Security Directory

M

Mediafilm

mediafilm.ca

61

Mediafilm.ca is a well-established French-language cinema content platform serving North American audiences with film reviews, ratings, and news. The website demonstrates a modern technical infrastructure leveraging Nuxt.js, Vue.js, Tailwind CSS, and PrimeVue, hosted with Cloudflare DNS and Google Cloud assets. The site is mobile-optimized and provides a good user experience with relevant and professional content. Security posture is adequate with HTTPS enabled and domain status protections, but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms. No direct contact or incident response information is available, limiting transparency. Overall, the domain is legitimate and consistent with the business profile, but improvements in privacy and security practices are advised.

H

Helbling

helbling-inc.com

49

Helbling is a well-established consultancy firm specializing in a broad range of services including business advisory, technology development, product lifecycle management, and sustainability consulting. The company operates internationally with a strong presence in the USA, Switzerland, and Germany, targeting businesses seeking innovation and sustainable growth solutions. Their website reflects a mature digital presence with comprehensive service descriptions and a professional design. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, enhanced with Google Tag Manager and a Usercentrics consent management platform, indicating a modern and privacy-aware infrastructure. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, though improvements such as enabling DNSSEC and adding security headers could enhance protection. The domain registration data aligns well with the company's profile, showing a long-standing and consistent registration history. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, making it a reliable digital asset for Helbling.

M

MINTvernetzt

mint-vernetzt.de

46

MINTvernetzt is a German non-profit educational platform serving as the umbrella organization for out-of-school MINT education. It is funded by the German Federal Ministry of Education and Research and implemented by a consortium of reputable organizations. The website offers a comprehensive range of services including a community platform, events, news, blog articles, and data analytics to support MINT education, with a special focus on gender-sensitive approaches and diversity. The platform targets educators, MINT professionals, and young women and girls interested in STEM fields. Technically, the website is built on WordPress with Yoast SEO plugin, uses HTTPS, and integrates Matomo analytics. The design is professional, mobile-optimized, and accessible, with clear navigation and rich content. However, explicit privacy and cookie policies are not found, and no direct contact information or security headers are visible, which are areas for improvement. The domain registration data is consistent and supports the legitimacy of the platform.

D

DigiMINTKids

digimintkids.de

56

DigiMINTKids is a focused educational initiative promoting early STEM education for children aged 2 to 10 years in Germany. The project emphasizes creative, playful, and everyday integrated learning approaches, collaborating with partners such as Stiftung Kinder forschen and DigiMINTNetzwerk Amberg-Weiden. The website is professionally designed on the Squarespace platform, providing a clear presentation of its mission and projects, targeting families and educators interested in early childhood STEM development. Technically, the site uses modern web technologies with good mobile optimization and secure HTTPS hosting. However, it lacks explicit privacy and cookie policies, as well as visible contact information, which impacts its privacy compliance score. Security posture is strong with HTTPS and HSTS enabled, but additional security headers and policies could enhance protection. Overall, the site is trustworthy and well-positioned within its niche educational sector but would benefit from improved compliance and contact transparency.

F

Factorial Portugal

factorialhr.pt

64

Factorial Portugal operates as a comprehensive SaaS provider specializing in enterprise management software with a strong focus on human resources, finance, and operational automation. Founded in 2016, the company has established itself as a significant player in the Portuguese and broader Portuguese-speaking markets, serving over 13,000 companies. Their platform integrates AI capabilities to streamline administrative tasks, enabling businesses to focus on team growth and operational efficiency. The website reflects a mature digital presence with modern technologies and consistent branding, targeting businesses seeking centralized management solutions. Technically, the site leverages Next.js and React frameworks, ensuring fast performance and excellent mobile optimization. Security posture is robust with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not publicly disclosed. Overall, the domain registration data aligns well with the business claims, reinforcing legitimacy. Strategic recommendations include enhancing privacy and security disclosures to improve compliance and trust further.

F

FlixBus Global

flixbus.com.br

63

FlixBus Global operates a comprehensive intercity bus and train travel service spanning over 40 countries with more than 8,000 destinations. The company offers affordable, convenient, and sustainable travel options with modern amenities such as free Wi-Fi and power outlets onboard. Their digital presence includes a well-designed website and mobile app facilitating easy booking and real-time trip tracking. The brand is well-established with a large user base exceeding 90 million travelers in 2024, positioning it as a market leader in the transportation sector. Technically, the website leverages modern web technologies including Drupal CMS, cloud-based CDN services, and advanced analytics tools like Snowplow and Datadog RUM. The site is optimized for performance, mobile responsiveness, and accessibility, providing a seamless user experience. Privacy compliance is robust with a comprehensive privacy policy, cookie consent management, and GDPR adherence. From a security perspective, the site enforces HTTPS and employs best practices such as consent management and responsible disclosure mechanisms. However, explicit security headers and a published security policy are not clearly visible, suggesting room for improvement. The WHOIS data for the subdomain is unavailable, which is typical for subdomains but limits transparency. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected. The overall risk assessment is low, with the company maintaining a trustworthy and professional online presence. Strategic recommendations include enhancing security header implementation, publishing detailed security policies, and providing explicit security contact information to further strengthen trust and compliance.

