Security Directory

N

Novartis Poland

novartis.pl

70

Novartis Poland operates as a regional branch of the global healthcare giant Novartis AG, providing innovative pharmaceutical solutions including oncology, rare disease treatments, and advanced therapies such as gene and cell therapy. The website reflects a mature digital presence with professional design, localized content in Polish, and integration of modern web technologies and analytics tools. The security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response information are absent. WHOIS data is unavailable for the queried domain, which may be due to privacy protection or query limitations, but the website's branding and social media presence strongly support its legitimacy. Overall, the site demonstrates a high level of professionalism and compliance with privacy regulations.

D

dongit.eu

securityreporter.app

77

Security Reporter is a self-hosted pentest reporting platform designed to streamline and enhance the workflow of security teams including pentesters, red teamers, and cybersecurity professionals. The platform offers features such as collaborative tools, API and webhook integrations, and advanced reporting capabilities, positioning itself as a comprehensive solution for agile pentesting. The website is professionally designed, mobile-optimized, and includes trust signals such as client logos from reputable organizations and a vulnerability disclosure policy, indicating a mature business presence in the cybersecurity technology sector. Technically, the website is built on Drupal CMS with modern frontend technologies including Bootstrap, Highlight.js, and Plyr for video playback. It integrates multiple analytics and marketing tools such as Google Tag Manager, LinkedIn Insight, Zoho SalesIQ, and Cookie Script for consent management, reflecting a well-rounded digital maturity. The site is fully accessible without WAF or blocking mechanisms, uses HTTPS with excellent SSL configuration, and implements GDPR-compliant cookie consent mechanisms. From a security perspective, the platform emphasizes secure handling of sensitive data and provides a vulnerability disclosure policy, though explicit security headers are not detected in the provided data. No critical vulnerabilities or exposed sensitive information were found. The absence of direct contact emails or phone numbers suggests a preference for controlled communication via contact forms. Overall, the security posture is strong but could be enhanced by publishing incident response contacts and adding security certifications. The overall risk assessment is low with a high trustworthiness rating. Strategic recommendations include enhancing security headers, publishing incident response details, and expanding transparency with certifications to further strengthen trust and compliance. The platform is well-positioned in the cybersecurity technology market with a clear focus on pentest reporting efficiency and quality.

D

DongIT B.V.

dongit.eu

71

DongIT B.V. is a specialized technology company based in the Netherlands, focusing on web security and development services. With over a decade of experience, they provide professional pentesting, ethical hacking, and custom web development solutions tailored to client needs. Their market position is strengthened by notable clients such as the European Central Bank and ABN AMRO, and certification with the CCV Pentesting Quality Mark. The company targets businesses requiring secure and efficient web solutions, offering both services and proprietary platforms like the Security Reporter Platform. Technically, the website is built on Drupal CMS with modern frameworks and libraries including Bootstrap and FontAwesome. It integrates Google Tag Manager for analytics and uses CookieScript for GDPR-compliant cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Hosting details are not explicit, but the domain registrar is a reputable provider. From a security perspective, the site uses HTTPS and implements cookie consent with granular controls. However, explicit security headers and a published security policy or incident response contacts are not evident. No vulnerabilities or exposed sensitive data were detected in the HTML content. The presence of certifications and professional client references indicates a strong security posture, though improvements in transparency and header implementation are recommended. Overall, DongIT presents a trustworthy and professional online presence with strong business credibility and technical maturity. The risk profile is low, with no signs of blocking or malicious activity. Strategic recommendations include enhancing security header implementation, publishing a security policy, and maintaining regular audits of third-party scripts to sustain and improve security posture.

W

Web Security Scan

websecurityscan.eu

71

Web Security Scan is a specialized cybersecurity service provider focusing on penetration testing and security assessments for applications and IT infrastructures. With over 15 years of ethical hacking experience, the company offers a comprehensive suite of services including pentesting, vulnerability scanning, code reviews, red teaming, and security workshops. Positioned as a trusted partner for businesses seeking to enhance their cybersecurity posture, Web Security Scan emphasizes compliance with major frameworks such as OWASP, PCI-DSS, ISO27001, and NIS2. The company operates as a division of DongIT, leveraging combined expertise in web security and development.

R

Rijksinstituut voor Volksgezondheid en Milieu

rivm.nl

78

The Rijksinstituut voor Volksgezondheid en Milieu (RIVM) is a Dutch governmental institute under the Ministry of Health, Welfare and Sport, specializing in public health and environmental research and policy. The website serves as an authoritative source for health data, environmental monitoring, vaccination programs, and public information dissemination, targeting the general public, healthcare professionals, and policymakers. The site is well-branded, professionally designed, and provides comprehensive content relevant to its mission. Technically, the website is built on Drupal CMS, employing modern web standards with good mobile optimization and accessibility features. It integrates analytics and user interaction tracking responsibly, with clear privacy and cookie policies aligned with GDPR requirements. The infrastructure appears stable and performant, hosted likely on government infrastructure. From a security perspective, the site enforces HTTPS and demonstrates good security hygiene with no visible vulnerabilities or exposed sensitive data. While some security headers could be more explicitly implemented, the presence of a responsible disclosure page indicates a mature security posture. No WAF or blocking mechanisms interfere with content accessibility. Overall, the website scores highly on content quality, technical implementation, security, privacy compliance, and business credibility, reflecting its role as a trusted government resource. Strategic recommendations include enhancing security header implementation and publishing explicit security policies and data protection officer contacts to further improve transparency and trust.

