Security Directory

K

Krajowy Rejestr Opinii SA

trustmate.io

69

TrustMate.io is a Polish-based SaaS platform specializing in online reputation management and review collection for e-commerce and service businesses. The company, Krajowy Rejestr Opinii SA, founded in 2018, offers a comprehensive suite of tools including mediation, detailed ratings, surveys, and integrations with Google and social media to enhance customer trust and SEO performance. The website demonstrates a professional design with clear navigation and modern technology usage, including React and Next.js frameworks, supported by AWS hosting and multiple analytics and marketing tools such as HubSpot and Microsoft Clarity. Security posture is adequate with HTTPS enabled and no visible critical vulnerabilities, though improvements are recommended in DNSSEC and security headers. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the domain registration data aligns well with the business, indicating high legitimacy and trustworthiness.

N

NGN Netzgesellschaft Niederrhein mbH

ngn-mbh.de

62

NGN Netzgesellschaft Niederrhein mbH is a regional energy distribution network operator serving the Niederrhein area in Germany. The company is responsible for planning, building, and operating electricity, gas, water, and district heating networks, ensuring reliable and efficient energy supply. It also provides services such as network connection, energy feed-in, metering, and customer support through an online portal. The company operates under the SWK Konzern umbrella, indicating a solid market position within the regional energy sector. Technically, the website is built using modern web technologies including React and Next.js, with a responsive design optimized for mobile devices. The hosting appears to be managed via Vodafone IP infrastructure, and cookie consent is handled by Usercentrics, reflecting compliance with privacy regulations. The site demonstrates good SEO and accessibility practices, with fast performance and clear navigation. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not publicly available, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business identity, showing no privacy protection or suspicious registrations. Overall, NGN's website reflects a professional and trustworthy energy company with a strong regional presence. Strategic improvements in publishing security policies and incident response information would enhance trust and compliance. The site is safe for general audiences and aligns well with its business objectives.

G

Gesellschaft für Stadtreinigung und Abfallwirtschaft Krefeld mbH

gsak.de

63

Gesellschaft für Stadtreinigung und Abfallwirtschaft Krefeld mbH (GSAK) is a municipal service provider specializing in waste collection, street cleaning, and winter services in Krefeld, Germany. It operates as a subsidiary of SWK AG and EGN Entsorgungsgesellschaft Niederrhein mbH, positioning itself as a regional leader in environmental and waste management services. The website offers comprehensive information about their services, including container rental, bulky waste collection, and a mobile app for customer convenience. The target audience primarily includes private customers and businesses within Krefeld.

S

SWK AG

schluff-krefeld.de

59

Schluff Krefeld is a heritage railway service operated under the SWK AG umbrella, offering historical steam locomotive rides in Krefeld, Germany. The website targets tourists, families, and local residents interested in cultural and historical experiences. It provides ticket sales, event information, and community engagement opportunities. The business holds a solid local market position supported by community and partner organizations. Technically, the site is built on modern frameworks like React and Next.js, hosted likely via Vodafone IP infrastructure, and integrates privacy compliance tools such as Usercentrics CMP. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are absent. Overall, the site is professional, user-friendly, and trustworthy, with moderate user tracking balanced by consent mechanisms.

L

La Nouvelle République

lanouvellerepublique.fr

65

La Nouvelle République is a prominent regional news media outlet serving the Centre-Val de Loire and Poitou regions in France, providing live updates on politics, justice, economy, and other societal topics. The website is well-positioned as a trusted source for regional and national news, targeting a broad general audience interested in current events. Technically, the site employs modern web frameworks such as Next.js and React, integrates advanced advertising technologies including Prebid.js and Amazon APS, and uses multiple analytics and tracking services to optimize content delivery and monetization. Security-wise, the site enforces HTTPS, uses standard security headers, and implements consent management for GDPR compliance, although explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates a mature digital presence with good content quality and technical implementation, though improvements in transparency and contact availability could enhance trust further.

P

Projart

projart.fr

54

Projart is a small regional interior architecture firm based in Séléstat, France, serving the Grand-Est region. The company specializes in innovative interior design services, positioning itself as a creative and elegant alternative in its market niche. The website reflects a professional and consistent brand image with a clear focus on showcasing projects and providing contact avenues for collaboration. Technically, the site is built on a modern stack using Next.js and React, hosted on Vercel, and integrates Prismic as a CMS. The performance and mobile optimization are good, though accessibility and SEO could be improved. Security posture is moderate with HTTPS implied but lacking explicit security headers and formal policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy but could benefit from enhanced compliance and security transparency.