F

Flix SE

flixbus.lv

47

FlixBus Latvia (www.flixbus.lv) is a localized website of Flix SE, a major European transportation company specializing in affordable intercity bus travel across Europe. The site offers extensive route information, booking services, and customer support tailored for Latvian-speaking users. The business model centers on direct ticket sales and travel services, supported by a strong digital presence including mobile apps and social media channels. The company holds a significant market position with a broad network of destinations and daily connections. Technically, the website is built on Drupal CMS, leveraging modern JavaScript frameworks and CDNs for performance and scalability. It incorporates advanced analytics and consent management tools to ensure GDPR compliance and user privacy. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and well-optimized for user experience and accessibility.

F

Flix SE

flixbus.lt

47

Flix SE operates the www.flixbus.lt website, providing affordable bus travel services across Lithuania and Europe. The company offers a large network of routes, mobile app integration, and customer support, positioning itself as a leading transportation provider in the region. The website is professionally designed, multilingual, and optimized for mobile users, reflecting a mature digital presence. Technically, the site uses Drupal CMS, modern JavaScript frameworks, and integrates multiple analytics and advertising tools with a consent management platform, indicating compliance with privacy regulations such as GDPR. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. WHOIS data for the .lt domain is unavailable, likely due to registry restrictions, but the website's branding and infrastructure strongly support legitimacy. Overall, the site is trustworthy, user-friendly, and well-maintained, serving a broad audience of travelers.

F

Flix SE

flixbus.ee

48

Flix SE operates the www.flixbus.ee website, providing affordable bus travel services across Europe with a strong presence in Estonia and neighboring countries. The company offers extensive routes, a user-friendly booking platform, and value-added services such as onboard Wi-Fi and power outlets. The website is professionally designed, mobile-optimized, and supports multiple languages, reflecting a mature digital presence. Technically, the site leverages Drupal CMS, modern JavaScript frameworks, and integrates advanced analytics and consent management tools, ensuring a robust and scalable infrastructure. Security measures include HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, positioning Flix SE as a leading transportation service provider in the European market.

F

Flix México

flix.com.mx

59

Flix México operates as a regional branch of the international FlixBus brand, providing affordable and modern intercity bus transportation services across Mexico and North America. The website is well-positioned in the market with a broad route network, mobile app integration, and live tracking features, targeting travelers seeking convenient and economical bus travel. The company leverages a strong brand presence and digital infrastructure to support its business model of online ticket sales and transportation services. Technically, the website employs modern web technologies including Drupal CMS, cloud CDN, advanced analytics, and consent management platforms, ensuring a good user experience and compliance with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Overall, the site is professional, trustworthy, and well-optimized for its audience, with room for improvement in transparency around security and contact information.

F

Flix SE

flixbus.ie

55

Flix SE operates the website www.flixbus.ie, providing affordable and extensive bus travel services across Ireland and internationally. The company partners with local coach operators and offers a large network of over 8,000 destinations in more than 40 countries. The website is professionally designed, mobile-optimized, and provides comprehensive travel information, booking capabilities, and real-time trip tracking. The technical infrastructure leverages modern technologies including Drupal CMS, cloud CDN, and advanced analytics tools. Security posture is strong with HTTPS, security headers, and consent management in place, though explicit incident response and vulnerability disclosure policies are not publicly found. Overall, the site demonstrates a mature digital presence with high trustworthiness and user experience quality.

The analyzed content corresponds to an internal Chrome browser error page (chrome-error://chromewebdata/) which is displayed when a website is inaccessible or offline. This page includes embedded scripts and styles for the Chrome offline dinosaur game, but contains no actual website content, business information, or user-facing policies. Consequently, no meaningful business or security posture can be assessed from this content. The page lacks privacy, cookie, or terms of service policies, and no contact or incident response information is present. The WHOIS data is not applicable as the domain is internal to the browser and not publicly registered. Overall, this page serves as a placeholder error interface rather than a functional website.

