Security Directory

N

netcup GmbH

netcup.de

74

netcup GmbH is a reputable German web hosting provider specializing in web hosting, dedicated servers, VPS, and domain registration services. Established in 2008, the company serves a broad audience of businesses and private customers primarily in Germany and Europe. The website reflects a mature digital presence with modern technologies such as Vue.js and Nuxt.js, ensuring fast performance and excellent mobile optimization. Security is a key focus, evidenced by ISO 27001 certification, robust HTTPS implementation, and comprehensive security headers. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, netcup demonstrates a high level of professionalism, trustworthiness, and technical maturity.

Extrema S.r.l. is an Italian company specializing in manufacturing mobility and accessibility solutions such as servoscala, montascale, and piattaforme elevatrici. With over 25 years of experience and a presence in more than 50 countries, Extrema positions itself as a trusted provider focused on improving quality of life through innovative and customizable products. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to individuals and organizations seeking barrier-free mobility solutions. Technically, the site leverages modern frameworks like Nuxt.js and Vue.js, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response information are not publicly detailed. Overall, the site demonstrates high business credibility and compliance with privacy regulations, including GDPR, supported by clear privacy and cookie policies.

D

dubaihop s.r.o.

dubaihop.com

55

DubaiHop is a Slovakian-based digital travel service platform focused on providing exclusive deals, luxury experiences, and personalized travel itineraries for Dubai and the Emirates. The company operates a professional website and mobile app, offering services such as flexible flight tickets, hotel upgrades, airport lounge access, and multicity travel options. The business is positioned as a niche player in the luxury travel market with partnerships including Emirates, Etihad, and Dubai Tourism. Technically, the website is built on modern frameworks like Nuxt.js and Tailwind CSS, with good mobile optimization and fast performance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and a published security policy are absent. WHOIS data for the domain is unavailable, which raises some concerns about domain legitimacy despite the professional presentation and clear business affiliations. Overall, the site is trustworthy and well-designed but would benefit from improved transparency on domain registration and enhanced security disclosures.

C

Codeblocks

codeblocks.sk

59

Codeblocks is a small Slovak technology company specializing in software development and innovative digital solutions. Their website showcases a professional portfolio of projects for clients such as Pelikan and United Fashion Group, highlighting their expertise in PHP, Symfony, Vue.js, and Magento among other technologies. The company emphasizes agile methodologies, continuous learning, and a collaborative team culture. Technically, the website is modern, fast, and mobile-optimized, leveraging a rich tech stack including Astro, Tailwind CSS, and various backend databases. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though explicit security headers and policies are absent. Privacy and cookie policies are missing, representing compliance gaps. Contact information is not explicitly provided on the main site, limiting direct communication channels. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

H

HOKR

hokr.cz

49

The website represents HOKR, a company specializing in supplying high-quality products and services for professional agriculture in the Czech Republic. The site is minimalistic, primarily serving as a redirect with language options, and lacks detailed content or contact information. Technically, it uses modern frameworks such as Nuxt.js and Tailwind CSS, with Google Tag Manager integrated for analytics. However, the site lacks critical privacy and security policies, contact details, and security headers, which limits trust and compliance. The WHOIS data is consistent with the business claims, supporting legitimacy. Overall, the website's digital maturity is basic, with room for significant improvements in content, security, and compliance.

The website karolinka.cz serves as the official municipal portal for the town of Karolinka in the Czech Republic. It provides residents and tourists with up-to-date information on local events, cultural and sports activities, official announcements, and municipal services. The site targets local citizens and visitors, positioning itself as a trusted source of community information. Technically, the site is built using modern web technologies including Vue.js and Nuxt.js, styled with Tailwind CSS, and enhanced with interactive components like Swiper.js and Leaflet.js for maps. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the site uses HTTPS and shows no signs of critical vulnerabilities, but lacks explicit security headers and formal privacy and cookie policies, which are important for compliance and user trust. Overall, the domain is legitimate with a long registration history consistent with a municipal entity. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and adding incident response and vulnerability disclosure information to improve compliance and security posture.

G

Gewerkschaft der Polizei (GdP)

gdp.de

62

The Gewerkschaft der Polizei (GdP) is the largest police union globally, representing police employees primarily in Germany. The website serves as the official online presence of the GdP Bundesvorstand (Federal Board), providing information about the union and its services. The target audience is police personnel seeking membership and professional representation. The website is built on modern frontend technologies such as Vue.js and Nuxt.js, hosted behind Cloudflare DNS for performance and security. The design is professional and mobile-optimized, offering a good user experience with clear navigation and relevant content. However, the site lacks visible privacy and cookie policies, security headers, and incident response information, which are critical for compliance and trust. No analytics or advertising scripts were detected, indicating minimal user tracking.

