Security Directory

A

Atelier Bruno

atelier-bruno.fr

50

Atelier Bruno is a French company specializing in vehicle branding, signage, and adhesive printing services since 1988. The company offers comprehensive in-house design, production, and installation services targeting businesses seeking to promote their image through mobile and static advertising media. Their website reflects a professional and consistent brand image with clear service offerings and client testimonials, positioning them as an established local player in the transportation and manufacturing sectors. Technically, the website is built on the Webflow platform, leveraging modern JavaScript libraries and hosted on a CDN for fast performance. It is mobile-optimized with good accessibility and SEO practices. Google Analytics is integrated via Google Tag Manager for user tracking, although privacy compliance could be improved with cookie consent mechanisms. Security posture is generally good with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and lack of published security policies or incident response contacts are areas for improvement. The missing WHOIS data reduces domain trustworthiness and should be investigated to confirm domain registration legitimacy. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing privacy compliance, implementing security headers, and verifying domain registration details to strengthen trust and security posture.

B

Bennes Vincent - GROUPE VINCENT

bennes-rci.fr

48

Bennes Vincent, part of Groupe Vincent, is a French medium-sized manufacturing company specializing in the design, fabrication, and distribution of bennes (dump bodies) for vehicles ranging from 3.5 to 32 tons. The company targets professional sectors including construction, transport, agriculture, recycling, and public services, offering robust and customizable vehicle equipment. Their market position is supported by a dense after-sales service network across France and a 2-year warranty on key components. Technically, the website is built on a custom PHP platform using Bootstrap and Matomo analytics, providing a responsive and professional user experience with moderate performance. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy available but no cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Poliisihallitus

poliisi.fi

55

Poliisihallitus operates the official Finnish Police website, providing comprehensive public safety, permit, and crime reporting services to the Finnish population. The website serves as a critical government portal with a strong market position as the national law enforcement authority. It offers key services including passport and ID card applications, crime reporting, and online service access. The technical infrastructure is built on a modern CMS platform (Liferay) with a mature tech stack including React and jQuery, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and no evident vulnerabilities, though explicit security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies, reflecting GDPR adherence. Overall, the site demonstrates high business credibility and trustworthiness consistent with a government entity.

N

Nordea Finans Norge AS

nordeafinance.no

67

Nordea Finans Norge AS operates as a financial services provider specializing in consumer and business financing solutions in Norway. The company offers a range of products including car loans, leasing, payment insurance, and financing for motorcycles and caravans. The website reflects a strong market position as part of the Nordea group, targeting both private and business customers with tailored financial products. The digital presence is professionally designed, mobile-optimized, and integrates secure login portals leveraging BankID, enhancing user trust and security. Technically, the site uses modern web technologies and a CMS likely based on SDL Tridion, ensuring content management efficiency and scalability. Security posture is strong with HTTPS enforcement and secure authentication mechanisms, though explicit security headers could be improved. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website demonstrates a mature digital infrastructure aligned with business goals, though WHOIS data unavailability slightly impacts trust assessment.

N

Nordea Rahoitus Suomi Oy

nordeafinance.fi

64

Nordea Rahoitus Suomi Oy operates the website www.nordeafinance.fi, providing a range of financial services primarily focused on personal customers in Finland. As part of the Nordea Group, it offers auto financing, credit cards, consumer loans, and digital banking services. The website is professionally designed, multilingual, and targets Finnish consumers seeking flexible financing solutions. The company maintains a strong market position as a reputable financial institution within the Nordic region. Technically, the website employs modern web technologies including JavaScript, SVG graphics, and a proprietary CMS (dotXX2017). It is mobile-optimized, accessible, and SEO-friendly. The infrastructure appears robust with good performance and secure hosting likely managed internally by Nordea. Analytics and marketing tools such as Tealium and CookieReports are used for user tracking and consent management. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance transparency and trust. Overall, the website demonstrates a high level of professionalism, security, and compliance with privacy regulations such as GDPR. The absence of direct contact emails and phone numbers on the site is typical for large financial institutions that prefer controlled communication channels. Strategic recommendations include publishing a dedicated security policy, incident response information, and vulnerability disclosure details to further strengthen security posture and customer trust.

N

Nordea Finans Sverige AB (publ)

nordeafinance.se

66

Nordea Finans Sverige AB operates the Nordea Finance Privat website, providing a range of financial services primarily focused on consumer vehicle financing, credit cards, and loans. The company is part of the larger Nordea group, a well-established financial institution in the Nordic region. The website targets private individuals and businesses in Sweden, offering tailored financing solutions and customer support. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

N

Nordea Finans Danmark A/S

nordeafinance.dk

66

Nordea Finans Danmark A/S operates as a financial services provider specializing in consumer and business financing solutions in Denmark. The company offers a range of products including car loans, private leasing, loans for motorcycles and camping equipment, and daily economy loans. The website reflects a strong market position with consistent branding aligned with the Nordea group, targeting private individuals and businesses seeking financing options. The digital infrastructure is mature, featuring multiple customer portals and online loan application processes, supported by a proprietary CMS framework (dotXX2017). The site is well-optimized for mobile and accessibility, with good SEO practices and professional design quality. Security posture is strong with HTTPS enforcement, nonce usage in scripts, and cookie consent mechanisms, although explicit security headers could be more visible. Privacy compliance is robust, with clear GDPR and cookie policies. Despite the absence of WHOIS data, the website demonstrates legitimacy through official company registration and trust indicators. Overall, the site presents a professional, secure, and user-friendly platform for financial services in Denmark.

