Security Directory

S

SuperCoach

supercoach.com.au

70

SuperCoach is a leading Australian fantasy sports platform offering free-to-play games across major sports leagues including NRL, AFL, NBL, and BBL. The platform provides various game modes such as classic and draft games, official tipping competitions, and a premium subscription service called SuperCoach Plus that enhances user experience with advanced statistics and tools. The website is well-branded, targeting sports enthusiasts and fantasy sports players primarily in Australia. Technically, the site is built on a modern Angular framework with integration of video players and multiple third-party services for advertising and analytics. Security posture is solid with HTTPS and Content-Security-Policy headers, though additional security headers and privacy compliance mechanisms could be improved. WHOIS data is incomplete, limiting domain legitimacy verification, but the website's professional presentation and external references support its credibility. Overall, the site is functional, user-friendly, and positioned as a trusted fantasy sports destination in its market.

B

Bean Origin Cafe & Burgers

beanorigin.com.au

54

Bean Origin Cafe & Burgers is a family-owned hospitality business based in Australia, specializing in coffee, burgers, and catering services. The company targets local community customers seeking fresh, affordable, and quality food in a welcoming environment. The website reflects a small but professional local business with multiple locations in Canberra suburbs. Technically, the site uses modern web technologies including jQuery, service workers, and Snowplow analytics, hosted on a platform compliant with Australian domain policies. Security posture is good with HTTPS and no exposed sensitive data, though explicit security headers and privacy policies are missing. Overall, the site is well-designed and user-friendly but could improve privacy compliance and security transparency.

C

Complete Athlete Pathway

completeathletepathway.com.au

59

Complete Athlete Pathway is a small Australian-based consultancy focused on empowering Australian women to secure basketball scholarships in the United States. The business leverages established connections with overseas coaches and provides comprehensive support throughout the collegiate journey, including scholarship applications and college admissions guidance. The website is professionally designed on the Squarespace platform, featuring clear navigation and relevant content targeted at aspiring female athletes. Technically, the site uses modern web technologies with HTTPS and HSTS enabled, ensuring secure communications. However, the absence of explicit privacy and cookie policies, as well as limited contact information, indicates areas for improvement in privacy compliance and business transparency. The WHOIS data is limited due to privacy protections but aligns with the Australian focus of the business. Overall, the site presents a legitimate and professional service with moderate security posture and good user experience.

EPC Solar is a small Australian renewable energy company specializing in solar panel installations, battery storage, and energy efficiency consulting. The website presents a professional image with clear service offerings targeting residential and commercial customers interested in sustainable energy solutions. The technical infrastructure is based on WordPress CMS with Elementor page builder, incorporating Google Fonts and Facebook Pixel for marketing and tracking. The website is accessible without any WAF or security challenges, indicating good availability. Security posture is moderate with HTTPS enabled but lacks security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the domain registration is privacy protected with minimal WHOIS data, typical for small businesses, and no suspicious indicators were found. Strategic recommendations include enhancing privacy compliance, adding security headers, and improving contact transparency to strengthen trust and security.

F

Fevo Inc.

fevo-enterprise.com

71

FEVO Enterprise operates as an online group ticket sales platform designed to facilitate organizations in managing group clients and increasing revenue opportunities through targeted marketing and management tools. The platform targets organizations that manage group ticket sales, providing a niche service that integrates multiple payment gateways and identity verification services to streamline the ticket purchasing process. The website presents a professional and consistent brand image with clear business focus and relevant content. Technically, the site leverages modern web technologies including React, various payment SDKs, and accessibility tools, indicating a mature and well-maintained digital infrastructure. Security posture is strong with HTTPS enforced and secure payment integrations, though explicit security headers and published security policies are absent. Privacy compliance is addressed with visible privacy and cookie policies, but GDPR-specific details and incident response contacts are missing. Overall, the website is trustworthy and functional with room for improvement in transparency and security documentation.

P

Pension Kokel

pensionkokel.ro

44

Pension Kokel is a small hospitality business located in Dumbrăveni, Sibiu county, Romania, offering luxury accommodation in 12 rooms along with restaurant, bar, terrace, entertainment, and spa services. The website presents a professional and consistent brand image with clear service offerings and booking capabilities via a third-party engine. The technical infrastructure leverages AngularJS, Bootstrap, and popular frontend libraries, providing a modern and responsive user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the website is trustworthy and suitable for general audiences with no adult or explicit content detected.

O

Office of the Australian Information Commissioner (OAIC)

oaic.gov.au

68

The Office of the Australian Information Commissioner (OAIC) operates as the independent national regulator for privacy and freedom of information in Australia. The website clearly communicates its mission to promote and uphold rights related to government-held information and personal data protection. It serves a broad audience including the Australian public and government agencies, providing key services such as privacy regulation, data breach reporting, and Consumer Data Right guidance. The OAIC holds a strong market position as a government authority with a large organizational size and official backing by the Commonwealth of Australia. Technically, the website is built on the Squiz Matrix CMS platform and leverages modern web technologies including Google Tag Manager, Google reCAPTCHA, and ReadSpeaker for accessibility. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, ensuring a positive user experience. Performance is fast and the site is well-structured with clear navigation. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on forms, and implements cookie consent mechanisms. While explicit security headers are not fully documented in the HTML, the overall SSL configuration is excellent and no vulnerabilities or exposed sensitive data were detected. However, the site could improve by publishing a dedicated security policy, incident response information, and a vulnerability disclosure program. Overall, the OAIC website is a highly credible, professional, and secure government resource. It aligns well with privacy compliance standards including GDPR principles and provides comprehensive user information. Strategic recommendations include enhancing security transparency and formalizing vulnerability disclosure to further strengthen trust and security posture.

