Security Directory

LEVEL.cz is the official website of LEVEL, a well-established Czech gaming magazine published by Naked Dog, s.r.o. The site offers subscriptions, digital and print magazine issues, advertising opportunities, and access to an extensive archive of past issues. The target audience is primarily Czech gamers and gaming enthusiasts. The website is built on WordPress, using common plugins such as Contact Form 7 and ElasticPress, hosted via Gransy. The site is professionally designed with good mobile optimization and clear navigation, though it lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site is trustworthy and well-positioned in its niche.

K

Kapnetix s.r.o.

kapnetix.ai

58

Kapnetix s.r.o. is a technology company specializing in AI-powered tools for motion capture professionals. Their website presents a focused business offering innovative AI solutions such as single camera 3D pose estimation and automated motion capture cleanup, targeting animation teams and game developers. The company positions itself as a niche innovator with a small but experienced team and notable industry awards. Technically, the website is built on Webflow CMS with modern integrations including Google Tag Manager and Leadfeeder for analytics and marketing. The site is well-designed, mobile-optimized, and includes embedded video content to demonstrate product capabilities. Security-wise, the site uses HTTPS and implements cookie consent mechanisms but lacks visible advanced security headers or published security policies. WHOIS data is unavailable due to privacy protection, which is common for small tech firms. Overall, the site is professional and trustworthy with moderate risk due to limited public security disclosures.

S

SuperScale

superscale.com

70

SuperScale is a technology company specializing in providing advanced analytics and AI-driven insights for mobile games. Their platform integrates data from multiple sources to empower game studios and marketers to optimize performance and profitability. The company has a strong market presence with over 150 games and 60 studios using their services, supported by a network of trusted partners. Technically, the website is built on WordPress with Elementor and integrates HubSpot for forms and analytics, alongside Google Tag Manager and Hotjar for tracking and user behavior analysis. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and security headers could be improved. Overall, the site is professional, well-branded, and compliant with GDPR, offering a good user experience and clear business credibility.

W

Wube Software

factorio.com

63

Factorio.com is the official website for the game Factorio, developed by Wube Software. The site provides comprehensive information about the game, its expansions, community resources, and purchasing options. The business operates primarily in the technology sector focused on gaming, with a strong market position supported by over 3.5 million sales and a dedicated community. The website supports multiple platforms for sales including Steam, GOG, and direct shop sales, and offers additional services such as mod portals and community forums. Technically, the website uses modern web technologies including jQuery, HTMX, and FontAwesome, hosted behind Cloudflare for performance and security. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, some security best practices such as DNSSEC and security headers are not implemented, and there is no visible cookie consent mechanism, which may impact GDPR compliance. From a security perspective, the site uses HTTPS and includes CSRF tokens for AJAX requests, indicating a baseline security posture. The domain registration is consistent with the business history and shows no suspicious patterns. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security maturity. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing security headers, implementing cookie consent for privacy compliance, publishing security policies, and improving contact information transparency to further strengthen trust and compliance.

C

Context Heroes s.r.o.

contextheroes.com

71

Context Heroes s.r.o. is a Czech-based company specializing in bespoke translation and localization services, primarily targeting video games, apps, software, and product markets. The company positions itself as a trusted partner with a focus on delivering contextually accurate translations to help clients expand internationally. Their website reflects a professional and modern digital presence, leveraging a custom CMS platform and modern web technologies to provide a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security best practices like security headers and incident response information are absent. The lack of WHOIS data for the domain is a notable concern, potentially impacting trust and legitimacy assessments. Overall, the company demonstrates strong business credibility and digital maturity, with room for improvement in transparency and security documentation.

W

Warezio s.r.o.

warezio.com

48

Warezio s.r.o. is a Czech Republic-based small technology company specializing in anti-piracy solutions targeting diverse sectors including Television/VOD, live streaming, software, gaming, and legal firms. Founded in 2022, the company positions itself as a niche provider offering comprehensive anti-piracy services to digital content providers. The website reflects a professional and consistent brand image with clear contact information and a focused business description. Technically, the website is built using the Astro framework and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Hosting and DNS are managed via Cloudflare, ensuring good SSL configuration and moderate performance. The site is mobile optimized and SEO friendly but lacks some accessibility features. From a security perspective, the site uses HTTPS and reputable DNS providers but lacks important security headers and published security policies. No privacy or cookie policies are present, indicating gaps in privacy compliance. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance trust and security posture. Overall, the website is safe, professional, and credible but would benefit from enhanced privacy compliance, security best practices, and transparency regarding security policies. Strategic improvements in these areas will strengthen the company’s trustworthiness and regulatory compliance.

Filuta AI is a technology startup specializing in AI-driven automated game testing solutions. Leveraging advanced AI planning agents originally developed for deep space exploration, the company offers adaptive, goal-driven testing frameworks that enable continuous and comprehensive QA for game developers and related professionals. Their market position is that of an innovative pioneer in automated game testing, targeting game developers, QA leads, designers, and automation engineers. The company is relatively new, founded in 2022, and operates primarily in the technology sector with a small team of highly qualified experts. Technically, the website is built on modern frameworks such as Nuxt.js and Tailwind CSS, with good performance and mobile optimization. Security posture is adequate but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Business credibility is supported by testimonials, partnerships, and a professional web presence. Overall, the website is trustworthy and professional, with no signs of malicious content or suspicious activity.