N

Nordea

nordeafinance.com

75

Nordea is a leading Nordic financial services group providing comprehensive banking and financing solutions primarily targeting business customers. The website reflects a mature enterprise with a strong market position, offering a wide range of corporate banking services supported by over 1000 employees. The digital infrastructure is built on Drupal 11, ensuring modern CMS capabilities with good mobile optimization and accessibility. Security posture is robust with HTTPS enforcement, security headers, and privacy compliance, although explicit incident response and vulnerability disclosure information are not publicly available. Overall, the website presents a professional and trustworthy front for Nordea's financial services, though the absence of WHOIS data is a notable anomaly that does not detract significantly from the site's legitimacy given the brand's prominence.

N

Nordea Pension

nordeapension.dk

75

Nordea Pension is a well-established Danish financial services provider specializing in pension and insurance products. The company offers a broad range of services including pension savings, health insurance, life insurance, and investment funds, targeting both private individuals and businesses. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its audience. Technically, the website employs modern JavaScript libraries such as jQuery and Bootstrap, integrates Microsoft Application Insights and Google Tag Manager for analytics and monitoring, and uses a comprehensive cookie consent management system from CookieInformation.com. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are missing, and there is no publicly available security policy or incident response information. The WHOIS data is unavailable or privacy protected, which limits domain trust verification but is common for financial institutions. Overall, the website demonstrates a strong security posture and compliance with privacy regulations, with minor technical and transparency improvements recommended. The risk level is low, and the site is suitable for its intended audience.

A

Africa50 Infrastructure Investment Platform

africa50.com

60

Africa50 Infrastructure Investment Platform is a pan-African infrastructure investment and asset management entity focused on bridging Africa's infrastructure funding gap by developing bankable projects, mobilizing public and private sector capital, and investing in infrastructure projects across the continent. The platform has a significant footprint with investments in over 30 African countries and an aggregated project value exceeding USD 8 billion. Their key services include project development, funding mobilization, and equity investments alongside strategic partners, targeting sectors such as energy, transportation, real estate, and technology. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including service workers and Google Analytics for tracking. The site demonstrates good performance, mobile optimization, and accessibility, with a professional design and clear navigation. Privacy and cookie policies are present and indicate GDPR compliance. However, no explicit security policy or incident response information is published. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks some security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a concern but does not detract significantly from the overall trustworthiness given the professional presentation and social media presence. Overall, Africa50.com presents a credible and professional digital presence consistent with its business objectives. Strategic recommendations include publishing a security policy, adding security headers, and providing incident response contacts to enhance trust and compliance.

A

Africa Finance Corporation

africafc.org

69

Africa Finance Corporation (AFC) is a leading multilateral financial institution established by African sovereign states to address the continent's infrastructure deficit through pragmatic investment and financing solutions. The organization holds a strong market position as a trusted infrastructure solutions provider with an investment grade rating and a pan-African footprint spanning 45 member countries. Key services include principal investing, project development, financial advisory, and syndications, targeting governments, investors, and project partners across Africa. Technically, the website is built on modern web technologies including Craft CMS, Bootstrap, jQuery, and HTMX, with good mobile optimization and SEO practices. The site is well-structured, professionally designed, and supports multiple languages, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and secure forms, though some security headers could be enhanced for improved protection. The security evaluation reveals no critical vulnerabilities or exposed sensitive data. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR and related regulations. Contact information is clearly provided, including email, phone, and physical address, supporting business credibility. Overall, AFC's website demonstrates a high level of professionalism, trustworthiness, and operational maturity. The lack of WHOIS data limits domain registration insights but does not detract from the evident legitimacy and strong market presence of the organization. Strategic recommendations include enhancing security headers, improving accessibility features, and maintaining regular security audits to sustain and improve the security posture.

O

Ortto

ortto.app

63

Ortto is a technology company specializing in marketing automation solutions, offering a SaaS platform that integrates with various e-commerce and CRM systems. The website analyzed is primarily a login page, indicating a mature digital presence with a focus on customer engagement and campaign management. The platform supports multiple integrations, reflecting a comprehensive service offering for business clients seeking marketing automation. Technically, the website employs modern JavaScript frameworks, likely React, and uses several third-party analytics and tracking services including Google Tag Manager, Facebook Pixel, and Mouseflow. The site is hosted on secure infrastructure with HTTPS enforced, and the design is responsive and professional. However, there is a lack of visible privacy and cookie policies on the login page, which may impact compliance perceptions. From a security perspective, the site demonstrates good practices such as HTTPS usage and no exposed sensitive data in the HTML. However, the absence of explicit security headers and incident response information suggests room for improvement. The extensive use of tracking scripts without clear privacy disclosures may also pose compliance risks under regulations like GDPR. Overall, the website is functional, professional, and secure at a basic level but would benefit from enhanced transparency regarding privacy, security policies, and compliance measures to improve trust and regulatory adherence.

