Security Directory

Arfst Bohn GmbH is a small, family-owned specialist company based on Amrum island, Germany, providing heating, sanitation, ventilation, climate technology, solar energy solutions, and related services. The company emphasizes quality, reliability, and comprehensive customer support from planning to installation and maintenance. Their market position is that of a trusted local expert with a focus on renewable energy and modern heating technologies. Technically, the website uses a modern but straightforward stack including jQuery, Foundation framework, and various UI libraries, hosted likely on a standard web hosting platform. The site is mobile-optimized and provides clear navigation and content relevant to its target audience. Security posture is moderate with HTTPS implied but lacks explicit security headers and detailed security policies. Privacy compliance is good with a cookie consent mechanism and a privacy policy present. Overall, the website is professional and trustworthy, though improvements in security headers and incident response information are recommended.

L

Landesspital Liechtenstein

landesspital.li

49

Landesspital Liechtenstein is a central healthcare provider in Liechtenstein, offering a broad range of medical services including emergency care, internal medicine, surgery, orthopedics, and specialized competence areas such as anesthesia and radiology. The hospital has a long-standing history of over 125 years and positions itself as a trusted institution for the local population. The website reflects a professional and comprehensive digital presence, supporting patient and visitor information, career opportunities, and detailed department descriptions. Technically, the site is built on WordPress with modern themes and plugins, optimized for performance and mobile use, and integrates privacy-respecting analytics via Plausible. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some improvements in security headers and incident response transparency are recommended. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

P

psn media GmbH & Co. KG

psnmedia.de

10

psn media GmbH & Co. KG is a well-established digital agency based in Rostock, Germany, operating since 2003. The company offers a comprehensive portfolio of digital services including web design, web development, app development for iOS and Android, individual software solutions, corporate design, and cross-media marketing campaigns. Their client base spans from medium-sized enterprises to large corporations and public institutions, positioning them as a versatile and reliable partner in the digital transformation space. The website reflects a professional and consistent brand image with clear navigation and rich content tailored to business clients seeking digital innovation. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and slick carousel for UI components, alongside analytics and tracking tools including Google Analytics, Facebook Pixel, and Mouseflow. The site uses HTTPS with good SSL configuration and integrates a consent management platform to comply with GDPR requirements. While the site lacks explicit security headers and a public security policy, it demonstrates a solid baseline security posture with no visible vulnerabilities or exposed sensitive data. From a security perspective, the site benefits from encrypted communications and user consent mechanisms for tracking. However, it could improve by implementing additional HTTP security headers and publishing incident response contacts or security policies. The WHOIS data aligns well with the website's claims, showing consistent domain registration and no suspicious patterns, supporting the legitimacy of the business. Overall, psn media presents a trustworthy and professional digital presence with strong business credibility and good privacy compliance. The site is well-optimized for user experience and mobile devices, making it suitable for its target audience of businesses seeking digital agency services.

B

BEOS AG

giesserei-garching.de

46

The website represents a real estate project called GIESSEREI Garching, managed by BEOS AG, offering flexible and sustainable office and commercial spaces near Munich. The business targets companies seeking innovative hybrid workspace solutions in a prime location with strong infrastructure. The site is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Yoast SEO, and Matomo analytics. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the domain and hosting setup are consistent and legitimate, supporting the business credibility.

V

Virtualna Tvornica

virtualna-tvornica.com

10

Virtualna Tvornica is a Croatian digital agency specializing in web development and online marketing services, established in 2012. The company offers a broad range of services including web shop creation, website and web application development, AI and ERP integration, and various digital marketing solutions such as Google, Meta, and TikTok advertising. Their market position is that of a specialized, small-sized agency with a consistent brand presence and a portfolio of successful projects. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile devices, and integrates standard marketing and security tools like Google Tag Manager and reCAPTCHA. Security posture is good with HTTPS and cookie consent mechanisms in place, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the website is professional, trustworthy, and compliant with GDPR, with no signs of blocking or WAF interference.

The website www.javnanabava.hr serves as the official Croatian government portal dedicated to public procurement. It provides authoritative information, legal frameworks, news updates, statistical data, and educational resources aimed at public sector entities, suppliers, and other stakeholders involved in public procurement processes. The portal is managed by the Ministry of Economy's Directorate for Public Procurement Policy, reflecting a strong government presence and trustworthiness. Technically, the site leverages modern web technologies including Blazor, Bootstrap, and Oqtane CMS, ensuring a responsive and accessible user experience. Accessibility tools and cookie consent mechanisms are implemented, demonstrating compliance with privacy regulations such as GDPR. Security posture is solid with HTTPS enforced and CSRF protections in place, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site is professional, well-maintained, and serves its governmental informational purpose effectively.

