Security Directory

G

Game Dev Košice

gamedevkosice.sk

39

Game Dev Košice is a Slovakian community organization dedicated to fostering game development through events, meetups, hackathons, and educational activities. It serves as a hub for developers, students, and educators to collaborate and grow within the industry. The website is built on WordPress with Elementor and uses modern web technologies, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks some security headers and privacy compliance documentation. Analytics tools are present but not fully configured, indicating room for improvement in data collection and privacy practices. Overall, the site reflects a credible and active community organization with strong partnerships and a clear mission.

S

Slovak Game Developers Association

sgda.sk

51

The Slovak Game Developers Association (SGDA) is a professional industry association dedicated to supporting and representing game development activities in Slovakia. The organization focuses on promoting Slovak game projects globally, supporting developer needs, negotiating with strategic partners, and accelerating business opportunities for game developers. The website serves as a hub for industry news, events, job listings, outsourcing services, educational resources, and annual industry reports, positioning SGDA as a central figure in the Slovak game development ecosystem. The association is well-established, with a domain registered since 2016 and consistent WHOIS data aligning with its Slovak origins. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Beaver Builder, ensuring good SEO and content management capabilities. It uses HTTPS with DNSSEC enabled, hosted likely by Websupport, a Slovak hosting provider. The site includes cookie consent mechanisms and integrates Google Tag Manager for analytics, reflecting a moderate level of digital maturity. Mobile optimization and accessibility are adequately addressed, though some improvements could be made. From a security perspective, the site enforces HTTPS and DNSSEC, but lacks explicit security headers like Content-Security-Policy and does not provide a security.txt or incident response contact information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found in the provided content. Overall, SGDA's website is a professional, trustworthy platform serving the Slovak game development community effectively. Strategic recommendations include publishing a comprehensive privacy policy, adding security headers, and providing clear incident response contacts to enhance security posture and compliance.

B

brand MARINE CONSULTANTS

consultfixed.com

50

Consultfixed.com is a specialized website offering an international marine consultancy services agreement developed by brand MARINE CONSULTANTS. The site targets marine industry clients and consultants, providing a standardized contract to clarify project requirements, deliverables, and financial commitments. The business operates in a niche market with a small company size and a focus on contract clarity and flexibility. Technically, the website is built on the Contao CMS platform, leveraging jQuery, Bootstrap, and Font Awesome for frontend functionality and styling. The site is mobile-optimized with good navigation and SEO practices, though accessibility is basic. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is basic with a privacy and cookie policy present but no explicit GDPR statements or terms of service. Contact is limited to a single company email address with no phone or physical address listed. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

PANDI SERVICES J. & K. Brons GmbH is a well-established maritime claims management and P&I club correspondent service provider with a history dating back to 1865. The company operates internationally with multiple offices in Germany, the UK, Singapore, and Indian Ocean regions. It is part of the bMC Group and holds ISO 9001:2015 certification, reflecting a commitment to quality management. Their core services include claims management for ships, cargo, crew, and non-marine incidents, serving shipowners, insurers, and maritime professionals. The website is professionally designed, mobile-optimized, and provides comprehensive contact information and service details.

C

Captain Förster GmbH

captainfoerster.de

47

Captain Förster GmbH is a well-established marine and cargo surveying company operating primarily in Germany with offices in Hamburg and Bremen. Founded in the 1970s, the company serves a global clientele including shipping companies, insurers, freight forwarders, and industrial clients. Their service portfolio is comprehensive, covering a wide range of marine survey and consultancy services. The company is part of the bMC GROUP and holds ISO 9001:2015 certification, underscoring their commitment to quality. The website reflects a professional and trustworthy business presence with clear contact details and compliance with data privacy regulations. Technically, the website is built on the Contao CMS platform, utilizing modern web technologies such as jQuery, Bootstrap, and specialized libraries for UI and cookie management. The site is mobile-optimized and includes a cookie consent mechanism with blocking until acceptance, demonstrating good privacy compliance. Analytics are handled via Matomo, an open-source platform, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and uses session and CSRF protection cookies. However, there is no explicit security policy or incident response contact information published, which could be improved. Security headers are not explicitly detected in the provided data, suggesting room for enhancement. No vulnerabilities or suspicious content were identified. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security policy transparency and incident response readiness would further strengthen their security posture.