I

Icons8

icons8.com

61

Icons8 is a well-established technology company founded in 2011 that provides a comprehensive suite of design assets including icons, illustrations, photos, music, and AI-powered design tools. The website targets creatives and developers seeking high-quality, consistent design elements and tools to enhance their projects. Icons8 maintains a strong market position with a professional and consistent brand presence, supporting multiple languages and offering a variety of services that cater to a global audience. Technically, the website leverages modern web technologies such as Vue.js and Nuxt.js, hosted on AWS infrastructure, ensuring fast performance and excellent mobile optimization. The site demonstrates good SEO and accessibility practices, although some security headers and privacy compliance elements are missing. The domain is long-standing and registered with clear and consistent WHOIS data, indicating a legitimate and trustworthy business. From a security perspective, the site uses HTTPS and has domain status protections but lacks DNSSEC and visible security headers. There is no public security policy, incident response information, or vulnerability disclosure program, which are areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, Icons8 presents a low-risk profile with a strong business and technical foundation but should enhance its privacy and security posture to align with best practices and regulatory requirements.

O

Oracle

estara.com

73

Oracle Commerce is a comprehensive ecommerce platform designed to empower both B2B and B2C businesses by integrating customer, sales, and operational data into a unified digital buying experience. Positioned as a leading enterprise technology provider, Oracle offers cloud-native, API-first solutions with flexible deployment options and advanced AI-driven sales capabilities. The platform supports seamless integration with Oracle's Configure, Price, Quote (CPQ) and Subscription Management suites, enhancing revenue operations and buyer engagement. The website reflects Oracle's strong market presence with professional design, extensive resources, and global reach.

SAP SE is a global leader in enterprise software, specializing in customer experience (CX) and customer relationship management (CRM) solutions. Their offerings are designed to fuel profitable growth by uniting business processes end to end with scalable and intelligent solutions. The website reflects SAP's market position as a mature and trusted provider targeting enterprise customers seeking advanced CRM and CX software. Technically, the site is built on modern frameworks including SAP UI5 and React, hosted on a robust infrastructure with Adobe Experience Manager as the CMS. The site is fast, mobile-optimized, and accessible, demonstrating digital maturity. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities, though explicit incident response contacts and vulnerability disclosure mechanisms could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations including GDPR.

SAP is a global leader in enterprise software and technology solutions, offering a broad portfolio including AI, cloud computing, analytics, and business applications. The website targets enterprise customers and IT professionals, providing comprehensive information about SAP's products and services in Finland. The site demonstrates a mature digital infrastructure with modern technologies such as SAP UI5, Adobe Experience Manager, and advanced consent management tools. Security is robust with HTTPS, security headers, and ISO 27001 certification, reflecting a strong commitment to data protection and compliance. Overall, the website is professional, trustworthy, and well-optimized for user experience and privacy compliance.

SAP is a global leader in enterprise software solutions, specializing in human capital management (HCM) software through its SAP SuccessFactors suite. The company targets large enterprises seeking to optimize workforce management, talent development, and payroll processes using advanced AI-driven technologies. The website reflects SAP's strong market position with comprehensive product offerings and a professional digital presence. Technically, the site employs modern frameworks such as SAP UI5 and React, supported by a robust content management system likely Adobe Experience Manager, ensuring good performance, accessibility, and SEO optimization. Security posture is strong with HTTPS enforcement, security headers, and compliance certifications like ISO 27001 and SOC 2. Privacy compliance is well addressed with clear policies and consent mechanisms. However, WHOIS data is unavailable, which is unusual but likely due to registry privacy policies and does not detract from the site's legitimacy. Overall, SAP's website demonstrates a mature, secure, and trustworthy digital platform aligned with enterprise standards.

C

Concur Technologies, Inc.

concur.co.uk

66

SAP Concur UK operates a comprehensive spend management platform integrating travel, expense, and invoice management solutions. The company is positioned as a market leader with a strong enterprise presence, offering a broad suite of products tailored for businesses of all sizes. Their website reflects a mature digital infrastructure with modern technologies, including Drupal CMS, Google reCAPTCHA, and New Relic monitoring, ensuring a robust user experience and operational monitoring. Security measures such as HTTPS, cookie consent, and form protections are implemented, though explicit security headers and a public security policy are absent. The WHOIS data is unavailable due to domain registration constraints, but the website's branding and content strongly support legitimacy. Overall, the site demonstrates high professionalism, good privacy compliance, and a solid security posture with room for improvement in transparency and security disclosures.

SAP is a global leader in enterprise software and digital transformation services, offering a comprehensive portfolio of services and support to help businesses align their technology strategies and achieve success. The website presents a professional and well-structured platform showcasing SAP's foundational support, success plans, premium engagements, and cloud application services. The technical infrastructure leverages modern web technologies including SAP UI5, Adobe Experience Manager, and robust analytics and consent management tools, reflecting a mature digital presence. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations, serving a broad enterprise audience effectively.

