Security Directory

E

Eurodesk

eurodesk.no

56

Eurodesk is a well-established non-profit information service focused on providing youth in Europe with opportunities abroad such as studies, work, volunteering, and exchanges. The organization operates across 36 countries with over 1100 contact points, positioning itself as a key resource for European youth mobility. The website reflects this mission with clear, relevant content and a consistent brand presence, including affiliations with Bufdir and Erasmus+. Technically, the website is built on WordPress with modern plugins like Yoast SEO and uses standard web technologies such as jQuery and Google Fonts. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and performance tuning. SEO practices are good, supported by structured data and meta tags. From a security perspective, the site enforces HTTPS and uses plugins to prevent user enumeration, indicating a baseline security posture. However, it lacks important security headers and explicit security or incident response policies. Privacy compliance is partial; while a cookie consent banner is present, no dedicated privacy or terms of service pages were found, which is a compliance gap. Overall, the website is trustworthy and professional, serving its target audience effectively. Strategic improvements in privacy documentation, security headers, and accessibility would enhance compliance and security posture, further strengthening user trust.

Normand Technologies AS is a small Norwegian technology service provider specializing in custom website development, e-commerce solutions, website maintenance, and SEO services. The company targets local Norwegian businesses and individuals seeking tailored digital solutions without unnecessary licensing costs. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, reflecting a credible small business presence. Technically, the website is built on WordPress with modern optimization plugins such as Autoptimize and LazySizes for performance. It integrates Google Analytics and Google Tag Manager for user tracking and analytics. The domain is registered with Domeneshop AS and uses hyp.net name servers. The site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and security headers, which are recommended for enhanced security. From a security perspective, the website enforces HTTPS and has domain transfer protection but lacks advanced security headers and a cookie consent mechanism, which impacts privacy compliance. No incident response or security policy information is published. The WHOIS data aligns well with the website content, indicating a legitimate and consistent registration. No suspicious or malicious indicators were found. Overall, the website scores well in content quality, business credibility, and technical implementation but has room for improvement in privacy compliance and security best practices. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing security policies to enhance trust and compliance.

A

AdmiralCloud

admiralcloud.com

71

AdmiralCloud is a technology company specializing in Digital Asset Management solutions for enterprises. Their website presents a professional and well-structured platform built on WordPress with the Divi theme, indicating a moderate level of digital maturity. The site includes modern web technologies such as lazy loading scripts and font optimizations, contributing to a good user experience and performance. However, the absence of WHOIS data raises questions about domain registration transparency. Security posture is moderate, with cookie consent implemented but lacking visible security headers and explicit privacy or terms of service pages. Overall, the website is functional and business-focused but would benefit from enhanced transparency and security practices to improve trust and compliance.

A

aha

aha.li

46

aha is a non-profit organization focused on providing tips, information, and support services for young people in Liechtenstein. The website serves as a comprehensive portal offering news, events, workshops, youth participation opportunities, and project coaching. It targets youth and youth workers, positioning itself as a key regional player in youth information and engagement. The organization maintains a consistent brand presence and leverages social media channels to extend its reach. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses various plugins for SEO, analytics, and live chat. The site is mobile optimized and employs HTTPS with good SSL configuration. While performance is moderate, the site benefits from structured metadata and SEO best practices, enhancing discoverability. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and explicit security or incident response policies. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. No vulnerability disclosure or security.txt files are present. Overall, the website is trustworthy and professional, with a strong focus on youth services. Strategic improvements in privacy compliance and security transparency would enhance its posture and user trust.

E

Eurodesk Italy

eurodesk.it

53

Eurodesk Italy operates as the official national and European network providing information and orientation services to young people about European programs such as Erasmus+ and the European Solidarity Corps. The website serves as a comprehensive portal offering access to events, webinars, opportunities, and a network of local points across Italy. It is supported by the European Commission, enhancing its credibility and official status. The target audience includes young people and professionals working with youth, focusing on mobility and educational opportunities within Europe. Technically, the site is built on Drupal 10, integrates Google services such as Maps and Analytics, and uses modern web standards with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and well-positioned in its niche, with strong branding and consistent content quality.

A

Agencija za mobilnost i programe EU-a

mobilnost.hr

57

Agencija za mobilnost i programe EU-a (AMPEU) is a Croatian government agency dedicated to managing and promoting European Union mobility and educational programs such as Erasmus+, European Solidarity Corps, Horizon Europe, and EURAXESS. The agency serves citizens, organizations, students, researchers, and volunteers by facilitating access to EU funding and supporting project implementation. It holds a strong market position as the national contact point for these programs in Croatia, providing comprehensive services including information dissemination, application support, and event organization. Technically, the website is built on Craft CMS with modern frontend technologies including Bootstrap and jQuery. It is hosted by a Croatian registrar and hosting provider, MadNET d.o.o., ensuring local infrastructure alignment. The site is mobile-optimized, accessible, and SEO-friendly, with proper meta tags and structured navigation. Google Analytics is used for user tracking with a clear cookie consent mechanism in place. From a security perspective, the site enforces HTTPS, uses standard security headers, and implements CSRF protection on forms. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy and incident response contact page, which could enhance transparency and preparedness. Overall, AMPEU's website demonstrates a high level of professionalism, compliance with GDPR, and trustworthiness. It effectively communicates its mission and services to its target audience with excellent content quality and user experience. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to further strengthen security posture and stakeholder confidence.

