Security Directory

T

Tiszántúli Református Egyházkerület

ttre.hu

40

The Tiszántúli Református Egyházkerület website serves as the official online presence of a Hungarian regional Reformed Church district. It provides comprehensive information about church activities, news, tourism, and spiritual resources targeted primarily at Hungarian-speaking church members and the broader community interested in religious heritage. The site is well-branded and consistent with its organizational identity, featuring clear contact details and a GDPR-compliant cookie consent mechanism. Technically, the website employs a custom CMS with common JavaScript libraries such as jQuery and Alertify.js, and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It lacks advanced security documentation but does not exhibit any critical vulnerabilities or suspicious behavior. The domain WHOIS data aligns well with the organizational identity, supporting legitimacy and trustworthiness.

M

Magyarország Kormánya

csaladiadocsokkentes.hu

62

The website csaladiadocsokkentes.hu is an official Hungarian government portal dedicated to informing the public about family tax reduction programs, including personal income tax exemptions and family tax benefits. It serves as a comprehensive resource for Hungarian families, especially mothers, providing detailed information, calculators, news, and video content related to the government's family support initiatives. The site is well-positioned as a trusted source backed by the Hungarian government, targeting families seeking financial relief through tax benefits. Technically, the site is built on modern web technologies, primarily Angular framework, and integrates Google Tag Manager and Usercentrics for consent management, ensuring compliance with privacy regulations. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a clean and professional design consistent with government branding. From a security perspective, the site enforces HTTPS, uses consent mechanisms for cookies and tracking, and shows no signs of vulnerabilities or exposed sensitive data. However, explicit security policies or incident response contacts are not published, which could be improved. Overall, the site maintains a strong security posture suitable for a government informational portal. The overall risk assessment is low, with no critical issues detected. Strategic recommendations include enhancing security header implementation, publishing a security policy, and maintaining regular audits of third-party scripts. The site effectively balances user privacy, compliance, and informative content delivery, making it a reliable resource for its audience.

M

Magyarország Kormánya

startolj-ra.hu

62

The website startolj-ra.hu is an official Hungarian government platform dedicated to promoting and providing information about the FIX 3% Lakáshitel program, a state-supported housing loan initiative for first-time homebuyers. The site offers comprehensive details about eligibility, loan conditions, and related news, supported by multimedia content such as embedded YouTube videos and downloadable resources. It targets Hungarian residents seeking affordable housing finance solutions, emphasizing accessibility and clarity. Technically, the site is built as a modern Angular single-page application, leveraging Google Tag Manager for analytics and Usercentrics for GDPR-compliant cookie consent management. The platform demonstrates strong digital maturity with responsive design, good SEO practices, and accessibility considerations. Hosting details are not explicit but performance is fast and user experience is smooth. From a security perspective, the site enforces HTTPS, employs standard security headers, and integrates a consent management platform to ensure privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. Incident response contact is provided via a dedicated email address, though a formal security policy or vulnerability disclosure page is absent. Overall, the website presents a trustworthy, professional, and well-maintained digital presence for a significant government housing program. It effectively balances user engagement, compliance, and security, making it a reliable resource for its target audience.

S

SPACEFOOT SAS

on-fight.se

56

On-Fight is a French-based e-commerce retailer specializing in martial arts and combat sports equipment, targeting consumers primarily in Sweden and Europe. The company operates a professional website offering a wide range of products including gloves, protective gear, shoes, and textiles for various martial arts disciplines. The business is relatively new, founded in 2023, and positions itself as a niche market player with a focus on quality and fast delivery services. The website is well-branded and consistent with the company's identity, supported by a French legal entity SPACEFOOT SAS and transparent contact information.

H

House of Rugby: rugbyspecialisten

house-of-rugby.se

56

House of Rugby is a specialized e-commerce retailer focused on rugby sportswear, official club products, shoes, and equipment. The website targets rugby players, fans, and sports enthusiasts primarily in France and Sweden, offering a curated selection of top brands with fast delivery options and secure payment methods. The business appears to be recently founded in 2023, with a domain registration consistent with its retail operations. Technically, the site is built on an OpenMage (Magento) platform, leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, and Actito marketing automation. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS, reCAPTCHA, and consent management, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic, lacking explicit privacy and cookie policy pages, but consent mechanisms are present. Overall, the site is legitimate, professional, and trustworthy with moderate risk and room for compliance enhancements.

S

SPACEFOOT SAS

galop-store.se

50

Galop Store is a Swedish-based e-commerce retailer specializing in equestrian equipment and pet supplies, targeting horse owners, riders, and pet enthusiasts primarily in Sweden and Europe. The business operates under SPACEFOOT SAS, a French legal entity, with customer service based in France. The website offers a broad catalog of products including horse tack, rider apparel, and pet accessories, supported by secure payment options and a 14-day return policy. The company positions itself as a niche market leader with a consistent brand and professional online presence. Technically, the website is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, Actito marketing automation, and GDPR compliance frameworks like AppConsent. The site is mobile-optimized with good SEO and accessibility basics, though some advanced security headers are missing. Hosting and domain registration are managed by reputable providers, with the domain age consistent with the business launch. From a security perspective, the site enforces HTTPS, integrates reCAPTCHA on forms, and displays secure payment badges, indicating a solid baseline security posture. However, DNSSEC is not enabled, and there is no visible vulnerability disclosure or incident response information. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms, though a dedicated cookie policy page is not clearly found. Overall, Galop Store presents a trustworthy and professional e-commerce platform with moderate to good technical maturity and security posture. Strategic improvements in DNS security and security header implementation could further enhance its resilience and compliance.

