Security Directory

N

Northstar Travel Group

northstartravelgroup.com

70

Northstar Travel Group is a leading B2B information and marketing solutions company serving the business and sports travel industry globally. The company offers trusted news, data, research, and event services targeting corporate travel buyers, meeting planners, and travel professionals. It holds a strong market position with multiple well-known subsidiary brands and a comprehensive portfolio of industry events. Technically, the website employs modern technologies including Google Analytics 4, Google Tag Manager, Brightcove video player, and cookie consent mechanisms, hosted likely on AWS infrastructure. The site is well-optimized for mobile and SEO, with professional design and clear navigation. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit incident response policies are absent. WHOIS data is missing, which raises some concerns but the website content and external references support legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

A

ABS Jets, a. s.

absjets.cz

10

ABS Jets, a. s. is a prominent private aviation company based in the Czech Republic, specializing in private jet charters, aircraft management, maintenance, and related aviation services. Positioned as a major player in Central and Eastern Europe, the company offers comprehensive luxury travel solutions targeting business and affluent leisure travelers. Their website reflects a professional and trustworthy brand image with clear service offerings and strong market positioning. Technically, the website employs modern JavaScript libraries such as jQuery, Google Tag Manager, and Google reCAPTCHA to ensure interactive and secure user experiences. The site is mobile-optimized and integrates consent management for privacy compliance, demonstrating digital maturity. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms to mitigate spam and abuse. However, the absence of security headers and a vulnerability disclosure policy indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is safe, professional, and compliant with GDPR requirements. The main risk factor is the lack of publicly available WHOIS domain registration data, which slightly reduces trustworthiness. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving accessibility features to further strengthen the security posture and compliance.

A

August Horch Museum Zwickau gGmbH

horch-museum.de

48

The August Horch Museum in Zwickau is a cultural institution specializing in automotive history and technology, offering extensive exhibitions and multimedia experiences. The museum targets automotive enthusiasts, tourists, and culture seekers, positioning itself as a regional leader in automotive heritage. The website supports multiple languages and provides virtual tours and an online shop, reflecting a moderate digital maturity. Technically, the site uses established JavaScript libraries and Google services, hosted on a reliable German hosting provider. Security posture is solid with HTTPS and cookie consent management, though some security headers could be improved. Privacy compliance is well addressed with GDPR-aligned cookie management and clear policies. Overall, the site is professional, trustworthy, and user-friendly, with room for enhanced security policies and incident response transparency.

ه

هيئة الإذاعة والتلفزيون

sba.sa

64

The website https://sba.sa/ar represents the official Saudi Broadcasting Authority (هيئة الإذاعة والتلفزيون), a leading government media entity in Saudi Arabia. It provides a comprehensive media platform including television, radio, and digital content services, targeting a broad general audience within Saudi Arabia. The site is professionally designed using Drupal CMS and modern web technologies, offering good mobile optimization and user experience. Social media integration is strong with official accounts on major platforms. Technically, the site employs HTTPS with DNSSEC enabled, indicating a secure DNS setup, though explicit security headers are missing. Privacy and cookie policies are not visibly present, which is a compliance gap. Contact information is not explicitly provided on the site, limiting direct user engagement channels. Overall, the domain registration aligns with the official entity, supporting legitimacy. The site is safe for general audiences with no adult or questionable content detected.

M

Mung Investments

mung.investments

45

Mung Investments is a medium-sized investment firm specializing in funding and managing portfolios for startups and projects across finance, real estate, event management, and fintech sectors. The company emphasizes community respect and purposeful investment, managing a diversified portfolio worth over half a billion Saudi Riyals. The website presents a professional image with clear business messaging and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Vimeo API, hosted likely on GoDaddy infrastructure. However, the site lacks visible security headers, privacy policies, and contact information, which impacts trust and compliance. The WHOIS data is unavailable due to TLD restrictions, limiting transparency. Overall, the site is accessible and safe but requires improvements in security posture and privacy compliance.

G

GemeindebriefDruckerei

gemeindebriefhelfer.de

46

GemeindebriefDruckerei operates a specialized blog and resource platform focused on assisting church communities and newsletter designers in creating effective and visually appealing church newsletters. The website offers a variety of blog articles, downloadable templates, image archives, and tools, complemented by an associated shop for fan articles and other related products. The target audience is niche, primarily German-speaking church groups and individuals involved in newsletter production. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern web technologies and plugins to provide a functional and moderately optimized user experience. Security posture is adequate with HTTPS enforced and some best practices observed, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The domain registration data is consistent and indicates a legitimate and established service. Overall, the site is professional, content-rich, and trustworthy within its niche, though it would benefit from enhanced privacy compliance and security hardening.

