Security Directory

E

Emmaus Reisen

emmaus-reisen.de

47

Emmaus Reisen is a specialized travel agency based in Germany focusing on group, cultural, and pilgrim travel experiences. The company leverages extensive expertise and established contacts in various cities and countries to offer curated travel packages. Their market position is that of a niche provider catering to pilgrims and culture enthusiasts, with a business model centered on organizing and managing group tours including bus, flight, and river cruise options. The website content is professionally presented in German and targets a mature audience interested in spiritual and cultural journeys. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and integrates modern analytics tools such as Google Analytics via Google Tag Manager and Piwik (Matomo). The site is mobile-optimized with good SEO practices and moderate performance. However, there is room for improvement in accessibility and security hardening, particularly by adding security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS with a good SSL configuration, but lacks visible security headers and does not provide public incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Contact information is clearly displayed, enhancing business credibility. Overall, the website presents a trustworthy and professional image with a solid foundation but could benefit from enhanced security practices and improved privacy compliance to better align with GDPR and modern security standards.

P

Peli

peli.com

76

Peli is a well-established manufacturer and retailer specializing in protective cases, torches, and professional gear, with a strong presence in the European market supported by local manufacturing and distribution centers. The website reflects a mature digital infrastructure with modern technologies such as Bootstrap, Google Fonts, and advanced cookie consent management, indicating a commitment to user experience and privacy compliance. Security posture is solid with HTTPS enforcement and domain transfer protections, though DNSSEC is not enabled and explicit security policies are not published. The site uses multiple analytics and marketing tools, including Microsoft Clarity and HubSpot, with extensive user tracking balanced by a comprehensive cookie consent mechanism. Overall, the website is professional, trustworthy, and aligned with the business's market position and history.

Seek Thermal operates an e-commerce website offering affordable infrared thermal imaging cameras targeting consumers and businesses interested in thermal imaging technology. The website is professionally designed with good content quality and consistent branding, focusing on product sales and applications in automotive and OEM markets. The technical infrastructure is based on the Weebly/EDITMYSITE platform, utilizing common web technologies and multiple third-party marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and ZoomInfo. The site is mobile optimized and has good SEO practices but lacks advanced accessibility features. Security posture is moderate with HTTPS enabled but missing key security headers and no visible security or privacy policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness. Overall, the website is functional and professional but requires improvements in privacy compliance, security best practices, and transparency to enhance trust and compliance.

S

Schuberth

schuberth.com

58

Schuberth is a well-established manufacturer specializing in high-quality helmets for motorsports, industrial safety, and military applications. The company targets consumers and professionals requiring protective headgear, operating primarily in the manufacturing sector with a medium-sized business footprint based in Germany. The website uses modern web technologies including Nuxt.js and integrates marketing and bot protection tools such as Google reCAPTCHA and Facebook Pixel. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. The domain is long-standing and registered with a reputable hosting provider, indicating legitimacy. Overall, the website is professional but could improve in privacy compliance and security best practices.

P

PACCAR Inc

paccar.com

71

PACCAR Inc is a leading global manufacturer of high-quality commercial trucks and related financial services. The company operates multiple well-known brands including Kenworth, Peterbilt, and DAF, serving a broad transportation market. Their website reflects a mature digital presence with comprehensive business, investor, and product information targeting industry professionals and investors. Technically, the site uses modern frameworks such as Foundation and Umbraco CMS, with integration of Google Analytics and Tag Manager for analytics and marketing. The site is mobile-optimized and well-structured, though performance is moderate. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies and advanced security headers. Overall, PACCAR's website demonstrates strong business credibility and trustworthy digital infrastructure.

I

Icam

icam.fr

55

Icam is a well-established French engineering school with multiple campuses across France and internationally. It offers a broad range of engineering education programs including initial engineering cycles, professional training, and specialized master's degrees. The institution maintains strong partnerships with industry and international universities, enhancing its market position and educational quality. Technically, the website is built on WordPress with modern analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS and consent mechanisms in place, though some HTTP security headers could be improved. Overall, the domain appears legitimate despite lack of public WHOIS data, consistent with privacy norms for .fr domains. The website is professional, accessible, and compliant with GDPR, supporting a high trust level.

M

mPulse

mpulsemobile.com

72

mPulse is a well-established digital health engagement solutions provider founded in 1998, specializing in consumer-centric health experience and insights products. The company targets healthcare organizations such as health plans, providers, and related stakeholders, offering a comprehensive suite of products including predictive analytics, omnichannel engagement, health portals, and a HITRUST-certified platform. Their market position is strong as a leader in healthcare technology with a focus on improving health outcomes through innovative digital solutions. Technically, the website is built on WordPress with Elementor and integrates modern analytics and marketing tools such as HubSpot and Google Tag Manager. The site demonstrates excellent performance, mobile optimization, and SEO practices. Security-wise, the platform benefits from HITRUST certification and enforces HTTPS, although some security headers could be enhanced. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the website and business exhibit high professionalism, trustworthiness, and maturity, supported by consistent WHOIS data and domain longevity.