Beyond Aero is a small, innovative aircraft manufacturer specializing in electric and hydrogen-powered business jets, aiming to revolutionize private aviation with sustainable technologies. Their flagship product, 'One', is positioned as the world's first electric business aircraft using hydrogen propulsion. The website content is minimal and currently exhibits client-side errors, limiting user experience and content accessibility. Technically, the site uses modern frameworks like Next.js and React, but lacks visible SEO, accessibility, and performance optimizations. Security posture is weak due to missing security headers, absence of privacy and cookie policies, and no visible incident response or vulnerability disclosure information. The WHOIS data is unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the website requires significant improvements in content quality, security, and compliance to enhance business credibility and user trust.

S

Spline, Inc.

spline.design

62

Spline, Inc. is a technology company specializing in web-based 3D design software that enables real-time collaboration for creative teams and developers. Their platform offers tools for 3D modeling, animation, interactive experiences, and easy embedding into web projects. Positioned as an innovative SaaS provider, Spline targets designers and developers seeking accessible and collaborative 3D design solutions. The company was founded in 2019 and operates primarily from Iceland, leveraging modern web technologies and cloud hosting to deliver a performant and user-friendly experience. Their business model includes free browser-based tools, downloadable desktop apps, and enterprise offerings. The website reflects a professional brand with consistent messaging and strong trust signals including testimonials and customer logos.

NerdWallet is a leading personal finance website that provides consumers with comprehensive financial product comparisons and advice. The platform targets individuals seeking guidance on credit cards, loans, mortgages, investing, and money management. It operates primarily in the US market and is recognized for its user-friendly interface and extensive research-backed content. Technically, NerdWallet employs modern web technologies including React and Next.js, supported by robust analytics and marketing tools such as Segment, Google Analytics, and various tracking pixels. The website demonstrates excellent performance, mobile optimization, and SEO practices. From a security perspective, NerdWallet enforces HTTPS, implements key security headers, and maintains secure forms, reflecting a mature security posture. However, the absence of public WHOIS registrant data slightly reduces transparency but is mitigated by the professional presentation and comprehensive policies. Overall, NerdWallet presents a low-risk profile with strong business credibility and technical maturity.

Tesco Stores SR, a.s. operates a comprehensive retail supermarket website serving Slovakia, offering online grocery shopping, loyalty programs (Clubcard), and various promotional offers. The website is professionally designed with a strong brand presence and clear navigation, targeting general consumers in Slovakia. The business model focuses on retail sales both in physical stores and online, supported by a loyalty program to enhance customer retention. The site is part of the larger Tesco PLC group, a major player in the retail sector. Technically, the website uses modern frameworks such as React and Next.js, integrates analytics and performance monitoring tools like Google Analytics and New Relic, and implements good SEO and accessibility practices. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a mature digital infrastructure suitable for an enterprise retail business.

N

NerdWallet Wealth Partners

futureyouwealth.com

60

NerdWallet Wealth Partners is an online fiduciary financial advisory service offering fee-only wealth management, investment management, and financial coaching. The website is professionally designed with a modern tech stack including Next.js and Material UI, hosted likely on Vercel. It targets individuals seeking comprehensive, low-cost financial advice delivered virtually. The site demonstrates good SEO practices and clear branding consistent with NerdWallet's reputation. Security posture is solid with HTTPS and domain locking, though DNSSEC is not enabled and WHOIS data shows suspicious inconsistencies. Privacy and cookie policies are absent, which is a compliance gap. Overall, the site is trustworthy and professional but would benefit from enhanced privacy transparency and domain registration corrections.

S

Sharp Type

sharptype.co

67

Sharp Type is a specialized global digital type foundry offering custom and retail typefaces for various design applications including print, digital, and environmental design. The company targets designers, brands, and publications seeking high-quality and multiscript font solutions. The website demonstrates a mature technical infrastructure built on modern frameworks such as Next.js and React, hosted on Vercel, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security and incident response policies are not published. Privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. Overall, the website presents a professional and trustworthy digital presence with a high level of content quality and user experience.

C

Campus régional de cybersécurité et de confiance numérique Nouvelle-Aquitaine

campuscyber-na.fr

63

Campus régional de cybersécurité et de confiance numérique Nouvelle-Aquitaine is a regional cybersecurity center focused on enhancing digital trust and security in the Nouvelle-Aquitaine region of France. The organization provides cyber incident response, awareness, training, and support services primarily targeting individuals, small businesses (TPE), local associations, public entities, and SMEs. It collaborates with national cybersecurity bodies such as ANSSI and CERT-FR, and regional partners including government and development agencies. The website reflects a professional and authoritative presence with comprehensive content and official partnerships. Technically, the website is built on modern web technologies including React, Next.js, and Material-UI, ensuring fast performance, mobile responsiveness, and good accessibility. The site uses HTTPS with strong security headers, indicating a solid security posture. However, there is no visible cookie consent mechanism, which is a compliance gap in the EU context. Security-wise, the site demonstrates good practices such as secure external linking and no visible vulnerabilities or exposed sensitive data. Incident response contact information is clearly provided, including a dedicated email for cyber threat reporting. The absence of a security.txt file and explicit security policy page suggests room for improvement in transparency and vulnerability disclosure. Overall, the website is trustworthy, well-maintained, and serves as a credible regional cybersecurity resource. Strategic recommendations include implementing cookie consent, publishing a security policy and security.txt, and enhancing privacy compliance disclosures.