C

Cvonline.hu

cvonline.hu

60

Cvonline.hu is a well-established Hungarian job portal offering a comprehensive platform for job seekers and employers. It provides extensive job listings, resume management, job alerts, and employer services, positioning itself as a key player in the Hungarian employment market. The website targets primarily Hungarian-speaking users seeking employment opportunities and employers looking to post job ads. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates multiple advertising and analytics services managed through Google Tag Manager and Usercentrics for GDPR compliance. The site demonstrates good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, implements security headers, and uses a consent management platform, though it lacks a publicly available security policy or incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its audience.

S

Stichting kanker.nl

kanker.nl

74

Kanker.nl is a well-established Dutch non-profit foundation providing reliable cancer-related information, treatment options, and patient support services. It serves patients, caregivers, and healthcare professionals primarily in the Netherlands. The website is positioned as a leading cancer information portal with a strong focus on trustworthy content and community support. Technically, the site is built on Drupal CMS, employs modern JavaScript libraries, and integrates analytics and optimization tools such as Piwik/Matomo and Visual Website Optimizer. Security posture is strong with HTTPS enforcement, security headers, and no detected vulnerabilities. Privacy compliance is evident through comprehensive privacy and cookie policies with GDPR adherence. Overall, the site demonstrates a mature digital presence with good user experience and professional content.

P

Proofpoint

sendmail.org

80

Proofpoint is a leading cybersecurity company specializing in enterprise email protection and security solutions. Their Sendmail Sentrion platform targets large, complex environments requiring scalable and secure messaging infrastructure. The website reflects a mature digital presence with comprehensive product information, security advisories, and enterprise-grade trust signals. Technically, the site leverages Drupal CMS and integrates multiple analytics and marketing tools, maintaining good performance and accessibility standards. Security posture is strong with HTTPS enforcement, security headers, and signed software releases, although WHOIS data is unavailable, likely due to privacy protections. Overall, the site demonstrates a high level of professionalism and trustworthiness suitable for enterprise customers.

L

Limbažu novada pašvaldība

limbazunovads.lv

61

Limbažu novada pašvaldība is the official local government authority for the Limbaži Municipality in Latvia. The website serves as a comprehensive portal offering residents and stakeholders access to municipal governance information, public services, news, cultural events, and community resources. It also provides links to subsidiary companies and partner organizations, reflecting a well-structured municipal ecosystem. The site targets local residents, businesses, and visitors seeking official information and services. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies such as Bootstrap and jQuery. It incorporates Google Analytics for visitor tracking and employs webfonts and audio player scripts to enhance user experience. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive digital maturity level. From a security perspective, the website enforces HTTPS with appropriate security headers, employs cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, it lacks a dedicated security policy or incident response page, and no vulnerability disclosure or security.txt file was found. Overall, the security posture is solid but could be improved with explicit policy documentation and incident contact channels. The overall risk assessment is low, with no signs of malicious activity or suspicious content. Strategic recommendations include publishing a formal security policy, adding vulnerability disclosure information, and enhancing incident response readiness to further strengthen trust and compliance.

E

EBP Schweiz AG

ebp.ch

65

EBP Schweiz AG is a well-established Swiss consulting and engineering firm with over 50 years of experience, specializing in sustainable development and interdisciplinary solutions across infrastructure, environment, energy, transportation, and real estate sectors. The company operates globally with a network of over 800 experts and locally with more than 400 professionals in Switzerland. Their website reflects a mature digital presence built on Drupal CMS with React integration, offering comprehensive service descriptions and expert profiles. Security posture is strong with HTTPS and some security best practices, though explicit security headers could be improved. Privacy compliance is evident with a GDPR-compliant privacy policy and cookie consent mechanisms. The absence of detailed WHOIS data limits domain trust analysis, but the professional website and consistent branding support legitimacy. Overall, the site is professional, secure, and trustworthy, serving a business audience effectively.

I

INELFE

inelfe.eu

60

INELFE is a specialized company focused on the construction and operation of electrical interconnections between France and Spain, aiming to enhance electricity exchange capacity within Europe. Established following a bilateral government agreement in 2008, it has successfully completed major infrastructure projects such as Baixas-Santa Llogaia and Golfe de Gascogne. The company targets energy sector stakeholders and governmental bodies, positioning itself as a key player in European energy infrastructure. Technically, the website is built on Drupal CMS with Bootstrap 3, incorporating modern web technologies and responsive design. It integrates Google Tag Manager and Analytics for data collection and uses a cookie consent management tool compliant with GDPR. The site performs moderately well with good mobile optimization and basic accessibility features. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms but lacks visible advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. WHOIS data is privacy-protected, which is typical for such entities, and no suspicious patterns were found. Overall, the website demonstrates a professional and trustworthy online presence with room for improvement in security policy transparency and technical security hardening. The risk level is low, but strategic enhancements in security posture and compliance documentation are recommended.