S

Steiermärkische Krankenanstaltengesellschaft m.b.H.

krankenhaushygiene.at

76

The Institut für Krankenhaushygiene und Mikrobiologie (IKM) operates as a specialized healthcare institute under the Steiermärkische Krankenanstaltengesellschaft m.b.H., focusing on hospital hygiene and microbiology services. It serves healthcare professionals, partners, and patients primarily in Austria, offering laboratory analyses, professional guidelines, and career opportunities. The website reflects a solid market position within the regional healthcare sector, emphasizing patient-centered services and clinical relevance. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating privacy-conscious analytics via Matomo. The site is mobile-optimized, well-structured, and provides clear navigation and content relevant to its audience. Cookie consent mechanisms and HTTPS usage demonstrate compliance with privacy regulations. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security policies or incident response information. No critical vulnerabilities or suspicious elements were detected. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the website presents a trustworthy, professional digital presence with good privacy and security practices, suitable for its healthcare audience. Strategic improvements could include publishing security and incident response policies and enhancing security headers to further strengthen its posture.

V

Veeps

veeps.events

66

Veeps is a well-established online platform specializing in livestreaming concerts, music events, comedy shows, and other entertainment content. Founded in 2001, it serves a global audience of music and entertainment fans by providing ticketing and streaming services. The platform leverages modern web technologies and structured data to enhance discoverability and user engagement. The website is professionally designed with excellent content quality and user experience, optimized for mobile and SEO. Security posture is strong with HTTPS, security headers, and domain protection, though DNSSEC is not enabled. Privacy and cookie policies are present and indicate GDPR compliance. No direct contact information or explicit security policies were found on the analyzed page, suggesting room for improvement in transparency. Overall, Veeps presents a trustworthy and credible business with a mature digital presence.

Townsend Music operates as a specialized online record store offering exclusive, signed, rare, and limited-edition music releases including vinyl, CDs, cassettes, and merchandise. The business targets music collectors and enthusiasts globally, leveraging an e-commerce model with global shipping capabilities. The website is professionally designed with consistent branding and clear navigation, supporting a good user experience and trustworthiness. Technically, the site uses modern web technologies including Bootstrap, jQuery, Alpine.js, and integrates Stripe for secure payment processing. Hosting and DNS services are provided by reputable providers including IONOS SE and Cloudflare. Security posture is solid with HTTPS, CSRF protection, and no visible vulnerabilities, though DNSSEC is not enabled and no explicit privacy or terms pages are published. Analytics and marketing tools include Google Analytics, Zendesk, and Trustpilot widgets, with a cookie consent mechanism implemented. Overall, Townsend Music presents as a credible and professional e-commerce business with room for improvement in privacy compliance and DNS security.

A

A Common Thread

acommonthread.studio

59

A Common Thread is a small UK-based creative design studio specializing in visual identities and digital transformations. Their website showcases a portfolio of curated projects for clients in creative and commercial sectors, emphasizing branding and digital presence. The company targets businesses and professionals seeking bespoke design services. Technically, the website is built on WordPress with modern optimizations such as lazy loading and video embedding, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS enforced, but lacks some security headers and formal privacy or cookie policies, which are recommended for compliance and trust. Overall, the website is professional and trustworthy, with room for improvement in privacy compliance and security best practices.

L

La Cucina Italiana

lacucinaitaliana.it

68

La Cucina Italiana is a prestigious Italian cooking media brand owned by Condé Nast, offering a rich portfolio of recipes, culinary news, chef stories, and multimedia content targeted at Italian-speaking cooking enthusiasts. The website demonstrates a mature digital presence with good SEO practices, structured data, and mobile optimization. Technically, it employs modern JavaScript frameworks, Google advertising and tracking technologies, and a consent management platform to comply with GDPR requirements. Security posture is strong with HTTPS and security headers in place, though explicit privacy and terms of service pages are not found in the provided content. Overall, the site is trustworthy and professionally maintained but could improve transparency by publishing detailed privacy and security policies.

werk.ARCHITEKTEN Genossenschaft is a Swiss architectural cooperative specializing in architecture, urban planning, and sustainable building practices. With over two decades of experience, the firm offers comprehensive services ranging from new constructions to renovations, emphasizing resource responsibility and ecological sustainability. Their collaborative approach involves qualified partners across architecture, landscape architecture, engineering, and construction management, positioning them as a reputable regional player in the real estate and architectural sector. Technically, the website employs a modern but straightforward technology stack including Bootstrap, jQuery, FontAwesome, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, some technical improvements such as updating JavaScript libraries and implementing security headers could enhance security posture. From a security perspective, the site uses HTTPS and has implemented a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. The absence of explicit security policies or incident response information suggests room for improvement in transparency and preparedness. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the legitimacy of the business. Strategic recommendations include enhancing security headers, updating dependencies, and publishing security and incident response policies to strengthen trust and compliance.