Z

zooplus SE

zooplus.pl

60

zooplus.pl is a professional e-commerce website operated by zooplus SE, specializing in pet food and accessories for a wide range of animals including dogs, cats, small pets, birds, and fish. The platform offers over 13,000 products and features subscription services, promotions, and a user-friendly interface tailored for the Polish market. The website demonstrates a mature digital infrastructure using modern technologies such as Next.js and React, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement and standard security headers, complemented by comprehensive privacy and cookie policies compliant with GDPR. However, the absence of WHOIS data limits full domain legitimacy verification, though the website's professional presentation and trust signals mitigate concerns. Overall, zooplus.pl is a credible and well-maintained online retail platform with a strong market position in Poland.

dream.jobs is an AI-powered job search platform that enables users to upload their CVs and receive personalized job opportunities. The platform also offers services for employers to post jobs, positioning itself as a modern career portal leveraging AI technology. The website uses modern frontend technologies such as React, Next.js, and Material-UI, providing a good user experience with responsive design and clear navigation. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and documented incident response or vulnerability disclosure policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the platform appears legitimate and professional, targeting job seekers and employers in the technology sector.

F

iSport Fantasy

fantasyliga.cz

49

iSport Fantasy operates as a Czech fantasy sports platform allowing users to create teams and compete for prizes. The website targets sports fans interested in fantasy leagues, offering a straightforward user experience with a focus on engagement through contests. The platform is built on modern web technologies including Next.js and React, hosted on AWS infrastructure, and integrates Google Analytics for user behavior tracking. While the site is accessible and functional, it lacks published privacy and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enforced and external consent management, but could be improved by adding security headers and incident response information. Overall, the platform presents a legitimate and consistent business presence with room for enhanced compliance and security maturity.

PlayHT is a mature and reputable SaaS company specializing in AI voice generation and text-to-speech technology. Founded in 2016, it offers a comprehensive platform with over 200 realistic AI voices across 30+ languages, targeting creators, enterprises, and developers. The company positions itself as a leader in the AI voice generation market, supported by strong branding and partnerships with well-known companies. Technically, the website is built on modern frameworks such as Next.js and React, hosted on Cloudflare and AWS infrastructure, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though some security headers could be improved. Privacy compliance is good with clear privacy and terms of service pages, though cookie consent mechanisms are not evident. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

C

Clay Global

clay.global

69

Clay Global is a professional UX/UI design and branding agency based in San Francisco, serving clients worldwide. They specialize in creating digital products, websites, design systems, and brand experiences, with a strong portfolio including major clients such as Coinbase, Uber, Slack, and Amazon. Their business model focuses on service delivery in design and development, supported by an in-house content production studio and expertise in generative AI-powered UX design. Technically, the website is built on modern frameworks like Next.js and React, uses Sanity CMS, and integrates analytics tools such as Google Tag Manager and Ahrefs Analytics. The site is well-optimized for performance, mobile responsiveness, and SEO, with excellent design and user experience. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and publicly available security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website presents a high level of professionalism and trustworthiness, with minor areas for improvement in privacy and security transparency.

C

Chambres de Métiers et de l'Artisanat (CMA)

unmetierdeouf.fr

65

Un Métier de Ouf is a French educational platform launched in 2020, dedicated to promoting artisan trades such as mechanics, carpentry, cooking, and aesthetics. It targets young people and apprentices seeking career guidance in artisan professions. The website is affiliated with CMA France, a reputable organization supporting artisan trades. The platform offers video content and career resources to engage its audience and facilitate discovery of trades. Technically, the site is built using modern React and Next.js frameworks, hosted by OVH, and integrates analytics tools like Matomo, TikTok, and Facebook pixels. Privacy and cookie consent mechanisms are implemented, reflecting good compliance practices. Security posture is solid with HTTPS and no exposed vulnerabilities, though security headers and incident response policies could be improved. Overall, the site presents a professional, trustworthy, and user-friendly experience with clear branding and consistent content quality.

N

National Theatre

narodni-divadlo.cz

51

The National Theatre in Prague is a prestigious cultural institution representing the Czech Republic's national identity and European cultural heritage. The website provides comprehensive information about upcoming theatre performances across various genres including drama, ballet, opera, and multimedia shows. It offers ticket sales, subscriptions, and an e-shop for related merchandise. The institution maintains partnerships with prominent companies and media outlets, reinforcing its market position as a leading national theatre. Technically, the website is built using modern web technologies such as React and Next.js, with integration of Google Analytics, Google Tag Manager, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. However, some areas such as explicit privacy policy and security headers could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, but the presence of official partners and professional content supports trustworthiness. Overall, the website is a well-maintained digital presence for a major cultural institution, with moderate to good security posture and privacy compliance. Strategic improvements in transparency, security headers, and contact information would enhance trust and compliance.