E

EDF Renewables North America

edf-renewables.com

53

EDF Renewables North America operates as a market-leading independent power producer and service provider specializing in renewable energy solutions including wind (onshore and offshore), solar photovoltaic, energy storage, and electric vehicle charging across North America. The company positions itself as a sustainable energy partner, targeting businesses and communities seeking clean energy solutions. Their website reflects a mature digital presence with comprehensive content, multi-language support, and active engagement through social media channels. The business is a subsidiary of the EDF Group, a major global energy player, reinforcing its market credibility. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and Yoast SEO, ensuring good SEO and user experience. The site is mobile-optimized and accessible, with a moderate performance profile. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place; however, explicit security headers and incident response information are absent, representing areas for improvement. The WHOIS data for the domain is unavailable, indicating possible privacy protection or proxy registration. While this reduces transparency, the website's branding, content quality, and external affiliations support its legitimacy. No direct company contact emails or phone numbers are published, with contact facilitated via web forms. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website demonstrates a professional and trustworthy digital presence aligned with its business objectives in the renewable energy sector. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving direct contact information to strengthen trust and compliance.

P

Provident Promotions

providentpro.com

53

Provident Promotions is a small, regionally focused creative agency based in Hastings, Nebraska, specializing in digital media marketing services including website design, logo creation, photography, video production, and SEO. The company targets local businesses and non-profits seeking professional marketing tools to build and grow their brands. Their website demonstrates a good level of technical maturity, leveraging WordPress CMS with modern plugins and libraries to deliver a responsive and SEO-optimized user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data for the domain raises concerns about domain registration transparency, which could impact trustworthiness despite the professional presentation and client testimonials. Overall, the website is well-designed and functional but would benefit from enhanced privacy compliance and clearer domain legitimacy.

I

isla

traceyour.events

62

TRACE by isla is a specialized SaaS platform focused on providing credible, real-time carbon measurement and reduction insights for the event industry. The platform targets event planners, business owners, and sustainability officers, offering tools to measure carbon footprints across live, hybrid, and digital events. TRACE positions itself as a niche leader in event sustainability, supported by strong branding, client testimonials, and case studies. Technically, the website is built on WordPress with modern JavaScript libraries and integrates analytics and marketing tools such as Google Analytics, HubSpot, and Hotjar. The site is mobile-optimized and SEO-friendly, providing a professional user experience. Security-wise, the site enforces HTTPS and uses reCAPTCHA Enterprise for form protection but lacks some recommended security headers and a formal security policy. Privacy compliance is adequate with a comprehensive privacy policy, though cookie consent mechanisms could be improved. Overall, the domain WHOIS data is privacy-protected but consistent with the business's UK-based identity. The website demonstrates a high level of professionalism and trustworthiness with no critical security issues detected.

E

EDF Renewables North America

edf-re.mx

53

EDF Renewables North America operates a dedicated Mexico division focused on renewable energy projects including solar and wind power generation. The company has been active in Mexico since 2000, with a large employee base and offices in Mexico City and Oaxaca. Their market position is strong as a leading independent power producer and service provider in the renewable energy sector, offering a broad portfolio of clean energy technologies and services. The website reflects a mature digital presence with modern technologies, SEO optimization, and multi-language support. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. WHOIS data is missing, which slightly impacts trust but the overall professional presentation and corporate affiliations support legitimacy.

I

Informační centrum Brdy

icbrdy.cz

46

Informační centrum Brdy operates as a regional tourist information center located in the Czech Republic, providing comprehensive guidance on the Brdy region's natural, cultural, and historical attractions. The center is integrated within the PilsnerGolf Resort Hořehledy and offers services including event information, accommodation booking, internet access, and equipment rental. The website is professionally designed using WordPress and Oxygen Builder, featuring good mobile optimization and clear navigation. It maintains a moderate performance profile and includes certifications that enhance its credibility. From a technical perspective, the site employs modern web technologies and plugins such as Contact Form 7 and Tiny Slider, ensuring interactive and user-friendly experiences. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth strategies. The lack of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy. Overall, the website presents a trustworthy and professional front for the information center, with clear contact details and partner affiliations. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security headers, and publishing a formal security policy to enhance transparency and user trust.

N

Nevypusť duši, z. s.

nevypustdusi.cz

53

Nevypusť duši is a Czech non-profit organization dedicated to mental health education, prevention, and support primarily targeting children, youth, parents, educators, and social workers. The organization offers a range of preventive programs, support groups, and educational resources to foster open conversations about mental health and provide practical help. It has a strong partnership ecosystem and a clear mission to integrate mental health awareness into everyday life in Czech society. The website reflects a professional and well-established presence with comprehensive content and multiple communication channels.

S

Sønderborg Kommune

sonderborgkommune.dk

76

Sønderborg Kommune operates as the official municipal government website for the Sønderborg region in Denmark, providing a comprehensive range of public services to its citizens. The site targets residents and visitors seeking information on personal affairs, health and care, construction, education, traffic, employment, and environmental issues. It holds a strong market position as a local government authority with a well-established digital presence since 1997. Technically, the website leverages Drupal CMS, integrates privacy-focused analytics via Matomo, and employs Cookiebot for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure suitable for public sector needs. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to comply with privacy regulations. However, it lacks explicit security headers and a public security policy or incident response contact, which are areas for improvement. No critical vulnerabilities or WAF blocking were detected, indicating a stable security posture. Overall, Sønderborg Kommune's website is a trustworthy, professional, and privacy-conscious platform that effectively serves its public audience. Strategic enhancements in security policy transparency and DNS security could further strengthen its risk profile and compliance stature.