F

Forendors

forendors.cz

64

Forendors is a Czech-based digital platform that connects content creators with their audiences, providing tools for community building and content monetization. The platform supports creators through a web interface and mobile applications available on iOS and Android, enhancing user engagement with notifications and offline content access. The business positions itself as a niche player in the media sector, focusing on creator empowerment and audience interaction. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted likely on DigitalOcean infrastructure, and integrates Google Tag Manager for analytics and marketing. Security measures include HTTPS enforcement and standard security headers, though no explicit security policy or vulnerability disclosure mechanisms are present. Privacy compliance is well addressed with comprehensive GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data is a notable anomaly, suggesting privacy protection or registration issues, but the professional site content and social media presence support legitimacy. Overall, Forendors demonstrates a solid digital maturity with room for improvement in transparency and security disclosures.

I

Istropolitana Ogilvy

istropolitana.sk

56

Istropolitana Ogilvy is a Slovak marketing and advertising agency providing creative and strategic marketing services. The website presents a professional digital presence with a modern tech stack including Vue.js and Nuxt.js frameworks. The site is well-optimized for mobile and includes standard tracking tools such as Google Analytics and Facebook Pixel. Security posture is strong with HTTPS and security headers properly configured, though explicit security and privacy policies are absent. The absence of contact information and formal policies slightly reduces privacy compliance and business credibility scores. Overall, the website is trustworthy and professionally maintained, serving a business audience in the marketing sector.

H

HelpKit – Build your Knowledge Base with the ease of Notion

helpkit.so

55

HelpKit is a small technology-focused SaaS company that provides a platform to turn Notion documents into professional knowledge bases and self-service help centers. The business targets developers and companies seeking no-code solutions for documentation and customer support. The website is well-designed, mobile-optimized, and uses modern web technologies including Nuxt.js, Tailwind CSS, and integrates analytics and marketing tools such as Plausible Analytics, Google Tag Manager, and MailerLite. Despite the professional presentation, the absence of WHOIS registration data and lack of explicit privacy or cookie policies reduce the overall trustworthiness and compliance posture. Security practices are generally good with HTTPS and no exposed sensitive data, but security headers and incident response contacts are missing. Overall, the website presents a credible business offering with room for improvement in transparency and security documentation.

P

Perfect Planet

plnt.cz

61

Perfect Planet is a Czech-based creative agency specializing in brand design, visual identity development, and web application development. Established in 2015, the company has a solid market position with notable projects including university branding and a presidential campaign. The website reflects a professional and modern digital presence built on Vue.js and Nuxt.js frameworks, hosted with Cloudflare DNS services. The site is well-designed, mobile-optimized, and provides clear navigation and content relevant to its target audience of clients seeking branding and web development services. However, the site lacks explicit privacy, cookie, and terms of service policies, which impacts its compliance posture. Security-wise, the site uses HTTPS and Cloudflare DNS but does not present security headers or incident response information, indicating room for improvement in security best practices. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

Č

Česká komora architektů

diplom.ky

54

The website diplom.ky represents the official platform for the 26th edition of the 'Diplomky' competition, organized by the Czech Chamber of Architects (Česká komora architektů). It serves as a professional showcase and competition for diploma theses of architects, landscape architects, and urban planners from accredited Czech faculties. The site targets recent graduates, academic professionals, and the broader public interested in architectural education and development. The business model focuses on organizing and promoting this competition to foster professional growth and public awareness in the architectural sector. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, ensuring a responsive and user-friendly experience with moderate performance. Google Analytics is used for visitor tracking, although privacy compliance measures like cookie consent and privacy policies are missing. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal security policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and security compliance.

Č

Česká komora architektů

cka.cz

63

Česká komora architektů is a legally established self-governing professional organization in the Czech Republic that unites authorized architects, landscape architects, and urban planners. The website serves as a comprehensive portal offering information about membership, professional services, architectural competitions, education, and legislative matters relevant to the architectural profession. It targets professionals in architecture and related fields, as well as public administration and clients seeking architectural services. The organization holds a strong national position as the official chamber for architects in the Czech Republic. Technically, the website is built using modern JavaScript frameworks such as Vue.js and Nuxt.js, providing a responsive and accessible user experience. The site is well-structured with good SEO practices and mobile optimization. Performance is moderate with no significant technical debt observed. However, there is no detected CMS or hosting provider information. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks several recommended security headers and explicit privacy and cookie policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trustworthiness, and no incident response or vulnerability disclosure information is published, which are areas for improvement. Overall, the website is professional, trustworthy, and content-rich, but would benefit from enhanced transparency in domain registration, improved privacy compliance, and stronger security header implementation to elevate its security posture and user trust.