P

Pecheur-Store : Fiskebutik på nätet

pecheur-store.se

54

Pecheur-Store.se is a Swedish e-commerce retailer specializing in fishing equipment including rods, reels, baits, and accessories. The website targets fishing enthusiasts primarily in Sweden and offers a broad product range with fast delivery and secure payment options. The business appears to be a small-sized startup founded in 2023, with a clear focus on niche retail in the fishing sector. The website is professionally designed with consistent branding and good navigation, supporting multiple languages via hreflang tags. Technically, the site is built on Magento (OpenMage variant) and leverages modern web technologies including Google Analytics, Google Ads, and Actito marketing automation. The site is mobile-optimized and performs moderately well. Security measures include HTTPS, Google reCAPTCHA v3, and a consent management platform for GDPR compliance, although some security headers and DNSSEC are missing. From a security perspective, the site has a good baseline with HTTPS and bot protection but lacks published privacy and cookie policies, incident response contacts, and a security.txt file. DNSSEC is not enabled, which could be improved. No WAF or blocking mechanisms were detected, and no vulnerabilities or sensitive data exposures were found in the content. Overall, the website is safe, professional, and functional with moderate risk due to missing privacy documentation and some security best practices. Strategic improvements in privacy compliance and DNS security would enhance trust and regulatory adherence.

P

Pet & Garden - Din djurbutik och trädgårdscenter online

pet-and-garden.se

57

Pet & Garden is a Swedish e-commerce retailer specializing in pet supplies, garden products, and agricultural equipment. The website offers a broad catalog of products targeting pet owners and gardeners in Sweden, positioning itself as a convenient online store with a focus on low prices and essential items. The business appears to be newly established in 2024, with a domain registered recently and consistent with the website's content and market focus. Technically, the site is built on a Magento-based platform (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito for marketing automation. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website uses HTTPS and reCAPTCHA for bot protection, but lacks DNSSEC and important security headers, which could be improved to enhance security posture. Privacy compliance is basic, with no explicit privacy or cookie policies found, although a consent mechanism is implemented. No direct contact information or incident response contacts are visible, which may affect user trust and compliance. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures, security headers, and clearer contact information to improve trust and compliance.

W

WorldDAB Forum

worlddab.org

62

WorldDAB is a globally recognized non-governmental organization dedicated to coordinating and facilitating the adoption of digital radio technologies such as DAB, DAB+, and DMB. The organization serves broadcasters, automotive industries, regulators, and other stakeholders by providing expert advice on regulation, licensing, technical trials, network planning, marketing, and content production. Their market position as a global industry forum is supported by active member engagement, events, and partnerships. Technically, the website employs modern web technologies including Google Tag Manager, New Relic monitoring, and Bootstrap framework, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforcement and secure login forms, though explicit security headers and policies could be improved. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS data limits domain trust verification, suggesting a need for further domain registration transparency. Overall, the website is professional, trustworthy, and well-positioned within its industry.

D

digris AG

digris.ch

51

digris AG is a Swiss-based telecommunications company specializing in digital radio broadcasting via dab+ technology. They operate a significant dab+ network in Switzerland with over 20 transmission areas and extend their services to France and the UK. Their offerings include network planning, audio encoding, multiplexing, and software defined radio development, positioning them as a key player in the digital radio broadcasting market. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the site uses modern web technologies including Vue.js, Google Analytics, and is hosted on DigitalOcean infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-maintained, supporting the company's credibility in the telecommunications sector.

Broadcast.ch is a specialized portal dedicated to providing uninterrupted reception information and support for SRG broadcasting programs in Switzerland. The website is developed by Intersim AG, a Swiss company, and serves as an information hub offering tips, technical insights, and news updates related to radio, television, and internet streaming services. The target audience includes general users interested in SRG program reception and related broadcasting technologies. The business model focuses on delivering informational content and technical support rather than direct commercial services. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. Usercentrics is employed for cookie consent management, indicating a commitment to privacy compliance. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Performance is moderate, with no significant technical issues detected. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers such as Content Security Policy or HSTS, and no published security or incident response policies are found. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy or terms of service pages. Overall, Broadcast.ch presents a professional and trustworthy online presence with a clear focus on broadcasting information. To enhance security and compliance posture, the site should publish comprehensive privacy and security policies, implement security headers, and provide clearer contact information. These improvements would strengthen user trust and regulatory compliance while maintaining the site's role as a reliable resource for SRG program reception.

S

SPACEFOOT SAS

sneakids.ch

67

Sneakids is a specialized e-commerce retailer focusing on children's shoes, clothing, toys, and accessories, primarily targeting parents and caregivers in France and Switzerland. The company operates under SPACEFOOT SAS, with a clear market position as a trusted provider of popular brands such as adidas, Puma, and Asics. The website offers a comprehensive product catalog with secure payment options and customer service based in France. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools including Google Analytics, Google Ads, and a consent management platform to ensure GDPR compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS, invisible reCAPTCHA, and no visible vulnerabilities, although some HTTP security headers could be improved. Overall, the domain registration details align well with the business claims, indicating legitimacy and transparency.

