Security Directory

Bubufabrics is an Italian-based e-commerce retailer specializing in fabrics, haberdashery, and fabric sold by the meter. The website targets general consumers interested in textile products and operates multiple localized sites across Europe, indicating a niche but geographically diverse market presence. Technically, the site uses Bootstrap 4 for responsive design and integrates marketing and analytics tools such as Google Tag Manager, SalesManago, and Facebook Pixel, reflecting a moderate level of digital maturity. Security posture is solid with HTTPS enforced and standard security headers present, though the absence of explicit privacy and cookie policies suggests room for compliance improvement. Overall, the site is functional and professional but would benefit from enhanced transparency and contact information to improve trust and regulatory compliance.

Bubufabrics.ro is an e-commerce website specializing in the sale of fabrics and haberdashery products targeted primarily at the Romanian market. The site offers an online shopping experience for customers interested in sewing and crafting materials. The business appears to be a small-scale online retailer with a focus on textile products. Technically, the website is built using Bootstrap 4 and integrates common marketing and analytics tools such as Google Analytics, Facebook Pixel, and SalesManago, indicating a moderate level of digital maturity. However, the absence of visible privacy and cookie policies suggests gaps in compliance with data protection regulations such as GDPR. Security posture is moderate with no detected WAF or blocking mechanisms, but the lack of security headers and unknown SSL configuration indicate room for improvement. Overall, the website is functional and professionally designed but would benefit from enhanced security and privacy practices to improve trust and compliance.

The website www.bubufabrics.com operates as an e-commerce platform specializing in the sale of fabrics and haberdashery products. It targets a general audience interested in textile and sewing supplies. The site presents a professional design using Bootstrap 4 and integrates common marketing and analytics tools such as Google Tag Manager, SalesManago, and Facebook Pixel. However, the absence of WHOIS registration data raises concerns about the domain's legitimacy and registration status. No privacy, cookie, or terms of service policies were detected, which impacts compliance and trustworthiness. Security posture is weak due to lack of security headers and unclear SSL configuration. Overall, the site is functional and safe for general users but lacks critical trust and security indicators.

The website www.bubulakovo.cz is an e-commerce platform specializing in the sale of fabrics and haberdashery products, targeting primarily the Czech Republic market. The site presents a professional design using Bootstrap 4 and integrates multiple marketing and analytics tools such as Google Analytics and SalesManago. However, the absence of publicly available WHOIS data limits the ability to fully verify the domain's registration legitimacy and ownership details. The website lacks visible privacy and cookie policies, which impacts its privacy compliance posture. Security headers are not detected, and SSL configuration details are unknown, indicating potential areas for security improvement. Overall, the site appears functional and well-structured but would benefit from enhanced transparency and security practices.

B

Bubustoffe

bubustoffe.de

47

Bubustoffe.de is a small retail business specializing in fabrics, ribbons, and haberdashery products, targeting primarily German-speaking customers. The website presents a colorful and well-structured e-commerce platform with good design quality and mobile optimization. The technical infrastructure leverages modern frameworks such as Bootstrap 4 and integrates multiple marketing and analytics tools including Google Analytics, Hotjar, and SalesManago, indicating a mature digital marketing approach. Security posture is adequate with HTTPS enabled and some security best practices observed, though there is room for improvement in implementing security headers and publishing security policies. The absence of a privacy policy and terms of service reduces compliance maturity. WHOIS data is minimal and domain status is unusual, which slightly impacts trustworthiness. Overall, the website is functional and professional but would benefit from enhanced privacy and security transparency.

B

Ein Geschäft voller Liebe zum nähen | Bubustoffe.at

bubustoffe.at

47

Bubustoffe.at is a small retail business specializing in colorful fabrics, ribbons, haberdashery, and sewing supplies, targeting general consumers interested in crafting and sewing. The website presents a professional and consistent brand image with good design quality and mobile optimization. The technical infrastructure includes modern frontend frameworks such as Bootstrap 4 and integrates multiple marketing and analytics tools including Google Analytics, SalesManago, and Facebook Pixel. However, the absence of WHOIS data and lack of visible privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with no detected security headers and unknown SSL configuration, suggesting room for improvement in security best practices. Overall, the website is functional and relevant for its retail purpose but would benefit from enhanced privacy compliance and security measures.