B

Boutiq Development s.r.o.

lario.cz

42

LARIO is a real estate development project by Boutiq Development s.r.o., focused on creating a new residential and commercial center in Dolní Měcholupy, Prague. The project includes apartments, row houses, and commercial spaces aimed at revitalizing the local community with essential services such as grocery stores, bakery, butcher, pharmacy, and municipal offices. The website presents a professional and well-structured digital presence, leveraging modern web technologies including Vue.js and Nuxt.js, with responsive design and clear navigation. Security posture is adequate with HTTPS usage and GDPR consent mechanisms in forms, though improvements are recommended in security headers and cookie consent implementation. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website reflects a credible and professional real estate business with room for enhanced privacy and security compliance.

O

Ownest

ownest.cz

57

Ownest is a Czech-based innovative startup offering a rent-to-own housing solution that enables customers to live in a purchased apartment while saving for a mortgage. Supported by major partners such as ČSOB and Bezrealitky, Ownest positions itself as a bridge for individuals who lack immediate mortgage financing. The website is professionally designed, mobile-optimized, and rich in content including testimonials and press mentions, enhancing trust and credibility. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, with integrated analytics and user behavior tracking via Google Tag Manager and Smartlook. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. WHOIS data is unavailable, which reduces transparency but does not negate the legitimacy indicated by business partnerships and content quality. Overall, the website presents a trustworthy and professional digital presence with room for security improvements.

VELUXshop.at is the official Austrian e-commerce platform for VELUX, a well-established brand specializing in roof window blinds, shutters, insect screens, and related accessories. The website offers a comprehensive product catalog with detailed descriptions, pricing, and warranty information, targeting homeowners and installers in Austria. The platform demonstrates a mature digital infrastructure built on modern technologies such as Nuxt.js and Vue.js, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and compliant with GDPR, providing clear contact information and customer support channels.

D

Dožínkové slavnosti

dozinkoveslavnosti.cz

53

The website dozinkoveslavnosti.cz represents the Dožínkové slavnosti event, the largest farmer's market in Prague, scheduled for September 6, 2025. It is a culturally rich event featuring farm products, folklore, crafts, and family activities, supported by the Czech Ministry of Agriculture and related government entities. The site is built on modern web technologies such as Nuxt.js and Tailwind CSS, providing a responsive and user-friendly experience. However, the domain WHOIS data shows a creation date in the future (February 2025), which conflicts with the event's history and reduces trust in domain legitimacy. Security posture is moderate with no visible security headers or policies, and privacy compliance is lacking due to missing privacy and cookie policies. Contact information is clearly provided, and no adult or unsafe content is present.

D

Dornbracht

dornbracht.com

66

Dornbracht is a premium manufacturer specializing in luxury showers, faucets, and sinks for bathrooms and kitchens. The company targets both consumers and professionals seeking high-end design and wellness products. Their market position is strong within the luxury segment, supported by a well-designed, content-rich website that showcases their product range and brand identity effectively. Technically, the website leverages modern frameworks such as Nuxt.js and Vue.js, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. Overall, Dornbracht presents a trustworthy and professional digital presence with minor gaps in security transparency.

K

Kammer der ZiviltechnikerInnen Arch+Ing | Tirol und Vorarlberg

kammerwest.at

58

The website www.kammerwest.at represents the Kammer der ZiviltechnikerInnen Arch+Ing for the regions of Tirol and Vorarlberg in Austria. It serves as a professional chamber and service organization for architects and civil engineers, providing member services, continuing education, contract information, job postings, and event announcements. The site targets professionals in civil engineering and architecture as well as clients and stakeholders in the region. Technically, the site is built on a modern Nuxt.js and Vue.js framework, featuring responsive design and moderate performance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

B

Bundeskammer der Ziviltechniker:innen

zt.at

58

The website https://zt.at represents the Bundeskammer der Ziviltechniker:innen, the official Austrian chamber for civil engineers and architects. It serves as a professional platform providing information, member services, and resources for Ziviltechniker:innen across Austria. The site is well-structured, modern, and targets professionals and public entities involved in engineering and architecture. The presence of regional subdomains and comprehensive content indicates a mature and established organization with a long history dating back to 1860. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, employs privacy-conscious analytics via Matomo, and is optimized for mobile and accessibility. Security posture is strong with HTTPS and security headers, though it lacks explicit cookie consent and published security policies. Overall, the site is trustworthy, professional, and compliant with GDPR, serving its audience effectively.