A

ANOMALIA

anomalia.cz

54

ANOMALIA is a professional training provider specializing in animation, games, and VFX education since 2008. The company offers bootcamps and mentorship from industry veterans affiliated with renowned studios such as Pixar and Disney. The website is built on WordPress with modern web technologies and includes analytics and marketing tools like Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS and cookie consent mechanisms, though explicit privacy and terms pages are missing. The domain WHOIS data is privacy protected, which is common for this business type. Overall, the site presents a professional and trustworthy educational service with room for improvement in privacy disclosures and security headers.

Č

Česká spořitelna, a.s.

ittrendy.cz

50

IT Trendy is a corporate blog and community platform operated by Česká spořitelna, a leading Czech bank, focusing on information technology trends and innovations. The website targets IT professionals, technology enthusiasts, and banking sector employees, providing high-quality articles, educational content, and community engagement. The platform supports professional growth and knowledge sharing within the bank and the broader IT community. Technically, the website employs modern web technologies including Alpine.js, Google Tag Manager, and optimized image formats, hosted by Active24. It demonstrates excellent mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though lacks a dedicated security policy or incident response contact. Overall, the domain registration is consistent and transparent, reinforcing business credibility. The website is safe, professional, and trustworthy, with no signs of malicious content or vulnerabilities.

E

Exit Games GmbH

photonengine.com

74

Photon Engine, operated by Exit Games GmbH, is a leading provider of multiplayer game backend services, offering a comprehensive suite of products including Photon Fusion, Quantum, Realtime, Chat, and Voice. The company targets game developers and studios worldwide, supporting over 1.4 billion monthly players and more than 1 million developers. Their business model is SaaS-based, providing scalable cloud infrastructure and communication tools for multiplayer games across multiple platforms including mobile, PC, consoles, and VR/AR. Technically, the website demonstrates a mature digital infrastructure with modern web technologies, fast performance, and excellent mobile optimization. The use of Google Tag Manager and Cloudflare Insights indicates active analytics and performance monitoring. The site is well-structured with comprehensive documentation and multilingual support, enhancing accessibility and user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and a public security policy or incident response contacts are not evident, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the strong market presence and trust indicators. Overall, Photon Engine presents a professional, trustworthy, and technically sound platform with strong compliance and privacy practices. Strategic enhancements in security transparency and contact availability would further strengthen their security posture and user trust.

F

Flying Rat Studio

flying-rat.online

61

Flying Rat Studio is a small, Prague-based game development studio specializing in co-development, porting, and optimization of games for multiple platforms including VR and consoles. They collaborate with well-known studios and work on internal projects focused on gameplay and fun. The website is professionally designed, providing detailed project descriptions and links to major game stores, reflecting a credible and niche market position. Technically, the site uses modern web technologies such as JavaScript and Babylon.js, with evidence of Bootstrap framework usage. The site is mobile optimized and SEO friendly but lacks some accessibility features. Security posture is moderate with no visible vulnerabilities but missing security headers and privacy policies. WHOIS data is unavailable or protected, which is common for small studios but reduces transparency. Overall, the site is trustworthy and professional but could improve compliance and security practices.

A

ARKANCE CZ

arkance-systems.cz

67

ARKANCE CZ is a medium-sized B2B service provider specializing in digitalization solutions for the construction and manufacturing sectors in Czechia. As an Autodesk Platinum Partner and a subsidiary of the French Group Monnoyeur, ARKANCE CZ leverages both global expertise and local market knowledge to deliver CAD/CAM, PDM/PLM, BIM, and GIS/FM solutions. The company was founded in 2018 and positions itself as a significant global player with a strong regional presence. Technically, the website employs modern frameworks such as Astro and Alpine.js, integrates multiple marketing and analytics tools including Google Tag Manager, HubSpot, and Cookiebot, and implements a cookie consent mechanism compliant with GDPR principles. The site is mobile-optimized and demonstrates good SEO practices, although accessibility could be improved. From a security perspective, the website uses HTTPS with excellent SSL configuration and has implemented cookie consent controls. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhanced trust and compliance. The WHOIS data is privacy protected, which is typical for such businesses, and no suspicious patterns were detected. Overall, ARKANCE CZ presents a professional and trustworthy online presence with room for improvement in privacy transparency and security policy disclosures. Strategic enhancements in these areas would strengthen their compliance posture and user trust.

2

2K Czech

2kczech.com

67

2K Czech is an established video game development and publishing company based in the Czech Republic, operating since 2008. The company focuses on crafting immersive gaming experiences and offers services including game development, publishing, motion capture, and career opportunities within the gaming industry. Their website reflects a professional and consistent brand presence with clear navigation and relevant content targeted at gamers and industry professionals. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and video APIs from YouTube and Vimeo. The site is mobile optimized with good SEO practices and moderate performance. Hosting and DNS are managed professionally, though DNSSEC is not enabled. From a security perspective, the site uses HTTPS with a valid SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, it lacks published security policies, incident response contacts, and advanced security headers. No vulnerabilities or suspicious content were detected, and WHOIS data confirms the domain's legitimacy and consistency with the business. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security policy transparency and DNS security could further enhance trust and resilience.