N

Northstar Travel Group

northstartravelmedia.com

70

Northstar Travel Group is a leading B2B information and marketing solutions company serving the business and sports travel industry globally. The company operates multiple trusted media brands and hosts industry events, positioning itself as a key player in the $1.4 trillion business travel market. Their services include news, data, analysis, research, and marketing solutions tailored to travel professionals and corporate buyers. The website reflects a mature digital presence with professional design, multimedia content, and clear navigation. Technically, the site uses modern analytics and video delivery technologies, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly visible. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy but could improve transparency and security disclosures.

ALIPH Foundation is a reputable non-profit organization focused on protecting cultural heritage in conflict-affected regions globally. Their website demonstrates a professional and consistent brand presence, offering detailed information about their mission, projects, and partnerships. The technical infrastructure leverages modern web technologies including Bootstrap, Mapbox, and Google Analytics, providing a responsive and user-friendly experience. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a trustworthy and credible organization with minor areas for enhancement in security transparency and WHOIS data availability.

The Meetings Show Asia Pacific is a prominent event platform focused on the meetings, incentives, conferences, and exhibitions (MICE) industry in the Asia Pacific region. It offers a comprehensive hosted buyer program, education sessions, and networking opportunities, positioning itself as a leading trade show in this sector. The website is professionally designed, mobile-optimized, and integrates modern web technologies and tracking tools such as Google Tag Manager and Crazy Egg. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The absence of WHOIS data reduces transparency but the business branding and content quality suggest legitimacy. Overall, the site serves its target audience effectively with clear navigation and relevant content.

A

Art Jameel LLC

artjameel.org

66

Art Jameel LLC is a well-established cultural organization founded in 2013, focused on supporting artists and creative communities in the Middle East through exhibitions, heritage preservation, educational initiatives, and sustainability programs. The website reflects a mature digital presence with consistent branding, comprehensive content, and clear navigation targeting artists, cultural institutions, and the general public interested in Middle Eastern art and culture. Technically, the site is built on WordPress with modern JavaScript libraries and integrates analytics and tracking tools such as Google Analytics and Facebook Pixel. Hosting and DNS are managed via reputable providers including GoDaddy and Cloudflare. Security posture is good with HTTPS enforced and domain locks in place, though DNSSEC is not enabled and some advanced security headers are missing. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR and related regulations. Contact is primarily via web forms and social media channels, with no direct emails or phone numbers publicly listed. Overall, the site is professional, trustworthy, and well-maintained, with minor recommendations to enhance DNS security and HTTP headers.

The ALIPH Foundation is a non-profit organization focused on protecting cultural heritage in conflict zones to foster peace. The website presents a professional and well-structured digital presence with clear information about their mission, projects, and partners. Their global footprint includes numerous projects and partnerships, positioning them as a recognized actor in heritage preservation. Technically, the site uses modern frameworks such as Bootstrap and Mapbox GL JS, with integration of Google Analytics and reCAPTCHA for security and analytics. The site is mobile-optimized and provides a good user experience with multimedia content and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit security policies are absent. WHOIS data is unavailable, which slightly impacts trust but the overall professionalism and transparency mitigate concerns. Privacy compliance is well addressed with GDPR-aligned policies and cookie management. Overall, the site is trustworthy and serves its audience effectively.

T

TEAMS Conference

teamsconference.com

64

TEAMS Conference is a professional event and expo platform dedicated to the sports industry, offering networking, educational programs, and exhibiting opportunities. The website is well-structured and targets sports professionals and event organizers, with a consistent brand presence and active social media engagement. The technical infrastructure leverages modern JavaScript libraries, Google Tag Manager for analytics, and OneTrust for cookie consent, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. The absence of WHOIS data is a notable anomaly that slightly reduces trustworthiness but does not overshadow the professional presentation and content quality. Overall, the site is safe, well-optimized for mobile, and provides a positive user experience.

S

Scholastika

scholastika.cz

47

Scholastika is a well-established private higher vocational school and creative educational center based in Prague, Czech Republic, specializing in visual communication and design education. Founded in 2011, it offers accredited three-year post-secondary studies in graphic, motion, and game design, alongside a broad portfolio of practical courses for the general public in various art and design disciplines. The institution emphasizes practical training, industry collaboration, and personal approach, supported by professional instructors with strong ties to the creative sector. Scholastika maintains a strong digital presence with a professionally designed website, active social media channels, and a newsletter subscription service. Technically, the website employs modern web technologies including jQuery, lazy loading, and multiple tracking and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar. The site is hosted on Czech-based servers with a domain registered since 2011, consistent with the business history. The website is mobile-optimized, SEO-friendly, and provides clear navigation and rich content about courses, pricing, and contact information. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, Scholastika presents a trustworthy, professional, and user-friendly online presence suitable for its educational mission. Strategic improvements in security headers and transparency around security policies could further enhance its security posture and user trust.