T

Town of Grand Bay-Westfield

grandbaywestfield.ca

62

The Town of Grand Bay-Westfield operates an official municipal website serving residents and visitors with comprehensive information on municipal services, events, council administration, planning, and community resources. The website is positioned as a local government authority in New Brunswick, Canada, providing essential public services and community engagement tools. The business model is typical of a small municipal government entity focused on public service delivery and community communication. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and SEO optimization via Yoast SEO Premium. The site demonstrates good mobile optimization and accessibility features, enhancing user experience. Hosting is provided by Rebel.ca Corp., a Canadian registrar, supporting regional consistency. From a security perspective, the site uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and some recommended security headers. No explicit security or incident response policies are published, and cookie consent mechanisms are absent, indicating room for improvement in privacy compliance. External scripts from unrelated domains may pose a risk and should be reviewed. Overall, the website is trustworthy and professional, with a strong business credibility score. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing security policies, and adding cookie consent to enhance compliance and security posture.

V

Vista Analyse AS

vista-analyse.no

53

Vista Analyse AS is a Norwegian social science analysis company specializing in economic analysis, evaluation, advisory, and research services. Established in 2000, it holds a strong market position within the Norwegian public and private sectors, offering a broad range of services across multiple industries including energy, environment, transportation, welfare, and more. The website reflects a professional and consistent brand image with comprehensive content about services, staff, and publications. Technically, the site uses a modern technology stack including ProcessWire CMS, jQuery, UIkit, and Google Analytics, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and basic security headers, though there is room for improvement in explicit security policies and headers. Overall, the site is trustworthy, compliant with GDPR indications, and well-maintained.

J

JENNY FIELDING

jennyfielding.com

58

Jenny Fielding's website presents a professional venture capital and author brand focused on global entrepreneurship and early-stage startup investment. The site highlights her role as founder, operator, and investor, with a strong emphasis on her book 'Venture Everywhere' and her involvement with Everywhere Ventures, a pre-seed venture capital fund. The website is built on Squarespace, featuring good design quality, mobile optimization, and clear navigation. Security posture is strong with HTTPS and HSTS enabled, though some security headers and policies are missing. Privacy compliance is weak due to the absence of explicit privacy and terms of service pages, though a cookie consent mechanism is present. The WHOIS data is missing, which raises concerns about domain registration transparency, but the website content and external references support legitimacy. Overall, the site scores well on content and security but should improve privacy disclosures and domain registration transparency.

S

Chytrá čidla nejen pro domácnost – Senzoor

senzoor.sk

45

The website senzoor.sk appears to be a newly established business entity based in Slovakia, with domain registration dated February 27, 2024. The site uses modern frontend technologies such as Google Fonts, Google Tag Manager, and Font Awesome icons, hosted on Forpsi's infrastructure with DNSSEC enabled, indicating a baseline of domain security. However, the website content is minimal and lacks critical compliance documents such as privacy policy, cookie policy, and terms of service. No contact information or business certifications are present, which limits trust and credibility from a user perspective. The technical implementation is basic with room for improvement in mobile optimization, accessibility, and SEO. Security posture is moderate due to HTTPS and DNSSEC but lacks security headers and incident response information. Overall, the site is accessible with no WAF or blocking detected, and content is safe for general audiences.

Adrecord is a Swedish affiliate marketing platform established since 2010, recently unified with the Adtraction group to enhance service and technology. The company focuses on performance-based digital marketing through affiliates, influencers, and ambassadors, targeting e-merchants primarily in the Nordic region. Their platform offers measurable results, transparency, and personal support, positioning them as a reliable player in the e-commerce marketing sector. Technically, the website uses modern frameworks like Bootstrap and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks explicit security headers and incident response information. The absence of WHOIS data for the domain reduces trust slightly, but the strong branding and partnership with Adtraction support legitimacy. Overall, the site is professional, user-friendly, and compliant with GDPR requirements.

L

Leadson AB

infoo.se

10

Infoo.se is a Swedish web directory platform operated by Leadson AB, providing comprehensive company profiles, industry categorizations, and business information since 1993. The platform targets Swedish businesses and consumers seeking detailed company data and marketing opportunities. The website is built using modern web technologies including Vue.js and Tailwind CSS, hosted likely on DigitalOcean, and integrates multiple advertising and analytics services with a robust consent management platform ensuring GDPR compliance. Security posture is good with HTTPS enforced and no critical vulnerabilities detected, though DNSSEC is not enabled and some security headers could be improved. Overall, Infoo.se presents a professional, trustworthy, and user-friendly experience with good content quality and clear navigation.