Thorne is a premium health and wellness company specializing in dietary supplements and health testing solutions. Their website showcases a comprehensive product catalog emphasizing clinical research, ingredient quality, and allergen considerations. The company targets health-conscious consumers seeking scientifically validated health products. Technically, the website is built on modern frameworks such as Nuxt.js and Tailwind CSS, hosted on AWS Cloudfront, and integrates multiple marketing and analytics tools including Google Tag Manager, Dynamic Yield, and Kochava. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms. However, the lack of WHOIS registration data reduces transparency and slightly impacts trust. Overall, the website is professional, secure, and user-friendly, supporting a strong market position in the healthcare e-commerce sector.

H

Holba

holba.cz

50

Holba.cz is the official website of Holba, a Czech brewery with a long-standing history dating back to 1997. The company produces beer and offers brewery tours, museum visits, and an online shop for their products. The website is professionally designed using modern web technologies such as Vue.js and Nuxt.js, supporting multiple languages to cater to a broad audience. The site integrates several third-party marketing and tracking tools including Google Tag Manager and Facebook Pixel, indicating a moderate level of digital marketing maturity. Security posture is adequate with HTTPS enforced, but lacks visible security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, the domain registration data supports the legitimacy and trustworthiness of the business.

S

Suomalainen Energiaosuuskunta (SEO)

seo.fi

66

SEO.fi represents Suomalainen Energiaosuuskunta (SEO), a Finnish fuel station network owned by independent fuel retailers. The company operates over 240 stations across Finland, emphasizing local entrepreneurship, renewable values, and customer service. Their business model focuses on providing fuel and related services through a network of independent operators, supported by digital tools such as the SEONappi mobile app. The website reflects a mature digital presence with modern technologies like Nuxt.js and Storyblok CMS, delivering a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly detailed. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

A

Aminess d.d.

aminess.com

73

Aminess d.d. operates a professional hospitality website offering hotels, resorts, campsites, and holiday homes primarily located along the Croatian Adriatic coast. The company targets tourists seeking quality accommodation and leisure experiences, supported by a loyalty program and themed holiday types. The website is built on modern JavaScript frameworks (Nuxt.js and Vue.js) and integrates analytics and advertising tools such as Google Tag Manager and Bing Ads. It demonstrates good digital maturity with responsive design, SEO optimization, and accessibility features. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the absence of a published security policy and incident response information is noted. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The lack of WHOIS data for the domain is a concern but does not detract significantly from the overall legitimacy given the professional presentation and contact transparency. Strategic recommendations include publishing security and incident response policies and considering a vulnerability disclosure program to enhance trust.

I

Ilmatieteen laitos

weatherproof.fi

64

Ilmatieteen laitos is the Finnish Meteorological Institute, a government agency providing authoritative weather forecasts, meteorological data, and related services primarily for Finland. The website serves a broad audience including the general public, meteorological professionals, and government agencies. It offers comprehensive weather information, mobile applications, warnings, and meteorological news, positioning itself as the national leader in meteorological services. The digital infrastructure is modern, leveraging Nuxt.js and Vue.js frameworks, with mobile-optimized responsive design and integration with official app stores. Security posture is strong with HTTPS, security headers, and privacy-compliant cookie consent mechanisms, although explicit security and incident response policies are not publicly detailed. Overall, the website is professional, trustworthy, and well-maintained, reflecting the organization's authoritative status.

I

Ilmatieteen laitos

climateguide.fi

53

Climateguide.fi is a Finnish government-backed platform providing comprehensive climate change information, including research, adaptation strategies, and sector-specific data. It is maintained by the Finnish Meteorological Institute and collaborates with multiple Finnish research and governmental organizations, positioning itself as an authoritative source in the climate information domain. The website leverages modern web technologies such as Nuxt.js and Vue.js, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and privacy-conscious analytics (Matomo), though there is room for improvement in security headers and explicit incident response disclosures. Overall, the site is trustworthy, professional, and well-aligned with its stated mission.

I

Ilmatieteen laitos

klimatguiden.fi

54

Klimatguiden.fi is a Finnish government-supported climate information portal managed by Ilmatieteen laitos (Finnish Meteorological Institute). It provides comprehensive climate change data, infographics, and sector-specific information primarily targeting Finnish and Swedish speaking audiences. The website collaborates with multiple Finnish governmental and academic institutions, reinforcing its authoritative position in the national climate information ecosystem. The business model is informational and educational, funded by government resources, serving public, researchers, and policymakers. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, hosted on AWS infrastructure, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no exposed sensitive data, though cookie consent mechanisms and explicit security policies could be improved. Overall, the site is trustworthy, professional, and well-aligned with its stated mission.