B

bMC GROUP

salvageapp.com

53

SalvageApp is a specialized web application developed and operated by the bMC GROUP, targeting the marine claims sector. It offers a suite of modules designed to improve information flow, cost transparency, project scheduling, risk management, and reporting for marine salvage and insurance claims. The platform is provided complimentary to bMC GROUP clients, positioning it as a value-added service within a niche maritime insurance market. The website presents a professional and consistent brand image with clear contact information and detailed descriptions of its modules and benefits. Technically, the website is built on the Contao CMS with modern frontend technologies including Bootstrap and jQuery. It demonstrates good mobile optimization and user experience, though some SEO and accessibility features are basic. The site uses HTTPS and includes client login functionality, but lacks visible security headers and DNSSEC is not enabled, indicating room for security improvements. Analytics and tracking are implemented via brand-analytics.de, with a basic cookie consent mechanism in place. From a security perspective, the site shows no signs of blocking or WAF interference, and no critical vulnerabilities are evident in the provided data. However, the absence of DNSSEC and security headers suggests moderate security posture. The domain registration is consistent with the business timeline and shows no suspicious patterns, supporting legitimacy. Overall, SalvageApp's website is a credible, well-structured platform serving a specialized business audience with a moderate security posture and good business credibility. Strategic improvements in security headers, DNSSEC, and privacy compliance could enhance trust and resilience.

T

TAC360

tac360.ca

47

TAC360 is a specialized online platform dedicated to showcasing Canadian Technology Access Centres (TACs) through curated video content. The website serves as an educational and promotional resource, targeting stakeholders interested in advanced manufacturing, agriculture, clean technology, and other innovation sectors in Canada. It provides a searchable video gallery filtered by sector and region, enhancing accessibility to TAC information. The platform is relatively new, founded in 2021, and operates within the technology industry with a focus on Canadian markets. Technically, TAC360 is built on WordPress with AMP integration for mobile optimization and uses several plugins including Yoast SEO and All-in-One Video Gallery. The site employs HTTPS with a valid SSL certificate and uses Clicky Analytics for visitor tracking. While the site is generally well-structured and mobile-friendly, it lacks some security headers and does not have DNSSEC enabled, which are areas for improvement. From a security perspective, the website demonstrates basic good practices such as HTTPS and domain transfer protection. However, the absence of a privacy policy, cookie consent mechanism, and security headers reduces its privacy compliance and security posture. No critical vulnerabilities or adult content were detected, and the domain registration is privacy protected but consistent with the business profile. Overall, TAC360 presents a professional and trustworthy platform with good content quality and business credibility. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, enabling DNSSEC, and adding a vulnerability disclosure policy to improve compliance and security maturity.

T

Tech-Access Canada

meetthetacs.ca

55

Tech-Access Canada operates as a Canadian non-profit organization providing access to assistive technology through a network of Technology Access Centres (TACs). The website serves as a member portal offering information about TACs, equipment, specialization, and engagement opportunities. The organization targets individuals and entities seeking assistive technology services across Canada, positioning itself as a national resource in this niche. The business model is centered on facilitating access and information rather than direct commercial sales. Technically, the website employs a modern but basic technology stack including jQuery, Bootstrap 4, Kendo UI, and Font Awesome. The site is mobile optimized with good navigation and professional design, though accessibility and SEO features are basic. Hosting and CMS details are not explicitly identified. Performance is moderate with no critical errors detected. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is provided. The WHOIS data shows privacy protection but is consistent with a legitimate small non-profit domain registration. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information. The risk level is moderate with no critical vulnerabilities detected but some compliance and security best practices gaps.

M

Mohawk College

resilientcolleges.ca

59

Canadian Colleges for a Resilient Recovery is a pan-Canadian coalition led by Mohawk College, focusing on supporting climate-focused economic recovery through collaboration among colleges, cégeps, institutes, and polytechnics. The coalition offers training, applied research, and partnership facilitation to address complex challenges across Canada. The website positions itself as a national platform connecting educational institutions and industry partners to foster innovation and resilience. Technically, the website is built on WordPress using Elementor, with integrations including Mailchimp for marketing and Google Analytics for tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Hosting and DNS are managed via reputable providers, with HTTPS enforced and domain registration secured with prohibitive status flags, though DNSSEC is not enabled. Security posture is solid with HTTPS and domain protections, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The site maintains a professional and trustworthy appearance with consistent branding and clear navigation. Overall, the website is a credible and professional platform supporting educational and climate resilience initiatives in Canada, with room for improvement in privacy compliance and security transparency.

E

Entrevestor

entrevestor.com

44

Entrevestor is a specialized media platform focused on delivering news and information about startups, innovation, and technology companies primarily in Atlantic Canada. It serves entrepreneurs, investors, and ecosystem participants by providing timely news, funding announcements, and ecosystem reports. The platform operates on a media business model with revenue streams from advertising and newsletter subscriptions, positioning itself as a niche regional leader in startup news. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, and Owl Carousel, hosted on Dynamichosting.cloud with a CMS likely ExpressionEngine. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS and includes CSRF tokens in forms but lacks DNSSEC and security headers, and does not publish security or privacy policies, indicating room for improvement in compliance and security posture. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

T

The Signal

signalhfx.ca

55

The Signal is a student-run media website produced by senior journalism students at the University of King’s College in Halifax, Nova Scotia. It provides a variety of news content including local news, arts, science, sports, business, and investigative journalism. The site also offers podcasts and video content, targeting a general audience interested in regional news and culture. The business model is educational and media-focused, supported by the university. Technically, the website is built on WordPress, uses modern web technologies such as jQuery, Font Awesome, and Google Tag Manager, and is hosted on AWS infrastructure. The site is mobile optimized and accessible with good SEO practices. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks DNSSEC and some security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. No direct contact information or security policies are publicly available, which limits transparency. Overall, the website is professional, trustworthy, and serves its educational media purpose well.