P

Plastic guys ♻

plasticguys.cz

46

PlasticGuys.cz is a small business website established in 2021, operating in the plastics manufacturing or products sector in the Czech Republic. The website presents a professional design with good user experience and moderate technical implementation, leveraging modern web fonts, tracking scripts, and analytics tools such as Google Tag Manager and Facebook Pixel. However, the site lacks explicit privacy, cookie, and terms of service policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but absence of security headers and explicit incident response policies are notable gaps. Overall, the domain registration data is consistent and supports the legitimacy of the business. Strategic improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and compliance.

M

MatSight – Evolution in Plasma Process and Equipment Simulation

matsight.com

49

The website matsight.com appears to represent a technology-focused business established in 2020. The site uses modern web technologies including Google Fonts, Typekit, Microsoft Clarity analytics, LinkedIn Insight Tag, Google Tag Manager, Google Analytics, and reCAPTCHA for bot protection. The domain is registered with Tucows Domains Inc. and is not privacy protected, indicating transparency in domain ownership. However, the website content is minimal and lacks critical legal and compliance pages such as privacy policy, cookie policy, and terms of service. Contact information and business details are not present in the provided HTML content, limiting the ability to fully assess business credibility. Security posture is basic with HTTPS enabled and use of reCAPTCHA, but no advanced security headers or published security policies are detected. Overall, the site demonstrates moderate technical maturity but falls short in privacy compliance and business transparency.

8

8solutions.de Internet Service Provider

8solutions.de

64

8Solutions.de is a German-based internet service provider specializing in managed hosting, cloud computing, and IT solutions tailored for businesses that prioritize GDPR compliance. The company offers a range of services including managed hosting, cloud infrastructure, backup and replication, business cloud solutions, IT consulting, and domain management. Their market position is focused on providing scalable, flexible, and secure IT services primarily to shops, companies, and agencies within Germany. The website demonstrates a professional and consistent brand presence with clear messaging about their services and compliance with European data protection standards. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, with integrations for Matomo analytics and live support chat. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, 8Solutions.de presents a trustworthy and professional digital presence with strong emphasis on data protection and customer support. The lack of explicit security policy and incident response information suggests room for improvement in transparency. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen trust and compliance.

Founder Showcase is a well-established Silicon Valley-based international startup pitch event focused on pre-seed and seed-stage startups. It provides a platform for startups to present to investors and learn from industry leaders, with a history dating back to 2008. The website is professionally designed using WordPress and common plugins, offering a good user experience and clear navigation. However, it lacks visible privacy and cookie policies, and no direct contact emails or phone numbers are provided on the homepage. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. WHOIS data is unavailable, which raises some concerns about domain legitimacy, though the website content and branding appear consistent and trustworthy. Overall, the site serves its business purpose effectively but could improve in privacy and security transparency.

E

European Resuscitation Council

erc.edu

64

The European Resuscitation Council (ERC) operates a professional and content-rich website focused on resuscitation education, training, and research dissemination. The site targets healthcare professionals, educators, and communities interested in life-saving skills. The business model is primarily educational and non-profit, with a webshop and login portals supporting its services. Technically, the site uses modern frameworks such as Vue.js, integrates Cookiebot for GDPR-compliant cookie management, and employs Google Tag Manager for analytics. The website is mobile-optimized and presents a good user experience with clear navigation and professional branding. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are absent. The WHOIS data reveals a domain expiry inconsistency, which should be addressed to maintain trust and service continuity. Overall, the site is safe, trustworthy, and compliant with privacy regulations, but could improve transparency by adding terms of service and security policies.

A

Anadolu Ajansı

anadoluimages.com

59

Anadolu Images is the digital content platform of Türkiye’s Global News Agency Anadolu Ajansı, offering a vast archive of editorial photos and videos alongside recent content from global news photographers. The platform targets media outlets and companies worldwide, providing subscription and pay-per-download services. The website is professionally designed with a clear navigation structure and responsive design, leveraging modern web technologies such as Bootstrap, jQuery, and Owl Carousel. Security posture is moderate with HTTPS usage and CSRF protections in forms, but lacks DNSSEC and explicit security headers. Privacy policies are comprehensive and GDPR compliant, though cookie consent mechanisms are absent. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and established media service.

F

Founder Institute

fi.co

58

Founder Institute is a globally recognized startup accelerator network established in 2009, offering structured programs to early-stage entrepreneurs worldwide. The organization supports founders through its Core Program, Founder Lab, and FI Venture Network, providing mentorship, funding opportunities, and a global community. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to startup founders and investors. Technically, the site leverages modern web technologies including Ruby on Rails, Google Tag Manager, and multiple tracking pixels, hosted on AWS infrastructure, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement, CSRF protection, and secure login options, though explicit security policies and incident response contacts could be improved. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and transparent registration details.

