Security Directory

N

NOVASOL

novasol.it

65

NOVASOL is a well-established European vacation rental company with over 50 years of experience, offering a wide range of holiday homes and apartments across 22 countries. The company operates under the parent organization Awaze, headquartered in Denmark. The website is professionally designed, mobile-optimized, and provides comprehensive information for both vacationers and property owners. It features strong branding consistency and trust indicators such as privacy policies and social media presence. Technically, the site uses modern frameworks like Next.js and React, integrates Google Tag Manager and New Relic for analytics and performance monitoring, and employs security best practices including HTTPS and content security policies. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the site demonstrates a mature digital presence with good security posture and compliance with GDPR.

N

NOVASOL

novasol.dk

67

NOVASOL is a well-established European vacation rental company specializing in summer houses and holiday homes across 18 countries. Founded in 1968, it operates under the parent company Awaze and offers a broad portfolio of unique properties tailored to diverse customer needs. The website demonstrates a mature digital presence with modern technologies such as React and Next.js, integrated performance monitoring via New Relic, and marketing tools like Google Tag Manager. Privacy and cookie policies are present, indicating GDPR compliance. Security posture is strong with HTTPS, security headers, and CAPTCHA integration. However, the absence of WHOIS data and explicit contact information on the main site limits full trust verification. Overall, NOVASOL presents a professional and trustworthy platform for vacation rentals in Europe.

N

NOVASOL

novasol-vacances.fr

63

NOVASOL is a well-established European vacation rental company offering a wide range of holiday homes including villas, houses, and apartments across multiple European countries. The website is professionally designed with a clear focus on user experience, mobile optimization, and accessibility. It leverages modern web technologies such as React and Next.js, and integrates advanced analytics and monitoring tools including Google Tag Manager, New Relic, and Usercentrics for privacy compliance. Security measures are robust, with HTTPS enforced, content security policies, and reCAPTCHA Enterprise implemented to protect user interactions. However, the absence of publicly available WHOIS data suggests privacy protection, which is justified for this business type. Overall, the site demonstrates a mature digital presence with good compliance and security posture.

N

NOVASOL

novasol.co.uk

65

NOVASOL is a well-established European holiday villa rental company founded in 1968 and operating under the parent company Awaze. The website offers a comprehensive collection of holiday villas, apartments, and chalets across multiple European destinations, targeting holidaymakers seeking villa rentals. The business model is focused on online bookings with a strong market presence in the hospitality and real estate sectors. The website is professionally designed with consistent branding and good content quality, supporting a positive user experience.

Cyberport is a well-established electronics and technology retailer operating primarily in German-speaking countries, with a strong online presence since 1998. The company offers a wide range of consumer electronics including notebooks, PCs, tablets, smartphones, TVs, and audio equipment at competitive prices. The website targets general consumers and provides comprehensive customer support channels. Technically, the site is built on modern frameworks such as Next.js and React, with Tailwind CSS for styling, and integrates Google Tag Manager for analytics and a consent manager for GDPR compliance. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable due to quota limits, the domain age and business history align with the website claims.

U

Up Hellas

uphellas.gr

62

Up Hellas is a Greece-based company specializing in designing and delivering digital-first employee benefits solutions including meal cards, gift cards, multi-gym memberships, and corporate expense management. The company targets B2B clients and their employees, positioning itself as an established provider in the Greek market. The website reflects a professional and consistent brand image with clear messaging about its services. Technically, the site is built on modern frameworks such as Next.js and Material-UI, with integrations for analytics, marketing, and cookie consent. Security posture is strong with HTTPS and security headers implemented, though explicit security and privacy policies are missing. The WHOIS data aligns with the business claims, supporting legitimacy. Overall, the site is well-designed, functional, and moderately privacy compliant but could improve transparency around privacy and incident response.

Cyberport is a well-established German electronics retailer founded in 1998, offering a wide range of consumer electronics including notebooks, PCs, tablets, smartphones, TVs, and audio equipment. The company operates a professional e-commerce platform targeting general consumers in Germany and neighboring regions. The website demonstrates a modern technical infrastructure built on Next.js and React, with Cloudflare providing DNS and CDN services. Security posture is strong with HTTPS enforced and consent management implemented, although explicit security headers and formal security policies are not evident. Privacy compliance is partially addressed via cookie consent mechanisms but lacks visible privacy and terms of service documentation in the provided content. Overall, Cyberport presents a credible and professional online presence with good business and technical maturity.

T

Tom Tailor

tom-tailor.at

69

Tom Tailor operates a professional e-commerce platform specializing in fashion apparel and accessories for women, men, and children, primarily targeting the Austrian market. The website presents a well-structured, modern design with integrated video marketing and a strong brand presence across multiple social media platforms. The business model focuses on retail sales with additional services such as store location finder and customer loyalty programs. Technical infrastructure leverages modern web technologies including React and Next.js, with third-party integrations for consent management and personalization. Security posture is robust with HTTPS enforcement and appropriate security headers, though WHOIS data is unavailable due to privacy protection. Overall, the site demonstrates a mature digital presence suitable for a large retail brand.