The website stepupforchildhoodcancer.com is currently a minimal placeholder page hosted on Squarespace, indicating it is under construction. There is no substantive business content, contact information, or policies published. The domain is registered since 2014 with Squarespace Domains II LLC, showing stable registration but no privacy protection or detailed registrant data. The technical infrastructure is basic, relying on Squarespace platform and Google Fonts, with no advanced frameworks or analytics detected. Security posture is minimal with no security headers or DNSSEC enabled, and no HTTPS enforcement details available. Privacy compliance is absent due to missing privacy and cookie policies. Overall, the website presents low business credibility and trustworthiness due to lack of content and transparency.

The Children's Oncology Group Foundation, Inc. is a non-profit organization dedicated to supporting the world's largest exclusive childhood and adolescent cancer research group. The foundation facilitates fundraising and directs resources to critical research areas, enabling rapid response to scientific discoveries. Their target audience includes donors, healthcare professionals, and supporters of pediatric cancer research. The website is built on the Weebly platform, employing standard web technologies such as Google Analytics and jQuery, with a moderate level of technical sophistication and mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA usage, but could be improved by updating libraries and implementing stronger security headers. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and serves its mission effectively.

A

Arcam

arcam.co.uk

64

Arcam is a UK-based high-fidelity audio equipment manufacturer focused on delivering exceptional sound clarity and depth to music enthusiasts. The website presents a professional brand image with clear messaging targeted at audiophiles and music lovers. The business operates in the technology sector, specializing in consumer audio products. The website infrastructure is built on ASP.NET with integration of modern web technologies such as Cookiebot for privacy compliance and Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and standard security headers present, though there is room for improvement in content security policies and incident response transparency. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a detailed privacy policy. However, no explicit contact information or terms of service were found on the homepage, which could be improved to enhance business credibility. The WHOIS lookup failed due to domain naming rules, but the website content and branding indicate a legitimate and established business. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility, making it a trustworthy and professional online presence.

H

Harman International Industries, Incorporated

jblsynthesis.com

69

JBL Synthesis is a premium brand specializing in high-end home theater audio systems, offering turnkey solutions that combine advanced electronics and loudspeakers tailored to individual room acoustics. The brand operates under Harman International Industries, a well-established technology company, and targets audiophiles and custom installation markets through authorized dealers. The website demonstrates a mature digital presence with a modern e-commerce platform, responsive design, and comprehensive privacy and cookie policies. Security posture is strong with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data is unusual but does not detract significantly from the brand's credibility given the strong corporate association and professional website quality. Overall, the site is trustworthy, well-designed, and compliant with privacy standards.

U

Umweltinstitut München

umweltinstitut.org

50

Umweltinstitut München e.V. is a well-established non-profit organization focused on environmental protection, sustainable agriculture, and renewable energy advocacy in Germany. The website reflects a mature digital presence with comprehensive content targeting environmentally conscious individuals and stakeholders. Their market position is that of a reputable environmental advocacy group with a medium-sized organizational footprint, founded in 1999. Technically, the website is built on WordPress with modern web technologies including jQuery, lazy loading, and cookie consent management via Borlabs Cookie. Hosting is provided by Hetzner, a reputable German hosting provider. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate rather than fast. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. No exposed sensitive data or vulnerable libraries were detected. Privacy compliance is partial; while cookie consent is implemented, no explicit privacy policy page was found, which is a compliance gap. Overall, the website is trustworthy and professional, with strong branding and social media integration. The main risks relate to privacy policy absence and missing security headers. Strategic improvements in these areas would enhance compliance and security posture.

S

Slow Food Foundation

slowfood.com

67

Slow Food Foundation operates as a global non-profit movement dedicated to promoting good, clean, and fair food for all. The organization focuses on biodiversity defense, education, and advocacy to influence public decision-makers and the private sector. Their market position is strong within the non-profit food advocacy sector, supported by a large global community and thematic networks. The website reflects a mature digital presence with multilingual support and integration with CRM systems for contact management. Technically, the site is built on WordPress with modern libraries and performance optimizations, though some security headers and explicit policies could be improved. The security posture is solid with HTTPS and anti-bot measures, but lacks a dedicated security policy or incident response contact. Overall, the site is professional, trustworthy, and well-optimized for its audience, though the missing WHOIS data slightly reduces domain trustworthiness.

U

Umweltschutzorganisation GLOBAL 2000/Friends of the Earth Austria

global2000.at

70

GLOBAL 2000 is a well-established Austrian environmental NGO affiliated with Friends of the Earth International. The organization focuses on environmental protection campaigns, public education, petitions, and fundraising through donations and events. Their website reflects a strong commitment to transparency, user privacy, and accessibility, featuring comprehensive privacy and cookie policies and multiple user engagement forms secured with CAPTCHA. Technically, the site is built on Drupal 10 with modern analytics and marketing tools integrated, ensuring a good user experience across devices. Security posture is solid with HTTPS, consent management, and no evident vulnerabilities, though a dedicated security policy and incident response contacts could enhance trust further. Overall, the website is professional, trustworthy, and well-positioned in the non-profit environmental sector.