H

Hook & Tell

hook-tell.cz

56

Hook & Tell is a Czech content marketing agency specializing in complex industries and challenging content needs. Established since 2015, the agency serves over 200 brands, primarily in the B2B sector, offering expert content creation, LinkedIn profile management, and career communication services. Their website is professionally designed, bilingual (Czech and English), and demonstrates a strong market position with reputable clients such as E.ON and Commerzbank. Technically, the site is built on Webflow with modern libraries and integrates analytics and cookie consent tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS, cookie consent, and CAPTCHA protections, though some security headers are not explicitly detected. The absence of WHOIS data reduces domain trust but does not detract from the professional presentation and compliance with GDPR. Overall, the website is secure, privacy-conscious, and well-positioned in its market niche.

The domain recessrain.com currently serves a 404 Not Found error page with no active website content or business information. The domain is registered through NameCheap, Inc. and hosted on Google Cloud Platform, with DNS managed by AWS DNS servers. The site appears to be a placeholder or under development, with content related to Admiral's copyright access control and privacy consent services. There is no direct business presence or contact information on the site. Technically, the site uses standard web technologies (HTML, CSS, JavaScript) but lacks SEO, accessibility, and performance optimizations. Security posture is moderate due to HTTPS usage and encryption, but no advanced security headers or vulnerability disclosures are present. Overall, the site is low trust and low content quality, reflecting a new or inactive domain.

F

Faktisk.no AS

faktisk.no

61

Faktisk.no AS operates a Norwegian fact-checking website focused on providing accurate news verification, fact-check articles, and educational content to the Norwegian-speaking public. The organization positions itself as a trusted media entity with a non-profit business model supported by donations and grants. The website demonstrates a high level of content quality, professional design, and clear navigation, targeting users interested in media literacy and factual information. Technically, the site employs modern JavaScript frameworks, video streaming via Mux, and analytics through UseFathom. The infrastructure appears custom-built with good mobile optimization and accessibility features. However, some security best practices such as security headers and cookie consent mechanisms could be improved to enhance compliance and protection. Security posture is strong with HTTPS enforced and secure form handling, but the absence of WHOIS data limits domain trust assessment. No WAF or blocking mechanisms were detected, and the site is fully accessible. Privacy policy is comprehensive and GDPR compliant, though cookie consent is not clearly implemented. Overall, Faktisk.no presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, cookie consent, and transparency around domain registration would further strengthen trust and compliance.

The website nano.no, titled 'Sidespeilet Utvikling', appears to be a small-scale service provider focused on remote support solutions, primarily offering TeamViewer QuickSupport downloads. The business is likely operated by an individual named Tom Øyvind Hogstad, based in Norway, with contact details provided directly on the site. The site content is minimal and primarily serves as a download portal rather than a full corporate website. From a technical perspective, the website is built with basic HTML and CSS, lacking modern frameworks or CMS platforms. There is no evidence of advanced analytics, tracking, or advertising technologies. Mobile optimization and accessibility are basic, and SEO features are minimal. The site does not include privacy or cookie policies, nor terms of service, which limits its compliance posture. Security posture is weak due to the apparent absence of HTTPS enforcement and security headers. No forms or data collection mechanisms are present, reducing exposure to input-based vulnerabilities but also limiting user engagement. The WHOIS data is consistent with the website's business profile and origin, indicating legitimacy but a small operational scale. Overall, the website scores low to moderate in content quality, technical implementation, security, and privacy compliance. Strategic improvements in security (HTTPS, headers), privacy policies, and technical modernization would enhance trust and compliance.

I

IC Studio

icstudio.online

58

IC Studio is a Ukrainian-based IT and web development company specializing in custom software solutions using Laravel and October CMS frameworks. The company targets B2B and B2C clients, offering services including corporate websites, CRM and ERP systems, and digital marketing. With over 4 years in the market and more than 104 projects completed, IC Studio positions itself as a reliable partner for IT infrastructure transformation. Technically, the website demonstrates a mature technology stack with modern cloud hosting providers and development tools, indicating a good level of digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks visible security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

W

Web-studio-51

web-studio-51.com

48

Web-studio-51 is a Russian web development and digital marketing company founded in 2021, specializing in creating websites of varying complexity, including corporate sites, landing pages, and e-commerce platforms. They offer comprehensive services including web design, SEO, CRM integration, and advertising campaign management, targeting small and medium-sized businesses and startups primarily in Russia. The company positions itself as a reliable regional player with over 40 completed projects and official partnership with October CMS, enhancing its credibility in the local market. Technically, the website is built on OctoberCMS with modern frontend technologies like Bootstrap, jQuery, and Alpine.js, and integrates analytics tools such as Yandex Metrika and Mail.ru counters. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and some security headers. Privacy compliance is strong with clear cookie consent and privacy policies. Overall, the business demonstrates a professional online presence with transparent contact information and trust signals. Recommendations include enhancing DNS security, adding explicit security policies, and improving security headers to strengthen the security posture further.