B

Brille24

brille24.at

72

Brille24 is a well-established online optician platform primarily serving the German market, offering a wide range of eyewear products including prescription glasses, sunglasses, and progressive lenses. The website demonstrates a strong market position with a comprehensive product catalog, brand partnerships, and customer-friendly policies such as money-back guarantees and free returns. The target audience includes consumers seeking affordable and stylish eyewear online. Technically, the site leverages modern frameworks like Next.js and React, supported by Akamai CDN for performance and New Relic for monitoring, ensuring a fast and responsive user experience across devices. Security measures are robust with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is evident with GDPR-aligned policies and cookie consent mechanisms. Overall, the site presents a professional, trustworthy, and user-friendly e-commerce platform with moderate to high digital maturity.

U

Universal Versand GmbH

universal-versand.at

65

Universal Versand GmbH is a well-established Austrian e-commerce retailer specializing in furniture, fashion, and household goods. The company targets general consumers within Austria, offering a broad product range through a modern and user-friendly online platform. The website demonstrates a strong market position as a regional leader in online retail, supported by comprehensive customer service and delivery options. Technically, the website leverages modern frameworks such as Next.js and React, hosted on Google Cloud infrastructure, ensuring fast performance and excellent mobile optimization. Security measures are robust, with HTTPS enforced and multiple security headers implemented, although there is room for improvement in public security policy disclosures and incident response transparency. Privacy compliance is well addressed with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the website presents a professional and trustworthy digital presence with a high level of technical maturity and business credibility.

B

Bielefeld Marketing GmbH

matchyourfuture.de

53

The website matchyourfuture.de is a professionally designed city marketing platform operated by Bielefeld Marketing GmbH, aimed at promoting the city of Bielefeld, Germany. It highlights the city's cultural, educational, economic, and recreational strengths through engaging content and an interactive quiz. The site targets potential residents, students, professionals, and tourists, positioning Bielefeld as a vibrant and attractive city. Technically, the site leverages modern web technologies including React and Next.js, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. Overall, the site demonstrates high professionalism and trustworthiness, with strong social media integration and partner references.

B

Baumatpool

baumatpool.ch

63

Baumatpool is a Swiss online marketplace specializing in building materials and surplus stock, providing a platform for buyers and sellers within the construction sector. The website is well-positioned in the niche Swiss market, targeting construction professionals and individuals seeking building materials. It offers key services such as listing, searching, and advertising building materials. The business is linked to Agrarmedien AG, which appears to be the parent company managing related platforms. Technically, the site uses modern frameworks like Next.js and Chakra UI, with integrated analytics and consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS, security headers, and monitoring tools like Sentry, though explicit security policies and incident response contacts are not published. Overall, the site is professional, secure, and compliant with privacy regulations, though contact information is limited to forms and social media. Strategic recommendations include publishing dedicated security and incident response policies and enhancing direct contact options.

A

Agropool

agropool.ch

50

Agropool operates as a specialized online marketplace focused on new and used agricultural and municipal machinery, serving primarily the Swiss market. The platform offers a comprehensive catalog of machinery categories, facilitating easy search and purchase for farmers and related professionals. The website demonstrates a mature digital infrastructure leveraging modern web frameworks such as Next.js and React, complemented by Chakra UI for UI components. Analytics and error monitoring are implemented via Matomo and Sentry respectively, indicating a commitment to operational stability and user insights. Privacy and cookie compliance are well addressed with explicit policies and consent mechanisms. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-positioned in its niche.

B

Bergbahn Aktiengesellschaft Kitzbühel

kitzski.at

50

Bergbahn Aktiengesellschaft Kitzbühel operates the KitzSki website, providing comprehensive mountain tourism services including summer hiking, trail biking, and winter skiing in the Kitzbühel region of Austria. The company is well-positioned as a leading ski and mountain resort with multiple certifications and a strong brand presence. Their website is modern, mobile-optimized, and offers multilingual support, enhancing accessibility for international visitors. The technical infrastructure leverages modern frameworks such as Next.js and React, ensuring good performance and user experience. Security posture is strong with HTTPS enforcement and standard security headers, though there is room to improve transparency by publishing dedicated security policies and incident response contacts. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website and business demonstrate high professionalism and trustworthiness, supporting their market leadership in mountain tourism.