A

Aurelia Stiftung

aurelia-stiftung.de

64

Aurelia Stiftung is a German non-profit foundation dedicated to the protection of bees and biodiversity. The organization advocates for sustainable agricultural practices, educates the public, and supports targeted projects to prevent ecosystem collapse. Their website reflects a professional and consistent brand image, targeting environmentally conscious individuals and stakeholders interested in biodiversity conservation. The foundation operates primarily through donations and public engagement. Technically, the website is built on WordPress with modern SEO and cookie management plugins, ensuring good performance and mobile responsiveness. The use of HTTPS and a cookie consent mechanism demonstrates a commitment to security and privacy compliance. However, some security headers are missing, and no explicit security or incident response policies are published. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy policies are comprehensive and GDPR compliant, with clear cookie consent management. Contact is primarily via web forms, with no direct email or phone contacts publicly listed. WHOIS data is minimal but consistent with the foundation's profile and domain age. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic improvements could include adding explicit security policies, incident response contacts, and enhancing security headers to further strengthen the security posture.

S

SGA

shift2games.com

50

Shift2Games is an educational platform dedicated to providing comprehensive information and resources for individuals seeking careers in the gaming industry. The website offers news, industry insights, profession descriptions, and education resources to support career development in gaming. The platform targets aspiring gaming professionals and enthusiasts, positioning itself as a niche resource within the technology sector focused on gaming careers. Technically, the website is built on WordPress using Elementor, with modern JavaScript libraries such as Swiper.js and integrated Google Analytics for user tracking. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks some security headers and explicit privacy and terms of service pages. The absence of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, though the website content and technical setup appear professional and legitimate. Overall, the site scores well in content quality and technical implementation but should improve privacy compliance and domain transparency to enhance business credibility and trust.

T

TicketWave

ticketwave.mt

57

TicketWave.mt is a Malta-based ticketing platform that facilitates event discovery and ticket sales for both event organizers and attendees. The platform offers a user-friendly interface with a dedicated organizer portal to manage ticket sales. The website is built using modern technologies such as Angular and integrates Google reCAPTCHA v3 for bot protection. While the site demonstrates good design quality and mobile optimization, it lacks some privacy compliance features such as a cookie consent mechanism and explicit contact information. Security posture is solid with HTTPS enforced, but could be improved by adding security headers and publishing a security policy. Overall, the platform appears legitimate and well-positioned in its local market segment.

G

Gaming Aid e.V.

gaming-aid.de

57

Gaming Aid e.V. is a small German non-profit organization dedicated to charitable activities within the gaming community. The website serves as the official online presence, providing information about the organization and its mission. The site targets gamers and supporters interested in contributing to charitable causes related to gaming. The business model is non-profit, focusing on community engagement and aid rather than commercial revenue. The organization appears to be relatively young, founded around 2020, and maintains a consistent brand image across its digital assets. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search engine optimization. It employs common web technologies such as jQuery and integrates hCaptcha for form security. Hosting is provided by hostpress.de, a reputable German hosting provider. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are well implemented, including structured data and meta tags. From a security perspective, the website enforces HTTPS and uses hCaptcha to protect forms, which are positive indicators. However, it lacks several important security headers that could enhance protection against common web threats. No explicit security or incident response policies are published, and no vulnerability disclosure or data protection officer information is available. The absence of a privacy policy and terms of service pages represents a compliance gap, especially under GDPR regulations. Overall, the website is safe and appropriate for general audiences, with no adult or explicit content detected. The domain registration data aligns well with the organization's stated founding date and hosting provider, supporting legitimacy. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing additional security headers, and enhancing transparency around data protection and incident response to improve trust and compliance.

S

synchrnzr Advanced Music & Audio Research S.L.

synchrnzr.com

67

synchrnzr.com represents an independent technical sound design consultancy and educational resource operated by David Font, with a focus on game audio production, integration, research, lecturing, and mentoring. The website showcases a professional portfolio of projects and collaborations with recognized partners in the gaming and education sectors. The business operates in a niche technology segment with a long-standing presence since 2000, supported by a domain registered since 2004. The target audience includes game developers, audio professionals, researchers, and students seeking expert sound design services and learning resources. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, Google Fonts, and Google Tag Manager for analytics. The site is mobile optimized with good SEO practices and structured data for organization branding. Hosting details are not explicit, but the domain registrar is reputable. Performance is moderate with no critical technical issues detected. Accessibility is basic but functional. From a security perspective, the site uses HTTPS and secure cookie flags, but lacks advanced security headers and DNSSEC. No forms or sensitive data inputs are present on the homepage, reducing attack surface. Privacy compliance is basic with presence of privacy and cookie policies but no explicit consent mechanisms or GDPR compliance indicators. No incident response or vulnerability disclosure information is provided, which could be improved. Overall, the website is trustworthy, professional, and content-rich with a solid business credibility score. Security posture is adequate but can be enhanced with additional headers and policies. Privacy compliance requires improvement to meet modern standards. The risk level is low, with recommendations focusing on strengthening security and privacy transparency.