B

Commerce de tissus, mercerie en ligne | Bubutissus.fr

bubutissus.fr

45

Bubutissus.fr is an e-commerce website specializing in the retail of fabrics, ribbons, and haberdashery supplies, targeting primarily the French market. The site presents a colorful and well-structured online store experience, catering to customers interested in textile crafts and related products. The business appears to be a small retail entity with regional sister sites in various European countries, indicating a localized but multi-national retail group. Technically, the website employs modern front-end frameworks such as Bootstrap 4 and integrates multiple marketing and analytics tools including Google Tag Manager, SalesManago, and Facebook Pixel, reflecting a moderate level of digital maturity. Security-wise, the site enforces HTTPS and has implemented cookie consent mechanisms, but lacks several recommended security headers and explicit privacy or terms of service pages, which are important for compliance and trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and technical setup do not raise immediate red flags. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

H

Hanen

hanen.no

10

Hanen is a Norwegian organization dedicated to promoting authentic Norwegian rural tourism and local food experiences. The website serves as a comprehensive portal for discovering farm visits, local food producers, accommodation, and cultural activities across Norway. It targets Norwegian residents and tourists interested in rural and culinary experiences, positioning itself as a leading membership-based promoter in this niche. Technically, the site is built on WordPress with modern plugins and integrations such as Google Tag Manager, Facebook Pixel, and CookieYes for cookie consent, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and bot protection via Google reCAPTCHA cookies, though some security headers are not explicitly detected. Privacy compliance is supported by a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the provided content. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is reasonable for this type of organization. Overall, the site is professional, trustworthy, and well-optimized for its audience.

X

XperiTech AS

campio.no

60

Campio is a Norwegian-based online platform specializing in providing comprehensive listings and direct booking options for campsites and motorhome parkings across Europe. Founded in 2021 and operated by XperiTech AS, the company targets outdoor enthusiasts and travelers seeking convenient access to camping accommodations. The platform leverages modern web technologies including Next.js and Material-UI, and integrates analytics and marketing tools such as Google Tag Manager and HubSpot to optimize user engagement and business insights. Security posture is strong with HTTPS and security headers implemented, though the absence of explicit privacy and cookie policies indicates room for compliance improvement. Overall, Campio presents a professional and trustworthy digital presence with moderate risk exposure primarily related to privacy compliance gaps.

D

Dab Pumps Spa

dabpumps.id

10

Dab Pumps Spa is a well-established manufacturer specializing in efficient water movement and management technologies. The company operates internationally with localized websites such as the Indonesian version analyzed here. Their business model focuses on manufacturing, after-sales services, training, and digital product support, positioning them as a key player in the energy and manufacturing sectors. The website reflects a professional and consistent brand image targeting industrial clients, professionals, and end users interested in water pump solutions. Technically, the website is built on Drupal 9 CMS with modern front-end technologies including jQuery, Bootstrap, Owl Carousel, and Selectric for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security is implemented with HTTPS and secure forms, but lacks explicit security headers and incident response disclosures. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is good with clear privacy and cookie policies, though a cookie consent mechanism is absent. The WHOIS data aligns well with the business claims, indicating legitimacy and consistency. Social media and partner domains are well integrated, enhancing trust and outreach. Overall, the website is professional, secure, and business credible with room for improvement in security headers and privacy mechanisms. The risk level is low, and the site effectively supports the company's market presence and customer engagement.

D

Dab Pumps Spa

dabpumps.com.au

9

Dab Pumps Spa is a well-established company specializing in water technology solutions with over 40 years of experience. The company focuses on manufacturing and providing technological solutions for water movement and management across residential, commercial, agricultural, and irrigation sectors. Their offerings emphasize reliability, efficiency, and energy optimization. The website reflects a professional and consistent brand presence targeting industrial and commercial audiences primarily in Australia and internationally. Technically, the website is built on Drupal 9 with modern frontend libraries such as jQuery, Bootstrap, and Owl Carousel, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and secure login forms but lacks advanced security headers and incident response disclosures. Privacy and cookie policies are present, though cookie consent mechanisms are missing. WHOIS data is incomplete and malformed, which raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

D

DAB PUMPS SPA

dabpumps.mx

10

DAB PUMPS SPA is a well-established company specializing in water technology solutions with over 40 years of industry presence. The company offers a broad portfolio of products and services including pumps, digital connectivity solutions, and training programs, targeting residential, commercial, and agricultural sectors. The website reflects a mature digital presence built on Drupal 9, with modern UI components and a clear focus on user experience and compliance. The security posture is adequate but can be improved by implementing additional security headers and renewing the expired domain promptly. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and serves as a solid digital asset for the company.

D

DAB PUMPS S.p.A.

dabpumps.us

11

DAB PUMPS S.p.A. is an established Italian manufacturer specializing in pump products with a significant presence in North America through its subsidiary DAB Pumps Inc. The company offers a broad portfolio of pump solutions, complemented by customer service, training, and technical support. The website reflects a mature digital presence built on Drupal 9, integrating modern frontend technologies and a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and domain registration protections, though DNSSEC is not enabled and some advanced HTTP security headers are missing. The WHOIS data is consistent with the business claims, reinforcing legitimacy. Overall, the website is professional, trustworthy, and well-structured for its industrial target audience.

