Security Directory

Miesto Žirafos is a Lithuanian media platform focused on providing comprehensive event listings and entertainment guides for major cities such as Vilnius, Kaunas, and Klaipėda. The website targets residents and visitors interested in local cultural events, festivals, and leisure activities. It offers advertising opportunities and a mobile app for convenient event calendar management. Technically, the site is built on WordPress with Bootstrap and integrates Google services like Analytics and Adsense, reflecting a moderate level of digital maturity. The site is mobile-optimized and uses structured data for SEO benefits. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks advanced security headers and explicit security policies. The absence of WHOIS data reduces domain trustworthiness, although the website content and social media presence suggest legitimacy. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy policy page. Overall, the site is functional and professional but could improve in compliance and security transparency.

U

UAB Moore Mackonis

moorestephens.lt

50

UAB Moore Mackonis is a professional services firm based in Lithuania offering audit, accounting, tax, and business advisory services. The company is part of the Moore Global network, which enhances its market credibility and reach. Their website presents a professional image with clear navigation and a focus on personalized, commercially astute services targeting businesses and private clients. The firm operates in multiple sectors including finance, real estate, manufacturing, and hospitality, indicating a diversified client base. Technically, the website is built on WordPress using common plugins for SEO and performance optimization, with moderate loading speeds and good mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some improvements in security headers and updated libraries are recommended. Privacy compliance is well addressed with a clear privacy policy and cookie banner. However, WHOIS data is unavailable, which limits full domain legitimacy verification. Overall, the website reflects a trustworthy and professional business with room for technical and security enhancements.

S

Fjernsupport

seminpc.dk

40

The website seminpc.dk offers remote support services primarily through the ISL Online remote support platform. It targets end users who require assistance with their computers, providing downloadable client software for macOS, macOS Sonoma, and Windows. The business appears to be a small technology service provider based in Denmark, with a domain age consistent with a decade-long operation. The site is professionally designed with clear navigation and good mobile optimization, though it lacks explicit privacy and cookie policies, which impacts compliance and trust. Technically, the site uses a modern frontend stack including Bootstrap 5.3.2 and jQuery 1.12.4, with external resources loaded from reputable CDNs. The performance is moderate, and accessibility features are basic. Security posture is adequate with HTTPS in use, but the absence of DNSSEC and security headers reduces the overall security score. No exposed sensitive data or vulnerable libraries were detected in the provided content. Security-wise, the site does not provide explicit security policies, incident response contacts, or vulnerability disclosure information, which are important for trust and compliance. The WHOIS data shows a consistent and legitimate domain registration without privacy protection, supporting the site's credibility. However, the lack of privacy and cookie policies and security best practices suggests room for improvement. Overall, seminpc.dk is a functional and moderately secure remote support service website with good business credibility but needs to enhance privacy compliance and security practices to improve trust and regulatory adherence.

3

3P Technology

3ptechnology.com

48

3P Technology is a Denmark-based company specializing in software development for industrial automation systems including DCS, PLC, and SCADA. Established in 2007, the company offers both standard and customized software solutions tailored to process industries, leveraging expertise in Siemens PCS7 and plant engineering tools. Their website reflects a focused business model targeting industrial clients requiring automation and control software solutions. Technically, the website is built on WordPress with common plugins and scripts, hosted on One.com, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance measures.

E

Eurotoys

eurotoys.dk

46

Eurotoys is a Danish e-commerce retailer specializing in toys, children's furniture, and related products. The company offers a wide range of CE-marked products from well-known brands such as Lego, Barbie, and Playmobil, targeting families and children primarily in Denmark and the Nordic region. The website is professionally designed with clear navigation and multiple localized domains indicating a strong regional presence. Technically, the site uses common web technologies including jQuery, Google Tag Manager, and Facebook Pixel, but relies on an outdated jQuery version which poses security risks. Security posture is generally good with HTTPS enforced and cookie consent implemented, though the absence of security headers and a formal privacy policy page are notable gaps. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy but would benefit from updates to security practices and privacy compliance.

P

Pareto Securities

paretosec.com

53

Pareto Securities is an established independent full-service investment bank with a strong foothold in the Nordic capital markets, founded in 2000. The company offers investment banking and capital markets services with a global placing power, targeting investors and financial institutions primarily in the Nordic region. The website reflects a professional business presence with consistent branding and relevant content tailored to its financial services audience. Technically, the website employs a moderately modern tech stack including jQuery, Google Tag Manager, and Cloudflare for hosting and security. The use of ExpressionEngine CMS is noted, and performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and Cloudflare protection, though some improvements are recommended such as upgrading outdated libraries and enabling DNSSEC. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy policies, supporting GDPR compliance. However, no explicit terms of service or security policies were found, and no direct contact information is visible on the homepage. Overall, the website is trustworthy and professionally maintained, with room for technical and security enhancements.