SAP is a leading global enterprise software company offering SAP SuccessFactors Work Zone, a digital workplace solution designed to enhance employee engagement through a unified and personalized experience. The website reflects SAP's strong market position and commitment to delivering comprehensive human capital management solutions to enterprise clients. Technically, the site leverages modern frameworks such as SAP UI5 and integrates advanced consent management tools, ensuring a robust and user-friendly digital presence. Security posture is strong, with HTTPS enforcement, security headers, and privacy compliance evident, although explicit incident response and vulnerability disclosure information are not publicly available. Overall, the site demonstrates a mature digital infrastructure aligned with enterprise standards, though transparency in domain registration and security contact details could be improved.

F

FAUN-Environnement

faun-environnement.fr

49

FAUN-Environnement is a French company specializing in innovative waste collection equipment and related services. The company offers a range of products including B.O.M, Citadines, Balayeuses, and Basculeurs, alongside services such as equipment rental, connected maintenance systems, and data management solutions. The website reflects a medium-sized enterprise with a solid market position in the transportation and manufacturing sectors focused on environmental solutions. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies and third-party tools like Google Analytics and Tag Manager for tracking. The site is multilingual, supporting French and English, and demonstrates good mobile optimization and SEO practices. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy or terms of service pages detected. Overall, the website is professional and trustworthy, though improvements in security and privacy transparency are recommended.

G

Gjensidige Försäkring

gjensidige.se

69

Gjensidige Försäkring is a large, well-established insurance company operating in Sweden, positioned as the third largest insurance provider in the Nordic region. The company offers a broad range of insurance products including car, home, villa, boat, accident, and health insurance, targeting both private individuals and businesses. The website reflects a professional and user-friendly digital presence with clear navigation and comprehensive content tailored to its audience. Technically, the site employs modern web technologies, including JavaScript frameworks, consent management via Usercentrics, and tag management through Tealium, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is robust, with clear GDPR and cookie policies and active consent mechanisms. The absence of WHOIS data for the exact domain suggests the domain may be a subdomain or managed under a parent domain, which is not uncommon for large enterprises. Overall, the site demonstrates high professionalism, trustworthiness, and compliance, supporting Gjensidige's market position.

G

Gjensidige

gjensidige.dk

68

Gjensidige.dk is a well-established Danish insurance provider serving over 500,000 customers with a broad portfolio of insurance products including car, travel, home, health, accident, business, and agricultural insurance. The company positions itself as a trusted insurer with a strong customer focus, supported by positive Trustpilot reviews and comprehensive online services. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to private individuals, businesses, and agricultural clients. Technically, the site employs modern web technologies including JavaScript frameworks, consent management via Usercentrics, and analytics through Piwik PRO and Tealium. The site is served over HTTPS with good SSL configuration, though explicit security headers are not evident in the HTML source. The site demonstrates good privacy compliance with accessible privacy and cookie policies and a consent mechanism. From a security perspective, the site shows a mature posture with secure forms and no visible vulnerabilities or exposed sensitive data. However, it lacks published security policies, incident response contacts, and vulnerability disclosure programs, which are recommended for enhanced transparency and trust. The WHOIS data is unavailable due to privacy protection, which is common and justified for this business type. Overall, Gjensidige.dk presents a secure, professional, and trustworthy online presence suitable for its market. Strategic improvements in security transparency and header implementation would further strengthen its posture.

A

Atrium

atriumiot.com

65

Atrium appears to be a technology company specializing in IoT solutions, providing a user portal for device or service management. The website analyzed is a login page, indicating a focus on secure access to IoT services. The technical infrastructure leverages Microsoft Azure DNS and Application Insights for telemetry, indicating a modern cloud-based hosting environment. The site uses Bootstrap 5 for responsive design, ensuring usability across devices. Security posture is moderate with HTTPS enabled and telemetry in place, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy and cookie policies are absent, which is a compliance gap. Overall, the website is functional but basic in content and security disclosures, suitable for a small to medium-sized IoT technology provider.

A

Averdo

averdo.com

71

Averdo is a German-language e-commerce retailer specializing in books, audiobooks, multimedia, calendars, and toys. The website is professionally designed and hosted on the Shopify platform, offering a broad product catalog and multiple payment options. The business targets German-speaking consumers interested in educational and entertainment products. Technically, the site uses modern web technologies, including Shopify's Liquid framework, Google Tag Manager, and various payment integrations, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and secure payment methods, though explicit security headers and cookie consent mechanisms could be improved. The absence of WHOIS data raises concerns about domain legitimacy, but the operational website and Shopify hosting provide some trust. Overall, the site is functional and trustworthy for e-commerce purposes but would benefit from enhanced transparency and security disclosures.