D

Dansk Vejforening

dv.dk

55

Dansk Vejforening is a well-established Danish association focused on road and transport policy, operating since 1997. The organization provides news, debates, publications, events, and membership services targeted at professionals and stakeholders in the Danish transport sector. The website reflects a professional and consistent brand presence with clear contact information and a broad network of industry partners. Technically, the site uses modern web technologies and a CMS platform (uSkinned), with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in DNSSEC adoption and security headers. Privacy compliance is partially met with a privacy and cookie policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and credible with a strong business identity and good content quality.

A

Asfaltindustrien

asfaltindustrien.dk

54

Asfaltindustrien is a Danish industry and employer association representing companies involved in asphalt manufacturing, recycling, and road-related services. Established in 1998, it serves as a key organization providing advocacy, information, legal guidance, and career resources to its members. The website reflects a professional and consistent brand presence targeting industry professionals and private road owners in Denmark. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, and jQuery with a CMS platform identified as uSkinned. It is mobile-optimized and provides good accessibility and SEO features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks some security headers and cookie consent mechanisms. The domain registration data aligns well with the organization's profile, showing a long-standing and legitimate presence. Overall, the site is trustworthy and well-maintained but could improve privacy compliance and security header implementation.

S

Schachbundesliga | Schachbundesliga

schachbundesliga.de

45

The Schachbundesliga website serves as the official platform for the German Chess Bundesliga, providing comprehensive information including news, match results, team profiles, and live updates. It targets chess enthusiasts and participants primarily within Germany. The site is built on Drupal 9, leveraging modern web technologies such as Font Awesome and Slick Carousel for enhanced user experience. Hosting is managed via Goldvision, indicating a professional infrastructure. Security posture is moderate, with HTTPS likely enabled but lacking explicit security headers and policies. Privacy compliance is minimal due to absence of privacy and cookie policies. Overall, the site is functional, content-rich, and safe for general audiences but would benefit from enhanced security and compliance measures.

I

ICA Events

worldfood-istanbul.com

58

WorldFood Istanbul is a well-established international food exhibition organized by ICA Events, targeting food industry professionals globally. The website presents comprehensive information about the event, including exhibitor and visitor resources, agenda, news, and support partners. The technical infrastructure leverages modern web technologies and CMS, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and published policies. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism. Overall, the site is professional and trustworthy with room for security and privacy improvements.

K

Kentucky Rural Water Association

krwa.org

65

Kentucky Rural Water Association (KRWA) is a prominent non-profit organization dedicated to supporting rural water and wastewater utilities across Kentucky. Serving nearly 95% of the public drinking water and wastewater customers in the state, KRWA offers a comprehensive suite of services including training, compliance assistance, membership benefits, and advocacy. The association maintains a strong market position as the largest utility organization in Kentucky focused on rural water issues, targeting utility operators, industry professionals, and stakeholders. Their business model centers on membership services and educational programs, supported by partnerships with related organizations such as the National Rural Water Association.

OÖ Landes-Kultur GmbH is the largest cultural institution in the Austrian state of Upper Austria, serving as a museum and cultural hub for the regional population. The organization offers a broad range of exhibitions, events, educational programs, and publications, targeting a general audience interested in art, culture, and regional heritage. The website reflects a professional and well-structured digital presence, supporting the institution's mission to reach beyond central locations into the wider region through diverse cultural offerings. Technically, the website is built on the Contao Open Source CMS and leverages modern web technologies including jQuery, Slick Carousel, and FontAwesome Pro. It integrates Google Tag Manager and Google Analytics with privacy-conscious configurations such as IP anonymization. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish a security policy or incident response contacts, which are areas for improvement. Privacy and cookie policies are present and appear GDPR compliant, supporting user data protection. Overall, the website is trustworthy and professionally maintained, though the absence of WHOIS data reduces domain registration transparency. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and providing incident response contacts to strengthen security posture and user trust.

A

Axians IKVS GmbH

axians-ikvs.de

64

Axians IKVS GmbH is a German-based company specializing in providing digital financial management solutions and consulting services to public sector entities such as municipalities, municipal utilities, and state administrations. With approximately 600 customers across 15 federal states, including major cities like Hamburg and smaller municipalities, the company offers a suite of services including interactive financial control, automated reporting, key performance indicators, cloud services, and digital transformation support. The company operates under the parent group Axians and VINCI Energies, indicating strong backing and market presence. Technically, the website is built on WordPress with a modern plugin ecosystem including Yoast SEO for optimization, Events Manager for event handling, and responsive design elements ensuring good mobile usability. The site employs HTTPS with strong SSL configuration and uses cookie consent mechanisms to comply with GDPR. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and no visible sensitive data exposure. The absence of a vulnerability disclosure policy and incident response contact points suggests room for improvement in transparency and readiness. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website and business present a professional and trustworthy digital presence with solid technical implementation and compliance posture. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and security posture.