Diákhitel Direkt is a Hungarian government-affiliated online portal providing student loan services to Hungarian students. The website facilitates access to student loan products and related information, positioning itself as a key player in the Hungarian student finance sector. The business model is focused on providing direct financial aid services to students, supported by government backing, which enhances its market credibility. Technically, the website uses a JavaScript-heavy frontend built with Google Web Toolkit (GWT), Materialize CSS, and jQuery 1.12.4. It employs Google reCAPTCHA for bot protection and enforces HTTPS for secure communications. However, the site lacks modern SEO and accessibility optimizations and uses an outdated jQuery version, which could pose security risks. The cookie consent mechanism is implemented but basic, and Google Analytics is present but commented out. From a security perspective, the site benefits from HTTPS and reCAPTCHA but lacks advanced security headers and explicit public security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of contact information and terms of service reduces transparency and user trust. WHOIS data aligns well with the business purpose, indicating a legitimate and consistent registration. Overall, the website is functional but basic in content and technical sophistication. Strategic improvements in security headers, updated libraries, enhanced accessibility, and clearer user contact channels would strengthen its security posture and user trust. The AI overall score reflects a moderate maturity level with room for improvement in content richness and technical modernization.

N

Newbridge Technology Solutions Ltd

newbridgetechnology.ie

41

Newbridge Technology Solutions Ltd is a small technology consultancy firm based in Ireland, specializing in providing IT services and business technology solutions primarily to small and medium-sized enterprises. Their offerings include part-time IT consultancy, remote support, and technology management aimed at enabling businesses to focus on their core competencies while optimizing technology use. The website is built on WordPress with a range of plugins for SEO, UI, and remote support functionalities. While the site is professionally designed with good navigation and mobile responsiveness, it runs on an outdated WordPress version which poses security risks. Contact information is clearly provided, but there is a lack of cookie consent and explicit GDPR compliance mechanisms. No advanced security headers or vulnerability disclosure policies are present, indicating room for improvement in security posture. Overall, the website presents a credible business presence but requires updates and enhancements in security and privacy compliance to strengthen trust and reduce risk.

T

Teschem Engineering Ltd

teschem.ie

31

Teschem Engineering Ltd is a well-established Irish manufacturer and supplier of high performance seals, gaskets, noise control, and filtration products, serving multiple industrial sectors including pharmaceutical, chemical, energy, and transport. Founded in 1984, the company emphasizes quality, safety, and service, maintaining strong partnerships with global brands such as Flexitallic, Victor Reinz, Garlock, and W.L.Gore. Their website reflects a professional business presence with clear contact information and product offerings targeted at industrial clients in Ireland. Technically, the website is built on WordPress with common plugins like Contact Form 7 and Yoast SEO, using Bootstrap and jQuery for frontend functionality. While the site is mobile optimized and SEO friendly, it lacks HTTPS encryption and modern security headers, which are critical for protecting user data and maintaining trust. The site uses Google Analytics for tracking but does not provide privacy or cookie policies, indicating compliance gaps with GDPR and related regulations. From a security perspective, the absence of HTTPS and security headers, combined with an outdated WordPress version, exposes the site to potential vulnerabilities. No incident response or security policies are published, and no vulnerability disclosure mechanisms are evident. Overall, the site is functional and professional but requires urgent security and compliance improvements to reduce risk and enhance user trust. Strategically, Teschem should prioritize implementing HTTPS, updating their CMS and plugins, and publishing comprehensive privacy and cookie policies. Enhancing security headers and establishing incident response contacts will further strengthen their security posture and regulatory compliance.

UCD Michael Smurfit Graduate Business School is a leading educational institution in Ireland offering MBA and Masters programmes with a strong international focus. The website reflects a well-established business school with triple accreditation and consistent global rankings, targeting prospective students and business professionals. The technical infrastructure employs a mix of legacy and modern web technologies, including jQuery, Bootstrap, and CookiePro for consent management, delivering a good user experience with mobile optimization and accessibility considerations. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and vulnerability disclosure mechanisms could be improved. Overall, the website demonstrates high professionalism and trustworthiness, supporting the school's market position effectively.

G

G2 Speech

g2speech.com

45

G2 Speech is a UK-based technology company specializing in AI-powered speech recognition software solutions tailored for healthcare, legal, and business sectors. Established in 2016, the company offers a comprehensive suite of products including SpeechReport, SpeechCursor, and Aida, focusing on enhancing document creation efficiency and accuracy. Their market position is strong within the UK and several European countries, supported by partnerships with major industry players such as Microsoft and Philips. The website reflects a professional and well-structured digital presence, emphasizing customer testimonials, certifications, and case studies to build trust. Technically, the website is built on WordPress with modern integrations like Google Tag Manager, reCAPTCHA, and Mailchimp for marketing. The site demonstrates good SEO practices and mobile optimization, although performance is moderate and accessibility features could be enhanced. Security measures include HTTPS enforcement, use of reCAPTCHA, and indications of Wordfence security plugin usage, but the absence of explicit security headers and incident response contacts suggests room for improvement. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. Contact information is comprehensive and transparent, enhancing business credibility. The domain registration data aligns well with the business claims, reinforcing legitimacy. Strategically, G2 Speech should focus on enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility to further strengthen their digital maturity and trustworthiness. These steps will support their continued growth and compliance in regulated sectors.

S

Systems & Technology International

stifrance.com

29

Systems & Technology International (STI) is a France-based company established in 1992, specializing in supplying equipment to the Semiconductor Manufacturing Industry. The company positions itself as a leading supplier in Southern Europe and North Africa, offering equipment sourcing, technical service support, and spare parts centralization. The website reflects a basic digital presence built on WordPress with common plugins and a Visual Composer page builder. While contact information is clearly provided, the site lacks comprehensive content, privacy policies, and advanced security features. The technical infrastructure is moderate with room for modernization and security improvements. Security posture is basic, with no visible security headers and outdated software versions, posing potential risks. Overall, the website is functional but requires enhancements in privacy compliance, security, and content richness to improve trust and professionalism.