R

RTE

rte-france.com

72

RTE is the French electricity transmission system operator responsible for managing the national high-voltage electricity network. The website presents RTE as a key public service entity ensuring safe, economical, and clean electricity supply across France. It offers extensive information on its missions, projects, data, publications, and subsidiaries, targeting a broad audience including candidates, journalists, investors, suppliers, and local communities. Technically, the site is built on Drupal CMS with Bootstrap framework, uses modern web technologies, and is mobile-optimized. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and policies are not evident. WHOIS data is unavailable or protected, which slightly impacts trust but the professional presentation and linked subsidiaries support legitimacy. Overall, the site is well-structured, content-rich, and trustworthy for its domain.

E

Erfgoedcel Leuven

erfgoedcelleuven.be

65

Erfgoedcel Leuven is a small, government-affiliated heritage organization based in Belgium, focused on preserving and promoting local cultural heritage. The website provides comprehensive information about heritage activities, educational programs, publications, and community engagement, targeting residents and cultural enthusiasts in Leuven. The organization operates under the City of Leuven and has been established since 2006, reflecting a stable presence in the heritage sector. Technically, the website is built on Drupal CMS with modern web technologies such as Bootstrap and lazy loading for images, ensuring good mobile optimization and accessibility. The site employs HTTPS and cookie consent mechanisms, demonstrating compliance with EU privacy regulations. Performance is moderate, with room for improvement in security headers and explicit security policies. Security posture is solid with no detected vulnerabilities or exposed sensitive data, but lacks explicit incident response or security policy documentation. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms. Contact information is transparent and includes phone, email, and a contact form, enhancing business credibility. Overall, the website is professional, trustworthy, and well-suited for its audience, with recommendations to enhance security headers and incident response transparency to further strengthen its security posture.

N

National Credit Union Administration

ncua.gov

79

The National Credit Union Administration (NCUA) is an independent federal agency responsible for regulating federal credit unions, insuring deposits, and protecting credit union members in the United States. The agency operates the National Credit Union Share Insurance Fund, providing deposit insurance up to $250,000 per individual depositor. The website serves a broad audience including credit union members, federal credit unions, consumers, and government stakeholders, offering regulatory guidance, consumer education, data analysis, and support services. The NCUA maintains a strong market position as a trusted government regulator and insurer in the financial sector.

T

The Star Entertainment Group Limited

thestarclub.com.au

71

The Star Club website represents a comprehensive loyalty program operated by The Star Entertainment Group Limited, a major player in Australia's hospitality and casino industry. The platform offers members rewards and benefits across multiple premium properties, including The Star Sydney, Gold Coast, and Brisbane. The website is well-branded, professionally designed, and targets adult customers interested in gaming, dining, and entertainment. Technically, the site uses a modern tech stack including Drupal CMS and React components, with integration of multiple analytics and marketing tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although the absence of a public vulnerability disclosure policy is noted. Privacy compliance is robust, featuring detailed privacy and cookie policies with consent mechanisms. The WHOIS data is incomplete and malformed, limiting domain trust assessment, but the overall business credibility and content quality support legitimacy. Strategic recommendations include publishing a vulnerability disclosure policy, incident response contacts, and continuous monitoring of third-party scripts.

A

Australian Bureau of Statistics

abs.gov.au

77

The Australian Bureau of Statistics (ABS) is Australia's national statistical agency, providing trusted official statistics on a wide range of economic, social, population, and environmental matters. The website serves as a comprehensive portal for accessing statistical data, reports, and releases, targeting government entities, researchers, businesses, and the general public. The ABS holds a strong market position as the authoritative source of official statistics in Australia. Technically, the website is built on the Drupal CMS platform, leveraging modern web technologies including Google Tag Manager and Hotjar for analytics and user experience insights. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring broad usability and reach. From a security perspective, the site enforces HTTPS and publishes a security vulnerability disclosure policy, reflecting a mature security posture. While explicit security headers are not detected, the overall configuration is robust with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR principles. Overall, the ABS website is a professional, secure, and trustworthy government resource. It effectively balances comprehensive data provision with user experience and security best practices, making it a reliable platform for statistical information dissemination.