M

Mobecan

mobecan.com

54

Mobecan is a Russian-based software development studio specializing in mobile applications, web development, and enterprise automation systems (ERP). Founded in 2014, the company positions itself as a top-tier developer with a strong portfolio including government and regional clients. Their key services include UI/UX design, software architecture, development, QA, deployment, and ongoing support. The website is professionally designed, bilingual (Russian and English), and targets businesses seeking digital transformation and automation solutions. Technically, the site uses modern web technologies such as OctoberCMS, jQuery, Bootstrap, and integrates analytics via Yandex Metrika and Google Tag Manager. Security measures include HTTPS enforcement and SmartCaptcha for form protection, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the site reflects a mature digital presence with good business credibility and moderate security posture.

K

Klad Syndicate

klad.design

48

Klad Syndicate is a multidisciplinary design syndicate founded in 2020, providing comprehensive and long-lasting design solutions. Their services include inspiring, envisioning, creating, launching, supporting, and reimagining projects for their clients. The company positions itself as a niche provider in the creative design sector, targeting individuals and organizations seeking innovative design services. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern JavaScript frameworks such as Alpine.js and FilePond, and is hosted on Vultr. It integrates Google Analytics and Google Ads for tracking and marketing purposes. Security-wise, the website uses HTTPS and has a clientTransferProhibited domain status, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but would benefit from improved security and privacy practices.

H

Helder

helder.work

44

Helder is a Dutch technology company specializing in tailored digital solutions for small and medium-sized enterprises, including websites, webshops, AI tools, and process optimization services. The company positions itself as a practical partner for growing businesses seeking automation and operational efficiency. Technically, the website is built on modern web technologies including Font Awesome, Google Fonts, Google reCAPTCHA, Microsoft Clarity, and Google Tag Manager, hosted on TransIP infrastructure. The site is mobile optimized, accessible, and SEO friendly. Security posture is good with HTTPS and form protection, though some security headers and policies are missing. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy page. Overall, the website is professional and trustworthy, with clear contact information and positive customer reviews. The domain registration is privacy protected but consistent with the business location and age. Strategic recommendations include publishing comprehensive privacy and security policies and enhancing security headers to improve trust and compliance.

I

ITStar

itstar.online

45

ITStar is a small Russian technology company specializing in custom website and application development using modern frameworks such as Laravel, OctoberCMS, and Vue.js. The company presents itself as an official partner of October CMS and offers a range of services including corporate portals, e-commerce solutions, and individual design. The website is professionally designed, mobile-optimized, and provides clear contact information and portfolio examples. Technically, the site uses a modern tech stack and is hosted by Beget LLC with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. Security posture is moderate with room for improvement in domain DNSSEC and explicit security policies. Overall, the domain registration is consistent and legitimate, supporting the business claims. The site is safe for general audiences with no adult or questionable content detected.

R

Right Creative, LLC

rightcreative.design

54

Right Creative, LLC is a small, professional web design and digital marketing agency based in Central Pennsylvania, serving local businesses with over 20 years of experience. Their core offerings include custom logo design, website development, digital marketing strategies, and bespoke app development. The company positions itself as a premiere regional agency focused on quality, results, and client growth. Technically, the website is built on a modern stack including OctoberCMS, JavaScript libraries like jQuery and GSAP, and is monitored via New Relic and Google Analytics. The site is well-optimized for performance and mobile devices, with clear navigation and professional content. Security posture is good with HTTPS enforced, though some security headers are missing and cookie consent mechanisms are not implemented. WHOIS data shows privacy protection typical for small agencies, with no suspicious indicators. Overall, the website demonstrates strong business credibility and digital maturity.

I

Impelling Managed Services Ltd

impelling.co.uk

64

Impelling Managed Services Ltd is a UK-based expert IT support provider founded in 2011, specializing in managed IT services, cyber security, and Microsoft 365 solutions. The company targets businesses across the UK, offering a people-first approach to IT strategy and support. Their market position is that of a trusted regional provider with UK-wide reach, emphasizing transparency and customer trust through guarantees and clear policies. Technically, the website is built on October CMS with modern frontend technologies like Tailwind CSS and Alpine.js, hosted via Cloudflare with DNSSEC enabled, ensuring good performance and security. Analytics tools such as Snitcher and Fathom are used for user tracking, though no cookie consent mechanism is present. Security posture is solid with HTTPS and DNSSEC, but lacks some security headers and published security policies. Overall, the website is professional, well-structured, and trustworthy, with minor improvements recommended in privacy compliance and security transparency.