I

IslaWEB S.L.

islaweb.com

59

IslaWEB S.L. is a Spanish web hosting provider with over 20 years of experience offering professional internet presence solutions including web hosting, dedicated servers, and domain registration. The company targets businesses and professionals primarily in Spain, positioning itself as an early and established player in the Spanish hosting market. The website is well-structured, mobile-optimized, and provides clear service plans and contact options. However, the absence of WHOIS registration data raises concerns about domain legitimacy despite the professional presentation and detailed legal disclosures. Technically, the site uses legacy JavaScript libraries such as jQuery 1.12.4 and custom scripts, with no detected CMS or advanced frameworks. Performance is moderate with good mobile optimization and basic accessibility. Security posture is average; forms are secured with consent checkboxes, but no security headers or cookie consent mechanisms are detected. SSL status is unknown from the data provided, which is a critical gap. From a security perspective, the site lacks explicit incident response contacts and published security policies. The privacy policy is comprehensive and GDPR compliant, reflecting good data protection awareness. No vulnerabilities or tracking technologies were detected, indicating minimal user tracking and advertising. Overall, the website presents a professional and trustworthy front for a small technology business but requires verification of domain registration and improvements in security headers and cookie consent to enhance trust and compliance.

W

WeatherTech

weathertech.ca

61

WeatherTech is a well-established company founded in 1989 specializing in custom automotive interior and exterior protection products such as floor mats, cargo liners, and window deflectors. The company operates a professional e-commerce website targeting vehicle owners primarily in Canada and North America. The website is built on Salesforce Commerce Cloud, leveraging modern web technologies and personalization tools to deliver a responsive and user-friendly shopping experience. Privacy and cookie consent mechanisms are robustly implemented, reflecting good compliance with GDPR and related regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. WHOIS data is not publicly available, likely due to privacy protection, but the website's professionalism and trust indicators support its legitimacy. Overall, the site demonstrates a mature digital presence with solid business credibility and technical infrastructure.

J

James Printing & Signs

jamesprint.ca

47

James Printing & Signs is a small, family-owned print and signage company based in Bowmanville, Canada. The business emphasizes honesty, integrity, and quality service, offering a range of services including commercial printing, signage, vehicle graphics, graphic design, and laser & CNC cutting. The website reflects a professional and consistent brand image targeting local businesses and customers requiring custom print solutions. Technically, the site is built on WordPress using Elementor and integrates Google Analytics for visitor tracking. Performance and mobile optimization are good, though accessibility is basic. Security posture is moderate with HTTPS enabled and domain transfer protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration details align well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security headers would enhance trust and regulatory adherence.

K

Kubota Canada Ltd.

kubota.ca

72

Kubota Canada Ltd. is a well-established manufacturer and distributor of agricultural and construction equipment in Canada, serving farmers, construction professionals, and landscaping businesses. The website presents a professional and consistent brand image, offering a comprehensive range of products including farm equipment, construction machinery, mowers, and UTVs. The company provides financing options, promotions, and a dealer locator service to support its customers. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for analytics and marketing tools like Google Tag Manager and Facebook Pixel. Hosting is provided by Primus, and the site demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement, security headers, and error monitoring, though there is room for improvement in publishing explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with consent management. Overall, the website is trustworthy, safe, and professionally maintained, reflecting the company's large-scale operations and market presence in Canada.

The website roynicholsmotors.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, presenting a security challenge page instead of business content. This prevents any direct analysis of the company's services, contact information, or policies. The domain is well-established, registered since 2001 with DomainSpot LLC, indicating a legitimate and stable registration history. However, the lack of DNSSEC and absence of visible content limits assessment of the site's digital maturity and business operations. The technical infrastructure includes Cloudflare protection and hosting via EasyDNS nameservers, but no CMS or frameworks are detectable due to the block. Security posture cannot be fully evaluated, but the presence of Cloudflare WAF indicates some level of protection. No privacy, cookie, or terms of service policies are found, and no contact or business information is visible, which negatively impacts trust and compliance evaluation. Overall, the site currently scores very low on content quality, technical implementation, security posture, privacy compliance, and business credibility due to the blocking and lack of accessible content.

O

Owasco RV Centre

owascorv.com

58

Owasco RV Centre is a medium-sized recreational vehicle dealership located in Clarington, Ontario, Canada. The company offers a wide range of RV sales including new and used units, rentals, parts, service, financing, and storage solutions. Recognized as a top 50 RV dealer in 2024 and 2025, it holds a strong market position locally with a professional and well-structured website that targets consumers interested in RVs across Canada. The business model focuses on retail and service offerings within the transportation sector, leveraging partnerships with parts suppliers and rental services to enhance its value proposition. Technically, the website is built on a custom dealer platform (InteractCP) using Bootstrap and jQuery, integrated with multiple analytics and advertising tools such as Google Analytics, Bing Ads, and LinkedIn Insight Tag. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features. However, some third-party scripts like Facebook Pixel are blocked, which may affect tracking accuracy. The site employs HTTPS with a good SSL configuration but lacks explicit security headers and published security policies. From a security perspective, the website maintains a moderate security posture with HTTPS enforcement and consent management for cookies. There is no visible security.txt or vulnerability disclosure, and incident response information is absent. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration transparency and trustworthiness, although the website content and business information appear legitimate and professional. Overall, the website is functional, professional, and serves its business purpose well, but improvements in security transparency, domain registration clarity, and enhanced security headers would strengthen its trust and compliance posture. Strategic recommendations include publishing security policies, implementing security headers, and clarifying domain registration details to improve legitimacy and user trust.

