Security Directory

O

OCI

oci.fr

10

OCI is a French digital transformation company specializing in IT infrastructure, cybersecurity, cloud services, telecom, and business digitalization solutions. The company targets SMEs, mid-sized enterprises, associations, and local authorities, positioning itself as a trusted partner in digital transformation. The website is professionally designed using WordPress and Elementor, with performance optimizations via WP Rocket and modern web technologies. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit privacy and terms policies are not found. WHOIS data is unavailable, likely due to privacy protection, but no suspicious indicators are present. Overall, OCI presents a credible and professional digital presence with clear contact channels and comprehensive service offerings.

Hellopro.fr is a professional French B2B marketplace platform specializing in connecting businesses with suppliers across a wide range of industrial and commercial sectors. The website offers extensive product categories and supplier comparison services, targeting professional buyers and companies seeking procurement solutions. The platform is well-positioned in the French market as a trusted partner for professional purchases, with a clear focus on industrial, manufacturing, transportation, and energy sectors. Technically, the website employs modern JavaScript libraries and analytics tools such as Google Tag Manager, Hotjar, and LinkedIn Insight Tag, indicating a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features could be improved. Performance is moderate, with a professional design and clear navigation structure. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit privacy and terms of service pages, security.txt files, and some recommended security headers, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, Hellopro.fr presents a low-risk profile with a professional and trustworthy online presence. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and providing clear contact information for incident response to strengthen compliance and trust.

F

Freunde der Katholischen Theresienschule in Berlin-Weißensee e.V.

theresienball.de

9

The website 'Theresienball' represents a non-profit educational event organized by the Freunde der Katholischen Theresienschule in Berlin-Weißensee e.V. It serves as a platform to promote and provide information about the annual school ball, targeting students, parents, and teachers. The site is built on WordPress with WooCommerce and Tickera plugins to support ticketing and event management functionalities. The technical infrastructure is modern and includes common web technologies such as jQuery and Font Awesome, with a responsive design suitable for mobile devices. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and cookie consent mechanisms. Privacy compliance is basic with a privacy policy present but no cookie banner. Overall, the site is professional, trustworthy, and focused on community engagement.

V

VR-EASY GmbH

vr-easy.com

10

VR-EASY GmbH operates a specialized SaaS platform enabling users to create, manage, and share virtual 360° tours online without the need for software installation. The company targets small to medium businesses, educational institutions, real estate professionals, and municipalities, offering tiered subscription packages tailored to various sectors. Their market position is that of a niche provider with innovative features such as integration of multimedia content and marketing tools, supported by reputable partners like Deutsche Telekom and EU funding. The website is primarily in German with English alternatives, reflecting a focus on the German market. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and Popper.js, hosted on the Open Telekom Cloud which emphasizes green energy. The platform is web-based with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though accessibility is basic. The site lacks a CMS, indicating a custom-built solution. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and explicit security headers such as CSP or HSTS. No vulnerability disclosure or incident response policies are visible. Privacy compliance is good with a comprehensive privacy policy and GDPR adherence, but no cookie consent mechanism is detected. Contact information is clear and professional, enhancing business credibility. Overall, the website is professional, trustworthy, and well-positioned in its niche. Security improvements and enhanced privacy mechanisms would further strengthen its posture. The domain registration data aligns well with the business claims, supporting legitimacy.

The website 'Schulerzbistum' appears to be a minimal portal page primarily embedding another PHP page via an iframe. The content is very limited, with no visible business descriptions, contact information, or user interaction elements. The technical infrastructure relies on basic web technologies including jQuery and custom JavaScript, with no advanced frameworks or CMS detected. The site lacks modern SEO and accessibility features and shows minimal mobile optimization. Security posture is weak due to absence of HTTPS and security headers, and no privacy or cookie policies are present, indicating poor compliance with GDPR and related regulations. Overall, the site presents a low trust profile with limited business credibility and minimal content quality.

B

BBW Recycling Mittelelbe GmbH

bbw-recycling.de

46

BBW Recycling Mittelelbe GmbH is a medium-sized German company specializing in the recycling of construction waste and supply of recycled building materials. The company operates a large facility with advanced processing capabilities, serving construction and waste management sectors. Their website is professionally designed using TYPO3 CMS, featuring multilingual support and clear navigation. The technical infrastructure is modern with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though lacking some advanced security headers and explicit security policies. Overall, the website reflects a trustworthy and compliant business presence with room for security and legal documentation improvements.

S

STORK Unternehmensgruppe

stork-gruppe.de

44

STORK Unternehmensgruppe is a medium-sized, well-established European service company specializing in waste disposal and recycling, with over 30 years of operational history. The group comprises 23 companies across 13 locations, employing more than 460 staff. Their core competencies include mineral waste processing, mobile and stationary recycling technologies, and specialized services such as industrial cleaning, demolition, and hazardous material remediation. The company targets B2B clients across Europe, positioning itself as a leader in efficient metal recovery and sustainable environmental solutions. Technically, the website is built on TYPO3 CMS, featuring modern web technologies and a responsive design, though some performance and accessibility improvements are possible. Security posture is adequate with HTTPS and cookie consent implemented, but lacks explicit security headers and published incident response policies. Overall, the domain and website content align well, supporting legitimacy and trustworthiness.