E

Elsie Group

elsiegroup.com

50

Elsie Group is a specialized energy sector company providing turnkey technical assistance and services focused on high voltage (HV) and medium voltage (MV) switchgear, power stations, and platforms. Their expertise spans construction, commissioning, operation, supervision, testing, management, and training, with a strong emphasis on personnel secondment that incorporates social, legal, and tax considerations. The company positions itself as a customer-centered service provider with a commitment to health and safety, serving clients internationally with a network of reputable partners such as Siemens, Schneider Electric, and EDF. Technically, the website is built on WordPress with a mature technology stack including Revolution Slider and jQuery. The site is mobile-optimized, well-structured, and incorporates modern web practices such as cookie consent management and Google Analytics tracking. Performance is moderate, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data is consistent with the business claims, indicating legitimacy. Overall, Elsie Group’s digital presence reflects a professional and trustworthy energy services company with room for improvement in security best practices and transparency around incident response. The risk profile is low, with recommendations to enhance security headers and update platform components regularly.

E

EarlyParrot

earlyparrot.com

53

EarlyParrot is a specialized referral marketing platform designed to help coaches, course creators, event hosts, SaaS providers, e-commerce stores, and email list builders grow their businesses through referral programs. The platform offers a range of features including easy setup, customizable campaigns, fraud detection, API access, and integrated email drip campaigns. EarlyParrot positions itself as a niche player with a focus on ease of use, customization, and GDPR compliance, supported by client testimonials and case studies. Technically, the website uses a combination of jQuery 1.12.4, Bootstrap CSS, and custom JavaScript and CSS. Google Tag Manager is employed for analytics and tracking. The site is mobile optimized with good navigation and SEO practices, although accessibility features are basic. No CMS or hosting provider details are explicitly detected. Performance is moderate with room for improvement. From a security perspective, the site demonstrates GDPR compliance and cookie consent mechanisms. However, no explicit security headers were detected in the provided data, and the use of an older jQuery version may introduce vulnerabilities. There is no published incident response contact or vulnerability disclosure policy. The domain uses privacy protection for WHOIS data, which is common and justified for SaaS businesses. Overall, EarlyParrot presents a professional and trustworthy online presence with good business credibility and privacy compliance. Security posture is adequate but could be enhanced by implementing modern security headers, updating libraries, and publishing incident response information. The website is fully accessible with no blocking or WAF challenges detected.

B

Bright Horizons

brighthorizons.com

61

Bright Horizons is a well-established enterprise specializing in child care, early education, and family support services, serving families and employers globally for over 30 years. The company offers a broad range of services including early education programs, family solutions for employers, and workforce education benefits. Their market position is strong, supported by a consistent brand presence and trusted by major clients across industries. Technically, the website employs a mature tech stack with modern tracking and consent tools, ensuring good performance and mobile optimization. Security posture is robust with HTTPS, security headers, and secure login portals, though explicit security policies and incident response details are not publicly available. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website reflects a professional, trustworthy, and user-friendly digital presence.

M

Match-Maker Ventures

match-maker.ventures

38

Match-Maker Ventures is a specialized company facilitating collaborations between scaleups and corporations, primarily in the telecommunications sector. Established in 2018 and based in Austria, the company offers a portfolio of innovative companies and a structured approach to enable successful partnerships. Their services include initial assessments, mutual validation phases, and full collaboration support, leveraging a network of match-makers across Europe, North America, South America, MENA, Asia, and Australia. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to their target audience of corporations and scaleups.

B

Borg & Associates Advocates

borgassociates.com

32

Borg & Associates Advocates is a small, established boutique law firm based in Malta with over 30 years of experience. The firm provides a range of legal services including corporate advice, dispute resolution, and business consultancy, targeting both corporate and individual clients. Their market position is that of a trusted local legal service provider with a family-run business model. The website is built on WordPress using the Enfold theme and employs standard web technologies such as jQuery and FontAwesome. The site is mobile optimized and presents content clearly and professionally. Security posture is moderate with HTTPS enabled but lacking security headers and formal policies. No privacy or cookie policies were found, indicating gaps in compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but could improve in privacy compliance and security best practices.

S

Spin Digital

spindigital.co.uk

46

Spin Digital is a small UK-based digital agency specializing in website design, development, hosting, online marketing, and SEO services targeted at small to medium sized businesses. The website presents a professional but minimalistic digital presence with a focus on branding and a modern design aesthetic. The technical infrastructure leverages common web technologies including jQuery, Bootstrap, and several UI/UX libraries, hosted behind Cloudflare, indicating a moderate level of digital maturity. However, the site lacks critical compliance and security documentation such as privacy policies, cookie consent mechanisms, and security incident response information. No contact emails or phone numbers are provided, which may hinder user trust and engagement. The security posture is basic with no visible security headers and unknown SSL configuration, suggesting room for improvement in protecting user data and enhancing trust. Overall, the site is functional and visually appealing but requires significant enhancements in privacy, security, and compliance to meet modern standards.