I

International Railway Industry Standard (IRIS)

iris-rail.org

63

The IRIS Portal website represents the International Railway Industry Standard, a globally recognized certification system for rail sector companies. The organization provides certification, audit, and training services aligned with ISO/TS 22163 standards. The website targets rail industry companies and certification bodies, offering resources such as certificate searches, news updates, and membership applications. The business is well-established, with a domain age dating back to 2005, indicating a mature presence in the railway certification market. Technically, the website employs a custom CMS with a technology stack including HTML5, CSS3, JavaScript, jQuery, and Google Maps API. The site is hosted via Hostbasket and uses HTTPS with a good SSL configuration. Performance and mobile optimization are moderate, with room for improvement in accessibility and modern framework adoption. The site includes interactive elements such as charts and maps, enhancing user engagement. From a security perspective, the website demonstrates basic best practices including HTTPS enforcement and CAPTCHA on login forms. However, DNSSEC is not enabled, and no explicit security headers were detected, representing areas for enhancement. No incident response or security policy pages are present, which could improve transparency and trust. No vulnerabilities or exposed sensitive data were found in the content. Overall, the website is professional, trustworthy, and focused on its niche market. It scores well on content quality and business credibility but could improve technical implementation and security posture. Strategic recommendations include enabling DNSSEC, adding security headers, updating libraries regularly, and publishing security and incident response policies to strengthen compliance and user trust.

Safety IO is a specialized information and consulting service focused on empowering industrial safety through innovation and compliance with functional safety standards such as IEC 61508 and IEC 62443. The company targets professionals and organizations in the energy and manufacturing sectors seeking to enhance safety protocols and integrate cybersecurity and AI technologies. The website is built on WordPress, hosted by DreamHost, and uses modern SEO tools to provide a professional and informative user experience. Security posture is basic with HTTPS enabled but lacks advanced security headers and policies. Privacy and cookie policies are absent, which impacts compliance. Overall, the domain is mature and trustworthy, with privacy protection justified for the business type.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is inaccessible or blocked. No business-related content, metadata, or structured data is present. The page is a default error display from the Chromium browser, not a functional website. Consequently, no business overview, market position, or services can be identified. The technical infrastructure is limited to Chromium's embedded scripts for error display, with no external hosting or CMS detected. Security posture is minimal, with no HTTPS or security headers evident. Privacy and compliance policies are absent, and no contact or incident response information is available. Overall, the site is non-functional and likely not a legitimate business presence.

SAP is a global enterprise software leader specializing in human capital management (HCM) solutions, including SAP SuccessFactors. The company offers advanced AI-driven workforce analytics and comprehensive HCM software to optimize talent development and workforce processes. The website reflects SAP's strong market position and enterprise focus, targeting large organizations seeking scalable and integrated HCM solutions. Technically, the site leverages modern frameworks such as SAP UI5 and Adobe Experience Manager, ensuring a responsive, accessible, and well-structured user experience. Security posture is robust with HTTPS enforcement, security headers, and consent management, although explicit incident response and vulnerability disclosure information are not publicly available. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting SAP's reputation as a reliable enterprise software provider.

M

Mittelstand-Digital Zentrum Handel

digitalzentrumhandel.de

50

The Mittelstand-Digital Zentrum Handel website serves as a digitalization support platform for retail businesses in Germany, focusing on assisting small and medium-sized enterprises in their digital transformation journey. The site offers information, workshops, and advisory services tailored to the retail sector, positioning itself as a niche regional support center. Technically, the website is built on WordPress, utilizing modern web technologies such as Elementor, Yoast SEO, and Font Awesome, with performance optimizations like lazy loading scripts. The site demonstrates good mobile optimization and SEO practices but lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate, with HTTPS implied but no explicit security headers detected. No incident response or vulnerability disclosure information is present, indicating room for improvement in security transparency. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Indeed.com is a globally recognized job search platform founded in 1998, offering services such as job listings, company reviews, salary information, resume uploads, and employer job postings. It targets job seekers and employers, operating as a leading online recruitment platform primarily in the United States. The website is enterprise-scale with a mature market position. Currently, the website content is inaccessible due to a Cloudflare security challenge page requiring additional verification, which prevents a full content and technical analysis. The site uses Cloudflare for security and hosting, and includes Cloudflare Pages Analytics for performance monitoring. No privacy or cookie policies, contact information, or security policies are visible on the blocked page.

D

DevITJobs

devitjobs.com

67

DevITJobs is a specialized online job board focusing on IT and software developer positions in the United States. The platform emphasizes transparency by providing detailed job listings that include technology stacks and salary ranges, catering primarily to IT professionals seeking employment opportunities. Founded in 2021, it operates as a small but focused player in the technology recruitment sector, offering additional services such as company profiles, newsletters, and tech community event information. The website demonstrates a consistent and professional brand presence with active social media channels on LinkedIn, Telegram, Facebook, and Twitter. Technically, the website is built using modern web technologies including React for the frontend and Leaflet for interactive maps. It leverages Cloudflare for DNS services and integrates privacy-conscious analytics via Plausible. The site is mobile-optimized and provides a good user experience with clear navigation and structured content. However, there is room for improvement in accessibility and performance optimization. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and visible security headers, which are recommended to enhance security posture. There are no explicit privacy or cookie policies found, which may impact compliance with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is published, which could be improved to build trust. Overall, DevITJobs presents a trustworthy and professional platform for IT job seekers in the US, with a solid technical foundation and clear business focus. Strategic enhancements in privacy compliance, security headers, and transparency around data protection would further strengthen its market position and user trust.

