Security Directory

R

RBA

serienegra.es

66

RBA Libros is a well-established Spanish publishing group specializing in various literary genres, including the crime-focused 'Serie Negra' imprint. The website serves as a digital storefront and informational portal for their crime genre books, offering features such as book listings, author information, and newsletter subscriptions. The site is professionally designed with consistent branding and targets readers interested in crime novels, essays, and biographies. Technically, the website employs a modern JavaScript stack including RequireJS, jQuery, and lazy loading libraries, hosted partially on Microsoft Azure Blob Storage, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and GDPR-compliant consent management via Didomi, though security headers are not explicitly detected and could be improved. The absence of WHOIS data limits domain trust verification, but the website's content and external references strongly indicate legitimacy. Overall, the site presents a trustworthy and professional digital presence for RBA's crime literature segment.

R

RBA Revistas

rbarevistas.com

58

RBA Revistas is a prominent Spanish media publishing company specializing in magazines, including well-known brands such as National Geographic España, Lecturas, Saber Vivir, and El Mueble. The website serves as a corporate portal providing information about its magazine portfolio and links to individual magazine sites. The business targets Spanish-speaking audiences interested in lifestyle, culture, health, and entertainment magazines. The company operates within the media sector and is part of the larger RBA Grupo. The website demonstrates a professional design with consistent branding and good content quality.

R

RBA

rbacoleccionables.com

67

The website tienda.rba.es/coleccionables is an e-commerce platform operated by RBA, a well-known Spanish publisher and retailer specializing in collectibles and magazines. The site offers subscription-based and direct sales of collectible series, targeting a general Spanish-speaking audience. The business model focuses on engaging customers through exclusive offers and gifts tied to subscriptions, positioning itself as a reputable player in the collectibles market in Spain. Technically, the website is built on Magento 2, leveraging modern JavaScript frameworks such as RequireJS and jQuery, and integrates various third-party services including Google Tag Manager, New Relic for monitoring, and consent management via Didomi and Indigitall SDKs. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS, employs standard security headers, and integrates monitoring tools to detect issues. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. However, explicit security policies and incident response contacts are not found, representing an area for improvement. Overall, the website presents a professional and trustworthy online presence with moderate to good scores in content quality, technical implementation, security posture, privacy compliance, and business credibility. The lack of WHOIS data limits full domain legitimacy verification, but the site’s content and structure support its authenticity.

S

Stadtsportbund Bielefeld e.V.

sportbund-bielefeld.de

50

Stadtsportbund Bielefeld e.V. is a medium-sized non-profit organization dedicated to promoting sports and community engagement in Bielefeld, Germany. The website serves as an information hub for sports clubs, youth programs, educational initiatives, and community sports activities. It positions itself as a local leader in sports promotion with a clear focus on inclusivity and education. The site uses TYPO3 CMS and integrates modern web technologies such as Bootstrap, jQuery, and Google Analytics to provide a responsive and accessible user experience. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is professional, trustworthy, and well-aligned with its mission to support sports in the Bielefeld community.

B

BBF - Bielefelder Bäder und Freizeit GmbH

bielefelderbaeder.de

47

Bielefelder Bäder und Freizeit GmbH is a municipal service provider operating multiple swimming pools, saunas, and an ice rink in Bielefeld, Germany. The company offers a wide range of recreational and wellness services including swimming courses, wellness massages, and subscription models for unlimited access. The website is professionally designed, well-structured, and targets families, children, and wellness enthusiasts in the local community. Technically, the site is built on TYPO3 CMS with modern frontend technologies and integrates a consent management platform and Google Tag Manager for analytics and compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site demonstrates a mature digital presence aligned with GDPR and accessibility standards, supporting the company’s role as a trusted local public service provider.

B

Bühnen und Orchester der Stadt Bielefeld

theater-bielefeld.de

53

Bühnen und Orchester der Stadt Bielefeld is a public cultural institution in Germany offering theater, philharmonic orchestra, and concert hall events. The website serves as an information and ticketing portal for their performances and services, targeting a general audience interested in cultural activities. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Google Tag Manager and reCAPTCHA for analytics and security. The security posture is moderate with HTTPS enforced but lacks explicit security headers and published security policies. Privacy compliance is limited as no privacy or cookie policies were found in the provided content. Overall, the website is professional, well-structured, and trustworthy, but could improve transparency and compliance documentation.

W

Whatfix

whatfix.com

77

Whatfix is an established enterprise technology company founded in 2012, specializing in Digital Adoption Platforms and analytics solutions. Their platform helps businesses improve user onboarding, training, and support through interactive guidance and analytics. The company targets enterprise customers seeking to enhance digital transformation and user engagement. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to business audiences. Technically, the site is built on WordPress, uses Cloudflare for DNS and likely CDN services, and integrates modern technologies such as Google Tag Manager and Wistia for video content. Performance and mobile optimization are excellent, supporting a positive user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though DNSSEC is not enabled. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. Contact information is clearly provided, including emails, phone numbers, and physical address. Overall, Whatfix demonstrates a high level of digital maturity, security awareness, and business credibility.