S

SportsRecruits

nfhcarecruits.com

63

NFHCARecruits is the official collegiate field hockey recruiting platform endorsed by the National Field Hockey Coaches Association (NFHCA). It serves student-athletes, college coaches, and club/high school staff by providing tools to create athlete profiles, discover recruits, and streamline recruiting processes. The platform is powered by SportsRecruits, a well-established recruiting technology provider since 2008, which lends credibility and technical robustness to the service. The website demonstrates a professional design, clear navigation, and mobile optimization, supporting a positive user experience for its target audience. Technically, the website leverages modern web technologies including Webflow CMS, HubSpot marketing and analytics tools, Google Fonts, and Ketch for privacy management. The site is hosted on Webflow's CDN, ensuring fast performance and reliable uptime. Security posture is strong with HTTPS enforced and privacy mechanisms in place, although explicit security headers and dedicated security policies are not fully documented on the site. From a security and compliance perspective, the site shows good privacy compliance with comprehensive privacy and cookie policies linked to reputable sources. However, the absence of WHOIS registration data for the domain www.nfhcarecruits.com raises questions about domain legitimacy or registration status, possibly due to privacy protection or use of subdomains. No contact emails or explicit incident response contacts were found, which could be improved to enhance trust and compliance. Overall, NFHCARecruits presents a trustworthy and functional platform for collegiate field hockey recruiting with solid business partnerships and technical infrastructure. Addressing WHOIS transparency, adding explicit security policies, and providing more direct contact information would further strengthen its security posture and business credibility.

S

SportsRecruits

imlcarecruits.org

63

IMLCARecruits is a specialized recruiting platform dedicated to men's collegiate lacrosse, officially endorsed by the Intercollegiate Men's Lacrosse Coaches Association (IMLCA). It serves a broad audience including student-athletes, families, club and high school staff, and college coaches, providing tools for profile creation, recruiting management, and access to event film. The platform is powered by SportsRecruits, a well-established company in the sports recruiting technology space, enhancing its credibility and technical robustness. The website demonstrates a professional and polished digital presence with excellent content quality and user experience.

E

Enrico Serafino S.r.l.

enricoserafino.it

58

Enrico Serafino S.r.l. is a historic family-owned winery established in 1878, specializing in artisanal wines from the Langhe-Roero and Monferrato regions of Italy, areas recognized as UNESCO World Heritage sites. The company emphasizes sustainable viticulture and traditional Piedmontese winemaking, targeting wine enthusiasts and cultural consumers. Their business model includes wine production, tastings, and direct sales through an online wine shop and gift cards. The website reflects a consistent brand image with good content quality and clear navigation.

C

Casa di Langa: Sustainable Hotel in Langhe, Piedmont, Italy

casadilanga.com

48

Casa di Langa is a sustainable hotel located in the Langhe region of Piedmont, Italy, catering to travelers seeking eco-friendly and luxury accommodations. The website presents a professional and visually appealing interface built on WordPress and hosted by SiteGround, utilizing modern web fonts and iconography. The technical infrastructure is moderate in performance with good mobile optimization but lacks advanced security headers and privacy compliance features. The security posture is basic with HTTPS enabled but missing critical security headers and no visible incident response or security policy information. The absence of WHOIS data raises concerns about domain legitimacy, although the active and professional website partially offsets these concerns. Overall, the site is safe for general audiences and focused on hospitality services without any explicit or adult content.

L

Lexington Eagles

lexingtoneagles.com

58

Lexington Eagles is a small, faith-based non-profit soccer program launched in 2024, operating as a division of Missionary Athletes International. The organization focuses on empowering players of all ages and backgrounds through soccer and leadership development, offering programs such as urban ministry, school programs, international tours, and volunteer opportunities. The website is professionally designed using Squarespace, featuring good navigation and mobile optimization. However, the absence of privacy and cookie policies and missing WHOIS domain registration data present compliance and trust concerns. Security posture is strong with HTTPS and HSTS enabled, but additional security headers and policies are recommended. Overall, the site is functional and trustworthy from a content perspective but requires improvements in privacy compliance and domain legitimacy transparency.

W

WIENI BV

wieni.be

57

Wieni BV is a Belgian digital agency specializing in delivering digital products that are user-centric, innovative, and high quality. Their market position is strengthened by longstanding partnerships with notable clients such as Play Media, Bruzz, UZ Leuven, and Floorify. The company focuses on user involvement and a learning mindset to create impactful digital experiences. Technically, the website is built on Webflow CMS, leveraging modern web technologies including Google Fonts, jQuery, and privacy-focused Plausible Analytics. The site is fast, mobile-optimized, and well-structured, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are absent and no incident response or vulnerability disclosure policies are published. Privacy compliance is good with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. The WHOIS data is missing, which raises some concerns about domain registration legitimacy, but the professional website and business information mitigate this risk. Overall, the website scores well on content quality, technical implementation, and security, with room for improvement in privacy compliance and WHOIS transparency.

