Security Directory

S

Sjøkadettforeningen av 1898 Valkyrien

valkyrien1898.no

54

Sjøkadettforeningen av 1898 Valkyrien is a historic Norwegian cadet association focused on fostering engagement and initiative among cadets at the Norwegian Naval Academy. The organization provides a variety of social, sporting, and cultural events to support cadet life and community building. The website serves as an information hub for members and interested parties, featuring news, event calendars, and membership benefits. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern web technologies and plugins to deliver a responsive and user-friendly experience. Security measures include HTTPS enforcement and cookie consent management, although some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site reflects a professional and trustworthy presence for a small non-profit educational organization.

N

Netlab AS

netlab.no

55

Netlab AS is a Norwegian technology company specializing in web development and digital solutions, serving ambitious organizations primarily in Norway. Established in 2014, the company emphasizes sustainable and strategic digital products, leveraging a methodical approach and strong technological choices. Their market position is solidified by 20 years of industry experience and a portfolio of notable client references. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website employs modern web technologies including Bootstrap, GSAP, Swiper.js, and integrates Google Analytics and Tag Manager for analytics. The presence of a cookie consent mechanism indicates GDPR compliance efforts. The CMS appears custom or proprietary, likely ASP.NET based on hidden form fields. Performance and mobile optimization are good, though accessibility could be improved. Security posture is strong with HTTPS enforced and ISO 27001 and 9001 certifications prominently displayed. However, security headers are not explicitly detected and no vulnerability disclosure or incident response contacts are published. No WAF or blocking mechanisms are present, allowing full content access. Overall, the website and domain registration data align well, indicating a legitimate and trustworthy business. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility compliance to further strengthen security and trust.

A

AMBOSS

amboss.com

69

AMBOSS is a leading digital medical knowledge platform primarily serving physicians, medical students, and nursing professionals in German-speaking countries. The company offers a comprehensive medical knowledge database, diagnostic recommendations, drug information, and continuing education formats accessible via web, mobile apps, and browser extensions. The platform integrates advanced AI technologies to enhance medical practice, learning, and teaching. Technically, the website is built on Webflow CMS and employs a modern tech stack including Google Tag Manager, Hotjar, HubSpot, and GrowthBook for analytics and marketing. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses security headers, and manages user consent for tracking, though it lacks a dedicated security policy or incident response contact information. The WHOIS data is unavailable, which raises some concerns about domain registration transparency but does not detract from the professional presentation and trust signals on the site. Overall, AMBOSS demonstrates a strong market position in healthcare education with a robust technical and security posture, though improvements in transparency and incident response communication are recommended.

S

Sharebox

sharebox.no

55

Sharebox is a technology company specializing in automotive and mobility digital transformation solutions. Their offerings include ISO-certified self-service kiosks, API integrations, and intelligent software workflows designed to streamline vehicle dealerships, rental agencies, and workshops. The company positions itself as a trusted partner for major automotive brands and rental companies, emphasizing 24/7 convenience and seamless customer experiences. Technically, the website is built on WordPress with modern integrations such as HubSpot and Google Analytics, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, the website reflects a professional, trustworthy business with good compliance and technical standards.

S

Stiftung Bildungspakt Bayern

bildungspakt-bayern.de

56

Stiftung Bildungspakt Bayern is a non-profit foundation dedicated to advancing education in Bavaria, Germany, with a focus on digital transformation and innovative school projects. The foundation operates with government affiliation, providing educational initiatives and support to schools and educators. Their website reflects a professional and consistent brand image, targeting educators, policymakers, and stakeholders in the education sector. Technically, the site is built on WordPress with modern plugins and libraries, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies are missing. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-maintained, serving its educational mission effectively.

H

Hanse Business Travel GmbH

hanse-bt.de

54

Hanse Business Travel GmbH is a Hamburg-based company specializing in corporate travel management services since 1995. The company offers a wide range of services including marine travel, business trips, group travel, limousine and transfer services, hotel bookings, car rentals, travel insurance, visa processing, private jet services, and travel tools. Their market position is that of a trusted, experienced travel service provider focused on personalized and professional customer service for business clients. Technically, the website is built on WordPress using the Oxygen Builder framework, enhanced with modern JavaScript libraries such as GSAP and AOS for animations, and optimized for performance with WP Rocket. The site is mobile-friendly, well-structured, and SEO-optimized, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. While explicit security headers are not visibly configured, no vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website presents a professional and trustworthy online presence with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing security policies, and establishing vulnerability disclosure channels to further strengthen trust and security maturity.

MC-Bauchemie Müller GmbH & Co. KG is a well-established German manufacturer specializing in construction chemicals and concrete additives. The company offers high-quality products, technical consulting, and tailored solutions for the construction industry. With a strong international footprint evidenced by numerous country-specific domains, MC-Bauchemie positions itself as a leading player in the manufacturing and technical consulting sector for building materials. The website is professionally designed, multilingual, and targets construction professionals including engineers, architects, and contractors. Technically, the site employs modern JavaScript frameworks such as Alpine.js and Swiper.js, with security features including HTTPS, reCAPTCHA, and input validation. The security posture is strong with appropriate headers and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website reflects a mature digital presence aligned with the company's market position and business model.