A

ALSO Hungary Kft.

alsohungary.hu

66

ALSO Hungary Kft. is a leading ICT technology service provider operating in 30 European countries and globally through PaaS partners in 143 countries. The company offers a broad portfolio of hardware, software, and IT services across more than 1450 product categories, targeting resellers and enterprise customers. Their business model integrates supply chain management, tailored IT solutions, and cloud-based services including cybersecurity and AI platforms. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding aligned with the parent ALSO Group. Technically, the site employs a modern technology stack including jQuery, Bootstrap, and advanced tracking and consent management tools, ensuring a good user experience and compliance with privacy regulations. Security posture is solid with HTTPS and consent-based script loading, though security headers and incident response details are not explicitly visible. WHOIS data is unavailable, which limits domain trust verification, but the overall digital footprint and business information support legitimacy.

P

perview

perview.de

71

perview is a German-based HR and Talent Management software provider offering a modular and intuitive HCM suite designed for medium to large enterprises. Their platform supports the entire employee lifecycle including recruiting, onboarding, personnel management, and employee development. The website demonstrates a professional and consistent brand presence with comprehensive GDPR-compliant privacy and cookie policies. Technically, the site leverages modern web technologies such as Webflow CMS, Google Tag Manager, HubSpot, and Iubenda for cookie management, ensuring a robust digital infrastructure. Security posture is strong with HTTPS enforced and no exposed sensitive data, though explicit security headers and incident response policies are not evident. Overall, the site is well-optimized for SEO, accessibility, and user experience, targeting HR professionals and decision-makers in German-speaking markets.

T

Tidenhub Digital GmbH

website-tutor.com

65

Website Tutor, operated by Tidenhub Digital GmbH, is a specialized freelance service provider focusing on WordPress development and SEO optimization primarily for small businesses and freelancers in Germany. The website presents a professional and well-structured digital presence with clear service offerings including WordPress website creation, training, and SEO consulting. The business leverages modern WordPress technologies and SEO best practices to position itself as a niche expert in the German market. The domain age and registration details align well with the business history, supporting credibility.

I

Iftra GmbH

deutsches-seniorenportal.de

60

Iftra GmbH operates the Deutsches Seniorenportal, a comprehensive online platform dedicated to supporting senior citizens and their families in Germany. The portal offers extensive advice, care service listings, regional offers, a community forum, and an e-commerce shop tailored to the needs of the elderly. It holds a strong market position as the largest media network for senior living in Germany, with significant monthly traffic and partnerships with major news outlets like FAZ.NET and BILD. Technically, the website is built on TYPO3 CMS, leveraging Cloudflare for DNS and CDN services, and incorporates modern privacy management and tracking tools such as Google Tag Manager and privacy-mgmt.com. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, the site uses HTTPS, secure cookies, and Cloudflare's infrastructure, though explicit security headers could be enhanced. Privacy compliance is partially addressed with cookie consent mechanisms, but no explicit privacy policy or terms of service were found in the provided content. Overall, the website is professional, trustworthy, and well-positioned in its niche, with room for improvement in privacy documentation and security header implementation.

G

Greenified

greenified.se

44

Greenified is a Swedish-based circular furniture marketplace operated under the Input interiör brand, focusing on sustainable buying, selling, and renting of furniture. The company targets environmentally conscious businesses and individuals seeking cost-effective and eco-friendly furniture solutions. Their offerings include a digital inventory system and reconditioning services, positioning them as a niche player in the sustainable retail sector. The website is professionally designed, mobile-optimized, and incorporates modern e-commerce and content management technologies such as WordPress and WooCommerce. Privacy and cookie compliance are well implemented with clear policies and consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA, and cookie management, though some security headers could be improved. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and stability.

B

Baumatpool

baumatpool.ch

63

Baumatpool is a Swiss online marketplace specializing in building materials and surplus stock, providing a platform for buyers and sellers within the construction sector. The website is well-positioned in the niche Swiss market, targeting construction professionals and individuals seeking building materials. It offers key services such as listing, searching, and advertising building materials. The business is linked to Agrarmedien AG, which appears to be the parent company managing related platforms. Technically, the site uses modern frameworks like Next.js and Chakra UI, with integrated analytics and consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS, security headers, and monitoring tools like Sentry, though explicit security policies and incident response contacts are not published. Overall, the site is professional, secure, and compliant with privacy regulations, though contact information is limited to forms and social media. Strategic recommendations include publishing dedicated security and incident response policies and enhancing direct contact options.

