Security Directory

C

Candid

foundationcenter.org

59

Candid is a leading nonprofit organization formed by the merger of Foundation Center and GuideStar, providing comprehensive data and resources to the social sector. Their website serves as a hub for nonprofit data, philanthropy research, and grantmaker information, targeting nonprofit professionals and grantmakers. The organization holds a strong market position as a trusted resource in the nonprofit ecosystem. Technically, the website employs a mature technology stack including jQuery, Google Tag Manager, and various UI libraries, hosted on AWS infrastructure. While the site is well-designed and mobile-optimized, some legacy JavaScript libraries present minor security concerns. Security posture is generally good with HTTPS enforced and domain protections in place, but improvements such as enabling DNSSEC and implementing Content Security Policy headers are recommended. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and serves its audience effectively.

G

Guam Preservation Trust

guampreservationtrust.org

45

The Guam Preservation Trust is a small, established non-profit organization dedicated to preserving Guam's historic sites and cultural heritage. Founded in 1990, it operates with a board of directors representing key expertise areas and provides services including restoration, funding for cultural projects, and public education. The website reflects a professional and consistent brand presence targeting residents and stakeholders interested in Guam's heritage. Technically, the site is built on WordPress using Bootstrap and common plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and uses outdated JavaScript libraries, which could pose risks. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is privacy protected but consistent with the organization's history and legitimacy. Strategic improvements in security and privacy compliance would enhance trust and reduce risk.

H

der markus dahemm.

hammelblog.de

50

The website www.hammelblog.de is a personal and local blog focused on the community of Hammelburg, Germany. It provides content related to local events, civic participation, sustainable mobility, and community issues. The site targets residents and community members interested in local news and engagement. It operates as a small-scale blog without commercial intent or transactional services. Technically, the site is built using the Hugo static site generator and incorporates JavaScript libraries such as jQuery (version 1.12.4), Bigfoot.js, GLightbox, and Tinylytics for analytics. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features and comprehensive SEO optimization. Security-wise, the site uses HTTPS but lacks security headers and employs an outdated jQuery version with known vulnerabilities. There are no visible forms or sensitive data exposure. Privacy and cookie policies are absent, and no contact or business information is provided, limiting compliance and trust signals. Overall, the site is safe for general audiences and does not contain adult or questionable content.

T

Tecnavia

eclipping.org

62

Tecnavia is a specialized provider of digital publishing solutions targeting media professionals, clipping bureaus, and press associations. Their offerings include digital replica editions, press review tools, and advanced marketplace services. The website is built on WordPress using the Enfold theme and integrates modern technologies such as Cookiebot for cookie consent and Google Analytics for traffic analysis. The site demonstrates good content quality and professional design with clear navigation and mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks some security headers and explicit security policies. The absence of WHOIS data for the domain reduces trustworthiness and should be investigated further. Overall, the website presents a credible business presence with room for improvement in security and compliance documentation.

Z

Zdeněk Písařík

intarzie-terno.cz

45

Intarzie – terno is a small artisan woodworking business based in the Czech Republic, founded in 2019 by Zdeněk Písařík, a trained carpenter. The company specializes in handcrafted wooden products, including intarsia and custom woodwork, targeting individuals seeking unique and quality wooden items. The website presents a professional and consistent brand image with clear contact information and social media presence on Facebook and Instagram. Technically, the site is built on WordPress with WooCommerce, using standard plugins and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and uses an outdated jQuery version, which could pose minor risks. Privacy compliance is limited due to the absence of privacy and terms of service pages. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and consistency.

favskinhouse.com is a small e-commerce website specializing in the sale of vitamins, supplements, haircare, whitening products, and hormone replacement therapy (HRT) products. The site targets consumers interested in health and beauty products, operating primarily as an online retail platform. The business appears to be relatively new, with the domain registered in 2020, and no parent or subsidiary companies identified. The website content is basic but functional, with product listings and a cookie consent mechanism in place. However, critical business contact information and privacy policies are missing, which may affect user trust and regulatory compliance. Technically, the website is built on the ShopUp e-commerce platform, utilizing older versions of jQuery and Bootstrap frameworks. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Security posture is weak, with no DNSSEC, security headers, or visible HTTPS enforcement in the provided data. The WHOIS data is consistent and shows no privacy protection, indicating transparency in domain registration. Security-wise, the absence of privacy policies, terms of service, and contact information for incident response reduces the site's compliance and trustworthiness. The lack of security headers and DNSSEC exposes the site to potential risks. No analytics or tracking services were detected, suggesting minimal user tracking. Overall, the site is functional but requires significant improvements in security, privacy compliance, and business transparency to enhance trust and regulatory adherence. The overall risk assessment indicates a moderate risk profile primarily due to missing compliance documentation and weak security configurations. Strategic recommendations include implementing privacy and terms policies, enhancing security headers and DNSSEC, enforcing HTTPS, and providing clear business contact information to improve credibility and compliance.