A

Athens United Merch Hub

athensunitedmerchhub.com

64

Athens United Merch Hub operates as a specialized e-commerce platform focused on selling branded merchandise for the Athens United sports club or brand. The website offers a range of products including apparel, headwear, accessories, and drinkware, targeting fans and supporters. The business model is retail-oriented, leveraging Shopify's platform for online sales. The site presents a professional and consistent brand image with clear navigation and product categorization, positioning itself as a niche merchandise provider in the sports retail sector. Technically, the website is built on Shopify using the Dawn theme, hosted likely on Google Cloud infrastructure. It employs modern web technologies including JavaScript, CSS, and HTML5, with integrations for multiple payment methods such as Shopify Payments, Apple Pay, PayPal, and Venmo. Performance and mobile optimization are adequate, with basic accessibility features implemented. SEO practices are good, supported by proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized transfers or updates. However, DNSSEC is not enabled, and no advanced security headers are detected. There is no published security policy or incident response information, and no direct contact emails or phone numbers are provided. The WHOIS data raises concerns due to a domain creation date set in the future and lack of registrant details, which impacts trustworthiness. No WAF or blocking mechanisms are detected, and the site content is fully accessible. Overall, the website is functional and professionally presented but has gaps in privacy compliance and domain registration transparency. Strategic improvements in security policies, contact information availability, and domain registration legitimacy would enhance trust and compliance.

O

Orbit Travel

orbit.co.nz

60

Orbit Travel is a New Zealand-based, 100% locally owned travel management company specializing in business and event travel solutions. Established in 2001, it has grown to become a market leader with annual sales exceeding $500 million and a strong presence in government and corporate sectors. The company emphasizes sustainability, technology-driven booking platforms, and comprehensive travel management services. The website reflects a professional and well-structured digital presence with clear branding and extensive service information. Technically, the website is built on WordPress with modern plugins and libraries such as Yoast SEO, jQuery, GSAP, and Google Tag Manager, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security practices include HTTPS enforcement and secure form handling, but lack some advanced HTTP security headers and cookie consent mechanisms. Security posture is solid with no evident vulnerabilities or exposed sensitive data, but the absence of a published security policy or incident response plan is a gap. WHOIS data is unavailable, which slightly reduces domain trustworthiness, though the business legitimacy is supported by certifications and industry awards. Overall, the site is trustworthy and professional but could improve privacy compliance and security transparency. Strategic recommendations include implementing cookie consent for GDPR compliance, publishing security and incident response policies, enhancing HTTP security headers, and establishing a vulnerability disclosure program to strengthen security culture and trust.

O

Office of Sport

westernsydneymarathon.com.au

75

The Office of Sport, a NSW Government entity, operates the Western Sydney Marathon, a prominent regional running event promoting healthy lifestyles and community engagement. The website serves as an official information portal for the event, featuring detailed descriptions, event updates, and links to related government resources. The site is built on Drupal 10 and integrates modern web technologies including Google Tag Manager and Facebook Pixel for analytics and marketing purposes. The technical infrastructure is modern and mobile-optimized, providing a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and nonce usage for scripts, though security headers and incident response information are absent. WHOIS data is limited due to privacy policies typical for Australian government domains but aligns with the official nature of the site. Overall, the website is trustworthy, well-maintained, and serves its public-facing role effectively.

H

Hockey Ireland Shop

hockeyirelandshop.ie

58

Hockey Ireland Shop is an official e-commerce platform dedicated to selling licensed Hockey Ireland merchandise including replica shirts, clothing, and gifts. The website targets hockey players, fans, and supporters primarily in Ireland and the UK. It operates on the Shopify platform, leveraging modern e-commerce technologies and payment integrations such as Shopify Payments, Apple Pay, and Google Pay. The site demonstrates good content quality, clear navigation, and consistent branding aligned with Hockey Ireland's identity. Security posture is solid with HTTPS enforced and secure payment methods, though some security headers and explicit policies could be improved. Privacy and cookie policies are present and indicate GDPR compliance. The domain is newly registered in 2024, consistent with the store's launch, and WHOIS data aligns with the business purpose without suspicious patterns.

T

Tasmania JackJumpers

jackjumpers.com.au

61

The Tasmania JackJumpers website serves as the official online presence for the newest professional basketball team in Australia's National Basketball League. The site provides comprehensive information about the team, including news, schedules, and fan engagement content, targeting basketball enthusiasts and residents of Tasmania. The website employs modern frontend technologies such as Nuxt.js and Vue.js, integrating multiple third-party analytics and advertising services to support marketing efforts. While the site is well-designed and mobile-optimized, it lacks visible privacy and cookie policies, as well as explicit contact information, which are areas for improvement. Security posture is moderate due to missing security headers and unknown SSL configuration. The domain WHOIS data is limited due to auDA privacy policies but shows no suspicious indicators, supporting the legitimacy of the site.

O

Ons hart klopt voor u

onshartkloptvooru.be

42

Ons hart klopt voor u is a non-commercial social profit initiative under Zorgnet-Icuro, serving as a large network of care organizations in Flanders focused on elderly residential care. The website provides information and resources for individuals seeking woonzorgcentrum (residential care centers) with a focus on human-centered care. Technically, the site is built on WordPress with modern web technologies including jQuery, Slick Carousel, and Google Fonts, and is hosted by a reputable Belgian registrar, edpnet. The site is mobile optimized and SEO friendly, leveraging Yoast SEO plugin for search engine visibility. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities detected, though some security headers could be improved and formal security policies are absent. Privacy compliance is partial, with a cookie consent mechanism present but lacking explicit privacy and terms of service policies. Overall, the website is professional, trustworthy, and serves its target audience effectively, but could enhance compliance and security transparency.