R

Ramseier Holzbau AG

ramseier-holzbau.ch

51

Ramseier Holzbau AG is a small Swiss company specializing in wood construction, interior finishing, and wood element construction, serving regional markets including Burgdorf, Emmental, Bern, Oberaargau, and Solothurn. The website presents a professional image with clear contact information and a focus on craftsmanship and sustainability. The technical infrastructure is based on the fuman CMS platform, utilizing modern JavaScript libraries such as Flickity for UI elements. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. From a security perspective, the website uses HTTPS and implements a cookie consent banner, indicating awareness of privacy regulations. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present. Security headers are not detected in the provided data, suggesting room for improvement in hardening the site against common web threats. No suspicious or malicious content was found, and the WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is a good representation of a small regional manufacturing business with moderate technical maturity and privacy compliance. Security posture is adequate but could be enhanced by adding formal policies and technical security headers. The site is safe for general audiences with no adult or questionable content detected.

F

Fund The Planet

fundtheplanet.net

73

Fund The Planet is a small non-profit organization focused on environmental conservation through a subscription-based membership model that allows individuals to legally protect rainforest land in the Amazon. The platform leverages Shopify's e-commerce infrastructure, providing a bilingual website with clear membership plans and impact tracking. The technical infrastructure is modern and well-implemented, using Shopify apps and SDKs for localization, upselling, and analytics. Security posture is good with HTTPS and form protection via hCaptcha, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

C

ClickExpose

clickexpose.com

56

ClickExpose Ltd is a UK-based digital marketing agency specializing in Google Ads management, SEO packages, click fraud protection, and pay monthly website design services. Established in 2023, the company positions itself as a Google Partner and a top-rated Semrush partner, serving ambitious UK businesses aiming to dominate Google search results and maximize ROI. Their business model focuses on delivering measurable results through specialized Google-centric marketing strategies, supported by advanced tools and certifications. The website reflects a high level of professionalism, with comprehensive service descriptions, client testimonials, and trust badges enhancing credibility. Technically, the website employs modern web technologies including Tailwind CSS, JavaScript, Google Tag Manager, and lazy loading techniques to ensure fast performance and excellent mobile optimization. The hosting and domain registration are consistent with a legitimate business operation, with no signs of suspicious activity. The site integrates multiple marketing and analytics tools such as Google Analytics, Reviews.io, and chat widgets, all implemented with user consent mechanisms to comply with GDPR. From a security perspective, the site uses HTTPS with a good SSL configuration and enforces cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and there is no dedicated security policy or incident response contact information published. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the security posture is solid but could be improved with additional headers and transparency on security policies. The overall risk assessment is low, with the website demonstrating strong business credibility, technical maturity, and privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and compliance.

I

Innovative Web AG

i-web.ch

62

Innovative Web AG is a Swiss-based company specializing in innovative eGovernment solutions tailored for cantons, municipalities, schools, institutions, and energy providers. The company positions itself as a leading provider in Switzerland, offering a comprehensive suite of online services, software modules, and web design tailored to public sector needs. Their business model focuses on B2G and B2B engagements, delivering integrated digital solutions that streamline government and institutional processes. The website reflects a mature and professional organization with multiple physical locations across Switzerland.

A

Albertine

albertine.ch

47

Albertine.ch is the official website of the artist and illustrator Albertine, presenting a comprehensive portfolio of drawings, paintings, publications, prints, artist books, objects, posters, exhibitions, and films. The site targets art enthusiasts, collectors, galleries, and cultural institutions, serving primarily as a digital showcase for the artist's work. The business model is focused on portfolio presentation and promotion rather than direct e-commerce. Technically, the website is built with standard HTML, CSS, and JavaScript, featuring a responsive design and good navigation clarity. However, it lacks advanced frameworks or CMS indications and does not include analytics or tracking technologies. Security posture is basic, with no evident security headers or published policies, and the site uses obfuscated JavaScript to protect the contact email from scraping. No forms or data collection mechanisms are present, reducing privacy risks but also limiting user interaction. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

F

FlixBus India Private Limited

flixbus.in

58

FlixBus India Private Limited operates a comprehensive online bus ticket booking platform offering affordable and comfortable intercity bus travel across India. The company leverages a large global brand presence and extensive network to connect major Indian cities with modern buses equipped with amenities such as sleeper beds, air conditioning, and real-time GPS tracking. The website reflects a mature digital infrastructure with modern technologies, strong mobile optimization, and good SEO practices. Privacy and cookie policies are implemented with user consent mechanisms, supporting GDPR compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though dedicated security policy and incident response information are absent. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

F

Flix SE

flix.com

63

Flix SE operates a prominent European transportation platform offering bus and train ticket booking services across more than 40 countries and 8,000 destinations. The company emphasizes affordable, comfortable, and sustainable travel with features such as free Wi-Fi and assigned seating. The website is professionally designed, mobile-optimized, and integrates modern technologies including React-based UI components, CDN hosting, and advanced analytics tools like Datadog RUM and Usercentrics for consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be verified further. Privacy compliance is well addressed with clear policies and consent mechanisms. Despite the absence of WHOIS data for the domain, the website's branding, external domain relationships, and social media presence strongly support its legitimacy. Overall, Flix presents a trustworthy and user-friendly digital presence aligned with its business goals.