I

Ilmatieteen laitos

ilmasto-opas.fi

54

Ilmasto-opas.fi is a Finnish government-backed climate information portal managed by Ilmatieteen laitos (Finnish Meteorological Institute). It provides authoritative, comprehensive climate change data, educational resources, and policy tracking tools aimed at the general public, policymakers, and researchers. The website is well-established with a domain age of over 14 years, reflecting its stable presence in the Finnish climate information ecosystem. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, hosted on AWS infrastructure, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response information could be enhanced. Privacy compliance is good with clear privacy and cookie policies, though consent mechanisms could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and alignment with government standards.

H

Heraeus Medevio

heraeus-medevio.com

64

Heraeus Medevio is a specialized contract design, development, and manufacturing company serving the medical device industry, particularly in areas such as cardiac rhythm management, neuromodulation, electrophysiology, and vascular access. The company leverages extensive expertise in materials science and advanced manufacturing technologies to support OEMs in bringing high-quality medical devices to market. The website reflects a mature digital presence with comprehensive content, clear navigation, and a professional design consistent with its healthcare industry focus. Technically, the site employs modern frameworks such as Vue.js and Nuxt.js, managed via Magnolia CMS, and integrates industry-standard analytics and consent management tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policy and incident response information are absent. WHOIS data is not publicly available, likely due to privacy protection, but the site’s linkage to the Heraeus Group parent company and professional presentation support its legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and authoritative resource in its sector.

N

nazwa.pl sp. z o.o.

automarket.pl

57

Automarket.pl is an established Polish online platform specializing in automotive leasing and long-term rental services, offering a wide selection of new and used vehicles to both individual and corporate customers. The website presents a professional and user-friendly interface built on modern technologies such as Nuxt.js and Vue.js, ensuring good mobile optimization and SEO practices. The platform emphasizes flexible financing options including leasing, long-term rental, and cash loans, positioning itself as a comprehensive automotive financial service provider in Poland. Security-wise, the site benefits from HTTPS and DNSSEC, but lacks explicit security headers and formal privacy or cookie policies, which are areas for improvement. Contact information is limited to a phone number, with no visible email or physical address in the provided content. Overall, the website is trustworthy and well-established, but could enhance its compliance and security posture by adding privacy policies, cookie consent mechanisms, and incident response disclosures.

O

Orange Warsaw Festival

orangewarsawfestival.pl

57

Orange Warsaw Festival is a well-established music and cultural event based in Warsaw, Poland, with a domain age dating back to 2008. The website serves as the official platform for festival information, artist line-ups, ticket sales, and media relations. It targets music festival attendees and cultural event participants, positioning itself as the largest music festival in Warsaw. The technical infrastructure leverages modern web technologies including Vue.js and Nuxt.js, with integration of Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though some security headers and DNSSEC are missing. Privacy compliance is basic but includes a privacy policy and cookie banner. No direct contact emails or phone numbers were found, and no explicit security or incident response policies are published. Overall, the website is trustworthy, professional, and safe for general audiences.

E

Eli Lilly and Company

lilly.pl

74

Eli Lilly and Company operates the localized Polish website www.lilly.com/pl to provide information about its pharmaceutical products, therapeutic areas, and corporate responsibility. The site targets healthcare professionals and patients in Poland, offering detailed content about the company's values, products, and safety information. The website demonstrates a mature digital infrastructure using modern JavaScript frameworks and includes comprehensive privacy and cookie consent mechanisms, reflecting compliance with GDPR and local regulations. Security posture is good with HTTPS and consent management, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-maintained, supporting Eli Lilly's market position as a leading pharmaceutical enterprise.

H

home.pl S.A.

publio.pl

62

Publio.pl is a well-established Polish online bookstore specializing in digital content such as ebooks, audiobooks, and e-press. The platform targets Polish-speaking readers and offers a wide range of digital books in multiple formats including epub, mobi, pdf, and mp3. The business operates under the parent company home.pl S.A., with a domain registered since 2011, indicating a mature market presence. The website features a modern technical infrastructure built on Vue.js and Nuxt.js frameworks, integrating third-party search and autocomplete services to enhance user experience. Social media presence on YouTube, Facebook, and Instagram supports marketing efforts and customer engagement. However, explicit privacy and cookie policies are not readily found, which may impact compliance and user trust.