K

Kaffeemacher

kaffeemacher.ch

71

Kaffeemacher is a Swiss-based specialty coffee e-commerce business offering a curated selection of coffee beans, accessories, and educational courses. The website is built on the Shopify platform, leveraging modern web technologies and integrations such as Judge.me for customer reviews and Seal Subscriptions for recurring orders. The company targets coffee enthusiasts primarily in Switzerland and Germany, positioning itself as a niche provider with a strong focus on quality and education. The digital infrastructure is robust, with good performance and mobile optimization, supported by Shopify's CDN and security features. Security posture is strong with HTTPS enforcement and standard security headers, though explicit privacy and cookie policies are not found in the provided content, indicating room for compliance improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

U

Unser Bier

unserbier.ch

65

Unser Bier is a local brewery based in Basel, Switzerland, positioning itself as the largest and most popular brewery in the Basel region. The company focuses on producing and selling organic and craft beers, targeting a mature audience interested in local and sustainable beer products. Their business model includes direct retail and an online shop for convenient customer access. The website is professionally designed using the Wix platform, providing a good user experience with clear navigation and mobile optimization. Technically, the site leverages Wix's proprietary framework and integrates Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security-wise, the site enforces HTTPS and includes scripts to harden fetch and XHR requests, but lacks explicit security headers and visible privacy or cookie policies, which are areas for improvement. Overall, the website is trustworthy and credible, though it would benefit from enhanced privacy compliance and security transparency.

U

UP COOP

up-group.coop

73

UP COOP is an international cooperative group specializing in payment solutions and social utility services aimed at empowering enterprises and local communities to improve purchasing power and quality of life. The website presents a professional and consistent brand image with clear navigation and relevant content focused on sustainability, social cohesion, and responsible consumption. Technically, the site is built on TYPO3 CMS, uses Cloudflare DNS, and integrates modern consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, security headers present, and no detected vulnerabilities, although DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

I

Instituto de Turismo de la Región de Murcia

murciaturistica.es

50

The website www.turismoregiondemurcia.es serves as the official tourism portal for the Costa Cálida region in Murcia, Spain. It is operated by the Instituto de Turismo de la Región de Murcia and provides comprehensive information on tourism activities, accommodations, events, and cultural experiences. The site targets tourists and visitors interested in exploring the Murcia region, offering multilingual support and booking functionalities. Technically, the site employs modern web technologies including Bootstrap, jQuery, Swiper, and integrates multiple tracking and analytics tools such as Google Analytics, Facebook Pixel, and Adform. The website is well-designed with good mobile optimization and clear navigation, reflecting a professional and trustworthy government tourism platform. Security-wise, the site uses HTTPS and secure external scripts but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. WHOIS data is unavailable due to access restrictions, limiting domain trust verification, but the official branding and content quality support legitimacy. Overall, the site is a reliable and informative resource for tourism in Murcia with moderate technical and security maturity.

T

Toerisme Vlaanderen

toerismevlaanderen.be

64

Toerisme Vlaanderen is the official government tourism organization for the Flanders region in Belgium, focused on strengthening tourism through strategic marketing and knowledge-driven support for tourism partners. The website serves as a comprehensive portal offering information, tools, research, and support services to tourism entrepreneurs and organizations. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing technologies such as Google Tag Manager, Hotjar, and Mautic, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, consent-based cookie management, and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, making it a reliable resource for its target audience.

F

FGTB-ABVV

fgtb.be

68

FGTB-ABVV is a well-established Belgian trade union organization with a domain registered since 1998. The website provides comprehensive services and information to its members and the public, focusing on labor rights, social advocacy, and member support. The site is built on Drupal 10, uses modern web technologies, and integrates marketing and analytics tools such as Google Tag Manager and Flexmail. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. Overall, the website is professional, accessible, and trustworthy, serving a large audience in the government and non-profit sectors.

REMONDIS is a leading enterprise in the waste management and recycling sector in Germany, offering comprehensive services including waste disposal requests, container ordering, and municipal waste solutions. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the site is built on TYPO3 CMS, integrates modern libraries such as jQuery and Cookiebot for consent management, and uses Google Tag Manager for analytics. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a public security policy could enhance trust. Privacy compliance is robust, featuring a detailed privacy policy and cookie consent mechanism aligned with GDPR requirements. Contact information is clearly presented, supporting business credibility. Overall, the site is trustworthy, well-maintained, and suitable for its target audience of businesses, municipalities, and private citizens.

S

Sparkassenakademie NRW

sparkassenakademie-nrw.de

53

Sparkassenakademie NRW is a medium-sized educational institution focused on providing training and solutions to Sparkassen and financial service providers in North Rhine-Westphalia, Germany. The website presents a professional image with a clear focus on finance and education sectors, offering modern educational products and services. The technical infrastructure is based on TYPO3 CMS, integrated with modern consent management tools like Cookiebot and analytics via Google Tag Manager. The site is accessible, mobile-optimized, and includes a comprehensive cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and opt-out mechanisms for analytics, but lacks explicit security headers and visible security policies. No contact emails or phone numbers are directly visible, which could be improved for better business credibility. Overall, the site is trustworthy, safe, and well-positioned in its niche.