C

C&Rsenal

candrsenal.com

42

C&Rsenal is a niche media and e-commerce website focused on firearms history and related educational content. The site offers blog posts, videos, and an online shop targeting firearms enthusiasts and collectors. The business appears small and specialized, with a consistent brand presence and active social media channels. Technically, the site is built on WordPress with WooCommerce, leveraging common web technologies such as jQuery and Font Awesome. Performance and mobile optimization are adequate, though there is room for improvement in accessibility and SEO. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

F

Finans Norge Forsikringsdrift

forsikringsdrift.no

10

Finans Norge Forsikringsdrift is a Norwegian organization dedicated to developing and managing digital solutions, infrastructure, and standards for the insurance industry. The website positions the company as an important service provider within the Norwegian finance sector, offering key services such as cybersecurity tools in collaboration with DNV and various industry-specific digital services. The site is professionally designed, mobile-optimized, and provides clear contact information, enhancing its credibility. Technically, the website employs modern JavaScript modules, cloud-hosted images via Cloudinary, and integrates cookie consent and analytics tools. The site is well-optimized for SEO and accessibility, though no CMS or hosting provider details are explicitly identified. Performance is moderate with good mobile responsiveness. Security posture is strong with HTTPS enforced and cookie consent implemented. However, explicit security headers and incident response policies are not published, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website is trustworthy and professional, with no signs of malicious activity or content blocking. The lack of WHOIS data due to privacy protection is typical for organizations in this sector and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and maintaining transparency to further strengthen trust.

Z

Zdraviamy.cz

zdraviamy.cz

46

Zdraviamy.cz is a Czech-language online media platform specializing in health, wellness, and medical topics. It offers a broad range of categorized articles, interviews, and videos targeting the Czech-speaking general public interested in health-related information. The business model appears to be content publishing supported by advertising revenue, with no direct e-commerce or subscription services evident. Technically, the website is built on WordPress CMS with common plugins such as Contact Form 7 and AddThis for social sharing, and it uses Google Analytics for visitor tracking. The site is mobile-optimized and has a consistent, professional design with clear navigation. Security-wise, the site uses HTTPS and does not expose sensitive data, but lacks advanced security headers and explicit security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy or terms of service pages. Overall, the site is functional and content-rich but would benefit from improved transparency and security practices.

V

VC Lab 2.0

govclab.com

10

VC Lab 2.0 operates as a premier venture capital accelerator, providing structured programs to help venture capital managers raise capital efficiently within 4 to 6 months. The company offers multiple educational tracks including the VC Lab accelerator, LP Institute, and Venture Institute, targeting venture capital professionals, limited partners, and those pursuing VC careers. The website reflects a strong market position as a leading accelerator with a comprehensive suite of services and resources, including events and application portals. Technically, the website is built on WordPress with modern frameworks such as React and Gutenberg, supported by plugins like Smart Slider 3 and Jetpack. Hosting is managed via WordPress.com infrastructure, ensuring reliable uptime and moderate performance. Security posture is solid with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high professionalism, good SEO, and accessibility standards, making it a trustworthy platform in the venture capital education and acceleration space.

P

Parallel Markets

parallelmarkets.com

10

Parallel Markets is a specialized B2B SaaS provider offering onboarding and compliance solutions tailored for banks, funds, and institutional investors. Their platform automates KYC, KYB, AML monitoring, and investor accreditation processes, streamlining regulatory compliance and investor onboarding. Recently acquired by iCapital, the company is transitioning its brand and services under the iCapital umbrella. The website reflects a professional and consistent brand presence with clear service offerings and trusted client logos, indicating a solid market position in financial compliance technology. Technically, the website is built on Webflow and leverages modern web technologies including Google Tag Manager, reCAPTCHA, and Splide.js for UI components. Hosting and DNS are managed via Amazon AWS infrastructure, ensuring reliable performance and scalability. The site is mobile optimized and SEO friendly, with good accessibility basics, although some advanced accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms but lacks DNSSEC and advanced security headers. No explicit security or incident response policies are published, and no vulnerability disclosure program is evident. Privacy compliance is supported by a comprehensive privacy policy and terms of service, but no cookie consent mechanism is detected. Overall, the security posture is solid but could be enhanced with additional controls and transparency. The overall risk profile is low with no signs of suspicious activity or content safety concerns. The domain registration is consistent with the business timeline and shows no privacy protection or suspicious WHOIS patterns. Strategic recommendations include enabling DNSSEC, publishing security policies, and implementing cookie consent to improve compliance and trust.

W

Woman.sk - Magazín pre ženy, ktoré vedia čo chcú.

woman.sk

58

Woman.sk is a Slovak online magazine targeting women, offering content on lifestyle, fashion, health, and relationships. The website uses WordPress CMS with Yoast SEO plugin and integrates Google Fonts and lazy loading scripts to optimize performance. The site implements a cookie consent mechanism indicating awareness of privacy regulations. However, explicit privacy policy and terms of service pages were not found in the provided content, which may impact compliance and user trust. Security posture is moderate with HTTPS enabled but lacks security headers and detailed security policies. No WAF or blocking mechanisms were detected, and the content is safe for general audiences without adult or explicit material. Overall, the website presents a professional and consistent brand image with good technical implementation but could improve in privacy and security transparency.