D

DevITJobs

devitjobs.uk

66

DevITJobs.uk operates as a specialized online job board focusing on IT and software developer roles within the United Kingdom. Established in 2021, the platform distinguishes itself by offering transparent job listings that include detailed tech stacks and salary ranges, catering primarily to IT professionals seeking employment opportunities. The website maintains a consistent brand presence and leverages modern web technologies such as React and JSON-LD structured data to enhance user experience and SEO performance. Social media integration across LinkedIn, Telegram, Facebook, and Twitter supports community engagement and outreach. From a technical perspective, the site demonstrates moderate performance with good mobile optimization and basic accessibility features. The use of HTTPS and DNSSEC indicates a commitment to secure communications, although the absence of explicit security headers and privacy policies suggests room for improvement in security posture and compliance. Analytics are implemented via privacy-focused services like Plausible Analytics, reflecting a moderate approach to user tracking and data collection. Security-wise, the platform benefits from encrypted connections and domain security measures but lacks visible incident response protocols, vulnerability disclosures, and comprehensive privacy or cookie policies. These gaps present potential compliance and trust challenges, particularly under GDPR regulations. The domain registration data aligns well with the business profile, showing transparency and legitimacy without privacy protection, which is appropriate for this business type. Overall, DevITJobs.uk is a credible and professionally presented job board with a solid foundation but would benefit from enhanced privacy, security policies, and compliance documentation to strengthen user trust and regulatory adherence.

D

DevITJobs

devitjobs.fr

66

DevITJobs.fr is a specialized online job portal focusing on IT and developer job opportunities in France. The platform offers transparent job listings with detailed salary and technology information, targeting IT professionals and developers seeking employment within the French market. It maintains a strong market position as a niche leader with several international sister sites, enhancing its reach and credibility. The website leverages modern web technologies such as React and structured data (JSON-LD) to optimize SEO and user experience. Hosting and DNS services are provided by reputable providers including Infomaniak Network SA and Cloudflare. Security posture is solid with HTTPS enforcement and appropriate security headers, though there is room for improvement in privacy compliance, particularly regarding cookie consent and explicit security policies. Overall, the site presents a professional and trustworthy platform for IT recruitment in France.

C

Claus Web SRL

devjob.ro

66

DevJob.ro is a specialized Romanian job portal focusing on IT and software development roles, providing a platform for job seekers and employers with transparent salary information and a broad range of job listings including remote and international positions. The company behind the site, Claus Web SRL, has established a credible presence since 2020, targeting IT professionals primarily in Romania but also extending its reach through partner sites in other countries. The website is well-structured, leveraging modern web technologies such as React and Leaflet for interactive maps, and employs JSON-LD structured data to enhance SEO and job listing visibility. From a technical perspective, the site demonstrates a solid infrastructure with Cloudflare DNS and CDN services, secure HTTPS implementation, and appropriate security headers. The use of Plausible Analytics and WonderPush indicates a moderate level of user tracking balanced with privacy considerations. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the website follows best practices with HTTPS, security headers, and error reporting mechanisms, though it lacks explicit security policies and incident response contacts. The WHOIS data aligns well with the website's business claims, showing consistency and legitimacy. Privacy and cookie policies are present and GDPR compliant, enhancing trustworthiness. Overall, DevJob.ro presents a trustworthy and professional platform for IT job recruitment in Romania, with opportunities for improvement in security transparency and accessibility compliance to further strengthen its market position and user trust.

G

GermanTechJobs

germantechjobs.de

70

GermanTechJobs operates as a specialized online job portal focusing on IT and software developer positions within Germany. The platform emphasizes transparency by providing salary ranges and detailed technology stacks for job listings, catering primarily to IT professionals seeking employment opportunities in the German market. The website demonstrates a consistent brand presence and integrates social media channels and mobile applications to enhance user engagement. Technically, the site leverages modern web technologies including React for frontend rendering, Cloudflare for DNS and security, and Leaflet for interactive mapping. Analytics are handled via privacy-focused Plausible Analytics, complemented by Wonderpush for marketing notifications. The site is mobile-optimized and exhibits good SEO practices, although accessibility features could be improved. From a security perspective, the site enforces HTTPS and benefits from Cloudflare's infrastructure, but lacks explicit security headers and formalized privacy or cookie policies. No contact information or incident response details are provided, which limits transparency in security and compliance matters. No vulnerabilities or suspicious patterns were detected in the available data. Overall, GermanTechJobs presents a professional and trustworthy platform with a solid technical foundation and clear business focus. However, enhancements in privacy compliance, security policy disclosure, and contact transparency would strengthen its security posture and regulatory adherence.