B

Bistroteca BAUM

bistrotecabaum.ro

46

Bistroteca BAUM is a Romanian hospitality business specializing in Romanian and international cuisine, offering daily and à la carte menus, event hosting, and table reservations. The website reflects a small but established local business with a focus on customer satisfaction and community engagement, including tourist guide services and electric car charging facilities. The digital infrastructure is built on AngularJS with integration of third-party widgets for booking and reviews, indicating moderate digital maturity. Security posture is basic with HTTPS enabled but lacking advanced security headers and DNSSEC, and no visible privacy or cookie policies, which may pose compliance risks. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

S

Steel Production

egt-sp.com

68

EGT Steel Production is a Bulgarian-based manufacturing company specializing in steel products and metal fabrication services. As a subsidiary of Euro Games Technology, a global leader in gaming equipment manufacturing, EGT Steel Production leverages advanced machinery and a skilled workforce to deliver high-quality laser cutting, sheet bending, welding, powder coating, and 3D CAD design services. The company targets businesses requiring precision steel components and industrial metalwork solutions. The website is professionally designed, bilingual (Bulgarian and English), and provides comprehensive information about services, products, and company background. Technically, the website is built on WordPress, utilizing modern web technologies including jQuery, Google Fonts, and Google Analytics for tracking. The site is hosted with Cloudflare DNS and secured with HTTPS, ensuring a good baseline of security and performance. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site employs HTTPS and domain transfer protection but lacks advanced security headers and DNSSEC. There is no visible security policy or incident response contact information, and cookie consent mechanisms are absent, indicating partial privacy compliance. No vulnerabilities or suspicious content were detected. Overall, the site demonstrates a moderate to good security posture but could improve in privacy and security transparency. The overall risk assessment is low, with recommendations to enable DNSSEC, implement security headers, add cookie consent, and publish security policies to enhance trust and compliance. The business credibility is strong due to clear contact information, parent company association, and professional presentation.

E

Event Promotions

eventpromotions.co.nz

53

Event Promotions is a New Zealand-based small business specializing in organizing and promoting sporting events, primarily running, walking, and personal challenge competitions across the North Island. Established since 1999, the company has a stable market presence and targets participants and organizers of sporting events. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress using the Divi theme, optimized with Yoast SEO and performance tools like WP Rocket, hosted by Crazy Domains. Security posture is adequate with HTTPS but lacks advanced security headers and DNSSEC, and there are compliance gaps due to missing privacy and cookie policies. Overall, the site is safe, trustworthy, and well-positioned but would benefit from enhanced security and privacy compliance measures.

L

Little Athletics NSW

lansw.com.au

59

Little Athletics NSW is a well-established non-profit organization dedicated to providing athletics programs for children aged 5 to 17 in New South Wales, Australia. The organization focuses on community engagement, coaching education, volunteering, and hosting competitions and events. Their website reflects a professional and consistent brand presence with strong partnerships including McDonald's and other sports-related organizations. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses common analytics and marketing tools like Google Analytics and Facebook Pixel. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is adequate with HTTPS enforced but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and protection. Overall, the domain registration and WHOIS data align well with the organization's identity, indicating legitimacy and trustworthiness.

A

ALBION San Diego

albionsandiego.com

44

ALBION San Diego is a regional soccer club competing in the National Independent Soccer Association (NISA). The website serves as an informational portal for fans, players, and the local community, providing details on schedules, rosters, tickets, and youth academy programs. The business model focuses on sports entertainment and youth development within the soccer industry. The site integrates multiple third-party tools for analytics, social media, and UI enhancements, reflecting a moderate level of digital maturity. However, the content quality and design are basic, with limited direct contact information and no visible privacy or cookie policies, which may impact user trust and regulatory compliance. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. The domain registration is consistent with the business age and shows good domain management practices. Overall, the website is functional but would benefit from improvements in privacy compliance, security hardening, and richer content to enhance professionalism and user trust.

A

ALBION CUP

albioncup.com

57

ALBION CUP operates as a global soccer tournament series, organizing showcases and competitive events primarily targeting youth and amateur soccer players and teams. The website presents a professional and consistent brand image focused on sports event hosting, with a business model centered on organizing soccer tournaments and showcases in various locations. Technically, the website is built on WordPress using the Divi theme, hosted by GoDaddy, and employs standard web technologies such as Google Fonts and jQuery. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing critical security headers and DNSSEC, and no evidence of vulnerability disclosure or incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and credible but would benefit from enhanced security and compliance measures.

A

ALBION Colorado

albioncousl.com

67

ALBION Colorado is a newly established community-focused organization or business based in Colorado, as indicated by the domain creation date in early 2024 and the website title 'ALBION Colorado – Together We Rise'. The website is built on WordPress and utilizes a variety of popular plugins for content presentation, including LayerSlider, Slider Revolution, and social media feed integrations. The content suggests a local or community engagement focus, but lacks detailed business descriptions or explicit service offerings. Technically, the site is moderately optimized with good mobile responsiveness and uses HTTPS, but lacks advanced security headers and privacy compliance documentation. No contact information or formal policies such as privacy or cookie policies were found, which may impact user trust and regulatory compliance. Overall, the website presents a basic but functional digital presence appropriate for a small or startup organization.