마

마이페어(MyFair)

myfair.co

63

마이페어(MyFair) is a Korean-based online platform specializing in overseas exhibition booth reservation and comprehensive participation management services. The platform targets businesses, including SMEs, startups, and organizations seeking to participate in global trade shows. It offers key services such as exhibition search, booth reservation, professional partner matching, and management of exhibition-related tasks. The website is professionally designed with a clear structure and good user experience, primarily in Korean language, catering to the Korean market. Technically, the site uses modern frameworks like Next.js and React, integrates multiple marketing and analytics tools, and is hosted on a reliable CDN infrastructure. Security measures include HTTPS enforcement and standard security headers, although explicit privacy and cookie policies are missing. Overall, the site demonstrates a moderate to good security posture with room for improvement in privacy compliance and contact transparency.

C

Centrum Air

centrum-air.com

57

Centrum Air is a private airline company based in Uzbekistan, founded in 2023, offering affordable flight tickets primarily from Tashkent to various regional and international destinations. The website provides a modern booking platform built on Next.js and React, featuring multiple flight routes, schedules, and additional services such as extra baggage, seat selection, and wheelchair rental. The technical infrastructure is contemporary with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business appears legitimate and focused on transportation services with a clear market presence in Uzbekistan and surrounding regions.

C

cloudscale.ch Ltd.

cloudscale.ch

11

cloudscale.ch Ltd. is a Swiss-based Infrastructure-as-a-Service (IaaS) cloud provider specializing in scalable root servers with a strong emphasis on security, high availability, and performance. Their services target developers, engineers, tech leads, and CISOs who require reliable cloud infrastructure hosted entirely in Switzerland, ensuring data sovereignty and legal clarity. The company offers virtual servers, load balancers, object storage, and GPU servers with transparent pricing and developer-friendly tools such as API and control panel management. The website reflects a professional and trustworthy brand with clear contact information and customer testimonials. Technically, the website is built on a modern Next.js framework with React, optimized for fast performance and mobile responsiveness. The site uses standard SEO practices including Open Graph and Twitter Card metadata. No CMS is detected, indicating a custom-built platform. The hosting provider is not explicitly stated but is likely Swiss-based or self-hosted. Accessibility and SEO optimizations are good, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and uses secure forms for user input. However, no explicit security headers were detected in the HTML content, and there is no published security policy or vulnerability disclosure page. The presence of an abuse contact email indicates some incident response readiness. Privacy compliance is mostly met with a comprehensive privacy policy and terms of service, but the absence of a cookie consent mechanism is a minor compliance gap. Overall, cloudscale.ch presents a secure, professional, and credible cloud service offering with strong Swiss data protection positioning. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing a vulnerability disclosure policy, and enhancing transparency around security frameworks and data protection officer contact details to further strengthen trust and compliance.

H

HC24 GmbH & Co. KG

hc24.de

55

HC24 GmbH & Co. KG operates an online platform specializing in furnished temporary housing rentals across Germany. The website offers a user-friendly search and booking experience for furnished apartments, rooms, and houses, targeting individuals seeking flexible living arrangements. The company positions itself as a trusted intermediary with verified listings and customer support. Technically, the website is built on modern frameworks such as Next.js and React, with media assets hosted on Amazon S3, ensuring a moderate to good performance and mobile optimization. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, though lacks visible security headers and explicit security or privacy policy pages. Overall, the site is professional, trustworthy, and compliant with basic privacy regulations, but could improve transparency and security posture by publishing detailed policies and contact information.

P

Poper

showpopup.com

72

Poper is a technology company offering an AI-powered onsite engagement platform that enhances user interactions, retention, and conversion rates through smart popups, widgets, notifications, and gamification tools. The company targets website owners, e-commerce stores, and marketers seeking to improve engagement and sales. Their market position is supported by serving over 2000 brands and providing a comprehensive suite of AI-driven marketing tools. Technically, the website is built on modern frameworks such as Next.js and React, with good SEO, mobile optimization, and performance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although no explicit security policy or incident response contacts are published. Overall, the website is professional, trustworthy, and well-structured, with privacy and cookie policies in place. WHOIS data is privacy protected, which is justified for this SaaS business, but limits registrant transparency.

2

20 Minuten

20minuten.ch

77

20 Minuten is the largest Swiss news portal offering 24/7 news coverage, videos, and community features primarily targeting the German-speaking Swiss audience. The website demonstrates a mature digital infrastructure using modern frameworks such as Next.js and React, supported by various third-party analytics and advertising technologies. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed through cookie consent mechanisms and a comprehensive privacy policy. Overall, the website presents a professional, trustworthy, and user-friendly platform with extensive content and good technical implementation.

A

Alexis Regnaud

alexisregnaud.com

60

Alexis Regnaud is a freelance web and mobile developer with over 10 years of experience, including 5 years at Samsung. The website showcases his expertise in creating custom web and mobile interfaces using modern technologies such as React, Next.js, and React Native. The business model is focused on freelance services with collaboration from trusted partners, targeting clients seeking high-quality digital solutions. Technically, the site is built on a modern stack with excellent performance and mobile optimization. Security posture is good with HTTPS and reCAPTCHA integration, though it lacks some security headers and formal privacy policies. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract from the professional presentation of the site. Overall, the site is trustworthy and professional but would benefit from enhanced compliance and security documentation.