F

FlixBus Sverige

flixtrain.se

52

FlixBus Sverige operates as a major intercity bus transportation provider offering affordable and comfortable travel options across Sweden and Europe. The company provides a comprehensive route network with over 3,000 destinations in more than 40 countries, supported by a modern online booking platform and mobile app. Their services include airport shuttles and onboard amenities such as free Wi-Fi and charging ports, targeting general travelers seeking cost-effective and environmentally friendly transportation. Technically, the website is built on a modern stack including React and Drupal CMS, leveraging cloud-based CDN services for performance. It employs advanced analytics and consent management tools to ensure GDPR compliance and user tracking transparency. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS with strong SSL configurations and implements multiple security headers. While no explicit security or incident response policies are published, the site uses a consent management platform and avoids exposing sensitive data. The absence of WHOIS data for the www subdomain is noted but does not detract from the site's legitimacy given the professional presentation and consistent branding. Overall, FlixBus Sverige's website demonstrates a high level of professionalism, security, and compliance, supporting its position as a trusted transportation service provider. Strategic improvements include publishing explicit security policies and enhancing direct contact information for security and customer support.

F

Flix SE

flixbus.sk

55

FlixBus (operated by Flix SE) is a leading low-cost intercity and international bus transportation provider operating extensively in Slovakia and across Europe. The company offers a vast network of over 400,000 daily connections to approximately 2,500 destinations in more than 35 countries. Their business model focuses on affordable, convenient, and environmentally friendly travel options, supported by modern buses equipped with amenities such as free Wi-Fi and power outlets. The website targets general travelers seeking economical and reliable bus transport solutions.

F

FlixBus Sverige

flixbus.se

53

FlixBus Sverige operates as a major intercity bus transportation provider offering affordable and convenient travel options across Sweden and Europe. The website presents a professional and comprehensive platform for booking bus tickets, exploring routes, and accessing travel services including airport shuttles. The company targets general consumers seeking sustainable and cost-effective travel solutions. Technically, the website employs modern web technologies including React, Google Tag Manager, and Usercentrics for consent management, hosted on Amazon Cloudfront CDN, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policy and incident response contacts are not prominently published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a mature digital presence consistent with a large transportation business, with minor gaps in direct contact information and security transparency.

F

Flix SE

flixbus.ro

52

Flix SE operates the www.flixbus.ro website, providing affordable and extensive intercity bus travel services across Romania and Europe. The company is positioned as a leading transportation provider with a large network of routes and modern amenities such as Wi-Fi and real-time tracking. The website is professionally designed, mobile-optimized, and offers a seamless user experience for booking and managing bus tickets. Technically, the site uses modern JavaScript frameworks, CDN hosting, and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the domain and website present a trustworthy and credible business presence with good privacy compliance and user trust signals.

F

FlixBus Portugal

flixbus.pt

54

FlixBus Portugal operates as a major intercity bus transportation provider, offering extensive routes across Portugal and Europe. The company leverages a strong digital presence with a user-friendly website and mobile app, facilitating easy ticket booking and real-time travel tracking. Their market position is robust, supported by a large network and multiple subsidiary brands such as FlixTrain and Greyhound. Technically, the website employs modern technologies including React, Drupal CMS, and cloud-based CDNs, ensuring good performance and mobile optimization. Security measures are well implemented with HTTPS, security headers, and a consent management platform, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a high level of professionalism, compliance with privacy regulations, and trustworthy branding.

F

FlixBus Polska

flixbus.pl

53

FlixBus Polska operates a comprehensive intercity bus service platform targeting travelers in Poland and across Europe. The website offers extensive travel options with over 400,000 daily connections to thousands of cities, emphasizing affordable and comfortable travel. The business is positioned as a market leader with a strong brand presence and a large customer base. Technically, the site is built on a modern stack including Drupal CMS, cloud CDN, and advanced analytics tools, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS enforcement and privacy compliance mechanisms, though explicit security policies and incident response contacts are not publicly visible. The WHOIS data is privacy protected, which is typical for commercial domains, and does not raise immediate concerns given the professional site and brand consistency. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.

F

Flix SE

flixbus.no

58

FlixBus is a leading European intercity bus service provider offering affordable and extensive bus travel options across Norway and over 35 countries in Europe. The company operates a large route network with modern buses equipped with amenities such as free Wi-Fi and power outlets, facilitating convenient and comfortable travel. The website is professionally designed, mobile-optimized, and provides comprehensive travel information and booking capabilities through both web and mobile app platforms. Technically, the site uses modern JavaScript frameworks, CDNs, and analytics tools, ensuring fast performance and good user experience. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a mature, trustworthy, and user-friendly digital presence for a major transportation company.