G

Gustave Roussy

gustaveroussy.fr

61

Gustave Roussy is a leading European cancer center specializing in oncology treatment, research, and patient support. The website reflects a mature organization with a strong focus on innovation, patient care, and clinical research. It serves patients, healthcare professionals, researchers, and donors with comprehensive information and services including clinical trials, education, and fundraising. Technically, the site is built on Drupal 7 with modern tracking and consent tools like Matomo and Cookiebot, ensuring GDPR compliance and user privacy. The security posture is solid with HTTPS and cookie consent, though improvements in security headers and vulnerability disclosure are recommended. Overall, the site is professional, trustworthy, and well-structured, supporting Gustave Roussy's market position as a premier cancer institute.

M

Michael Moor

michaelmoor.me

41

Michael Moor's personal website serves as an academic and professional platform highlighting his expertise in medical AI and machine learning. The site effectively communicates his research focus, academic appointments, and recent achievements, targeting an audience of researchers, healthcare professionals, and AI enthusiasts. The website is built on a modern static site generator (Hugo) with a clean, responsive design and integrates several well-known libraries and frameworks to enhance user experience and content presentation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement in compliance and security best practices. Overall, the site is trustworthy, professional, and well-maintained, with minimal privacy risks due to lack of data collection mechanisms.

N

NDCHost, Inc.

cplicensing.net

59

The website cplicensing.net operates as an authorized distributor of cPanel licenses and related add-ons, primarily targeting web hosting providers and server administrators. It offers metal and cloud licenses with competitive pricing and additional plugins to enhance server management. The business is closely associated with NDCHost, Inc., which appears to be the parent company and hosting provider. The site demonstrates a professional presence with clear navigation, relevant content, and trust indicators such as authorized distributor badges and customer testimonials. From a technical perspective, the website uses a traditional tech stack including jQuery 1.12.4, Bootstrap, Font Awesome, Google Analytics, and Tawk.to live chat. The site is mobile optimized with good SEO practices but uses an outdated jQuery version which could pose security risks. No CMS or advanced frameworks were detected. Hosting is likely provided by NDCHost, Inc. Security posture is moderate; HTTPS is implied but no explicit security headers were detected in the provided data. No sensitive data exposure or vulnerable libraries were found, but the absence of cookie consent mechanisms and explicit security policies indicates room for improvement. The WHOIS data is missing or unavailable, which reduces trustworthiness and suggests the domain registration status should be verified externally. Overall, the website is functional, professional, and trustworthy from a business perspective but would benefit from enhanced security practices, updated libraries, and improved privacy compliance to strengthen its risk profile and user trust.

N

Nintendo News

nintendonews.com

62

NintendoNews.com is a specialized media website focused on aggregating and publishing the latest news related to Nintendo gaming platforms such as the Switch, 3DS, and eShop. The site curates content from multiple reputable external sources, providing timely updates and featured deals to its audience of Nintendo enthusiasts. Founded in 2013, the website has established itself as a niche news aggregator with consistent branding and good content quality. The business model centers on content aggregation and advertising, supported by newsletter subscriptions and affiliate deals. Technically, the site uses a custom CMS and relies on jQuery and Google Analytics for functionality and tracking. Hosting and DNS services are provided by Cloudflare, ensuring reliable uptime and basic security. The website is mobile-optimized with good SEO practices but lacks advanced accessibility features.

W

Winnipeg Blue Bombers

bluebombers.com

58

The Winnipeg Blue Bombers website serves as the official digital presence for the professional Canadian Football League team. It provides comprehensive ticketing options, fan engagement content, and game day information targeting sports fans and community members. The site is built on WordPress with a modern tech stack including Materialize and various analytics and advertising tools. The technical infrastructure supports good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly that warrants further investigation. Overall, the site is professional and trustworthy but could enhance privacy transparency and contact information visibility.

A

Asiguropedia

asiguropedia.ro

57

Asiguropedia.ro is a Romanian educational platform specializing in insurance knowledge, covering topics such as CASCO, health, home, life, and travel insurance. The website targets Romanian individuals and families seeking to understand insurance products better. It operates as an informational resource rather than a direct insurance provider, positioning itself as a niche player in the finance education sector. The business was established in 2017, consistent with the domain registration date, and maintains a small-scale operation with a focused content offering. Technically, the site is built on WordPress using the Avada theme, with common plugins like Revolution Slider and Cookiebot for cookie consent. The hosting is managed via DigitalStar, as indicated by the nameservers. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. Security-wise, HTTPS is enforced, and cookie consent is implemented; however, the site uses an outdated jQuery version which may expose it to vulnerabilities. Security headers are minimal, and no explicit privacy policy or terms of service pages were found, indicating room for compliance improvement. Overall, the website is professional and trustworthy but would benefit from enhanced security measures and clearer privacy documentation.

S

Seoul Economic Daily

seoulforum.kr

59

Seoul Forum is a globally oriented business forum organized by Seoul Economic Daily, a reputable South Korean media company. The website promotes the Seoul Forum 2025 event focusing on AI and future technologies, featuring prominent speakers and major corporate sponsors. The business model centers on event organization, media coverage, and partnership facilitation, targeting business professionals, academics, and government officials. The domain is mature and consistent with the company's profile, enhancing trustworthiness. Technically, the website uses a modern but somewhat dated tech stack including jQuery, Swiper, and Three.js for interactive visuals. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy compliance is basic with a privacy policy present but no cookie banner or GDPR-specific indicators. Overall, the site is professional and trustworthy with clear contact information and strong branding. However, improvements in security headers, privacy compliance, and incident response policies would enhance the security posture and regulatory adherence. The site is safe for general audiences with no adult or questionable content detected.