B

BAKHTI - Zentrum für EmPOWERment für Mädchen* und junge Frauen*

bakhti.at

69

BAKHTI is a non-profit empowerment center based in Vienna, Austria, dedicated to supporting girls and young women aged 14 to 25 who have experienced violence. The organization offers a range of free and anonymous services including coaching, counseling, art therapy, workshops, silent accompaniment to official appointments, swimming courses, and learning cafés. The website reflects a clear mission focused on empowerment and community support, targeting a specific demographic with culturally sensitive and multilingual offerings. Technically, the website is built on Joomla! CMS using the Astroid framework, enhanced with modern JavaScript libraries such as jQuery and Lenis for smooth scrolling. It integrates Google Analytics and Google Tag Manager for analytics and uses GTranslate for multilingual support. The site is mobile-optimized with good navigation and accessibility features, although some improvements could be made in accessibility compliance. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism with opt-in functionality. However, it lacks advanced security headers and does not publish explicit security or incident response policies. No vulnerabilities or suspicious external links were detected, indicating a generally secure posture suitable for its non-profit nature. Overall, the website is professional, trustworthy, and well-aligned with its business goals. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility to further strengthen compliance and user trust.

M

MeinBezirk.at

meinbezirk.at

68

MeinBezirk.at is a prominent Austrian local news platform providing regional and community news, reports, opinions, and multimedia content. It targets a broad general audience across Austria with a focus on local relevance. The website operates on a modern technical infrastructure utilizing JavaScript frameworks, Google Tag Manager, and multiple advertising networks to monetize content. While the site employs HTTPS and standard analytics tools, it lacks comprehensive security headers and a robust cookie consent mechanism, indicating room for improvement in privacy compliance and security posture. The absence of explicit contact and incident response information suggests limited transparency in security governance. Overall, the site is professionally designed, content-rich, and trustworthy, serving as a key media outlet in Austria's regional news market.

B

Basket-Center : Basketutrustning och tillbehör

basket-center.se

55

Basket-Center.se is a Swedish e-commerce retailer specializing in basketball equipment, apparel, and accessories. The website serves as an official distributor for well-known sports brands such as Mitchell & Ness, Spalding, Hummel, Adidas, and Wilson, targeting basketball players and fans primarily in Sweden. The business model focuses on online sales with promises of fast delivery and secure payment options. The domain is relatively new, registered in mid-2023, consistent with a recently launched retail operation. Technically, the website is built on a Magento-based platform with modern web technologies including Google Tag Manager, Google Analytics, and Google Ads for marketing and analytics. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Hosting is managed via Gandi SAS, and HTTPS is properly implemented ensuring secure communications. From a security perspective, the site employs a consent management platform for GDPR compliance and uses secure payment mentions, but lacks explicit privacy policy and terms of service pages in the analyzed content. No security headers were detected, and no incident response or vulnerability disclosure information is provided. The domain WHOIS data is transparent and consistent with the business claims, enhancing legitimacy. Overall, Basket-Center.se presents a professional and trustworthy e-commerce platform with room for improvement in privacy transparency, security headers, and contact information disclosure. The risk level is moderate with no critical vulnerabilities detected, but enhancing compliance and security posture is recommended.

T

Training-Fit : Utrustning för fitness och kroppsbyggnad

training-fit.se

50

Training-Fit.se is an e-commerce website specializing in fitness, bodybuilding, crossfit, yoga, and combat sports equipment and apparel. The site targets fitness enthusiasts and athletes primarily in Sweden, offering a wide range of products from well-known brands with claims of fast delivery and secure payment. The business appears to be recently established in 2023 and operates as a small retail entity. Technically, the website is built on the Magento (OpenMage) platform, leveraging modern web technologies including Google Analytics, Google Ads, and reCAPTCHA for marketing and security. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and bot protection in place, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is basic; while a consent mechanism is implemented, explicit privacy and cookie policies are not found. No contact information or incident response channels are explicitly provided, which could impact user trust. Overall, the website is functional and trustworthy but would benefit from enhanced transparency and security best practices.

S

SPACEFOOT SAS

sneakids.at

63

Sneakids is an e-commerce retailer specializing in children's footwear and clothing, targeting parents and guardians primarily in France and Austria. The company operates under SPACEFOOT SAS, offering a curated selection of branded products such as adidas, Puma, and Asics. Their market position is that of a niche online retailer with a focus on quality, secure payment options, and customer service including a clear return policy. Technically, the website is built on Magento (OpenMage), integrating modern marketing and analytics tools like Google Analytics, Google Tag Manager, and Actito marketing automation. The site employs GDPR-compliant consent management and invisible reCAPTCHA for form security. Security posture is good with HTTPS enforced and secure payment logos displayed, though explicit security headers could be improved. Overall, the website is professional, well-branded, and trustworthy with no signs of blocking or WAF interference.