D

Dab Pumps Spa

dabpumps.es

10

Dab Pumps Spa is a well-established company specializing in water technology solutions, focusing on the manufacturing and distribution of water pumps and related services. With over 40 years of experience and a strong presence in Spain and Italy, the company targets both professional sector users and end consumers. Their website reflects a mature digital presence built on Drupal 9, featuring comprehensive content, clear navigation, and a consistent brand image. The site integrates modern web technologies and provides extensive resources including technical advisory, training, and digital tools for pump selection and connectivity.

D

DAB Pumps Spa

dabpumps.be

10

DAB Pumps Spa is a well-established company specializing in water technology solutions with over 40 years of market presence. The Belgian localized website dabpumps.be serves as a regional portal providing product information, service offerings, training, and news updates. The company targets residential, commercial, agricultural, and irrigation sectors with a strong focus on innovation and energy efficiency. Technically, the website is built on Drupal 9 with modern frontend libraries and includes a cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The site demonstrates good privacy compliance and business credibility with clear legal documentation and active social media presence. Overall, the website is professional, trustworthy, and well-optimized for its audience.

D

DAB PUMPS S.p.A.

dabpumps.co.za

9

DAB PUMPS S.p.A. is an established Italian company specializing in the manufacturing and distribution of water pumps and technological solutions for water movement and management. With over 50 years of experience, the company holds a strong market position in the energy sector, targeting industrial, commercial, and residential customers. The website serves as a professional digital presence showcasing their products and company information. Technically, the website is built on WordPress with WooCommerce and Elementor, optimized for performance and mobile devices, and hosted via dotNice. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business identity, indicating legitimacy and trustworthiness.

D

Dab Pumps Spa

dabpumps.de

10

Dab Pumps Spa is a well-established company specializing in water technology solutions, with nearly 50 years of experience. The company focuses on manufacturing pumps and providing technological solutions to optimize water management and energy consumption across residential, commercial, industrial, and agricultural sectors. Their market position is strong, supported by a comprehensive product portfolio and service offerings including DService and DTraining. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Technically, the site is built on Drupal 9 with modern libraries and frameworks, ensuring a stable and maintainable infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. Overall, the website reflects a credible and trustworthy business with good privacy compliance and user engagement through social media and contact channels.

D

Dab Pumps Spa

dabpumps.nl

62

Dab Pumps Spa operates a professional website focused on water pump manufacturing and related services, targeting industrial, agricultural, and building management sectors primarily in the Netherlands and internationally. The company has a strong market presence with over 40 years of history and offers a comprehensive product range, service contracts, training, and technical support. The website is built on Drupal 9 with modern front-end technologies and includes a secure login form protected by Google reCAPTCHA. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Security posture is good with HTTPS and secure practices, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-structured, supporting the company's business credibility.

N

NIBE Industrier AB

nibe.com

71

NIBE Industrier AB is a large enterprise specializing in sustainable energy solutions, including climate solutions, heating elements, and stoves. The company positions itself as a global player focused on reducing greenhouse gas emissions through innovative products and corporate sustainability. The website reflects a mature digital presence with comprehensive corporate governance, investor relations, and sustainability content. Technically, the site uses modern web technologies including SiteVision CMS, Google Tag Manager, and UIkit CSS framework, delivering good performance and mobile optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional presentation and content. Strategic recommendations include publishing security and incident response policies, adding a security.txt file, and improving transparency around data protection officer contact details.

The website at inmateria.net is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. Due to this, no business description, contact information, or policy documents are available for analysis. The domain is registered since 2006 with Tucows Domains Inc. and uses SiteGround nameservers, indicating a legitimate registration and hosting setup. However, the lack of accessible content severely limits the ability to assess the company's market position, services, or technical maturity. Security posture cannot be fully evaluated due to the absence of accessible content and security headers. Overall, the site appears to be blocked or restricted, resulting in a very low AI score and limited insights.

A

Airport Hotel Budapest**** Kft.

vip-parkolo.hu

49

VIP Parkoló is a well-established airport parking service provider located near Budapest Liszt Ferenc International Airport. Operating since 2005, the company offers secure, guarded parking with free airport transfer and online booking capabilities. The website is professionally designed using Joomla CMS with modern frameworks and provides clear contact information and social media presence, supporting a trustworthy user experience. Technically, the site employs HTTPS with good security headers and modern JavaScript libraries, though it lacks a visible cookie consent mechanism and explicit security policies. Overall, the business demonstrates a solid market position in the transportation and hospitality sectors within Hungary.