M

Michelin

michelin.ca

72

Michelin Canada operates a comprehensive website offering a wide range of tires and related products for automotive, motorcycle, and bicycle markets. The site reflects Michelin's position as a leading global tire manufacturer with a strong brand presence and extensive product catalog tailored to Canadian consumers and businesses. The website employs modern web technologies including the Astro framework and Svelte components, integrated with advanced consent management and analytics tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and security headers, though explicit privacy and terms of service pages are not clearly identified in the provided content. Overall, the site is professional, well-branded, and trustworthy, with moderate user tracking balanced by consent mechanisms.

C

Chevrolet Canada

chevrolet.ca

67

Chevrolet Canada operates a comprehensive and professionally designed website serving as the official Canadian portal for Chevrolet vehicles. The site offers detailed product information, promotional offers, build and price tools, and dealer locator services, targeting Canadian consumers interested in Chevrolet's automotive lineup. The business is a subsidiary of General Motors Canada Corporation, reflecting a strong market position in the automotive transportation sector. The website demonstrates a mature digital infrastructure leveraging Adobe Experience Manager CMS and a robust marketing and analytics technology stack including Adobe Launch, Google Tag Manager, Facebook Pixel, and Datadog RUM. Privacy and cookie consent mechanisms are well implemented, reflecting compliance with GDPR and Canadian privacy standards. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, professional, and well-optimized for performance and user experience.

V

VP Racing Fuels, Inc.

vpracingfuels.com

72

VP Racing Fuels, Inc. is a well-established company specializing in premium race fuels, lubricants, coolants, and fuel additives, targeting motorsport enthusiasts and professionals. The company operates a professionally designed Shopify e-commerce platform, offering a comprehensive product range and customer support through detailed contact forms and quality assurance channels. The website demonstrates a mature digital presence with consistent branding and clear business information, supported by a domain registered since 1998, indicating long-term market presence. Technically, the website leverages modern e-commerce infrastructure on Shopify, enhanced with various marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. Cookie consent is managed via OneTrust, reflecting attention to privacy compliance. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. Mobile optimization and SEO practices are good, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs reCaptcha on forms to mitigate abuse. While explicit security headers are not fully visible in the provided data, the overall posture is strong with no exposed sensitive data or vulnerabilities detected. The WHOIS data aligns with the business claims, showing no privacy protection and a consistent registration history, enhancing trust. Overall, the website presents a low-risk profile with good compliance and security practices. Recommendations include enabling DNSSEC, adding explicit security headers, and maintaining regular audits of third-party scripts to further strengthen security and trust.

D

Dealer Spike

dealerspike.com

65

Dealer Spike is a specialized digital marketing and website platform provider based in Lake Oswego, Oregon, focused on serving dealerships across multiple industries including powersports, marine, trailer, agriculture, truck, and heavy equipment. The company offers a comprehensive suite of services such as responsive website design, inventory management, SEO, SEM, e-commerce, and reputation management, positioning itself as a key player in the dealership digital solutions market. Their website demonstrates a high level of professionalism, modern design, and clear navigation, reflecting a mature digital presence. Technically, the website is built on WordPress with a modern tech stack including Google Tag Manager, Google Analytics, Facebook Pixel, Pardot, and other marketing and analytics tools. The site is well-optimized for performance, mobile responsiveness, and SEO, indicating a strong digital infrastructure. Security practices include HTTPS enforcement and use of reCAPTCHA, though explicit security headers and policies could be enhanced. From a security perspective, the site shows good baseline protections but lacks publicly available security policies or incident response contacts. The absence of WHOIS data reduces transparency and trust slightly, though the overall site and business presence suggest legitimacy. No critical vulnerabilities or suspicious content were detected. Overall, Dealer Spike presents a credible and professional business with a strong digital footprint. Strategic improvements in security transparency and domain registration disclosure would further enhance trust and compliance.

L

Live for Speed

lfs.net

63

Live for Speed operates as a niche online racing simulator platform offering realistic car physics and multiplayer racing experiences. The business targets racing simulation enthusiasts with a freemium model that includes a free demo and purchasable additional content such as cars and tracks. The website is well-branded and maintains active community engagement through leagues, events, and forums. Technically, the site uses standard web technologies (HTML5, CSS, JavaScript) with moderate performance and basic mobile optimization. Security posture is solid with HTTPS enforcement and improved authentication mechanisms, though some security headers and cookie consent mechanisms are missing. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the site's active presence and consistent branding. Overall, the site is professional, trustworthy, and focused on delivering a quality gaming experience.

A

AOC (Administració Oberta de Catalunya)

digicanvis.cat

42

Digicanvis is a government-affiliated digital observatory platform focused on showcasing best practices and innovative initiatives in the digital transformation of local administrations in Catalonia, Spain. It is supported by the Administració Oberta de Catalunya (AOC), which is evident from branding and linked partner domains. The platform provides a searchable database of projects and encourages submissions of new digital transformation initiatives. Technically, the website is built on WordPress using modern frameworks like Bootstrap and WPBakery Page Builder, with integration of Google Tag Manager and GTranslate for multilingual support. The site is mobile optimized and presents a professional design with clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though it lacks explicit privacy and cookie policies and security headers, which are recommended for compliance and enhanced security. WHOIS data is unavailable publicly, likely due to privacy protection, which is common for government-related domains. Overall, the site is trustworthy, well-maintained, and serves a niche government audience effectively.