M

MOJEOBRAZOVKA.CZ

mojeobrazovka.cz

43

MojeObrazovka.cz is a Czech-Slovak advertising and media agency specializing in managing a unique network of out-of-home (OOH) digital LCD panels placed in public spaces such as hospitals, clinics, offices, and fitness centers. The company claims to reach approximately 2.9 million viewers monthly, positioning itself as a regional player in the digital advertising market. The website reflects a professional business model focused on providing advertising space and campaign management services with a clear target audience of businesses seeking OOH advertising solutions. The company is part of the CZECH Digital Media group, enhancing its credibility and market presence. Technically, the website is built on Joomla CMS using modern frameworks such as Helix Ultimate and SP Page Builder. It incorporates common web technologies including jQuery, Bootstrap, and Font Awesome, and integrates Google Analytics, Google Tag Manager, and Leady tracking for marketing and analytics purposes. The site is mobile-optimized with good SEO practices and moderate performance. Hosting and domain registration are consistent with the business claims, with the domain created in 2019. From a security perspective, the website uses HTTPS with a valid SSL certificate and implements CSRF tokens for AJAX requests, indicating some security awareness. However, it lacks important security headers like Content-Security-Policy and HSTS, which could improve protection against common web attacks. There is no visible privacy policy, cookie policy, or terms of service, which are critical for GDPR compliance and user trust. No vulnerability disclosure or incident response contact information is provided. Overall, the website is professional and trustworthy but would benefit from enhanced security measures and improved privacy compliance documentation. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, and establishing a vulnerability disclosure process to strengthen security posture and regulatory compliance.

T

Tomáš Kuchař - TKSOLAR | Komplexní služby pro váš domov

tksolar.cz

54

Tomáš Kuchař - TKSOLAR is a small Czech Republic-based company specializing in comprehensive home energy services including photovoltaic system installations, water heating, heat pumps, wallbox installations, and complete electrical installations. The website presents a professional and clear business description targeting residential customers seeking energy solutions. The technical infrastructure is based on WordPress with the Divi theme and SEO plugins, indicating moderate digital maturity. The website is accessible without WAF or security challenges, but lacks important compliance documents such as privacy and cookie policies. Security posture is moderate with no detected security headers and unknown SSL configuration. The absence of WHOIS data reduces domain legitimacy confidence. Overall, the website is functional and professional but requires improvements in security and compliance to enhance trust and reduce risk.

E

ELSA GROUP s.r.o.

tazne.cz

55

ELSA GROUP s.r.o. operates a professional e-commerce website specializing in automotive towing devices, roof racks, and related accessories primarily serving the Czech Republic market. The company has a strong market position with a comprehensive product catalog, installation services, and a well-established brand since 1995. The website is well-designed, content-rich, and optimized for user experience with clear navigation and localized content. Technically, the site uses a custom ASP.NET MVC platform with modern tracking and marketing tools integrated, including Google Tag Manager, Microsoft Clarity, and Facebook SDK. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. The absence of WHOIS registration data is a notable risk factor, reducing domain trustworthiness despite the professional appearance and business legitimacy. Overall, the site is safe, compliant with privacy regulations, and suitable for general audiences.

I

IT BŘECLAV s.r.o.

cistenimotoru.cz

41

The website www.cistenimotoru.cz represents a small local business, IT BŘECLAV s.r.o., specializing in engine cleaning and dekarbonization services primarily in the Břeclav and Brno regions of the Czech Republic. The business offers services aimed at improving engine performance, reducing fuel consumption, and extending engine life. The website is professionally designed using WordPress and popular plugins such as Elementor and Yoast SEO, providing a good user experience with clear navigation and mobile optimization. However, the absence of privacy and cookie policies, as well as missing security headers, indicates gaps in compliance and security best practices. The WHOIS data is unavailable, which reduces domain trustworthiness but does not necessarily indicate malicious intent given the local service nature. Overall, the site is functional and informative but would benefit from enhanced privacy compliance and security hardening.

The website at enery.energy is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any meaningful content. Due to this restriction, no business descriptions, contact information, or service details are available. The domain WHOIS data is also unavailable, with no registrar creation or expiry dates, registrant organization, or nameservers provided, likely due to TLD restrictions and privacy protections. This limits the ability to verify the legitimacy or history of the domain. Technically, the site loads minimal resources such as Google Fonts but lacks any analytics, tracking, or security headers. The absence of privacy, cookie, or terms of service policies further reduces compliance posture. Overall, the site appears to be either under maintenance, restricted, or improperly configured, resulting in a poor digital maturity and security posture.

D

DF MARKETING, s.r.o.

dfmarketing.cz

66

DF MARKETING, s.r.o. is a Czech Republic-based small marketing agency specializing in online marketing, sales support, multimedia production, web development, and training services. The company positions itself as a professional and reliable partner with a client-centric approach, supported by testimonials and a Google Partner badge. Their website reflects a modern, well-structured digital presence with clear service offerings and contact information. Technically, the site employs modern web technologies including Google Tag Manager and Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers are absent and no explicit security policies or incident response contacts are published. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses. Overall, the website is trustworthy and professionally maintained, with room for security enhancements.