L

LANcloud

seminarmanagercloud.de

44

LANcloud is a German-based company offering a cloud-based seminar management software solution designed to automate and streamline seminar and course administration. The platform targets educational institutions and seminar providers, offering features such as online booking portals, automated invoicing, participant management, and seminar evaluation. With over 35 years of experience in the market, LANcloud positions itself as a mature and reliable solution in the education technology sector. The website is professionally designed, mobile-optimized, and SEO-friendly, leveraging WordPress and modern plugins. Security posture is good with HTTPS and cookie consent management, though some improvements like DNSSEC and explicit security policies are recommended. Overall, the domain registration is consistent and legitimate, supporting the business claims.

S

Schleswig-Holstein Netz

sh-netz-shop.com

67

Schleswig-Holstein Netz operates an e-commerce platform focused on energy-related products such as building introductions, smart home devices, and electric vehicle charging stations. The website targets consumers, businesses, and installers primarily in Germany. The platform is built on modern web technologies, likely using Shopware CMS, and features responsive design with clear navigation and user account management. Analytics are implemented via Google Tag Manager, and cookie consent mechanisms are in place. However, the absence of publicly available WHOIS data for the domain raises concerns about domain legitimacy and transparency. Additionally, the website lacks explicit privacy policy and terms of service pages, which are critical for compliance and user trust. Security posture is generally good with HTTPS and secure login forms, but could be improved by adding security headers and incident response contact information.

M

MotorK Germany

dealerk.de

70

MotorK Germany is a leading European automotive sales and marketing technology company specializing in providing digital solutions such as dealer websites, CRM lifecycle management, vehicle management, e-reputation, and vehicle configurator portals. The company targets automotive manufacturers and dealerships, offering B2B SaaS solutions to optimize automotive sales and marketing processes. The website reflects a mature digital infrastructure built on WordPress with Elementor, integrated with modern marketing and analytics tools including Google Analytics, Google Tag Manager, and Mautic marketing automation. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policies. Security posture is solid with HTTPS enforcement, security headers, and reCAPTCHA protection on forms, though the absence of public security policies and vulnerability disclosure mechanisms suggests room for improvement. Overall, the domain shows privacy protection in WHOIS data, which is justified for this business type, and the website presents strong trust signals and professional branding.

T

Toyota Deutschland

toyota.de

70

Toyota Deutschland GmbH operates as the official German branch of the global Toyota Motor Corporation, specializing in the sale and promotion of Toyota automobiles within Germany. The website serves as a comprehensive platform for showcasing new car models, facilitating test drive bookings, and providing customer support. It targets German consumers interested in purchasing Toyota vehicles and maintains a strong market position as a leading automotive brand in Europe. Technically, the website leverages a modern technology stack including Adobe Experience Manager CMS, React, and integrates advanced analytics and monitoring tools such as Google Tag Manager, ContentSquare, and Datadog RUM. The site is well-optimized for mobile devices and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. Overall, the website is professional, trustworthy, and aligns well with Toyota's brand standards, though improvements in privacy policy visibility and security disclosures are recommended.

H

Handbal-Store : schoenen, ballen, kleding en handbalmateriaal

handball-store.nl

59

Handbal-Store.nl is a specialized e-commerce platform focused on providing handball shoes, balls, clothing, and related equipment primarily targeting the Dutch and broader European handball community. The website demonstrates a solid market position within its niche, offering a comprehensive product catalog with multi-language support to cater to various European markets. Technically, the site is built on the Magento (OpenMage) platform, integrating modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and AWIN affiliate tracking, indicating a mature digital marketing strategy. Security-wise, the site employs HTTPS and DNSSEC, reflecting good baseline security practices, although explicit privacy and terms of service documents are not found in the provided content, which is a compliance gap. Overall, the website is professionally designed with good navigation and mobile optimization, but it would benefit from enhanced transparency in privacy and contact information to improve trust and compliance.

H

Handball-Store: Online-Handball-Spezialist

handball-store.de

60

Handball-Store.de is a specialized e-commerce platform focused on providing comprehensive handball sports equipment including shoes, balls, clothing, and protective gear. The website targets handball players, teams, and enthusiasts primarily in Germany but supports multiple European markets through sister domains. The business model is retail e-commerce with a niche focus on handball, positioning itself as a specialist in this sports segment. The site features a well-structured navigation system and a professional design consistent with its market niche. Technically, the website is built on a Magento-based platform (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and affiliate tracking via AWIN. Hosting is managed through Gandi.net, a reputable provider. Security posture is solid with HTTPS enforced and bot protection via reCAPTCHA, though some security headers could be improved. Privacy compliance is partially addressed with a cookie consent mechanism and GDPR scripts, but no explicit privacy policy or terms of service were found in the provided content. Overall, the site demonstrates a good balance of business professionalism and technical maturity but could enhance transparency and security documentation. The risk level is moderate with recommendations to improve security headers, publish privacy and security policies, and add vulnerability disclosure information.