S

Stiftung der deutschen Wirtschaft für die Nutzung und Erforschung der Windenergie auf See

offshore-stiftung.de

44

The Stiftung OFFHORE-WINDENERGIE is a well-established German foundation founded in 2005, dedicated to promoting offshore wind energy in Germany and Europe. It operates as a non-profit organization providing networking, political advisory, educational, and project-related services to stakeholders in the energy sector. The website reflects a professional and content-rich platform targeting policymakers, industry participants, and the general public interested in renewable energy. Technically, the site uses modern front-end libraries and is built on the webEdition CMS, hosted on agenturserver infrastructure. Security posture is adequate with HTTPS and secure forms, but lacks some advanced security headers and cookie consent mechanisms. Overall, the site is trustworthy and authoritative within its niche.

I

isla

weareisla.co.uk

64

isla is a UK-based sustainable events movement focused on accelerating the transition of the events industry towards sustainability. Founded in 2020, it operates as a membership-driven community offering training, consultancy, carbon measurement tools, and best practice frameworks. The website demonstrates a strong market position as a collaborative network for agencies, brands, suppliers, venues, and in-house teams seeking to implement sustainable event practices. Technically, the site is built on WordPress with integrations such as HubSpot for forms and Google Analytics for tracking, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, well-branded, and compliant with GDPR, providing clear contact channels and comprehensive policies.

E

EDF Renewables India Pvt. Ltd

edf-re.in

55

EDF Renewables India Pvt. Ltd operates as a leading Independent Power Producer in the renewable energy sector in India, focusing on grid-scale clean energy projects including wind, storage, and emerging technologies. The company is part of the global EDF Groupe, a recognized leader in CO2 neutral electricity generation. The website presents a professional and consistent brand image targeting business partners and stakeholders in the energy sector. Technically, the site is built on WordPress with modern libraries and frameworks, offering good mobile optimization and user experience. Security posture is solid with HTTPS enabled and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the website reflects a credible and established business with moderate tracking and analytics usage.

E

EDF Renewables North America

edf-re.ca

40

EDF Renewables North America operates as a leading independent power producer and service provider specializing in renewable energy projects across Canada and the U.S. Their portfolio includes wind (onshore and offshore), solar photovoltaic, energy storage, and electric vehicle charging solutions. With over 200 employees and offices in major Canadian cities, they have developed nearly 2,000 MW of renewable energy capacity and continue to expand their pipeline. The company emphasizes environmental stewardship and community engagement, aligning with the broader EDF Group's sustainability goals. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a professional and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a minor concern but is offset by strong branding and external trust signals. Overall, the company presents a credible and mature digital presence in the renewable energy sector.

E

EDF Renewables Australia

edf-re.com.au

49

EDF Renewables Australia is a large energy company specializing in the development, construction, and operation of renewable energy power generation plants including onshore wind, offshore wind, and solar projects. The company positions itself as a major player in the global energy transition, leveraging expertise and innovation to combat climate change. The website reflects a professional and consistent brand presence with clear business focus and target audience in Australia. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and SEO. Security posture is solid with HTTPS and secure forms, though lacking some security headers and visible privacy compliance elements. Overall, the site is trustworthy and well-maintained, though improvements in privacy policy visibility and security headers are recommended.

Z

Zihos Energy s.r.o.

zihosenergy.com

10

Zihos Energy s.r.o. is a Czech Republic-based company specializing in comprehensive energy ecosystems with smart management solutions for businesses and residential customers. Their offerings include photovoltaic systems, battery energy storage systems (BESS), solar carports, feasibility studies, and energy optimization services. The company positions itself as a reliable and experienced provider with over 30 years in the market and memberships in reputable industry organizations such as UKEN, ČFA, and Altare. The website reflects a professional and modern digital presence with clear service descriptions and customer engagement features. Technically, the website employs modern JavaScript libraries including jQuery, Tiny Slider, AOS for animations, and Google Analytics for tracking. It uses HTTPS with a cookie consent mechanism that respects user privacy preferences, indicating a good level of digital maturity. However, the absence of visible security headers and security.txt files suggests room for improvement in security hardening and vulnerability disclosure. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and explicit user consent on forms. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The lack of WHOIS data for the domain is a concern, as it limits the ability to verify domain registration legitimacy and consistency with the company's claimed history. This discrepancy should be investigated further to ensure trustworthiness. Overall, the website is well-designed, content-rich, and user-friendly, supporting the company's credibility and market position. Strategic recommendations include enhancing security headers, publishing incident response and security policies, and clarifying domain registration details to strengthen trust and compliance.