A

Axon Enterprise, Inc.

axon.com

70

Axon Enterprise, Inc. is a leading technology company specializing in public safety solutions, including TASER devices, police body cameras, cloud-based evidence management, AI-powered tools, and drone detection systems. The company targets law enforcement, federal agencies, enterprise, fire, EMS, corrections, and campus safety sectors, positioning itself as a market leader with a comprehensive ecosystem designed to protect life and enhance public safety operations. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on AWS with strong performance and mobile optimization. Security posture is robust with HTTPS, security headers, and privacy policies in place, though explicit vulnerability disclosure and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting Axon's reputation as a credible enterprise in the public safety technology market.

TransPak AG is a well-established German packaging supplier with over 50 years of experience, serving business customers across Germany, Austria, and Switzerland. The company offers a broad range of over 40,000 packaging products and related services including logistics, eProcurement, and packaging machine support. Their market position is strong, supported by multiple physical locations and certifications such as ISO 9001 and 14001. Technically, the website is built on modern frameworks like Next.js and React, with good performance, mobile optimization, and SEO practices. Security posture is robust with HTTPS, security headers, and secure forms, though incident response details are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations.

I

IngenCO2.dk

co2neutralwebsite.de

54

IngenCO2.dk operates the CO2-neutral website certification platform, www.co2neutralwebsite.de, providing brands and website owners with a service to offset their websites' carbon footprint by supporting global CO2 reduction projects certified by the Gold Standard. The platform is well-positioned in the sustainability market with over 32,000 websites certified, trusted by notable partners and audited by BDO for CO2 compensation accuracy. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content in German, targeting environmentally conscious businesses and organizations. Technically, the site leverages modern frameworks such as Next.js and React, integrates Google Analytics and Tag Manager for analytics, and uses Cloudflare for DNS and likely CDN services, ensuring fast and secure delivery. Security posture is strong with HTTPS enforced and bot protection via Google reCAPTCHA, though explicit security headers and incident response policies could be improved. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

C

codin GmbH

codin.ch

76

codin GmbH is a Swiss-based managed IT service provider specializing in comprehensive IT solutions for small and medium-sized enterprises (KMU). Their offerings include IT support, Microsoft 365 services, cybersecurity, procurement, training, and backup management, all provided at a fixed monthly price. Positioned as an external IT department, codin GmbH aims to simplify and secure IT operations for SMEs, allowing clients to focus on their core business. The website reflects a professional and modern digital presence, leveraging Next.js and Vercel hosting for performance and scalability. Cookie consent is managed effectively through Cookiebot, ensuring compliance with data privacy norms. Security posture is strong with HTTPS and appropriate security headers, though explicit privacy policy and terms of service pages are currently missing, representing areas for improvement. Overall, codin GmbH demonstrates a credible and trustworthy business with a clear market focus and solid technical infrastructure.

I

Inigo

inigo.com

66

Inigo is a specialized UK-based estate agency focusing on the sale and marketing of historic and architecturally significant homes. The company targets discerning buyers and sellers interested in authentic British homes with rich stories and heritage. Their market position is niche but well-defined, supported by professional branding and trust indicators such as accreditation by The Property Ombudsman and Trading Standards. The website offers comprehensive property listings, editorial content, and customer engagement tools such as newsletters and property alerts. Technically, the website is built on modern frameworks including Next.js and React, with integrations for analytics (Google Analytics) and marketing automation (Klaviyo). The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in security headers and incident response transparency are recommended. The SSL configuration is excellent, ensuring secure communications. From a security perspective, the site enforces HTTPS and provides cookie consent mechanisms aligned with GDPR requirements. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. No security.txt or incident response information is published, which could be improved to enhance security posture and customer trust. Overall, Inigo presents a professional and trustworthy online presence for its real estate business, but domain registration opacity and minor security best practice gaps suggest areas for improvement. Strategic recommendations include verifying domain registration details, implementing security headers, publishing security policies, and enhancing incident response readiness.

S

Senab Eikeland

senabeikeland.no

71

Senab Eikeland is a Norwegian company specializing in furniture and interior solutions with a strong emphasis on sustainability and circular economy principles. The company offers a range of services including furniture sales, refurbishment, flexible leasing, and digital portfolio management. Their market position is that of a medium-sized, reputable player in the Norwegian real estate and interior design sector, targeting businesses and organizations seeking tailored and sustainable furniture solutions. Technically, the website is built on modern frameworks such as Next.js and uses Sanity CMS, ensuring a good level of digital maturity and performance. Security-wise, the site employs HTTPS and Google reCAPTCHA v3, with standard security headers, but lacks explicit security policies and incident response information. Overall, the website is professional and trustworthy, though improvements in privacy compliance and contact transparency are recommended.