M

mPulse

mpulse.com

71

mPulse is a healthcare technology company specializing in digital health engagement solutions that create consumer-centric journeys to improve health outcomes. The company offers a suite of products including predictive analytics, omnichannel engagement, health portals, content management, and a HITRUST-certified Health Experience and Insights Platform. Their target audience includes healthcare organizations, health plans, and providers. The website demonstrates a strong market position with professional branding and comprehensive product offerings. Technically, the website is built on WordPress using Elementor and integrates modern technologies such as jQuery, Swiper.js, and HubSpot analytics. Hosting appears to be on Amazon AWS infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site uses HTTPS and domain registration protections but lacks visible security headers and published security policies or incident response contacts. The mention of HITRUST certification indicates a commitment to healthcare security standards. No vulnerabilities or suspicious patterns were detected in the analysis. Overall, the website is professional, trustworthy, and well-positioned in the healthcare technology market. However, improvements in privacy compliance documentation, security header implementation, and vulnerability disclosure would enhance the security posture and user trust.

P

Počítačové poradenství a zpravodajství

pcporadenstvi.cz

45

The website www.pcporadenstvi.cz is a Czech-language IT advice and news portal offering articles, forums, software downloads, and multimedia galleries. It targets Czech-speaking IT enthusiasts and small business users seeking computer-related guidance. The site operates on Drupal CMS and integrates common advertising and analytics tools such as Google Analytics, Google Tag Manager, and Google Adsense. While the content is regularly updated and relevant, the site lacks explicit privacy and terms of service pages, and no official company contact information is provided on the main pages. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. Technically, the site shows moderate performance and basic mobile optimization but lacks visible security headers and advanced form protections. Overall, the site appears functional and moderately professional but would benefit from enhanced security and compliance measures.

W

WebMD Ignite

mercuryhealthcare.com

65

WebMD Ignite is a healthcare-focused digital marketing and engagement platform launched in 2023 as a part of the WebMD brand. It offers a suite of solutions including marketing, platform, analytics, clinical, and content services aimed at healthcare organizations such as health systems, plans, and associations. The website is professionally designed with clear navigation and mobile optimization, reflecting a mature digital presence. The technical infrastructure leverages Drupal CMS, Cloudflare DNS, and integrates multiple analytics and tracking services including Google Analytics, 6sense, and ContentSquare. Security posture is good with HTTPS enabled and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and consistency. The site lacks explicit privacy and terms of service pages, which impacts privacy compliance scoring.

C

CV-Library Ltd

contractorjobs.co.uk

60

Contractor Jobs is a UK-based online job board specializing in contract employment opportunities across various industries. Powered by CV-Library Ltd, it offers job seekers the ability to search thousands of contract roles, register CVs, and receive job alerts. The platform also supports recruiters with access to a CV database for hiring contractors. The website demonstrates a professional and user-friendly design with good mobile optimization and clear navigation, targeting contractors and recruiters within the UK market. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, and Bing UET for analytics and tracking, alongside autocomplete and lazy loading scripts to enhance user experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though it lacks explicit security policies or incident response contacts. The WHOIS lookup failed due to a domain registration error, but the website's content and branding strongly indicate legitimacy and a well-established presence. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy platform for its target audience.

C

CV-Library Ltd

jobs-graduate.co.uk

60

JobsGraduate is a UK-focused graduate job search platform operated under the CV-Library Ltd brand. It offers a comprehensive service for graduates to search thousands of jobs, register CVs, and receive job alerts. The platform targets recent graduates and entry-level job seekers across various academic disciplines and industries within the UK. The website is professionally designed with good navigation and mobile optimization, providing a positive user experience. Technically, it employs modern JavaScript libraries, Google Analytics, Bing UET, and custom clickstream analytics to track user behavior and optimize marketing efforts. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and detailed security policies. The WHOIS data for the domain is unavailable due to domain naming rules, but the strong association with CV-Library Ltd supports legitimacy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

C

CV-Library Ltd

marketing-jobs.co.uk

60

Marketing Jobs is a UK-focused online job board specializing in marketing sector roles, powered by CV-Library Ltd. The platform offers job search, alerts, CV registration, and recruiter services, targeting marketing professionals and recruiters. The website is professionally designed with good mobile optimization and accessibility, providing a user-friendly experience. Technically, it employs modern JavaScript libraries, Google Analytics, Bing UET, and clickstream analytics, with cookie consent mechanisms in place. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit security policies. WHOIS data for the domain is unavailable due to domain naming rules, indicating the domain is likely a subdomain or alias, which slightly impacts trust but does not detract from the site's legitimacy given its association with CV-Library Ltd.