G

GoDaddy Operating Company, LLC

vakita.com

73

The website is a professionally designed domain aftermarket sales landing page operated by GoDaddy Operating Company, LLC. It offers the domain vakita.com for sale with options to buy outright or lease to own, supported by secure payment methods and transaction assistance. The site leverages modern web technologies including React and Next.js, hosted on GoDaddy infrastructure, and demonstrates good digital maturity with responsive design and SEO optimization. Security posture is strong with HTTPS and secure payment integrations, though explicit security headers and terms of service pages are absent. Privacy and cookie policies are present and GDPR compliant. Overall, the site is trustworthy and well-positioned in the domain aftermarket e-commerce sector.

M

Město Vítkov

kulturavitkov.cz

55

Kulturavitkov.cz is a municipal cultural event portal for the town of Vítkov in the Czech Republic. It provides residents and visitors with information about local cinema screenings, concerts, theater performances, exhibitions, and other cultural activities. The platform integrates online ticket sales through a partner e-commerce site, facilitating easy access to event participation. The website is well-branded with official municipal logos and links to verified social media pages, reinforcing its local government affiliation. Technically, the site is built using modern web technologies including React and Next.js, with Material UI for styling. It is mobile optimized and provides a good user experience with clear navigation and event information. Performance is moderate, and the site uses HTTPS with appropriate security headers, indicating a solid security posture. However, the absence of a cookie consent mechanism and lack of visible privacy or incident response policies suggest areas for compliance improvement. Security-wise, the site enforces HTTPS and includes standard security headers, but lacks explicit vulnerability disclosure or incident response information. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not contradict the site's municipal nature. Overall, the site is trustworthy and serves its purpose effectively, though it could enhance privacy compliance and transparency. The overall risk is low given the nature of the site and its content, but strategic improvements in privacy and security policy disclosures are recommended to strengthen user trust and regulatory compliance.

I

ilévia

ilevia.fr

63

ilévia operates as the primary public transportation provider for the Métropole Européenne de Lille, offering comprehensive bus, metro, tram, and bike-sharing services. The website serves residents and visitors with route planning, schedules, ticketing, and news about local events, positioning ilévia as a key mobility facilitator in the region. The digital presence is modern, leveraging Next.js and React frameworks, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS, security headers, and script nonce usage, though the absence of WHOIS data and explicit security policies slightly reduce transparency. Overall, ilévia's website reflects a professional, trustworthy, and user-centric platform supporting urban mobility.

F

Fondation du patrimoine

fondation-patrimoine.org

59

Fondation du patrimoine is a leading French non-profit organization dedicated to the preservation and restoration of cultural heritage across France. The website serves as a platform to engage donors, volunteers, and project owners by providing information about restoration projects and facilitating donations. The organization holds a strong market position as a primary actor in heritage preservation, targeting a broad audience interested in cultural and historical conservation. Technically, the website is built using modern web technologies including React and Next.js, with content likely managed via a headless CMS such as Strapi. The site demonstrates good digital maturity with responsive design, SEO optimization, and integration of Google Tag Manager for analytics and marketing purposes. Performance is moderate, with good mobile optimization and accessibility features. From a security perspective, the site enforces HTTPS, implements key security headers, and avoids exposing sensitive data. However, it lacks a publicly available security policy and incident response information, which are recommended for transparency and trust. The absence of WHOIS data limits domain registration verification, slightly reducing trustworthiness. Overall, the website presents a professional, trustworthy, and user-friendly interface aligned with its non-profit mission. Strategic improvements in security transparency and domain registration disclosure would enhance its credibility and compliance posture.

D

Divadlo Husa na provázku

provazek.cz

62

Divadlo Husa na provázku is a well-established cultural theatre organization based in Brno, Czech Republic, with a history dating back to 1967. The institution focuses on contemporary theatrical performances and cultural projects, serving a general audience interested in arts and culture. The website reflects a professional and consistent brand presence with clear contact information and active social media engagement. Technically, the site is built on modern frameworks such as Next.js and Sanity CMS, providing a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and privacy policy documentation are missing. The absence of WHOIS data reduces transparency but does not significantly detract from the site's legitimacy given the strong partner ecosystem and content quality.