S

SED Digital

seddigital.co.uk

60

SED Digital is a UK-based digital agency specializing in web build and development, UI & UX design, and digital marketing services. Founded in 2024, it operates as a division of Steve Edge Design and targets businesses seeking creative and data-driven digital solutions. The company offers a broad range of services including e-commerce, SEO, CRO, paid media, and digital analytics, positioning itself as a comprehensive partner for digital growth across multiple sectors such as real estate, professional services, hospitality, legal, technology, retail, design & architecture, and banking & finance. The website reflects a professional and modern digital presence with excellent design and user experience. Technically, the website is built on a modern stack using Next.js and React, with WordPress likely serving as a headless CMS. It is hosted by Fasthosts Internet Ltd, a reputable provider. The site demonstrates good performance, mobile optimization, and SEO practices. Analytics are implemented via Google Tag Manager, and a cookie consent mechanism is present, indicating attention to privacy compliance. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain registration is recent but consistent with the company's founding date and registrar information, supporting legitimacy. Overall, SED Digital presents a trustworthy and professional digital agency with a strong technical foundation and good privacy practices. Enhancements in security policy transparency and incident response readiness would further strengthen its security posture.

B

Buzzvil

buzzvil.com

28

Buzzvil is a South Korean technology company specializing in reward-based advertising models that focus on customer acquisition, activation, and monetization. Their website presents a professional and modern interface primarily in Korean, targeting businesses and advertisers interested in innovative advertising solutions. The company positions itself as an innovative player in the advertising technology sector with a unique customer benefit model. Technically, the website is built using modern JavaScript frameworks such as React and Next.js, with good mobile optimization and moderate performance. Security posture is strong with HTTPS enforced and multiple security headers present, although privacy and cookie policies are not clearly visible, indicating room for improvement in compliance. The absence of WHOIS data is a notable concern, suggesting either privacy protection or recent domain registration, which slightly reduces trustworthiness. Overall, the website is professional and functional but would benefit from enhanced transparency and compliance documentation.

L

Lyon & Turnbull

lyonandturnbull.com

10

Lyon & Turnbull is a well-established UK specialist auction house with a rich history dating back to 1826. The company operates primarily in Edinburgh and London, offering expert auctioneering services in fine art, antiques, jewellery, and collectibles. Their market position is strong within the UK auction sector, targeting collectors and sellers of high-value items. The website reflects a professional and modern digital presence, utilizing advanced web technologies such as Next.js and Material-UI, and integrates multiple analytics and tracking tools with user consent mechanisms. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of WHOIS data and security headers suggests room for improvement in transparency and security best practices. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected in the provided content. Overall, the website is trustworthy and professional, but the lack of domain registration data and some missing security policies slightly reduce the confidence level.

T

The Modern House

themodernhouse.com

76

The Modern House is a well-established UK-based estate agency specializing in the sale of architecturally significant and design-led homes. Founded in 2000, it has carved a niche in the luxury real estate market with a strong editorial and curated approach to property listings. The website reflects a mature digital presence with excellent design, clear navigation, and mobile optimization, targeting affluent buyers and sellers interested in contemporary and period homes across the UK. Technically, the website leverages modern web technologies including React and Next.js, hosted likely on Vercel, with Cloudflare DNS services. Performance and SEO optimizations are well implemented, and the site integrates marketing and analytics tools such as Google Analytics and Klaviyo for user engagement and tracking. Privacy and cookie policies are comprehensive and include consent mechanisms, indicating good compliance with GDPR requirements. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, there is no publicly available security policy or incident response information, and no vulnerability disclosure mechanism is present. The WHOIS data is consistent with the business claims, showing a long-standing domain registration without privacy protection, enhancing trustworthiness. Overall, The Modern House website demonstrates a strong business and technical foundation with good security hygiene and privacy compliance. Strategic improvements could include publishing a formal security policy, incident response details, and vulnerability disclosure information to further enhance trust and transparency.

H

Holidu Hosts GmbH

bookiply.com

76

Bookiply is a vacation rental management platform focused on helping hosts maximize bookings and reduce administrative workload. It operates primarily in Europe and is part of the Holidu Group, a recognized entity in the hospitality sector. The website offers a comprehensive suite of services including property listing, channel management, and personal support for hosts. The company targets vacation rental owners and agencies, providing an all-in-one solution to increase visibility and revenue. Technically, the website is built using modern web technologies such as React and Next.js, hosted on AWS in Ireland, and integrates multiple analytics and marketing tools including Google Analytics, Hotjar, and Facebook Pixel. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly disclosed, which could be improved. The WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is mitigated by the professional presentation and detailed imprint. Overall, Bookiply presents a trustworthy and professional online presence with strong compliance and technical maturity. Strategic improvements in transparency around security policies and incident response would enhance its security posture and trustworthiness further.