B

buff.rocks GmbH

buff.media

54

buff.rocks GmbH is a small digital and advertising agency based in Magdeburg, Germany, specializing in creative and strategic services including TYPO3 CMS web projects, design, campaigns, content marketing, hosting, and digital transformation. The company is part of the +Pluswerk network, enhancing its market position and service capabilities. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and Matomo analytics for user tracking, with good performance and accessibility features. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. WHOIS data is unavailable or malformed, limiting domain registration trust verification, but the business legitimacy is supported by consistent branding, client testimonials, and industry memberships. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility.

UniCredit Foundation is a reputable non-profit organization dedicated to empowering Europe's next generation through education funding, research support, and social impact initiatives. The foundation operates under the UniCredit Group umbrella, focusing on reducing educational inequalities and fostering talent development. The website reflects a professional and consistent brand image, targeting students, researchers, non-profit organizations, and UniCredit employees. Technically, the site uses modern frameworks such as Next.js and Storyblok CMS, delivering a well-structured, mobile-optimized, and accessible user experience. Security posture is good with HTTPS enforced and asynchronous script loading, though explicit security headers and privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the overall digital presence and content quality indicate legitimacy. Tracking scripts are present without visible consent mechanisms, suggesting room for privacy compliance improvements.

P

Provida foundation

provida.sk

52

Provida is a Slovak non-profit foundation established in 2013 that combines philanthropy and investment to address complex social challenges. Their focus is on supporting disadvantaged children, youth, social entrepreneurs, and community development through cultural and educational projects. The website presents a clear and professional image with detailed descriptions of their projects and investments, targeting socially engaged individuals and donors. Technically, the website uses a moderately modern stack including Bootstrap 3.3.5, jQuery 1.11.3, Font Awesome, and Google Fonts. Hosting is likely provided by Websupport, a Slovak hosting provider. The site is mobile responsive and has basic SEO and accessibility features, though some technical debt is evident due to outdated JavaScript libraries. Security posture is moderate with HTTPS and DNSSEC enabled, but lacks visible security headers and uses an outdated jQuery version with known vulnerabilities. No privacy or cookie policies are published, indicating compliance gaps with GDPR. Contact information is clearly provided, but no incident response or security policies are visible. Overall, the website is trustworthy and professional but would benefit from improved security practices, updated libraries, and formalized privacy and cookie policies to enhance compliance and user trust.

K

Karpatská nadácia

karpatskanadacia.sk

47

Karpatská nadácia is a well-established non-profit organization founded in 2007, focused on fostering prosperity and social development in Eastern Slovakia. The foundation offers grant funding, community development programs, and humanitarian aid, with a strong emphasis on supporting excluded Roma communities and aiding Ukraine. Their market position is solid within the regional non-profit sector, supported by partnerships with UNICEF and other organizations. The website reflects a professional and consistent brand image, targeting individuals and organizations committed to regional development. Technically, the website is built on a modern WordPress CMS platform using Elementor and Astra theme, hosted by Websupport. It employs contemporary web technologies including jQuery, Google Tag Manager, and CookieYes for cookie consent management. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS with DNSSEC enabled, employs cookie consent with granular user controls, and integrates tracking tools like Google Analytics, Microsoft Clarity, and Facebook Pixel responsibly. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a published security policy and incident response contact information, which are recommended for improved transparency and readiness. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and improving accessibility compliance to further strengthen the security posture and user trust.

Ľ

ĽudiaĽuďom.sk

ludialudom.sk

70

ĽudiaĽuďom.sk operates as Slovakia's first fully open and universal online donation platform, facilitating direct financial aid from donors to beneficiaries with a focus on transparency and public benefit. The platform's unique self-organizing model empowers donors to decide which causes to support without operator interference. Technically, the website employs common web technologies including jQuery, Google Tag Manager, Hotjar, and Cookiebot for analytics and cookie consent management. The site is accessible, mobile-optimized, and uses HTTPS, but lacks explicit privacy and terms of service pages and security headers, which are areas for improvement. Security posture is moderate with no critical vulnerabilities detected, but enhancements in security headers and incident response policies are recommended. Overall, the domain is well-established and consistent with the business purpose, indicating a trustworthy and legitimate operation.

C

Centrum pre filantropiu

cpf.sk

40

Centrum pre filantropiu is a well-established Slovak non-profit organization dedicated to fostering philanthropy and charitable giving in Slovakia for over 23 years. The organization connects donors with those in need and manages philanthropic strategies and grant programs. Their website reflects a mature digital presence with clear messaging, professional design, and comprehensive content focused on their mission and projects. Technically, the site is built on WordPress using modern plugins and tracking tools such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a good level of digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and headers. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information, supporting its credibility as a non-profit entity.