H

Hamburger Verkehrsverbund

hvv.de

68

Hamburger Verkehrsverbund (hvv) operates as the primary public transportation network for Hamburg and its surrounding areas, providing comprehensive services including timetable information, ticket sales, and mobility consulting. The website serves as a digital portal for users to access schedules, purchase tickets, and stay informed about service updates. The platform targets public transit users in the Hamburg region and positions itself as a leading transportation provider with a strong regional presence. Technically, the website employs a modern JavaScript stack with libraries such as jQuery UI, GSAP, and Moment.js to enhance user experience and performance. It features responsive design and accessibility considerations, including keyboard navigation and ARIA roles. The site integrates tracking via etracker for analytics while maintaining GDPR compliance through cookie consent mechanisms and a detailed privacy policy. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating attention to secure data handling. However, explicit security headers and a published security policy or vulnerability disclosure are absent, representing areas for improvement. No signs of WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a solid balance of usability, compliance, and security suitable for a public transportation entity. Strategic enhancements in security transparency and incident response readiness would further strengthen its posture.

The Praxenland website represents a significant healthcare initiative in Germany, supported by the Kassenärztliche Bundesvereinigung (KBV). It focuses on advocating for and supporting approximately 100,000 medical practices including general practitioners, specialists, and psychotherapists. The site emphasizes the importance of maintaining strong healthcare services for the German population, highlighting social, health, and economic benefits. The target audience includes healthcare professionals and the general public interested in healthcare provision in Germany. Technically, the website is built on WordPress using the Elementor page builder, enhanced with plugins for GDPR compliance (Complianz), interactive content (Scrollsequence), and privacy-respecting analytics (Matomo). The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Hosting appears to be managed by agenturserver, a German hosting provider. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. While explicit security headers are not evident in the HTML, the use of security/privacy plugins and absence of exposed sensitive data indicate a solid security posture. No vulnerabilities or suspicious domains were detected. The WHOIS data aligns with the website's German healthcare focus, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations. However, it lacks explicit contact information and published security or incident response policies. Strategic recommendations include enhancing security headers, publishing incident response and security policies, and providing clear contact channels to improve user trust and compliance.

N

neuwaerts GmbH

neuwaerts.de

64

neuwaerts GmbH is a creative agency based in Hannover, Germany, specializing in brand development, communication consulting, and integrated marketing campaigns. With over 15 years of experience, they serve clients primarily in the German-speaking region, offering a blend of traditional print and modern digital services. Their market position is that of a well-established regional agency with a strong focus on innovation and client collaboration. Technically, the website is built on the Webflow platform, utilizing modern JavaScript libraries such as GSAP and Alpine.js for interactive features. The site is well-optimized for performance, mobile responsiveness, and accessibility, with a comprehensive cookie consent mechanism powered by CookieHub. SEO and structured data are properly implemented, enhancing discoverability and trust. From a security perspective, the site enforces HTTPS and employs cookie consent best practices. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, neuwaerts GmbH presents a professional, trustworthy, and user-friendly online presence with strong privacy compliance and business credibility. Strategic improvements in security transparency and policy publication could further strengthen their security posture and client confidence.

H

Hannover Airport

haj-azubi.de

52

The website haj-azubi.de serves as the official platform for apprenticeship and vocational training opportunities at Hannover Airport. It targets young individuals seeking career paths in various airport-related trades such as logistics, office management, and fire services. The site is well-branded with Hannover Airport's identity and provides detailed information on available programs, benefits, and contact persons. Technically, the site is built on WordPress with a modern theme and uses reputable plugins for cookie consent and analytics. Hosting is provided by Hetzner, a reliable German hosting provider. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

H

HOMOLA holding s.r.o.

hholding.cz

49

HOMOLA holding s.r.o. is a stable and dynamic real estate company based in the Czech Republic, specializing in rental of residential and commercial spaces, sale of serviced building plots, and execution of construction investment projects. The company emphasizes quality services and professional client approach, targeting investors, tenants, and property buyers. The website reflects a mature digital presence built on WordPress with modern front-end technologies and SEO optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking advanced security headers and incident response disclosures. WHOIS data is unavailable, which slightly reduces trust but the website content and contact details appear legitimate and professional. Overall, the site demonstrates good business credibility and privacy compliance.