A

ALBION Colorado

bouldercountyusl.com

67

ALBION Colorado is a newly established entity with a website launched in early 2024. The site appears to be community-oriented with a focus on the Colorado region, but provides minimal business description or service details. The technical infrastructure is based on WordPress, utilizing popular plugins such as LayerSlider and WPBakery Page Builder, hosted via GoDaddy. The website demonstrates basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and domain status protections, though DNSSEC is not implemented. There are no visible privacy or cookie policies, contact information, or security incident response details, indicating gaps in compliance and user trust elements. Overall, the site is functional but requires enhancements in privacy, security policies, and business transparency to improve credibility and compliance.

B

▷Baumbet.ro – Casa de pariuri si Cazino online

baumbet.ro

71

Baumbet.ro is an online Romanian gambling platform specializing in sports betting and casino games, offering over 130 casino games and competitive betting odds. The website targets Romanian-speaking adult users interested in online gambling. The platform uses modern web technologies including jQuery, SignalR, Google Tag Manager, Hotjar, and Cookiebot for analytics and consent management. The site is mobile optimized and employs HTTPS for secure communications. However, explicit privacy policies and terms of service were not found in the provided content, and no direct contact information is visible, which may impact user trust and compliance. WHOIS data is privacy protected under ROTLD policies, which is common but reduces transparency. Overall, the site presents a professional gambling service with moderate security posture and good technical implementation.

S

Stanleybet

stanleybet.ro

62

Stanleybet.ro is a Romanian online gambling platform offering sports betting, online casino games, and lottery services. The website targets Romanian-speaking users interested in regulated gambling entertainment. The platform demonstrates a mature digital presence with modern web technologies such as Angular, Google Tag Manager, and Cookiebot for privacy compliance. The site is well-structured with good content quality and mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit incident response policies could enhance trust. WHOIS data is privacy protected as per ROTLD regulations, which is typical for gambling businesses in Romania. Overall, the website presents a professional and trustworthy front for its business operations.

I

INCOROM SRL

bonusgroup.ro

48

Bonus Group, operated by INCOROM SRL, is a Romanian company specializing in the operation of gaming halls featuring slot machines and related gambling entertainment. The company has a regional presence with multiple physical locations primarily in Bucharest and other Romanian cities. Their website emphasizes responsible gaming and legal compliance, including age verification for users to restrict access to adults only. The business targets adult customers interested in gambling entertainment and positions itself as a reputable operator within the Romanian gaming industry. Technically, the website uses a modern tech stack including Bootstrap for responsive design, jQuery, Google Maps API for location services, and various UI libraries such as Owl Carousel and Fancybox. The site is moderately optimized for mobile devices and provides a good user experience with clear navigation and professional design. However, some accessibility and SEO optimizations could be improved. From a security perspective, the site enforces age verification and cookie consent mechanisms, which are positive indicators. However, no explicit HTTP security headers were detected in the provided content, and no contact information for security incidents or data protection officers was found. The SSL configuration and hosting details are not explicitly known from the data provided. The WHOIS data is privacy protected by ROTLD, which is common for Romanian domains, and no suspicious patterns were found. Overall, the security posture is moderate but could benefit from enhancements in headers, contact transparency, and vulnerability management. The overall risk assessment suggests the website is legitimate and professionally maintained but should improve its security and privacy disclosures to enhance trust and compliance. Strategic recommendations include implementing security headers, publishing clear incident response contacts, and improving accessibility and SEO. These steps will strengthen the company's digital maturity and regulatory compliance in the gambling sector.

A

Alfastreet Trade România

alfastreet.ro

47

Alfastreet Trade România is a specialized B2B provider of electronic roulette equipment and related services, representing the Slovenian company Alfastreet Gaming Instruments. Established in 2008 and headquartered in Bucharest, it holds a leading market position in Romania's electronic roulette segment. The company targets gambling operators and end users seeking high-performance gaming equipment. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site is built on WordPress with common plugins such as Yoast SEO and MasterSlider, and integrates Google Tag Manager and Google Maps API for analytics and location services. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though improvements are recommended such as enabling DNSSEC and adding security headers. Privacy compliance is basic but includes a cookie consent mechanism and a privacy policy page. Overall, the domain registration data is consistent and mature, supporting the legitimacy of the business.

B

Bavarian United Soccer Club

bavarianunited.com

59

Bavarian United Soccer Club is a regional soccer organization based in Glendale, Wisconsin, offering a broad range of soccer programs including youth and adult teams, academies, and specialized training such as goalkeeper coaching. The club engages its community through various resources, events, and a sporting goods shop, positioning itself as a key player in local soccer development. The website reflects a professional and community-focused sports club with clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies including jQuery, service workers, and analytics tools, hosted on a CDN platform with good performance and mobile optimization. Security posture is solid with HTTPS and captcha protections, though it lacks some advanced security headers and explicit privacy and cookie policies. Overall, the site is trustworthy and well-maintained but would benefit from enhanced privacy compliance and security best practices.