W

WBV - Westfälischer Bibliographischer Verlag

kirchenrecht.shop

56

Kirchenrecht.shop is an e-commerce platform specializing in customized and preconfigured legal text collections related to the Evangelische Kirche von Westfalen. The business operates in a niche market serving church members and legal professionals interested in church law. The website is professionally designed with clear navigation and offers a Rechtstexte-Konfigurator tool for personalized document creation. The platform is built on a Shopware Saltation theme, leveraging modern web technologies and Google reCAPTCHA for form protection. Hosting and domain registration are consistent with the business location and operations, supporting legitimacy. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a comprehensive privacy policy linked externally, but no cookie consent mechanism is present. Overall, the website is safe, trustworthy, and well-positioned within its market niche.

C

CrankWheel ehf.

meeting.is

66

CrankWheel ehf. is a technology company specializing in providing instant and effortless screen sharing solutions tailored for inside sales and telesales professionals. Founded in 2014 and based in Iceland, the company offers a SaaS product that enables users to share their screens to any device without requiring setup or downloads for viewers. The website positions CrankWheel as a niche player focused on improving sales presentations and customer engagement through seamless screen sharing technology. The business model revolves around software subscriptions and affiliate marketing partnerships. Technically, the website leverages a modern technology stack including Cloudflare for DNS and CDN services, Google Tag Manager, Adobe DTM, Sentry for crash reporting, and CookieYes for cookie consent management. The site is well-optimized for mobile devices and incorporates multiple analytics and marketing tools such as Google Analytics, Hotjar, Amplitude, and Facebook Pixel. The hosting and infrastructure appear robust with good performance and security practices, although DNSSEC is not enabled. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms like Cloudflare Bot Management and Google reCAPTCHA. Cookie consent is implemented with granular user control, supporting GDPR compliance. However, there is no publicly visible privacy policy, terms of service, or security policy pages, and no vulnerability disclosure or incident response contacts are provided. Security headers are not explicitly detected, and DNSSEC is not enabled, which are areas for improvement. Overall, CrankWheel's website demonstrates a professional and trustworthy online presence with good technical maturity and marketing sophistication. The lack of explicit privacy and security policy documentation slightly reduces privacy compliance scores. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, adding security headers, and providing vulnerability disclosure information to enhance trust and compliance.

S

SCHWING Stetter

schwing-stetter.fr

42

SCHWING Stetter is a well-established French company specializing in the manufacturing, transport, and fabrication of concrete machinery and equipment. With a history dating back to 1985 and a domain registered since 1998, the company holds a solid market position in the construction and industrial equipment sector. Their key offerings include concrete batching plants, mixers, pumps, and recycling stations, supported by after-sales services and spare parts. The website targets construction professionals and businesses, providing detailed product information and service options. Technically, the website is built on WordPress with modern plugins and optimizations, hosted by OCI CLOUD, ensuring a reliable digital presence. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent mechanisms, although some security headers could be improved. Overall, the site demonstrates good content quality, professional design, and compliance with privacy regulations, supporting a trustworthy business image.

Z

Zartbitter e.V. Köln

sinaundtim.de

57

Zartbitter e.V. Köln operates the 'Sina und Tim' project, a well-established non-profit initiative focused on preventing sexual abuse of children through educational materials such as picture books, theater plays, audio plays, and expert lectures. The organization has a strong market position in Germany as a pioneer in this sensitive field, supported by donations and sponsorships. The website reflects this mission with clear, child-appropriate content and a professional presentation. Technically, the website is built on WordPress with modern plugins and themes, including a robust cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized, accessible, and performs moderately well. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Overall, the site demonstrates a responsible approach to privacy and security, with transparent contact information and no signs of malicious activity or adult content. The domain registration is consistent with the organization's profile, though registrant details are minimal. Strategic recommendations include enhancing security headers, adding terms of service, and publishing a security policy to further strengthen trust and compliance.

Z

Zartbitter e.V. Köln

washilft.org

61

WAS HILFT is a German non-profit project operated by Zartbitter e.V. Köln, dedicated to combating sexual violence through education, support, and awareness. The website offers multimedia content, legal information, and prevention theater aimed primarily at youth and their social circles. The project is funded by governmental and city institutions, reinforcing its legitimacy and trustworthiness. Technically, the website is built on WordPress with common plugins and demonstrates good mobile optimization and user experience. Security posture is adequate with HTTPS and cookie consent implemented, though improvements such as enabling DNSSEC and security headers are recommended. Privacy compliance is strong, with a comprehensive privacy policy and cookie management in place. Overall, the website is professional, trustworthy, and safe for general audiences.