H

Handball-Store

handball-store.co.uk

45

Handball-Store.co.uk is a specialized e-commerce retailer focused on handball sports equipment, apparel, and accessories. The website offers a comprehensive catalog of products including shoes, clothing, handballs, protective gear, and club equipment, targeting handball players, fans, and clubs primarily in the UK market. The business appears to be a small-sized, niche player founded in 2022, with a consistent brand presence and multiple sister domains serving other European countries. Technically, the site is built on Magento (OpenMage), leveraging modern tracking and advertising technologies such as Google Analytics, Google Ads, and a consent management platform to address GDPR requirements. The site is mobile-optimized with good navigation and content quality, though some accessibility features could be improved. Security posture is decent with HTTPS enforced and bot protection via reCAPTCHA, but lacks explicit security headers and visible security policies. No privacy or cookie policy pages were found, which is a compliance gap. Overall, the site is trustworthy and professional but would benefit from enhanced transparency and security best practices.

H

Handball-Store: el sitio número 1 de balonmano en línea

handball-store.es

56

Handball-Store.es is a Spanish-language e-commerce website specializing in handball sports equipment, including shoes, balls, clothing, and accessories for players and clubs. The site positions itself as a leading online retailer in the handball niche within Spain and Spanish-speaking markets. It offers a broad catalog with clear navigation and product categorization, targeting handball enthusiasts and clubs. The business model is retail e-commerce with a focus on sports gear and club equipment. Technically, the website runs on Magento OpenMage, leveraging modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Google Ads for tracking and advertising. The site is mobile-optimized and provides a good user experience with consistent branding and professional design. Security-wise, the site enforces HTTPS and implements consent management for GDPR compliance, but lacks explicit privacy policy and terms of service pages in the analyzed content. WHOIS data is unavailable due to Red.es restrictions, which limits domain trust verification. Overall, the website demonstrates a moderate to good security posture and technical maturity but would benefit from enhanced transparency and security headers.

H

Handball-Store

handball-store.pt

58

Handball-Store.pt is a specialized e-commerce platform focused on retailing handball sports equipment, including shoes, balls, clothing, and accessories. The website targets handball players and enthusiasts primarily in Portugal and other European markets, supported by sister sites in multiple countries. The business model is retail-oriented with a strong online presence and multi-lingual support, positioning itself as a niche market leader in handball equipment. The site demonstrates good content quality, clear navigation, and consistent branding, enhancing user experience and trust. Technically, the website is built on the Magento (OpenMage) platform, integrating modern marketing and analytics tools such as Google Analytics, Google Ads, AWIN affiliate tracking, and Actito marketing automation. The site employs HTTPS with good SSL configuration and security headers, alongside GDPR-compliant cookie consent mechanisms. Mobile optimization and SEO practices are well implemented, though accessibility features could be improved. From a security perspective, the site shows a mature posture with no critical vulnerabilities detected in the HTML content. It uses reCAPTCHA to mitigate bot activity and enforces secure connections. However, the absence of a publicly available security policy or incident response information is a gap. No vulnerability disclosure or security.txt file is present, which could enhance transparency and trust. Overall, Handball-Store.pt presents a low-risk profile with a solid business foundation and good technical implementation. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility compliance, and maintaining vigilance on third-party scripts. These steps will further strengthen the site's security posture and user trust.

H

Handball-Store : scarpe, palloni, abbigliamento e attrezzatura per la pallamano

handball-store.it

59

Handball-Store.it is a specialized e-commerce platform focused on providing handball sports equipment, apparel, and accessories primarily targeting handball players and fans in Italy. The website offers a wide range of products including shoes, balls, clothing, fan merchandise, and fitness equipment. The business operates in the retail and e-commerce sectors and appears to be a medium-sized company founded in 2021. The site is well structured with clear navigation and consistent branding, supporting a professional online retail experience. Technically, the website is built on the Magento (OpenMage) platform and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Google Ads. The site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are areas for improvement. Mobile optimization and SEO practices are good, contributing to a positive user experience. From a security perspective, the site implements a consent management platform indicating GDPR awareness, but lacks explicit privacy policy and terms of service pages in the provided content. No direct contact information or incident response contacts are found, and no vulnerability disclosure or security.txt files are present. The domain registration is consistent and transparent, supporting the legitimacy of the business. Overall, the website presents a moderate risk profile with good content quality and technical implementation but requires enhancements in security headers, privacy documentation, and contact transparency to improve trust and compliance.

H

House of Rugby

house-of-rugby.co.uk

61

House of Rugby is a specialized e-commerce retailer focused on rugby sportswear, official club products, shoes, and equipment. Founded in 2022 and operating primarily in the UK, it offers a wide selection of products from major brands such as Nike, Adidas, and Mizuno. The website demonstrates a professional and consistent brand presence with secure payment options and customer service based in France. Technically, the site uses modern frameworks like SvelteKit and integrates Google marketing and analytics tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and GDPR-compliant consent management, although explicit security policies and incident response details are not publicly available. Overall, the site is trustworthy, well-maintained, and suitable for its target audience of rugby enthusiasts and players.