F

Flix SE

flixbus.mk

10

Flix SE operates the website www.flixbus.mk, providing affordable and extensive bus travel services across Europe, including North Macedonia. The company offers a large network of daily bus lines and destinations, supported by a modern digital platform with multilingual support and mobile app integration. The website is professionally designed, mobile-optimized, and provides a user-friendly booking experience. Technically, the site uses modern JavaScript frameworks, CDN hosting, and integrates multiple analytics and marketing tools while maintaining good security practices such as HTTPS and consent management. However, WHOIS data is unavailable, likely due to privacy protection, which is common for large commercial entities. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected, good privacy compliance, and high business credibility.

F

FlixBus Italia

flixbus.it

11

FlixBus Italia operates a comprehensive intercity bus service network across Italy and Europe, offering low-cost travel options to over 8,000 destinations in more than 40 countries. The company leverages a strong digital presence with an intuitive website and mobile app that facilitate easy booking, real-time tracking, and onboard amenities such as Wi-Fi and power outlets. FlixBus holds a leading market position in the European transportation sector, supported by its parent company Flix SE and subsidiaries like FlixTrain and Greyhound. Technically, the website employs modern frameworks like React, uses CDN hosting for performance, and integrates advanced analytics and consent management tools. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and user-centric design.

F

Flix SE

flixbus.hr

11

Flix SE operates the FlixBus platform, providing affordable and extensive intercity bus travel services across Croatia and Europe. The website offers a comprehensive user experience with online ticket booking, real-time trip tracking, and a mobile app, targeting general travelers seeking convenient and eco-friendly transportation. The company holds a strong market position as a leading European bus service provider with a large user base and extensive route network. Technically, the website is built on modern frameworks such as React and Drupal, hosted on AWS infrastructure with CDN support, ensuring fast performance and mobile optimization. Security posture is robust with HTTPS enforcement, consent management via Usercentrics, and use of analytics tools like Google Tag Manager and Datadog RUM. However, explicit security policies and incident response information are not publicly disclosed. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and stability.

F

FlixBus España

flixbus.es

11

FlixBus España operates as a major intercity bus transportation provider offering affordable travel options across Spain and Europe. The company leverages a comprehensive online platform and mobile app to facilitate ticket booking, real-time trip tracking, and customer engagement. The website reflects a mature digital presence with strong branding, multilingual support, and extensive route coverage. Technically, the site employs modern web technologies including React, Drupal CMS, and cloud-based CDN services ensuring fast performance and mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and consent management, though explicit security policies and incident response details are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, supporting a large user base and multiple subsidiaries.

F

FlixBus Česko

flixbus.cz

10

FlixBus Česko operates as a regional branch of the international FlixBus brand, providing affordable intercity bus travel across the Czech Republic and Europe. The website offers extensive information about routes, services, and booking options, targeting general consumers seeking convenient and cost-effective transportation. The company leverages a strong brand presence and a large network of destinations, positioning itself as a leading player in European bus travel. Technically, the website employs modern web technologies including React, Drupal CMS, and multiple third-party analytics and marketing tools such as Google Tag Manager, Datadog RUM, and Usercentrics CMP for consent management. The site is mobile-optimized, accessible, and SEO-friendly, ensuring a good user experience across devices. From a security perspective, the site enforces HTTPS and integrates consent management for GDPR compliance. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data and lack of visible incident response contacts or security policies represent areas for improvement. Overall, the website is professional, trustworthy, and well-maintained, though the lack of public WHOIS information slightly reduces domain trustworthiness. Strategic recommendations include enhancing transparency around security policies and incident response, verifying security headers, and improving contact information visibility.

F

Flix SE

flixbus.be

10

FlixBus is a major European transportation company specializing in affordable intercity bus travel across more than 40 countries and 3,000 destinations. The website provides comprehensive information about their services, including online ticket booking, real-time bus tracking, and onboard amenities such as Wi-Fi and power outlets. The company positions itself as a leader in the European bus travel market with a strong brand presence and extensive network. Technically, the website is built on a modern Drupal CMS platform, leveraging multiple third-party services for analytics, marketing, and performance optimization, including Google Tag Manager, Datadog RUM, Snowplow Analytics, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with fast loading times supported by CDN infrastructure. From a security perspective, the site enforces HTTPS, implements key security headers, and uses a consent management platform to comply with privacy regulations. However, explicit security policies, incident response contacts, and vulnerability disclosure programs are not publicly available, representing areas for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, though WHOIS data is unavailable due to registry restrictions. The domain's privacy protection is justified given the business type. The site demonstrates a mature digital presence with extensive tracking and marketing tools, balanced by strong privacy controls.