F

Fevo Inc.

groupmatics.events

71

FEVO Enterprise operates as a specialized online group ticket sales platform designed to facilitate organizations in managing group clients and increasing revenue opportunities through targeted marketing and management tools. The platform targets organizations that require group ticketing solutions and provides offer code-based access to tickets, positioning itself as a niche player in the event ticketing technology sector. The website's technical infrastructure leverages modern frontend technologies such as React, integrates multiple payment gateways including Braintree, Shift4, Apple Pay, and Zip Co, and employs analytics and consent management tools to enhance user experience and compliance. Accessibility is addressed through EqualWeb integration, and the site is hosted behind Cloudflare, ensuring performance and security benefits. Security posture is generally good with HTTPS enforced and use of recognized payment processors; however, some sensitive keys are exposed in client-side scripts, and no explicit vulnerability disclosure or security.txt file is present. Privacy and cookie policies are available and indicate GDPR compliance, though direct contact information and incident response channels are not clearly provided. Overall, the website is professional, secure, and compliant with minor areas for improvement in security transparency and contact availability.

P

Phoenix Rising FC

phxrisingfc.com

63

Phoenix Rising FC operates as a professional soccer franchise, recognized as the highest-level soccer team in Arizona and the 2023 USL Championship winners. The website serves as a digital platform for fan engagement, team information, and league affiliation. The business model centers on sports entertainment, merchandising, and community engagement within the USL soccer ecosystem. The site demonstrates a solid market position within regional and national soccer leagues, leveraging partnerships with USL and related leagues.

L

Le Pelican

lepelican-asbl.be

56

Le Pelican is a Belgian non-profit organization founded in 2009, providing support services for individuals facing problematic consumption of alcohol, licit and illicit drugs, and gambling, as well as their families and social circles. The organization offers psycho-social accompaniment, online help, group discussions, prevention, and training services. The website is professionally designed using WordPress.com hosting with Jetpack and Gutenberg technologies, ensuring a good user experience and mobile optimization. Contact information and legal policies are clearly presented, enhancing trust and transparency. Technically, the site leverages modern web technologies including Google Fonts and Facebook SDK, hosted on a secure WordPress.com platform with HTTPS enforced and standard security headers likely in place. Performance is moderate with good SEO and basic accessibility features. Privacy compliance is addressed with GDPR-aligned privacy and cookie policies, including a consent mechanism. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though explicit security policies and incident response contacts are absent. The domain registration is consistent and legitimate, supporting the organization's credibility. Overall, the website is trustworthy, professional, and serves a mature audience concerned with addiction and related social issues. Strategic recommendations include adding explicit security and incident response policies, implementing vulnerability disclosure mechanisms, enhancing accessibility, and maintaining regular security reviews to sustain trust and compliance.

A

AIDE-ALCOOL

aide-alcool.be

50

The website aide-alcool.be is a Belgian non-profit platform dedicated to providing detailed information and support services related to alcohol consumption and alcoholism. It offers free and anonymous self-help programs and professional online accompaniment to individuals seeking to reduce or stop their alcohol intake. The site targets individuals affected by alcohol issues and their close relations, positioning itself as a trusted resource in the healthcare and public health sector in Belgium. The presence of HONcode certification and partnerships with recognized Belgian health and governmental organizations enhance its credibility. Technically, the website employs a modern technology stack including Google Analytics, Modernizr, Google Fonts, and responsive design elements likely based on Bootstrap. The site performs moderately well with good mobile optimization and basic accessibility features. However, there is room for improvement in accessibility and security headers implementation. The site uses HTTPS but lacks visible security headers and explicit privacy and cookie policies, which are important for compliance and user trust. From a security perspective, the site shows no signs of blocking or WAF interference and does not expose sensitive data. However, the absence of privacy and cookie policies and lack of security headers reduce its security posture score. The use of Google Analytics without a visible consent mechanism raises privacy compliance concerns. WHOIS data confirms the domain's legitimacy with consistent registration details and an appropriate domain age. Overall, the website is a credible and professionally presented resource with good content quality and business credibility. To enhance its security and privacy compliance, it should implement and link privacy and cookie policies, add security headers, and provide clear contact information for security incidents. These improvements will strengthen user trust and regulatory compliance.

F

Fundación Universidad Autónoma de Madrid

fuam.es

46

The Fundación Universidad Autónoma de Madrid (FUAM) is a non-profit foundation affiliated with the Universidad Autónoma de Madrid, focusing on supporting university activities through project management, innovation, training, and collaboration with external entities. The website reflects a well-established institution with a clear mission to serve students, university staff, companies, and collaborators. The foundation offers a variety of services including professional education, innovation projects, administrative management, and event organization. Technically, the website is built on WordPress using Elementor, with modern web technologies and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR regulations.