H

House of Rugby

house-of-rugby.com

62

House of Rugby is a specialized e-commerce retailer focused on rugby sportswear, official club merchandise, and rugby equipment. Founded in 2022, it serves rugby players and fans primarily in France and internationally through localized domains. The website offers a wide range of products from major brands such as Nike, Adidas, Mizuno, and Puma, with secure payment options and fast shipping. The business positions itself as a trusted rugby specialist with a strong online presence and customer engagement via Trustpilot and social media. Technically, the website is built on a modern SvelteKit framework, hosted behind Cloudflare DNS and CDN services, and integrates Google Analytics and Google Ads for marketing and analytics. It is mobile-optimized, fast-loading, and implements GDPR-compliant cookie consent mechanisms. The site uses secure HTTPS connections and enforces security headers, although DNSSEC is not enabled. From a security perspective, the site demonstrates good practices including HTTPS, clientTransferProhibited domain status, and no visible vulnerabilities or exposed sensitive data. However, it lacks a dedicated security policy or incident response contact information, which could enhance trust and preparedness. Privacy compliance is strong with clear privacy and cookie policies. Overall, House of Rugby presents a professional, secure, and user-friendly e-commerce platform with a solid business model and trustworthy domain registration. Strategic improvements could include enabling DNSSEC, publishing a security policy, and providing incident response contacts to further strengthen security posture and customer confidence.

M

Made in Paradis

madeinparadis.co.uk

61

Made in Paradis is a UK-based e-commerce retailer specializing in women's fashion, including clothing, shoes, and accessories from over 300 brands. The website positions itself as a boutique offering fast delivery and secure payment options, targeting women interested in fashionable footwear and apparel. The business is relatively new, founded in 2022, and operates with a medium-sized market presence in the retail sector. The company maintains a consistent brand image and offers multiple trusted payment methods, enhancing customer trust. Technically, the website is built using modern web technologies including SvelteKit, with integrations for Google Analytics, Google Ads, and a consent management platform ensuring GDPR compliance. Hosting appears to be via Cloudflare, contributing to fast performance and good mobile optimization. The site demonstrates good SEO practices and basic accessibility features, though there is room for improvement in accessibility. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact reduces transparency in security governance. The domain registration data is consistent with the business claims, enhancing legitimacy. Overall, the website presents a professional, secure, and privacy-conscious e-commerce platform with good user experience and trust indicators. Strategic improvements in security policy transparency and accessibility could further strengthen its posture.

S

Sneak'In

sneakin.cz

57

Sneak'In operates a professional e-commerce platform specializing in fashionable sneakers and clothing for men, women, and children. The website targets primarily the Czech Republic market but also supports multiple European countries through sister domains. The business model focuses on retail sales of well-known brands with fast delivery and secure payment options. The site demonstrates a mature digital presence with modern technologies such as SvelteKit and Cloudflare CDN, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, although no explicit security policy or incident response details are published. WHOIS data shows inconsistencies with a future domain creation date, which may indicate data errors but slightly impacts trust. Overall, the website is professional, trustworthy, and well-structured for its retail purpose.

S

Sneak'In

sneakin.ie

61

Sneak'In is a medium-sized e-commerce retailer specializing in sneakers, streetwear, and fashion clothing for men, women, and children. The company operates primarily in Ireland with a strong European presence, offering a wide range of branded footwear and apparel with fast delivery and secure payment options. The website is professionally designed with clear navigation and a focus on customer service, including a dedicated contact phone number and physical address in France. Technically, the site leverages modern web technologies such as SvelteKit, Cloudflare DNS/CDN, and integrates Google Analytics and Google Ads for marketing and tracking, with a GDPR-compliant cookie consent mechanism in place.

S

Sneak'In

sneakin-shop.at

61

Sneak'In operates a professional e-commerce platform specializing in sneakers, fashion, and sportswear targeting customers primarily in Austria and the broader European market. The website offers a broad product range including shoes, clothing, and accessories for men, women, and children, supported by secure payment options and customer service based in Germany. The company maintains multiple country-specific domains, indicating a regional multi-market strategy. Technically, the website is built on modern frameworks such as SvelteKit, hosted behind Cloudflare for performance and security, and integrates Google Analytics and Tag Manager for marketing and analytics. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms implemented, although explicit security policies and incident response contacts are not published. Overall, the site is well-designed, mobile-optimized, and compliant with GDPR, reflecting a mature digital presence with moderate user tracking. The domain registration is consistent with the business claims, registered via a reputable registrar and using Cloudflare DNS services. No blocking or WAF challenges were detected, allowing full content access and analysis.