C

critical

critical.cz

54

Critical.cz is a Czech digital agency specializing in web design and online marketing services. The website presents a professional image with a clear focus on delivering digital solutions to businesses seeking web and marketing expertise. The presence of EU funding logos and detailed case studies enhances the company's credibility and market positioning within the Czech Republic. The business model revolves around providing tailored digital agency services with a small-sized team, targeting local and regional clients.

O

onesto GmbH

onesto.de

54

onesto GmbH operates a specialized Order Management System and Internet Booking Engine designed for corporate travel management. Their platform connects organizations with travel agencies and service providers such as airlines, rail, hotels, and car rentals, offering real-time, worldwide booking capabilities. The company emphasizes secure, certified data protection and PCI DSS compliance, positioning itself as a trusted provider in the transportation sector. Their product suite includes flight, rail, car, hotel bookings, and a mobile app for travel management, targeting corporate clients and business travelers primarily in Germany. Technically, the website is built on WordPress with common libraries like jQuery and Slick Carousel, hosted by Schlund Technologies. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. Security certifications such as ISO 27001 and PCI DSS are prominently displayed, indicating a mature security posture. However, the absence of explicit security headers and cookie consent mechanisms suggests areas for enhancement. The security posture is solid with HTTPS enforced and certified frameworks in place, but lacks published incident response or vulnerability disclosure policies. No WAF or blocking mechanisms were detected, and no vulnerabilities or exposed sensitive data were found in the analysis. Contact information is complete and transparent, supporting business credibility. Overall, onesto GmbH presents a professional, secure, and trustworthy online presence suitable for its B2B business travel management market. Strategic improvements in privacy compliance and security transparency would further strengthen their position and reduce risk.

E

Elavon UK

sagepay.com

70

Elavon UK is a well-established payment processing company operating under the parent organization U.S. Bancorp. The company provides a comprehensive suite of card payment solutions and merchant services tailored for businesses ranging from small retailers to large enterprises. Their market position is strong, supported by a large customer base across multiple countries and a wide range of industry-specific payment solutions. The website reflects a mature digital presence with professional design, clear navigation, and detailed service offerings. Technically, the site uses modern frameworks and technologies such as Adobe Experience Manager and Google Tag Manager, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy could enhance trust further. Overall, the site is trustworthy, compliant with GDPR, and provides multiple contact channels for customer support and sales.

V

Vårgrønn

vargronn.no

63

Vårgrønn is a specialized offshore wind energy company operating primarily in Northern Europe. It is a joint venture between Eni Plenitude and HitecVision, focusing on developing, constructing, operating, and owning offshore wind projects. The company positions itself as agile and ambitious with multiple large-scale projects underway or planned. Technically, the website is built on Webflow with modern JavaScript libraries and translation services, offering a fast, mobile-optimized, and accessible user experience. Security posture is moderate with HTTPS in use but lacking explicit security headers and cookie consent mechanisms. The absence of WHOIS data reduces domain trust slightly, but the company's partnerships and detailed project information support legitimacy. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

P

Pfarrbriefservice.de

pfarrbriefservice.de

47

Pfarrbriefservice.de is a specialized website serving the German-speaking church community by providing resources for church newsletters and public relations. The site offers images, texts, advice, and a newsletter subscription service, positioning itself as a trusted non-profit resource in this niche. The business operates with clear contact information and maintains a consistent brand presence, targeting church public relations professionals and volunteers. Technically, the website is built on Drupal 10, leveraging modern libraries such as Matomo for privacy-conscious analytics and Bootstrap for responsive design. Hosting is provided by webhosting-franken.de, and the site demonstrates good mobile optimization and basic accessibility features. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site enforces HTTPS and disables cookies in Matomo to enhance privacy. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and GDPR adherence, though a cookie consent mechanism is absent. Overall, the website is trustworthy, professionally maintained, and well-aligned with its mission. It poses low risk but could benefit from enhanced security practices and transparency regarding incident response and terms of service.