S

SIESTA SOLUTION s.r.o.

siesta-labs.com

10

Siesta Labs is a Czech Republic based innovation lab and startup studio founded in 2020, specializing in software development and startup incubation. Their services include AI, web and mobile applications, system architecture, and business consulting. The company targets innovators, startups, and businesses seeking scalable digital solutions. The website reflects a professional and consistent brand with clear navigation and relevant content. Technically, the site uses modern frameworks like Bootstrap and integrates analytics tools such as Microsoft Clarity, Google Analytics, and Facebook Pixel, indicating a mature digital infrastructure. Security posture is solid with HTTPS and secure forms, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic with privacy and terms documents available but lacking cookie consent mechanisms. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

P

PratiMe

pratime.rs

44

PratiMe is a Serbian-based company specializing in GPS satellite vehicle tracking and fleet management solutions. Their platform offers real-time vehicle monitoring, fuel consumption control, driver behavior analytics, and comprehensive fleet management tools. The company targets businesses and fleet operators seeking to optimize operational efficiency and reduce costs through advanced telematics. The website is professionally designed, mobile-optimized, and provides clear navigation and contact channels, reflecting a mature digital presence for a company founded in 2020. Technically, the website employs modern web technologies including Bootstrap, jQuery, GSAP animations, and a 3D globe visualization library (Cobe). It integrates Google Fonts and uses a cookie consent mechanism to comply with privacy regulations. While the site is performant and accessible, there is room for improvement in security hardening, particularly in enabling DNSSEC and implementing security headers such as CSP and HSTS. From a security perspective, the site uses HTTPS and has a contact form with client-side validation, but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of a privacy policy and terms of service is a notable compliance gap. WHOIS data shows transparent and consistent domain registration aligned with the business location and sector, supporting legitimacy. Overall, PratiMe presents a trustworthy and professional online presence with strong business credibility and technical implementation. Enhancing security policies, privacy compliance documentation, and DNS security would further strengthen their posture and trustworthiness.

Ideal Solutions is a Greek-based digital services company specializing in digital marketing, design, web development, video production, and promotional material printing. The company targets businesses seeking to enhance their digital presence and marketing effectiveness. The website is built on WordPress using modern plugins such as Elementor and Slider Revolution, indicating a moderate level of digital maturity and technical infrastructure. The site is mobile-optimized and professionally designed, providing a good user experience. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and published security policies. Privacy compliance is limited, with no cookie consent mechanism or detailed privacy policy visible. Overall, the website presents a legitimate small business with room for improvement in security and privacy transparency.

D

Deutsches Zentrum für Lungenforschung e. V.

dzl.de

59

The Deutsches Zentrum für Lungenforschung (DZL) is a prominent German non-profit consortium comprising 29 leading academic and non-academic institutions dedicated to lung and respiratory disease research. The organization focuses on translational research, bridging laboratory findings to clinical applications, and supports career development through its DZL Academy. The website reflects a strong market position in healthcare research with a clear mission and comprehensive services including clinical studies, data management, and patient information. The target audience includes medical researchers, healthcare professionals, and patients interested in lung health. Technically, the website is built on WordPress with the Oxygen Builder framework, leveraging modern JavaScript libraries like jQuery and AOS for animations. Hosting is managed via EuroDNS nameservers. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Analytics are implemented using Google Analytics with user consent mechanisms in place, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's professional nature, indicating a trustworthy domain registration. Overall, the DZL website is a well-maintained, professional platform supporting a reputable healthcare research entity. Strategic improvements include publishing security policies, enhancing accessibility, and adding vulnerability disclosure information to strengthen trust and compliance.

S

Serengeti d.o.o.

serengetitech.com

11

Serengeti d.o.o. is a Croatia-based international nearshoring and offshoring software development consulting company founded in 2014. The company specializes in seamless team extension by mirroring client processes and development environments, serving multiple industries including finance, energy, manufacturing, healthcare, logistics, and hospitality. Their business model focuses on providing flexible and scalable development teams, consulting, and technology trend expertise such as Agile, DevOps, and Appian platform development. The website reflects a mature market position with strong trust indicators including ISO certifications and reputable partnerships. Technically, the website is built on WordPress using Oxygen Builder and incorporates modern web technologies and performance optimizations such as lazy loading, CDN usage, and analytics tools including Google Analytics, Microsoft Clarity, and Leadfeeder. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and maintains domain transfer protections. However, DNSSEC is not enabled, and some HTTP security headers are not explicitly present. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie policies are comprehensive and prominently linked. Overall, Serengeti's website demonstrates a high level of professionalism, security awareness, and compliance, supporting its credibility as a trusted software development partner. Strategic recommendations include enabling DNSSEC, enhancing HTTP security headers, and publishing incident response and vulnerability disclosure policies to further strengthen security posture.