C

CV-Library Ltd

sales-jobs.co.uk

61

Sales Jobs is a UK-focused online job board specializing in sales roles across multiple sectors. The platform offers job search capabilities, CV registration, job alerts, and recruitment advertising services, targeting both job seekers and recruiters within the sales industry. The website is powered by CV-Library Ltd, a recognized recruitment platform, which enhances its market credibility and reach. The site demonstrates a professional and consistent brand presence with a clear focus on the UK sales job market. From a technical perspective, the website employs modern web technologies including Google Analytics, Bing UET, and Clickstream Analytics for user tracking and performance monitoring. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. The use of HTTPS and cookie consent mechanisms indicates a commitment to user privacy and security, although explicit security headers and incident response policies are not publicly documented. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of published security policies and vulnerability disclosure mechanisms suggests room for improvement in transparency and incident readiness. The WHOIS lookup for the domain 'www.sales-jobs.co.uk' failed due to domain naming rules, indicating the queried domain is a subdomain rather than a registered domain. This does not detract from the site's legitimacy, as the main domain 'sales-jobs.co.uk' is presumably registered and operated by CV-Library Ltd. Overall, the website presents a trustworthy and professional platform for sales job seekers and recruiters in the UK, with a mature technical infrastructure and good privacy compliance. Strategic enhancements in security transparency and direct contact information could further strengthen user trust and compliance posture.

C

CV-Library Ltd

it-jobs.co.uk

60

IT Jobs (www.it-jobs.co.uk) is a UK-focused online job board specializing in IT and technology roles, operated by CV-Library Ltd. The platform offers job seekers the ability to search and apply for thousands of IT jobs across the UK, while providing recruiters with advertising and CV database access services. The website is professionally designed with good content quality, clear navigation, and mobile optimization, targeting IT professionals and employers in the UK market. Technically, the site uses modern JavaScript libraries, Google Analytics, Bing UET, and Google Tag Manager for analytics and marketing, with asynchronous script loading to optimize performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are missing. WHOIS data is unavailable due to domain registration query issues, but the domain and website appear legitimate and consistent with the business claims. Overall, the site demonstrates a mature digital presence with moderate tracking and good privacy compliance.

C

CV-Library Ltd

scotland-jobs.co.uk

60

Scotland Jobs is an online job board dedicated to the Scottish employment market, offering job search, CV registration, job alerts, and recruitment advertising services. The website is branded and powered by CV-Library Ltd, a recognized UK recruitment platform. The site targets job seekers and recruiters in Scotland, positioning itself as a fast-growing regional job board. Technically, the site employs modern web technologies including Google Analytics, Bing Ads tracking, and jQuery-based autocomplete features. It is mobile-optimized and accessible, with a professional design and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response details are not publicly disclosed. WHOIS data for the domain is unavailable due to a registration error indicating the domain name is invalid under Nominet rules, suggesting the site may be operating on a subdomain or alias. Overall, the site is trustworthy and professional but would benefit from enhanced transparency on security and incident response.

C

CV-Library Ltd

engineeringjobs.co.uk

62

EngineeringJobs.co.uk is a UK-focused online job board specializing in engineering roles across various disciplines and seniority levels. It provides job search functionality, CV registration, job alerts, and recruitment services targeting engineering professionals and recruiters. The platform is operated by CV-Library Ltd, a recognized player in the UK recruitment market. The website is professionally designed with consistent branding and good content relevance, targeting engineering job seekers and recruiters in the UK market. Technically, the site uses modern JavaScript libraries, Google Analytics, and Bing tracking, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though security headers and explicit security policies are absent. WHOIS data for the domain is unavailable due to domain naming restrictions, indicating the domain is likely a subdomain or alias rather than a standalone registered domain, which slightly reduces trust. Overall, the site is a credible and functional job board with moderate risk due to domain registration inconsistencies.

C

CV-Library Ltd

education-jobs.co.uk

61

Education Jobs is a specialized UK recruitment platform focused on education sector employment opportunities for teachers, lecturers, and administrative staff. Operated by CV-Library Ltd, it offers job search, CV upload, job alerts, and recruitment advertising services. The platform targets education professionals and recruiters, positioning itself as a niche job board within the UK education recruitment market. The website features a professional design, clear navigation, and mobile optimization, supporting a positive user experience.

C

CV-Library Ltd

britishjobs.co.uk

60

British Jobs is an online job search platform focused on the UK market, offering job listings, CV registration, job alerts, and recruitment advertising services. The site is powered by CV-Library Ltd, a recognized recruitment service provider. The platform targets job seekers and recruiters, providing a streamlined user experience for job searching and application. Technically, the website employs modern web technologies including Google Analytics, Bing Ads, and Criteo for tracking and marketing, with good mobile optimization and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are lacking. The WHOIS data for the domain is unavailable due to domain naming rules violation, which slightly impacts trust but does not detract from the professional presentation and functionality of the site. Overall, British Jobs presents a credible and functional job search service with room for improvement in security transparency and WHOIS consistency.