A

Actulégales

actulegales.fr

64

Actulégales.fr is a well-established French online platform specializing in the publication and consultation of legal announcements for companies and businesses in France. Founded in 2012, it serves as an official channel for accessing over 16 million legal announcements published in authorized French press since 2010. The platform targets businesses and legal professionals requiring compliant legal publication services, offering both free consultation and paid publishing options. Its market position is strong within the French legal and media sectors, supported by a comprehensive database and official recognition. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and analytics tools such as Google Analytics and Matomo. Hosting is provided by OVH, a reputable provider, ensuring reliable infrastructure. The site is mobile-optimized with good SEO and accessibility basics, although some improvements in accessibility could be made. Security measures include HTTPS enforcement, security headers, and bot protection via DataDome, reflecting a mature security posture. Security-wise, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. However, it lacks a dedicated security policy page and incident response contact details, which are recommended for enhanced transparency and readiness. Privacy compliance is generally good, with a comprehensive privacy policy and GDPR adherence, but the absence of a cookie consent mechanism is a notable gap. Overall, Actulégales.fr presents a trustworthy and professional online service with a solid business foundation and technical implementation. Strategic enhancements in privacy consent and security transparency would further strengthen its compliance and user trust.

S

Social Media Curve

socialmediacurve.com

56

Social Media Curve is a niche media website launched in 2022, specializing in social media marketing content aimed at marketers, influencers, and small business owners. The site offers a variety of articles, guides, and tool reviews to help brands grow their social presence effectively. The business model appears to be content-driven with monetization likely through affiliate marketing and advertising partnerships. The website is professionally designed with consistent branding and good content quality, positioning it as a credible resource in its niche. Technically, the site is built on WordPress using the Kadence theme and optimized with WP Rocket for performance. Hosting is provided by WPX Hosting, inferred from the nameservers. The site uses modern web technologies including Google Fonts and jQuery, and implements SEO best practices with comprehensive metadata and structured data. Mobile optimization is good, and accessibility is basic but functional. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and security headers are not explicitly detected in the HTML content. There are no published security policies or incident response contacts, which could be improved. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, Social Media Curve presents a low-risk profile with a solid foundation for growth. Strategic improvements in security policies, DNSSEC implementation, and transparency around incident response would enhance trust and compliance. The site’s content safety rating is safe, with no adult or questionable content detected, making it suitable for a general audience.

W

West Coast Eagles

wcesuperstore.com.au

59

The West Coast Eagles SuperStore website serves as the official e-commerce platform for West Coast Eagles merchandise, offering a wide range of branded apparel and memorabilia targeted at fans and supporters. The site is built on the BigCommerce platform, leveraging modern e-commerce technologies and integrations such as Google Analytics 4, Facebook Pixel, and Braze for marketing and user engagement. The website demonstrates a good level of technical maturity with responsive design, security best practices including HTTPS and security headers, and a moderate performance profile. However, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is strong with no evident vulnerabilities or exposed sensitive data, but privacy compliance could be improved by publishing comprehensive policies and contact information for incident response. Overall, the site is professional, trustworthy, and well-positioned as the official merchandise outlet for the club.

O

Onlinepsyhulp Jongeren

onlinepsyhulp-jongeren.be

65

Onlinepsyhulp Jongeren is a specialized online mental health support platform targeting young people aged 16 to 23 in Belgium. The service offers informational resources, self-help tools, and professional online guidance to address common psychological challenges faced by youth. The platform is positioned as a niche non-profit service within the Belgian healthcare ecosystem, collaborating with reputable partner organizations to provide immediate help resources. Technically, the website employs modern web technologies including jQuery and Matomo analytics, with a responsive design optimized for mobile users. Security posture is adequate with HTTPS and CSRF protections, though improvements in security headers and explicit incident response policies are recommended. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. Overall, the website is trustworthy, safe, and professionally presented, though contact information is limited to forms without direct emails or phone numbers.

Z

Zorggroep Zin

cannabishulp.be

64

Cannabishulp is a Belgian non-profit online platform affiliated with Zorggroep Zin, providing comprehensive information and support for individuals dealing with cannabis use and related problems. The website offers educational content, self-assessment tools, online self-help programs, and professional guidance, targeting individuals seeking to manage or understand their cannabis consumption. It is positioned within a broader network of addiction and mental health support sites, emphasizing accessibility and anonymity. Technically, the site employs modern web technologies including jQuery, Matomo analytics, and Google Fonts, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and cookie consent mechanisms could be improved. The WHOIS data is privacy protected, which is justified given the sensitive nature of the service. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

D

drughulp

drughulp.be

65

Drughulp.be is a Belgian non-profit online platform dedicated to providing scientific information about drugs, self-tests, online self-help, and professional support for individuals dealing with drug use and addiction. The website serves a mature audience seeking reliable and anonymous help, offering resources such as drug information, self-assessment tests, and online guidance. It is part of a broader ecosystem of related health support websites under the same initiative. Technically, the site uses modern web technologies including jQuery, Matomo analytics, Google Fonts, and an accessibility widget, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit cookie consent mechanisms could be improved. WHOIS data is restricted due to registry policy, limiting domain ownership transparency but the website content and affiliations support its legitimacy. Overall, drughulp.be is a trustworthy and professional resource in the healthcare non-profit sector with room for minor security and privacy enhancements.