H

Harry's Biketours

harrys-biketours.at

10

Harry's Biketours is a small, specialized tourism company offering motorcycle tours and travel experiences primarily in the South-Alps region covering Austria, Italy, and Slovenia. Their services include guided and self-guided motorcycle tours, travel packages, and accommodation options such as Apartment Panorama. The website is professionally designed, mobile-optimized, and provides clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site is built on WordPress with common plugins and frameworks, delivering moderate performance and good SEO. Security posture is adequate with HTTPS enabled and cookie consent mechanisms, but lacks advanced security headers and explicit security policies. WHOIS data is unavailable, likely due to privacy protection, which is typical for small businesses in this sector. Overall, the site is trustworthy and well-positioned within its niche market.

C

Credspark

credspark.com

9

CredSpark is a technology company specializing in transforming content into personalized interactive experiences that generate unique data insights and increase audience engagement. Positioned as a niche provider in the interactive content space, CredSpark targets businesses seeking to enhance their digital marketing and customer engagement strategies. The website is built on WordPress using the Astra theme and Elementor plugins, leveraging modern web technologies and CDN services for content delivery. The technical infrastructure includes performance monitoring via New Relic and analytics through Google Tag Manager, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and some security headers present, though improvements are recommended in CSP and other headers. The absence of WHOIS registration data raises some concerns about domain transparency, but the website's professional content and policies mitigate trust issues. Overall, CredSpark presents a credible and professional online presence with room for security enhancements.

B

BOHEMIAKOMBI spol. s r. o.

bohemiakombi.cz

58

BOHEMIAKOMBI spol. s r. o. is a Czech transportation company specializing in combined rail-road freight transport, particularly the transport of road trailers by rail across Europe. The company is positioned as a key operator in the Czech Republic's continental combined transport sector and is part of the ČD group. Their services provide an alternative to traditional road transport, targeting businesses involved in export logistics. The website reflects a professional business presence with clear contact information, partner affiliations, and relevant content. Technically, the site uses modern web technologies including Google Analytics and is mobile optimized, though some security headers and explicit security policies are absent. The absence of WHOIS data limits domain trust assessment, but the business information and website content indicate legitimacy. Privacy compliance is basic but includes cookie consent mechanisms.

T

TriTec good choice s.r.o.

tritec.cz

43

TriTec good choice s.r.o. operates a professional automotive service center in Břeclav, Czech Republic, offering a wide range of vehicle repair and maintenance services including mechanical repairs, diagnostics, tire services, and parts sales. The company targets vehicle owners in the Czech Republic and neighboring countries, providing multilingual support and convenient pick-up services. The website reflects a well-structured and professionally designed digital presence with clear contact information and service descriptions. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, ensuring a good user experience and mobile optimization. Security-wise, the site implements a detailed cookie consent mechanism but lacks visible security headers and published privacy or security policies, indicating room for improvement in compliance and security posture. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

The Alpha-1-Center website serves as a specialized non-profit platform dedicated to the rare disease Alpha-1-Antitrypsinmangel, primarily targeting medical professionals, patients, and researchers in German-speaking countries. It offers educational resources, online seminars, research awards, and patient registries, positioning itself as a key knowledge hub in this niche healthcare sector. The site is well-structured, content-rich, and professionally presented, reflecting a focused mission on disease awareness and support. Technically, the website is built on the Contao Open Source CMS platform, utilizing common web technologies such as jQuery, Modernizr, and embedded Vimeo videos. The site demonstrates good mobile optimization and accessibility but lacks advanced SEO and security headers. Analytics are implemented via Matomo, indicating moderate user tracking with some privacy considerations. From a security perspective, the site uses HTTPS but does not exhibit comprehensive security headers or a cookie consent mechanism, which are important for GDPR compliance. The WHOIS data is unavailable or malformed, limiting domain trust verification and slightly reducing overall credibility. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is a credible and valuable resource within its healthcare niche but would benefit from improved privacy compliance, enhanced security practices, and better WHOIS transparency to strengthen trust and regulatory adherence.

M

MN24

mn24.no

10

MN24 is a regional Norwegian news portal focused on business, economy, and innovation in Midt-Norge. Owned by Polaris Media Midt-Norge and its nine newspapers, it delivers engaged and critical journalism targeting business professionals and the general public interested in regional economic developments. The website offers news articles, job postings, and advertising services, positioning itself as a key regional media player. Technically, MN24 uses modern web technologies including Nuxt.js and various third-party scripts for analytics and advertising. The site is mobile-optimized with good SEO practices and a clear navigation structure. Security posture is moderate with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are not evident. WHOIS data is unavailable, limiting domain legitimacy verification, but the professional content and branding suggest a legitimate operation. Overall, MN24 presents a trustworthy and professional regional news service with room for security enhancements.