S

Sneak'In

sneakin.co.uk

62

Sneak'In is a UK-based e-commerce retailer specializing in sneakers, streetwear, and fashion clothing for men, women, and children. Founded in 2022, the company offers a wide range of well-known brands at competitive prices with a focus on fast delivery and secure payment options. The website is professionally designed with clear navigation and a strong brand presence, targeting fashion-conscious consumers seeking quality sneakers and apparel. The business operates multiple country-specific domains, indicating a broad European market reach. Technically, the website leverages modern web technologies including SvelteKit, Google Tag Manager, and AppConsent for GDPR compliance. Hosting appears to be via Cloudflare, ensuring good performance and security. The site is mobile-optimized and implements standard SEO and accessibility features, although accessibility could be further enhanced. Analytics and marketing tools are used responsibly with consent mechanisms in place. From a security perspective, the site enforces HTTPS, employs security headers, and manages cookie consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact is noted as an area for improvement. Overall, the security posture is strong for an e-commerce platform. The overall risk assessment is low, with the website demonstrating good business credibility, technical maturity, and privacy compliance. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility, and maintaining vigilance on third-party scripts. These steps will further strengthen trust and compliance in a competitive retail market.

S

Sneak'In

sneakin.se

56

Sneak'In operates a professional e-commerce platform specializing in sneakers, fashion, and trendy clothing for men, women, and children. The company maintains a strong market presence with multiple localized domains targeting various European countries and the US. Their business model focuses on retail sales with fast delivery and secure payment options, supported by a clear customer service infrastructure based in France and Sweden. Technically, the website leverages modern frameworks such as SvelteKit, Cloudflare CDN, and integrates Google Analytics and Tag Manager for marketing and analytics purposes. The site is well-optimized for mobile and desktop users, with good SEO and accessibility practices. Security posture is solid with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, although no explicit security policy or incident response contacts are published. Overall, the website is trustworthy, professionally managed, and compliant with relevant privacy regulations.

S

Sneak'In

sneakin.pl

46

Sneak'In operates an e-commerce platform specializing in sneakers, fashion clothing, and accessories targeting men, women, and children primarily in Poland and other European markets. The website presents a professional and consistent brand image with a clear focus on retail fashion and footwear, offering fast delivery and secure payment options. The company appears to be relatively new, founded in 2023, with a domain age consistent with its business history. The site is well-structured, mobile-optimized, and integrates modern web technologies such as SvelteKit and Google Analytics for performance and marketing insights. Security posture is strong with HTTPS enforcement and GDPR-compliant cookie consent mechanisms, although some security policies and incident response contacts are not explicitly published. Overall, the website demonstrates a mature digital presence suitable for its retail business model.

S

Sneak'In

sneakin.pt

58

Sneak'In operates a professional e-commerce platform specializing in footwear, clothing, and accessories for men, women, and children. The company maintains a strong market presence across multiple European countries, supported by a network of affiliated stores. Their business model focuses on offering branded products with fast delivery and secure payment options, targeting fashion-conscious consumers seeking quality and convenience. The website's content and branding are consistent and trustworthy, supported by customer reviews via Trustpilot and clear contact information.

S

Sneak'In

sneakin-es.es

57

Sneak'In operates a professional e-commerce platform specializing in sneakers, casual clothing, and accessories targeting men, women, and children primarily in Spain and other European countries. The website demonstrates a solid market position with a broad brand portfolio and multiple country-specific domains, indicating a mature and geographically diverse business model. The platform offers fast delivery, secure payment options, and easy returns, enhancing customer trust and satisfaction. Technically, the site is built on modern frameworks such as SvelteKit, integrates Google Analytics and Tag Manager for data insights, and uses a consent management platform to ensure GDPR compliance. Security posture is strong with HTTPS enforced and visible trust signals, although some security headers could be improved. The WHOIS data is restricted due to registry policies, which is typical for .es domains, but the website's professionalism and transparency mitigate concerns. Overall, the site is safe, well-structured, and trustworthy for general audiences.

S

Sneak'In

sneakin.it

59

Sneak'In operates a professional e-commerce platform specializing in sneakers, streetwear, and related fashion accessories targeting men, women, and children. The company maintains a strong market presence across multiple European countries and the US through localized domains. Their business model focuses on retail sales with fast delivery and secure payment options, supported by a network of partner stores. Technically, the website leverages modern frameworks like SvelteKit and integrates advanced analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforcement, GDPR compliance, and secure payment indicators, although DNSSEC is not enabled and some security headers could be explicitly confirmed. Overall, the site is trustworthy, professionally designed, and safe for general audiences.

S

Sneak'In

sneakin-de.de

58

Sneak'In operates a professional e-commerce platform specializing in sneakers, fashion, and trendy clothing for men, women, and children. The company maintains a strong market presence with multiple country-specific domains and a broad portfolio of well-known brands. Their business model focuses on retail sales with key services including fast delivery, secure payment options, and dedicated customer service in Germany. The website demonstrates consistent branding and trust indicators such as Trustpilot integration and secure payment logos. Technically, the website is built on modern technologies including SvelteKit, uses Cloudflare for DNS and CDN services, and integrates Google Analytics and Tag Manager for analytics. The site is well optimized for performance and mobile devices, with good accessibility and SEO practices. Consent management for GDPR compliance is implemented effectively. From a security perspective, the site enforces HTTPS, includes essential security headers, and manages user consent appropriately. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy and incident response contact information, which are recommended for enhanced security posture. Overall, the website is trustworthy, professional, and compliant with privacy regulations, presenting a low risk profile. Strategic recommendations include publishing a security policy, establishing an incident response channel, and implementing a vulnerability disclosure program to further strengthen security and trust.