The website stavbamsk.cz serves as the official platform for the Stavba MSK competition, which promotes and showcases quality construction projects in the Moravian-Silesian Region of the Czech Republic. The site targets both professionals in the construction and architecture sectors and the general public interested in regional development. It provides information about the competition, event results, galleries, and news updates. The business model appears to be a regional promotional and award platform supported by various partners and sponsors. The domain age and WHOIS data confirm a long-standing presence since 2006, reinforcing credibility. Technically, the website is built on WordPress CMS and employs modern web technologies including Bootstrap, jQuery, GSAP, Swiper, and Google reCAPTCHA v3 for form security. The site is mobile-optimized and integrates Google Analytics and Tag Manager for user tracking and marketing insights. Performance is moderate with good design and navigation clarity, though accessibility features are basic. From a security perspective, HTTPS is properly implemented, and forms are protected with reCAPTCHA. However, the absence of security headers and lack of explicit privacy and cookie policies indicate room for improvement in compliance and security posture. No vulnerabilities or exposed sensitive data were detected. The site does not provide incident response or vulnerability disclosure information. Overall, stavbamsk.cz is a credible and professionally maintained regional website with a clear business purpose. To enhance trust and compliance, it should implement privacy and cookie policies, security headers, and consider publishing a security policy or vulnerability disclosure statement.

E

Emerald Technology Ventures

emerald.vc

68

Emerald Technology Ventures is a well-established venture capital firm specializing in sustainable industrial innovation. With over €1 billion in commitments and a portfolio of more than 90 companies, Emerald connects startups with corporate partners and institutional investors to accelerate green technologies. The website targets corporates, institutional investors, governments, and entrepreneurs, offering services such as CVC-as-a-Service and Emerald Sprints. The company is based in Switzerland and has a strong market position in the energy and industrial innovation sectors. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Fonts, Google Maps API, HubSpot forms, and advanced animation libraries like Lottie and GSAP. It demonstrates excellent performance, mobile optimization, accessibility, and SEO practices. Analytics and marketing tools such as Google Analytics, HubSpot, and LinkedIn Insight Tag are used with appropriate consent mechanisms. From a security perspective, the site enforces HTTPS, employs multiple security headers, uses reCAPTCHA on forms, and avoids exposing sensitive data. However, it lacks a dedicated security policy and incident response contact information, which are recommended for enhanced transparency and readiness. Privacy compliance is strong with clear privacy and cookie policies and GDPR indicators. Overall, the website presents a professional, trustworthy, and secure digital presence aligned with the company's business goals. Strategic recommendations include publishing a security policy, adding incident response contacts, and implementing a vulnerability disclosure program to further strengthen security posture and stakeholder trust.

K

Kompetenznetz Einsamkeit

kompetenznetz-einsamkeit.de

57

Kompetenznetz Einsamkeit is a German non-profit organization focused on addressing the causes and consequences of loneliness, providing information and support offers to affected individuals. The website serves as an informational portal targeting a general audience interested in loneliness-related topics. Technically, the site is built on WordPress using the Brooklyn theme by United Themes, incorporating modern JavaScript libraries and Matomo analytics for user tracking with some privacy considerations. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the website is functional, professionally designed, and trustworthy, but lacks some compliance and security best practices.

W

WebFX

leadmanagerfx.com

64

WebFX operates a subdomain app.webfx.com hosting the RevenueCloudFX sign-in portal, targeting business clients seeking data intelligence solutions. The website presents a professional and modern interface with integration of advanced JavaScript libraries and tracking tools such as Pendo and Google Identity Services. The technical infrastructure indicates a mature digital presence with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage but lacks visible security headers and explicit privacy or cookie policies on this page, which are critical for compliance and trust. The absence of WHOIS data for the subdomain is expected and does not detract from legitimacy, as the main domain webfx.com is a recognized entity. Overall, the site is safe, business-focused, and trustworthy but would benefit from enhanced privacy disclosures and security headers.

T

The Compote

thecompote.com

62

The Compote is a small, specialized web design studio based in Prague, Czech Republic, focusing on modern, minimalistic websites built using Webflow. The company offers key services including custom web design, Webflow development, and ongoing monthly support, targeting brands that seek creative and flexible digital presence solutions. Their market position is that of a niche expert in Webflow, serving clients internationally including the US, Germany, UK, Netherlands, and Czech Republic. The website demonstrates excellent content quality, professional branding, and strong trust indicators such as client testimonials and certification as a Webflow Certified Partner. Technically, the website leverages a modern tech stack including Webflow CMS, GSAP for animations, Splide.js for sliders, and smooth scrolling via Lenis. It integrates analytics and tracking tools like Microsoft Clarity, Google Tag Manager, and Apollo.io, and employs Cloudflare Turnstile CAPTCHA for form security. The site is fast, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses CAPTCHA on forms, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy and cookie policy, including GDPR considerations. However, the absence of a terms of service page and WHOIS registration data transparency reduces overall trust. Overall, the website presents a professional, secure, and user-friendly experience with minor areas for improvement in security headers and legal disclosures. The missing WHOIS data is a notable concern that impacts domain trustworthiness, though the business content and operations appear legitimate and credible.