S

Spletna postaja - izdelava spletnih strani

spletna-postaja.com

57

Spletna postaja is a Slovenian digital agency specializing in custom web development, including websites, webshops, and B2B portals. Established since 2003, the company positions itself as a reliable partner for businesses seeking tailored digital solutions with a focus on design, speed, and results. The website reflects a professional and consistent brand image supported by client testimonials and structured data with high ratings. Technically, the site uses modern web technologies including SVG animations and Google Tag Manager for analytics, hosted under a domain registered with GoDaddy since 2004. Security posture is good with HTTPS enabled and domain protections in place, though there is room for improvement in security headers and published policies. Privacy compliance is partial, with a consent mechanism present but no explicit privacy or cookie policy pages found. Overall, the site is well-structured, user-friendly, and trustworthy, targeting business clients primarily in Slovenia and beyond.

O

OFFLINE GmbH

offline.ch

49

OFFLINE GmbH is a Swiss technology company based in Luzern specializing in modern web application development, legacy software modernization, and CTO-as-a-Service offerings. With approximately 14 years of experience, they serve a diverse clientele ranging from startups to established enterprises, emphasizing quality and sustainable technical solutions. The website reflects a professional and modern digital presence, built using the Hugo static site generator, optimized for performance and mobile devices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the site lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced compliance and protection. Overall, the company demonstrates strong business credibility and technical maturity with room for improvement in privacy and security transparency.

V

Voilaah Digital Agency

voilaah.com

52

Voilaah is a Singapore-based digital agency specializing in UI/UX design and web development, serving startups, enterprises, and government agencies. The company offers a full suite of services including web and mobile app development, custom software solutions, and AI systems integration. With over 12 years of experience and recognition such as the Media Agency of the Year at the Singapore Quality Brand Awards, Voilaah positions itself as a trusted partner in the digital transformation space. Technically, the website is built on modern web technologies including Webflow CMS, Google Tag Manager, GSAP animations, and Typekit fonts, delivering a fast, mobile-optimized, and visually engaging user experience. The site is well-structured with clear navigation and professional branding consistency. From a security perspective, the site uses HTTPS and follows several best practices, though it lacks explicit security headers and published privacy or cookie policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable concern, impacting domain legitimacy verification. Overall, the website demonstrates strong business credibility and technical maturity but should improve privacy compliance and domain transparency to enhance trust and security posture.

K

KraftCERT AS

infracert.no

70

KraftCERT AS is a specialized non-profit cybersecurity organization focused on securing process control systems within the Norwegian energy sector, including power, petroleum, and related industries. It operates as an Information Sharing and Analysis Center (ISAC) and Incident Response Team (IRT), providing members with vulnerability monitoring, threat intelligence, incident handling, advisory services, exercises, and training. The organization is recognized nationally and internationally, holding certifications such as Trusted Introducer and membership in FIRST. The website reflects a professional and focused approach, targeting companies in critical infrastructure sectors with clear contact channels and published PGP keys for secure communication. Technically, the website employs modern frameworks like Bootstrap 5, ensuring mobile responsiveness and a good user experience. However, it lacks explicit privacy and cookie policies, and no analytics or tracking scripts are detected, indicating a privacy-conscious design. The absence of WHOIS data limits domain trust verification, but the website content and contact information appear legitimate and consistent with the organization's mission. From a security perspective, the site demonstrates good practices such as HTTPS usage and incident response contact availability. The publication of PGP keys enhances secure communication. Nonetheless, the lack of security headers and formal privacy compliance documents represents areas for improvement. Overall, the site is trustworthy and professional but could enhance compliance and security posture with additional policies and technical headers. The overall risk assessment is moderate with recommendations to improve privacy compliance, implement security headers, and publish vulnerability disclosure policies. These steps would strengthen trust and align the organization with best practices in cybersecurity governance.

The domain fewkittens.com currently serves a 404 Not Found error page with minimal content. The page indicates that the domain is hosted by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. The website lacks substantive business content, contact information, or user engagement features, suggesting it is either a placeholder or under development. The technical infrastructure is based on Google Cloud Platform with standard web technologies (JavaScript, HTML, CSS) and employs industry-standard encryption with frequent certificate rotation. Security posture is reasonable given the lack of executable content and continuous scanning, but the absence of security headers and DNSSEC represents areas for improvement. Privacy compliance is basic with mention of GDPR and no third-party cookies, but no explicit consent mechanism is implemented. Overall, the site’s risk is low due to minimal content and no suspicious elements, but the lack of business and contact information limits trust and credibility.