A

ABMI Engineering

abmi-engineering.com

68

ABMI Engineering is a well-established French engineering company founded in 2002, specializing in multiple industrial sectors including nuclear, rail, aerospace, health, and manufacturing. The company offers a broad range of engineering services such as design, industrialization, supply chain management, robotics, and IoT solutions. Their market position is supported by a diversified sector presence and partnerships with major industry players. Technically, the website is built on a modern Next.js framework, optimized for performance and mobile responsiveness, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website projects a professional and trustworthy image with strong business credibility and technical maturity.

T

Typeform

videoask.it

55

VideoAsk by Typeform is a technology-driven SaaS platform specializing in interactive video communication tools designed to enhance business conversations and relationships at scale. The platform offers services such as video funnels, AI-powered chatbots, multimedia messaging, and video forms, targeting businesses in recruitment, sales, marketing, and customer support sectors. The website demonstrates a strong market position with over 10,000 companies as customers and consistent branding aligned with its parent company, Typeform. Technically, the website employs a modern tech stack including React and Next.js, with integrations for cookie consent (OneTrust), A/B testing (Optimizely), and analytics (Google Tag Manager). The site is well-optimized for performance, mobile responsiveness, and accessibility, providing an excellent user experience. Security best practices are observed with HTTPS enforcement and multiple security headers, although explicit security policies and incident response information are not publicly available. The security posture is strong overall, with no detected vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with consent mechanisms aligned with GDPR requirements. However, the absence of WHOIS data and direct contact information slightly reduces business credibility. No vulnerability disclosure or security.txt files were found, indicating room for improvement in transparency and security communication. Overall, VideoAsk presents a professional, secure, and privacy-conscious platform with a solid business foundation. Strategic recommendations include publishing detailed security policies, providing direct security contacts, and enhancing transparency through vulnerability disclosure programs to further strengthen trust and compliance.

Swiftask is a technology company providing a unified AI workspace platform designed to empower modern businesses with over 80 AI models and tools accessible via a single subscription. The platform emphasizes ease of use, enabling users to create and deploy AI agents without technical expertise, and focuses on security and governance to protect enterprise data. The company positions itself as a cost-effective alternative to larger AI platforms, targeting small to medium businesses and enterprises primarily in France. Technically, the website is built on modern frameworks such as React and Next.js, with integrations for analytics and marketing tools like Google Tag Manager and Facebook Pixel. Security posture is strong with HTTPS and security headers, though some improvements are recommended in cookie consent and incident response transparency. Overall, the website is professional, well-branded, and trustworthy, with clear business credibility and good user experience.

M

Mangopay

mangopay.com

63

Mangopay is a well-established fintech company specializing in providing wallet-based payment infrastructure tailored for multi-party payment flows. Their platform supports multi-currency accounts, virtual IBANs, and flexible payment and payout solutions, targeting marketplaces, SaaS platforms, financial platforms, and other digital businesses. The company has a strong market presence with notable clients and industry recognition, positioning itself as a top-tier payment infrastructure provider. Technically, the website is built on modern frameworks such as Next.js and React, with integrations like Google Tag Manager and HubSpot forms, ensuring a fast, mobile-optimized, and accessible user experience. Security-wise, the site enforces HTTPS and includes some security headers but lacks DNSSEC and explicit security policies or incident response contacts. Privacy compliance is limited due to the absence of visible privacy and cookie policies. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

G

Gan Jing World - Technology for Humanity | Video & Movie Streaming

ganjing.com

65

Gan Jing World is a media and video streaming platform focused on providing users with the ability to watch, share, and create video content across desktop, mobile, and TV apps. The platform emphasizes privacy, kindness, and non-addictive algorithms, targeting a general audience interested in news, entertainment, and social interaction. The website is professionally designed with consistent branding and offers a wide range of content including news, talk shows, music, and movies. Technically, the site is built using modern web technologies such as React and Next.js, hosted on CloudOkyo infrastructure, and integrates Google Fonts and CookieYes for privacy compliance. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, though explicit security policies and incident response contacts are not publicly available. The domain WHOIS data is unavailable, which reduces transparency but the website's professional appearance and privacy compliance suggest moderate legitimacy. Overall, the site presents a good balance of content quality, technical implementation, and privacy compliance, suitable for a media streaming business.

T

Tamda Group

tamdamedia.eu

53

Tamda Media is a Vietnamese language media platform primarily serving the Vietnamese community in the Czech Republic and Europe. The website offers news articles, video content, and community information, positioning itself as a niche media outlet focused on diaspora engagement. The business is medium-sized, founded around 2020, and operated by Tamda Group. The site uses modern web technologies including Next.js and React, hosted via AWS Cloudfront CDN, and integrates Google Analytics for user tracking. The design is professional and mobile-optimized, providing a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal incident response or vulnerability disclosure mechanisms. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and safe for general audiences but would benefit from enhanced security and compliance measures.