O

Ortodentik s.r.o.

ortodentik.sk

46

Ortodentik s.r.o. is a specialized orthodontic clinic based in Bratislava, Slovakia, operating since 2007. The company focuses on orthodontic diagnostics, treatment, and prevention for children and adults, offering services such as fixed, removable, and invisible braces, as well as dental hygiene. The website reflects a well-established local healthcare provider with a clear market position and a professional online presence. Technically, the site is built on WordPress with modern plugins and frameworks, including Yoast SEO and Nectar Blocks, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR cookie mechanisms. Overall, the website is trustworthy, professional, and user-friendly, supporting the business's credibility and customer engagement.

R

Rada mládeže Slovenska (RmS)

mladez.sk

43

Rada mládeže Slovenska (RmS) is a well-established Slovak non-profit organization founded in 2003, serving as an umbrella for the largest youth organizations in Slovakia. It focuses on advocacy, research, and project coordination to improve conditions for youth and children. The website reflects a mature digital presence with professional design, clear navigation, and relevant content targeting youth organizations and young people in Slovakia. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for tracking. Security posture is strong with HTTPS and DNSSEC enabled, though it lacks some advanced security headers and explicit cookie consent mechanisms. Overall, the domain registration and website content are consistent and trustworthy, indicating a legitimate and credible organization.

M

Mein LIEBLINGS Event GmbH

meinlieblingsevent.de

51

Mein LIEBLINGS Event GmbH operates a professional event promotion website focused on concerts and events in Germany. The company targets event attendees seeking memorable experiences and offers services including event organization and venue rental. The website demonstrates a consistent brand presence with active social media integration and sponsor visibility, positioning it as a regional player in the hospitality and media sectors. Technically, the website employs modern JavaScript frameworks such as Livewire, Alpine.js, GSAP, and Swiper.js, indicating a moderate level of digital maturity. Hosting is provided by Schlund Technologies, a reputable German hosting provider. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. From a security perspective, the site lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. The absence of a security.txt or vulnerability disclosure page further indicates limited formal security governance. However, no critical vulnerabilities or exposed sensitive data were detected in the content provided. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

A

Aiphone

aiphone.com

63

Aiphone is a globally recognized leader in intercom and access control systems, providing a wide range of IP video intercoms, audio intercoms, and cloud-based solutions. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting security professionals and property managers across various industries including commercial real estate, education, and healthcare. The company leverages modern web technologies such as WordPress CMS, Yoast SEO, and advanced JavaScript libraries to deliver a responsive and SEO-optimized experience. Security-wise, the site enforces HTTPS, employs cookie consent mechanisms, and integrates Google reCAPTCHA for bot protection, indicating a solid security posture. However, the absence of WHOIS registration details introduces some uncertainty about domain registration transparency. Overall, the website is trustworthy, professional, and well-maintained, supporting Aiphone's market position as a technology leader in security communication solutions.

H

HD하이드로젠

hdhydrogen.com

57

HD하이드로젠 is a newly established South Korean company specializing in advanced hydrogen energy technologies, including fuel cells and electrolyzers based on third-generation solid oxide technology. As part of the HD Hyundai group, it holds a strategic position in the sustainable energy sector, targeting industrial and commercial markets with innovative carbon-neutral solutions. The website reflects a professional corporate presence with clear navigation and relevant business content primarily in Korean. Technically, the site uses a modern JavaScript stack with libraries like jQuery, Swiper, and GSAP, though no CMS or hosting details are evident. Security posture is moderate, with domain transfer protection but lacking DNSSEC and visible security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or incident response information. Overall, the site is well-branded and consistent with the parent group’s ecosystem, linking extensively to related subsidiaries and partner domains.

(

(주)플러스앤

cjtone.co.kr

45

PlusN (플러스앤) is a South Korean company specializing in corporate travel welfare services, including corporate resorts, B2B travel welfare malls, camping sites, MICE events, facility distribution and consignment, and leisure ticket sales. The company positions itself as the leading corporate resort provider with over 30 years of experience, serving a broad range of clients including public enterprises, government agencies, financial institutions, and broadcasters. The website reflects a professional and modern digital presence with multimedia content and clear navigation.

H

HD Korea Shipbuilding & Offshore Engineering Co., Ltd.

hd-ksoe.com

47

HD Korea Shipbuilding & Offshore Engineering Co., Ltd. operates a comprehensive corporate website showcasing its leadership in the global shipbuilding and offshore engineering industry. The company emphasizes innovation, sustainability, and investor relations, positioning itself as a global No.1 shipbuilder headquartered in South Korea. The website provides detailed business segments, sustainability initiatives, media news, and investor information, targeting industry professionals, investors, and partners. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper, and GSAP, delivering a multimedia-rich experience with good mobile optimization and clear navigation. Security posture is moderate with domain protections and cookie consent mechanisms, though explicit security headers and incident response policies are not evident. Overall, the site is professional, trustworthy, and well-aligned with the company's corporate identity.