T

Training-Fit : Fitness- und Muskelaufbaugeräte

training-fit.at

62

Training-Fit.at is an Austrian-based e-commerce retailer specializing in fitness, muscle building, cross training, yoga, and combat sports equipment and apparel. The website offers a broad catalog of products from well-known brands, targeting fitness enthusiasts and athletes primarily in Austria and France. The business model focuses on online retail with fast delivery options and secure payment methods. Technically, the site is built on the Magento (OpenMage) platform, utilizing modern web technologies and marketing tools such as Google Analytics, Google Ads, and Actito marketing automation. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and bot protection via reCAPTCHA, although explicit security headers and published privacy and cookie policies are missing, which are areas for improvement. No signs of adult or unsafe content were detected, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website is a legitimate and professional online retailer with moderate risk and room for enhanced privacy and security compliance.

P

Pet & Garden

pet-and-garden.at

63

Pet & Garden is an Austrian-based e-commerce retailer specializing in pet supplies, garden products, and agricultural equipment. The website targets pet owners, gardeners, and farmers primarily in German-speaking regions, offering a broad catalog of products with fast shipping options and outlet deals. The business model focuses on online retail with a medium-sized market presence and consistent branding. Technically, the website is built on the Magento (OpenMage) platform, utilizing modern web technologies including Google Tag Manager, Google Analytics, and marketing automation tools like Actito. The site demonstrates good mobile optimization, clear navigation, and a professional design, although some accessibility features are basic. From a security perspective, the site enforces HTTPS and employs consent management for GDPR compliance. However, explicit security headers are not fully implemented, and no privacy or cookie policy pages are directly found, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected, and no WAF or blocking mechanisms interfere with content access. Overall, the website presents a moderate risk profile with good business credibility but could enhance privacy compliance and security posture by publishing clear policies and improving security headers. Contact information visibility is limited, which may affect user trust and incident response readiness.

P

Pecheur-Store

pecheur-store.at

62

Pecheur-Store is a specialized online retailer based in Austria, focusing on fishing equipment including rods, reels, baits, and accessories for various fishing styles such as carp, predator, sea fishing, and more. The website targets German-speaking anglers and offers a broad product catalog with fast shipping and secure payment options. Technically, the site is built on Magento (OpenMage) platform, utilizing modern web technologies and integrated with Google Analytics, Google Ads, and reCAPTCHA for marketing and security. The site demonstrates moderate digital maturity with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and bot protection in place, though some security headers and explicit policies are missing. Privacy compliance is basic, with consent mechanisms present but no visible privacy or cookie policies. Overall, the domain registration data aligns with the business claims, indicating legitimacy. The site is safe for general audiences and does not contain adult or questionable content.

T

Tripnbikers : Fodral och väskor för motorcykel

tripnbikers.se

56

Tripnbikers.se is a Swedish e-commerce website specializing in motorcycle luggage and accessories, including top cases, side bags, soft luggage, and communication devices such as Bluetooth intercoms. The site targets motorcycle riders and enthusiasts primarily in Sweden and other European countries, as evidenced by sister sites in multiple languages and countries. The business appears to be recently established in 2023, with a focused niche market and a professional online presence. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito marketing automation. The website is mobile-optimized with good navigation and content quality. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers are missing and DNSSEC is not enabled. Privacy compliance is basic, with no explicit privacy or cookie policies found, but a consent management platform is active. Overall, the domain registration is legitimate and consistent with the business profile. Recommendations include enhancing privacy disclosures, adding security headers, and publishing a vulnerability disclosure policy to improve trust and compliance.

S

SPACEFOOT SAS

selleriemae.ch

67

La Sellerie de Maé, operated by SPACEFOOT SAS, is a specialized e-commerce retailer focused on equestrian and pet equipment, targeting riders and horse enthusiasts primarily in Switzerland and Europe. The website offers a broad catalog of products including horse gear, rider apparel, and accessories, supported by express delivery options and customer service based in France. The business maintains a professional online presence with clear branding, secure payment options, and customer-friendly policies such as a 14-day return window. Technically, the site is built on a Magento (OpenMage) platform, integrating modern marketing and analytics tools including Google Analytics, Google Ads, and a consent management platform to ensure GDPR compliance. Security posture is strong with HTTPS enforcement, invisible reCAPTCHA on forms, and no visible vulnerabilities or exposed sensitive data. Overall, the website demonstrates a mature digital infrastructure and trustworthy business operations.

S

SPACEFOOT SAS

selleriemae.se

58

La Sellerie de Maé operates as a specialized e-commerce retailer focusing on equestrian equipment and apparel, targeting riders and horse enthusiasts primarily in Sweden and France. The company, legally registered as SPACEFOOT SAS in France, offers a broad product range from reputable brands, emphasizing quality and customer service with a French-based support center. The website is professionally designed with clear navigation and a consistent brand presence, supporting a positive user experience and trustworthiness. Technically, the website is built on a Magento (OpenMage) platform, leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, and Actito, with GDPR compliance mechanisms including consent management and reCAPTCHA for form protection. The site demonstrates good mobile optimization and moderate performance, though some security enhancements like DNSSEC and additional security headers could further strengthen its posture. From a security perspective, the site uses HTTPS and implements best practices like invisible reCAPTCHA and consent management, but lacks explicit security policies or incident response contacts. The WHOIS data is transparent and consistent with the business information, enhancing legitimacy. No critical vulnerabilities or adult content are detected, indicating a safe and professional online presence. Overall, La Sellerie de Maé presents a credible and well-managed online retail platform with room for security improvements and enhanced transparency in security policies to further build customer trust and compliance.