R

Roparun Loterij 24-25

roparunloterij.nl

53

The Roparun Loterij website is a Dutch charity lottery platform supporting the Roparun event, which raises funds for good causes. The site offers lottery ticket sales with an age restriction of 18+, providing users with information about lottery results and terms. The business operates in the non-profit sector with a clear focus on charitable fundraising through lottery activities. The domain is mature, registered since 2009, and hosted by a reputable provider, indicating a stable presence in the market. Technically, the website is built using modern JavaScript frameworks Vue.js and Nuxt.js, ensuring a responsive and user-friendly experience across devices. The site loads moderately fast and has basic SEO and accessibility features. However, it lacks some advanced security headers and cookie consent mechanisms, which could be improved to enhance compliance and security posture. From a security perspective, the site uses HTTPS and includes invisible reCAPTCHA on forms to prevent abuse. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting legitimacy. However, the absence of explicit security policies and incident response contacts suggests room for improvement in transparency and preparedness. Overall, the website presents a trustworthy and professional front for a charity lottery, with good business credibility and technical implementation. Strategic enhancements in privacy compliance and security best practices would further strengthen its position and user trust.

D

Dahua Technology

dahuasecurity.com

68

Dahua Technology is a globally recognized enterprise specializing in video-centric AIoT solutions and services, focusing on city and enterprise sectors. The company positions itself as a leader in intelligent security technology, offering a broad range of products and services tailored to large-scale security and surveillance needs. Their digital presence is built on modern web technologies including Nuxt.js and integrates major analytics and marketing tools such as Google Analytics and Facebook Pixel. The website demonstrates a high level of professionalism, with comprehensive privacy, cookie, and terms of service policies, reflecting a mature approach to compliance and user data protection. Security measures such as HTTPS and security headers are properly implemented, indicating a strong security posture. However, the absence of publicly available WHOIS registration data introduces some uncertainty regarding domain legitimacy, which slightly impacts the overall trust score.

G

Grupa Morizon-Gratka Sp. z o.o.

gratka.pl

55

Gratka.pl is a well-established Polish online real estate marketplace operated by Grupa Morizon-Gratka Sp. z o.o., founded in 2002. The platform offers comprehensive listings for buying, selling, and renting various property types including apartments, houses, plots, commercial properties, and garages. It targets individuals and businesses in Poland seeking real estate opportunities. The website is supported by mobile applications for iOS and Android, enhancing accessibility and user engagement. The partnership with Onet.pl, a major Polish web portal, further strengthens its market presence. Technically, the site is built using modern JavaScript frameworks such as Nuxt.js and Vue.js, providing a responsive and user-friendly experience across devices. The site demonstrates good SEO practices and moderate performance, although some accessibility features could be improved. Security is implemented with HTTPS and reCAPTCHA v3, but lacks visible security headers and published security policies, which are areas for enhancement. From a security and compliance perspective, the site does not explicitly display privacy or cookie policies in the provided content, which may impact GDPR compliance. The WHOIS data confirms the domain's legitimacy and long-standing registration consistent with the business history. No critical vulnerabilities or suspicious indicators were found. Overall, the site presents a professional and trustworthy platform with room for improvement in privacy transparency and security hardening. Strategic recommendations include publishing comprehensive privacy and cookie policies with consent mechanisms, enabling DNSSEC, implementing security headers, and establishing a vulnerability disclosure process to enhance trust and compliance.

Q

Q42 B.V.

q42.nl

65

Q42 B.V. is a well-established digital product studio based in the Netherlands, specializing in building digital products such as apps, websites, connected devices, and AI applications. With over 25 years of experience and a large team of more than 90 engineers, Q42 serves a broad business audience seeking scalable and innovative digital solutions. The company is positioned strongly in the technology sector with a diverse portfolio including retail, logistics, healthcare, and cultural institutions. The website reflects a professional and modern digital presence, leveraging Nuxt.js and Prismic CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though there is room for improvement in publishing formal privacy, cookie, and security policies. Overall, Q42 demonstrates high business credibility and technical maturity but should enhance compliance transparency and incident response visibility.

G

GenTwo AG

gentwo.com

67

GenTwo AG is a fintech company specializing in assetization and financial engineering, aiming to expand the investment universe by making all assets investable. The company targets financial intermediaries such as banks, hedge funds, asset managers, family offices, and digital investors, offering a unique platform called GenTwo PRO along with other financial technology solutions. The website presents a professional and modern digital presence, leveraging advanced web technologies including Nuxt.js and Vue.js, integrated with HubSpot for marketing and analytics. Security measures are robust, with HTTPS enforced and appropriate security headers in place, although explicit security policies and incident response details are not publicly available. The absence of WHOIS registration data is a notable concern, suggesting the need for further verification of domain ownership. Overall, the website demonstrates a high level of professionalism, content quality, and compliance with privacy regulations, positioning GenTwo as a credible player in the fintech sector.