S

Sozialhelden e.V.

wheelmap.org

62

Wheelmap.org is a non-profit platform operated by Sozialhelden e.V., focused on providing an online map to search, find, and mark wheelchair-accessible places worldwide. The platform leverages OpenStreetMap data and encourages community contributions to improve accessibility information. It targets users with mobility impairments and advocates for accessibility awareness. Technically, the website is built using modern frameworks such as React and Next.js, integrates Mapbox APIs, and uses Cloudflare and Fastly for DNS and CDN services. The site is mobile optimized and accessible, with good SEO practices. Security posture is strong with HTTPS and Content Security Policy implemented, though DNSSEC is not enabled and some security headers could be added. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Analytics is handled via Piwik/Matomo with disabled cookies, reflecting a privacy-conscious approach. Overall, the site is trustworthy and professionally maintained, but could improve transparency on privacy and incident response.

D

Deutscher Sparkassen- und Giroverband

planspiel-boerse.de

62

Planspiel Börse is an educational platform operated under the auspices of the Deutscher Sparkassen- und Giroverband, offering Europe's largest stock market simulation game targeted at students and pupils. The website presents a professional and consistent brand image with a focus on financial education and engagement through interactive competitions. Technically, the site leverages modern frameworks such as Next.js and React, ensuring good mobile optimization and accessibility. However, the absence of explicit privacy and cookie policies, as well as missing security headers, indicates room for improvement in compliance and security posture. Overall, the domain registration data aligns well with the website's German educational focus, supporting its legitimacy.

M

Mondelez International

fcmilka.de

63

The website fcmilka.de serves as a promotional platform for the Milka brand's campaign in partnership with the Bundesliga football league. It offers consumers opportunities to participate in contests and win prizes by entering codes from Milka products. The site targets football fans and Milka consumers primarily in Germany, leveraging strong brand partnerships and official licensing to enhance engagement. The business model focuses on marketing and brand promotion through interactive fan experiences and contests. Technically, the website is built using modern web technologies including React and Next.js, hosted behind Cloudflare's CDN and security services. It employs Google Tag Manager and cookie consent tools to manage analytics and privacy compliance. The site is well-optimized for mobile devices, performs well, and follows good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, uses security headers, and avoids exposing sensitive data. However, it lacks explicit security policy documentation and incident response contacts, which could be improved. Privacy compliance is strong with clear links to comprehensive privacy and cookie policies managed by Mondelez International. Overall, the website presents a low-risk profile with high legitimacy due to its association with a major global brand. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure information, and enhancing incident response visibility to further strengthen trust and compliance.

B

BigRock

bigrock.in

73

BigRock is a leading Indian domain registration and web hosting provider offering a wide range of services including shared, VPS, dedicated, and cloud hosting, along with email hosting, website building, and online marketing solutions. The company has a strong market position in India, reinforced by its partnership with HostGator India, and targets small to medium businesses and entrepreneurs seeking affordable and reliable web presence solutions. Technically, the website is built on modern frameworks like Next.js and React, with extensive use of analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The site is fast, mobile-optimized, and well-structured, providing an excellent user experience. Security-wise, the site enforces HTTPS and uses SSL certificates, along with security products like SiteLock and CodeGuard, but lacks explicit published security policies and vulnerability disclosure information. Overall, the website is professional and trustworthy, though it would benefit from enhanced privacy and security transparency.

DeinDeal AG operates a Swiss-focused e-commerce platform specializing in private sales offering discounts up to 70% on a wide range of products including apparel, cosmetics, home goods, and travel. The company targets consumers in Switzerland seeking branded products at discounted prices. The website demonstrates a mature digital infrastructure leveraging modern web frameworks such as Next.js and React, integrated with Prismic CMS for content management. Performance and error monitoring are implemented via New Relic, and bot protection is enforced using Google reCAPTCHA v3. The security posture is strong with HTTPS and Content Security Policy in place, although explicit security policy and incident response information are not publicly available. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms active. Overall, the platform presents a professional and trustworthy online retail experience with extensive marketing and analytics integrations.

B

Brands for Employees

brandsforemployees.com

61

Brands for Employees is a Swiss-based platform offering weekly exclusive discount deals targeted at employees of participating companies. The website is built using modern web technologies including React and Next.js, hosted behind Cloudflare, and integrates analytics tools such as Hotjar and Cloudflare Insights. The platform aims to provide value through employee-exclusive offers, positioning itself as a niche service in the employee benefits market. Technically, the site demonstrates good mobile optimization and moderate performance, though accessibility features are basic. Security posture is adequate with HTTPS enforced and use of CDN security, but lacks explicit security headers and visible privacy or cookie policies. Contact information and legal disclosures are absent from the main page, which impacts trust and compliance perception. Overall, the site is safe for general audiences and does not contain adult or questionable content.