L

Legionäre Baseball AG

legionaere.de

52

The website legionaere.de represents the Guggenberger Legionäre Regensburg, a well-established baseball club in Regensburg, Germany, active since 1987. The club offers a variety of baseball-related services including team participation, training programs, fan merchandise, and event hosting. The site targets baseball enthusiasts, players, and the local community, positioning itself as a prominent regional sports club with a strong community focus. The business model revolves around sports engagement, community events, and merchandise sales. Technically, the website is built on WordPress using the Elementor framework, incorporating modern plugins for media and user interaction. The site is mobile-optimized, well-structured, and performs moderately well with good SEO and accessibility basics. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, although no explicit security policy or incident response information is published. Privacy and cookie policies are present and GDPR compliant, with a newsletter form collecting user emails securely. Overall, the website is professional, trustworthy, and provides a positive user experience.

D

Dynamics e.V.

dynamics-regensburg.de

55

Dynamics e.V. is a medium-sized student association based in Germany, composed of over 80 students from OTH and University Regensburg. Their primary focus is the design, construction, and competition of Formula Student race cars, providing educational and practical experience in automotive engineering and motorsport. The website serves as an information hub for current and prospective members, showcasing team activities, newsletters, and recruitment opportunities. Technically, the site is built on WordPress with Elementor, leveraging Cloudflare for DNS and CDN services, and integrates social media and Mailchimp for communication. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is basic with a cookie consent banner but no visible privacy policy or terms of service. Overall, the site is professional, safe, and trustworthy, targeting students and motorsport enthusiasts.

The website www.bananenflanker-legenden.de is currently inaccessible beyond a Cloudflare Turnstile security challenge page, which blocks access to any substantive content. Due to this, no business information, contact details, or policy documents are available for review. The site appears to be protected by Cloudflare's security mechanisms, indicating an intent to prevent automated access or abuse. The technical infrastructure includes Cloudflare services and standard web technologies such as HTML5, CSS3, and JavaScript, but no CMS or backend platform is identifiable from the accessible content. Security posture cannot be fully assessed due to lack of content and headers visibility. Overall, the site is currently not analyzable for business or compliance insights, and the risk assessment is limited by the access restrictions.

T

Tennisclub TC Rot-Blau Regensburg

tc-rotblau.de

53

Tennisclub TC Rot-Blau Regensburg is a well-established tennis club founded in 1925, serving as one of the largest and leading tennis clubs in Bavaria and Germany. The club offers a broad range of services including tennis training for all age groups, membership benefits, event hosting, and an online merchandise shop. The website reflects a family-oriented sports organization with a strong local presence and community engagement. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Complianz GDPR for compliance, hosted on Goneo servers. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

E

Eisbaeren Regensburg

eisbaeren-regensburg.com

54

Eisbaeren Regensburg is a local German ice hockey team with an online presence focused on providing team information and engaging with fans. The website is built on WordPress using the Uncode theme and incorporates modern web technologies such as jQuery and Typekit fonts. The site includes a cookie consent mechanism via Usercentrics, demonstrating awareness of GDPR requirements, although explicit privacy and terms of service pages are not found. Security posture is moderate with HTTPS enabled and domain transfer protection set, but lacks DNSSEC and security headers. Overall, the site is functional, well-branded, and targeted at sports enthusiasts in the Regensburg region.

E

expeero

expeero.com

48

Expeero is a German-based technology company offering a SaaS platform focused on reputation management with a unique ecological angle by planting trees for each customer review. The company targets businesses seeking to improve their online reputation while demonstrating environmental responsibility. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Matomo analytics and Bootstrap framework. Security posture is solid with HTTPS and CSRF protections, though some security headers are missing and no explicit cookie consent mechanism is present. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, but the active and comprehensive website content supports business credibility. Overall, Expeero presents a trustworthy and innovative service with room for improvement in transparency and security practices.

The website certipedia.com currently returns a 503 Service Unavailable error indicating that no server is available to handle requests. This results in a complete lack of accessible content, metadata, or interactive elements. The domain registration data is consistent and legitimate, registered since 2012 with a reputable registrar and name servers aligned with the TÜV Rheinland brand. However, the absence of website content prevents any meaningful analysis of business operations, services, or user engagement. The technical infrastructure cannot be assessed beyond the domain registration data. Security posture is unknown due to lack of accessible content and no security headers or HTTPS information provided. Overall, the site is inaccessible, resulting in a low AI score and inability to evaluate compliance or trustworthiness beyond domain legitimacy.

B

bücher.de

buecher.de

62

bücher.de is a large German e-commerce platform specializing in the sale of books, audiobooks, eBooks, gifts, games, entertainment, and technology products. The website targets a general German-speaking audience and positions itself as a major player in the German online book retail market. The platform offers a broad catalog with over 15 million products and emphasizes convenience and free shipping for price-bound books. Technically, the website uses modern JavaScript libraries, integrates Google Tag Manager, Microsoft Clarity, and Criteo for analytics and marketing, and manages cookie consent via Klaro, indicating GDPR awareness. Security posture is good with HTTPS enforced, but lacks visible security headers and explicit security policies. No direct contact or privacy policy links were found in the provided content, which is a potential area for improvement. Overall, the website is professional, well-branded, and trustworthy with moderate to good technical implementation and privacy compliance.