S

Seazip Offshore Service BV

seazip.com

55

SeaZip Offshore Service BV operates as a maritime partner specializing in offshore service vessels, particularly Crew Transfer Vessels (CTVs), targeting the offshore energy and maritime sectors. The company positions itself as a provider of high-performance and safe offshore operations, with a business foundation dating back to 2016. The website reflects a professional maritime service provider with a clear focus on offshore operations expertise. Technically, the website is built on WordPress CMS and leverages modern web technologies including jQuery, Gravity Forms, Google Tag Manager, Google reCAPTCHA, and Foundation CSS framework. The site is mobile optimized and includes SEO best practices such as meta tags and structured data. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR principles. However, explicit privacy and terms of service pages are absent, and no security headers were detected in the provided data. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website presence. Overall, the website presents a moderate risk profile with strengths in technical implementation and business professionalism but weaknesses in transparency of domain registration and privacy policy disclosures. Strategic recommendations include adding explicit privacy and security policies, implementing security headers, and clarifying domain registration details to enhance trust and compliance.

T

Total Safety

totalsafety.com

66

Total Safety is a global enterprise specializing in advanced industrial safety solutions, including equipment rental, PPE distribution, specialized safety personnel, and compliance services. The company serves multiple sectors such as energy and transportation, positioning itself as a market leader with a broad portfolio and global footprint. Their website reflects a mature digital presence with professional design, comprehensive service offerings, and strong trust indicators including client logos and industry certifications. Technically, the site is built on WordPress with modern libraries and analytics tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and explicit security policies are recommended. Privacy compliance is partially addressed with cookie consent but lacks a clear privacy policy page. WHOIS data is missing, which is unusual and reduces trust slightly, but the overall business credibility remains high based on content and branding.

G

Glomar Offshore B.V.

glomaroffshore.com

59

Glomar Offshore B.V. is a family-owned company operating a diverse fleet of purpose-built offshore support vessels, serving primarily the energy and maritime sectors in Europe, the Mediterranean, and North/West Africa. The company emphasizes sustainability, safety, and tailor-made vessel designs, positioning itself as a reliable mid-sized player in the offshore support vessel market with 21 vessels and over 250 crew members. The website reflects a professional and consistent brand image with detailed business and fleet information, supported by recognized certifications such as ISO 9001, ISO 14001, ISO 45001, and IMCA membership. Technically, the website is built on WordPress with modern libraries and good SEO and accessibility practices. Security posture is strong with HTTPS, reCAPTCHA protection, and domain transfer restrictions, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is basic with clear privacy and cookie policies but lacks explicit consent mechanisms. Overall, the site is trustworthy, well-maintained, and suitable for its target audience.

L

LIPNO REAL s.r.o.

lipno-invest.com

49

Lipno Invest operates as a specialized real estate investment and development company focused on properties around Lake Lipno in the Czech Republic. The company offers construction, sale, and rental of resorts, houses, and apartments directly on the lake, emphasizing architectural quality and natural surroundings. It is part of the Group Dorn-Fussenegger and has a family-owned business background with over 20 years of market presence. The website reflects a professional and consistent brand image targeting investors and buyers interested in lakeside real estate. Technically, the website uses modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA v3 for security on forms. The site is mobile optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. However, no CMS or hosting provider details are explicitly detected. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. Cookie consent is implemented with granular user controls. However, no explicit security policy or incident response information is found, and security headers are not detected, which are areas for enhancement. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website presence. Overall, the website is safe, professional, and trustworthy for general audiences with a strong business focus on real estate investment. The main risk is the lack of WHOIS transparency, which should be addressed to improve trustworthiness and compliance.

N

NexGen IT s.r.o.

lipno-real.com

47

Lipno Real is a specialized real estate business focusing on luxury and investment properties around Lipno Lake in the Czech Republic. The website presents a professional portfolio of houses, apartments, and plots for sale, targeting affluent buyers and investors interested in this recreational area. The business model centers on brokerage and property sales with additional rental services. The company behind the website appears to be NexGen IT s.r.o., likely the developer or operator of the site. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as Google Analytics, Google Tag Manager, Google Consent Mode, and Tawk.to chat widget. The site is mobile-optimized with good SEO practices and moderate performance. SSL is properly configured ensuring secure HTTPS connections. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could improve its security posture. Privacy compliance is basic; no explicit privacy or cookie policies were found, and GDPR compliance indicators are minimal. Contact information is available but limited to an email address and contact forms, with no phone numbers or physical addresses explicitly listed. The WHOIS data for the domain is unavailable, indicating either a very recent registration or privacy protection, which slightly reduces trustworthiness. Despite this, the website content and professional presentation support the legitimacy of the business. Overall, the website is safe, professional, and functional but would benefit from enhanced privacy disclosures and security headers to improve compliance and security posture.

I

ITSDanmark

itsdanmark.dk

55

ITSDanmark is a Danish interest organization established in 2003 that brings together companies, authorities, research institutions, regions, and municipalities working with intelligent transport systems and solutions. The organization serves as a collaborative platform offering news, webinars, and project facilitation to its members. The website reflects a professional and consistent brand presence targeting stakeholders in Denmark's transportation sector. Technically, the site is built on the Umbraco CMS with modern front-end components such as carousels and responsive design, providing a good user experience across devices. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and well-positioned within its niche but could improve security and privacy practices.