G

Gamma Entertainment Limited Liability Company

entertainmentgamma.com

42

Gamma Entertainment Limited Liability Company is a Malta-based service provider specializing in administrative, marketing, customer support, and secretarial services tailored for online entertainment and iGaming companies. The company positions itself as a niche support partner for web-based entertainment businesses, leveraging partnerships with recognized technology providers such as Zendesk, Zopim, and Microsoft. The website presents a professional design with clear navigation and relevant content focused on their key services: risk management, customer support, and marketing. Technically, the website is built on WordPress 4.8.25 with a variety of front-end libraries including jQuery, Font Awesome, and Google Fonts. While the site is mobile-optimized and visually consistent, it uses outdated software versions that may expose it to security vulnerabilities. The absence of modern security headers and lack of visible privacy or cookie policies indicate gaps in compliance and security best practices. From a security perspective, the site uses HTTPS but lacks critical security headers and shows signs of outdated components. No incident response or vulnerability disclosure policies are published, and contact information is limited to email addresses without phone or physical address details. Overall, the security posture is moderate but requires improvements to align with industry standards and regulatory compliance. The overall risk assessment suggests that while the business appears legitimate and professionally presented, it should prioritize updating its technical stack, implementing comprehensive privacy and security policies, and enhancing transparency to improve trust and compliance.

C

Crispo Group

crispogroup.com

29

The website for Crispo Group currently serves a 404 Not Found error page, indicating that the requested content is missing or the site is under maintenance. The visible content is minimal and does not provide any business description, contact information, or policy documents. The site uses WordPress CMS with the Divi theme and standard web technologies such as jQuery and Google Fonts. The technical infrastructure appears basic with moderate performance and limited mobile optimization. Security posture is weak, with HTTPS enabled but no security headers or visible security policies. There are no analytics or advertising scripts detected, and no privacy or cookie policies are present, indicating poor privacy compliance. Overall, the site lacks professionalism and trustworthiness due to missing content and absence of key business and security information.

I

ItLabs22

itlabslv.com

36

ITLABS22 is a small technology company specializing in digital marketing and IT solutions, offering services such as multi-channel CPC advertising, social media marketing, ad spend optimization, influencer marketing, CRM, and brand reputation building. The company positions itself as a region-leading provider of cost-effective digital marketing solutions, targeting businesses seeking to enhance their marketing efforts. The website is built on WordPress and uses common plugins like Contact Form 7 for data collection via forms. The technical infrastructure is moderate with some outdated components such as an old jQuery version, which may pose security risks. The site is mobile optimized and presents content clearly with good navigation and professional design. Security posture is basic with HTTPS enabled but lacks important security headers and explicit incident response or security policies. Privacy compliance is partial with privacy and cookie policies present but no consent mechanism. Contact information is limited to forms without direct emails or phone numbers. Overall, the website is functional and professional but could improve security and privacy practices to enhance trust and compliance.

T

The Football Association

thefa.com

61

The Football Association (The FA) is the official governing body of English football, managing national teams, competitions such as the Emirates FA Cup, and grassroots football initiatives. The website serves as a comprehensive portal for news, fixtures, results, governance, and educational resources, targeting football fans, players, coaches, referees, and volunteers. The FA holds a prominent market position as the authoritative source for football in England, operating as a large non-profit organization with a long-established history since 1863. Technically, the website is built on the Sitecore CMS platform and utilizes a modern tech stack including jQuery, Google Analytics, Google Tag Manager, Hotjar, and OneTrust for cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The presence of multiple external partner domains and integration with recognized marketing and analytics tools indicates a mature digital infrastructure. From a security perspective, the site enforces HTTPS with excellent SSL configuration and employs a robust cookie consent mechanism. While explicit security headers are not visibly present in the HTML, no exposed sensitive data or vulnerable libraries were detected. The site follows best practices in data protection and privacy compliance, including GDPR adherence. Overall, the website presents a high level of professionalism, trustworthiness, and compliance, with clear navigation and rich content. Strategic recommendations include enhancing security headers, maintaining up-to-date libraries, and improving incident response transparency to further strengthen the security posture.

S

St. Theresa School

sttheresaschool.org

30

St. Theresa School is a small, community-focused Catholic educational institution founded in 1958, providing K-8 education with an emphasis on academic, social, and spiritual development. The website serves as an informational portal for families and the local community, highlighting the school's philosophy, curriculum, and community involvement. Technically, the site is built on WordPress with standard web technologies including jQuery and Typekit fonts, but it uses an outdated jQuery version which poses security risks. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and modern JavaScript libraries. Privacy compliance is minimal, with no cookie consent or GDPR indicators, and no visible privacy or terms of service pages beyond a basic non-discrimination policy. Contact information is clearly presented, but no contact forms or social media links are found. Overall, the site is functional and professional but would benefit from updates to security, privacy compliance, and technical modernization.

B

Biedrība “Pēdas LV”

talkas.lv

43

Talkas.lv is a Latvian non-profit organization dedicated to organizing large-scale environmental clean-up events, notably the 'Lielā Talka'. The platform fosters community involvement and environmental stewardship across Latvia and its diaspora. The website is well-branded, content-rich, and provides multiple channels for engagement including social media and donation mechanisms. Technically, it is built on WordPress with a moderate tech stack including jQuery, Bootstrap, and Vue.js, offering a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and secure donation forms, though some improvements in security headers and platform updates are recommended. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, serving an important social cause.