A

alcoholhulp

alcoholhulp.be

66

Alcoholhulp.be is a Belgian non-profit online platform dedicated to providing comprehensive information, self-assessment tools, and professional support for individuals dealing with alcohol problems and addiction. The website offers a variety of services including educational content, anonymous self-tests, online self-help programs, and guided online counseling. It targets individuals seeking to reduce or stop alcohol consumption and those concerned about loved ones. The platform is part of a broader network of addiction and mental health support websites, enhancing its market position as a trusted resource in the healthcare sector. Technically, the website employs modern web technologies such as jQuery, Matomo analytics for privacy-conscious tracking, Google Fonts, and accessibility tools like the UserWay widget. The site is mobile-optimized with good accessibility and SEO practices, providing a positive user experience. While the hosting provider and CMS are not explicitly identified, the site demonstrates moderate performance and professional design quality. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced protection and GDPR compliance. The WHOIS data is restricted due to privacy policies common in .be domains, but the website's professional presentation and affiliations support its legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, alcoholhulp.be presents a secure, trustworthy, and user-friendly platform with strong business credibility in the healthcare non-profit sector. Strategic improvements in security headers, cookie consent, and transparency policies would further strengthen its security posture and compliance.

E

Everyone Is Welcome

everyoneiswelcome.club

61

Everyone Is Welcome is a small, newly founded initiative focused on promoting inclusivity in web design by providing a free digital badge for web designers to display on client websites. The website is professionally designed using WordPress and modern web technologies, hosted with Cloudflare DNS and CDN services, and incorporates Google Tag Manager and Ahrefs Analytics for tracking. The security posture is good with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic with a privacy policy and terms of service present but no cookie consent mechanism. Contact is primarily via email with no phone or physical address listed. Overall, the site is trustworthy, safe, and well-positioned as a niche advocacy platform.

C

Cazino Online

cazino.online

57

Cazino.online is a Romanian-focused online casino affiliate and informational website providing comprehensive listings and reviews of licensed online casinos for 2025. The platform targets Romanian players seeking legal and trustworthy online gambling options, offering detailed bonus information and casino reviews. Technically, the site is built on WordPress with the Kadence theme, leveraging modern web technologies such as jQuery and Google Fonts. The site is mobile optimized and SEO friendly with proper metadata and structured data. Security posture is adequate with HTTPS enabled and domain transfer protections, though it lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies, and no contact or incident response information is provided, which could impact user trust and regulatory compliance. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices.

C

Centra Geestelijke Gezondheidszorg (CGG)

centrageestelijkegezondheidszorg.be

47

Centra Geestelijke Gezondheidszorg (CGG) is a recognized mental health service provider in Flanders, Belgium, offering prevention, early detection, and treatment services for serious psychological problems across all age groups. The website is professionally designed using Drupal 10, with clear navigation and relevant content tailored to individuals seeking mental health support and their caregivers. The organization is endorsed by the Flemish government and managed by Zorgnet-Icuro, enhancing its credibility and trustworthiness. Technically, the site uses modern web technologies and is mobile-optimized, though it lacks some advanced security headers and explicit cookie consent mechanisms. Security posture is strong with HTTPS and no visible vulnerabilities, but incident response and security policies are not published. Overall, the site is safe, compliant with GDPR basics, and serves its healthcare mission effectively.

F

Fevo Inc.

gofevo.com

71

FEVO Enterprise operates as an online group ticket sales platform designed to facilitate group client marketing and management, enhancing revenue opportunities for organizations. The website presents a professional interface with clear branding and focused business messaging targeting organizations managing group ticket sales. Technically, the site leverages modern front-end technologies including React, integrates multiple payment gateways (Braintree, Shift4, Apple Pay, Google Pay), and employs analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is generally strong with HTTPS enforced and use of secure payment SDKs; however, the absence of explicit security policies, incident response information, and WHOIS transparency introduces some trust concerns. Overall, the platform is functional, accessible, and business-oriented with moderate risk due to limited public domain registration data and lack of direct contact information.

T

Teamup Calendar - Get organized. Gain clarity. See the big pictures.

teamup.com

73

Teamup.com is a technology company providing a scalable and customizable online calendar platform designed for group scheduling and resource management. The website presents a professional and user-friendly interface, targeting teams and organizations that require shared calendar solutions. The business model is SaaS-based, focusing on simplifying scheduling complexities across multiple users and resources. Technically, the site is built on WordPress with the Divi theme, leveraging Cloudflare for security and performance, and integrates various third-party services such as Google Analytics, Vimeo, Twitter, and YouTube for enhanced functionality. Security posture is strong with HTTPS enforcement, security headers, and a cookie consent mechanism, although explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable concern for domain legitimacy, but the overall website quality and privacy compliance indicate a trustworthy operation. Strategic recommendations include publishing detailed security and incident response policies, improving contact information transparency, and implementing a vulnerability disclosure program.

The website 10.com.au represents Network Ten's streaming platform '10 play', offering free access to TV show episodes primarily targeting Australian audiences. However, the provided HTML content is an error page indicating the service is not available in the user's region, limiting content accessibility and analysis. The domain is registered through a reputable registrar and uses AWS DNS infrastructure, but DNSSEC is not enabled. No privacy, cookie, or terms of service policies were found in the provided content, and no contact information or social media links are present. The technical infrastructure appears basic with minimal metadata and no detected scripts or analytics in the sample provided. From a security perspective, the site lacks visible security headers and DNSSEC, which are recommended for improved security posture. The regional blocking and error page reduce the ability to assess the full site content and functionality. The domain registration data is consistent with a legitimate media company, but the absence of privacy and cookie policies and lack of security best practices lowers the overall security and compliance score. Overall, the site shows a low content quality and security posture score due to content blocking and missing policies. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing privacy and cookie policies, and improving error handling to enhance user experience and trust. The site is safe for general audiences with no adult content detected.