P

Pep Web Digital

pepwebdigital.hr

59

Pep Web Digital is a Croatian small business specializing in innovative and creative web design, hosting, and maintenance services. Founded in 2019, the company targets entrepreneurs and businesses seeking high-performance, secure, and user-friendly websites. Their market position is that of a quality-focused digital agency with a strong emphasis on customer experience and modern web technologies. The website demonstrates a mature digital infrastructure using WordPress CMS, Oxygen Builder, and performance optimization plugins, ensuring fast loading times and excellent mobile responsiveness. Security posture is solid with HTTPS enforcement and spam protection, though there is room for improvement in security headers and formal security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, featuring clear contact information and legal documentation.

Shape is a professional digital product development agency focused on creating meaningful digital products and forming long-term partnerships with clients. Their market position is strong within the regional technology sector, serving clients in insurance and finance with notable case studies. The website demonstrates a modern technical infrastructure using Vue.js and Nuxt.js frameworks, integrated with HubSpot for marketing and analytics. The site is well-optimized for mobile and SEO, with excellent design and user experience. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies could be improved. Overall, the website presents a trustworthy and credible business with no critical vulnerabilities detected.

N

North Macedonia | E-Commerce For All

ecommerce4all.mk

62

The website ecommerce4all.mk serves as a regional informational platform focused on e-commerce in North Macedonia and the broader CEFTA region. It provides resources including e-commerce data, regulatory information, success stories, payment and delivery modules, and a regional trustmark badge. The platform targets businesses, policymakers, and consumers interested in e-commerce development within the CEFTA member countries. The site is part of a network of similar country-specific platforms linked to a main hub at ecommerce4all.eu. Technically, the site is built on WordPress using Bootstrap for responsive design, with integrations for Google Analytics, Facebook Pixel, and Mailerlite for marketing and tracking. The site is mobile optimized and has good SEO practices implemented via Yoast SEO. Performance is moderate with no major technical issues detected. However, some accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS with valid SSL certificates and implements a GDPR cookie consent mechanism. However, it lacks visible security headers and explicit privacy policy or terms of service pages, which are important for compliance and user trust. No WHOIS data was available due to server-side errors, limiting domain registration trust analysis. No vulnerabilities or malicious content were detected in the site content. Overall, the website presents a professional and consistent brand image as a regional e-commerce resource. The absence of WHOIS data and privacy policy pages slightly reduce trustworthiness. Strategic improvements in security headers, privacy disclosures, and contact transparency would enhance the site's security posture and compliance standing.

М

МАРнет

marnet.mk

48

МАРнет is a public institution operating as the Macedonian Academic Research Network, providing essential telecommunications infrastructure and domain registration services for the Republic of North Macedonia. It holds a key national position as the official registry for the .mk and .мкд top-level domains, serving academic, research, and institutional clients. The website presents a professional and consistent brand image, with comprehensive information about its services and governance. Technically, the site is built on WordPress with modern plugins and themes, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers are not clearly detected. The absence of WHOIS data due to server errors limits full domain legitimacy verification but does not detract from the apparent institutional nature of the entity. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations.

OVER HOLDING S.R.L. operates the website overthereality.ai, a leading global platform specializing in 3D mapping datasets and spatial intelligence technologies. The company provides advanced AI-powered services including Large Geospatial Models, Visual Positioning System (VPS) for robotic navigation, and Generative AR content creation tools. Their platform targets developers, enterprises, and creators in the augmented reality and robotics sectors, positioning itself as a pioneer in Physical AI and spatial computing. The business model leverages digital land ownership, token incentives, and a comprehensive ecosystem of tools and marketplaces to drive engagement and revenue.

B

Blue Ocean Games

blueoceangames.com

47

Blue Ocean Games operates a niche platform focused on indie game developers, providing a venue for game validation, community feedback, and funding opportunities. The website highlights winners of their Rising Tide 2 challenge, showcasing games selected by public voting and judges. The company appears to have a small but focused market presence, targeting game developers and gaming enthusiasts. Technically, the site uses modern web technologies including React, Material UI, and Mux Player for video content, with Google Fonts and Plausible Analytics integrated. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite analytics usage. Overall, the domain is well aged and registered with a reputable registrar, supporting legitimacy. Strategic improvements in security policies, cookie consent, and accessibility would enhance trust and compliance.