B

Bajour

bajour.ch

61

Bajour is a Swiss media company specializing in community journalism focused on Basel and its local community. The website offers news articles, community engagement features, and membership options, positioning itself as a trusted local media outlet. The content is professionally presented with a modern design and clear navigation, targeting residents interested in local news and cultural topics. Technically, the site is built on modern web technologies including React and Next.js, ensuring fast performance and excellent mobile optimization. Security posture is good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy business entity.

F

Finom

finom.co

80

Finom is a fintech company founded in 2019, providing online business banking and financial management solutions tailored for SMEs, freelancers, and entrepreneurs across multiple European countries. The platform offers business accounts with local IBANs, cashback rewards, electronic invoicing, and accounting integrations, leveraging partnerships with licensed banks SolarisBank and Treezor. Finom positions itself as a fast, reliable, and secure financial platform with multilingual support and regulatory compliance under De Nederlandsche Bank (DNB). Technically, the website is built on modern frameworks such as Next.js and React, hosted on Amazon Cloudfront CDN, and optimized for mobile and SEO. The site employs TLS encryption and security best practices, including strong security headers and GDPR compliance. The user experience is professional, with clear navigation, comprehensive content, and trust signals like awards and customer reviews. Security posture is strong, with encrypted data transfers, no exposed sensitive information, and deposit insurance coverage. However, the site lacks a dedicated security policy and incident response contact details, which could enhance transparency and trust. Overall, the domain registration aligns well with the business claims, supporting legitimacy and credibility. The website is safe for general audiences, contains no adult or questionable content, and provides clear contact channels primarily via email and web forms. Strategic recommendations include publishing explicit security and incident response policies, enhancing vulnerability disclosure, and maintaining rigorous third-party script audits to sustain security and compliance.

B

Bundesagentur für Arbeit

arbeitsagentur.de

73

The Bundesagentur für Arbeit website serves as the official digital portal for Germany's federal employment agency, providing comprehensive services including job search, unemployment benefits, career counseling, and support for families, people with disabilities, and immigrants. The site is well-positioned as a national government entity with a large enterprise scale, offering a broad range of public services to citizens and businesses alike. The content is professionally curated, accessible, and highly relevant to its target audience. Technically, the website employs modern web technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. The use of Matomo analytics reflects a commitment to privacy-conscious user tracking. The site is hosted on German infrastructure with secure HTTPS enforcement and demonstrates good SEO and accessibility practices. From a security perspective, the site benefits from ISO 27001 certification, indicating a mature information security management system. Security best practices are observed, including secure communication channels and cookie consent mechanisms. However, explicit incident response and vulnerability disclosure policies are not publicly available, representing an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing clear security incident response information, adding a security.txt file, and enhancing transparency around security contacts to further strengthen trust and security culture.

K

König-Brauerei GmbH

koenig.de

74

König-Brauerei GmbH operates the König Pilsener brand, a well-established brewery in Germany under the Bitburger Braugruppe umbrella. The website showcases their beer products, brewery tours, and fan engagement activities, targeting adult consumers with responsible marketing including age verification. The digital infrastructure is modern, leveraging Next.js and React, with integrated consent management and analytics tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though dedicated security policies and incident response contacts are absent. Overall, the site is professional, compliant with GDPR, and trustworthy, supporting a medium-sized hospitality business.

Spitex Glattal is a Swiss non-profit association providing comprehensive home care and support services in the Glattal region, including nursing, psychiatric care, household assistance, and meal delivery. Established in 2013, it serves multiple municipalities with a team of approximately 100 employees, emphasizing empathy, professionalism, and multicultural diversity. The website reflects a well-structured and professional digital presence, leveraging modern web technologies such as Next.js and React, hosted with DigitalOcean Spaces for media assets. The site is mobile-optimized and offers clear navigation and relevant content for its target audience. From a security perspective, the website employs HTTPS with a strong SSL configuration and does not expose sensitive data or vulnerable libraries. However, it lacks some security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is generally good, with a comprehensive privacy policy available, but the absence of a cookie consent mechanism is a notable gap. Overall, the domain registration details align well with the business claims, supporting the legitimacy and trustworthiness of the entity. The risk assessment indicates a low risk profile with recommendations to enhance security headers, implement cookie consent, and publish incident response information to strengthen compliance and trust. The website's content is safe for general audiences, focusing solely on healthcare services without any adult or questionable content.