Zartbitter e.V. operates an online webshop focused on educational and preventive materials related to child protection, sexual abuse prevention, and child rights. The website offers a variety of products including books, brochures, posters, and multimedia targeted primarily at parents, educators, and professionals working with children and youth. The business model is a niche non-profit e-commerce platform serving the German-speaking market (Germany, Austria, Switzerland). Technically, the website is built on WordPress with WooCommerce and uses several plugins for product display, discount rules, and GDPR compliance. The site is mobile-optimized and uses HTTPS, but lacks some advanced security headers. Performance is moderate with a good user experience and clear navigation. From a security perspective, the site enforces HTTPS and has a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. However, security headers like Content-Security-Policy and HSTS are not evident and should be implemented. There is no published security policy or incident response contact information. Overall, the website is safe, professional, and trustworthy for its target audience. The lack of direct contact information and detailed WHOIS data slightly limits business credibility assessment. Strategic improvements in security headers and transparency around security policies would enhance trust and compliance.

Tribune Group GmbH is a Berlin-based investment, holding, and management company specializing in media, education, and lifestyle projects globally. The company operates multiple subsidiaries and partner platforms primarily focused on dental and pharmaceutical continuing education, as well as lifestyle media. Their market position is supported by recognized certifications such as ADA CERP and ACPE accreditation, indicating a strong foothold in professional education sectors. Technically, the website employs modern frontend technologies including Bootstrap 4.3.1, jQuery, and Owl Carousel, providing a responsive and user-friendly experience. However, the site lacks some advanced security headers and explicit privacy and cookie policies, which are critical for compliance and trust. The domain registration is consistent with the business claims, showing a well-established presence since 2009. Security posture is moderate; while HTTPS is implied, no security headers or DNSSEC are enabled, and no incident response or vulnerability disclosure information is provided. The absence of privacy and cookie policies reduces privacy compliance scores. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance measures. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling security headers and DNSSEC, establishing incident response contacts, and improving accessibility and SEO features to strengthen digital maturity and trustworthiness.

D

DT Study Club

dtstudyclub.com

54

DT Study Club is a large, globally recognized online dental education platform offering free continuing education webinars to dental professionals. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and Matomo analytics. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks explicit privacy and security policies. The absence of WHOIS data is a concern for domain legitimacy, though the active presence and partnerships with reputable dental organizations support its credibility. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy. Overall, the platform serves a large audience with quality educational content but should improve transparency and security documentation.

D

Dental Tribune International

dental-tribune.com

57

Dental Tribune Germany is a professional online portal delivering daily news, webinars, market and product information focused on the dental industry in Germany. It is part of the global Dental Tribune International network, providing dental professionals, students, and industry stakeholders with up-to-date trends and innovations in dentistry. The website offers a variety of content including news articles, educational webinars, events, and a marketplace for dental products and services. Technically, the site is built on WordPress, leveraging modern web technologies such as jQuery, Bootstrap, and Matomo analytics, and is hosted on AWS Cloudfront CDN, ensuring reasonable performance and availability. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be improved. Privacy compliance is moderate with a cookie consent mechanism present but no explicit privacy policy found in the provided content. The domain WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the website content and branding align with a reputable international dental media company. Overall, the site is professional, content-rich, and serves its target audience effectively.

O

OEMUS MEDIA AG

oemus.com

51

OEMUS MEDIA AG is a well-established German media company specializing in dental medicine publications and professional education. The company offers a broad portfolio including specialist journals, seminars, and congresses targeting dental professionals. Their website reflects a mature business with a strong market position in the healthcare media sector, supported by 30 years of experience. Technically, the site uses standard web technologies such as jQuery and hosts media assets on Amazon S3, delivering moderate performance with good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and HTTP security headers. Privacy compliance is supported by a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, the website is professional, trustworthy, and content-rich, serving its target audience effectively.

A

Align Technology Switzerland GmbH

aligncampus.com

52

Align Technology Campus is a specialized educational platform targeting dental professionals, offering webinars and continuing education focused on digital orthodontics and Invisalign products. The platform is professionally designed, uses modern web technologies including WordPress, Bootstrap, and integrates consent management and tracking tools such as TrustArc and Facebook Pixel. The website is well-structured with clear navigation and relevant content for its target audience. Security posture is good with HTTPS and reCAPTCHA implemented, though some security headers are missing. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanisms. However, the absence of WHOIS data for the domain www.aligncampus.com is a notable anomaly that reduces domain registration trustworthiness. Overall, the site is credible and professional but would benefit from improved domain transparency and enhanced security headers.

Vědeckotechnický park Plzeň, a.s. is a city-owned innovation and technology park established in 2005, providing modern office, laboratory, and semi-operational spaces to support research, development, and innovation activities in the Plzeň region. The park collaborates closely with the University of West Bohemia and other research institutions, offering services such as business incubation, funding assistance, and partnership facilitation. The website reflects a professional and consistent brand image with clear contact information and EU funding acknowledgments. Technically, the website uses a custom or legacy technology stack including jQuery 1.4.4, Cufon font replacement, and Google Analytics for tracking. Hosting is via Cloudflare DNS and name servers, ensuring good SSL configuration and basic security. However, the use of outdated JavaScript libraries and lack of modern security headers indicate areas for improvement. The site is moderately optimized for performance and mobile use, with basic accessibility features. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism compliant with GDPR principles. However, it lacks a published privacy policy, security policy, and incident response contacts, which are important for transparency and compliance. The outdated jQuery version poses a potential vulnerability risk. No WAF or blocking mechanisms are detected, and no suspicious content is present. Overall, the website is trustworthy and professionally maintained, with strong business legitimacy supported by domain age and WHOIS data. Strategic improvements in security practices, privacy documentation, and technology modernization would enhance the site's security posture and compliance standing.