K

K13

k13.sk

47

K13 is a cultural organization based in Košice, Slovakia, providing information about cultural centers, events, and ticketing services. The website serves as an official portal for local cultural activities, targeting the general public interested in arts and culture in the region. The business model focuses on event promotion and community engagement through digital presence. Technically, the site is built on WordPress using Elementor and Yoast SEO, hosted by Websupport with DNSSEC and HTTPS enabled, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking advanced security headers and explicit privacy policies. Overall, the site is professional, trustworthy, and well-optimized for SEO and mobile devices, but could improve privacy compliance and security documentation.

S

Sticky Studio

sticky.studio

60

Sticky Studio is a small SaaS company offering a collaborative brainstorming and planning tool designed to help teams and individuals untangle complexity through a shared canvas. The product emphasizes simplicity and real-time collaboration features such as sticky notes, voting, comments, and voice huddles. The business operates a freemium model with a free tier and a $5/month subscription offering enhanced features. The website is professionally designed with consistent branding and clear calls to action, targeting teams seeking lightweight collaboration solutions. Technically, the site uses modern JavaScript modules, Google Fonts, Stripe for payments, and Fathom Analytics for privacy-focused tracking. The site is mobile-optimized and performs moderately well, though accessibility and SEO could be improved. Security posture is adequate with HTTPS implied but lacks visible security headers and published security policies. WHOIS data is limited due to privacy protections and TLD restrictions, but no suspicious indicators are present. Overall, the site is trustworthy and functional with room for security and privacy enhancements.

N

NNPC Marine Insurance

nnpc-marine.com

68

NNPC Marine Insurance is a specialized marine insurance provider positioned as the only Dutch P&I club offering global marine insurance and risk solutions. The company targets marine industry clients such as ship owners and charterers, providing services including P&I Mutual, Fixed Premium, FD&D, Crew Insurance, Charterers Liability, and Inland Shipping Insurance. The website is professionally designed, multilingual, and uses a modern WordPress infrastructure with plugins for SEO, analytics, and marketing. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response information. The domain WHOIS data shows an inconsistency with a future creation date, which raises some trust concerns. Overall, the website is functional, compliant with GDPR, and presents a credible business presence with room for security and transparency improvements.

N

NorthStandard

north-standard.com

58

NorthStandard is a marine insurance provider specializing in Protection & Indemnity (P&I) coverage, positioning itself as one of the largest P&I clubs within the International Group. The company targets marine industry professionals including ship owners and operators, offering specialized insurance services. The website reflects a professional and consistent brand image with a focus on marine insurance services. Technically, the site employs modern web technologies such as Google Tag Manager, Cookiebot for consent management, Hotjar for analytics, Adobe Typekit, and Google Fonts, hosted under a reputable registrar IONOS SE. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Security posture is moderate with HTTPS implied, clientTransferProhibited domain status, and cookie consent mechanisms in place; however, DNSSEC is not enabled and no explicit security headers or incident response policies are found. Overall, the site is safe, professional, and trustworthy with no adult or questionable content detected.

D

Deutsches Zentrum für Lungenforschung e. V.

dzl.de

59

The Deutsches Zentrum für Lungenforschung (DZL) is a prominent German non-profit consortium comprising 29 leading academic and non-academic institutions dedicated to lung and respiratory disease research. The organization focuses on translational research, bridging laboratory findings to clinical applications, and supports career development through its DZL Academy. The website reflects a strong market position in healthcare research with a clear mission and comprehensive services including clinical studies, data management, and patient information. The target audience includes medical researchers, healthcare professionals, and patients interested in lung health. Technically, the website is built on WordPress with the Oxygen Builder framework, leveraging modern JavaScript libraries like jQuery and AOS for animations. Hosting is managed via EuroDNS nameservers. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Analytics are implemented using Google Analytics with user consent mechanisms in place, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's professional nature, indicating a trustworthy domain registration. Overall, the DZL website is a well-maintained, professional platform supporting a reputable healthcare research entity. Strategic improvements include publishing security policies, enhancing accessibility, and adding vulnerability disclosure information to strengthen trust and compliance.

A

Akademiet

akademiet.no

69

Akademiet is a Norwegian educational institution offering a range of schooling options including secondary schools, private candidate schools, primary schools, and exchange programs. The website positions Akademiet as a leading and future-oriented school in Norway, targeting students and parents seeking quality education. The digital infrastructure is built on WordPress with modern plugins such as Gravity Forms and Yoast SEO, indicating a mature and well-maintained technical environment. The site is mobile-optimized, uses HTTPS, and includes a cookie consent mechanism, reflecting good privacy and security awareness. However, the absence of visible privacy and terms of service pages and the lack of WHOIS transparency slightly reduce trust. Overall, the security posture is solid with no critical vulnerabilities detected, but improvements in security headers and incident response disclosures are recommended.