S

Sneak'In

sneakin.shop

64

Sneak'In operates a professional e-commerce platform specializing in sneakers, streetwear, and fashion apparel for men, women, and children. The company maintains a strong market position with a broad brand portfolio and multiple international localized websites, targeting a diverse audience interested in trendy and affordable footwear and clothing. Their business model focuses on online retail with fast delivery and secure payment options, supported by customer service based in France. Technically, the website leverages modern frameworks such as SvelteKit, integrates with Cloudflare for DNS and CDN services, and employs comprehensive tracking and marketing tools with user consent management, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforcement, clientTransferProhibited domain status, and cookie consent mechanisms, though improvements like DNSSEC and explicit security.txt publication could enhance trust further. Overall, the site is accessible, well-structured, and compliant with GDPR, offering a safe and professional user experience.

A

AFT Transport & Logistique

aft-dev.com

57

AFT Transport & Logistique is a well-established French organization dedicated to promoting training and employment in the transport and logistics sectors across France. The website serves multiple audiences including companies, individuals seeking orientation and training, pedagogical professionals, and institutional partners. It provides rich content including news, events, videos, and regional resources, reflecting a mature digital presence. Technically, the site is built on Drupal 8, integrates modern analytics tools such as Google Analytics and Microsoft Clarity, and is hosted via Gandi SAS. The site is mobile-optimized and accessible, with good SEO practices. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks advanced DNS security and security headers, representing areas for improvement. Privacy compliance is well addressed with cookie consent and a privacy policy in French. Overall, the site is professional, trustworthy, and serves its niche effectively.

Z

Zipchat Inc

zipchat.ai

68

Zipchat Inc operates the website zipchat.ai, offering an advanced AI chatbot platform tailored for e-commerce businesses. Their solution integrates sales, support, WhatsApp marketing, and data analytics into a single autonomous AI agent designed to enhance customer engagement and increase sales conversion rates. The company targets online retailers using platforms such as Shopify, WooCommerce, and Magento, positioning itself as a top-rated AI chatbot provider with strong client testimonials and measurable performance metrics. The business model is subscription-based SaaS, founded recently in 2023, focusing on small to medium-sized e-commerce enterprises. Technically, the website is built on Webflow CMS and leverages modern JavaScript libraries such as GSAP for animations and multiple analytics and tracking tools including Crazy Egg, Microsoft Clarity, Amplitude, Facebook Pixel, and Google Tag Manager. The site is mobile-optimized, SEO-friendly, and implements a cookie consent mechanism via Cookiefirst, indicating a moderate level of digital maturity and compliance awareness. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML content. However, explicit security headers and formal security policies are not present, and no incident response or vulnerability disclosure mechanisms are found. The WHOIS data is privacy-protected, which is typical for SaaS businesses, but limits direct verification of registrant details. Overall, the security posture is good but could be improved with additional headers and transparency. The overall risk assessment is low, with the website demonstrating professionalism, trustworthiness, and compliance with basic privacy standards. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and implementing vulnerability disclosure to further strengthen trust and compliance.

K

Klimahelden GmbH

klimahelden.eu

70

Envalor, formerly known as Klimahelden, is a German-based small enterprise specializing in AI-driven ESG automation solutions, focusing on CSRD reporting and CO₂ balance calculations. The company offers a SaaS platform that simplifies sustainability reporting for businesses subject to EU regulations. The website reflects a professional and consistent brand presence, targeting businesses needing compliance with sustainability directives. Technically, the site is built on WordPress with modern analytics and marketing integrations, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is partially met with cookie consent mechanisms but lacks explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

GSTC - Global Sustainable Tourism Council

gstcouncil.org

54

The Global Sustainable Tourism Council (GSTC) operates as an international non-profit organization focused on managing global standards for sustainable travel and tourism. It serves as the accreditation body for sustainable tourism certification, providing standards, certification accreditation, training programs, and membership services. The website targets a broad audience including hotels, tour operators, destinations, business travelers, certification bodies, consultants, and travelers. The organization is positioned as a key authority in sustainable tourism with a professional and comprehensive digital presence. Technically, the website is built on WordPress using the Avada theme framework, enhanced with multilingual support via WPML, and optimized for SEO with Yoast SEO Premium. It employs modern technologies including Google Tag Manager, LinkedIn Insight, and CookieYes for cookie consent management. The site is fast, mobile-optimized, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and integrates bot management services from Akamai and Cloudflare. The cookie consent mechanism is robust, offering detailed categories and user customization. However, the absence of a publicly accessible privacy policy, explicit contact information, and a vulnerability disclosure policy are notable gaps. WHOIS data is unavailable or privacy protected, which is common for non-profit organizations but limits domain trust analysis. Overall, the website presents a low-risk profile with strong professionalism and security posture but would benefit from enhanced transparency in privacy and contact disclosures to improve compliance and trustworthiness.