J

JYSK

jysk.dk

60

JYSK is a well-established Danish retail company specializing in furniture and home goods, operating both online and through physical stores. The website demonstrates a strong market position with a comprehensive product offering and a clear focus on consumer and B2B customers. The site is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and search capabilities. The business is supported by a mature digital infrastructure leveraging Drupal CMS, advanced marketing tools like Dynamic Yield, and robust analytics via Google Tag Manager and New Relic.

E

Expodom

expodom.hu

56

Expodom.hu is a Hungarian e-commerce website specializing in the sale of quickly foldable party tents and related accessories. The site targets both general consumers and businesses requiring versatile outdoor tents for events, sales, or exhibitions. The company positions itself as a niche market leader in Hungary with a focus on quality, offering a variety of tent sizes and frame constructions, including steel and aluminum options, backed by a 5-year warranty on all frames. The business model is retail e-commerce with additional services such as custom printed tents and spare parts sales. Contact information is clearly provided, enhancing customer trust and support.

H

Henkel Polska

henkel.pl

60

Henkel Polska operates as a leading enterprise in both industrial and consumer sectors, offering a broad portfolio including hair care products, laundry detergents, fabric softeners, adhesives, sealants, and functional coatings. The company maintains a strong market position in Poland as part of the global Henkel group. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding targeting both consumers and business clients. Technically, the site employs modern JavaScript libraries and frameworks, integrates GDPR-compliant cookie consent via OneTrust, and uses secure HTTPS connections with Content-Security-Policy headers, indicating a robust technical infrastructure. Security posture is strong with no detected vulnerabilities or exposed sensitive data, though additional security headers could enhance protection. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting Henkel's reputation as a responsible and innovative manufacturer.

R

Real Vision

realvision.com

69

Real Vision is a financial media company founded in 2014, providing expert-driven video content and reports to help investors improve their financial knowledge and decision-making. The platform operates on a subscription model with multiple membership tiers, targeting finance professionals and serious investors. The website is professionally designed, mobile-optimized, and integrates a modern technology stack including WordPress, Elementor, and various analytics and marketing tools. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to user data protection. However, the absence of WHOIS registration data raises concerns about domain registration transparency, which should be addressed to enhance trust. Security posture is generally good with HTTPS enforced, but could be improved by adding explicit security headers and publishing a security policy. Overall, Real Vision presents a credible and professional online presence with room for technical and security enhancements.

U

UPC

upc.ch

73

UPC, now part of Sunrise, is a major telecommunications provider in Switzerland offering mobile, internet, and TV subscription services with 5G capabilities and bundled offers. The website is professionally designed and targets Swiss consumers seeking telecommunications services. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS and Adobe Marketing Cloud tools including Adobe Analytics and Target, alongside Google Analytics and Facebook Pixel for tracking and marketing. The security posture is strong with HTTPS enforced and no exposed sensitive data, though explicit security headers and published security policies are absent. Privacy compliance is basic with no visible privacy or cookie policies in the provided content. Overall, the website is credible and trustworthy with consistent WHOIS data supporting legitimacy.

D

DAB+

dabplus.ch

47

DAB+ is a Swiss digital radio information platform focused on educating and assisting the public and industry stakeholders in the transition from UKW to DAB+ broadcasting. The website offers comprehensive content including FAQs, tutorials, news, and a chatbot to support users. It holds a strong market position as a leading source for DAB+ information in Switzerland, targeting radio listeners, automotive users, media professionals, and garages. The platform is well-branded, professionally designed, and consistently maintained with a clear focus on user experience and accessibility. Technically, it is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools while maintaining GDPR compliance through a robust cookie consent mechanism. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Contact information is available via email, phone, and a validated contact form. No critical issues or suspicious elements were detected, supporting a high trustworthiness rating.

E

ERF Medien

music-loft.ch

55

MUSIC Loft is a Swiss media platform under the ERF Medien group, focusing on deep and meaningful music and cultural conversations. The website promotes music through podcasts, events, and curated content, targeting a German-speaking audience interested in thoughtful media. The platform maintains a niche position in the media industry with a focus on music and cultural dialogue. Technically, the site is built on WordPress with modern frameworks like UIkit and uses JW Player for media playback. It integrates multiple analytics tools including Matomo and Plausible, balancing data collection with privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy with no signs of malicious activity or adult content.

M

Made In Paradis

madeinparadis.se

44

Made In Paradis is a Swedish-based e-commerce retailer specializing in women's fashion, sneakers, and accessories. The website offers a broad portfolio of over 300 brands, targeting female consumers interested in trendy and quality apparel and footwear. The business operates primarily online with customer service based in France, reflecting a cross-border operational model. The site features a professional design, clear navigation, and multiple language and country options, indicating a mature digital presence aimed at the European market. Technically, the website is built on the Magento platform (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito marketing automation. The site uses HTTPS with good SSL configuration and includes reCAPTCHA for bot protection. However, DNSSEC is not enabled, and some advanced security headers are missing, suggesting room for security enhancements. From a security and compliance perspective, the website includes a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Contact information, including phone and physical address, is clearly provided, enhancing business credibility. No critical vulnerabilities or suspicious patterns were detected, and the domain registration is consistent with the business age and operations. Overall, Made In Paradis presents a solid e-commerce platform with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and DNS security could further strengthen its posture. The site is safe for general audiences and maintains a trustworthy online retail environment.

