe, professional, and trustworthy with a moderate to high security posture. The main risk is the lack of WHOIS data due to domain registration rules, which limits domain trust verification but does not indicate malicious intent. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to further improve trust and compliance.

B

Bebat, Fost Plus en Recupel

sorteerveilig.be

56

The website www.sorteerveilig.be is a collaborative public awareness campaign by Bebat, Fost Plus, and Recupel, focusing on educating the Belgian public about the safe and correct recycling of batteries and electronic devices. The campaign aims to reduce fire hazards and improve recycling efficiency by encouraging proper sorting and disposal practices. The site features educational content, including embedded Vimeo videos, and links to partner organizations' official websites. Technically, the site employs modern web technologies such as Google Tag Manager for analytics and Usercentrics for cookie consent management, ensuring compliance with privacy regulations. The site is mobile-optimized, accessible, and well-structured, providing a positive user experience. Security-wise, the site uses HTTPS and consent management but lacks explicit security headers and published security policies. WHOIS data is restricted due to DNS Belgium policies, but the domain's association with reputable organizations and consistent branding supports its legitimacy. Overall, the site presents a trustworthy and professional digital presence aligned with its public service mission.

F

Fost Plus

bettersorting.be

58

Better Sorting is a professionally maintained website operated by Fost Plus, a Belgian non-profit organization dedicated to organizing the collection and recycling of household packaging waste. The site provides comprehensive sorting guides, recycling process information, a mobile app, and educational blog content targeted at Belgian residents interested in sustainable waste management. The website is well-branded, consistent, and offers multilingual support, enhancing accessibility and user engagement. Technically, the website is built on Drupal CMS with modern front-end frameworks like Bootstrap and FontAwesome. It employs best practices such as lazy loading images and consent management via Usercentrics, alongside analytics tools like Google Tag Manager and Facebook Pixel. The site is mobile-optimized and accessible, with good SEO and performance characteristics. From a security perspective, the site uses HTTPS with good SSL configuration and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and publicly available security policies or incident response contacts. The WHOIS data is restricted, showing a 'NOT ALLOWED' status, which is common for .be domains and does not indicate malicious intent. Overall, the domain registration appears consistent with the business purpose. The overall risk assessment is low, with strong trust indicators and no suspicious content or links. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and compliance.

F

Fost Plus

trionsmieux.be

52

Fost Plus operates the website www.trionsmieux.be as a key platform for educating Belgian residents on proper waste sorting and recycling practices. The organization holds a leading position in Belgium's environmental sustainability sector, focusing on household packaging recycling. The website offers comprehensive content including sorting guides, recycling processes, a mobile app, and a contact point for overpackaging complaints. Technically, the site is built on Drupal CMS with modern frameworks like Bootstrap and integrates tracking and consent management tools such as Google Tag Manager and Usercentrics. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though additional security headers could enhance protection. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site reflects a professional, trustworthy, and user-friendly resource aligned with Fost Plus's mission.

PILA MARTINICE s.r.o., operating under the brand MARTINICE GROUP, is a Czech company specializing in turnkey wooden buildings including family houses, halls, roofs, and photovoltaic installations. With over 20 years of experience since 1997, the company positions itself as a reliable regional manufacturer and construction service provider offering high precision and a 25-year warranty on their wooden construction systems. Their target audience includes individuals and businesses seeking quality wooden buildings with modern technology and flexible project options. Technically, the website is built on a custom CMS (IPO CMS) and uses modern JavaScript libraries such as jQuery, Google Tag Manager, Facebook Pixel, and Matomo for analytics. The site is mobile-optimized and employs HTTPS with reCAPTCHA for form security. However, it lacks some security headers and a published privacy policy, which are areas for improvement. From a security perspective, the site demonstrates good practices like HTTPS enforcement and cookie consent mechanisms but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain is a notable concern, impacting the overall trustworthiness assessment. Overall, the website is professional, content-rich, and trustworthy from a business perspective but would benefit from enhanced transparency in privacy and security policies and improved domain registration visibility.

M

MINUTACZ s.r.o.

minutacz.cz

46

MINUTACZ s.r.o. operates as an authorized distributor and retailer of Swiss watch brands TISSOT and BALL within the Czech Republic. The company has a well-established market presence since 2010, offering official products, service locations, and brand information targeted at consumers seeking quality Swiss watches. The website is professionally designed using WordPress CMS, incorporating SEO and GDPR compliance plugins to enhance digital maturity and user experience. The site is optimized for mobile devices and provides clear navigation and contact information, reinforcing trust and credibility. From a technical perspective, the website employs modern web technologies including Google Analytics and Tag Manager for user tracking, Yoast SEO for search optimization, and Slider Revolution for visual content. The site uses HTTPS with good SSL configuration, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a retail website. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, reflecting adherence to GDPR requirements. However, the absence of explicit security policies or incident response contacts suggests room for improvement in transparency and preparedness. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness. Strategically, MINUTACZ should focus on enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure channel to strengthen its security culture and compliance posture. These steps will further solidify customer trust and reduce risk exposure in the evolving digital landscape.

C

Úvod | CIVOP - bezpečnost práce (BOZP) pro firmy

civop.cz

55

The website civop.cz represents a small business specializing in occupational safety (BOZP) services targeted at companies in the Czech Republic. The site is built on WordPress using the GeneratePress theme and incorporates Google Tag Manager for analytics and marketing purposes. The content is professional and relevant to its business domain, focusing on safety consulting and compliance services. Technical infrastructure appears standard for a small business website with moderate performance and good mobile responsiveness. Security posture is basic, with no advanced security headers detected and no visible privacy or cookie policies, indicating room for improvement in compliance and security transparency. The absence of WHOIS data limits the ability to fully verify domain legitimacy, which slightly reduces overall trustworthiness. Strategic recommendations include enhancing security headers, publishing privacy and cookie policies, and verifying domain registration details to improve business credibility and compliance.