Y

YesWeHack

dojo-yeswehack.com

70

YesWeHack Dojo is a cybersecurity training platform launched in 2020 by YesWeHack, a recognized player in the bug bounty and security community. The platform offers free Capture The Flag (CTF) challenges and training modules designed to enhance hacking skills for beginners and experienced security researchers alike. It integrates with the broader YesWeHack ecosystem, providing users opportunities to participate in bug bounty programs and gain recognition. Technically, the website is built using modern frameworks such as Nuxt.js and Vue.js, styled with Tailwind CSS, and employs Matomo for analytics. The site is hosted under a reputable registrar, Gandi SAS, and uses HTTPS with a good SSL configuration. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the platform enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and some recommended security headers. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present despite tracking usage. No explicit incident response contacts or security.txt file were found. Overall, YesWeHack Dojo presents a trustworthy and professional platform for cybersecurity education with a solid technical foundation. Strategic improvements in security headers, cookie consent, and incident response transparency would further enhance its security posture and compliance.

N

Nucleus Network

nucleusnetwork.com

59

Nucleus Network is a clinical research organization specializing in Phase I clinical trials for global biotechnology and pharmaceutical companies. The website presents a professional and modern digital presence, leveraging advanced JavaScript frameworks and multiple marketing and analytics tools to engage its target audience. However, the absence of WHOIS registration data and lack of visible contact or privacy information on the site introduces trust and compliance concerns. The technical infrastructure is modern and mobile-optimized, but security best practices such as security headers and privacy policies are missing or not evident. Overall, while the business appears legitimate and established in the healthcare sector, the lack of transparency in domain registration and privacy compliance reduces the overall trustworthiness and security posture of the website.

G

Good Universities Guide

gooduniversitiesguide.com.au

68

Good Universities Guide is an established Australian educational platform providing comprehensive information on universities, TAFE, and vocational training courses. It targets prospective students seeking guidance on courses, institutions, careers, scholarships, and educational advice. The website leverages modern web technologies including Nuxt.js and Tailwind CSS, hosted on AWS infrastructure, and integrates advertising and tracking services from Google and Facebook. While the site demonstrates good design quality, mobile optimization, and SEO practices, it lacks explicit privacy and cookie policies, contact information, and security headers, which are important for compliance and user trust. The domain registration is consistent and legitimate, reinforcing the site's credibility. Strategic improvements in privacy compliance and security practices would enhance the overall trustworthiness and regulatory adherence of the platform.

WMT Digital is a full-service technology firm specializing in web, app, OTT, e-commerce, video, data, subscription, and digital marketing platforms. Established in 2016 and based in the US, the company serves enterprise clients, particularly in sports and entertainment, with a partnership-first approach. Their website reflects a professional and modern digital presence, leveraging advanced JavaScript frameworks and marketing tools such as Nuxt.js, Vue.js, HubSpot, and Google Analytics. The firm demonstrates strong market positioning through partnerships with notable organizations like NFL and LaLiga. Security posture is solid with HTTPS enforcement and domain locking, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic, lacking cookie consent mechanisms despite tracking scripts. Overall, the website is trustworthy and well-structured, supporting the company's credibility and business goals.

China Law and Practice is a professional legal news and analysis platform specializing in the latest regulatory developments in China and their impact on global business. The website provides in-depth articles, full text translations, law digests, and expert commentary targeted at legal professionals, compliance officers, and business executives. It operates under ALM Global, LLC, a recognized legal media company, and offers subscription-based access with trial options. The platform is well-positioned as a niche authoritative source in the legal media industry focused on China. Technically, the website employs modern JavaScript frameworks such as Nuxt.js and Vue.js, along with analytics and tag management tools like Chartbeat and Tealium. The site is mobile-optimized with good SEO and accessibility basics, delivering a professional user experience. However, some security best practices such as security headers and cookie consent mechanisms are not fully implemented. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security policies and incident response information. The absence of WHOIS data for the domain is a notable anomaly, though the professional branding and content quality mitigate concerns about legitimacy. Overall, the site demonstrates a mature digital presence with room for improvement in privacy compliance and security transparency. Strategically, the site should enhance its privacy and security posture by adding cookie consent, publishing security policies, and implementing security headers. Addressing the WHOIS data gap or clarifying domain registration details would also strengthen trust. These improvements will help maintain the platform's authoritative position and ensure compliance with evolving regulatory requirements.

L

Lev

lev.pt

63

Lev is a Portuguese health and e-commerce website specializing in ketogenic diet plans and nutritional consultancy aimed at individuals seeking healthy and rapid weight loss. The website targets Portuguese-speaking users and offers services including diet plans and online product sales. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, with integration of multiple analytics and tracking tools including Google Analytics, Facebook Pixel, and TikTok Pixel. The site employs HTTPS and cookie consent mechanisms, indicating a baseline security posture. However, it lacks explicit privacy policies, terms of service, and incident response information, which are critical for compliance and trust. Overall, the website is professionally designed with good user experience and moderate security maturity, but improvements in privacy compliance and transparency are recommended.