P

Panteh Electronics

hypeware.hr

53

Hypeware.hr is a Croatian technology distribution and retail website specializing in products from major brands such as Samsung, Chuwi, and Hisense. The company appears to be a small-sized business founded in 2024, focusing on providing technology hardware and software solutions to both B2B and B2C customers. The website showcases product categories, partner logos, and provides a contact form for inquiries. Technically, the site is built on WordPress using Oxygen Builder and integrates modern tools like Google reCAPTCHA for security and cookie consent for GDPR compliance. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is good with HTTPS enforced and form protections, though it lacks advanced HTTP security headers and published security policies. WHOIS data confirms the domain is recently registered in Croatia with a consistent registrar and no privacy protection, supporting legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, but could improve security headers and incident response transparency.

N

Nanobit

nanobit.com

50

Nanobit is a well-established technology company specializing in game development, with a domain age of over 23 years reflecting its long-standing market presence. The company targets gamers and potential employees, offering a portfolio of games and career opportunities. The website is professionally designed using modern technologies such as Angular and Bootstrap, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and domain protections in place, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is addressed with a cookie consent mechanism and accessible privacy and terms of service pages. Overall, the website demonstrates high business credibility and trustworthiness with strong social media presence and consistent branding.

G

Good Game Global

good.game

60

Good Game Global is a medium-sized esports agency founded in 2019, specializing in B2B esports event organization, live stream production, and influencer marketing. The company targets businesses and the esports community, positioning itself as a key player in the esports marketing and event space, with multiple projects and partnerships with well-known brands. The website is professionally designed with good content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics and marketing, hosted behind Cloudflare DNS, but lacks some advanced security headers and DNSSEC. Security posture is adequate with HTTPS and domain transfer protection, but could be improved with additional headers and published policies. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the domain registration is consistent with the business claims, enhancing trustworthiness. Recommendations include publishing privacy and terms policies, enabling DNSSEC, and adding security headers to improve security and compliance.

P

Pinellas Suncoast Transit Authority

psta.net

58

The Pinellas Suncoast Transit Authority (PSTA) operates as the primary public transit provider for Pinellas County, Florida, offering a comprehensive range of bus and trolley services including specialized routes such as SunRunner and Spark. The website serves residents and visitors seeking transit information, schedules, fares, and real-time bus tracking. PSTA holds a strong market position as a government-affiliated transportation authority with a domain established in 1999, reflecting long-term operational stability. Technically, the website employs a modern but somewhat dated technology stack featuring AngularJS, Bootstrap 3, jQuery, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements could enhance performance and security, such as enabling DNSSEC and implementing security headers. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or malicious content were detected, but the absence of privacy and cookie policies and consent mechanisms indicates partial compliance with privacy regulations. Overall, the website is professional, trustworthy, and serves its public service mission effectively. Strategic enhancements in privacy compliance and security posture would further strengthen user trust and regulatory adherence.

P

Publicis Groupe

publicisgroupe.media

58

Publicis Groupe's Slovak media site presents itself as an integrated communication group specializing in media, data, and technology services. The company emphasizes a unified team approach under the 'Power of One' philosophy, aiming to build strong brands and succeed in platform-driven markets. The website content is professional, targeting business clients and showcasing certifications that reinforce its market credibility. Technically, the site is built on WordPress with modern marketing and analytics tools such as Google Tag Manager and Facebook SDK, ensuring a solid digital infrastructure. Security posture is good with HTTPS enabled and GDPR cookie compliance implemented, though some security headers and explicit privacy policies are missing. Overall, the site is trustworthy and well-positioned in its industry segment.

M

micro.company

whatsform.com

57

WhatsForm is a small technology SaaS company founded in 2020, offering a specialized WhatsApp form builder platform that enables businesses to collect customer data directly via WhatsApp. The platform provides a drag-and-drop form builder, ready-to-use templates, and Google form conversion features, targeting businesses and individuals who want to streamline customer engagement through WhatsApp. The company operates independently from WhatsApp/Meta and is part of the micro.company ecosystem. Technically, the website leverages modern frontend technologies such as Bootstrap, jQuery, and various UI libraries, hosted on AWS with Cloudflare CDN for performance and security. The site is mobile optimized and provides a professional user experience with clear navigation and multilingual support. Security posture is strong with HTTPS, Cloudflare protection, and domain transfer lock, but lacks published security policies and vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and professional, with room for improvement in privacy and security transparency.

The Deutsche Arbeitsgemeinschaft für Psychosoziale Onkologie e.V. (dapo e.V.) is a German non-profit professional society dedicated to psychosocial oncology. It brings together diverse healthcare professionals involved in medical, psychotherapeutic, psychosocial, and pastoral care for cancer patients and their families, as well as researchers in psychooncology. The organization focuses on fostering interdisciplinary exchange, strengthening collaboration, and supporting scientific work in this specialized field. The website serves as an information hub for members and interested professionals, offering news, event details, and a newsletter subscription.