P

Planeo

planeo.cz

68

Planeo.cz is a large Czech retail and e-commerce platform specializing in electronics, garden, sport, and auto-moto products with over 100 physical stores. The website presents a professional and user-friendly interface with comprehensive privacy and cookie policies compliant with GDPR. The technical infrastructure leverages modern analytics and advertising technologies including Google Tag Manager, Cookiebot, Exponea, and multiple ad networks, indicating a mature digital marketing strategy. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers are not confirmed in the provided data. The absence of WHOIS data due to privacy protection slightly reduces trust but does not detract from the overall legitimacy of the business. Strategic recommendations include enhancing security headers and ensuring all forms are secured against CSRF and input vulnerabilities.

Legendary Cards is an e-commerce platform operated by eSports s.r.o., specializing in collectible sports cards and memorabilia primarily targeting Czech sports enthusiasts and collectors. The website offers a range of products including limited edition cards, sports figures, and related accessories, supported by promotional content and news updates. The business operates with a clear focus on the Czech market and maintains an active social media presence to engage its audience. Technically, the website employs modern web technologies including jQuery, Google Analytics, Google Tag Manager, and the Nette Framework. The site is mobile-optimized with a responsive design and uses cookie consent mechanisms to comply with GDPR. Performance is moderate with good navigation and content structure, though some improvements in accessibility and SEO could be made. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent with granular user controls. However, it lacks explicit security headers and a published security policy or incident response contact. No critical vulnerabilities or exposed sensitive data were detected, indicating a generally sound security posture. Overall, the website is trustworthy and professionally maintained, with legitimate domain registration consistent with the business identity. Strategic improvements in security headers and incident response transparency would enhance the security posture further.

E

EnVys, a.s.

envys.cz

66

EnVys, a.s. operates a community energy platform in the Czech Republic, offering long-term stable electricity prices sourced directly from local power plants. The company targets citizens, firms, and municipalities, emphasizing sustainability and compliance with ESG and Green Deal requirements. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Blazor, jQuery, Google Analytics, Microsoft Clarity, and a chatbot for enhanced user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. WHOIS data is unavailable due to CZ NIC privacy policies, but the presence of official documents and clear contact information supports legitimacy. Overall, the site reflects a mature digital presence suitable for a medium-sized energy company.

C

Clearly

clearly.cz

68

Clearly.cz is a newly launched e-commerce website specializing in health and wellness products, leveraging the Shopify platform for its online retail operations. The site targets general consumers interested in supplements and wellness, positioning itself as a clear and trustworthy brand dedicated to health. The business model is direct-to-consumer online sales with regional partner domains supporting multiple European markets. The website content is professionally designed, well-structured, and optimized for SEO and mobile devices, providing a good user experience.

M

Ministerstvo vnitra České republiky

prevencekriminality.cz

52

The website prevencekriminality.cz is an official government portal operated by the Ministry of Interior of the Czech Republic, focused on crime prevention strategies and public safety. It serves as a comprehensive resource for citizens, public authorities, and professionals involved in crime prevention, offering news, projects, events, and educational materials. The site maintains a strong market position as the authoritative source for crime prevention information in the Czech Republic. Technically, the site is built on WordPress using modern plugins such as Oxygen Builder, Yoast SEO, and GDPR compliance tools like Complianz. It leverages Cloudflare for DNS and CDN services, ensuring good performance and security. The site is mobile-optimized and includes accessibility features, though some improvements could be made. SEO practices are well implemented with structured data and meta tags. From a security perspective, the site enforces HTTPS and uses Cloudflare services, with cookie consent management in place. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers and a dedicated security policy page are absent, which could be enhanced. Incident response and vulnerability disclosure mechanisms are not publicly documented. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively balances user experience with security and privacy considerations, making it a reliable resource for its audience.

P

PixelBrothers s.r.o.

pixelbrothers.cz

50

PixelBrothers s.r.o. is a Prague-based digital agency specializing in custom web design, e-commerce platforms, and corporate systems development. The company offers a broad range of services including SEO, PPC marketing, programming, and mobile app development, targeting businesses seeking tailored digital solutions. Their market position is strong within the Czech Republic, supported by a portfolio of reputable clients and positive testimonials. Technically, the website is built on modern frameworks such as Bootstrap and PrestaShop, with integrations for analytics and live chat, demonstrating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and consent mechanisms in place, though improvements are recommended in security headers and explicit privacy documentation. Overall, the website is professional, user-friendly, and trustworthy, though the absence of WHOIS data slightly impacts domain trustworthiness. Strategic recommendations include enhancing security policies, publishing comprehensive privacy and terms documents, and verifying domain registration details.

S

Sedláček s.r.o.

sedlacek-karcher.cz

50

Sedláček s.r.o. operates the website www.sedlacek-karcher.cz as an authorized reseller and service provider of cleaning and hygiene systems, prominently featuring brands such as Kärcher, TORK, and Kimberly-Clark. The company has a long-standing presence since 1994, targeting both business and consumer markets with sales, service, and rental offerings. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience. Technically, the site employs modern tracking and analytics tools including Google Tag Manager, Hotjar, and Facebook Pixel, alongside security measures like HTTPS and Google reCAPTCHA for form protection. However, the absence of explicit privacy and cookie policy pages and lack of WHOIS domain registration data introduce some trust and compliance concerns. Overall, the site demonstrates a moderate security posture with room for improvement in transparency and security headers.