I

ITS.be

its.be

43

ITS.be is a well-established public-private non-profit organization focused on accelerating the deployment of intelligent transport systems and linked mobility services in Belgium. The website reflects a professional and consistent brand presence with a clear focus on sustainable mobility and ITS solutions. The organization targets companies, public bodies, associations, and knowledge institutes involved in the ITS domain. Technically, the website is built on Drupal CMS with modern libraries such as Bootstrap and jQuery, and it uses Google Analytics for visitor tracking. The site is mobile-optimized and has good SEO and accessibility features, although accessibility could be improved further. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. The domain registration data is consistent with the website's claims, showing a legitimate and trustworthy presence since 2007. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

E

einhard verlagsbuchhandlung gmbh

domshop-aachen.de

50

DomShop Aachen, operated by einhard verlagsbuchhandlung gmbh, is a specialized retail bookstore and gift shop located in Aachen, Germany. It focuses on religious literature, religious art, and related gift items, serving both local residents and visitors interested in faith-based products. The company has a longstanding presence of nearly 30 years, positioning itself as a trusted local business with a niche market. The website supports online shopping and provides rich content including book recommendations and thematic product lists. Technically, the site is built on Drupal 10 with modern frontend libraries, offering good mobile optimization and accessibility features. Security posture is adequate with HTTPS usage and spam protection on forms, though explicit security headers and policies are not evident. Privacy compliance is mostly met with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

M

Město Slatiňany

slatinany.cz

47

Město Slatiňany operates an official municipal website providing comprehensive information about the city, its administration, tourist attractions, public services, and community events. The site targets local citizens, tourists, and stakeholders interested in municipal affairs and regional culture. It serves as a digital portal for public communication and service delivery, reflecting the city's historical and cultural heritage. Technically, the website employs modern JavaScript libraries, cookie consent mechanisms, and integrates external services such as YouTube and social media platforms. The site is built on a custom CMS platform with responsive design and good SEO practices, ensuring accessibility and usability across devices. From a security perspective, the site enforces HTTPS and includes cookie consent for GDPR compliance. However, it lacks visible security headers and formal security or incident response policies. The absence of WHOIS data for the domain is a notable gap, though the website content and official contact details support its legitimacy. Overall, the website presents a professional and trustworthy digital presence for the municipality, with room for improvement in security policy transparency and domain registration clarity.

W

Womens Utilities Network

thewun.co.uk

63

Womens Utilities Network (WUN) is a UK-based organization focused on empowering women in the utilities sector, particularly energy and water. Founded in 2018, WUN provides networking, mentoring, career development, and events to support women in building fulfilling careers. The website reflects a professional and consistent brand with active social media engagement and a clear mission. Technically, the site is built on WordPress with modern plugins and themes, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent, but lacks explicit security headers and published security policies. No privacy or terms of service pages were found, indicating compliance gaps. Overall, the domain registration and WHOIS data support the legitimacy of the organization.

W

Wave Energy Scotland

waveenergyscotland.co.uk

65

Wave Energy Scotland is a government-backed organization focused on advancing wave energy technology through research, development, and funding programs. The website reflects a professional and authoritative presence with comprehensive information about their technology programs, research strategies, educational resources, and impact. The organization positions itself as a leader in wave energy innovation in Scotland with international collaborations. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, reCAPTCHA, and various UI libraries, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, supporting the organization's mission effectively.

N

NASUWT

nasuwt.org.uk

61

NASUWT is a prominent UK-based teachers' union dedicated to protecting the status and working conditions of teachers and school leaders. The website serves as a comprehensive platform offering member support, advice, training, news, and campaign information. It targets educators across the UK, providing resources tailored to different regions and professional needs. The union operates a membership-based model, emphasizing advocacy and professional development. Technically, the website employs modern web technologies including Google Tag Manager, jQuery, and Bootstrap, ensuring a responsive and user-friendly experience. The presence of cookie consent mechanisms and privacy policies indicates a commitment to GDPR compliance. Security-wise, the site uses HTTPS and secure login forms but lacks explicit security headers and incident response information. The WHOIS data is unavailable due to domain naming rules errors, but the website's content and branding strongly support its legitimacy. Overall, the site is professional, trustworthy, and well-maintained, serving a large audience in the education sector.

PACCAR Powertrain is a division of PACCAR Inc., specializing in manufacturing and engineering powertrain components such as engines, transmissions, and axles for heavy-duty trucks. The company positions itself as a leader in the transportation sector, offering innovative and durable products designed to maximize performance and efficiency for commercial vehicle operators. The website reflects a professional and consistent brand image aligned with its parent company and partners. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern web technologies and multilingual support. Security posture is solid with HTTPS and domain protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates a mature digital presence suitable for a large enterprise in the transportation industry.