주

주식회사 케이지써닝라이프

sunningleader.co.kr

39

The website for 써닝리더십센터 연수원, operated by 주식회사 케이지써닝라이프, provides leadership and corporate training services primarily targeting Korean businesses and organizations. The company is part of the KG Group family, with a domain registered since 2015, reflecting a mature and established business. The site offers detailed information about training programs, facilities, and contact details, supporting its role as an educational and hospitality service provider. Technically, the site uses legacy JavaScript libraries such as jQuery 1.12.4 and bxSlider, hosted likely via Gabia, a Korean registrar and hosting provider. The website is accessible, with no blocking or WAF interference detected, but lacks modern security headers and cookie consent mechanisms, which are important for compliance and security. Contact information and company registration details are clearly presented, enhancing business credibility.

J

JENNIFERSOFT, Inc.

jennifersoft.com

62

JENNIFERSOFT, Inc. is a technology company specializing in real-time application performance monitoring (APM) solutions for enterprise environments. Their product suite supports multiple platforms including Java, .NET, PHP, Python, and mainframe systems, targeting IT professionals and businesses seeking to optimize application performance and customer satisfaction. The company has a solid market presence with over 1373 customers including major brands such as Samsung, Prudential, and Rakuten. The website is professionally designed, multilingual, and provides comprehensive product information and customer trust signals. Technically, the site is built on WordPress, hosted on AWS infrastructure, and employs modern web technologies and security measures such as HTTPS and Google reCAPTCHA. However, some security best practices like HTTP security headers and DNSSEC are not implemented. Contact is primarily via a secure contact form with no direct email or phone numbers publicly listed. Overall, the website reflects a mature digital presence with good security posture and privacy compliance, though there is room for improvement in publishing explicit security policies and incident response information.

ELSA Romania operates as the Romanian branch of the European Law Students Association, providing educational resources, events, and networking opportunities for law students. The website is built on WordPress and uses Cloudflare DNS services, presenting a moderate level of technical maturity. Content is well-structured and relevant to its target audience, primarily Romanian law students and legal professionals. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the site is safe, professional, and trustworthy but could benefit from enhanced security and privacy features.

F

Fundatia Carol

fundatiacarol.ro

41

Fundatia Carol is a Romanian non-profit foundation focused on cultural and educational activities, including organizing cultural festivals, scholarship programs, exhibitions, and research studies. The foundation collaborates with Biblioteca Centrală Universitară „Carol I” and targets the Romanian academic and cultural community. The website is built on WordPress with a moderate technical infrastructure and basic mobile optimization. Security posture is moderate but shows weaknesses such as outdated software and lack of security headers. Privacy compliance is low due to missing privacy and cookie policies. Overall, the site is accessible, safe, and professionally presented but requires improvements in security and compliance to reduce risk.

The Consiliul Național al Cercetării Științifice (CNCS) website serves as the official online presence of a Romanian government advisory body focused on scientific research coordination and evaluation. The organization supports the Ministry of Education and Research in Romania by providing consultation, monitoring, and funding oversight aligned with national research strategies. The website content is primarily in Romanian, targeting researchers, government officials, and scientific institutions within Romania. The site offers structured information about CNCS's role, mission, and organizational regulations, but lacks explicit privacy or cookie policies and direct contact information on the homepage.

pygame.org is the official website for the pygame open source project, a Python library for multimedia and game development. The site serves as a community hub offering news, project hosting, documentation, and resources for Python game developers. The website demonstrates a consistent brand and good content quality focused on its niche audience of developers and hobbyists. Technically, the site uses established but somewhat dated technologies such as Bootstrap 3 and jQuery 1.12.4, with basic mobile optimization and accessibility features. Security posture is moderate due to lack of visible security headers and incomplete WHOIS data, though no blocking or WAF challenges were detected. Privacy and cookie policies are absent, indicating room for compliance improvements. Overall, pygame.org is a trusted community resource with a moderate risk profile primarily due to incomplete domain registration transparency and limited security best practices.

Servis 48 is a digital platform operated by the City Municipality of Celje, Slovenia, designed to facilitate citizen participation in reporting and tracking public service issues. The website provides an interactive map-based interface for submitting and reviewing initiatives related to municipal services such as public lighting, road maintenance, and environmental concerns. The platform targets local citizens and serves as a transparent channel for community engagement. Technically, the site leverages a combination of JavaScript libraries including ArcGIS API, jQuery, and Materialize CSS to deliver a responsive and interactive user experience. While the site is mobile-optimized and includes accessibility statements, it only partially complies with accessibility standards and lacks some modern security headers. Security posture is moderate with HTTPS usage but outdated libraries and missing headers present potential risks. Privacy compliance is basic, with no dedicated privacy policy page but includes user consent for data processing in forms. Overall, the site is a legitimate government service with a solid business credibility score but could improve in security and privacy transparency.