L

Levanter Lakóautó Kft.

levanter.hu

60

Levanter Lakóautó Kft. is a well-established Hungarian company specializing in the sales and rental of motorhomes, representing notable brands such as Mobilvetta, Pössl, and Elnagh. Founded in 2004, the company also offers motorhome accessories and organizes group motorhome trips, targeting Hungarian motorhome enthusiasts and customers. The website reflects a focused business model combining retail, rental, and travel services within the transportation sector. Technically, the site is built on Joomla CMS with Gantry 5 framework and uses modern JavaScript libraries, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and explicit incident response policies. The domain WHOIS data is consistent with the business claims, indicating legitimacy and trustworthiness. Overall, the website is professional, content-rich, and privacy-conscious, serving its target audience effectively.

BlueVendo S.A. is a Poland-based technology company specializing in high-tech proprietary software solutions for the tourism industry. Their offerings include integrated booking software, backoffice and inventory management systems, CMS platforms for tourism websites, and automation technologies such as OCR and RPA. The company targets touroperators and travel agencies, positioning itself as a niche provider with a mature product suite and a medium-sized business footprint. The website is professionally designed, content-rich, and optimized for SEO and mobile use, reflecting a solid digital maturity. Technically, the site runs on WordPress with modern plugins and frameworks, delivering moderate performance and good user experience. Security posture is adequate with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially met with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the domain registration data supports the legitimacy and stability of the business.

B

Blue Sky Travel

blueskytravel.hu

47

Blue Sky Travel is a Hungarian travel agency established in 2018, specializing in air and bus travel packages primarily to Greek islands and various exotic destinations. The company offers competitive pricing, last-minute deals, and comprehensive travel organization services targeting Hungarian-speaking travelers. Their website features a professional design with clear navigation, mobile optimization, and integrated booking forms, reflecting a medium-sized business with a solid market presence. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and popular analytics and marketing tools such as Google Tag Manager, Hotjar, Microsoft Clarity, and Tawk.to live chat. Hosting is provided via a CDN, ensuring moderate performance and good mobile responsiveness. SEO and accessibility are adequately addressed, though some improvements are possible. From a security perspective, the site enforces HTTPS and employs consent-based loading of tracking scripts, demonstrating a privacy-aware approach. However, it lacks several important security headers and does not publish a security policy or incident response contacts. No critical vulnerabilities or suspicious activities were detected, and WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a trustworthy and professional travel service with room for improvement in privacy policy transparency and security hardening. The risk level is moderate with no immediate threats identified.

P

Personal Tours

personaltours.hu

57

Personal Tours is a well-established Hungarian travel agency specializing in personalized travel packages primarily to Greek islands and exotic destinations. With nearly three decades of experience, the company offers a variety of services including flight-inclusive trips, individual accommodation bookings, cruises, and city tours. The website reflects a professional and user-friendly design, targeting Hungarian-speaking travelers seeking affordable and customized holiday options. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and integrates marketing and analytics tools like Google Tag Manager and Facebook Pixel. Security measures include HTTPS enforcement, reCAPTCHA for forms, and a comprehensive cookie consent mechanism compliant with GDPR. However, explicit security policies and incident response contacts are not present on the site, representing an area for improvement. Overall, the website is trustworthy, well-maintained, and provides a solid digital presence for the business.

Orex Travel is a Hungarian travel agency specializing in organizing vacation packages primarily to Turkey, Egypt, and Bulgaria. The company offers a wide range of travel services including hotel bookings, direct flights, insurance, excursions, private transfers, and airport parking. The website reflects a well-established business with a domain age since 2011, consistent with its market presence. Technically, the site uses modern frameworks such as Next.js and React, with integrations for analytics, chat support, and cookie consent, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie management, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving Hungarian travelers effectively.

B

BUDAVÁR TOURS Utazási Iroda

budavartours.hu

60

Budavár Tours is a well-established Hungarian travel agency operating since 1999, offering a broad portfolio of travel services including bus tours, exotic trips, family vacations, and city tours. The website is professionally designed with good content quality and clear navigation, targeting Hungarian-speaking travelers. Technically, the site uses a mix of legacy and modern technologies such as jQuery, Google Tag Manager, Facebook Pixel, and Hotjar, with a consent management system in place for cookie compliance. Security posture is solid with HTTPS and some security best practices, though security headers could be enhanced. Privacy compliance is partial due to the absence of explicit privacy and terms of service pages. Overall, the domain age and WHOIS data support the legitimacy of the business, and contact information is clearly presented. The site is safe for general audiences and does not contain adult or explicit content.

T

TravelGATE Kft

travelgate.hu

55

TravelGATE Kft operates a specialized cloud-based business travel management system tailored for Hungarian travel agencies and tour operators. Their platform offers comprehensive features including online travel offer search, booking, client and order management, and marketing tools. The company holds reputable certifications and maintains an active social media presence, positioning itself as a trusted provider in the Hungarian travel software market. Technically, the website employs a mix of legacy and modern JavaScript libraries, with room for modernization and security enhancements. Security posture is moderate, with cookie consent mechanisms and no visible vulnerabilities, but lacking advanced HTTP security headers and incident response contacts. Overall, the website is professional, compliant with GDPR, and provides clear business and contact information, supporting a medium-sized enterprise profile.