M

Mobecan

mobecan.com

54

Mobecan is a Russian-based software development studio specializing in mobile applications, web development, and enterprise automation systems (ERP). Founded in 2014, the company positions itself as a top-tier developer with a strong portfolio including government and regional clients. Their key services include UI/UX design, software architecture, development, QA, deployment, and ongoing support. The website is professionally designed, bilingual (Russian and English), and targets businesses seeking digital transformation and automation solutions. Technically, the site uses modern web technologies such as OctoberCMS, jQuery, Bootstrap, and integrates analytics via Yandex Metrika and Google Tag Manager. Security measures include HTTPS enforcement and SmartCaptcha for form protection, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the site reflects a mature digital presence with good business credibility and moderate security posture.

I

Informa Markets

foam-expo.eu

60

Foam Expo Europe is a leading B2B trade exhibition and conference focused on the foam industry, organized by Informa Markets. The event is positioned as Europe's largest free trade fair for technical foam products and manufacturing, attracting over 200 exhibitors and industry professionals. It offers a comprehensive platform for networking, showcasing innovations, and knowledge sharing across multiple sectors including automotive, packaging, construction, and aerospace. The website is professionally designed with rich content, clear navigation, and strong branding consistency, reflecting a mature digital presence. Technically, the website employs modern frameworks such as Bootstrap 5 and jQuery, integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Dotdigital, and implements GDPR-compliant consent management via Transcend. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. However, some security best practices like HTTP security headers and explicit incident response contacts are not evident. From a security perspective, the site uses HTTPS and secure external scripts, with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a notable anomaly but is mitigated by the professional nature of the site and its association with a reputable parent company. Privacy policies and terms of service are clearly linked and comprehensive, supporting compliance with GDPR. Overall, the website presents a low-risk profile with strong business credibility and digital maturity. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would further enhance trust and compliance.

F

Feefo

reevoo.com

73

Feefo is a reputable SaaS company specializing in verified customer reviews and feedback solutions, helping businesses enhance customer trust and gain actionable insights. The company holds recognized certifications such as ISO 27001 and is a Google Partner, indicating a strong market position and commitment to quality. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics technologies, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, though there is room for improvement in public vulnerability disclosure and incident response transparency. Overall, the site demonstrates high trustworthiness and business credibility.

W

Wayvia

gethatch.com

63

Wayvia is a well-established B2B technology company specializing in ecommerce enablement through its extensive global retailer network. The company offers a suite of brand commerce solutions including shoppable media, retail intelligence, and data services that empower brands to connect with consumers and drive revenue. With a domain age since 2010 and a large client base, Wayvia holds a strong market position in the retail and ecommerce technology sector. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting brands, retailers, and partners worldwide. Technically, the site leverages HubSpot CMS and integrates multiple marketing and analytics tools such as Google Analytics 4, Facebook Pixel, and 6sense, indicating a sophisticated marketing infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in HTTP security headers and incident response transparency. Overall, the website and domain data suggest a trustworthy and credible business with a strong digital footprint.

I

Informa Markets

foam-expo.com

65

Foam Expo North America is a leading trade show and conference focused on the foam and adhesives manufacturing industry, organized by Informa Markets. The website presents comprehensive event information, including dates, location, exhibitor details, and conference sessions, targeting industry professionals and buyers. The site is well-branded, professionally designed, and offers multiple calls to action for registration and inquiries. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and various tracking and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent management, though some security headers could be improved. The absence of WHOIS data is a concern but the overall content and external references support legitimacy. Privacy compliance is well addressed with clear policies and consent mechanisms.

H

Hamburgische Schiffbau-Versuchsanstalt GmbH

hsva.de

47

Hamburgische Schiffbau-Versuchsanstalt GmbH (HSVA) is a well-established private and independent maritime service and consulting company based in Hamburg, Germany. Founded in 1913, HSVA specializes in maritime hydrodynamics, aerodynamics, and arctic technology, providing innovative solutions and world-class experimental testing facilities to clients worldwide. The company is recognized for its contributions to greener shipping and sustainable marine environments, holding a strong market position supported by national and international research collaborations. Technically, the HSVA website employs modern frontend technologies including Bootstrap and AOS for animations, alongside a robust cookie consent management system (ConsentFriend/Klaro!). The site is mobile-optimized with good SEO practices and moderate performance. While HTTPS is enforced, security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security perspective, HSVA demonstrates a solid baseline with HTTPS and cookie consent mechanisms. However, the absence of explicit security policies, incident response contacts, and security.txt files indicates potential gaps in transparency and vulnerability management. No critical vulnerabilities or blocking mechanisms were detected, and the domain WHOIS data aligns well with the company’s identity and location, supporting legitimacy. Overall, HSVA presents a professional, trustworthy online presence with strong business credibility and compliance with privacy regulations. Strategic enhancements in security headers, incident response disclosures, and accessibility could further strengthen their security posture and user trust.