C

Cineville

cineville.fr

51

Cineville is a regional cinema chain operating multiple cinema locations across France, focusing on providing movie screening services and cinema programs to a general audience. The website leverages modern web technologies such as Next.js and React, integrating analytics tools like Microsoft Clarity and Facebook Pixel to monitor user engagement. The site is mobile-optimized and presents a professional design with clear navigation, although it lacks explicit privacy and cookie policies which are critical for GDPR compliance. Security posture is moderate with HTTPS enabled but missing key security headers and no visible incident response or security policy information. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and structure suggest a legitimate business. Strategic improvements in privacy compliance, security headers, and domain registration transparency are recommended to enhance trust and security.

V

vshosting~

vshosting.cz

63

vshosting~ is a Czech-based managed cloud and dedicated server provider established in 2006, offering high-performance enterprise cloud solutions tailored to client needs. They provide a broad range of services including GPU servers, private cloud, managed servers, and CDN, supported by 24/7 senior certified administrators. The company positions itself as a leading European provider with infrastructure supporting over 40,000 projects, emphasizing security, availability, and scalability. Their technical infrastructure leverages modern web technologies such as Next.js and React, with strong SEO and mobile optimization. Security posture is robust with HTTPS, security headers, and CAPTCHA protections, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a professional, trustworthy, and technically mature organization with a strong market presence in the technology sector.

M

Monext

payline.com

71

Monext is a French payment solutions provider offering a comprehensive suite of services including online, in-store, and omnichannel payment processing, as well as card issuance and acquisition services. The company targets businesses across various sectors such as retail, travel, events, and mobility, positioning itself as a reliable and customer-centric partner in the European payment ecosystem. The website reflects a mature digital presence with professional design, detailed product offerings, and customer success stories that reinforce its market position. Technically, the website is built on modern frameworks like Next.js and React, leveraging Prismic CMS for content management. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although accessibility could be improved further. Performance is moderate, with efficient use of resources and lazy loading of images. From a security perspective, the site enforces HTTPS and includes several important security headers, indicating a strong baseline security posture. However, explicit security policies, incident response plans, and vulnerability disclosure mechanisms are not publicly documented, representing areas for improvement. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Overall, the website and business appear legitimate and professional, though the absence of WHOIS data and direct contact information slightly reduce trust signals. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility, and providing clearer contact channels to improve user trust and compliance.

T

Tamda Foods

tamda.eu

53

Tamda Foods is a subsidiary of the TAMDA Group, operating primarily in the retail and e-commerce sectors focused on food products for Vietnamese-speaking consumers in Europe. The website presents a professional and consistent brand image with clear navigation, membership programs, and promotional campaigns. The business model revolves around retail sales, promotions, and customer engagement through membership and store locator services. Technically, the site is built on modern frameworks such as Next.js and React, with integrations for Google Tag Manager and Facebook Pixel for analytics and marketing purposes. Hosting is provided by OVH SAS, a reputable registrar and hosting provider. Security posture is adequate with HTTPS enabled but lacks explicit security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible GDPR consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced security and privacy transparency.

M

Mon Restau Responsable®

monrestauresponsable.org

59

Mon Restau Responsable® is a French initiative focused on promoting sustainable and healthy collective catering through a participative and free self-assessment platform. It targets collective restaurants in schools, universities, companies, and medico-social sectors, helping them improve ecological and social practices. The website is well-positioned in the French market with over 2300 engaged restaurants and strong partnerships with recognized organizations such as FNH and Restau'Co. Technically, the site uses modern frameworks like Next.js and Chakra UI, hosted on Vercel, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response information are not published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, slightly reducing domain trust. Strategic recommendations include publishing security policies and vulnerability disclosure information to enhance trust further.

S

Shen Yun Zuo Pin Inc.

shenyuncreations.com

59

Shen Yun Creations operates as a specialized streaming platform offering premium performing arts content centered on Shen Yun's dance and music productions. The platform targets a culturally interested audience seeking on-demand access to traditional Chinese performing arts, masterclasses, and behind-the-scenes content. The business model is subscription-based with options for individual video purchases, positioning itself in a niche cultural media market. Technically, the website leverages modern web technologies including React and Next.js, with cloud-based media hosting and integration of Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, with a clear consent mechanism. However, the absence of WHOIS registration data raises concerns about domain legitimacy, suggesting either a new registration or privacy protection. Overall, the site is trustworthy and professional but would benefit from enhanced transparency in domain registration and additional security headers.

G

GoDaddy Operating Company, LLC

cea.tech

11

The website is a domain sales landing page for the domain cea.tech, operated by GoDaddy Operating Company, LLC, a leading global domain registrar and marketplace. The platform offers multiple purchasing options including buy now, lease to own, and making an offer, targeting businesses and individuals seeking premium domain names. The site leverages modern web technologies such as React and Next.js, hosted on GoDaddy infrastructure, providing a fast and responsive user experience. Security is robust with HTTPS enforced, security headers present, and secure payment assurances. Privacy and cookie policies are available through GoDaddy's main site, indicating compliance with GDPR and other regulations. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity.