C

Children's of Alabama Indy Grand Prix

indyalabama.com

56

The Children’s of Alabama Indy Grand Prix website represents a well-established motorsports event held annually at Barber Motorsports Park in Birmingham, Alabama. The event supports the Children’s of Alabama hospital and is powered by AmFirst, indicating a strong charitable and community focus. The website provides comprehensive information about the event, ticketing, hospitality, fan activities, and sponsorship opportunities, targeting motorsports enthusiasts and local supporters. The site is professionally branded and maintains consistent messaging aligned with its charitable mission. Technically, the website is built on WordPress using the Total theme, incorporating modern web technologies such as jQuery, Revolution Slider, and Gravity Forms. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized and accessible, with a user-friendly design and clear navigation. However, it lacks an explicit cookie consent mechanism, which may impact privacy compliance. From a security perspective, the site enforces HTTPS and uses standard tracking and marketing scripts. There is no evidence of exposed sensitive data or vulnerabilities in the visible content. Security headers are not explicitly detected but HTTPS presence suggests a baseline security posture. The absence of WHOIS registration data is a concern for domain legitimacy, although the site content and branding appear trustworthy. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, the website demonstrates a solid digital presence with good content quality and technical implementation. Privacy compliance could be improved by adding cookie consent and GDPR indicators. The lack of WHOIS data reduces trustworthiness slightly but does not outweigh the professional presentation and clear business purpose. Strategic recommendations include enhancing security headers, implementing a vulnerability disclosure policy, and improving privacy compliance to strengthen trust and security posture.

G

Green Savoree St. Petersburg, LLC

gpstpete.com

44

The Firestone Grand Prix of St. Petersburg website represents a well-established motorsports event organizer with a history dating back to 2001. The company, Green Savoree St. Petersburg, LLC, operates a premier motorsports festival in St. Petersburg, Florida, offering ticket sales, hospitality packages, and merchandise. The website effectively targets motorsports fans, tourists, and local attendees with clear event information and partner engagement. Technically, the site is built on Joomla CMS with modern frameworks like Helix3 and Bootstrap, ensuring responsive design and moderate performance. The use of analytics and marketing tools such as Google Analytics, Hotjar, and Constant Contact indicates a mature digital marketing approach, though lacking explicit cookie consent mechanisms. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Overall, the site is professional, trustworthy, and business credible, with room for privacy compliance enhancements.

S

Sokrati

sokrati.com

63

Sokrati is a well-established digital marketing and performance media agency founded in 2008 and operating under the parent company Dentsu. The company specializes in data-driven marketing solutions including performance marketing, organic search optimization, analytics, and strategic planning. Their market position is strong with globally recognized clients and certifications from Meta and Google, supported by detailed case studies and client testimonials demonstrating measurable success. Technically, the website is built on modern frameworks such as Next.js and React, with good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and explicit security policies are not visible on the site. Privacy compliance is partial, with a comprehensive privacy policy linked via the parent company but lacking a cookie consent mechanism on the site. Overall, the website is professional, trustworthy, and well-positioned in the digital marketing industry.

H

HOMA

homacz.cz

50

HOMA is an e-commerce retailer specializing in home textiles and household products primarily serving the Czech market with sister sites in Slovakia, Hungary, and Austria. The website offers a broad product range including bedding, towels, and cosmetics, targeting domestic consumers seeking quality products at reasonable prices. The digital infrastructure employs modern tracking and marketing technologies such as Google Analytics, Facebook Pixel, and reCAPTCHA, indicating a mature online presence. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy is published. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification, though the website content and business information appear professional and trustworthy. Overall, the site is safe for general audiences and demonstrates a solid e-commerce platform with room for security and technical improvements.

H

HOMA

homa.sk

53

HOMA is a Slovak-based e-commerce retailer specializing in home textiles such as bedding, sheets, blankets, towels, and related products. The website targets general consumers seeking quality home textile products at reasonable prices. The business operates a medium-sized online retail platform with a consistent brand presence and a good level of content quality and user experience. Technically, the website uses a proprietary CMS called CREATIVE shop and integrates modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and affiliate marketing tools. Security measures include HTTPS enforcement, Google reCAPTCHA for bot protection, and a comprehensive cookie consent mechanism. However, explicit privacy and terms of service pages are not detected in the provided content, and no clear contact information is visible, which could impact user trust and compliance. Overall, the website demonstrates a solid technical and business foundation with room for improvement in privacy transparency and contact accessibility.