E

Energetika Maribor d. o. o.

energetika-mb.si

42

Energetika Maribor d. o. o. is a Slovenian public utility company primarily engaged in the production and distribution of heat energy, along with supplying compressed natural gas and promoting alternative energy sources. The company serves the Maribor municipality and is positioned as the main organized heat supplier in the region. Their website reflects a mature digital presence with clear service offerings, customer resources, and a focus on environmental responsibility. Technically, the site is built on WordPress using the Enfold theme, leveraging common JavaScript libraries and Google Analytics for user insights, complemented by Cookiebot for GDPR-compliant cookie consent. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The company demonstrates compliance with quality standards, notably ISO 9001, and provides comprehensive contact information and policies, enhancing trust and transparency.

K

Kunststoff-Netzwerk Franken e.V.

kunststoff-netzwerk-franken.de

58

Kunststoff-Netzwerk Franken e.V. is a regional non-profit network association focused on fostering cooperation and knowledge exchange among companies in the plastics manufacturing industry in Franconia, Germany. The website serves as a platform for members and interested parties to access information about the network, its activities, training opportunities, and events. The organization positions itself as a facilitator of efficient solutions through cross-company collaboration within the plastics sector. Technically, the website employs a moderately modern technology stack including jQuery, Bootstrap, and various JavaScript libraries for UI components such as carousels and lightboxes. The site is mobile-optimized with a clear navigation structure and good content relevance. Hosting appears to be managed via standard domain control services, with no CMS detected. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries visibly. However, it lacks explicit security headers and does not provide a security policy or incident response contact information. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is implemented. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and safe for general audiences. The security posture is adequate but could be improved by implementing security headers, cookie consent, and vulnerability disclosure mechanisms. The business is well represented online with consistent branding and relevant content for its target audience.

B

Bildungswerk der Hessischen Wirtschaft e.V.

bwhw.de

45

Bildungswerk der Hessischen Wirtschaft e.V. is a regional educational and training organization based in Germany, primarily serving Hessen and Rheinland-Pfalz. The organization focuses on supporting students, trainees, employees, and companies with vocational training, qualification programs, and inclusion initiatives. It operates through a network of subsidiaries and partner organizations, maintaining a strong regional presence with over 60 locations. The website reflects a professional and consistent brand image with multilingual support and a clear focus on education and career development. Technically, the website uses a moderate technology stack including jQuery, Swiper.js for UI components, and Piwik/Matomo for privacy-conscious analytics. The site is mobile-optimized and provides a good user experience, although some technical improvements could be made such as updating JavaScript libraries and implementing security headers. The website is served over HTTPS with no blocking or WAF interference, ensuring secure access. From a security perspective, the site demonstrates basic good practices such as HTTPS and disabling cookies in analytics, but lacks visible security headers and explicit incident response or security policy disclosures. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Contact information is limited on the homepage, which could impact user trust and support accessibility. Overall, the website is trustworthy and professionally maintained with a strong business credibility score. Strategic improvements in security headers, cookie consent, and contact transparency would enhance compliance and user confidence, supporting the organization's mission in vocational education and inclusion.

O

Oberstdorf Kleinwalsertal Bergbahnen

ok-bergbahnen.com

61

Oberstdorf Kleinwalsertal Bergbahnen operates a professional tourism and mountain transportation website offering cable car and ski lift services in the Oberstdorf and Kleinwalsertal regions. The site targets tourists, families, and outdoor enthusiasts, providing detailed information on activities, events, and membership benefits. Technically, the website uses a mature stack including jQuery, RequireJS, and various UI libraries, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and consent management, though some security headers could be improved. The absence of WHOIS data is a notable concern but does not detract from the overall professionalism of the site. Privacy compliance is well addressed with cookie consent and GDPR indicators. Overall, the site is a reliable digital presence for a regional tourism business.

T

Tourismus Oberstdorf

oberstdorf.de

55

Tourismus Oberstdorf operates a comprehensive tourism website promoting Oberstdorf, Germany, as a premier destination for alpine activities including hiking, skiing, and family vacations. The site offers accommodation booking, event information, and digital planning tools, positioning itself as a key regional tourism authority. The website is well-branded, content-rich, and targets tourists seeking outdoor and cultural experiences in the Allgäu Alps. Technically, the site uses a modern stack including RequireJS, jQuery, Google Tag Manager, and a proprietary CMS platform (Tramino). It is hosted with Amazon S3 for static assets and optimized for mobile devices with good SEO and accessibility practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and explicit security policies are absent. The site employs multiple advertising and tracking technologies with user consent, reflecting a mature digital marketing approach. WHOIS data is minimal but consistent with the business profile. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

C

CHEFS CULINAR

chefsculinar.com

54

CHEFS CULINAR is a well-established European foodservice distributor with a strong presence across multiple countries. The company offers a broad range of food and non-food products, kitchen technology, and consulting services tailored to professional customers in hospitality, gastronomy, and communal catering. Their website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses a traditional tech stack including jQuery, Bootstrap, and Google reCAPTCHA, with moderate performance and mobile optimization. Security measures include bot protection and cookie consent, but lack visible security headers and advanced policies. The absence of WHOIS data reduces domain transparency and trust, though the business appears legitimate based on content and related domains. Overall, the website scores well but could improve in security posture and domain registration transparency.