F

Film at Lincoln Center

filmlinc.org

63

Film at Lincoln Center (FLC) is a well-established nonprofit organization founded in 1969 dedicated to celebrating cinema as an essential art form and fostering a vibrant film culture. The organization operates a professional website that provides detailed information about film screenings, festivals such as the New York Film Festival (NYFF), membership programs, and cultural events. The site targets cinema enthusiasts and the broader film community, offering ticket sales and membership benefits to sustain its nonprofit mission. Technically, the website leverages modern web technologies including React and Next.js frameworks, hosted likely on Vercel with Cloudflare CDN for performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured data enhancing discoverability. Security best practices are observed with HTTPS enforcement and multiple security headers, and privacy compliance is supported by clear privacy and cookie policies with consent mechanisms. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the WHOIS data is unavailable due to a malformed response, which limits domain registration insights. Despite this, the website's professional presentation, consistent branding, and presence of trust indicators support its legitimacy. No WAF or blocking mechanisms were detected, allowing full content access. Overall, FLC's website represents a mature digital presence for a nonprofit cultural institution with strong security and privacy practices. Strategic recommendations include publishing a vulnerability disclosure policy and incident response contacts to further enhance trust and security transparency.

P

PPF a.s.

ppf.cz

72

PPF Group is a well-established international investment group founded in 1991 in the Czech Republic, operating in 25 countries across Europe, North America, and Asia. The company manages a diversified portfolio spanning telecommunications, media, financial services, e-commerce, real estate, biotechnology, and mobility sectors. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting investors, partners, and the public. Technically, the site uses modern frameworks such as Next.js and React, supported by DatoCMS, and integrates Google Tag Manager and reCAPTCHA Enterprise for analytics and security. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly disclosed. The domain WHOIS data is privacy protected, consistent with European domain registration norms, and the website content aligns with the company's stated business profile. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

M

Mailmojo AS

mailmojo.no

51

Mailmojo AS is a Norwegian technology company specializing in email newsletter and SMS marketing solutions. With 19 years of experience and over 1100 paying customers, it holds a strong position in the Norwegian digital marketing sector. The company offers a SaaS platform that enables businesses to create, segment, and automate marketing campaigns with a focus on local data storage and GDPR compliance. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting Norwegian businesses seeking effective communication tools. Technically, the website leverages modern frameworks such as Next.js and React, integrates advanced analytics tools like Segment, PostHog, and Piwik Pro, and uses Sanity CMS for content management. The platform demonstrates good performance, accessibility, and SEO practices, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement and standard security headers, with local data hosting in Norway enhancing privacy assurances. The security posture is strong with no evident vulnerabilities or exposed sensitive data. However, the site lacks a dedicated security policy and incident response information, which could be improved. Privacy compliance is well addressed with clear privacy and cookie policies, consent mechanisms, and GDPR adherence. Business credibility is supported by transparent contact details, customer testimonials from reputable organizations, and consistent branding. Overall, Mailmojo presents a trustworthy, professional, and secure online presence suitable for its target market. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure guidelines to further enhance trust and compliance.

K

kode24.no / Aller X (Aller Media)

kodejobb.no

62

kodejobb.no is a Norwegian job listing portal focused on developer jobs, operated by Aller Media through its Aller X division. The site leverages a modern technical infrastructure built on Next.js and Sanity CMS, delivering a fast, mobile-optimized, and accessible user experience. It serves a niche audience of developers in Norway, providing curated job listings, salary calculators, and career advice content. The website demonstrates strong business credibility with clear contact information, professional design, and partnerships with reputable companies. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is good, with comprehensive privacy and cookie policies linked, and minimal user tracking via Plausible Analytics. Overall, kodejobb.no is a trustworthy and professionally managed platform with a clear market position in Norwegian developer recruitment.

Le Pot Commun is a French fintech platform operated by Unty, specializing in online collective money pooling for occasions such as birthdays, departures, and solidarity causes. The platform offers a user-friendly, secure, and free-to-use service with optional fees on certain payment methods. It holds regulatory registration as an Intermédiaire en Financement Participatif (IFP) under ORIAS, enhancing its legitimacy. Technically, the website leverages modern frameworks like React and Next.js, integrates multiple analytics and marketing tools, and enforces strong security practices including HTTPS and 3D Secure payments. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. No blocking or WAF challenges were detected, and the site demonstrates excellent design, navigation, and trust indicators. However, no public vulnerability disclosure or incident response contacts were found, which could be improved for transparency and security readiness.