S

Středisko volného času RADOVÁNEK

radovanek.cz

44

Středisko volného času RADOVÁNEK is a well-established non-profit educational and leisure center based in Plzeň, Czech Republic, with a history dating back to 2005 and organizational roots spanning 75 years. The organization offers a broad range of educational clubs, camps, cultural events, and projects targeting children, youth, and adults in the Plzeň region. The website reflects a professional and consistent brand presence, showcasing partnerships, awards, and a comprehensive offering of services. Technically, the site is built on Joomla CMS with modern frameworks like Gantry 5 and uses common libraries such as jQuery and Bootstrap, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced, use of Google reCAPTCHA, and a detailed cookie consent mechanism, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie management. Overall, the site is trustworthy, user-friendly, and well-positioned in its regional educational sector.

E

Einersen Gull

einersengull.no

59

Einersen Gull is a well-established Norwegian jeweler operating both a physical store in Arendal and an e-commerce platform. The company offers a range of jewelry products including engagement rings, wedding rings, and exclusive brands such as Ole Lynggaard and Georg Jensen. Their website reflects a professional retail business with a focus on quality service and trusted brand partnerships. The digital infrastructure is built on WordPress and WooCommerce, leveraging modern web technologies and performance optimizations such as lazy loading and consent management for GDPR compliance. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the website is trustworthy, user-friendly, and compliant with privacy regulations, supporting the company's market position as a niche local jeweler.

N

N2 Applied

n2applied.com

50

N2 Applied is a Norwegian technology company specializing in plasma-based nitrogen fertiliser production technology. Their innovative approach offers sustainable, fossil-free fertiliser solutions that address environmental challenges and reduce dependency on traditional fossil fuel-based processes. The company targets farms and industrial operations seeking local, circular, and electric fertiliser production alternatives. Their website reflects a professional and modern digital presence built on WordPress, incorporating SEO and GDPR compliance tools. Social media integration and clear contact information enhance their business credibility. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and security headers could be made. Overall, N2 Applied demonstrates a mature business and digital infrastructure aligned with their market position as a technology innovator in the energy sector.

A

Arendal Hotell AS

hotellarendal.no

71

Hotell Arendal is a hospitality business operating a modern hotel located centrally in Arendal, Norway. Established in 2020 and opened in 2021, it offers 91 hotel rooms and targets travelers and groups seeking accommodation in the city. The website is professionally designed using WordPress with the Divi theme, integrating booking services via Mews, and includes clear contact information and social media presence. The business positions itself as a smart, comfortable, and efficient hotel in the local market. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, and Google Analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is good with HTTPS enabled, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website reflects a legitimate, trustworthy hospitality business with good digital maturity.

A

Arendals Dampskibsselskab AS

ads.no

10

Arendals Dampskibsselskab AS (ADS) is a historic and privately owned shipping company based in Arendal, Norway, with operations dating back to 1857. The company focuses on shipping and offshore project management, investment activities, and outsourcing ship management to industry leaders. ADS manages subsidiaries such as ADS Maritime Holding Plc, a listed investment company, and AET Sea Shuttle AS, specializing in shuttle tankers. The website reflects a professional corporate presence with clear business information and contact details. Technically, the site is built on WordPress with the Divi theme and integrates Google Analytics and consent management tools, indicating a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The lack of WHOIS data limits domain trust verification, but the overall business credibility and website quality are high.

E

Eyde Material Park

eydematerialpark.com

10

Eyde Material Park is a sustainable industrial park based in Norway, focusing on the battery value chain and supporting the green transition. The website presents a professional and consistent brand image, targeting businesses and stakeholders in the energy and green technology sectors. The business model revolves around providing industrial park facilities and infrastructure to companies involved in battery production and related green industries. Founded in 2021, the company positions itself as a key player in Norway's green industrial landscape. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted with Azure DNS, and employs modern web technologies ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and security headers are missing. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Analytics are implemented via Plausible Analytics, reflecting a privacy-conscious approach. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

H

Headon Rekruttering

headonrekruttering.no

10

Headon Rekruttering is a newly established Norwegian recruitment agency specializing in headhunting and staffing for communication, marketing, design, and technology roles. The company targets businesses seeking specialists for permanent, freelance, or temporary positions. The website reflects a professional and modern digital presence built on WordPress with Elementor, integrating marketing and analytics tools such as HubSpot and Google Tag Manager. While the site is well-designed and optimized for SEO and mobile use, it lacks explicit privacy and terms of service policies, which are critical for compliance and user trust. Security posture is adequate with HTTPS enforced and cookie consent implemented, but the absence of security headers and incident response information suggests room for improvement. Overall, the domain registration aligns with the business founding date, supporting legitimacy. Strategic enhancements in privacy compliance and security practices would strengthen the company's digital trustworthiness.