O

ORION TELEKOM d.o.o.

tickets.rs

52

Tickets.rs is an established online ticketing platform operated by ORION TELEKOM d.o.o., founded in 2008 and serving primarily the Serbian market. The platform offers online ticket sales for a variety of entertainment events including concerts, theater performances, festivals, and sports events. The website demonstrates a professional design with good user experience and clear navigation, targeting a broad audience interested in cultural and sports events. Technically, the site is built using Angular 9, integrates Google Maps and Google Analytics, and employs modern UI components such as Material Design and Swiper.js for carousels. While HTTPS is enforced and no sensitive data is exposed, the site lacks DNSSEC and visible security headers, which are recommended for enhanced security. Privacy compliance is weak as no explicit privacy or cookie policies were found, and no consent mechanisms are implemented. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the site is functional and trustworthy but would benefit from improved privacy and security practices.

B&W NetworX GmbH & Co. KG is a small regional IT service provider based in Sinzheim, Germany, specializing in Windows and Unix/Linux technologies. Their business model focuses on delivering IT consulting, infrastructure services, data protection consulting, and ERP solutions to local businesses. The website is professionally designed with clear navigation and content relevant to their target audience. Technically, the site runs on WordPress 4.9.23 with common plugins such as Contact Form 7 and a cookie notice, indicating basic digital maturity. However, the WordPress version is outdated, which may expose the site to security vulnerabilities. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. The absence of WHOIS data is a significant concern, as it prevents verification of domain legitimacy and age, impacting trustworthiness. Overall, the site is functional and professional but would benefit from technical and security improvements.

E

Elisa Oyj (implied by social media links and registrar)

mesta.net

45

Mesta.net is a Finnish media website specializing in entertainment news, including television, movies, books, and music. The site targets Finnish-speaking audiences interested in cultural content and provides news articles, reviews, and interviews. The website is built on WordPress and integrates common digital marketing and tracking tools such as Google Tag Manager and OneTrust for cookie consent. Social media presence is linked primarily to Elisa Oyj's official channels, suggesting a connection or partnership. The domain is well-established, created in 1999, and uses HTTPS for secure communications.

H

Hansestadt Lübeck

luebeck.de

59

The website luebeck.de serves as the official city portal for the Hansestadt Lübeck, Germany. It provides comprehensive information and services for residents, tourists, and businesses, including citizen services, city hall information, cultural events, and urban development. The site is well-structured with extensive navigation and uses a variety of modern web technologies and libraries, including jQuery, Font Awesome, and the LYNET Content Manager CMS. The technical infrastructure indicates a moderate level of digital maturity with good mobile optimization and accessibility features. From a security perspective, the site uses HTTPS and implements a cookie consent banner, demonstrating basic privacy compliance. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns with the CMS and DNS providers used, supporting the legitimacy of the domain as an official municipal website. Overall, the website is professional, trustworthy, and safe for general audiences, with a good balance of content quality and technical implementation. Strategic enhancements in security transparency and privacy documentation would further strengthen its posture.

A

Altrex

modularstepsystems-altrex.com

41

Altrex operates a specialized industrial platform stepladder configurator website designed to serve commercial and industrial customers seeking tailored stepladder solutions. The site offers a multi-step configuration process with options for product specifications and downloadable CAD/BIM models, supporting professional use cases. The business appears to be a medium-sized manufacturing entity focused on product customization and digital integration, with regional sister sites in multiple languages. Technically, the website employs a moderately modern tech stack including Bootstrap 3, jQuery, WebGL, and Google Analytics, hosted via a registrar in the Netherlands. While the site is functional and professionally designed, it lacks visible privacy and cookie policies, and security headers are absent, indicating room for improvement in security posture and privacy compliance. The domain is relatively new but consistent with the business scope and shows no suspicious WHOIS patterns. Overall, the website is moderately mature with good business credibility but requires enhancements in privacy and security to meet higher compliance standards.

A

Altrex

hoopladder-altrex.com

37

Altrex operates a specialized product configurator website for their Everest hoop ladder product line, targeting construction professionals and building managers. The site enables users to configure custom ladder solutions with CAD and BIM model downloads and request quotes, positioning Altrex as a focused manufacturer in the industrial safety ladder market. The website is relatively new, consistent with the domain registration date in 2023, and presents a professional and functional user experience with moderate technical sophistication including WebGL 3D visualization and integration with BIM tools. However, the site lacks explicit privacy and cookie policies, and no security headers are detected, indicating gaps in compliance and security best practices. The use of Google Analytics and Tag Manager suggests moderate user tracking without visible consent mechanisms. Overall, the security posture is moderate but could be improved by implementing DNSSEC, security headers, and privacy compliance measures. The domain registration is transparent and consistent with the business, with no suspicious indicators. Strategic recommendations include enhancing privacy compliance, improving security headers, and adding incident response information to strengthen trust and security culture.