L

Luzo

luzo.es

65

Luzo is a Spanish financial services company specializing in personal loans and credit products. The website targets Spanish-speaking individuals seeking financial assistance through online loan services. The company positions itself as a niche player in the Spanish personal loan market, offering a streamlined digital experience. Technically, the website is built on modern JavaScript frameworks such as Vue.js and Nuxt.js, with Google Tag Manager integrated for analytics and tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks visible security headers and a dedicated security policy or incident response information. No vulnerabilities or suspicious domains were detected. The domain uses privacy protection for WHOIS data, which is common for small financial service providers but reduces transparency. Overall, the website is functional and moderately secure but would benefit from enhanced privacy and security disclosures.

Stimmt Digital B.V. is a Netherlands-based digital agency specializing in custom websites and webshops with a focus on sleek technology and design. They serve businesses seeking tailored digital solutions, leveraging platforms such as Craft CMS, Shopify, Magento 2, and Laravel. Their portfolio includes 29 cases, indicating a solid market presence and experience. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, supporting a medium-sized agency profile. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, ensuring good performance and user experience. Security posture is adequate with HTTPS and cookie consent, though lacking explicit security headers and privacy policy documentation. WHOIS data is unavailable due to privacy or query failure, which slightly reduces trust but is common for such businesses. Overall, the site demonstrates a mature digital infrastructure and credible business presence.

Law.com, Inc. operates as a premier global legal news and information provider, delivering trusted and timely legal news, analysis, and data to legal professionals. Positioned as a leading media entity in the legal sector, it offers a subscription-based business model targeting legal professionals and organizations. The company is a subsidiary of ALM, a well-established media group, and has been in operation since 1998. The website reflects a professional and authoritative brand with excellent content quality and strong trust indicators such as industry awards and verified contact information. Technically, the website leverages modern web technologies including Nuxt.js and Vue.js frameworks, supported by AWS Cloudfront CDN for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, with a fast loading experience. Integration with marketing and analytics tools such as Omeda and Tealium indicates a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs best practices such as asynchronous script loading and no visible vulnerable libraries. However, explicit security headers and a cookie consent mechanism are not clearly detected, suggesting areas for improvement. The absence of WHOIS data is noted but likely due to privacy or registry restrictions, not detracting significantly from the site's legitimacy given its strong brand presence. Overall, Law.com presents a low-risk profile with a strong business and technical foundation. Strategic recommendations include enhancing privacy compliance with visible cookie consent, improving security headers, and publishing a vulnerability disclosure policy to further strengthen trust and security posture.

F

Funda

funda.nl

62

Funda is the leading online real estate marketplace in the Netherlands, specializing in residential property listings for sale and rent. The platform offers comprehensive services including property search, market insights, and valuation tools, targeting individuals and businesses interested in Dutch real estate. The website demonstrates a strong market position with a large user base and a subsidiary focused on business real estate. Technically, the site is built on modern frameworks such as Nuxt.js, leveraging CDN hosting for fast performance and excellent mobile optimization. Security measures include HTTPS enforcement and multiple security headers, reflecting a mature security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

C

CarsGuide

carsguide.com.au

66

CarsGuide is a well-established Australian online automotive marketplace and content platform, founded in 2011 and operating under the Gumtree Group. It offers a comprehensive range of new and used car listings, expert reviews, and automotive news targeted at Australian car buyers and sellers. The website positions itself as Australia's largest auto brand, providing trusted services for both private sellers and dealers. Technically, the site leverages modern JavaScript frameworks such as Nuxt.js, integrates with multiple advertising and analytics platforms, and uses CDN hosting for performance optimization. The site is mobile-optimized and SEO-friendly, ensuring a good user experience across devices. Security-wise, the site enforces HTTPS and follows basic best practices, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is moderate, with a comprehensive privacy policy but no visible cookie consent mechanism. Overall, CarsGuide demonstrates a mature digital presence with strong business credibility and a high level of trustworthiness.

Autotrader Australia operates a leading online marketplace for buying and selling new and used cars, targeting Australian consumers and dealers. The website offers comprehensive car listings, research tools, and selling services, positioning itself as a trusted platform in the automotive sector. Technically, the site leverages modern frameworks such as Nuxt.js and Vue.js, supported by robust CDN infrastructure (AWS CloudFront) and integrates multiple advertising and analytics services for marketing and user insights. Security posture is generally strong with HTTPS enforced, though explicit security headers and incident response contacts are absent, indicating room for improvement. Privacy compliance is basic, lacking visible privacy and cookie policies or consent mechanisms. Overall, the site is professional, performant, and trustworthy, with a low risk profile but could enhance transparency and security practices.