E

energyRe

energyre.com

66

energyRe is a renewable energy company focused on delivering clean, responsible, and reliable energy solutions including generation, transmission, and storage. The company positions itself as a modernizer of energy infrastructure with a commitment to sustainability and community responsibility. Their website reflects a professional and modern digital presence, leveraging Drupal CMS and modern JavaScript libraries, with multimedia content and clear navigation. The site integrates Google Tag Manager and Analytics for tracking, but lacks a visible cookie consent mechanism. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though security headers are not explicitly detected and incident response information is absent. The absence of WHOIS data for the domain www.energyre.com is a notable concern, reducing trustworthiness despite the professional site presentation. Overall, the website is well-designed and informative, targeting energy industry stakeholders and potential partners.

V

VITO

vito.be

75

VITO is a large, established European research center specializing in sustainable technological innovations, AI solutions, and policy advice. The organization serves companies, governments, and society with a strong focus on sustainability transitions. The website is built on Drupal CMS, uses modern web technologies including Google Tag Manager and HubSpot forms, and is hosted under a Belgian registrar consistent with its identity. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. The site is professional, well-structured, and compliant with GDPR, featuring comprehensive privacy and cookie policies. Social media presence and newsletter subscription options enhance engagement. Overall, the website reflects a trustworthy and credible institution with a mature digital infrastructure.

Wallonia.be is the official regional government website for Wallonia, Belgium, providing comprehensive information and services related to living, investing, studying, visiting, and buying products from the region. The site targets a broad international audience including potential investors, students, tourists, and residents. The business model is governmental promotion and information dissemination, positioning Wallonia as an attractive region in Europe. Technically, the site is built on Drupal CMS with modern frontend technologies such as Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for tracking. The website is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and use of reCAPTCHA, but lacks some security headers and published security policies. Privacy compliance is basic but includes cookie consent and a privacy policy consistent with GDPR. WHOIS data is unavailable due to registry restrictions, which slightly impacts trust but the official nature of the site and consistent branding mitigate concerns. Overall, the site is trustworthy, professional, and well-maintained.

H

Howest

howest.be

59

Howest is a prominent higher education institution based in Belgium, offering a wide range of bachelor, master, graduaat, and postgraduaat programs. The institution emphasizes innovation and entrepreneurship, targeting students, alumni, and professionals seeking education and training. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on Drupal CMS with modern libraries and includes cookie consent mechanisms and Google Tag Manager for analytics. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of security headers and a published security policy are areas for improvement. WHOIS data is restricted due to registry policies, which slightly impacts trust but is common for .be domains. Overall, Howest presents a professional, trustworthy, and well-maintained online presence suitable for its educational mission.

U

UZ Leuven

uzleuven.be

68

UZ Leuven is a prominent university hospital in Belgium offering specialized healthcare services, innovative treatments, and comprehensive patient care. It serves a broad audience including patients, healthcare professionals, students, and international patients. The hospital is well-integrated with academic and healthcare networks, enhancing its market position and service quality. Technically, the website is built on Drupal CMS with modern web technologies, providing good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present and GDPR compliant, supporting user trust. Overall, the website reflects a professional and credible healthcare institution with strong digital maturity.

B

BRUZZ

bruzz.be

67

BRUZZ is a professional media platform delivering news and cultural content focused on Brussels. It offers a variety of content types including articles, videos, podcasts, and newsletters, targeting residents and visitors interested in local news and culture. The website is well-branded and consistent, with a clear focus on media publishing under the parent company Mediahuis. Technically, the site uses Drupal CMS and integrates multiple analytics and marketing tools, including Google Analytics, Google Tag Manager, Hotjar, and Consentmanager.net for cookie consent management. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although security headers and explicit security policies are not visibly published. WHOIS data is restricted, which is common for media companies to protect privacy. Overall, the site is legitimate, professional, and compliant with GDPR requirements.

F

Federatie van de Belgische grafische industrie

febelgra.be

59

Febelgra is a professional federation representing the Belgian graphic industry, offering a range of services including legal and social advice, events, industry information, and member benefits. The website is well-structured, primarily in Dutch, targeting industry professionals and companies in Belgium. The technical infrastructure is based on Drupal CMS with modern front-end technologies and integrated analytics tools. Security posture is strong with HTTPS and cookie consent mechanisms in place, though security headers could be improved. WHOIS data is restricted due to registry policies but the website content and partner ecosystem indicate legitimacy and professionalism.

E

Expansion

expansion.be

59

Expansion is a medium-sized marketing and communication agency based in Belgium, offering a comprehensive suite of services including strategy consulting, event and media marketing, branding, and digital marketing. The company targets both public and private sector organizations and positions itself as a multidisciplinary agency with a team of 35 professionals. The website is professionally designed, well-structured, and provides clear navigation and rich content in French, with language options for Dutch and English. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates video content and analytics tools. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The WHOIS data is restricted due to .be domain policies, limiting domain age and registrant transparency, but the website content and contact information support legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

E

ETERNUM

eternum.com

65

ETERNUM is a well-established Belgian company specializing in the design, production, and sale of high-quality stainless steel cutlery and table accessories. Founded in 1924, the company has a strong global presence with distribution in over 70 countries. Their website reflects a professional and polished digital presence, leveraging Drupal CMS and modern JavaScript libraries to deliver a responsive and accessible user experience. The site includes comprehensive product collections, detailed descriptions, and multiple language options, catering to both hospitality professionals and private customers. Security-wise, the website enforces HTTPS and uses Google Tag Manager with consent checks, but lacks explicit security policies or incident response information. Overall, the site is trustworthy, well-maintained, and compliant with basic privacy regulations.