HD Hyundai Heavy Industries Co., Ltd. is a leading global heavy industries company specializing in shipbuilding, marine energy, special ships, and engine machinery. Established in 1997 and headquartered in Ulsan, South Korea, the company holds a top market position with world-leading technology and a comprehensive portfolio of industrial services. Their website reflects a professional and well-structured digital presence, targeting industrial clients, investors, partners, and potential employees. The business model focuses on manufacturing and engineering solutions with a strong emphasis on innovation and sustainability, as evidenced by their ESG initiatives. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and GSAP, alongside Google Analytics for user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though some improvements in security headers and privacy compliance could be made. The WHOIS data confirms the legitimacy and long-standing presence of the domain, matching the corporate identity and location. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security headers and cookie consent mechanisms indicates room for enhancement in compliance and defense-in-depth strategies. Overall, the site is trustworthy, professional, and aligned with the company's business stature.

C

Connecte CREDIT

connectecredit.cz

44

Connecte CREDIT SE is a Czech financial services company specializing in non-bank consumer loans secured by real estate collateral. Established since 2012, the company offers solutions for clients with negative credit records, consolidates debts, and provides short-term loans. The website is professionally designed using WordPress with the Breakdance builder, featuring clear navigation, GDPR compliance, and a cookie consent mechanism. Contact information is readily available including phone, email, and a privacy-compliant contact form. The technical infrastructure includes modern JavaScript libraries and Google Analytics for user insights. Security posture is good with HTTPS and consent management but lacks explicit security policies and incident response details. The domain is recently registered in 2024, which may indicate a new web presence or rebranding. Overall, the site is trustworthy, compliant, and well-positioned in the Czech finance market.

C

Connecte GROUP

connecte.cz

48

Connecte GROUP is a diversified business group operating primarily in finance, real estate, manufacturing, and entertainment sectors. The company offers a range of services including secured loans, real estate brokerage and development, custom furniture manufacturing, and family entertainment. The group has multiple subsidiaries with established market presence since 2012, supported by a professional and content-rich website. Technically, the website is built on WordPress using the Breakdance builder, with modern libraries and Google Analytics integration. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR, reflecting a mature digital presence.

H

HRAL Trans

hral.cz

45

HRAL Trans is a Czech logistics company founded in 2010, specializing in transportation and storage of palletized, piece, atypical, bulky, chilled, and frozen goods. The company also offers rental of utility vehicles through a related domain. Their market position is strong within the Czech Republic, serving major clients such as IKEA, Tesco, and Makro. The website is professionally designed using WordPress and modern technologies, with a focus on sustainability and digitalization. Security posture is good with HTTPS and secure forms, though cookie consent and explicit security policies are missing. Overall, the site reflects a credible and established business with a moderate to high level of digital maturity.

P

plug.

plugdesign.cz

42

plug. is a Czech-based small business specializing in revolutionary modular furniture that can be assembled without screws or glue, targeting a broad audience including homes, offices, and commercial spaces. The company operates an e-commerce platform with a 3D configurator to customize furniture sets, positioning itself as an innovative player in the modular furniture retail market. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress and WooCommerce. Security posture is strong with HTTPS and secure login forms, though some improvements in security headers and explicit policies could enhance trust. Privacy compliance is good with a GDPR policy present, but lacks a cookie consent mechanism. Overall, the domain registration and website content are consistent and legitimate, reflecting a newly founded business in 2024.

F

Fitness Boby centrum Brno | posilovna – wellness

fitnessboby.cz

41

Fitness Boby centrum Brno is a local fitness and wellness center located in Brno, Czech Republic, offering services such as bodybuilding, personal training, group classes, squash, and solarium. The website presents a professional and consistent brand image with clear contact information and social media presence. The business targets general fitness enthusiasts in the local area and operates primarily as a small-sized hospitality entity. Technically, the website is built on WordPress using the Breakdance theme builder and employs modern technologies such as Google Tag Manager and GSAP for enhanced user experience. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enabled but lacks some security headers and visible privacy compliance mechanisms. No WHOIS data is available, likely due to privacy protection, but the website content and contact details appear legitimate and consistent with the business type. Overall, the site is functional and trustworthy but would benefit from improved privacy and security policies.

R

Refokus

refokus.io

66

Refokus is a boutique digital agency specializing in high-end web design, branding, and development services primarily targeting B2B startups, venture capital firms, and large innovative organizations. The company leverages modern technologies such as Webflow, AI, and proprietary frameworks to deliver fast, scalable, and visually compelling websites. Their market position is that of a high-quality, award-nominated agency focused on speed and quality. Technically, the website is built on Webflow with integrations of advanced JavaScript libraries like GSAP and ThreeJS, and uses analytics tools including Google Analytics and Ahrefs. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and some consent management for analytics but lacks explicit security headers and published privacy or cookie policies, which are areas for improvement. The WHOIS data is missing or indicates the domain may be very new or unregistered, which slightly reduces trustworthiness despite the professional site content. Overall, the website presents a strong business and technical profile but should address privacy and security policy transparency and clarify domain registration details to enhance trust.