N

Nestle Professional

nestleprofessional.ca

70

Nestlé Professional Canada operates as a B2B supplier specializing in culinary and beverage solutions for the hospitality and foodservice sectors. The website presents a professional and consistent brand image aligned with the global Nestlé brand, targeting Canadian foodservice operators and culinary professionals. The business model focuses on providing products, systems, and expertise to grow operations in the food and beverage industry. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates Google Tag Manager and OneTrust for analytics and cookie consent management. The site is mobile-optimized and accessible with good SEO practices. Security posture is moderate; HTTPS is implied, but no explicit security headers or vulnerability disclosures are present. The absence of WHOIS data for the domain is a notable anomaly, potentially indicating privacy protection or registration issues. Overall, the site is trustworthy and professional but would benefit from enhanced transparency in privacy and security policies.

The website www.dfb-fanshop.de serves as the official e-commerce platform for the German Football Association's fan merchandise, primarily focusing on authentic Germany national football team jerseys and fanwear. It targets football fans and supporters globally, offering official products with worldwide shipping. The site demonstrates consistent branding and a professional design tailored to its audience. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with fonts loaded in WOFF2 format and content delivery via Akamai CDN, ensuring reliable performance and global reach. The site is mobile-optimized and SEO-friendly, although some accessibility features appear basic. Google Analytics is used for user tracking, indicating moderate data collection practices. From a security perspective, the site enforces HTTPS with a strong SSL configuration and uses Akamai's infrastructure. However, explicit security headers are not evident in the provided content, and privacy and cookie policies are missing or not detected, which impacts compliance posture. No vulnerabilities or exposed sensitive data were found, and no WAF or blocking mechanisms interfere with access. Overall, the website presents a trustworthy and professional front for official sports merchandise sales but would benefit from enhanced privacy compliance and security header implementation to improve user trust and regulatory adherence.

D

DFB GmbH & Co. KG

dfb-efootball.de

62

The website www.dfb-efootball.de serves as the official portal for the German Football Association's esports activities, including the DFB-ePokal tournament powered by ERGO and the German eNationalmannschaft. It targets esports enthusiasts and the football community, providing tournament information, news, and community engagement. The platform is professionally branded and positioned as a key player in the esports media sector in Germany. Technically, the site is built as an Angular single-page application hosted on AWS infrastructure, integrating modern marketing and analytics tools such as Google Tag Manager, TikTok Pixel, and Usercentrics for consent management. Accessibility is enhanced with Eye-Able tools, and the site is mobile-optimized with good SEO practices. Security posture is strong with HTTPS enforced and use of security headers implied, although explicit security policies and vulnerability disclosures are absent. Privacy compliance is well addressed with clear privacy and cookie policies linked to official DFB domains. Overall, the site demonstrates a mature digital presence with extensive user tracking balanced by consent mechanisms. No critical security issues or content safety concerns were detected.

F

fittkau metallgestaltung gmbh

fittkau-metallbau.de

54

Fittkau Metallgestaltung GmbH is a German small-sized manufacturing company specializing in metalworking, forge, and artistic metal structures. The company presents a professional website built on Joomla! CMS, showcasing a portfolio of projects and providing essential contact information. The website targets architects, construction firms, and clients seeking specialized metal fabrication services. The business holds a reputable market position with recent award recognition, indicating industry credibility. Technically, the website employs legacy JavaScript libraries such as jQuery and MooTools, with moderate performance and basic mobile optimization. The absence of advanced analytics and tracking tools suggests a privacy-conscious approach. However, the lack of visible security headers and outdated libraries indicate areas for technical improvement. From a security perspective, the site uses HTTPS (assumed from base URL), includes a cookie consent mechanism, and provides a privacy policy compliant with GDPR. No incident response or security policy pages are found, and no phone contact is provided, which could limit user trust. No critical vulnerabilities or blocking mechanisms are detected, but updating security practices and technical stack is recommended. Overall, the website is professional and trustworthy with good business credibility but could benefit from technical modernization and enhanced security measures to improve resilience and compliance.

WGBG Wirtschafts-Genossenschaft Berliner Grundbesitzer eG is a specialized real estate management cooperative based in Berlin, offering comprehensive property management, technical support, and advisory services tailored to property owners in Berlin and Brandenburg. The cooperative business model emphasizes owner interests without investor or shareholder influence, positioning WGBG as a trusted niche player in the local real estate market. Technically, the website is built on WordPress with modern plugins and themes, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent, but lacks published privacy policies and incident response information, indicating room for compliance and security maturity improvements. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency to strengthen user trust and regulatory compliance.