F

FlixBus Österreich

flixbus.at

61

FlixBus Österreich operates as a major intercity bus transportation provider in Austria and across Europe, offering affordable and sustainable travel options. The company is part of Flix SE, a large transportation group with subsidiaries including FlixTrain and Greyhound. The website is professionally designed, multilingual, and provides comprehensive travel information and booking capabilities via a dedicated shop subdomain. The technical infrastructure leverages modern web technologies, CDNs, and advanced analytics tools, ensuring fast performance and good user experience across devices. Security posture is strong with HTTPS enforcement and consent management, though explicit security policies are not prominently published. Overall, the site reflects a mature digital presence aligned with a reputable transportation business.

F

Flix SE

flixbus.al

56

Flix SE operates the www.flixbus.al website, providing affordable and eco-friendly intercity bus travel services across Europe, targeting Albanian-speaking customers. The company is a major player in the European transportation sector, offering extensive routes and modern amenities. The website is professionally designed, multilingual, and optimized for mobile users, reflecting a mature digital infrastructure. Technically, the site uses Drupal CMS, integrates multiple analytics and marketing tools, and employs strong security practices including HTTPS and security headers. Privacy compliance is robust with clear policies and consent management. However, direct contact information and explicit security policies are not prominently available. Overall, the site demonstrates a strong security posture and business credibility with no critical vulnerabilities detected.

O

openfellas GmbH

openfellas.com

74

openfellas GmbH is a well-established German company specializing in Odoo ERP consulting and implementation services. With over 15 years of experience and more than 250 successful projects, they hold a strong market position as an Odoo Gold Partner since 2014. Their business model focuses on B2B services targeting industries such as manufacturing, energy, and e-commerce. The website reflects a professional and consistent brand image, showcasing detailed service offerings and customer testimonials that reinforce trust and credibility. Technically, the site is built on the Odoo platform, leveraging modern web technologies and hosted behind Cloudflare for performance and security. Analytics and marketing tracking are implemented via Google Tag Manager with a GDPR-compliant cookie consent mechanism. Security posture is generally good with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and some security headers are missing. No explicit security or incident response policies are published. Overall, the website is accessible, well-structured, and trustworthy, supporting the company's business objectives effectively.

M

Mairie de Corsier

corsier.ch

64

The website www.corsier.ch serves as the official digital presence of the municipal government of Corsier, Switzerland. It provides residents and visitors with comprehensive information about local government services, community news, events, administrative procedures, and social and cultural activities. The site targets local citizens and stakeholders, offering a centralized platform for accessing municipal resources and updates. The business model is that of a public sector entity focused on community service and governance. Technically, the site is built on the i-web.ch CMS platform, utilizing modern web technologies including JavaScript, CSS, and HTML5. The website demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with a clean and professional design that supports clear navigation and user experience. The site employs HTTPS and anonymized web statistics, reflecting a reasonable level of digital maturity. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or malicious content were detected. Privacy compliance is supported by a clear privacy and cookie policy with consent mechanisms, aligning with GDPR requirements. Business credibility is high due to transparent contact information and consistent branding. Overall, the website presents a low-risk profile with strong legitimacy as a government entity. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving advertising transparency. These steps would further strengthen the security posture and trustworthiness of the site.

C

Commune de Collonge-Bellerive

collonge-bellerive.ch

61

The website for the Commune de Collonge-Bellerive serves as the official digital presence for the local municipal government in Switzerland. It provides residents and visitors with comprehensive information about municipal services, official announcements, event calendars, and administrative procedures. The site targets local citizens, businesses, and community members, offering a user-friendly interface with clear navigation and responsive design. The business model is typical of a public sector entity focused on community engagement and service delivery. Technically, the site is built on the i-web.ch CMS platform, utilizing modern web technologies such as JavaScript, CSS, and Bootstrap for responsive design and interactive elements like modals and carousels. Performance is moderate with good mobile optimization and accessibility features. SEO practices are adequately implemented with relevant meta tags and structured navigation. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks visible security headers and does not provide a vulnerability disclosure policy or incident response contact, which are areas for improvement. Privacy compliance is generally good, with a clear data protection page and anonymized web statistics, though a cookie consent mechanism is absent. Overall, the website is trustworthy, professional, and well-aligned with its municipal purpose. It demonstrates a solid digital maturity level but could enhance its security posture and privacy compliance to meet higher standards and user expectations.