D

DocTract

doctract.com

66

DocTract is a technology company specializing in AI-driven policy management software designed to streamline policy creation, approval, and compliance tracking for regulated industries. Founded in 2018 and based in the United States, the company targets business professionals, compliance teams, HR, and executives seeking efficient governance solutions. The website demonstrates a professional and consistent brand presence with positive customer testimonials and a strong focus on user experience. Technically, the website is built on the Webflow platform and integrates multiple modern analytics and marketing tools such as Google Analytics, Microsoft UET, CrazyEgg, and SalesLoft. It employs Cookiebot for cookie consent management and uses HTTPS with good security practices, including CAPTCHA implementations. The site is mobile-optimized and SEO-friendly, though accessibility features could be enhanced. From a security perspective, the site shows good posture with HTTPS enforcement and cookie consent mechanisms. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. The missing WHOIS registration data is a concern for domain legitimacy and should be investigated further. Overall, DocTract presents a credible and professional online presence with solid technical infrastructure but should address privacy policy visibility and domain registration transparency to strengthen trust and compliance.

Valley Health is a large, not-for-profit healthcare system serving communities in Virginia and West Virginia. The organization provides a comprehensive range of healthcare services including hospitals, urgent care, physician practices, and specialty care such as cancer and heart services. The website reflects a strong regional market position with a patient-first approach and community engagement. Technically, the website is built on Scorpion CMS with modern JavaScript libraries and integrates Google Tag Manager and AudioEye for accessibility compliance. The site is mobile optimized and well-structured with clear navigation and rich content. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though security headers are not explicitly detected and incident response/contact security policies are not published. Privacy compliance is partially addressed with a privacy policy present but lacking a cookie consent mechanism. WHOIS data is unavailable, which limits domain legitimacy verification, but the website content and branding strongly indicate a legitimate healthcare provider. Overall, the site is professional, trustworthy, and accessible, with room for improvement in security headers and privacy compliance.

T

Thomas Jefferson University

jeffersonrams.com

67

Thomas Jefferson University operates an official athletics website serving as the primary digital platform for its NCAA Division II sports programs. The site provides comprehensive sports-related content including schedules, rosters, news, and community engagement resources targeted at students, athletes, and fans. The university positions itself as a competitive participant within the Central Atlantic Collegiate Conference (CACC), leveraging digital tools to enhance fan and community interaction. Technically, the website is built on the Sidearm Sports platform, utilizing a mix of modern and legacy web technologies such as Google Analytics, Google Tag Manager, jQuery, and Knockout.js. Hosting and content delivery are managed via Cloudfront CDN and Rackspace DNS services, ensuring moderate performance and good mobile optimization. Accessibility features and SEO practices are adequately implemented, contributing to a positive user experience. From a security perspective, the site benefits from HTTPS encryption and domain transfer protections but lacks advanced DNS security measures like DNSSEC and important HTTP security headers. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism or GDPR-specific disclosures. No incident response or vulnerability disclosure information is publicly available, indicating room for maturity in security governance. Overall, the website is trustworthy and professionally maintained, with a solid foundation for athletics content delivery. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance the site's security posture and regulatory adherence.

M

MetroNews Television

wvmetronewstv.com

68

MetroNews Television is a media streaming platform dedicated to providing comprehensive news, talk, and sports coverage for West Virginia. It offers a variety of programming including live and archived shows, sports broadcasts, and exclusive interviews, positioning itself as the only true statewide medium for the Mountain State. The platform targets West Virginia residents and sports enthusiasts, delivering content accessible across multiple devices without requiring a traditional TV provider. Technically, the website leverages modern web technologies such as React, Google Analytics 4, Google Tag Manager, and Google reCAPTCHA Enterprise for security and analytics. It is hosted likely on AWS infrastructure using Cloudfront CDN, ensuring fast performance and excellent mobile optimization. The site includes proper meta tags, SEO elements, and accessibility features, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. While explicit security headers are not fully confirmed, the site demonstrates good security hygiene with CSRF tokens and no exposed sensitive data. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR and related regulations. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and transparency. Overall, MetroNews Television presents a professional and trustworthy media service with strong technical and security foundations. The main risk lies in the lack of publicly available domain registration information, which should be addressed to enhance trust and credibility.

C

Citynet LLC

citynet.net

63

Citynet LLC is a regional technology and telecommunications provider specializing in fiber internet, managed IT services, unified communications, and cybersecurity solutions primarily serving West Virginia and surrounding areas. The company positions itself as a trusted partner offering enterprise-grade technology with a focus on customer support and reliable fiber infrastructure. Their website reflects a mature digital presence built on WordPress with modern design and SEO best practices. The technical infrastructure includes reputable third-party services such as Google Tag Manager and Cloudfront CDN, supporting performance and analytics needs. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities, though explicit security headers and cookie consent mechanisms could be improved. The absence of WHOIS registration data is a notable anomaly that warrants further investigation to confirm domain legitimacy. Overall, Citynet demonstrates a professional and trustworthy online presence aligned with its business objectives.