H

Hrabri telefon

hrabritelefon.hr

39

Hrabri telefon is a well-established Croatian non-profit organization founded in 1997, providing vital counseling and support services to children, teenagers, parents, and adults. The organization operates multiple specialized helplines, including telephone lines, WhatsApp chat, email support, and forums, positioning itself as a trusted resource in child protection and family support. The website reflects a professional and consistent brand image, targeting a broad audience with clear navigation and relevant content. Technically, the site is built on WordPress with standard plugins and integrates Google Tag Manager for analytics, showing moderate digital maturity. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies are absent. Privacy compliance is addressed with cookie consent and privacy policies, aligning with GDPR requirements. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the site demonstrates a solid foundation for its mission but could benefit from enhanced security policies and technical improvements.

A

AdMaxim Inc.

admaxim.com

58

AdMaxim Inc. operates an integrated digital advertising platform specializing in programmatic mobile campaigns, advanced footfall solutions, cross-channel media amplification, audience data management, creative ad production, native advertising, and programmatic RTB media buying. The company targets advertising agencies and marketers seeking precision-targeted digital advertising solutions. The website is built on WordPress with common plugins and technologies such as LayerSlider and Google Analytics, indicating a moderate level of digital maturity and technical infrastructure. The site is mobile optimized and presents good content quality and branding consistency. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and explicit incident response contacts. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy with room for improvement in privacy and security practices.

Payzone.se is a small Swedish website with minimal content primarily structured as a blog with categories related to education and security. The site lacks detailed business descriptions, contact information, and legal policies, which limits its credibility and user trust. Technically, the site is built on WordPress using older versions of jQuery and Font Awesome, with basic styling and limited SEO optimization. There is no evidence of HTTPS enforcement or modern security headers, which poses risks to user data and site integrity. The absence of privacy and cookie policies indicates non-compliance with GDPR requirements. Overall, the site appears to be a low-traffic informational resource with limited digital maturity and security posture.

A

Advisorgruppen

advisorgruppen.se

37

Advisorgruppen is a Swedish accounting firm specializing in personalized and flexible financial services including accounting, payroll, outsourcing, and advisory. The company targets small to medium-sized businesses in Sweden, emphasizing a customer-centric approach to simplify business operations. The website is professionally designed, mobile-optimized, and uses modern web technologies such as WordPress, jQuery, and Yoast SEO to ensure good performance and search engine visibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are absent and should be implemented to enhance protection. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the website reflects a trustworthy and credible business with clear contact information and positive customer testimonials.

G

Granberg Interior AB

granberg.se

49

Granberg Interior AB is a well-established Swedish family-owned manufacturing company founded in 1870, specializing in ergonomic and accessible interior products such as adjustable lifting systems for kitchens, bathrooms, and storage solutions. The company targets architects, project planners, healthcare, eldercare, educational institutions, and end consumers seeking ergonomic interior solutions. Their market position is strong within their niche, supported by certifications and a consistent brand presence across multiple country-specific domains. Technically, the website employs a mature but slightly dated technology stack including jQuery 1.12.4, Bootstrap, FontAwesome Pro, and Google services such as reCAPTCHA and Tag Manager. The site is mobile-optimized with good SEO and accessibility basics, though some modernization opportunities exist, particularly updating JavaScript libraries and enhancing security headers. Security posture is solid with HTTPS enforced, bot protection via Google reCAPTCHA, and a comprehensive cookie consent mechanism. However, the absence of certain security headers and use of an older jQuery version present moderate risks. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-aligned with the company's business model and market presence. The domain registration details corroborate the legitimacy and history of the business. Strategic recommendations include updating technical components, enhancing security headers, and adding a terms of service page to improve legal completeness.

Sapheneia is a specialized healthcare technology company focused on medical imaging software innovations, particularly in radiation dose reduction and compliance with FDA and NEMA standards. Their partnership with Scannerside enhances their offerings with dose tracking and analytics solutions. The company targets healthcare providers and medical device manufacturers, providing vendor-neutral software solutions to optimize imaging and ensure regulatory compliance. The website reflects a professional business with clear service offerings and industry certifications, although some content such as privacy policies is missing. Technically, the website is built on an older WordPress platform with common plugins and libraries like jQuery and Bootstrap. While the site is functional and moderately optimized for mobile, it lacks HTTPS encryption and modern security headers, which are critical for protecting sensitive healthcare-related information. The use of outdated software versions poses potential security risks. From a security perspective, the absence of HTTPS and security headers, along with outdated libraries, lowers the security posture significantly. No explicit security or incident response policies are found on the site. Privacy compliance is weak, with no visible privacy or cookie policies despite the use of Google Analytics tracking. Contact information is available, including a phone number and physical address in Colorado, USA, supporting business credibility. Overall, the website is moderately professional and credible but requires urgent improvements in security and privacy compliance to meet modern standards and protect user data effectively.

Softarc AB is a Swedish IT consulting company specializing in software architecture, system development, and project management services primarily focused on Microsoft platforms. The company positions itself as a small but highly competent consultancy with a strong emphasis on personal engagement and delivering optimal business value to its clients. Their website reflects a professional and consistent brand image with clear service offerings and customer testimonials that enhance trust. Technically, the website is built on WordPress using the Divi theme and includes legacy technologies such as an outdated jQuery version and WordPress core, which may expose the site to security vulnerabilities. The hosting appears to be on Microsoft Azure, aligning with their technology focus. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks important security headers and up-to-date software components. There is no visible privacy or cookie policy, which is a compliance gap, especially under GDPR. No incident response or security contact information is provided, limiting transparency in security matters. Overall, the website is functional and professional but requires improvements in security posture, privacy compliance, and technical modernization to reduce risk and enhance trustworthiness.