Prosuco is a specialized marketing agency focused on the recreation sector, particularly campings and holiday parks in the Netherlands. The company offers a comprehensive suite of marketing services including website development, brand strategy, online marketing, booking system support, and print materials. With a portfolio of over 150 clients, Prosuco holds a strong market position as a trusted partner in its niche. Technically, the website employs a variety of modern analytics and marketing tools, supported by a cookie consent mechanism that aligns with GDPR requirements. The site is well-designed, mobile-optimized, and provides clear contact information, enhancing user trust and engagement. Security-wise, the site uses HTTPS and enforces cookie consent but lacks explicit security policies and some security headers, and uses an outdated jQuery version which could pose minor risks. Overall, the website is professional, secure, and compliant, with room for improvement in security transparency and technical updates.

Strand49 is a small hospitality business specializing in camping, glamping, and holiday home accommodations located in Noord-Holland, Netherlands. The website presents a professional and well-structured digital presence targeting vacationers seeking seaside leisure experiences. The business offers a variety of lodging options including beachlofts, lodges, chalets, and safaritents, complemented by services such as bike rental and reception support. The company maintains active social media channels and integrates modern booking and chat widgets to enhance user engagement. Technically, the website employs a mix of legacy and modern technologies including jQuery, Font Awesome, Google Tag Manager, Microsoft Clarity, and third-party booking and chat services. The site is mobile optimized with good SEO practices and structured data markup. Performance is moderate with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and the jQuery version is outdated. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR-aligned consent management. Overall, the website is trustworthy and professionally managed, with a low risk profile. Strategic improvements in security headers, updating libraries, and publishing security policies would further enhance the security and compliance posture.

D

DagjeWeg.Tickets

dagjewegtickets.nl

65

DagjeWeg.Tickets is a Dutch e-commerce platform specializing in the sale of discounted tickets for day trips and leisure activities across the Netherlands. The website offers a broad range of services including exclusive discount offers, gift cards, and a customer loyalty points system. It targets consumers seeking affordable and convenient access to cultural, recreational, and family-friendly outings. The platform is part of the DagjeWeg.Group, indicating a structured corporate backing and market presence. Technically, the website employs a modern tech stack with Bootstrap, jQuery, and Google services for analytics and advertising, hosted partially on Amazon S3 for assets. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. Security-wise, the site enforces HTTPS, uses CSRF tokens, and integrates consent management for privacy compliance, though some security headers could be improved. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

MeetingReview.com is a well-established Dutch online platform founded in 2001 that specializes in helping users find and book meeting rooms, event locations, and related meeting services across the Netherlands. It leverages a large database of independent user reviews to provide transparency and trust for event planners and organizers. The platform also offers promotional and advertising opportunities for service providers in the meeting and event industry. Technically, the website uses a Bootstrap-based responsive design with common web technologies including jQuery, Google Analytics, Google Tag Manager, and a live chat widget, hosted on Argeweb infrastructure. The site is mobile optimized and SEO friendly with good navigation and content relevance. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and some security headers. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website is professional, trustworthy, and serves a niche hospitality market effectively.

O

Oslandia

oslandia.com

49

Oslandia is a specialized GIS architecture company founded in 2009, providing expert services in open source GIS software including QGIS and related technologies. The company is well positioned in the GIS technology market with a strong focus on open source contributions, 3D data processing, and geospatial data pipelines including AI applications. Their technical infrastructure is based on a WordPress CMS with modern web technologies and hosted by a reputable registrar. Security posture is good with HTTPS enabled and domain transfer protections, but could be improved by enabling DNSSEC and security headers. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and actively maintained with clear contact information and social media presence.

A

AFRIREGISTER S.A.

afriregister.com

52

Afriregister S.A. is a specialized domain registrar and web hosting provider established in 2006, focusing on African country code top-level domains (ccTLDs) and generic TLDs. The company offers a range of services including domain registration, transfers, multiple hosting plans, SSL certificates, and customer support. Their market position is that of a regional expert catering to businesses and individuals seeking domain and hosting services in Africa. The website is professionally designed with clear navigation and consistent branding, supporting a good user experience.

S

Syntec Conseil

syntec-conseil.fr

43

Syntec Conseil is a professional organization representing the consulting industry in France, providing industry news, events, member services, and career resources. The website positions itself as a trusted source for consulting professionals and students interested in consulting careers. The domain is well-established since 2016 and aligns with the organization's business claims. Technically, the website is built on WordPress with a modern tech stack including SEO and analytics tools, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible platform. Overall, the website demonstrates a professional and trustworthy digital presence suitable for its target audience.