T

Troov S.A.S

troov.com

60

Troov S.A.S operates a specialized online platform focused on lost and found objects, primarily serving users in France. The website offers services to reference lost and found items, allowing users to post announcements and connect with partner locations to increase the chances of recovering lost belongings. The company was founded in 2018 and maintains a consistent brand presence with clear contact information and active social media channels. Technically, the website employs modern front-end frameworks such as Bootstrap and Vue.js, integrates Google Analytics and Facebook Pixel for tracking, and uses Cloudflare for DNS and likely CDN services. The site is mobile-optimized and provides a good user experience with relevant content and clear navigation. Security-wise, the site uses HTTPS and has a stable domain registration but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

P

PayZen

payzen.eu

61

PayZen is a French payment platform offering a comprehensive suite of payment solutions tailored for e-commerce and remote payment acceptance. Backed by the Lyra Network group, it holds a strong market position in France and internationally, providing services compliant with PCI DSS and 3DS2 protocols. The platform supports multiple payment methods and channels, including online, mobile, payment links, instant transfers, and virtual terminals, targeting merchants and public sector entities. Technically, the website is built on WordPress with modern JavaScript frameworks and integrates Google Tag Manager for analytics. Security posture is strong with HTTPS, PCI DSS certification, and fraud prevention tools, though some security headers could be improved. Privacy compliance is well addressed with a clear GDPR policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

S

Stradim : Promoteur alsacien de programmes immobiliers

stradim.fr

48

Stradim is a French real estate development company specializing in new residential properties such as apartments and houses across multiple French regions. Established in 1990, the company emphasizes eco-responsible construction, local engagement, and offers customizable residences. The website is built on Drupal 7 and integrates modern marketing and consent management tools such as Google Tag Manager and Didomi CMP. While the site is professionally designed and content-rich, it lacks explicit privacy and terms of service pages, and WHOIS data for the domain is unavailable, which slightly impacts trustworthiness. Security posture is good with HTTPS and consent mechanisms but could be improved with additional security headers and updated CMS versions.

S

STUDIO MAX MEDIA SK, s.r.o.

maxmedia.sk

53

STUDIO MAX MEDIA SK, s.r.o. is a small Slovak technology company specializing in comprehensive web solutions, graphic design, and content management services. Founded in 2005, the company has a strong portfolio including localization and management of websites for major automotive brands and public institutions. Their expertise centers around the MODX CMS platform, multimedia production, and integration of data services. The website reflects a professional and consistent brand image with clear navigation and rich content tailored to a broad audience. Technically, the website employs modern web technologies including HTML5, CSS, JavaScript with jQuery, and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate, with asynchronous loading of scripts enhancing user experience. However, no explicit hosting provider or advanced frameworks beyond MODX CMS are identified. From a security perspective, the site uses HTTPS (assumed from domain and modern standards though not explicitly confirmed in data), but lacks visible security headers and published security or privacy policies. No forms or sensitive data collection points are present, reducing immediate risk. The absence of privacy and cookie policies is a compliance gap, especially under GDPR. No vulnerability disclosures or incident response contacts are provided. Overall, the website is trustworthy and professional with a solid business foundation. Strategic improvements in privacy compliance, security headers, and transparency would enhance the security posture and regulatory adherence, supporting long-term business credibility.

A

AU-MEX s.r.o.

osmo.cz

57

The website www.osmo.cz represents AU-MEX s.r.o., a company specializing in natural wood coatings and protective products under the OSMO brand. The business targets both consumers and professionals interested in natural oils and waxes for wood protection, offering a range of products including interior and exterior wood paints, maintenance items, and accessories. The site supports e-commerce functions and provides educational content such as blogs and usage calculators. Technically, the website employs established frontend technologies like Bootstrap, jQuery, and integrates tracking tools such as Google Analytics and Facebook SDK. It is mobile-optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks visible security headers and explicit privacy policy documentation, which are areas for improvement. The absence of WHOIS registration data reduces domain trustworthiness, though the website content and business information appear legitimate and consistent. Overall, the site is functional and professional but would benefit from enhanced security and compliance transparency.

V

Vihta-ajanvaraus

vihta.com

61

Vihta-ajanvaraus is a Finnish technology company specializing in cloud-based appointment booking and customer flow management solutions. Their platform enables organizations, particularly in healthcare and small business sectors, to streamline appointment scheduling, reduce cancellations, and manage customer queues efficiently. The company leverages modern web technologies and offers multilingual support with dedicated domains for Finnish, English, and German markets. Technically, the website is built on WordPress with advanced plugins for SEO, analytics, and GDPR compliance, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS registration data raises concerns about domain legitimacy, which should be addressed to enhance trust. Overall, Vihta presents a professional and user-friendly service with solid market positioning in healthcare technology.

S

STACKIT

stackit.cloud

67

STACKIT is a German cloud service provider offering enterprise-grade cloud infrastructure, colocation, and managed solutions with a strong emphasis on data sovereignty and GDPR compliance. The company positions itself as a trusted partner for businesses seeking EU-secure cloud services. The website demonstrates a mature digital presence built on WordPress, integrating modern SEO and privacy tools such as Rank Math and OneTrust. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site reflects a professional and trustworthy cloud service provider with a clear focus on compliance and customer trust.