S

Statens institutionsstyrelse

stat-inst.se

48

Statens institutionsstyrelse (SiS) is a Swedish government agency specializing in individually adapted compulsory care and closed youth care. The agency operates 21 special youth homes and 11 LVM homes, targeting youth and clients with serious psychosocial problems in collaboration with social services. The website serves as an informational and service portal for social services, youth, clients, and the general public, emphasizing transparency and accessibility. Technically, the site employs a moderate tech stack including jQuery, Cookiebot for consent management, and Matomo for analytics, reflecting a balance between functionality and privacy. Security posture is solid with HTTPS enforcement and session security cookies, though improvements in security headers and incident response disclosures are recommended. Overall, the site is professional, accessible, and compliant with GDPR, supporting the agency's mission and public trust.

Schmiedmann Sverige AB operates as Sweden's largest independent BMW specialist, offering an extensive e-commerce platform for BMW and MINI styling, tuning, and spare parts. The company maintains a strong market position with a comprehensive product catalog exceeding 300,000 items, targeting vehicle owners, workshops, and enthusiasts. Their digital presence is supported by a professional website with clear navigation, mobile optimization, and active social media engagement across Facebook, YouTube, Instagram, and TikTok. The technical infrastructure is built on ASP.NET with modern libraries and analytics integrations, ensuring a robust and scalable platform. Security practices include HTTPS enforcement, cookie consent mechanisms, and use of security tokens in forms, though there is room for enhancement in security headers and library updates. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR requirements.

D

Digisec Media Limited

digisecmedia.com

45

Digisec Media Limited is a Norway-based digital media company specializing in creating innovative online ventures that engage diverse demographics. Their portfolio includes notable brands such as Victoria Milan, serving millions of members globally. The company focuses on enhancing brand visibility and profitability through high-quality digital solutions. Technically, the website is built on WordPress with Bootstrap and jQuery, offering a moderate performance and good mobile optimization. However, some technologies like jQuery are outdated, posing potential security risks. Security posture is moderate with HTTPS enabled but lacking explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business appears legitimate and established with consistent WHOIS data and active social media presence.

H

Högskolerestauranger AB

hors.se

40

Högskolerestauranger AB, operating under the brand Campus by Nordrest, is a medium-sized hospitality business specializing in running restaurants and cafés on university campuses across Sweden. With a history dating back to 1970 and over 40 locations, the company offers a range of services including daily meals, coffee, catering for events, and a customer loyalty card system. The business targets students, campus employees, and visitors, positioning itself as a trusted and established player in the Swedish campus hospitality market. The website clearly communicates the brand transition and provides relevant information about services and locations. Technically, the website uses a traditional tech stack centered around jQuery and related libraries, with additional tools for galleries and animations. It is built on the WebbEss CMS platform and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, some technologies are somewhat dated, and there is room for modernization. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and formal security or privacy policies, which are important for compliance and trust. The absence of cookie consent mechanisms and privacy policies indicates gaps in GDPR compliance. No incident response or vulnerability disclosure information is provided, limiting transparency in security matters. Overall, the website is functional, professional, and credible but would benefit from enhanced privacy compliance, updated security practices, and modernization of technical components to improve security posture and user trust.

N

Northern Offshore Services

n-o-s.eu

43

Northern Offshore Services is a specialized maritime service provider focusing on crew transfer and multipurpose vessels primarily serving the offshore wind industry. The company operates a diverse fleet of vessels designed for efficient offshore operations, cargo transport, and personnel transfer. Their market position is that of an established medium-sized player with a strong presence in Northern Europe, supported by multiple office locations in Sweden, Denmark, and the UK. The website reflects a professional digital presence built on WordPress with modern SEO and structured data implementations. However, some technical debt is noted with outdated JavaScript libraries and redundant analytics scripts. Security posture is generally good with HTTPS and nonce usage, but lacks advanced security headers and explicit incident response documentation. Privacy compliance is basic with privacy and cookie policies present but missing active consent mechanisms. Overall, the website is trustworthy and professionally maintained, supporting the company's business credibility.

S

Santa Maria International

santamaria.co.in

32

Santa Maria International is a small manufacturing company based in India specializing in the production and export of finished leather products. The company positions itself as a quality-focused and innovative player in the leather industry, holding a Leather Working Group Gold certification which enhances its market credibility. The website is built on WordPress with a standard technology stack including Bootstrap and jQuery, providing a moderate level of technical maturity. While the site is accessible and professionally designed with clear navigation and relevant content, it lacks key compliance elements such as privacy and cookie policies. Security posture is basic with HTTPS enabled but missing important security headers and running outdated software versions, which could expose the site to vulnerabilities. Contact information is clearly provided, supporting business credibility, but no forms or data collection mechanisms are present on the homepage. Overall, the site reflects a legitimate business with room for improvement in security and privacy compliance.

A

Aloja

aloja.lv

39

The Aloja website serves as the official online presence for the Aloja municipality, part of the Limbažu novads in Latvia. It primarily provides local government information, community news, and public service announcements targeted at residents and stakeholders within the municipality. The site also offers tourism and business support information, positioning itself as a local government resource. Technically, the site is built on WordPress with several plugins for galleries, tabs, and cookie management. While the site uses HTTPS and includes a cookie consent mechanism, it employs an outdated jQuery version and lacks explicit security headers, which are areas for improvement. The content is basic and minimal, with a notice that the site has not been updated since early 2022, directing users to the broader Limbažu novads website for current information. No direct contact emails or phone numbers are present, but official social media links are provided. Overall, the site demonstrates moderate professionalism and trustworthiness but would benefit from enhanced security practices and updated content.