Hoffnungstaler Stiftung Lobetal is a German non-profit foundation providing a broad range of social, medical, and educational services primarily in Berlin and Brandenburg. The website presents a professional and accessible digital presence built on Joomla CMS, incorporating modern technologies such as Usercentrics for cookie consent and Matomo for privacy-respecting analytics. The organization targets individuals seeking social support, healthcare, and education, emphasizing inclusion and community engagement. While the site is well-structured and content-rich, explicit privacy policies and terms of service are not found, which could be improved for compliance and transparency. Security posture is solid with HTTPS and consent management, but lacks explicit incident response contacts or vulnerability disclosure mechanisms.

S

Sirius Facilities GmbH

siriusfacilities.com

53

Sirius Facilities GmbH is a prominent German commercial real estate company specializing in flexible leasing of office spaces, storage, production halls, conference centers, and virtual office services. With over 70 locations and a large portfolio, they cater primarily to small and medium-sized enterprises as well as larger firms. Their website demonstrates a mature digital presence with a professional design, comprehensive service offerings, and multiple contact channels. Technically, the site is built on Drupal CMS with modern JavaScript libraries and includes privacy compliance tools such as Usercentrics CMP and analytics via Google Analytics and Matomo. Security posture is strong with HTTPS and secure forms, though some HTTP security headers could be improved. The WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding and transparent contact information.

N

NIBE

nibe.ua

58

NIBE.ua is a website representing NIBE, a leading enterprise in the energy sector specializing in heat pumps and smart home heating and cooling solutions. The company claims a strong market position in Ukraine and internationally, supported by a large workforce and significant annual sales. The website offers detailed product information, dealer contacts, and service options, targeting residential and commercial customers in Ukraine. Technically, the site uses modern frameworks like Bootstrap and integrates analytics tools such as Google Analytics and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and CSRF protection but lacks comprehensive security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

V

Valfrigo

valfrigo.com

43

Valfrigo is a Kosovo-based company specializing in the sale of thermal pumps for central heating, ventilation, air conditioning, and related services such as filtering and degassing of oil transformers. The company markets products from well-known brands like NIBE, TOSHIBA, CARRIER, and CLIVET, positioning itself as a specialized provider in the green energy sector. The website reflects a small-sized business with a clear focus on green energy heating solutions, targeting both businesses and consumers interested in sustainable energy technologies. The domain age of 20 years supports a mature business presence. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution. It employs modern web technologies including jQuery and Google Fonts, and integrates Google Maps API. The site is mobile optimized with good design quality and navigation clarity, although SEO and accessibility features are basic. Hosting appears to be managed via Name.com, consistent with the domain registrar information. From a security perspective, the site uses HTTPS, ensuring encrypted communications. However, no DNSSEC is enabled, and no security headers were detected in the provided data, which are areas for improvement. The absence of privacy and cookie policies, as well as incident response contacts, indicates gaps in compliance and security transparency. No evidence of tracking or advertising scripts was found, suggesting minimal user tracking. Overall, the website is professional and trustworthy with moderate security posture and limited privacy compliance. Strategic improvements in security headers, DNSSEC, and privacy documentation would enhance the site's security and compliance standing.

VTD is a Swedish logistics and distribution company specializing in parcel, newspaper, and mail delivery services primarily in the Västsverige region. Established in 2001, the company operates a strong distribution chain reaching approximately 700,000 to 800,000 households daily. Their business model focuses on sustainable and reliable delivery using various transport modes including walking, cycling, mopeds, and cars. The website reflects a medium-sized regional player with a clear market position and a professional digital presence. Technically, the website is built on WordPress using the Divi theme and leverages Yoast SEO for optimization. Hosting appears to be on Oracle Cloud infrastructure. The site is moderately performant with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and structured data. However, some technical improvements such as enabling DNSSEC and adding security headers could enhance security posture. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and explicit security policies. No incident response or vulnerability disclosure information is publicly available. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism was detected, which is a GDPR compliance gap. Contact information is clearly provided, enhancing business credibility. Overall, VTD's website is professional, trustworthy, and business-focused with room for improvement in privacy compliance and security best practices. The risk profile is low with no critical vulnerabilities detected. Strategic recommendations include implementing cookie consent, enabling DNSSEC, adding security headers, and publishing security policies to strengthen trust and compliance.

The website vtab.se is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block page. This prevents any meaningful content or business information from being retrieved or analyzed. The domain is recently registered in June 2023 and uses Cloudflare for DNS and security services. No privacy, cookie, or terms of service policies are visible, nor are there any contact details or business descriptions available on the landing page. The technical infrastructure relies on Cloudflare, but no further technology stack details can be determined due to the block. Security posture cannot be fully assessed, but the presence of a WAF indicates some level of protection. Overall, the site’s risk profile is elevated due to lack of accessible content and transparency, and the AI scoring reflects this with a low overall score.