M

mPulse

healthtrio.com

71

mPulse is a well-established company founded in 1998, specializing in digital health engagement solutions. Their product suite includes predictive analytics, omnichannel engagement, health portals, content management, acquisition and payments, and a HITRUST-certified Health Experience and Insights Platform (HXI). The company targets healthcare organizations such as health plans, providers, and related stakeholders, positioning itself as a leader in the healthcare technology sector. The website demonstrates professional design, clear navigation, and strong branding consistency, reflecting a mature digital presence. Technically, the website is built on WordPress using Elementor as the page builder, with integrations including jQuery, HubSpot Analytics, Google Tag Manager, and Warmly widgets. Hosting appears to be on Amazon AWS infrastructure. The site shows good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and accessibility. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no publicly available security policy, incident response contact, or vulnerability disclosure information, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were found. Overall, the website and business present a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies with consent mechanisms, adding security and incident response information, and implementing security headers to enhance protection and compliance.

Z

Zimbra

zimbra.com

74

Zimbra operates as a provider of cloud-hosted collaboration software and email platforms, emphasizing open standards, low-risk alternatives, and data sovereignty. The company targets enterprises and businesses seeking integrated collaboration solutions with productivity add-ons. The website reflects a medium-sized technology business with a professional online presence, offering downloadable products, documentation, and trial options. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools such as HubSpot, Google Tag Manager, and New Relic for performance monitoring. The site is moderately optimized for mobile and SEO, with a good user experience and clear navigation. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is unavailable, which raises some trust concerns despite the professional appearance. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security documentation.

O

otris software AG

otris.com

66

otris software AG is a German-based technology company specializing in digital solutions for legal, compliance, contract, and data protection management. Founded in 1998, the company offers a comprehensive suite of software products designed to help organizations act legally compliant, minimize risks, and create transparency through digital processes. Their market position is supported by a broad customer base including large corporations and SMEs across various industries. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the website is built on WordPress CMS with modern plugins and performance optimizations such as WP Rocket and Borlabs Cookie for consent management. The tech stack includes JavaScript libraries like jQuery and Slick Carousel, and the site integrates Google Tag Manager and Matomo for analytics. Mobile optimization and SEO practices are good, contributing to a fast and user-friendly experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are not fully detected, and no public security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were found in the analysis. The WHOIS data is consistent with the company’s claims, showing a legitimate and appropriately aged domain. Overall, otris software AG demonstrates a strong business and technical foundation with good security and privacy compliance. Strategic improvements could include publishing a dedicated security policy, enhancing security headers, and providing incident response information to further strengthen trust and compliance.

Trupanion is a leading pet insurance provider specializing in comprehensive medical coverage for dogs and cats across the United States, Canada, and Puerto Rico. The company emphasizes unlimited payouts, direct payment to veterinarians at checkout, and coverage for hereditary and chronic conditions. Their market position is strong, supported by veterinarian endorsements and a large member base. The website is professionally designed, mobile-optimized, and rich in relevant content, providing a seamless user experience with clear navigation and trust signals such as customer testimonials and third-party reviews. Technically, the website employs modern technologies including Bootstrap, jQuery, Google Tag Manager, Optimizely for A/B testing, and Osano for consent management, indicating a mature digital infrastructure. Performance is moderate with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not clearly disclosed. The WHOIS data is unavailable or privacy protected, which reduces transparency regarding domain ownership and registration details. Despite this, the website's content quality, external trust signals, and professional presentation support its legitimacy. Overall, the site demonstrates a strong security and privacy compliance posture with room for improvement in explicit security disclosures and WHOIS transparency.

A

Aflac Medicare Supplement

aflacmedicaresupplement.com

73

The website www.aflacmedicaresupplement.com represents a Medicare Supplement insurance offering underwritten by Tier One Insurance Company, a subsidiary of Aflac Incorporated, and administered by Aetna Life Insurance Company. It targets Medicare beneficiaries seeking supplemental insurance to cover gaps in Original Medicare. The site provides quote request forms, prominently displays contact phone numbers, and uses trusted branding and official Medicare resources. Technically, the site employs modern JavaScript frameworks (Vue.js), integrates multiple analytics and marketing tools, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and secure form handling, though explicit security policies and incident response information are absent. The WHOIS data is notably missing or unavailable, which raises concerns about domain registration legitimacy despite the professional appearance and affiliation with reputable insurance entities. Overall, the site is functional, professional, and trustworthy from a user perspective but requires verification of domain registration to fully confirm legitimacy.

F

Fondation ICAM

fondation-feron-vrau-icam.fr

53

The Fondation Feron-Vrau is a well-established non-profit foundation based in France, dedicated to supporting students of the Icam engineering school through financing honor loans and backing educational and campus development projects. With over 40 years of history, it plays a critical role in fostering solidarity and diversity within the Icam community. The website reflects a professional and consistent brand image, targeting students, alumni, donors, and educational partners. Technically, the site is built on WordPress with modern libraries and analytics tools, showing good digital maturity and mobile optimization. Security posture is strong with HTTPS and consent management, though some security headers and explicit policies could be enhanced. Overall, the foundation's online presence is trustworthy and compliant with GDPR, supporting its mission effectively.