REALTY EXPERTS is a small real estate brokerage focused on the Fremont, California area, providing residential, commercial, and land property listings along with related services such as home valuation and mortgage information. The website is professionally designed with good content quality, clear navigation, and multiple lead capture forms to engage potential clients. The technical infrastructure is based on Drupal CMS with common real estate web technologies including jQuery, Google reCAPTCHA, and accessibility widgets. While the site uses HTTPS and includes bot protection, it employs an outdated jQuery version and lacks explicit security headers, which are areas for improvement. Privacy compliance is basic with a privacy policy and terms of service present but no cookie consent mechanism detected. Overall, the site is trustworthy and legitimate, with consistent WHOIS data and clear business information.

T

Tevir Group

tevirgroup.com

54

Tevir Group is a privately-held investment management company based in the Isle of Man, focusing on a diversified portfolio including property management, redevelopment, venture capital investments, and facilities management. The company targets investors and business partners interested in regional investment opportunities with social and economic impact. Their market position is niche, emphasizing Isle of Man commercial properties and early-stage engineering ventures. Technically, the website employs a modern tech stack including Bootstrap 4, jQuery, and Google Analytics, hosted partially on Amazon S3 for media assets. The site is mobile-optimized with good navigation and consistent branding, though accessibility features are basic. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS and trusted third-party analytics but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were found, but incident response and vulnerability disclosure mechanisms are absent. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism or GDPR compliance statements. Overall, the website presents a professional and trustworthy image with moderate risk. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance their security posture and trustworthiness.

M

Metis

metis-vienna.eu

31

Metis is a small Austrian organization specializing in European integration, focusing on labor markets, rural and urban development across Austria and the EU. The website serves as an informational platform presenting their mission and projects, targeting policymakers and regional development stakeholders. The site is built on WordPress with multilingual support, employing common web technologies such as Bootstrap and jQuery. While the site is functional and professionally designed, it uses outdated software versions which may pose security risks. The presence of a cookie consent banner and privacy policy indicates basic GDPR compliance, but no explicit security or incident response policies are visible. Overall, the website is moderately secure and compliant but would benefit from technical updates and enhanced transparency.

The website creativvideo.de is a basic WordPress site with minimal content, primarily serving as a placeholder or starter blog related to video editing (Videobearbeitung). It lacks substantive business information, contact details, or privacy and cookie policies, which limits its credibility and compliance posture. The site uses an outdated WordPress version (4.9.26) and older jQuery libraries, which pose security risks. No security headers or HTTPS enforcement are evident from the provided content, further reducing the site's security posture. Overall, the site appears to be a small-scale or personal project rather than a professional business platform.

S

Stucon: Auf der Suche nach den besten Online Casinos in Österreich

stucon.at

12

Stucon.at is a German-language website focused on providing information and reviews about online casinos in Austria, including popular games such as roulette and slots. The site targets Austrian online gamblers seeking trustworthy casino recommendations and gaming guides. The business model appears to be content publishing with potential affiliate marketing through casino referrals. The website uses WordPress with common plugins like Yoast SEO and CAPTCHA for forms, but employs outdated JavaScript libraries which may pose security risks. The site is moderately optimized for SEO and mobile devices but lacks advanced security headers and cookie consent mechanisms. Contact information is limited to a contact form without direct emails or phone numbers. No social media presence or advertising scripts were detected in the provided content.

B

Blackburne & Sons Realty Capital Corporation

blackburneandsons.com

39

Blackburne & Sons Realty Capital Corporation is a specialized hard money commercial lending company founded in 1980, managing approximately $50 million in trust deed investments. The company targets accredited investors seeking first mortgage loans secured by income-producing commercial real estate. Their business model focuses on syndicating private investors to fund commercial loans, leveraging their ownership of C-Loans.com to source loan applications. The website presents a professional and consistent brand image with clear service offerings and multiple contact channels. Technically, the site is built on WordPress hosted by WP Engine, using common plugins such as Yoast SEO and Ninja Forms, but lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. The security posture is weak due to missing HTTPS and security headers, though no active vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is functional and credible but requires urgent security improvements to protect user data and build trust.

À

À La Carte Videos Inc.

alacartevideos.com

17

À La Carte Videos Inc. is a Canadian media production company specializing in animation, video production, design, and interactive content primarily for corporate and non-profit clients. With over 20 years of experience, the company positions itself as a creative agency delivering turnkey video solutions with a focus on client collaboration and quality. The website showcases a portfolio of work, client testimonials, and detailed service descriptions, targeting businesses seeking professional video and animation services. Technically, the website is built on WordPress 5.4.16, utilizing common plugins such as Jetpack, Simple Lightbox, and jQuery-based sliders. The site uses Apache as the web server but lacks a valid SSL certificate, serving content over HTTP only. Performance metrics are unavailable, but the site appears to have basic mobile optimization and accessibility features. SEO is basic with meta tags and Open Graph tags present but no structured data. From a security perspective, the absence of HTTPS is a critical vulnerability, exposing users to potential data interception. No advanced security headers or policies are implemented, and no privacy or cookie policies are present, indicating poor privacy compliance. The site collects user data via a contact form but lacks visible security or incident response policies. DNS records are missing in the provided data, which is unusual and may indicate DNS misconfiguration or incomplete data. Overall, while the business content and presentation are professional and trustworthy, the technical and security posture is weak, with critical issues that should be addressed to improve user trust and compliance.