Q

Qscan Services Pty Ltd

qscangroup.com.au

61

Qscan Services Pty Ltd is a leading Australian healthcare provider specializing in medical imaging and radiology services. The company operates a large network of clinics across multiple states, offering interventional radiology, diagnostic reporting, and clinical trials. Their partnerships with elite sporting teams further reinforce their market position and brand trust. The website is professionally designed using Drupal CMS, hosted with AWS for media assets, and incorporates modern technologies such as Bootstrap and Google Tag Manager for analytics. The site is mobile-optimized and accessible, providing a positive user experience. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and incident response information. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

Q

Qscan Services Pty Ltd

qscan.com.au

64

Qscan Services Pty Ltd operates a comprehensive network of medical imaging and radiology clinics across Australia, offering a wide range of diagnostic and interventional radiology services. The company targets both patients and medical referrers, providing premium patient care and referrer support through dedicated portals and resources. As part of the Qscan Group, it holds a strong market position with 40 locations and partnerships with elite sports teams, enhancing its brand credibility. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with media assets hosted on Amazon S3. Performance is moderate with good technical implementation. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and cookie consent mechanisms suggests room for improvement. WHOIS data is privacy protected, which is justified for a healthcare entity, but limits transparency. No incident response or vulnerability disclosure policies are published, indicating potential compliance gaps. Overall, the website is professional, trustworthy, and well-positioned in its sector. Strategic enhancements in privacy compliance, security headers, and transparency would further strengthen its security and compliance posture.

M

McDonald's Australia

mcdonalds.com.au

63

McDonald's Australia operates a comprehensive and professionally designed website serving as the official digital presence for the brand in Australia. The site provides detailed menu information, promotional content, career opportunities, and community engagement initiatives. It targets a broad audience including families, customers, and potential employees within Australia. The business model is retail and food service franchise, positioning McDonald's as a leading fast food chain in the Australian market with strong brand recognition and a mature digital presence. Technically, the website is built on Drupal CMS with a modern tech stack including jQuery, Swiper.js, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and New Relic. The site is mobile optimized with good performance and accessibility features, although some accessibility aspects could be improved. The hosting and domain registration are consistent with a large enterprise, with domain protection status codes indicating strong security controls. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized changes. However, it lacks DNSSEC and explicit security headers like CSP. There is no visible security policy or incident response information published, and no vulnerability disclosure mechanism such as a security.txt file. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected, which could be improved to align with GDPR standards. Overall, the website is trustworthy, professional, and secure for general users, with minor gaps in privacy compliance and security transparency. Strategic recommendations include enabling DNSSEC, implementing CSP headers, publishing security and incident response policies, adding a cookie consent mechanism, and providing a vulnerability disclosure channel to enhance trust and compliance.

W

WAT WAT

watwat.be

72

WAT WAT is a Belgian educational platform providing reliable information tailored for young people aged 11 to 24. The website offers thematic content on various youth-related topics such as exam stress, student jobs, travel, alcohol, appearance, love, and money. It is positioned as a trusted resource supported by recognized organizations and government partners. Technically, the site is built on Drupal 10, employs modern web technologies, and includes responsive design for mobile users. The presence of Google Analytics and Tag Manager indicates moderate user tracking for analytics purposes. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present with consent mechanisms, reflecting GDPR compliance. However, WHOIS data is restricted, showing a 'NOT ALLOWED' status, which is common for privacy protection but slightly reduces transparency. Overall, the site is professional, trustworthy, and well-suited for its target audience.

V

Vie publique

vie-publique.fr

57

Vie-publique.fr is an official French government information portal managed by the Direction de l'information légale et administrative (DILA). It provides comprehensive and authoritative content on public policies, legislative updates, societal debates, and international context. The site targets the general public and professionals seeking clear and accessible information about the functioning of democratic institutions and public administration in France. The business model is focused on free dissemination of public information and educational resources, supported by government funding. Technically, the website is built on Drupal CMS with the French Republic's Design System (DSFR) and uses modern web technologies including Bootstrap utilities and JavaScript libraries such as jspdf and OreJime for cookie management. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and a consistent branding strategy aligned with official government standards. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, it lacks explicit security headers and a published security policy or vulnerability disclosure program. The absence of WHOIS data is due to AFNIC's non-public WHOIS response but does not affect the site's legitimacy, which is supported by strong trust signals and official government affiliations. Overall, Vie-publique.fr presents a secure, professional, and trustworthy platform for public information. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure channel to further strengthen security posture and transparency.