I

Institut des Techniques d'Ingénieur de l'Industrie d'Alsace

itii-alsace.fr

51

ITII Alsace is a specialized educational institute focused on training engineers for the industrial sector in the Alsace region of France. The website offers detailed information on apprenticeship programs for young people under 30, continuing education for salaried employees, and training services for companies. The business model revolves around providing industry-relevant educational services and facilitating apprenticeships. The website is professionally designed using WordPress and Elementor, with good mobile optimization and clear navigation. Technical infrastructure includes modern web technologies and integration with Google Analytics and Tag Manager for analytics and marketing. From a security perspective, the website enforces HTTPS and uses a cookie consent mechanism, but lacks explicit security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain trust verification, but the professional content and social media presence support legitimacy. Privacy and terms of service pages are not clearly found, indicating room for improvement in compliance. Overall, ITII Alsace presents a credible and professional online presence suitable for its educational mission. Strategic recommendations include enhancing security headers, publishing clear privacy and terms policies, and performing regular security audits to maintain compliance and trust.

Ö

Österbottens välfärdsområde

osterbottensvalfard.fi

66

Österbottens välfärdsområde is a regional government welfare organization in Finland providing comprehensive health, social, psychosocial, and emergency services to the Ostrobothnia region. The website serves as a digital portal offering access to various services including digital appointment booking, social welfare guidance, and emergency contacts. The organization is positioned as a key public sector entity with a strong regional presence and a focus on accessible, user-friendly digital services. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, ReadSpeaker for accessibility, and an embedded chatbot for user assistance. The site is well-optimized for mobile and accessibility standards, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and vulnerability disclosure practices. Overall, the domain registration data aligns well with the website's identity, indicating a legitimate and trustworthy entity. Strategic recommendations include enhancing security headers, publishing a security.txt file, and continuous monitoring of third-party scripts to maintain security and compliance.

D

DAF

dafshop.com

54

DAFshop.com is the official online merchandise store for DAF Trucks, a subsidiary of PACCAR. The website offers a range of branded products including clothing, accessories, and miniatures targeted primarily at truck drivers and DAF enthusiasts in the Benelux and European markets. The site is built on Magento 1.9.4.5, integrating various marketing and analytics tools such as Google Analytics, Facebook Pixel, and HubSpot forms, reflecting a mature digital marketing approach. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks some modern security headers and uses an older Magento version which may pose risks if not fully patched. WHOIS data is unavailable, which raises some concerns about domain registration transparency, though the site’s branding and content align with official DAF and PACCAR identities. Overall, the site presents a professional e-commerce platform with good user experience and privacy compliance, but would benefit from technical and security updates to enhance trust and resilience.

D

DAF Components

dafcomponents.com

67

DAF Components is a prominent supplier of powertrain components including engines, axles, and cabs, serving manufacturers of coaches, buses, and industrial vehicles globally. As part of the DAF Trucks group, it benefits from strong brand recognition and a comprehensive service network. The website reflects a professional corporate presence with rich content, multimedia, and clear navigation, targeting industry professionals and partners. Technically, the site employs modern web technologies such as jQuery, Google Tag Manager, and OneTrust for cookie consent, ensuring GDPR compliance and user privacy. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. The lack of WHOIS data is a notable gap but does not detract significantly from the site's legitimacy given the strong brand and external link consistency. Overall, the site is well-structured, compliant, and trustworthy, supporting DAF Components' market position.

D

DAF bodybuilder information

dafbbi.com

69

DAF Bodybuilder Information is a specialized B2B portal providing essential technical and order-specific information for bodybuilders working with DAF trucks. It is part of the PACCAR group, a major player in the transportation industry. The website offers a suite of resources including specification sheets, 3D models, chassis drawings, and bodybuilder guidelines, targeting professional users in the truck manufacturing and modification sector. The site is well-branded, consistent with PACCAR and DAF corporate identity, and provides multilingual support.

D

DAF Used Trucks

dafusedtrucks.com

74

DAF Used Trucks operates as a professional platform offering used trucks with a focus on quality, expert service, and a one-year guarantee. The website targets businesses and fleet operators seeking reliable used vehicles. The platform is well-designed, mobile-optimized, and provides advanced filtering options to assist customers in finding suitable trucks. Technically, the site leverages modern frameworks such as Next.js and React, hosted on Sitecore Cloud infrastructure, and integrates privacy compliance tools like OneTrust and analytics via Google Tag Manager and Google Analytics. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration legitimacy despite the professional appearance and branding consistency of the website.

D

DAF Trucks N.V.

daf.com

69

DAF Trucks N.V. is a prominent European commercial vehicle manufacturer specializing in a comprehensive range of trucks including the DAF Euro 6 XF, CF, and LF series. As a wholly-owned subsidiary of PACCAR Inc., DAF maintains a strong market position with extensive dealer networks and related services such as used trucks sales, bodybuilder information, and component supply. The website reflects a mature digital presence with professional design, clear navigation, and localized market sites for global reach. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and OneTrust for cookie consent management, indicating a commitment to privacy compliance and user experience. The site is mobile-optimized and SEO-friendly, though some improvements in accessibility and security headers could enhance its posture. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies or incident response contacts on the landing page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable or protected, which is common for large enterprises but slightly reduces transparency. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving its target audience effectively. Strategic recommendations include enhancing security headers, publishing security policies, and providing clearer contact information for security incidents.