R

REQ AS

req.no

10

REQ AS is an independent and privately owned investment firm operating primarily in Norway and Sweden, specializing in long only equity funds and direct real estate investments. The company targets family offices, private investors, investment companies, foundations, trusts, and institutional investors. The website presents a professional image with clear business descriptions and a focus on fundamental analysis and qualitative research to deliver best-in-class returns. The firm appears to be small in size with a focused business model and a consistent brand presence online. Technically, the website is built on WordPress using the Divi theme and several plugins including Complianz for GDPR compliance and Divi Machine for content management. The site integrates Google Analytics for tracking and Mailchimp for marketing communications, including a GDPR-compliant newsletter subscription form. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly detected and no public security policy or incident response information is available. The WHOIS data shows an anomalous future creation date, which raises questions about domain registration data accuracy but does not detract from the professional presentation and content quality of the website. Overall, the website is well-structured, compliant with privacy regulations, and suitable for its target audience, though improvements in security transparency and WHOIS data verification are recommended.

T

TEDxArendal

tedxarendal.com

10

TEDxArendal is an independent TEDx event organizer based in Arendal, Norway, operating since 2013. The website serves as a platform to promote the annual event, provide ticket sales, and share program and speaker information. The business targets a general audience interested in TEDx talks and educational events. Technically, the website is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized and uses privacy-friendly analytics (Plausible). Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

A

Advokatfirma Haakstad & Co DA

haakstad.no

10

Advokatfirma Haakstad & Co DA is a modern law firm based in the Agder region of Norway, providing legal services to businesses, private individuals, and public authorities. Established in 2012, the firm positions itself as a practical and cost-effective legal solutions provider. Their website reflects a professional and consistent brand image, targeting a Norwegian-speaking audience with clear navigation and relevant content. The firm maintains multiple physical offices and active social media profiles, enhancing their market presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a mature digital infrastructure with good SEO and mobile optimization. The site uses HTTPS and modern JavaScript libraries, with moderate performance and basic accessibility features. Analytics are handled via Plausible Analytics, reflecting a privacy-conscious approach. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and formal security policies, which could be improved. Privacy compliance is partially addressed with a privacy policy but lacks a cookie consent mechanism. No incident response or vulnerability disclosure information is provided, which are areas for enhancement. Overall, the website is trustworthy, professional, and well-maintained, with minor gaps in security and privacy compliance. Strategic improvements in security headers, cookie consent, and incident response transparency would strengthen their posture and client trust.

Windy Scandinavia AB is a well-established Swedish manufacturer of premium sport boats and yacht tenders, with a heritage dating back to 1966. The company operates in the transportation sector, targeting boating enthusiasts and yacht owners with a range of high-quality, technically advanced vessels. Their market position is that of a niche premium brand with a strong Scandinavian craftsmanship identity. The website reflects a professional digital presence with good content quality, clear navigation, and mobile optimization. Technically, the site uses modern web technologies including Google Analytics and cookie consent mechanisms, and is likely powered by the Umbraco CMS. Security posture is solid with HTTPS and cookie consent, though some security headers and policies could be improved. The absence of WHOIS data raises questions about domain registration legitimacy, but the website content and contact information support business credibility. Overall, the site is trustworthy and professionally maintained.

V

Vitensenteret Sørlandet

vitensor.no

10

Vitensenteret Sørlandet is a regional science center in Norway offering educational and entertaining science activities for families and children. The website is built on WordPress using the Divi theme and includes common plugins for SEO and GDPR compliance. The technical infrastructure is modern with HTTPS enabled and reCAPTCHA implemented for form security. However, the site lacks visible privacy policy, terms of service, and explicit contact information in the provided HTML content. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, family-friendly, and safe, with a moderate risk profile due to missing compliance documentation.

S

Sitepartner AS

sitepartner.no

10

Sitepartner AS is a Norwegian consulting company specializing in site management, construction management, and project management primarily within the energy and transportation sectors. Founded in 2015, the company offers expert consultancy services to project owners, contractors, and suppliers involved in energy, rail, and network expansion projects. Their website reflects a professional and consistent brand presence with clear service offerings and client references. The company targets infrastructure and energy sector clients in Norway, positioning itself as a niche player with practical experience and high competence. Technically, the website is built on WordPress with modern JavaScript libraries such as Alpine.js and Splide.js, and integrates Google Tag Manager and GDPR-compliant cookie management via Complianz. The site is mobile-optimized, has good SEO practices, and loads with moderate performance. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear cookie and privacy policies. Contact information is comprehensive, including multiple emails, phone numbers, and social media links. The domain age and WHOIS data support the legitimacy of the business. No critical issues or blocking mechanisms were detected, allowing full content accessibility. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response contacts, and maintaining regular updates to plugins and themes to mitigate vulnerabilities. These steps will further strengthen trust and security culture while supporting compliance and operational resilience.