B

B+S Banksysteme AG

bs-ag.com

40

B+S Banksysteme AG is a German-based software manufacturer specializing in banking and financial services software solutions. With over 40 years of experience, the company serves a broad range of clients including traditional banks, fintechs, and neobanks primarily in the D-A-CH region. Their offerings include core banking applications, online and mobile banking, banking APIs, and modular banking services underpinned by a ZAG license. The company maintains a medium-sized presence with subsidiaries such as B+S Banksysteme Salzburg GmbH and emphasizes customer-centric service models like Banking as a Service. Technically, the website is built on WordPress with popular plugins such as WPBakery Page Builder and Slider Revolution. While the site is well-structured, SEO optimized, and mobile responsive, it suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support. The security headers are well configured, but the lack of TLS protocols and the presence of unsafe inline scripts reduce the overall security posture. From a security perspective, the site demonstrates good header policies and content security policies but critically lacks HTTPS, which exposes users to potential risks. No explicit security or incident response policies are published, and no vulnerability disclosure or security.txt files are present. Contact information is clearly provided, including multiple phone numbers, email addresses, and physical locations, supporting business credibility. Overall, the website presents a professional and trustworthy business front with strong market positioning in banking software. However, the lack of HTTPS significantly undermines security and trustworthiness, necessitating urgent remediation to protect user data and comply with modern security standards.

T

Tenne Export-Import Handelsgesellschaft m.b.H.

tenne.at

40

Tenne Export-Import Handelsgesellschaft m.b.H. is a well-established Austrian retail company specializing in bathroom products and complete bathroom systems. With over 40 years of industry experience, the company operates multiple showrooms across Austria and offers an online shop, targeting both end consumers and business clients. Their product range includes bathroom furniture, fittings, tiles, showers, and accessories, supported by services such as online bathroom planning and mobile consultation. The company holds reputable certifications and awards, reinforcing its strong market position as a leading bathroom retailer in Austria. Technically, the website is built on WordPress with a variety of plugins including Yoast SEO, Borlabs Cookie for consent management, and Contact Form 7 for user interactions. The site uses Apache hosting likely provided by Telekom Austria. While the site is rich in content, well-structured, and optimized for SEO and mobile devices, it suffers from a critical security shortfall: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security-wise, the site lacks modern TLS protocols, HSTS headers, and email security measures such as DMARC and DNSSEC. However, it employs reCAPTCHA on forms and avoids known SSL vulnerabilities. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms in place. Contact information is abundant and clearly presented, enhancing business credibility. Overall, the website is professional, content-rich, and trustworthy from a business perspective but requires urgent improvements in SSL/TLS configuration and security headers to protect user data and improve trustworthiness. Addressing these issues will elevate the site's security score and user confidence.

N

Nederman Holding AB

nederman.com

37

Nederman Holding AB is a well-established global leader in industrial air filtration and environmental technology, with a history dating back to 1944. The company offers a comprehensive range of products and services focused on protecting people, the environment, and production processes from harmful industrial emissions. Their market position is strong, supported by multiple subsidiaries and a broad product portfolio including dust and fume extraction systems and connected IIoT solutions. Technically, the website is built on a modern stack including Bootstrap, jQuery, and Sitecore CMS, hosted via Cloudflare, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Privacy compliance is partially addressed through OneTrust cookie consent, but no explicit GDPR or security policies are found. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

sprungbrett.at is an Austrian job platform focused on connecting job seekers with employment opportunities primarily in commercial and technical sectors. The website offers job listings, initiative application options, and personnel search services for companies. It targets job seekers in Austria and positions itself as a regional recruitment service with a professional and user-friendly interface. Technically, the site uses a Contao CMS backend with PHP 7.4 and nginx server, integrating common web technologies such as jQuery, Google Analytics, Google Maps API, and ShareThis for social sharing. However, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts its security posture. Security headers are present but undermined by the absence of HTTPS. Privacy compliance is weak, with no visible privacy or cookie policies. Contact information is clearly provided, including email, phone, and physical address, enhancing business credibility. Overall, the site is functional and professional but requires urgent security and compliance improvements.

Lab Zero Games is an independent game development studio known for titles such as Skullgirls and Indivisible. The website serves primarily as a promotional platform for their games, targeting gamers interested in indie and retro-style games. The business model focuses on game development and publishing within the technology sector. The company appears to be small-sized with consistent branding and good content quality. Technically, the website is built on WordPress 5.2.21 with PHP 7.3.33 and Apache server. The site lacks HTTPS support, which is a significant security concern. Performance metrics are not available, but the site shows basic mobile optimization and accessibility features. No advanced frameworks or analytics tools are detected. From a security perspective, the absence of SSL/TLS encryption, lack of security headers, and missing privacy and cookie policies indicate a low security posture. No incident response or vulnerability disclosure mechanisms are present. The domain registration data is consistent and legitimate, but the site would benefit greatly from implementing modern security best practices. Overall, the website is functional and professional in design but requires urgent improvements in security and privacy compliance to protect users and enhance trustworthiness.