The website www.saturn.de currently presents a Cloudflare Turnstile captcha challenge page blocking direct access to its content. This indicates a security mechanism to prevent automated access or abuse. Due to this, no substantive business content, policies, or contact information is accessible for analysis. The domain uses Akamai nameservers, suggesting professional hosting and a legitimate commercial presence. However, the lack of accessible content limits the ability to assess the company's business model, services, or compliance posture. Technically, the site employs modern WAF technology but does not expose further technical or security details on this page. Security posture is difficult to evaluate fully due to content blocking, but the presence of a WAF is a positive indicator. Overall, the site is currently inaccessible for full analysis, resulting in a low AI score and unknown compliance or business credibility status.

J

jpc

jpc.de

70

jpc.de is a well-established German e-commerce platform specializing in the sale of physical media products such as CDs, LPs, DVDs, Blu-rays, and books. The website offers a large catalog with over 4 million items and provides free shipping for vinyl and orders above 20 euros, targeting music and film enthusiasts primarily in Germany. The business model focuses on retail sales through an online shop with additional editorial content and a blog to engage customers. The site is professionally designed with consistent branding and good content quality, supporting both German and English languages.

D

Dussmann - Das Kulturkaufhaus

kulturkaufhaus.de

58

Dussmann - Das Kulturkaufhaus operates a professional online retail platform specializing in books, music, sheet music, and movies, primarily serving cultural enthusiasts in Berlin and beyond. The website reflects a medium-sized retail business with a strong cultural focus, offering curated products and hosting events and workshops. The digital infrastructure employs modern JavaScript libraries and tracking tools, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS and secure form handling, though explicit privacy and cookie policies are not evident, indicating room for compliance improvement. Overall, the website presents a trustworthy and professional front, though enhancing transparency around privacy and contact information would strengthen user trust and regulatory compliance.

TIDAL is a globally recognized music streaming service specializing in high fidelity sound and high-definition video quality, offering expertly curated playlists and original content. The platform targets music enthusiasts and culture followers worldwide, operating on a subscription-based business model. The website reflects a mature and professional digital presence consistent with a large media company, founded in 1995. Technically, the site employs modern web technologies, including JavaScript, HTML5, CSS, and integrates cookie consent management via OneTrust. Hosting is inferred to be on Amazon AWS infrastructure, with DNS managed by AWS nameservers. Security measures include HTTPS enforcement, Content Security Policy headers, and anti-clickjacking scripts, although DNSSEC is not enabled. No explicit privacy policy or terms of service were detected in the provided content, and no direct contact or security incident response information is publicly visible. The WHOIS data confirms the domain's legitimacy, showing consistent registration details with a reputable registrar and appropriate domain age. Overall, the site demonstrates good security posture and technical implementation but would benefit from enhanced privacy compliance documentation and clearer contact information.

U

UKi Media & Events

automotive-interiors-expo.com

66

Automotive Interiors Expo Europe is a well-established trade event organized by UKi Media & Events, focusing on the automotive interiors sector and integrated within the broader Vehicle Tech Week Europe. The website serves as a comprehensive platform for industry professionals, OEMs, suppliers, designers, and engineers to connect, showcase innovations, and access industry news. The business model revolves around event organization, media publishing, and sponsorship facilitation, positioning itself as a key player in the automotive technology ecosystem. Technically, the site employs a modern tech stack including jQuery, Alpine.js, and multiple analytics and marketing tools, hosted on a reliable infrastructure with good mobile optimization and SEO practices. Security posture is solid with HTTPS, domain transfer protection, and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, with extensive user tracking balanced by clear consent. No critical vulnerabilities or suspicious patterns were detected.

Gleanin is a UK-based technology company founded in 2016, offering a community marketing platform designed to help event marketers accelerate word-of-mouth referrals. The company targets event brands and marketers, positioning itself as a trusted partner with a client base that includes major event brands. The website reflects a modern technical infrastructure using Nuxt.js and Vue.js frameworks, hosted on AWS DNS services, and demonstrates good mobile optimization and user experience. However, the site lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate, with domain transfer protection but missing DNSSEC and security headers. Overall, the domain registration data aligns well with the business information, indicating legitimacy and trustworthiness.

The website at fluidads.com is currently inaccessible, returning an Access Denied error which indicates the presence of a web application firewall or restrictive server permissions. Due to this, no content, metadata, or business information is available for analysis. The domain is registered with GoDaddy.com, LLC since 2006 and uses AWS DNS servers, suggesting hosting on Amazon infrastructure. However, the lack of accessible content severely limits the ability to assess the company's business model, services, or market position. From a technical perspective, no information about the technology stack, CMS, or security headers could be extracted. Security posture cannot be evaluated beyond the domain registration data. Overall, the site appears to be either under maintenance, restricted, or protected by security mechanisms that block public access.