F

Flaggstangsfabrikken

flaggstangsfabrikken.no

10

Flaggstangsfabrikken is a Norwegian retail business specializing in the sale of flagpoles and flags at competitive prices. The company offers additional services including delivery and professional installation, supported by a 12-year warranty on their flagpoles. Their market positioning focuses on affordability and quality within the Norwegian market. The website is built on a WordPress WooCommerce platform, leveraging popular plugins such as Elementor for design and Woolentor for enhanced e-commerce features. Google Tag Manager is used for analytics and marketing, with GDPR consent mechanisms in place to restrict tracking in European regions. Security posture is solid with HTTPS and standard security headers implemented, though explicit privacy and terms of service policies are absent, which is a compliance gap. Overall, the site presents a professional and trustworthy e-commerce presence suitable for its target audience.

M

MedicVision Optikk AS

medicvision.no

10

MedicVision Optikk AS is a Norwegian company specializing in customized optical solutions for medical practice and microscopy. Their offerings include magnifying glasses, microscopes (notably ZEISS Research Microscopy Solutions), medical lighting, and diagnostic instruments tailored for healthcare professionals and researchers. The company operates a physical showroom in Arendal, Norway, providing hands-on product trials and service capabilities including adjustments and repairs. The website reflects a professional and focused business model targeting healthcare and research sectors with a clear B2B and B2C sales approach. Technically, the website is built on modern web standards with responsive design, CSS grid, and flexbox layouts, likely powered by the Umbraco CMS. It uses privacy-conscious analytics (Plausible Analytics) and lazy loading for images, enhancing performance and user experience. The site is mobile-optimized and SEO-friendly but lacks some advanced accessibility features. No forms are present on the main page, reducing potential security risks. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide privacy or cookie policies, which are compliance gaps. Incident response and vulnerability disclosure information are also absent. The domain is newly registered in April 2024, consistent with the company's recent founding, and WHOIS data shows no privacy protection, supporting legitimacy. Overall, MedicVision's website is professional, trustworthy, and well-aligned with its business goals but would benefit from enhanced privacy compliance and security hardening to improve its security posture and regulatory adherence.

M

Modum Brannstiger

modumbrannstiger.no

51

Modum Brannstiger is a Norwegian company specializing in manufacturing and supplying fire escape ladders and related safety equipment for various building types across Norway. The company offers both traditional and custom solutions including foldable fire ladders with or without back protection, inspection ladders, escape stairs, and balconies. The website reflects a niche market position focused on safety and compliance with Norwegian building regulations. Technically, the website is built on WordPress using Elementor and integrates modern SEO and analytics tools such as Yoast SEO, Google Tag Manager, Google Analytics, and Plausible Analytics. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved and formal security policies published. Overall, the website presents a professional and trustworthy digital presence consistent with a newly founded small manufacturing business.

W

Welcome Hub Agder

welcomehub.no

70

Welcome Hub Agder is a community-focused program operated by Inklusiv Agder AS in collaboration with the Arendal Municipality, aimed at helping international newcomers and residents integrate into the Agder region of Norway. The website provides comprehensive information about settlement support, work life, Norwegian courses, social life, and community events, targeting newcomers, internationals, and local residents. The platform serves as a one-stop-shop for integration services and community engagement, supported by testimonials and partnerships with local government entities. Technically, the website is built on WordPress using Oxygen Builder, with integrations including Yoast SEO, Microsoft Clarity, and Mailchimp for marketing and analytics. The site is well-structured with modern web technologies, responsive design, and good SEO practices. Cookie consent mechanisms and privacy policies indicate GDPR compliance awareness. However, WHOIS data is unavailable, likely due to privacy protection, which limits domain registration transparency. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent but lacks advanced security headers and published security policies. No vulnerabilities or suspicious content were detected. The website demonstrates a strong trust profile through partner logos, testimonials, and consistent branding. Overall, Welcome Hub Agder presents a professional, secure, and user-friendly platform for newcomer integration in Norway, with recommendations to enhance security headers, publish incident response policies, and improve accessibility compliance for further maturity.

S

Sharebox

sharebox.global

55

Sharebox is a technology company specializing in digital solutions for the automotive and mobility sectors, offering ISO-certified self-service kiosks, software for digital workflows, and API integrations. Their market position is supported by partnerships with major automotive brands and integration with trusted payment providers. The website demonstrates a mature digital infrastructure built on WordPress with modern analytics and marketing tools, providing a professional and user-friendly experience. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the business appears legitimate and well-positioned in its niche, with room for improvement in security transparency and vulnerability disclosure.