Legendary Cards is an e-commerce platform operated by eSports s.r.o., specializing in collectible sports cards and memorabilia primarily targeting Czech sports enthusiasts and collectors. The website offers a range of products including limited edition cards, sports figures, and related accessories, supported by promotional content and news updates. The business operates with a clear focus on the Czech market and maintains an active social media presence to engage its audience. Technically, the website employs modern web technologies including jQuery, Google Analytics, Google Tag Manager, and the Nette Framework. The site is mobile-optimized with a responsive design and uses cookie consent mechanisms to comply with GDPR. Performance is moderate with good navigation and content structure, though some improvements in accessibility and SEO could be made. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent with granular user controls. However, it lacks explicit security headers and a published security policy or incident response contact. No critical vulnerabilities or exposed sensitive data were detected, indicating a generally sound security posture. Overall, the website is trustworthy and professionally maintained, with legitimate domain registration consistent with the business identity. Strategic improvements in security headers and incident response transparency would enhance the security posture further.

L

Literární noviny

literarky.cz

43

Literární noviny is a well-established Czech monthly magazine focused on culture, literature, and politics, targeting Czech-speaking audiences interested in critical thinking and cultural discourse. The website serves as a digital platform for publishing articles, event announcements, and related content. Technically, the site is built on Joomla CMS with common web technologies such as jQuery and Bootstrap, hosted by Active24, and includes advertising integrations primarily via Seznam's Sklik network. The site uses HTTPS and a cookie consent mechanism, but lacks explicit privacy policy and terms of service pages, which are important for compliance and user trust. Security posture is moderate with no visible security headers and moderate tracking via Google Analytics. Overall, the website is professional, content-rich, and trustworthy, but could improve privacy transparency and security hardening.

Z

ZX Lidars

zxlidars.com

65

ZX Lidars is a specialized company providing advanced wind lidar technology for accurate remote wind measurement, primarily serving the energy sector globally. Their product portfolio includes onshore, offshore, and turbine-mounted wind lidars, positioning them as an industry leader in wind energy measurement solutions. The company is based in the UK and has been operational since 2007, targeting wind energy developers and meteorological organizations. Technically, the website is built on WordPress and leverages modern web technologies such as jQuery, Slick Carousel, Font Awesome, and Google Tag Manager, indicating a mature digital infrastructure. The site is well-optimized for SEO and mobile devices, with good content quality and professional design. Security-wise, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and contact information suggest a legitimate business. Overall, the site demonstrates a solid business and technical foundation but would benefit from enhanced privacy compliance and security best practices.

D

Deutsches Studentenwerk

studentenwerke.de

64

The Deutsches Studentenwerk (DSW) website serves as the central portal for student services in Germany, offering comprehensive information on financing, housing, counseling, and cultural activities for students. The site targets students, educational institutions, and stakeholders within the German higher education system. The organization operates as a large non-profit entity with a strong market position in the education sector. Technically, the website is built on TYPO3 CMS with modern front-end technologies and is hosted behind Cloudflare for performance and security. Privacy compliance is demonstrated through the use of Cookiebot for cookie consent and Matomo for analytics, reflecting a privacy-conscious approach. However, explicit privacy policies and terms of service are not clearly found in the provided content, which could be improved. Security posture is good with HTTPS enforced, but additional security headers and a published security policy would enhance trust. Overall, the website is professional, accessible, and trustworthy, with moderate tracking and good user experience.

The Deutscher Bibliotheksverband e.V. is a prominent non-profit association representing over 2,000 members and more than 9,000 libraries across Germany. The organization focuses on strengthening libraries to ensure free access to media and information for all citizens. Their website reflects a mature digital presence with comprehensive content, including news, events, thematic areas, and educational offerings. Technically, the site employs modern web technologies such as React, Drupal CMS, Matomo analytics, and Google reCAPTCHA for security. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

S

Svět IT s.r.o.

svetit.cz

63

Svět IT s.r.o. is a Czech-based technology service provider specializing in network administration and development of online projects such as mobile applications, portals, and information systems. The company emphasizes personalized and reliable IT solutions with 24-hour customer support in Czech language. Their website reflects a professional business presence with clear service offerings and client references, positioning them as an experienced player in the IT services market with a focus on cost reduction and quality service delivery. Technically, the website uses modern web technologies including Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a cookie consent mechanism, though lacks visible privacy and security policy documentation. Security posture is moderate with HTTPS implied but no explicit security headers detected, and no WHOIS data available to verify domain legitimacy. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

F

FGP Solutions

fgp-solutions.fr

58

FGP Solutions is a small digital agency based in Alsace, France, specializing in web design, SEO, SEA, marketing, and hosting services. The company positions itself as a reliable and experienced Google Partner agency, focused on helping local SMEs succeed through professional digital solutions. Their website reflects a strong regional presence with a comprehensive service portfolio tailored to local businesses. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized and includes standard marketing and analytics tools such as Google Analytics and Facebook Ads, integrated with privacy compliance mechanisms like cookie consent and Google Consent Mode. Security-wise, the site uses HTTPS and reCAPTCHA but lacks explicit security headers and published security policies, which could be improved. Overall, the website is professional, trustworthy, and well-structured, with no signs of malicious activity or content blocking.