F

Foot-store: 100% fotbollsbutik | Tröjor och skor

foot-store.se

56

Foot-store.se is an e-commerce retail website specializing in football-related products such as shoes, jerseys, balls, and protective equipment. The site targets football players and fans primarily in Sweden and Europe, operating multiple country-specific sister domains to serve various markets. The business model focuses on direct online sales with fast delivery and competitive pricing. Technically, the website is built on Magento (OpenMage variant) and integrates modern marketing and analytics tools including Google Analytics, Google Ads, and a consent management platform compliant with IAB TCF2 standards. Security posture is moderate with HTTPS enforced and reCAPTCHA implemented, but lacks some advanced security headers and DNSSEC. Privacy compliance is basic, with cookie consent mechanisms present but no explicit privacy or terms of service pages found. Overall, the website is professional and functional with room for improvement in compliance and security transparency.

S

SPACEFOOT SAS

on-fight.it

62

On-Fight is a specialized e-commerce retailer focused on martial arts and combat sports equipment, offering a wide range of products including gloves, protective gear, clothing, and training accessories. The company operates primarily in Italy with customer service based in France, reflecting a cross-border European business model. The website is professionally designed with clear navigation and a consistent brand presence, targeting martial arts practitioners and enthusiasts. The business is relatively new, founded in 2023, and positions itself as a niche player in the retail sports equipment market.

S

SPACEFOOT SAS

selleriemae.it

61

La Sellerie de Maé is an e-commerce retailer specializing in equestrian equipment and apparel, targeting riders and horse owners primarily in Italy and Europe. The company operates under SPACEFOOT SAS, with a domain registered in 2022, reflecting a relatively new but professionally managed business. The website offers a broad product catalog, multiple language and country versions, and emphasizes customer service with a French contact center. Technically, the site uses Magento OpenMage platform with modern marketing and tracking tools including Google Analytics, Google Ads, and a GDPR-compliant consent management platform. Security posture is solid with HTTPS, reCAPTCHA protection, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

T

Tripnbikers : Valigie e borse per moto

tripnbikers.it

61

Tripnbikers.it is a specialized e-commerce platform focused on motorcycle luggage and accessories, serving primarily the Italian market with localized sister sites in multiple European countries. The website offers a variety of products including top cases, side bags, soft luggage, and rider gear from well-known brands. The business model is retail e-commerce with a focus on motorcycle enthusiasts. Technically, the site is built on a Magento-based CMS (OpenMage variant) and integrates modern tracking and advertising technologies such as Google Analytics, Google Tag Manager, and Google Ads. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks some security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy and terms of service pages. WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the site is functional and trustworthy but would benefit from enhanced privacy disclosures and security hardening.

B

Basket-Center: Attrezzature e accessori per il basket

basket-center.it

61

Basket-Center.it is an Italian e-commerce platform specializing in basketball equipment, apparel, shoes, and official NBA merchandise. Founded in 2021, it serves basketball enthusiasts primarily in Italy and Europe, positioning itself as a leading online basketball store. The website offers a broad catalog of products from well-known brands such as Mitchell & Ness, Spalding, Adidas, and Wilson, emphasizing rapid delivery and secure payment options. Technically, the site is built on a Magento-based platform (OpenMage variant) and integrates modern marketing and analytics tools including Google Analytics, Google Ads, Actito, Veoxa, and AWIN affiliate tracking. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms. A consent management platform is implemented to comply with GDPR, although explicit privacy and cookie policies are not found in the provided content. Security headers are partially implemented, and DNSSEC is not enabled, representing minor security gaps. No vulnerabilities or exposed sensitive data were detected. Overall, Basket-Center.it presents a professional and trustworthy e-commerce presence with a solid business model and consistent domain registration. Strategic improvements in privacy disclosures, security policies, and DNS security would enhance compliance and trustworthiness.

P

Animali domestici e giardino: il tuo negozio di animali e garden center online

pet-and-garden.it

61

Pet-and-garden.it is a recently launched Italian e-commerce website specializing in pet supplies, garden center products, and agricultural equipment. The site targets pet owners and gardening enthusiasts in Italy, offering a broad catalog of products with a focus on fast shipping and competitive pricing. The business model is retail e-commerce, positioning itself as a convenient online store for essential pet and garden needs. The website demonstrates consistent branding and good content quality, with clear navigation and mobile optimization. Technically, the site is built on Magento (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google AdWords, and Actito marketing automation. The site uses HTTPS and includes a GDPR consent mechanism, indicating awareness of privacy compliance requirements. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site employs HTTPS and Google reCAPTCHA to protect forms, but lacks explicit security headers and DNSSEC is not enabled, which are areas for improvement. No privacy policy or terms of service pages were found, representing compliance gaps. The domain registration is recent but consistent with the business launch, with transparent WHOIS data and no suspicious patterns. Overall, the website is functional and professionally presented but would benefit from enhanced security headers, published privacy and terms policies, and visible contact information to improve trust and compliance.