C

CMIT

cmit.fr

35

CMIT is a French non-profit club dedicated to enriching and promoting marketing and communication functions within the IT sector in France. The organization offers events, publications, and networking opportunities targeted at marketing professionals in technology. The website reflects a professional presence with a clear focus on its niche audience and provides structured data to enhance search engine visibility. The domain is well-established since 2009, reinforcing the organization's credibility. Technically, the website is built on WordPress and employs common marketing and analytics tools such as Google Analytics, Google Tag Manager, and Twitter tracking pixels. The site uses HTTPS exclusively and enforces secure connections. However, some technologies like jQuery are outdated, and there is a lack of advanced security headers, which could be improved. The site is moderately optimized for performance and mobile devices. From a security perspective, the website shows good basic practices such as HTTPS enforcement and no visible sensitive data exposure. However, it lacks visible privacy and cookie policies, security incident response contacts, and vulnerability disclosure information, which are important for compliance and trust. No security challenges or WAF blocks were detected, allowing full content access. Overall, CMIT's website is a credible and professional platform for its target audience but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

The website portal-vz.cz is an official government portal managed by the Ministry of Regional Development of the Czech Republic (Ministerstvo pro místní rozvoj ČR). It serves as a comprehensive resource for public procurement information, including legislation, methodologies, educational events, news, and links to related government systems. The portal targets public sector entities, suppliers, and stakeholders involved in public procurement processes within the Czech Republic. It holds a strong market position as the authoritative source for public procurement information in the country. Technically, the site is built on WordPress CMS version 5.3.2, utilizing common web technologies such as jQuery, FontAwesome, and Yoast SEO for optimization. The site is moderately performant, mobile-optimized, and includes basic accessibility features. Hosting and domain registration are consistent with the official government entity, with the domain registered since 2006, indicating a mature and stable online presence. From a security perspective, the site enforces HTTPS and uses some security-related plugins but lacks explicit security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a basic privacy/accessibility statement found but no cookie consent mechanism or GDPR-specific disclosures. Overall, the portal is a trustworthy, professional government resource with good content quality and business credibility. However, improvements in privacy compliance, security policy transparency, and accessibility would enhance its security posture and regulatory adherence.

H

Husité - Ktož jsú boží bojovníci - husitstvi.cz

husitstvi.cz

44

The website husitstvi.cz is a well-established Czech informational and educational platform dedicated to the Hussite period in Czech history. It offers a comprehensive range of content including historical articles, indexes, literature references, galleries, multimedia, and a discussion forum, targeting historians, researchers, students, and enthusiasts. The site is multilingual and has a consistent branding approach with a clear focus on cultural heritage. Technically, it is built on an older WordPress CMS version with common plugins like Yoast SEO and jQuery libraries, hosted by a reputable Czech provider (REG-WEDOS). While the site is functional and moderately optimized for SEO and mobile, it uses outdated software versions which pose security risks. Security posture is moderate with HTTPS usage but lacks modern security headers and explicit privacy or cookie policies, indicating compliance gaps. No contact emails or phone numbers are directly visible, but a contact form page exists. The site integrates Facebook social media but does not use analytics or advertising networks extensively, resulting in minimal user tracking. Overall, the site is trustworthy and safe, with a good content quality score but needs improvements in security and privacy compliance.

C

Contact Privacy Inc. Customer 0139170451

photojoseph.com

53

PhotoJoseph.com is a specialized media website providing photography, video, and YouTube tips, tutorials, and training, with a focus on LUMIX cameras and related software tools. The site targets photographers and content creators seeking expert guidance and resources. The business operates a content publishing model supplemented by a store offering training materials and affiliate marketing. Technically, the site is built on Drupal 7 with modern front-end frameworks and integrates social media and analytics tools. While the site uses HTTPS and domain transfer protections, it lacks DNSSEC and uses an older CMS version, which may pose security risks if not properly maintained. Privacy compliance is basic with a privacy policy and cookie consent but no explicit GDPR statements. Contact is primarily via forms and social logins, with no direct emails or phone numbers published. Overall, the site is professional, trustworthy, and content-rich, but could improve security and compliance transparency.

P

Performance Marketing World

performancemarketingworld.com

62

Performance Marketing World is a specialized media platform delivering news, analysis, and insights focused on the performance marketing industry. It targets marketing professionals, agencies, and advertisers with a variety of content including subscriber-only reports, podcasts, and events. The website demonstrates a solid market position within its niche, leveraging subscription and advertising revenue models. Technically, the site employs a mix of legacy and modern technologies such as jQuery, Google Tag Manager, and OneTrust for cookie consent, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy or incident response contacts are found. The absence of WHOIS registration data is a notable concern, suggesting either privacy protection or an unregistered domain, which impacts trustworthiness. Overall, the site is professional, content-rich, and safe for general audiences, but further verification of domain legitimacy is recommended.

HANDBALL CLUB MILEVSKO is a local sports organization based in Milevsko, Czech Republic, focused on promoting handball among youth and adult players. The website serves as a community hub for news, events, tournaments, and team information. The club appears to be a small-scale, community-driven entity without commercial business operations. Technically, the website uses legacy JavaScript libraries such as jQuery 1.12.4 and jQuery UI 1.12.1, hosted on the eStránky CMS platform. The site includes Facebook integration and Google Fonts for styling. However, there is no evidence of modern security practices such as HTTPS enforcement or security headers. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The WHOIS data is unavailable, which reduces domain trustworthiness but may be due to registry policies rather than malicious intent. Overall, the website is functional and informative for its target audience but requires improvements in security, privacy, and contact transparency.