S

SwissDevJobs

swissdevjobs.ch

67

SwissDevJobs operates as a specialized online job board focusing on IT and software developer positions within Switzerland. It distinguishes itself by offering transparent salary data and detailed tech stack information, catering primarily to IT professionals seeking employment opportunities in the Swiss market. The platform also provides additional services such as company profiles, salary statistics, job alerts, and a talent directory, positioning itself as a niche leader in the Swiss IT recruitment space. Technically, the website leverages modern web technologies including React for frontend rendering and Leaflet for interactive mapping. It employs privacy-conscious analytics (Plausible) and integrates marketing tools like WonderPush for notifications. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, ensuring a smooth user experience across devices. From a security perspective, SwissDevJobs enforces HTTPS with strong SSL configurations and includes essential security headers. While no critical vulnerabilities or exposed sensitive data were detected, the site lacks explicit security policy and incident response information, which could enhance trust and preparedness. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms in place. Overall, SwissDevJobs presents a low-risk profile with a strong business model and technical foundation. Strategic improvements in security transparency and formal policies would further solidify its market credibility and user trust.

8

89up

89up.org

70

89up is a specialized integrated communications agency founded in 2014, focused on serving non-profit organizations and global causes. The website presents a professional and consistent brand image targeting non-profits worldwide. The business model centers on providing communications services tailored to important social causes, positioning itself as a global agency in this niche. The site content is relevant and well-structured, with clear navigation and good mobile optimization.

S

Survicate

survicate.com

83

Survicate is a well-established technology company founded in 2013, specializing in customer feedback and survey platforms. Their SaaS offering enables businesses to collect customer insights across multiple channels, automate feedback workflows, and analyze data to improve customer experience. The company targets businesses seeking actionable customer feedback and positions itself as a reliable player in the customer insights market. The website reflects a mature digital presence with professional design, clear messaging, and consistent branding.

The website ndcpartnership.org is currently inaccessible due to a Cloudflare Turnstile security challenge page that requires human verification before granting access. This prevents extraction of meaningful business, contact, or policy information from the site content. The domain is registered since 2016 with Network Solutions, LLC, and uses Cloudflare DNS and protection services, indicating a legitimate and established presence. However, no privacy, cookie, or terms of service policies are detectable in the provided HTML content. The technical infrastructure relies on Cloudflare's security platform, but no further technology stack or CMS details are available due to content blocking. Security posture cannot be fully assessed, but the domain uses HTTPS and has clientTransferProhibited status, which are positive indicators. Overall, the site is safe with no adult or explicit content detected, but the lack of accessible content limits comprehensive analysis.

B

Banque de France

banque-france.fr

66

Banque de France is the national central bank of France, serving citizens, businesses, and public institutions with a broad range of financial and economic services. The website reflects its role in monetary policy, financial stability, payment systems, and economic education. It is positioned as a reputable government entity with a strong market presence in the finance sector. The technical infrastructure is modern, leveraging Drupal 10 CMS and contemporary analytics tools, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response contacts could be improved. Overall, the site is professional, trustworthy, and compliant with privacy norms, supporting its authoritative role.

Besamex operates as a professional online pharmacy in Germany, offering both prescription and non-prescription medications, cosmetics, and travel pharmacy products. The company positions itself as a reliable and cost-effective provider with fast delivery and a mobile app presence on major platforms. The website is well-branded and targets German-speaking customers seeking convenient pharmaceutical e-commerce solutions. Technically, the site employs modern JavaScript frameworks, integrates Google Tag Manager, Cookiebot for consent management, and uses trusted third-party services for payments and marketing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with clear GDPR adherence and detailed cookie disclosures. Overall, the site is professional, trustworthy, and technically competent, with no signs of blocking or WAF interference.

S

Sanicare

sanicare.de

67

Sanicare is a large German online pharmacy offering a wide range of pharmaceutical products, including prescription and non-prescription medications. The website targets general consumers in Germany seeking convenient online access to medications and pharmaceutical services, including electronic prescription fulfillment and pharmaceutical consultation. The company positions itself as a trusted and established player in the online pharmacy market with a significant customer base of one million users. Technically, the website is built on the Shopware 6 e-commerce platform, integrating modern marketing and analytics tools such as Google Tag Manager, Dynamic Yield, and Usercentrics for consent management. Hosting is provided by Arvato Systems, indicating a professional IT infrastructure. The site is mobile optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and integrates consent management for GDPR compliance. However, explicit security headers and published security policies are absent. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial due to the absence of explicit privacy and terms of service pages. No incident response or vulnerability disclosure information is available. Overall, Sanicare presents a professional and trustworthy online presence with a solid technical foundation and good security posture. Strategic improvements include publishing comprehensive privacy and security policies, enhancing accessibility, and adding vulnerability disclosure mechanisms to strengthen compliance and trust.