O

otris software AG

otris.de

68

otris software AG is a German-based technology company specializing in digital solutions for legal, compliance, and data protection management. With over 25 years of experience, the company offers modular software suites that enable enterprises to manage contracts, compliance workflows, risk, and data governance efficiently and securely. Their solutions are available as SaaS hosted in Germany or on-premises, integrating seamlessly with existing IT infrastructures. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting medium to large enterprises. Technically, the site is built on WordPress with modern performance and privacy tools such as WP Rocket and Borlabs Cookie for GDPR compliance. Security posture is strong with HTTPS, consent management, and no visible vulnerabilities. WHOIS data confirms domain legitimacy and consistency with the business history. Overall, otris software AG presents a trustworthy and professional digital footprint aligned with its business objectives.

J

Jefferson Campus Store

jeffersoncampusstore.com

62

Jefferson Campus Store operates as the official online and physical retail store for Thomas Jefferson University, providing textbooks, university-branded merchandise, apparel, gifts, and supplies primarily targeting students, faculty, alumni, and staff. The website demonstrates a solid market position as a trusted campus resource with a clear business model focused on e-commerce retail and textbook services including buyback and digital options. The presence of multiple partner links to eBook platforms and trade-in services enhances its service offerings. Technically, the website uses a custom or proprietary CMS with a technology stack including jQuery, Modernizr, and Slick Carousel for UI components. The site is mobile optimized with good accessibility and SEO practices, though performance is moderate. The domain is secured with HTTPS, but lacks advanced security headers and DNSSEC, indicating room for improvement in security hardening. Security posture is adequate with no critical vulnerabilities detected, but the absence of cookie consent mechanisms and security headers reduces compliance with privacy regulations such as GDPR. The WHOIS data is consistent and trustworthy, supporting the legitimacy of the domain and business. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

T

Thomas Jefferson University

jeffersonrams.com

67

Thomas Jefferson University operates an official athletics website serving as the primary digital platform for its NCAA Division II sports programs. The site provides comprehensive sports-related content including schedules, rosters, news, and community engagement resources targeted at students, athletes, and fans. The university positions itself as a competitive participant within the Central Atlantic Collegiate Conference (CACC), leveraging digital tools to enhance fan and community interaction. Technically, the website is built on the Sidearm Sports platform, utilizing a mix of modern and legacy web technologies such as Google Analytics, Google Tag Manager, jQuery, and Knockout.js. Hosting and content delivery are managed via Cloudfront CDN and Rackspace DNS services, ensuring moderate performance and good mobile optimization. Accessibility features and SEO practices are adequately implemented, contributing to a positive user experience. From a security perspective, the site benefits from HTTPS encryption and domain transfer protections but lacks advanced DNS security measures like DNSSEC and important HTTP security headers. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism or GDPR-specific disclosures. No incident response or vulnerability disclosure information is publicly available, indicating room for maturity in security governance. Overall, the website is trustworthy and professionally maintained, with a solid foundation for athletics content delivery. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance the site's security posture and regulatory adherence.

Z

Zimbra

zimbra.com

74

Zimbra operates as a provider of cloud-hosted collaboration software and email platforms, emphasizing open standards, low-risk alternatives, and data sovereignty. The company targets enterprises and businesses seeking integrated collaboration solutions with productivity add-ons. The website reflects a medium-sized technology business with a professional online presence, offering downloadable products, documentation, and trial options. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools such as HubSpot, Google Tag Manager, and New Relic for performance monitoring. The site is moderately optimized for mobile and SEO, with a good user experience and clear navigation. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is unavailable, which raises some trust concerns despite the professional appearance. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security documentation.

M

MWAY DIGITAL GmbH

mway.io

75

MWAY DIGITAL GmbH is a German-based technology company specializing in innovative software solutions for enterprises and educational institutions. Their offerings include mobile solutions, enterprise applications, device management, and building automation. The company positions itself as a digital pioneer with a strong focus on modern, intuitive software and partnership-driven business. The website reflects a professional and consistent brand image, targeting business and education sectors with clear messaging and client references from reputable companies.