V

VGROUP

vgroup.com

52

VGROUP is a professional brand strategy, design, and communications agency that helps businesses develop their brand identity and market presence. The company showcases a strong portfolio of projects and client testimonials, positioning itself as a trusted partner in brand development. The website is built on WordPress with modern technologies and includes comprehensive privacy and cookie consent mechanisms, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent, but lacks visible security headers and explicit incident response information. The absence of WHOIS data reduces domain trust slightly, but the professional website content and branding mitigate concerns. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations.

Jazzclub Erfurt e.V. is a small non-profit cultural organization based in Germany focused on promoting jazz music through live events and concerts. The website serves as a platform to showcase upcoming events, ticket reservations, and club information targeting jazz enthusiasts and the local community. The organization benefits from cultural funding and maintains an active presence on social media platforms such as Facebook and Instagram. Technically, the website is built on the ClubDesk CMS platform, utilizing modern JavaScript libraries like jQuery, Featherlight, and Owl Carousel to enhance user experience. The site is mobile-optimized and includes accessibility features, although SEO and performance optimizations are basic. Security posture is moderate with HTTPS assumed but no explicit security headers detected. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, but no explicit terms of service or incident response policies are published. Overall, the site is trustworthy and professional, suitable for its cultural and community-oriented purpose.

T

The Capitol Forum

thecapitolforum.com

63

The Capitol Forum is an independent investigative media organization specializing in detailed reporting and analysis of regulatory developments impacting markets, with a focus on antitrust, mergers, corporate investigations, and sector regulation. Established in 2012, it serves a specialized audience including government regulators, legal professionals, investors, and non-profits. The business operates on a subscription model, offering unique insights, special reports, podcasts, and events to its subscribers. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on WordPress with modern web technologies such as Yoast SEO, jQuery, Swiper.js, and AOS for animations. It is hosted likely via GoDaddy.com, LLC, with good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility features. The site employs HTTPS with a strong SSL configuration but lacks some advanced security headers and explicit security policies. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent mechanisms compliant with GDPR and US privacy laws. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms. DNSSEC is not enabled, which is a recommended improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, The Capitol Forum presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and adding vulnerability disclosure information to enhance trust and security posture further.

I

Informa Markets

spacetechexpo-europe.com

60

Space Tech Expo Europe is a leading B2B event organizer specializing in the space technology sector, hosting Europe's largest space industry exhibition and conference. The event connects over 950 exhibitors and 10,000 attendees, providing a platform for networking, knowledge sharing, and business development. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Bootstrap and integrates multiple analytics and marketing tools, including Google Analytics, Facebook Pixel, and consent management solutions. Security posture is solid with HTTPS and Content Security Policy headers, though additional headers could enhance protection. Privacy compliance is well addressed with clear policies and consent mechanisms. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, which contrasts with the professional and trustworthy nature of the website content and its association with Informa Markets. Overall, the site demonstrates strong business credibility and technical maturity but should address domain registration transparency to improve trust.

U

UNIS, a.s.

unis-daac.cz

60

UNIS DAAC is a Czech-based company specializing in the development, manufacturing, and testing of advanced electronic control systems for the aerospace industry. With nearly 30 years of experience, the company positions itself as a reliable and certified provider of aerospace technology solutions. Their website reflects a professional and consistent brand image, targeting aerospace clients and partners primarily in the Czech Republic and international markets. The business model focuses on integrated production and development under one roof, supported by quality certifications and a skilled engineering team. Technically, the website employs modern web technologies including Google Tag Manager for analytics, AOS for animations, and a cookie consent mechanism compliant with GDPR. The site is mobile-optimized with good SEO practices and a clean navigation structure. However, some technical improvements could be made in security headers and accessibility features. From a security perspective, the site uses HTTPS and provides cookie consent, but lacks advanced security headers and published security policies or incident response contacts. The absence of WHOIS data for the domain reduces transparency and trust slightly, though the website content and external references support legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for UNIS DAAC, with room for improvement in domain transparency and security hardening. Strategic recommendations include enhancing security headers, publishing a security policy, and improving contact information visibility to strengthen trust and compliance.

I

ISISPACE

isispace.nl

54

ISISPACE is a medium-sized technology company based in the Netherlands, specializing in end-to-end space mission solutions including satellite platforms, power systems, communication systems, and launch equipment. The company has a strong market position with over 19 years of experience, serving more than 50 countries and maintaining a solid customer base. Their website reflects a professional and modern digital presence built on WordPress with Bootstrap and other contemporary web technologies. The site is well-structured, mobile-optimized, and SEO-friendly, supporting their B2B business model targeting aerospace and space mission professionals. Security posture is good with HTTPS and DNSSEC enabled, but lacks explicit security policies and incident response contacts. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy or terms of service pages. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is trustworthy and professional, though improvements in privacy and security transparency are recommended.