M

MemeCore

memecore.com

59

MemeCore operates as a niche blockchain platform specializing in meme coins and decentralized applications, targeting crypto enthusiasts and meme communities. The website presents a modern, playful branding with a focus on connecting creators and communities through its Layer 1 blockchain. The technical infrastructure leverages modern web technologies including React and Next.js, hosted on AWS infrastructure, with integrated analytics tools such as Google Tag Manager and Hotjar. While the site is accessible and well-structured, it lacks critical privacy and security policy disclosures, as well as contact information, which impacts its overall trustworthiness and compliance posture. Security practices are basic, with HTTPS enabled but missing DNSSEC and security headers, and no published incident response or vulnerability disclosure information. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

W

World Climate Research Programme

wcrp-climate.org

51

The World Climate Research Programme (WCRP) is an international non-profit organization focused on coordinating and facilitating climate research globally. The website presents a professional and authoritative presence with extensive resources, core projects, events, and capacity development initiatives targeting climate researchers, policy makers, and the scientific community. The organization is well-positioned as a key player in climate science coordination with a strong emphasis on collaboration and knowledge dissemination. Technically, the website is built on Joomla CMS with modern frameworks such as Gantry 5 and Bootstrap 5, incorporating Google Analytics and Tag Manager for user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and cookie consent mechanisms. Security-wise, the site shows a mature posture with no exposed sensitive data or vulnerable libraries detected. However, the absence of security headers and formal privacy/cookie policies indicates room for improvement in compliance and defense-in-depth strategies. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization, and the domain appears legitimate based on content and branding. Overall, the website is trustworthy, professional, and well-maintained, serving its audience effectively. Strategic improvements in privacy compliance and security headers would enhance its security posture and user trust.

G

Global Energy and Water Exchanges

gewex.org

10

The Global Energy and Water Exchanges (GEWEX) program is a scientifically focused network dedicated to understanding Earth's water cycle and energy fluxes. As a core project of the World Climate Research Programme (WCRP), it holds a reputable position in the climate science community, facilitating research, data analysis, and collaboration among scientists worldwide. The website reflects this mission with comprehensive content, structured panels, and active event coordination. Technically, the site is built on WordPress with modern plugins such as Gravity Forms and Google reCAPTCHA, ensuring functional and secure user interactions. The presence of SEO optimizations and mobile responsiveness indicates a mature digital infrastructure. Security posture is generally strong with HTTPS enforced and anti-bot measures in place, though the absence of explicit security headers and cookie consent mechanisms suggests room for improvement. The lack of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its scientific affiliations and transparent contact information. Overall, the site presents a professional, trustworthy, and well-maintained digital presence for the GEWEX program.

B

BALTEX (The Baltic Sea Experiment)

baltex-research.eu

8

The BALTEX website represents a scientific research project focused on the Baltic Sea's hydroclimate and environmental systems. It serves as an archival resource for the project which was active primarily from 1993 to 2012, now succeeded by Baltic Earth. The site provides access to publications, project information, and links to partner organizations. The target audience includes researchers, environmental scientists, and policy makers interested in regional climate and water management. Technically, the website is built on legacy technologies such as Adobe GoLive with basic HTML and CSS, lacking modern CMS or responsive design. Security posture is weak with no visible HTTPS enforcement or security headers, and no interactive forms to assess input security. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism. Overall, the site is trustworthy as an archival scientific resource but requires modernization and security improvements to meet current standards.

G

Gamma Group

gammacommunications.nl

76

Gamma Communications is a large telecommunications company based in the Netherlands, offering a broad portfolio of business communication solutions including internet, mobile telephony, Microsoft Teams integration, cybersecurity, and managed networks. The company operates internationally with multiple country-specific domains, indicating a strong market presence in Europe. The website is professionally designed with good navigation and mobile optimization, reflecting a mature digital infrastructure. The technical stack is modern, leveraging WordPress CMS with NitroPack optimization and multiple analytics and marketing tools. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are absent. Privacy compliance is lacking due to missing privacy and cookie policies. Overall, the website is trustworthy and business-focused but would benefit from enhanced privacy and security transparency.

OFA Nonprofit Kft. is a Hungarian nonprofit organization dedicated to employment-related programs and labor market initiatives. The organization operates under government ownership and provides various services including pilot programs, responsible employment certifications, and grant management. The website is professionally designed, targeting Hungarian businesses, employers, and job seekers, with content primarily in Hungarian and some English support. The company has a solid market position as a government-affiliated nonprofit with ISO certifications enhancing its credibility. Technically, the website uses modern frameworks such as Livewire and Alpine.js, integrates Google Tag Manager for analytics, and employs CookieFirst for GDPR-compliant cookie consent. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a mature digital presence with good privacy compliance and business credibility.

E

European Commission

eusolidaritycorps.eu

73

The European Youth Portal, operated under the auspices of the European Commission, serves as an authoritative platform providing comprehensive information and opportunities for young people aged 18 to 30 across Europe and beyond. It focuses on the European Solidarity Corps initiative, facilitating youth engagement in volunteering, solidarity projects, and humanitarian aid. The portal is well-positioned as a trusted governmental resource with strong EU branding and multilingual support. Technically, the website leverages Drupal 11 CMS and modern web technologies including jQuery and Materialize CSS, hosted on EU infrastructure. The site demonstrates good performance, mobile optimization, and accessibility standards. Security posture is strong with HTTPS enforced and standard security headers likely in place, although explicit security policies and incident response details are not published. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. Contact information is available primarily via phone and contact forms, with no direct email addresses publicly listed for general or security inquiries. The domain is part of the official europa.eu namespace, ensuring high legitimacy despite the absence of public WHOIS data due to privacy protections. Overall, the portal exhibits a high level of professionalism, trustworthiness, and user-centric design, making it a reliable resource for youth engagement in EU initiatives. Strategic recommendations include publishing explicit security and vulnerability disclosure policies and enhancing transparency around incident response and data protection officer contacts.