M

Made In Paradis : Sneakers e abbigliamento da donna

madeinparadis.it

62

MadeInParadis.it is a medium-sized e-commerce retailer specializing in women's fashion, including sneakers, clothing, and accessories. Founded in 2021, it operates multiple country-specific sister sites, indicating a broad European market presence. The website offers over 300 brands with a focus on fast delivery and secure payment options, targeting female consumers interested in fashion. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, and AWIN affiliate tracking. The site is mobile-optimized with good navigation and professional design. Security posture is solid with HTTPS, reCAPTCHA, and consent management, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is basic, with cookie consent mechanisms present but no explicit privacy policy or terms of service found in the scanned content. Overall, the site is trustworthy and safe for general audiences, with a good balance of business credibility and technical implementation.

F

Foot-Store : scarpe, magliette e attrezzature per football

foot-store.it

53

Foot-Store.it is an Italian e-commerce platform specializing in football-related footwear, apparel, and equipment, targeting football players and enthusiasts primarily in Italy and Europe. The website offers a wide range of products including shoes, jerseys, goalkeeper and referee gear, and accessories. The business appears to be medium-sized and founded around 2020, with a focused niche in the sports retail sector. The site uses Magento (OpenMage) as its CMS and integrates modern marketing and analytics tools such as Google Analytics, Google Ads, and AWIN affiliate tracking, supported by a consent management framework compliant with IAB TCF v2 standards. Technically, the website demonstrates good mobile optimization, SEO practices, and a moderate performance profile. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks explicit security headers and has a critical issue with the domain registration being expired recently, which poses risks to business continuity and security. Privacy compliance is limited due to the absence of visible privacy policy and terms of service pages, which should be addressed to meet GDPR requirements fully. Overall, the site is professional and trustworthy in appearance but requires urgent attention to domain renewal and enhancement of privacy and security policies to improve compliance and reduce risk. Strategic improvements in security headers and vulnerability disclosure policies would further strengthen the security posture.

J

JYSK

jysk.hu

11

JYSK Hungary is a well-established retail company specializing in furniture and home goods, operating both online and through physical stores. The website is localized for the Hungarian market, providing a comprehensive product offering and convenient shopping options such as Click & Collect. The company benefits from being part of the larger JYSK Group, with a domain age consistent with its business history. The website employs modern technologies including Drupal CMS, personalization via Dynamic Yield, and integrates Google Tag Manager and Salesforce chat for enhanced customer experience. Privacy compliance is robust, with clear cookie consent mechanisms and GDPR adherence. Security posture is solid with HTTPS enforced and no obvious vulnerabilities detected, though explicit security policies and incident response contacts are not publicly available. Overall, the site presents a professional, trustworthy, and user-friendly platform for its target audience.

N

Nemzeti Sportfejlesztési és Módszertani Intézet

sportintezet.hu

43

The Nemzeti Sportfejlesztési és Módszertani Intézet (Sportintézet) is a Hungarian governmental institution focused on advancing elite sports through applied science, health, dietetics, analytics, and funding management. The website presents a professional and well-structured digital presence, targeting Hungarian elite athletes, sports professionals, and organizations. It leverages modern WordPress technologies including Elementor and Yoast SEO, ensuring good SEO and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though some security headers and policies are absent. The WHOIS data shows an anomalous future domain creation date, which raises concerns about registration legitimacy. Overall, the site is trustworthy and functional but would benefit from enhanced security disclosures and verification of domain registration data.

Haluxvill Kft. operates a professional e-commerce platform specializing in electrical supplies, serving both retail and wholesale customers primarily in Hungary. The website offers a broad catalog of electrical products, indicating a medium-sized business with a solid regional presence in the energy sector. The technical infrastructure leverages common web technologies such as jQuery, Bootstrap, Google Analytics, and Hotjar, reflecting a moderate level of digital maturity with room for modernization and enhanced performance optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit privacy and terms of service documentation, which are important for compliance and trust. Overall, the site is accessible, well-structured, and professionally branded, though improvements in privacy compliance and security best practices are recommended to strengthen the business's digital trustworthiness and regulatory adherence.

K&H Bank Zrt. is a major Hungarian financial institution offering comprehensive banking and insurance services to individuals, businesses, and corporate clients. The website demonstrates a mature digital infrastructure with multiple customer portals, online banking, and appointment booking services. The site is well-structured, professionally designed, and provides clear navigation for its diverse audience segments. The presence of cookie consent mechanisms and privacy policies indicates compliance with GDPR and related regulations. Technically, the site leverages modern frameworks such as Liferay, React, and Bootstrap, supported by analytics and live chat tools to enhance user engagement and service delivery. Security posture is strong with HTTPS enforcement and no visible vulnerabilities, although explicit security policies and vulnerability disclosure mechanisms are not publicly documented. Overall, the site reflects a trustworthy and professional banking platform with a strong market position in Hungary.