V

ViroSafe Norge AS

virosafe.no

53

ViroSafe Norge AS is a leading Norwegian distributor specializing in IT security solutions, serving Managed Service Providers (MSPs) across Norway since 2001. The company offers a comprehensive portfolio of cybersecurity products and services including backup and restore, endpoint protection, email security, network and cloud security, security culture training, and SOC services. Their market position is strong within the Norwegian IT security sector, focusing on value-added partnerships and expert support for MSPs. Technically, the website is built on a custom ASP.NET platform with modern front-end technologies such as jQuery, Bootstrap, and various JavaScript libraries for enhanced user experience and interactivity. The site is mobile-optimized and integrates marketing and analytics tools like HubSpot and Google Analytics, alongside Google reCAPTCHA for form security. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and employs reCAPTCHA to protect forms. Cookie consent mechanisms and a comprehensive privacy policy demonstrate GDPR compliance. However, there is a lack of explicit security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for ViroSafe's business operations. The absence of WHOIS data from the Norid registry is a notable gap, limiting full domain legitimacy verification. Nonetheless, the business information, contact details, and content quality support a high trust level. Strategic recommendations include enhancing security headers, publishing security policies, and implementing vulnerability disclosure protocols to further strengthen security posture and compliance.

B

Beton Union Plzeň s.r.o.

betonunion.cz

55

Beton Union Plzeň s.r.o. is a regional specialist company focused on the production, transportation, and placement of concrete and mortar mixtures primarily serving western Czech Republic. The company operates multiple concrete plants and offers customized concrete mixes supported by laboratory testing and professional consulting. Their website reflects a medium-sized manufacturing and transportation business with a clear market position and professional branding. Technically, the website uses modern JavaScript libraries and frameworks, is mobile optimized, and implements cookie consent mechanisms, though it lacks some security headers and explicit privacy policy documentation. Security posture is moderate with HTTPS enabled but could be improved by adding security headers and incident response information. The absence of WHOIS data reduces domain trustworthiness, but the website content and social media presence support legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

GUM Leder- und Textilbekleidung GmbH operates a specialized retail store in Göttingen, Germany, focusing on jeans and leather apparel from well-known brands such as Levis, Lee, Timezone, Gipsy, and Ricano. The company has a longstanding market presence of over 30 years, emphasizing personal and honest customer service. Their business model centers on direct retail sales of clothing and accessories, targeting consumers seeking quality jeans and leather products. The website reflects a consistent brand image with good content quality and clear navigation tailored for a general audience. Technically, the website is built on the Jimdo Creator CMS platform, leveraging modern web technologies including jQuery, Flexslider, AOS animations, and Font Awesome icons. Hosting is provided via Jimdo with Cloudflare CDN integration, ensuring good performance and security. The site is mobile optimized and includes basic accessibility features, although there is room for improvement in security headers and framework updates. From a security perspective, the site enforces HTTPS with SSL/TLS encryption and implements cookie consent mechanisms aligned with GDPR requirements. The privacy policy is comprehensive and clearly communicated in German. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could benefit from enhanced headers and updated libraries. The overall risk assessment is low, with the website demonstrating good business credibility, privacy compliance, and technical implementation. Strategic recommendations include upgrading jQuery, adding security headers, publishing incident response details, and improving accessibility. These steps will further strengthen trust and security culture while supporting long-term digital maturity.

I

Ing. Jan Vince

webula.cz

50

Webula is a Czech-based web development and management company with over 20 years of experience and a portfolio exceeding 100 completed websites. They specialize in creating modern, reliable websites and provide ongoing support including content preparation, advertising, and social media assistance. Their market position is strengthened by client testimonials and partnerships, including official recognition as an OctoberCMS partner. Technically, the website is built on OctoberCMS, uses modern JavaScript libraries, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS enforced and consent-based analytics, though some security headers are missing. The absence of WHOIS data limits domain trust assessment but the business information and references support legitimacy. Overall, Webula presents a professional and trustworthy digital presence.

T

Tomáš Michálek, fyzická osoba

meteo-roven.cz

49

The website meteo-roven.cz serves as a regional weather information portal focused on eastern Czech Republic, providing real-time data from multiple local meteorological stations. It also offers additional services such as webcams and an e-shop for weather-related products. The business appears to be a small, locally focused entity operated by an individual, with a domain age consistent with its operational history since 2016. The website uses a modern frontend technology stack including Bootstrap 4, jQuery, and various UI plugins, hosted on infrastructure associated with the WEDOS registrar and nameservers. The site is mobile responsive and offers a generally good user experience, though some minor code quality issues are present as evidenced by PHP notices in the navigation menu.

B

Büro Maisengasse GmbH

maisengasse.at

49

Büro Maisengasse GmbH is a small technology-focused company based in Landeck, Tirol, Austria, specializing in branding, digitalization, and web application development. The company offers end-to-end services including concept development, design, and implementation, targeting businesses seeking tailored digital solutions. Their market position is strong regionally, supported by multiple innovation awards. Technically, the website employs modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, CSRF protection, and cookie consent mechanisms, though some HTTP security headers are missing and no explicit security policy is published. Overall, the site is professional, trustworthy, and GDPR compliant, with clear contact information and transparent cookie management.