G

Guggenberger GmbH

guggenberger-bau.de

10

Guggenberger GmbH is a well-established, family-owned construction company based in Mintraching, Germany, with over 70 years of experience. The company specializes in building construction, civil engineering, and turnkey construction projects, serving a diverse clientele including industrial, public sector, and private customers. They maintain their own production facilities for asphalt, gravel, and concrete, ensuring quality and supply chain independence. The website is professionally designed using WordPress with modern page builders and includes comprehensive information about services, certifications, and contact details. Technically, the site uses HTTPS, cookie consent mechanisms, and integrates Google Analytics for tracking. Security posture is good but could be improved by adding explicit security policies and headers. Overall, the site reflects a credible and trustworthy business with a strong regional presence.

A

Adresseavisen

adressa.no

65

Adresseavisen operates the website adressa.no, serving as the largest regional newspaper for Midt-Norge and Trondheim. It provides comprehensive news coverage including domestic, international, sports, and cultural content. The site targets a broad regional audience and operates on a subscription and advertising business model. Technically, the website uses modern frameworks such as Nuxt.js and Vue.js, with a CMS named PolarisWeb. The site is well-optimized for mobile and SEO, with good content quality and professional design. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not clearly published. WHOIS data is unavailable, likely due to privacy protection, but the website's content and structure indicate legitimacy. Overall, the site is a professional, trustworthy media outlet with moderate tracking and advertising integrations.

V

VesselFinder

vesselfinder.com

10

VesselFinder operates a comprehensive maritime vessel tracking platform offering real-time AIS data, container tracking, and related services. The website targets maritime professionals, shipping companies, and enthusiasts with a freemium business model that includes free access and paid premium plans. The platform is well-established with a consistent brand presence and multiple service offerings including mobile apps and route planning tools. Technically, the site leverages modern JavaScript libraries and ad technologies, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent management, though lacks explicit security policies or incident response contacts. The absence of WHOIS data raises some concerns about domain legitimacy, but the operational website and professional content mitigate immediate risk. Overall, the site is trustworthy and functional with room for enhanced security transparency.

Orange Salamander operates a specialized digital platform delivering 1-minute medical news and product information targeted at healthcare professionals including doctors, pharmacists, and PTAs. The platform positions itself as a niche communication channel within the healthcare sector, offering concise, multimedia content to maximize engagement and visibility for pharmaceutical and medical technology companies. The website is professionally designed, multilingual (German and English), and leverages modern web technologies hosted on the 1&1 IONOS platform. It demonstrates a moderate level of digital maturity with good mobile optimization and SEO practices. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. However, there is a lack of explicit security headers and no visible incident response or vulnerability disclosure policies, which could be improved to enhance trust and compliance. The absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, though the professional presentation and consistent branding mitigate immediate concerns. Overall, the website presents a credible and focused business offering in the healthcare digital communication space, with room for improvement in security transparency and domain registration clarity. Strategic recommendations include enhancing security headers, publishing incident response contacts, and clarifying domain registration details to strengthen trust and compliance.

N

No Brakes Games

nobrakesgames.com

52

No Brakes Games is a Lithuania-based game development studio known primarily for its innovative physics-based games, including the popular Human: Fall Flat series. The company operates a professional website built on WordPress, showcasing its games, studio culture, and career opportunities. The site targets gamers, industry professionals, and potential employees, emphasizing creativity and unique gameplay experiences. The business model centers on game development and publishing, with a medium-sized team and a solid market position in the gaming industry. Technically, the website employs a modern technology stack including WordPress 6.8.3, Foundation CSS framework, and various JavaScript libraries for UI and interactivity. Hosting is provided by Hostex, with Google Analytics integrated for traffic analysis and Cookiebot managing GDPR-compliant cookie consent. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, reflecting good privacy compliance. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating areas for improvement. No exposed sensitive data or vulnerable libraries were found. The absence of explicit security policies or incident response contacts suggests a need for enhanced transparency and readiness. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. The domain registration data aligns well with the business profile, supporting legitimacy. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security policies, and maintaining regular audits of third-party scripts to strengthen security posture and user trust.

Quicket is an established online event ticketing platform serving primarily the African market. It offers a comprehensive suite of services for event organizers and attendees, including ticket sales, event creation, ticket scanning, real-time analytics, and marketing tools. The platform supports a wide range of event types from large festivals to boutique events, positioning itself as a trusted and versatile solution with over 200,000 events served. Technically, the website leverages modern web technologies such as Angular and integrates multiple marketing and analytics tools, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies, which are areas for improvement. The absence of WHOIS data for the domain is a concern for domain legitimacy, though the website content and branding suggest a legitimate business. Overall, Quicket presents a solid platform with room to enhance transparency and security posture.

N

Nanobit

nanobit.com

50

Nanobit is a well-established technology company specializing in game development, with a domain age of over 23 years reflecting its long-standing market presence. The company targets gamers and potential employees, offering a portfolio of games and career opportunities. The website is professionally designed using modern technologies such as Angular and Bootstrap, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and domain protections in place, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is addressed with a cookie consent mechanism and accessible privacy and terms of service pages. Overall, the website demonstrates high business credibility and trustworthiness with strong social media presence and consistent branding.