Nemzeti Mobilfizetési Zrt. operates as a national mobile payment service provider in Hungary, likely affiliated with government services. The website serves as an informational and service portal primarily targeting Hungarian users and businesses involved in mobile payments and electronic toll collection. The business model centers on providing secure and efficient mobile payment solutions at a national scale. The website's market position is strong within Hungary as a trusted government-related entity offering essential payment services. Technically, the website employs modern web technologies including Google Fonts, Google Analytics, Google Tag Manager, and Cookiebot for cookie consent management. The presence of CSRF tokens and security headers indicates a reasonable security posture. The site is mobile-optimized and demonstrates good performance and accessibility basics, although some areas like privacy policy and terms of service documentation are missing or not easily discoverable. From a security perspective, the site uses HTTPS with good SSL configuration and implements standard security headers. Cookie consent is actively managed, supporting GDPR compliance. However, explicit privacy policies, security policies, and incident response information are absent, which could be improved to enhance transparency and compliance. No vulnerabilities or suspicious activities were detected in the analyzed content. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic recommendations include publishing comprehensive privacy and terms of service documents, adding a security policy and incident response contact, and implementing a security.txt file for vulnerability disclosure. These steps would improve compliance, user trust, and security posture.

S

SPACEFOOT SAS

on-fight.dk

58

On-Fight.dk is a specialized e-commerce retailer focused on martial arts and fitness equipment, serving primarily the European market with a Danish domain and customer service based in France. The company, SPACEFOOT SAS, offers a wide range of products including gloves, protective gear, shoes, and textiles for various martial arts disciplines. The website demonstrates a professional and consistent brand presence with clear navigation and good content quality. Technically, the site is built on Magento (OpenMage), integrates modern marketing and analytics tools, and implements GDPR-compliant consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA protection on forms, and secure payment indicators, though some security headers could be improved. Overall, the site is trustworthy and well-positioned in its niche.

T

Tripnbikers: Motorcykeltasker og motorcykeltasker

tripnbikers.dk

57

Tripnbikers.dk is a Danish e-commerce retailer specializing in motorcycle luggage and accessories, including top cases, side bags, soft luggage, and related supports and locks. The website targets motorcycle enthusiasts and riders seeking quality motorcycle luggage products from well-known brands such as Givi, Shad, and Bagster. The business appears to be newly established in 2024, with a domain registration date consistent with this timeline. The website is professionally designed with good navigation and mobile optimization, providing a positive user experience. Technically, the site uses Magento CMS, Google Analytics, Google Ads, and reCAPTCHA for security and marketing purposes. However, there is room for improvement in security headers and explicit privacy and cookie policy disclosures. The site uses HTTPS and has implemented a consent mechanism for cookies, indicating some GDPR awareness. No contact emails or phone numbers are visible, which may impact user trust and business credibility. Overall, the website is functional, secure at a basic level, and positioned as a niche retailer in the motorcycle luggage market.

H

House of Rugby: rugbyspecialisten

house-of-rugby.dk

57

House of Rugby is a Danish e-commerce retailer specializing in rugby apparel, official club products, and rugby shoes. The website targets rugby players and fans, offering a wide range of products from major brands. The business is newly established in 2024 and positions itself as a niche specialist in the rugby retail market. Technically, the website uses Magento (OpenMage), integrates Google Analytics, Google Ads, and marketing automation tools like Actito. The site is mobile-optimized with good navigation and professional design. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some security headers and explicit privacy policies. Overall, the website is functional and trustworthy but could improve compliance and security transparency.

D

Daily Bikers: Cykeludstyr og motorcykeldele

daily-bikers.dk

55

Daily Bikers is a Danish e-commerce retailer specializing in motorcycle and biking gear, including jackets, helmets, gloves, and accessories. The website targets motorcycle enthusiasts primarily in Denmark, offering a broad catalog of products with fast delivery and secure payment options. The business appears to be newly established in 2024, with a domain registered recently and a professional online presence. Technically, the website uses Magento CMS, integrates Google Analytics, Google Ads, and reCAPTCHA for security and marketing purposes. The site is mobile-optimized and features a modern design with clear navigation. Security posture is adequate with HTTPS and bot protection, but lacks some advanced security headers and DNSSEC. Privacy compliance is basic with a consent mechanism but no explicit privacy or cookie policies found. Overall, the site is trustworthy and professionally maintained but could improve transparency and security practices.

S

Smash-Expert

smash-expert.dk

57

Smash-Expert.dk is a Danish e-commerce retailer specializing in racket sports equipment including tennis, padel, badminton, table tennis, and squash. The website offers a broad catalog of products from various brands, targeting sports enthusiasts and players primarily in Denmark. The business model focuses on online sales with promises of fast delivery and secure payment options. The domain is newly registered in July 2024, consistent with a recent business launch. Technically, the website is built on Magento (OpenMage), utilizing modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito marketing automation. The site is mobile-optimized with good navigation and SEO practices. Security is enforced via HTTPS and reCAPTCHA, with a consent management platform implemented for GDPR compliance. However, the absence of explicit privacy and cookie policies and lack of DNSSEC are areas for improvement. From a security perspective, the site shows good practices but lacks some advanced security headers and formal vulnerability disclosure mechanisms. No WAF or blocking mechanisms interfere with accessibility, and no suspicious or adult content is present. The WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, Smash-Expert.dk presents a professional and trustworthy online retail platform with moderate to good security and privacy compliance. Strategic improvements in policy transparency and DNS security would further strengthen its posture.