E

EKT AG

datacenterthurgau.ch

55

EKT AG operates the EKT Datacenter, a regional datacenter service provider located in Eastern Switzerland, offering colocation, rack space, and bundled IT infrastructure solutions primarily targeting SMEs and organizations in the Thurgau and surrounding regions. The company emphasizes security, reliability, and sustainability, supported by certifications such as ISO 27001 and ISO 9001. Their datacenter is carrier-neutral with direct connections to major hyperscalers, positioning them competitively in the regional market. Technically, the website is built on WordPress with a modern but somewhat dated technology stack including Bootstrap and jQuery 1.12.4. The site is mobile-optimized, SEO-friendly, and integrates common marketing and analytics tools such as Google Analytics and social sharing plugins. Performance is moderate with good navigation and content quality. From a security perspective, the site enforces HTTPS and displays trust signals through certifications and biometric access mentions. However, the use of an outdated jQuery version and lack of visible security headers present minor risks. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy, though no incident response or vulnerability disclosure policies are published. Overall, the website and business present a trustworthy and professional image with a solid security posture appropriate for their sector. Strategic improvements in updating libraries, enhancing security headers, and publishing incident response policies would further strengthen their security and compliance stance.

V

VSIA Latvijas Vēstnesis

juristavards.lv

57

Juristavards.lv is a specialized Latvian legal journal portal operated by VSIA Latvijas Vēstnesis, providing weekly legal publications, news, essays, and legal resources targeted at legal professionals in Latvia. The platform supports subscription-based access to e-journals and features job advertisements and a legal library. The website demonstrates a solid market position as an authoritative source for legal information in Latvia. Technically, the site uses a mix of legacy and modern web technologies including jQuery, Google Fonts, Google reCAPTCHA, and Gemius analytics, with a moderate performance profile and good mobile optimization. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and use of CAPTCHA, though explicit security headers and a formal security policy are absent. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, though it could improve by publishing dedicated security and incident response policies. The domain WHOIS data aligns well with the website's claims, showing consistency and legitimacy for a government-affiliated media entity.

L

Latvijas Vēstnesis

likumi.lv

55

Likumi.lv is the official Latvian government portal providing comprehensive access to the Republic of Latvia's legal acts, including laws, regulations, and amendments. Maintained by the official publisher Latvijas Vēstnesis, the site serves legal professionals, government officials, businesses, and citizens seeking authoritative legal information. It offers advanced search capabilities, personalized features, and a mobile version to enhance accessibility. The website is well-branded and trusted as a primary source for Latvian legislation. Technically, the site employs a mature technology stack including jQuery, Google Analytics 4, and Gemius tracking, with cookie consent mechanisms in place. The site is served over HTTPS with good security practices, though some security headers are not explicitly detected. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well implemented with proper meta tags and Open Graph data. From a security perspective, the site demonstrates a solid posture with encrypted connections and consent-based tracking. However, it lacks explicit security policies or incident response contacts and could improve by implementing security headers and publishing a security.txt file. No vulnerabilities or suspicious content were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR requirements. Overall, Likumi.lv is a high-quality, trustworthy government resource with excellent content and good technical implementation. Strategic improvements in security transparency and accessibility could further enhance its posture and user trust.

Ecocardprint is a Swiss-based company specializing in eco-responsible printing solutions, focusing on sustainable business cards made from FSC® certified wood, biodegradable PET, and recycled cardboard. The company targets environmentally conscious businesses across sectors such as hospitality, retail, watchmaking, tourism, and health insurance. As a member of the Schellenberg Group, Ecocardprint benefits from a network of related companies enhancing its market position. The website is built on WordPress with the Divi theme and includes modern plugins for SEO and user experience. While the site is well-designed and mobile-optimized, it lacks explicit privacy and cookie policies, which may impact compliance with GDPR and other regulations. Security posture is moderate with HTTPS enforced but missing some security headers and incomplete reCAPTCHA configuration. Contact information is clearly presented, including phone, email, physical address, and a contact form. Overall, the site reflects a professional and trustworthy business with room for improvement in privacy compliance and security hardening.

N

NOVÁ ŠKOLA, s.r.o.

english-nns.cz

42

The website www.english-nns.cz/blog is an educational portal operated by NOVÁ ŠKOLA, s.r.o., focused on providing comprehensive English language teaching materials for primary schools and kindergartens in the Czech Republic. It offers textbooks, workbooks, multimedia interactive content, video demonstrations, and downloadable resources aligned with Czech educational standards. The site targets educators and teachers of young learners, supporting effective and engaging English language instruction. Technically, the site is built on WordPress with a moderate modern tech stack including Google Analytics and Tag Manager for tracking, and uses Google reCAPTCHA for form security. The site is mobile optimized and has good navigation and content quality. Security posture is solid with HTTPS and reCAPTCHA, but lacks security headers and explicit privacy and cookie policies, which are compliance gaps. WHOIS data is missing, which reduces trustworthiness and calls for further verification. Overall, the site is functional, professional, and safe for its audience but could improve privacy compliance and security best practices.