C

Centre de prévention du suicide

preventionsuicide.be

64

The Centre de Prévention du Suicide is a Belgian non-profit organization dedicated to suicide prevention and support for individuals in crisis, their relatives, and professionals. The website provides comprehensive resources including helpline services, psychological consultations, bereavement support, training, and community interventions. It is recognized by the COCOF authority, indicating a trusted position in the local mental health sector. Technically, the website is built on Drupal CMS with modern libraries such as jQuery and GSAP, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. WHOIS data is restricted due to registry privacy policies, but the domain and website content align with a legitimate non-profit entity. Overall, the site is professional, accessible, and trustworthy, serving an important social function.

R

Rijksoverheid

overheid.nl

75

Overheid.nl is the official Dutch government portal providing comprehensive access to information and services from all government levels. It serves as a central hub for citizens and businesses to find local announcements, government services, policies, regulations, and contact details. The site is well-established with a domain age since 1998 and is operated by the Rijksoverheid, the Dutch central government. Technically, the site uses Drupal CMS and integrates Piwik PRO analytics with privacy-conscious configurations. The website is mobile-optimized, accessible, and professionally designed, reflecting high content quality and trustworthiness. Security posture is strong with HTTPS and DNSSEC enabled, though explicit security headers and published security policies could be improved. Overall, the site demonstrates a mature digital presence aligned with government standards and user needs.

V

Voka

voka.be

70

Voka is a prominent Flemish network representing enterprises in Flanders, Belgium. It focuses on advocacy, policy formulation, and providing training and networking opportunities to its members. The website reflects a mature digital presence with comprehensive content tailored to Flemish businesses and stakeholders. Technically, the site is built on Drupal CMS, leveraging modern libraries and analytics tools such as Matomo and Google Tag Manager, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and bot protection via hCaptcha, although explicit security policy and incident response information are not publicly available. Overall, the site is trustworthy and professional, with privacy and cookie compliance well implemented. The WHOIS data is privacy protected, which is common for organizations of this nature, and does not detract from the site's legitimacy.

T

Televic Group

televic.com

64

Televic Group is a well-established technology company specializing in critical communication solutions across four main markets: conference, education, healthcare, and rail. With over 75 years of experience and a global presence spanning 9 locations, Televic offers innovative products and systems designed to empower seamless communication. Their business model focuses on B2B technology solutions, targeting organizations requiring reliable and advanced communication infrastructure. The website reflects a professional and consistent brand image, supporting multiple languages and rich multimedia content to engage their diverse audience. Technically, the website is built on Drupal CMS and leverages modern tools such as Weglot for multilingual support, Google Tag Manager, Microsoft Clarity, and social media integrations for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses reputable analytics and tracking services. However, it lacks explicit security headers and publicly available incident response or vulnerability disclosure information, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and branding suggest legitimacy. Overall, Televic's digital presence is strong, with good content quality and technical implementation. Addressing security best practices and improving transparency around domain registration and incident response would enhance trust and compliance.

闪

闪电加速器

lookmanga.com

44

闪电加速器是一家新兴的网络加速服务提供商，专注于为用户提供高速、安全、无限制的VPN加速服务。其产品覆盖iOS、Android、Windows和macOS多个平台，满足用户科学上网、游戏加速和流媒体访问需求。网站设计现代，内容丰富，用户评价积极，体现出一定的市场竞争力。技术架构基于Drupal CMS，集成了Bootstrap和FontAwesome等现代前端技术，支持移动端良好体验。安全方面，域名注册信息透明，但缺乏DNSSEC和安全HTTP头，且未发现隐私政策和合规声明，存在合规风险。整体来看，网站处于初创阶段，需加强安全和合规建设以提升用户信任和市场地位。

Always Play Legally is a Belgian government-backed initiative by the Kansspelcommissie (KSC) focused on educating consumers about the differences between legal and illegal online gambling sites. The campaign aims to protect consumers by promoting licensed gambling platforms and blocking access to illegal sites. The website serves as an informational portal with videos, lists of legal and illegal sites, and contact resources. It is positioned as an authoritative source in the Belgian gambling regulatory landscape. Technically, the website is built on Drupal CMS with Paddle platform integration, featuring modern web technologies such as Google Fonts and Bootstrap for responsive design. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Cookie consent mechanisms and privacy policies are implemented, reflecting compliance with GDPR requirements. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. The WHOIS data is transparent and consistent with the campaign's official nature, enhancing trustworthiness. Overall, the website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic improvements could focus on enhancing security headers, publishing security policies, and adding incident response information to strengthen security posture and user trust.

The Gaming Commission website (gamingcommission.be) serves as the official online presence of the Kansspelcommissie, the Belgian government regulator for gambling activities. Established under the law of 7 May 1999, the commission oversees licensing, compliance, and player protection in the gambling sector. The website provides comprehensive information about legal gambling, player protection, regulatory advice, and enforcement actions. It targets gambling operators, players, and government stakeholders within Belgium. The site is multilingual, professionally designed, and includes recent news and resources relevant to its audience. Technically, the site is built on Drupal CMS and employs modern web technologies including Matomo and Google Analytics for tracking, with a clear cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be explicitly implemented. No security or incident response policies are published, which could be improved. Overall, the site reflects a mature digital infrastructure suitable for a government regulator, with high trustworthiness and good privacy compliance. The domain registration data aligns well with the website's claims, reinforcing legitimacy. No adult or explicit content is present, making it safe for general audiences.