F

Filemail Inc.

filemail.com

61

Filemail Inc. operates a mature and professional cloud-based file transfer service specializing in sending and sharing large files securely. The company targets a broad audience including individuals, teams, businesses, and enterprises, offering a free tier and multiple paid subscription plans with advanced features such as managed file transfer, compliance certifications, and custom branding. The website demonstrates a strong market position with over 50 million users and global data centers, emphasizing security and ease of use. Technically, the website is built on modern frameworks like Next.js and React, with native applications available across major platforms including desktop, mobile, and Outlook. The site is well-optimized for performance, mobile responsiveness, accessibility, and SEO. Security is robust with HTTPS, multiple security headers, end-to-end encryption, 2FA, virus scanning, and regular penetration testing. The security posture is strong, with compliance to standards such as ISO 27001, HIPAA, GDPR, and Cyber Essentials UK. However, explicit incident response and vulnerability disclosure policies are not publicly found, representing an area for improvement. The absence of WHOIS data limits domain registration trust analysis, but the overall business credibility and website professionalism mitigate concerns. Overall, Filemail presents a low-risk profile with a secure, compliant, and user-friendly service offering. Strategic recommendations include publishing incident response and vulnerability disclosure policies, adding a security.txt file, and providing Data Protection Officer contact details to enhance transparency and trust.

A

Amedia AS

direktesport.no

69

Direktesport is a Norwegian sports streaming platform operated under Amedia AS, a large media company in Norway. The website offers live sports broadcasts and sports-related content targeting Norwegian sports fans. It holds a strong market position as a leading sports streaming service in the country. The technical infrastructure is modern, leveraging React and Next.js frameworks, with integrations for analytics and user tracking via Google Tag Manager and Mouseflow. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed through links to comprehensive privacy and cookie policies managed by the parent company. Overall, the site is trustworthy, professional, and safe for general audiences.

D

DARK Arkitekter

darkarkitekter.no

61

DARK Arkitekter is a well-established Norwegian architecture firm founded in 2001, specializing in designing urban spaces and buildings where people live, work, and interact. The company operates multiple local studios across Norway and offers a broad range of architectural services including urban planning, residential, commercial, cultural, health, and educational projects. Their market position is strong within the Norwegian real estate and architecture sector, supported by a professional online presence and a portfolio of completed projects. Technically, the website is built using modern frameworks such as Next.js and Sanity CMS, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and secure forms, though there is room for improvement in security headers and privacy compliance. Overall, the website is professional, trustworthy, and provides a positive user experience, but lacks explicit privacy and cookie policies which are important for GDPR compliance.

E

expoya GmbH

expoya.com

59

Expoya GmbH operates a specialized digital marketing platform focused on enhancing online visibility through AI-powered SEO tools, geo-optimization, and automated landing page creation. The company targets e-commerce shops, regional service providers, and businesses seeking to reduce dependency on paid ads by improving organic search rankings. Their platform integrates modern web technologies such as React and Next.js, ensuring a responsive and performant user experience. The website demonstrates strong privacy compliance with clear cookie consent mechanisms and comprehensive privacy policies. However, the absence of WHOIS domain registration data introduces some uncertainty regarding domain legitimacy. Security posture is generally strong with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are lacking. Overall, Expoya presents as a professional and trustworthy service provider with room for improvement in transparency and security disclosures.

N

Norsk Redaktørforening

nored.no

59

Norsk Redaktørforening is a Norwegian professional association representing approximately 820 members from various editorially controlled media outlets across Norway. The organization advocates for editorial independence, freedom of information and expression, and favorable conditions for editor-led media. They provide advisory services, ethical and legal guidance, and organize events and training for their members. The website reflects a mature digital presence with modern technologies such as Next.js and Sanity CMS, and uses privacy-focused analytics (Fathom). Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit privacy/cookie policies. Contact information is clearly presented, supporting member engagement and trust. Overall, the site is professional, well-structured, and trustworthy, serving a specialized media professional audience.

S

Steve Edge Design

steve-edge.com

61

Steve Edge Design is an established London-based global branding agency founded in 1985, specializing in brand identity, strategy, and digital design and build services. The company targets businesses across multiple sectors including real estate, luxury, hospitality, and professional services, positioning itself as a premium independent agency with a strong portfolio and global reach. The website reflects a mature digital presence with a modern tech stack leveraging Next.js and React, ensuring fast performance, mobile optimization, and good accessibility. Security posture is strong with HTTPS and security headers implemented, though the absence of a cookie consent mechanism and terms of service page are notable gaps. The lack of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the professional content and clear contact information mitigate this risk. Overall, the site demonstrates a high level of professionalism and trustworthiness in its business and technical presentation.

E

expoya

expoya.travel

58

Expoya Travel operates as a digital platform specializing in travel and leisure experiences, offering users access to vouchers, destinations, and activities primarily targeting the German-speaking market. The platform functions as a digital expo, facilitating discovery and planning of travel adventures. Technically, the website is built on modern frameworks such as Next.js and Material-UI, hosted on Vercel, and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent, though explicit security policies and incident response information are absent, representing areas for improvement. Overall, the website is professional and trustworthy, but the lack of WHOIS transparency and direct contact details slightly reduce business credibility.