N

NVL B.V. & Co. KG

luerssen-defence.com

56

NVL B.V. & Co. KG is a well-established, independent group of northern German shipyards specializing in naval and coastguard vessel construction and related maritime services. With over 145 years of experience, NVL serves a global clientele including the German Navy and fleets in more than 50 countries. Their comprehensive service portfolio spans new builds, maintenance, repair, upgrades, and digital transformation, supported by a network of four shipyards and multiple international subsidiaries. The company emphasizes quality, innovation, and customer-centric solutions, positioning itself as a leader in the naval shipbuilding industry. Technically, the NVL website is built on Drupal 10, leveraging modern web technologies including jQuery and FontAwesome, and is hosted on AWS infrastructure. The site is mobile-optimized, accessible, and employs privacy-conscious analytics via Matomo alongside a robust cookie consent mechanism. The digital presence reflects a mature and professional infrastructure with good SEO and user experience. From a security perspective, the site enforces HTTPS and uses cookie consent tools to comply with GDPR. However, explicit security policies and incident response contacts are not prominently published, and security headers are not visibly configured. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the business claims, showing consistent domain registration and DNS setup. Overall, NVL demonstrates a strong business credibility and digital maturity with a secure and privacy-aware web presence. Strategic improvements in publishing security policies and enhancing security headers would further strengthen their security posture.

L

Lürssen

lurssen.com

62

Lürssen is a renowned German company specializing in the design, construction, and refit of luxury yachts. The website reflects a strong brand presence with a focus on high-end maritime transportation solutions, targeting affluent clients and industry professionals. The site offers multilingual support and highlights key services including new builds, refit and services, and a marine foundation. Technically, the website uses modern frameworks such as Nuxt.js and integrates Matomo for analytics alongside Cookiefirst for cookie consent management, indicating a moderate level of digital maturity. Security-wise, while HTTPS is implied, explicit security headers and detailed privacy policies are not evident, suggesting room for improvement in security posture and compliance transparency. Overall, the site is professional and trustworthy but would benefit from enhanced security disclosures and verified domain registration data.

U

US Federal Contractor Registration (USFCR)

usfcr.com

62

US Federal Contractor Registration (USFCR) is a specialized service provider focused on assisting businesses, nonprofits, and government agencies with federal contracting registrations, including SAM registrations and SBA set-aside certifications. Established in 2009, USFCR has completed over 300,000 SAM registrations, positioning itself as a trusted partner in the federal contracting space. Their service offerings include registration facilitation, compliance monitoring, proposal writing consulting, and vendor verification programs, targeting a broad audience from small to large entities seeking federal contracts. Technically, the website employs a modern technology stack including Bootstrap, FontAwesome, Google reCaptcha, and various analytics and advertising pixels such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted on DigitalOcean and built using HubSpot CMS components, indicating a mature digital infrastructure. The site is mobile optimized with good SEO and accessibility basics, though some improvements could be made in accessibility features. From a security perspective, the site uses HTTPS and implements reCaptcha for form security, but lacks DNSSEC and explicit security headers such as Content-Security-Policy and X-Frame-Options. No privacy or cookie policies were found, representing a compliance gap especially regarding GDPR. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, supporting the business credibility. Overall, USFCR presents a professional and trustworthy online presence with solid business credibility and technical implementation. However, it should improve privacy compliance and security hardening to enhance user trust and regulatory adherence.

N

New Voices Fund

newvoicesfund.com

56

New Voices Fund is a thesis-driven venture capital firm focused on investing in consumer brands and commerce infrastructure companies that address emerging market demands and evolving technology. The firm emphasizes visionary leadership and aims to amplify the voices and needs of the New General Market. The website presents a professional and modern digital presence, leveraging Webflow CMS, embedded Vimeo videos, and interactive portfolio carousels. The technical infrastructure is solid with HTTPS enforced and use of modern JavaScript libraries, though some security headers are not explicitly detected. Privacy and cookie policies are not clearly presented, which may impact compliance with regulations such as GDPR. The absence of WHOIS data for the domain raises questions about domain registration status, though the website content and design suggest a legitimate business. Overall, the site is well-structured and informative but would benefit from enhanced transparency on privacy and security policies.

N

New Voices Foundation

newvoicesfoundation.org

49

New Voices Foundation is a non-profit organization dedicated to fostering a more inclusive entrepreneurial ecosystem by providing capital, leadership development, skill-building, and networking opportunities primarily to entrepreneurs of color, especially African-American and Latina women. The organization leverages its PACE model and hosts events such as pitch competitions at high-profile venues like EssenceFest and CES. The website reflects a mature digital presence built on WordPress with modern plugins and integrations, including LayerSlider and WPBakery Page Builder. While the site is well-designed and content-rich, it lacks some privacy compliance features such as cookie consent mechanisms and security headers, which could be improved to enhance user trust and regulatory adherence. The domain registration is consistent with the organization's history and shows no suspicious indicators, supporting the legitimacy of the business.