A

Anna Claire models and events

annaclaire.net

63

Anna Claire is a luxury international escort agency specializing in high-class social escorts and elite travel companions across Europe, USA, Asia, and Australia. The company targets affluent and influential clientele, offering bespoke introductions and concierge travel packages. The website is professionally designed with good content quality and clear navigation, supported by a Drupal CMS infrastructure and Cloudflare services for performance and security. Security posture is moderate with HTTPS enforced and some security headers present, but lacks DNSSEC and comprehensive security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is consistent and legitimate, supporting the business claims. The site contains adult content and is intended for an adults-only audience.

L

Limbažu novada pašvaldība

limbazi.lv

60

Limbažu novada pašvaldība is the official local government authority for Limbaži Municipality in Latvia, providing a comprehensive range of public services, administrative information, and community resources through its website. The site serves residents and stakeholders with detailed navigation covering municipal governance, services, projects, and cultural activities. The website is built on Drupal CMS and integrates Google Analytics with privacy-conscious settings. The technical infrastructure demonstrates moderate performance with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. The absence of WHOIS data limits domain legitimacy verification, but the website's content and structure strongly indicate a legitimate government entity. Overall, the site is professional, trustworthy, and serves its public service mission effectively.

R

Rīgas valstspilsētas pašvaldība

riga.lv

62

Rīgas valstspilsētas pašvaldība operates as the official municipal government of Riga, Latvia's capital city. The website serves as a comprehensive portal providing governance information, public services, administrative contacts, and community resources. It targets residents, local businesses, and visitors seeking municipal information and services. The site is structured with clear navigation and extensive content covering city administration, committees, departments, public notices, and social programs. Technically, the website is built on Drupal CMS, leveraging modern web technologies including Google reCAPTCHA and Google Analytics for security and analytics respectively. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and security headers present, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with visible cookie consent and a comprehensive privacy policy in Latvian. WHOIS data was unavailable due to query limits, limiting domain registration trust analysis, but the website content and structure strongly indicate legitimacy as a government entity. Overall, the site is professional, trustworthy, and functional with room for improvement in explicit security disclosures and performance optimization.

G

GC International GmbH

gc.dental

77

GC International GmbH is a leading global manufacturer and distributor of dental materials, serving dental laboratories and surgeries in over 100 countries. The company positions itself as a market leader with a broad international presence and a comprehensive product portfolio tailored to dental professionals. The website reflects a mature digital presence with clear branding, structured content, and multilingual support. Technically, the site is built on Drupal CMS and integrates modern tools such as Google Tag Manager and CookiePro for analytics and privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies could be improved. WHOIS data is unavailable, which slightly impacts trust but the website's content and contact information support legitimacy. Overall, the site is professional, compliant with privacy regulations, and well-structured for its target audience.

Ე

ეროვნული ლიგა (National League)

eliga.ge

55

The website erovnuliliga.ge serves as the official or semi-official digital platform for the Georgian National Football League, providing comprehensive football-related content including news, match results, statistics, and multimedia. It targets football fans and the Georgian sports community, positioning itself as a key media outlet for national football. Technically, the site is built on Drupal CMS, integrates modern analytics and social media tools, and is hosted with Cloudflare DNS services, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks visible security headers and formal privacy or cookie policies, which are critical for compliance and user trust. The domain registration is consistent with the business focus and shows legitimacy. Strategic recommendations include adding privacy and cookie policies, security headers, and incident response contacts to enhance compliance and security maturity.

Ე

ეროვნული ლიგა

erovnuliliga.ge

55

The website 'ეროვნული ლიგა' serves as the official digital platform for the Georgian National Football League, delivering comprehensive football-related content including news, match results, statistics, and multimedia. It targets football fans and the Georgian sports community, positioning itself as an authoritative source backed by the Georgian Football Federation. Technically, the site is built on Drupal CMS, employs modern web technologies, and is hosted with Cloudflare DNS services, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS but lacks visible security headers and formal security policies, indicating room for improvement in security posture and privacy compliance. The absence of privacy and cookie policies, as well as contact information, reduces compliance with GDPR and user trust. Overall, the site is professional and content-rich but would benefit from enhanced security and privacy measures.

E

Eden Springs (Denmark) A/S

edensprings.dk

57

Eden Springs Denmark is a leading supplier of water and coffee solutions for businesses and homes in Denmark, recently integrated into the Culligan group. The company offers a broad range of products including spring water coolers, filtered drinking water dispensers, coffee beans, and related services, emphasizing sustainability and customer vitality. Their market position is strong within Denmark, supported by a professional website with clear navigation and multilingual support. Technically, the site is built on Drupal CMS with modern JavaScript libraries and tracking tools such as Google Tag Manager and Microsoft Clarity, ensuring good performance and analytics capabilities. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and incident response details are missing. The absence of WHOIS data reduces transparency but does not significantly impact trust given the brand recognition and professional presentation. Overall, Eden Springs Denmark demonstrates a mature digital presence with room for security policy enhancements.