The website www.chene-bourg.ch serves as the official digital presence of the Commune de Chêne-Bourg, a local government entity in Switzerland. It provides residents and visitors with news, online services, event information, and useful local data to support community engagement and municipal services. The site is primarily in French and targets the local population. Technically, the website is built using modern frameworks such as Nuxt.js with server-side rendering, styled with Tailwind CSS, and integrates Google Analytics and Tag Manager for user analytics and marketing purposes. The site demonstrates good performance and mobile optimization, though accessibility features are basic. Security-wise, the site enforces HTTPS and includes standard security headers, indicating a solid security posture. However, it lacks visible privacy and cookie policies, which impacts privacy compliance. No incident response or vulnerability disclosure information is published, which could be improved to enhance trust and security transparency. Overall, the website is professional and trustworthy, reflecting its official government status, but could benefit from enhanced privacy and security policy disclosures.

Metallwerkstatt is a small Swiss artisanal metal fabrication and design workshop specializing in the development and manufacturing of steel constructions, furniture, and custom design elements. The website serves as a professional portfolio showcasing a wide range of projects, including collaborations with architects and design agencies. The business targets clients seeking bespoke metalwork solutions and operates primarily in the manufacturing sector with a local or regional focus. Technically, the site is built on the Adobe Portfolio platform, utilizing modern web standards and Typekit fonts, delivering a good user experience with clear navigation and mobile optimization. Security posture is moderate; while HTTPS is presumably enabled (not explicitly confirmed), no advanced security headers or policies are detected, and no privacy policy or terms of service are published. The site includes a cookie consent banner, indicating some awareness of privacy compliance. No direct contact information such as emails or phone numbers is provided, which may impact user trust and business credibility. Overall, the website is professional and trustworthy but would benefit from enhanced security practices and clearer privacy and contact disclosures.

The website anbi.nl currently serves a robot challenge screen implementing a proof-of-work captcha mechanism to verify visitors, indicating the presence of a Web Application Firewall (WAF) or similar security protection. This challenge page blocks direct access to the main content, limiting the ability to analyze the actual business or services offered. The domain is registered since 2006 with DNSSEC enabled, suggesting a legitimate and stable domain registration. However, no business or contact information, privacy policies, or terms of service are present on the challenge page. The technical implementation uses advanced JavaScript with Web Workers for cryptographic computations, served via AWS Cloudfront CDN, indicating a modern infrastructure for the challenge mechanism. Security posture is moderate due to DNSSEC and captcha usage but lacks visible security headers or compliance documentation. Overall, the site is inaccessible for full content and business analysis due to the security challenge, resulting in a low AI score and limited insights.

L

LearnWorlds (CY) Ltd

learnworlds.com

78

LearnWorlds (CY) Ltd operates a leading AI-powered Learning Management System (LMS) platform designed for course creators and educators. The platform offers comprehensive tools for creating, marketing, and selling online courses, positioning itself as a scalable SaaS solution in the education technology sector. The website reflects a professional and well-branded presence, targeting digital educators and entrepreneurs seeking to monetize their knowledge. Technically, the site is built on WordPress with a modern tech stack including Google Tag Manager, Mixpanel, Hotjar, and VWO for analytics and optimization. Cookie consent and GDPR compliance are well implemented, showing a mature approach to privacy. Security posture is strong with HTTPS, reCAPTCHA, and secure cookie practices, though explicit security policies and incident response contacts are not published. WHOIS data is missing, which slightly reduces trust but does not outweigh the professional business presentation and operational transparency. Overall, LearnWorlds demonstrates a solid digital maturity and trustworthy business model with room for enhanced security transparency.

T

THE WORLD OF INTERIORS

worldofinteriors.com

67

The World of Interiors is a specialized media publication focusing on interior design and lifestyle content, operated by the reputable media company Condé Nast. The website presents high-quality editorial content targeting interior design enthusiasts and professionals. The technical infrastructure leverages modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and privacy management tools such as Fides. The site is well-optimized for mobile devices and demonstrates good SEO practices. Security posture is solid with HTTPS enabled and privacy consent mechanisms in place, though explicit security headers and incident response contacts are not clearly identified. The absence of WHOIS data is notable but likely due to privacy or registration under a different entity, given the association with Condé Nast. Overall, the website is professional, trustworthy, and safe for general audiences.

T

Tatler

tatler.com

69

Tatler is a prestigious and historic media brand specializing in luxury lifestyle, fashion, and society content, operating under the Condé Nast umbrella. The website presents a rich mix of editorial content targeting affluent and style-conscious audiences, maintaining a consistent and professional brand image. Technically, the site employs modern JavaScript frameworks, Google Tag Manager for analytics, and a consent management platform to comply with privacy regulations. However, explicit privacy and terms of service pages were not detected in the provided content, which could be a compliance gap. Security posture is generally good with HTTPS enforced, but the absence of visible security headers suggests room for improvement. The WHOIS data is notably missing or unavailable, which is unusual for a domain of this stature and slightly reduces trustworthiness. Overall, the site is well-designed, content-rich, and professionally maintained, but should enhance transparency around privacy and security policies to strengthen compliance and user trust.