M

MAGIX Software GmbH

magix.com

69

MAGIX Software GmbH is a medium-sized technology company specializing in creative software applications for video, music, photo, graphics, and website production. The company maintains a professional and well-structured website powered by TYPO3 CMS, integrating modern analytics and marketing technologies such as Piwik PRO, Google Tag Manager, and OneTrust for GDPR-compliant cookie consent management. The website demonstrates good design quality, mobile optimization, and accessibility, targeting a broad audience of creative professionals and consumers worldwide. Despite the absence of WHOIS registration data, the website's content and privacy practices indicate a legitimate and established business presence. Technically, the site employs a robust stack with multiple third-party integrations for analytics, marketing automation, and affiliate advertising networks. Security posture is strong with HTTPS enforced and anonymized tracking, though additional security headers and explicit security policies could enhance protection. Privacy compliance is well addressed with comprehensive cookie and privacy policies and granular user consent mechanisms. Overall, MAGIX's digital infrastructure reflects a mature and professional operation with room for improvement in transparency around security policies and incident response. The lack of WHOIS data is a notable anomaly but does not currently undermine the site's operational legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

L

Lidl

lidl.de

77

Lidl operates as a major retail supermarket chain in Germany with both physical stores and an online shopping platform. The website reflects a professional retail business model targeting general consumers with a focus on local and online shopping convenience. The company maintains consistent branding and provides comprehensive privacy and cookie policies compliant with GDPR, including consent mechanisms for tracking and personalization. Technically, the website uses modern JavaScript libraries and tracking tools such as Kameleoon and OneTrust, along with YouTube integration for video content. The site is mobile-optimized and accessible, with good SEO practices and structured data for organization information. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and a public security policy or incident response contact suggests areas for improvement. Privacy compliance is strong, with clear policies and consent management. Overall, the website is trustworthy and professional, suitable for a large enterprise retail business. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

S

Scalingo

scalingo.com

81

Scalingo is a reputable European Platform as a Service (PaaS) provider specializing in cloud hosting for developers with a strong emphasis on data sovereignty and compliance. The company holds key certifications such as ISO 27001 and HDS, positioning itself as a trusted provider for sectors including healthcare, government, and web agencies. Their platform supports multiple programming languages and databases, enabling rapid deployment and scaling of applications. The website reflects a mature business with professional design, clear navigation, and comprehensive service offerings.

T

ToDesktop

todesktop.com

59

ToDesktop is a technology company offering a platform that converts web applications into cross-platform desktop applications with native features. The website is professionally designed, targeting developers and software teams seeking to quickly create desktop apps from existing web codebases. The platform supports Windows, Mac, and Linux and provides both a code-optional drag & drop builder and desktop APIs for customization. Technically, the site uses modern frameworks such as Svelte and Electron, hosted likely behind Cloudflare, and employs Google Analytics for user tracking. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security headers and published privacy or cookie policies. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and raising questions about domain registration legitimacy. Overall, the site is functional and professional but would benefit from improved transparency and compliance documentation.

Y

YouShouldAsk B.V.

youshouldask.ai

52

YouShouldAsk B.V. operates a sophisticated AI-driven customer service platform tailored for e-commerce businesses, offering 24/7 AI agents that handle customer inquiries, product advice, and lead generation. The company is positioned as a market leader in the Dutch e-commerce AI customer service space, with multiple integration partners and notable client case studies demonstrating effectiveness and customer satisfaction. The platform is built on modern web technologies with strong performance and mobile optimization, supported by advanced monitoring tools like New Relic and Leadinfo. Security posture is solid with HTTPS and monitoring but lacks some advanced security headers and explicit incident response policies. The domain is newly registered with privacy protection, consistent with the company's recent founding. Overall, the website and business present a professional, trustworthy, and technically mature profile suitable for its target market.

D

Digitaliseringsdirektoratet

uustatus.no

64

The website uustatus.no is a Norwegian government digital service platform managed by Digitaliseringsdirektoratet. It provides a login portal for accessibility declarations and supplier evaluations, primarily targeting public sector entities and private ICT solution providers used in the public sector. The platform integrates with ID-porten, a trusted Norwegian authentication service, ensuring secure user access. The site is built on Drupal 10, leveraging modern web technologies and providing a professional and accessible user experience. Privacy and cookie policies are present, though no explicit cookie consent mechanism is implemented. Security policies and incident response information are not publicly available, indicating room for improvement in transparency and compliance. Overall, the site demonstrates a solid business credibility and technical foundation appropriate for a government service.

T

Tryg Forsikring

tryg.no

76

Tryg Forsikring is a major Norwegian insurance company providing a range of insurance products for individuals and families, including property and personal insurance. The website is professionally designed, with consistent branding and clear content targeting Norwegian customers. It offers online insurance services with benefits such as a 10% online discount. The company maintains a strong market position in the Norwegian finance sector. Technically, the website uses modern web technologies including Drupal CMS, Bootstrap for responsive design, and integrates advanced tag management and analytics tools such as Tealium and Adobe Experience Cloud. The site is hosted on Amazon Web Services, ensuring scalability and reliability. Mobile optimization and accessibility features are well implemented, contributing to a good user experience. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism compliant with GDPR. However, security headers are not explicitly detected, and no public security policy or incident response contact is found. The absence of WHOIS data suggests privacy protection for domain registration, which is justified for a large financial institution. Overall, the security posture is strong but could be enhanced by publishing additional security policies and headers. The overall risk assessment is low, with no critical vulnerabilities or suspicious indicators detected. Strategic recommendations include improving security header implementation, publishing a vulnerability disclosure policy, and enhancing contact information transparency to further build trust and compliance.