P

PROBO-NB s.r.o.

probo-nb.cz

53

PROBO-NB s.r.o. operates a specialized e-commerce website focused on providing firefighting and safety equipment primarily to active firefighters and related professionals. The company positions itself as a niche supplier with a broad product range including protective clothing, firefighting tools, and technical devices. The website is professionally designed, mobile-optimized, and offers clear navigation and product information, supporting a positive user experience. Technically, the site leverages a custom e-commerce platform (BSSHOP), integrates Google Analytics and Tag Manager for tracking, and uses modern web technologies including JavaScript and jQuery. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not evident. The absence of WHOIS data limits domain trust verification, but the presence of clear contact information and privacy policies supports business credibility. Overall, the site is functional, secure, and compliant with GDPR, serving a well-defined market segment effectively.

K

KOBIT - THZ

kobit-thz.cz

57

KOBIT - THZ is a traditional Czech manufacturer specializing in the development and production of firefighting technology, including custom firefighting vehicle superstructures and accessories. The company operates as part of the KOBIT Holding group, indicating a stable industrial backing. Their website presents a professional image with clear business descriptions, contact information, and active social media channels. Technically, the site is built on the EasyWeb CMS platform, uses common web technologies such as jQuery and Font Awesome, and integrates Google Analytics and Tag Manager for tracking. However, the absence of WHOIS data and missing privacy and terms of service policies indicate gaps in transparency and compliance. Security posture is moderate with cookie consent implemented but lacking visible security headers and unknown SSL configuration. Overall, the website is functional and trustworthy but would benefit from enhanced security and compliance documentation.

T

TENTino.cz e-shop

tentino.cz

59

TENTino.cz is a Czech Republic based e-commerce business specializing in the manufacture and sale of professional party tents, folding tables, chairs, and tablecloths. The website targets customers seeking durable and versatile event equipment, positioning itself as a specialized provider with a broad selection of sizes and colors. The platform is built on the Shoptet e-commerce system and integrates multiple modern analytics and marketing technologies, including Google Analytics, Microsoft Clarity, and Facebook Pixel, with a consent management mechanism in place. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and contact information are lacking. The absence of publicly available WHOIS data suggests privacy protection, which is typical for small businesses but slightly impacts trust. Overall, the site presents a professional and trustworthy e-commerce presence with room for improvement in transparency and privacy documentation.

A

AutoEder s.r.o.

autoeder.cz

54

AutoEder s.r.o. operates as a reputable automotive dealership specializing in Toyota and Lexus vehicles, offering new and used cars, authorized servicing, financing, leasing, and additional automotive services primarily in the Czech Republic. The company maintains a strong market position with a professional online presence, targeting car buyers and owners seeking premium automotive brands. The website demonstrates a mature digital infrastructure built on WordPress, integrating modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and TikTok Pixel, alongside comprehensive cookie consent management to ensure GDPR compliance. Security measures include HTTPS enforcement, reCAPTCHA on forms, and security headers, contributing to a robust security posture. However, the absence of publicly available WHOIS data and a formal security policy page limits full trust verification. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, supporting the company's credibility and customer engagement.

T

Teijin Aramid

teijinaramid.com

71

Teijin Aramid is a prominent manufacturer specializing in sustainable, high-performance aramid fibers and materials. The company positions itself as a leader in innovation and sustainability within the manufacturing sector, targeting industrial and business clients. The website reflects a professional B2B business model with a focus on sustainability and advanced material solutions. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing tools such as Google Tag Manager, Hotjar, Facebook Pixel, and Piwik PRO, indicating a mature digital infrastructure. The presence of a comprehensive cookie consent mechanism demonstrates attention to privacy compliance, although explicit privacy and terms of service policies were not detected in the provided content. Security posture is strong with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is professional and trustworthy, but the lack of WHOIS data raises some concerns about domain registration transparency.

S

SKYMAN.CZ

skyman.cz

50

SKYMAN.CZ is a specialized e-commerce retailer focused on providing equipment for arboriculture, height work, and rescue climbing. The company offers a range of products including ropes, harnesses, helmets, winches, and distributes Castellari products. With over 20 years of experience, SKYMAN.CZ positions itself as a trusted provider in its niche market, also offering training and courses related to professional rope access and rescue techniques. The website is primarily in Czech with multilingual support, targeting professionals and enthusiasts in the vertical movement and arborist sectors. Technically, the website is built on the Upgates e-commerce platform and integrates modern marketing and analytics tools such as Google Analytics 4, Google Tag Manager, Facebook Pixel, and Ecomail tracking. It also features live chat support via SupportBox and an AI chatbot from Sensbot. The site is mobile-optimized and demonstrates good SEO practices, although explicit privacy and terms of service pages are not found. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers like Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is not uncommon for small specialized retailers. Overall, SKYMAN.CZ presents a professional and trustworthy online presence with a solid technical foundation and marketing integration. To enhance trust and compliance, the company should consider publishing clear privacy and terms of service documents and improving security header implementation.