V

Voomly - Create, Host, And Launch High-Converting Videos Wit

voomly.com

65

Voomly appears to be a technology company offering a SaaS platform for creating, hosting, and launching high-converting videos. The website content emphasizes video customization to boost engagement and sales, targeting a general audience interested in video marketing solutions. The technical infrastructure leverages modern JavaScript libraries and third-party analytics tools such as Google Analytics, Facebook Pixel, and Bing Ads, indicating a mature digital marketing approach. The site is built on the ClickFunnels platform, which supports marketing funnel creation and hosting. Security posture is moderate with HTTPS enabled and CSRF tokens present, but lacks visible security headers and formal privacy or cookie policies. The absence of WHOIS data raises concerns about domain legitimacy and business credibility. Overall, the site is professionally designed and mobile optimized but requires improvements in privacy compliance and transparency to enhance trust.

S

SegMetrics

segmetrics.io

60

SegMetrics is a US-based technology company founded in 2015 that provides marketing analytics software designed to help marketers and business owners understand what drives their revenue. The website is professionally designed using WordPress with Elementor and optimized with NitroPack, delivering a fast and mobile-friendly user experience. Security posture is solid with HTTPS and Cloudflare DNS, though the absence of security headers and formal privacy or cookie policies indicates room for improvement. No contact emails or phone numbers are explicitly provided on the main page, which may impact user trust and compliance. Overall, the site is legitimate and well-positioned in its niche but should enhance privacy and security disclosures to improve compliance and user confidence.

C

ClickFunnels

myclickfunnels.com

63

ClickFunnels is a technology company specializing in providing a SaaS platform for building sales funnels and marketing automation. The website analyzed is a login page for the accounts subdomain, indicating a user authentication portal for their services. The company targets entrepreneurs, marketers, and small to medium businesses aiming to grow their sales through optimized funnels. The platform is positioned as a leading provider in the sales funnel software market, offering tools for lead generation and conversion optimization. Technically, the site uses modern web technologies including Ruby on Rails backend indicators, Turbo (Hotwire) framework, and a variety of marketing and analytics tools such as Microsoft Clarity, Facebook Pixel, Google Tag Manager, and Appcues. The site is served over HTTPS with CSRF protection tokens, indicating basic security hygiene. However, the page lacks explicit security headers and comprehensive privacy or cookie policies, which are important for compliance and user trust. From a security perspective, the site shows good SSL configuration and secure form handling but could improve by implementing additional security headers and providing clear privacy and security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data for the subdomain is typical and does not indicate risk. Overall, the domain and subdomain appear legitimate and consistent with the brand. The overall risk assessment is moderate due to the lack of explicit privacy and cookie policies and limited contact information on the login page. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and cookie policies with consent mechanisms, and providing clear contact channels for security incidents to improve compliance and user trust.

G

Goetheanum

goetheanum.org

55

Goetheanum is an educational and cultural institution focused on spiritual science and anthroposophy, serving as the seat of the General Anthroposophical Society. The website presents a professional and consistent brand image with good content quality targeted at individuals interested in spiritual and educational topics. Technically, the site uses modern web technologies including JavaScript, CSS, Google Fonts, and integrates cookie consent via iubenda, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks explicit security headers and published security policies. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the site is safe, trustworthy, and well-positioned within its niche educational sector.

V

Vesta Control Panel

vestacp.com

56

Vesta Control Panel is an established open source hosting control panel software founded in 2010, offering a free GPLv3 licensed solution for managing websites, DNS, mail, backups, and more. It targets developers, hosting providers, and small to medium businesses seeking an easy-to-use hosting control panel. The website demonstrates a strong market position with half a million servers running Vesta and 25,000 monthly installs, supported by an active GitHub repository and community forum. Technically, the site uses modern web technologies including Nuxt.js and Tailwind CSS, with Cloudflare DNS and Google Tag Manager integration, providing a fast, mobile-optimized, and accessible user experience. Security-wise, the site benefits from HTTPS, open source transparency, and claims strong password security practices, but lacks published privacy, cookie, and security policies, as well as DNSSEC and security headers, which are recommended for improvement. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include publishing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, and providing vulnerability disclosure information to enhance trust and compliance.

C

Connect Center

connectcenter.hu

37

Connect Center is a Hungarian technology company specializing in e-commerce integration solutions, providing a platform that bridges ERP, inventory, invoicing, wholesale price lists, and webshop systems. The company targets e-commerce businesses seeking seamless synchronization between backend systems and online stores. The website is built on WordPress using the Divi theme and incorporates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and reCAPTCHA for security. While the technical infrastructure is solid with HTTPS and standard plugins, the site lacks published privacy and cookie policies, which impacts GDPR compliance. No explicit contact information or security policies are visible, which may affect user trust and compliance transparency. Overall, the site presents a professional business presence with moderate digital maturity but requires improvements in privacy and security disclosures.