A

Ascensio System SIA

onlyoffice.com

70

ONLYOFFICE, owned by Ascensio System SIA, is a well-established technology company founded in 2007, offering a comprehensive and secure online office suite compatible with MS Office formats. The company targets businesses and developers, providing SaaS and self-hosted solutions for document editing, collaboration, and AI-powered virtual assistants. The website demonstrates a strong market position with over 15 million users and numerous reputable customers. Technically, the site is built on modern frameworks like Next.js, hosted on AWS, and integrates various collaboration and communication tools, ensuring a fast and mobile-optimized user experience. Security is a priority, with HTTPS, multiple encryption levels, open-source transparency, and compliance with GDPR and HIPAA standards. However, DNSSEC is not enabled, and no cookie consent mechanism was detected, which are areas for improvement. Overall, the website is professional, trustworthy, and technically mature, reflecting a credible and secure business presence.

S

Storck

dickmanns-gewinnspiel.de

67

The website www.dickmanns-gewinnspiel.de is a promotional campaign platform for Storck's Super Dickmann's confectionery product, offering consumers in Germany a chance to win cashback and free products through a contest mechanism. The site is professionally designed with consistent branding and clear navigation, targeting retail consumers interested in confectionery promotions. Technically, the site is built on a modern Next.js framework with React, ensuring good mobile optimization and moderate performance. Security posture is adequate with cookie consent mechanisms and no visible vulnerabilities, though explicit security policies and headers could be improved. Privacy compliance is strong with GDPR-aligned policies and consent banners. Overall, the domain appears legitimate with brand protection via Brandshelter nameservers, and the site links to multiple official Storck partner domains. No adult or questionable content is present, making it safe for general audiences.

D

Display Europe

displayeurope.eu

61

Display Europe is a European media platform that aggregates news and media content from various European sources, targeting media professionals, researchers, and the general public interested in European affairs. The platform offers search and filtering capabilities to access a wide range of media articles from partner sources. Technically, the website is built using modern web technologies including React and Next.js, with Apollo GraphQL for data management and Matomo for analytics. The site demonstrates good digital maturity with responsive design and moderate performance. Security-wise, the site enforces HTTPS, includes essential security headers, and avoids exposing sensitive data. However, it lacks a cookie consent mechanism and explicit security or incident response policies, which are areas for improvement. Overall, the website is trustworthy and professionally maintained, with a strong European identity and co-funding from the European Union.

B

Be Bouncy

bebouncy.com

9

Be Bouncy is an AI-driven social media management platform designed to simplify and optimize social media growth for creators, SMBs, and agencies. The platform offers a suite of tools including smart scheduling, analytics, automated moderation, and gamified team management, all powered by its AI agent Nimbus. The website demonstrates a modern technical infrastructure built on React and Next.js, providing a responsive and user-friendly experience. However, the absence of WHOIS registration data and some minor issues such as a suspicious YouTube link domain and lack of cookie consent mechanisms slightly reduce trustworthiness. Security posture is moderate with HTTPS implied but no explicit security headers detected. Overall, the platform presents a professional and promising solution in the social media SaaS market, but domain legitimacy verification and enhanced privacy compliance are recommended.

Rijksdienst voor Ondernemend Nederland (RVO) is a Dutch government agency dedicated to supporting sustainable and strong economic development. The agency provides a wide range of services including information dissemination, advisory support, financing options, and networking opportunities to entrepreneurs, individuals, governments, and knowledge institutions. The website reflects a mature digital presence with comprehensive content tailored to its diverse audience, emphasizing sustainability, innovation, and international business growth. The agency's market position is that of a key national facilitator for economic and environmental initiatives in the Netherlands.

K

kode24-dagen

kode24-dagen.no

58

kode24-dagen is a Norwegian developer conference focused on web developers, scheduled for March 27, 2025, in Oslo. The event offers keynote talks, networking, and evening entertainment, targeting the Norwegian web development community. The website is professionally designed, mobile-optimized, and uses modern web technologies including Next.js and Sanity CMS, hosted on Vercel. The presence of reputable sponsors such as Telenor and Gjensidige enhances its credibility. However, the site lacks visible privacy and cookie policies, and no WHOIS data is available due to privacy protection or registry restrictions. Security headers are not explicitly detected, suggesting room for improvement in security posture.

OLDstars is a Czech student theater group that organizes theatrical performances, festivals, and acting courses primarily in Prague and surrounding regions. Their website showcases a rich program of upcoming performances, news, and educational opportunities, targeting students and theater enthusiasts. The site is built on modern web technologies such as Next.js and React, providing a responsive and user-friendly experience. Security posture is good with HTTPS and some security best practices, though some HTTP security headers could be improved. Privacy and cookie policies are not clearly presented, which is a compliance gap. WHOIS data is unavailable, which reduces domain trust but the professional content and social media presence support legitimacy. Overall, the site is a well-maintained cultural platform with room for enhanced privacy and security transparency.