B

Bombardier Recreational Products Inc.

brp-world.com

64

The website represents Bombardier Recreational Products Inc. (BRP), a large multinational company specializing in manufacturing and distributing recreational vehicles such as Ski-Doo and Lynx snowmobiles, Can-Am off-road and on-road vehicles, and Sea-Doo watercraft. The site targets consumers in Germany and Europe interested in powersports and recreational vehicles. The digital infrastructure is modern, leveraging Adobe Experience Manager CMS, React components, and various JavaScript libraries for rich multimedia content and user experience. Privacy and cookie policies are comprehensive and GDPR compliant, with consent management implemented via Axeptio. Security posture is generally strong with HTTPS enforced and no exposed sensitive data, though explicit security headers and incident response information are absent. The domain WHOIS data is missing, which raises concerns about domain registration legitimacy, but the website content and branding strongly align with a reputable global company. Overall, the site is professional, well-branded, and user-friendly, with moderate tracking and analytics integration.

B

B. Braun Melsungen AG

bbraun.fr

65

B. Braun Melsungen AG operates a comprehensive French website focused on medical technology and healthcare solutions. The company offers a broad portfolio of medical devices, therapies, and patient care services, positioning itself as a global leader in the healthcare sector. The website targets healthcare professionals, patients, and industrial partners, providing detailed product catalogs, corporate responsibility information, and career opportunities. Technically, the site is built on Adobe Experience Manager with modern JavaScript libraries and includes consent management tools to comply with privacy regulations. Security posture is strong with HTTPS and CSRF protections, though explicit security headers could be enhanced. The absence of WHOIS data limits domain trust assessment, but the professional branding and content quality strongly support legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

U

Utility Week Live 2026, the UK's only pan-utility exhibition

utilityweeklive.co.uk

70

Utility Week Live is a UK-based event focused on the utility sector, hosting exhibitions and conferences such as the upcoming 2026 event at the NEC Birmingham. The website serves as a platform for exhibitors, visitors, and sponsors to engage with the event, offering brochures, floorplans, and registration options. The business positions itself as the UK's only pan-utility exhibition, targeting professionals in the energy and utilities industry. Technically, the site uses modern JavaScript frameworks including Alpine.js and jQuery, integrates Google Analytics and LinkedIn Insight for tracking, and is built on the ASP.events CMS platform. The site is mobile-optimized and features good navigation and branding consistency. Security-wise, the site uses HTTPS and includes cookie consent mechanisms but lacks visible privacy policies, terms of service, and incident response contacts, which are areas for improvement. The domain WHOIS data is unavailable due to domain naming rules, which slightly impacts trust from a domain registration perspective. Overall, the website is professional and functional but would benefit from enhanced privacy and security disclosures.

L

Les 2 Vaches

les2vaches.com

70

Les 2 Vaches is a French organic dairy product brand emphasizing environmental sustainability and social responsibility, as evidenced by their B Corp certification and commitment to bio and fair trade principles. The website is built on WordPress CMS and uses modern JavaScript libraries such as jQuery, GSAP, and Lottie for animations and interactivity. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content focused on organic dairy products. Security posture is solid with HTTPS enabled, though there is room for improvement by adding security headers and enhancing form protections. Privacy compliance is moderate, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. The absence of WHOIS data for the domain is a concern and should be investigated further to confirm domain legitimacy. Overall, the website presents a trustworthy and professional image suitable for its target audience.

U

Utopia

utopia-lueneburg.de

41

Utopia is a social and sustainable startup incubator and co-working center based in Lüneburg, Germany. It offers a variety of services including co-working spaces, startup incubation, maker spaces, event rooms, and community events. The organization targets freelancers, entrepreneurs, and startups seeking a collaborative and inspiring environment. The website reflects a well-established local business with a strong partner and sponsor network, emphasizing community and sustainability. Technically, the site is built on WordPress with common plugins for SEO and contact forms, showing moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit incident response policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and well-positioned in its niche.

T

The PUB

thepubworld.com

62

The PUB operates a chain of pubs primarily in the Czech Republic with additional locations in Berlin and Bucharest. The business focuses on providing a unique beer experience including self-service taps, master bartenders, and beer pouring education, complemented by food offerings. The website is professionally designed with good mobile optimization and clear navigation, supporting their hospitality business model. Technically, the site uses common web technologies such as jQuery and GSAP, with Google Analytics and Tag Manager for tracking. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain age and WHOIS data support the legitimacy of the business.