Ø

Økologisk Norge

okologisknorge.no

55

Økologisk Norge is a Norwegian non-profit organization dedicated to promoting organic agriculture, biodiversity, and sustainable food practices. The website serves as an educational and community platform offering resources for organic farmers, schools, and consumers interested in organic products. It has an established presence since 2010 and targets a Norwegian audience with content primarily in Norwegian. The organization encourages membership and supports various organic initiatives including school gardens and events like ØKOUKA. Technically, the website employs modern tracking and marketing tools such as Google Tag Manager, Facebook SDK, and Mailchimp, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and SEO practices, although no explicit CMS or hosting provider information is detected. Cookie consent is implemented via a third-party service, but explicit privacy and terms of service pages are missing. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is consistent with the organization's identity and domain age is appropriate, supporting legitimacy. Overall, the website is professional and trustworthy with good content quality and business credibility. However, it would benefit from enhanced privacy compliance, explicit security policies, and improved security headers to strengthen its security posture and regulatory adherence.

F

Foreningen kommunal informasjonssikkerhet – KiNS

kins.no

69

Foreningen kommunal informasjonssikkerhet – KiNS is a Norwegian non-profit association dedicated to enhancing information security within municipalities and county municipalities. With over 370 members including public sector entities and companies, KiNS offers training, webinars, tools, and networking opportunities to strengthen cybersecurity and privacy practices in local government. The website reflects a mature organization with strong partnerships with official Norwegian government agencies, indicating a solid market position in the public sector security domain. Technically, the website employs modern web technologies such as Bootstrap for responsive design, Plausible Analytics for privacy-conscious tracking, and Cookie-Script for consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. While no CMS or hosting provider is explicitly identified, the technical implementation is robust and well-maintained. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is due to registry privacy policies for .no domains and does not indicate suspicious activity. Overall, the security posture is good but could be improved with additional transparency and security best practices. The overall risk assessment is low, with the site demonstrating high professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. Strategic recommendations include publishing a security policy, adding incident response contacts, implementing security.txt, and enhancing HTTP security headers to further strengthen the security posture and trust.

G

GRID-Arendal

grida.no

64

GRID-Arendal is a well-established non-profit environmental organization founded in 1989 with a strong mandate from UNEP and Norwegian governance. The organization focuses on supporting global environmental action through scientific research, creative communication, and project implementation. Their website reflects a professional and consistent brand image, targeting environmental professionals, NGOs, policy makers, journalists, and the general public interested in sustainability and environmental issues. The site offers rich content including news, activities, publications, and staff information, supported by modern web technologies and analytics tools. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. However, WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization.

V

Volt Power Analytics

voltpoweranalytics.com

65

Volt Power Analytics is a specialized energy market analysis company focused on the Nordic and European power markets. Founded in 2022, it offers advanced forecasting tools and data services designed to support power market professionals, investors, and analysts in navigating the energy transition. Their product suite includes real-time market intelligence, long-term price forecasts, and tailored commodity databases, emphasizing renewable energy and green transition support. The company positions itself as an independent and trusted provider with a strong focus on customization and data transparency. Technically, the website is built on WordPress with Elementor and integrates modern SEO and analytics tools such as Yoast SEO, HubSpot, and Plausible Analytics. The site is well-optimized for mobile and accessibility, with good performance and clear navigation. Security practices include HTTPS, domain transfer protection, and cookie consent mechanisms, though DNSSEC is not enabled and some advanced security headers are missing. The security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy or incident response contact is a gap. Privacy compliance is strong with comprehensive privacy and cookie policies and GDPR-aligned consent mechanisms. Business credibility is high, supported by clear contact information, professional content, and trust signals such as client logos and LinkedIn presence. Overall, Volt Power Analytics presents a professional, secure, and privacy-conscious digital presence suitable for its target market. Strategic improvements in DNS security and published security policies would further enhance trust and resilience.

E

Eyde-klyngen

eydecluster.com

52

Eyde-klyngen is a Norwegian cluster organization focused on fostering growth and competitiveness in the green process industry sector. Established in 2007, it serves as a collaborative platform for core companies and competence providers to develop sustainable industrial solutions. The website presents a professional and well-structured digital presence, leveraging modern web technologies and CMS (Umbraco), with good mobile optimization and accessibility. Security posture is strong with HTTPS and security headers properly implemented. However, the absence of a publicly accessible privacy policy and terms of service pages, combined with missing WHOIS registration data, introduces concerns regarding compliance and domain legitimacy. Social media integration and event information enhance engagement with the target audience. Overall, the website reflects a credible and established business entity within the Norwegian energy and manufacturing sectors.

A

Arendal Næringsforening

arendalnaeringsforening.no

53

Arendal Næringsforening is a well-established regional business association founded in 2005, focused on promoting the interests of the business community in the Arendal region of Norway. The organization operates a membership model, offering networking events, business advocacy, and youth engagement through its ANF UNG initiative. The website reflects a professional and consistent brand presence with active content such as news updates and event listings, targeting local businesses and professionals. Technically, the site employs modern web technologies including Google Tag Manager and Facebook SDK for analytics and marketing, with a responsive design and basic accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not publicly disclosed. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.