C

Chateaud'eau SARL

chateaudeau.lu

60

Chateaud'eau SARL is a Luxembourg-based company specializing in providing water solutions for enterprises, including water fountains, bottled water, and filtration systems. The company positions itself as a market leader in Luxembourg, supported by its affiliation with the Eden Springs group. Their offerings focus on improving workplace hydration with environmentally conscious products and services. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, targeting B2B customers in Luxembourg. Technically, the site uses Drupal CMS with modern JavaScript libraries and integrates multiple analytics and advertising tracking tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, though it lacks some advanced security headers and published security policies. The absence of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and consistent with a professional enterprise. Overall, the site demonstrates good compliance with privacy regulations and offers a trustworthy user experience.

E

Eden Springs

edensprings.no

65

Eden Springs is a leading Norwegian provider of drinking water and coffee solutions for businesses, offering high-quality water coolers, coffee machines, and related products. Since January 2024, Eden Springs has been part of the Culligan group, enhancing its market position and service capabilities. The website is professionally designed, mobile-optimized, and provides clear navigation and business information targeted at corporate customers in Norway. Technically, the site runs on Drupal CMS with modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and Bing Ads, all managed with GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and explicit security policies are absent. The absence of WHOIS data is a notable anomaly but does not currently detract from the site's legitimacy based on content and contact information. Overall, Eden Springs presents a credible and professional online presence with room for enhanced security transparency and incident response readiness.

E

Eden Springs

edensprings.ee

53

Eden Springs Estonia is a well-established provider of innovative water and coffee solutions targeted at businesses and home users within Estonia. The company operates under the umbrella of the Culligan Group, enhancing its market credibility and reach. Their website offers a professional and user-friendly experience, showcasing a range of products including water coolers, filtered water, and coffee machines, with clear calls to action and localized content in Estonian. The presence of a cookie consent mechanism and privacy policy indicates compliance with GDPR requirements. Technically, the site is built on Drupal CMS, uses modern JavaScript libraries, and integrates analytics tools such as Google Tag Manager and Piwik PRO, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are absent. Overall, Eden Springs Estonia presents a trustworthy and professional online presence aligned with its business objectives.

E

Eden Springs Oy Finland

edensprings.fi

59

Eden Springs Oy Finland operates as a specialized distributor of water and coffee solutions for businesses in Finland. The company offers a broad range of water dispensers including spring water and tap water machines, along with related accessories and services. Since January 2024, Eden Springs has been part of the Culligan group, enhancing its market position and operational capabilities. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant business content targeted at Finnish enterprises. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and Trustpilot widgets. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is well addressed with comprehensive cookie consent mechanisms and GDPR-aligned privacy policies. Contact information is clearly presented, though no direct company emails are visible in the HTML content. Overall, the site reflects a mature digital presence consistent with a medium-sized B2B service provider in the water solutions sector.

E

Eden Springs (Switzerland) SA

edensprings.ch

60

Eden Springs (Switzerland) SA operates as a specialized provider of water and coffee solutions targeting businesses and households within Switzerland. The company offers a range of products including water dispensers with gallons, plumbed water dispensers, and home water delivery services. As part of the Culligan group, Eden Springs holds a strong market position with a focus on quality, environmental responsibility, and customer service. The website reflects a professional brand image with consistent messaging and trust signals such as Trustpilot reviews. Technically, the website is built on Drupal CMS and leverages modern JavaScript libraries and tracking tools such as Google Tag Manager and Microsoft Clarity. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and accessible privacy and cookie policies. From a security perspective, the site enforces HTTPS and uses cookie consent best practices. However, explicit security headers and published security policies are absent, representing an area for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional controls and transparency. The domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the website. No WAF or blocking mechanisms interfere with content accessibility, allowing full analysis. Strategic recommendations include implementing stronger security headers, publishing incident response contacts, and enhancing accessibility features to further strengthen the site’s security and compliance stance.

E

Eden Springs

edensprings.lt

53

Eden Springs Lithuania operates as a specialist supplier of water and coffee products targeting both private individuals and corporate clients within Lithuania. The company is part of the larger Culligan group, indicating a strong corporate backing and market presence. Their website offers a comprehensive range of water dispensers, filtration systems, and coffee machines, supported by clear navigation and professional branding. The digital infrastructure is built on Drupal CMS with modern JavaScript libraries and analytics tools, reflecting a mature technical setup. Privacy compliance is well addressed with cookie consent mechanisms and a privacy policy in Lithuanian. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are lacking. The absence of WHOIS data limits domain legitimacy verification, but the website content and branding suggest a legitimate and established business. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.