Teco a.s. is a Czech-based company specializing in industrial automation and intelligent building management systems. The company offers a range of modular control and regulation systems, including PLCs and smart home solutions, targeting industrial clients, building managers, and energy sectors. Their market position is strong within the Czech Republic, supported by a professional website, active news updates, and comprehensive product catalogs. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and various UI libraries, with a CMS identified as Khaki. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers are not explicitly detected. Privacy compliance is well addressed with GDPR-aligned policies and cookie management. The WHOIS data is unavailable, which slightly reduces transparency but does not detract significantly from the company's legitimacy given the professional online presence and contact information. Overall, the website scores well on content quality, technical implementation, and security, making it a trustworthy and professional digital asset for Teco a.s.

Kulturní a informační centrum Benešov s.r.o. operates as a local cultural and information center serving Benešov and surrounding areas in the Czech Republic. The organization focuses on delivering a wide range of cultural events including concerts, theater performances, city celebrations, balls, dance courses, and children's shows. It manages several venues such as Kulturní centrum Na Karlově, Městské divadlo Benešov, and Přírodní divadlo na Konopišti, positioning itself as a key community cultural hub. The website reflects a professional and community-oriented business model with clear service offerings and active event promotion. Technically, the website is built on WordPress using modern plugins and libraries such as jQuery, GSAP, Tiny Slider, and Koko Analytics. It employs a GDPR-compliant cookie consent mechanism and integrates social media channels for broader engagement. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers are missing which could be improved. From a security perspective, the site uses HTTPS with a valid SSL certificate and implements cookie consent controls, indicating a good baseline for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. However, the absence of WHOIS data limits the ability to fully verify domain registration legitimacy, which slightly impacts trust assessment. Overall, the website presents a trustworthy, well-maintained digital presence for a small government/non-profit cultural entity. Strategic recommendations include enhancing security headers, maintaining plugin updates, and adding a security.txt file for vulnerability disclosure to further strengthen security posture and trust.

T

The PUB

thepub.cz

60

The PUB is a hospitality business operating a chain of pubs primarily in Prague, Czech Republic, with additional locations in Berlin and Bucharest. The business focuses on providing a unique beer experience including self-service beer taps, master bartenders, and beer pouring schools, complemented by food offerings. The website reflects a medium-sized, established hospitality brand with a consistent and professional digital presence. Technically, the site uses common JavaScript libraries such as jQuery and GSAP, and integrates multiple Google Analytics and Tag Manager instances for tracking. However, the site lacks visible privacy and cookie policies, security headers, and explicit contact information, which are important for compliance and trust. The domain is long-standing and registered with a Czech registrar, consistent with the business claims. Overall, the website is well designed and functional but requires improvements in privacy compliance and security posture to enhance trust and regulatory adherence.

C

CLS (Collecte Localisation Satellites)

cls.fr

64

CLS (Collecte Localisation Satellites) is a large multinational company founded in 1986, specializing in satellite data collection and Earth observation services. The company operates globally with 35 sites and focuses on environmental monitoring, maritime security, sustainable fisheries, mobility, and energy infrastructure. CLS leverages advanced technologies such as data science, AI, and machine learning to provide actionable insights to governments, environmental agencies, and industry sectors. The website reflects a mature digital presence with professional design, comprehensive content, and multilingual support. Technically, the website is built on WordPress using the Divi theme and incorporates modern JavaScript libraries like Swiper.js and GSAP. It employs HTTPS with good SSL configuration and uses hCaptcha for form security. The site includes detailed privacy and cookie policies with consent mechanisms, indicating good privacy compliance. Analytics are implemented via Google Tag Manager with moderate user tracking. From a security perspective, the site shows good practices such as HTTPS enforcement and CAPTCHA usage but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain legitimacy verification, but the professional web presence and certifications support trustworthiness. Overall, CLS presents a strong business and technical profile with good security posture and privacy compliance. The main risk is the lack of publicly available WHOIS data, which should be further investigated to confirm domain registration legitimacy.

O

Outseta

outseta.com

58

Outseta operates as a SaaS membership operating system designed to help businesses and creators monetize and grow their membership offerings. The platform integrates payments, authentication, protected content, CRM, email marketing, and help desk tools into a unified solution. The website presents a professional and modern interface with good content relevance and user experience, targeting businesses seeking an all-in-one membership management solution. Technically, the site employs modern web technologies including Google Fonts, Google Tag Manager, reCAPTCHA, and Plausible Analytics, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and bot protection, but lacks explicit security headers and published security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and technology usage suggest a legitimate business. Privacy and cookie policies are not clearly presented, indicating room for compliance improvement.

A

Association de l'aluminium du Canada

aluminium.ca

57

The Association de l'aluminium du Canada (AAC) is a well-established industry association representing the Canadian primary aluminium sector, with a history spanning over 100 years. The organization focuses on promoting sustainable prosperity within the aluminium industry, advocating for decarbonization efforts in North America, and supporting member alumineries. The website is professionally designed, bilingual (French primary with English option), and targets industry stakeholders, government entities, and the general public interested in aluminium and sustainability topics. AAC's market position is strong as a key national industry association with a medium-sized organizational footprint.

L

Les Bricos du Cœur

bricosducoeur.org

49

Les Bricos du Cœur is a French non-profit association founded in 2013 dedicated to supporting social aid organizations by organizing solidarity renovation projects, managing donations of materials, and operating a solidarity hardware store. The website reflects a well-established organization with a clear mission to improve the living and working environments of social structures such as associations, foundations, hospitals, and EHPADs. Their market position is strengthened by over 1200 completed projects and a network of engaged partners. Technically, the site is built on WordPress with modern libraries and performance optimizations, ensuring good user experience and mobile responsiveness. Security posture is strong with HTTPS, security headers, and anti-bot protections, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with visible cookie consent and privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its non-profit mission.

F

FRCI

frci.net

66

FRCI is a Mauritius-based IT consultancy specializing in Microsoft technologies, digital transformation, and training services. The company positions itself as a trusted partner enabling business success through people and technology, serving clients across multiple continents. Their key offerings include Microsoft licensing, project delivery, change management, technical support, business and digital solutions, and comprehensive IT training programs. The website reflects a professional and modern digital presence with clear navigation and relevant content targeting business clients seeking IT expertise. Technically, the website is built on the Umbraco CMS platform and leverages modern JavaScript libraries such as Swiper.js, Fancybox, GSAP, and jQuery. It uses Google Fonts and integrates Google Analytics for visitor tracking. The site is mobile-optimized with good design quality and user experience, though accessibility features are basic. The presence of a privacy policy is noted, but cookie consent mechanisms and detailed security policies are lacking. From a security perspective, the site uses HTTPS and employs email obfuscation to protect contact information. However, no explicit security headers were detected in the HTML content, and there is no published incident response or vulnerability disclosure information. The WHOIS data for the domain is missing or indicates the domain may be unregistered or expired, which raises concerns about domain legitimacy despite the professional website content. Overall, the website demonstrates a solid business and technical foundation but requires improvements in security posture, privacy compliance, and domain registration transparency to enhance trust and reduce risk.

D

dieMAYREI GmbH

diemayrei.de

57

dieMAYREI GmbH is a small, regional fullservice creative agency based in Donauwörth, Germany, specializing in design, print, web, photo, and film production services. The company positions itself as a comprehensive branding and media partner for businesses seeking impactful visual identities and content. Their website reflects a professional and modern digital presence built on WordPress with Elementor, featuring strong branding consistency and clear service offerings. Social media integration includes Instagram, LinkedIn, and Facebook, supporting their market engagement. Technically, the site is well-optimized for performance and mobile responsiveness, leveraging modern libraries and SEO best practices. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. WHOIS data is limited but does not raise immediate concerns. Overall, the website is trustworthy, professional, and safe for general audiences.

N

Nimbel Baby Carrier

nimbelcarrier.com

70

Nimbel Baby Carrier operates an e-commerce website focused on selling ergonomic baby carriers featuring patented Exoframe Technology™️. The company targets parents and caregivers seeking comfortable and innovative baby carrying solutions. The website is built on the Shopify platform, leveraging modern JavaScript libraries and marketing tools such as Google Tag Manager and Facebook Pixel. The technical infrastructure is solid, hosted via Hostnet in the Netherlands, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and domain transfer protections in place, though improvements like enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a cookie consent mechanism via Cookiebot but lacking explicit privacy and terms of service policies. Overall, the site presents a professional and trustworthy front for a small retail business with room for enhanced security and compliance maturity.

R

Rent.Group

rent.group

48

Rent.Group is a large European company specializing in the rental and facilitation of temporary ownership and circular use of furniture and equipment for events, trade fairs, and offices. They position themselves as a leader in the circular and sharing economy with a strong network of 30 locations and over 6 million items. Their website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and frameworks such as Bootstrap, jQuery, and GSAP, and integrates analytics and tracking tools like Microsoft Clarity and Metricool. Security-wise, the site enforces HTTPS, uses Google reCAPTCHA on forms, and implements cookie consent mechanisms, though it lacks explicit security policies and some security headers. Overall, the site is trustworthy and well-maintained with no signs of blocking or WAF interference.

H

Henkel

henkelna.com

10

Henkel North America operates as a major division of Henkel AG & Co. KGaA, a global leader in manufacturing consumer and industrial chemical products. The website reflects a mature enterprise with a strong brand legacy of nearly 150 years, offering products in hair care, laundry detergents, adhesives, and coatings. The company targets both consumer and industrial markets in North America, emphasizing sustainability and innovation. Technically, the website employs a modern tech stack with various JavaScript libraries and a CoreMedia CMS, delivering a responsive and accessible user experience. Security posture is strong with HTTPS and Content-Security-Policy headers, alongside cookie consent mechanisms ensuring GDPR compliance. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, though the website content and branding strongly support authenticity. Overall, the site is professional, secure, and compliant, suitable for enterprise-level operations.