Security Directory

D

Den Gamle By

dengamleby.dk

71

Den Gamle By is a prominent Danish open-air museum offering immersive historical experiences through exhibitions, events, and educational programs. The website reflects a well-established cultural institution with a clear focus on heritage and public engagement. The digital infrastructure is modern, leveraging Umbraco CMS, JavaScript libraries, and a comprehensive cookie consent framework to ensure compliance and user privacy. Security posture is strong with HTTPS enforcement and use of reCAPTCHA for form protection, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which aligns with the organization's profile. Overall, the site is professional, trustworthy, and user-friendly, supporting the museum's mission effectively.

L

Limbo

limbo.works

61

The website 'Limbo' at www.limbo.works presents a modern, visually oriented design built on contemporary JavaScript frameworks such as Vue.js and Nuxt.js. It integrates analytics tools including Google Analytics and Matomo, indicating a focus on user behavior tracking and performance monitoring. However, the site lacks substantive textual content describing the business, its services, or its market positioning, limiting clarity on its business model and target audience. The absence of privacy, cookie, and terms of service policies further reduces transparency and compliance posture. From a technical perspective, the site shows moderate performance and good mobile optimization but lacks accessibility features and SEO optimization beyond basic levels. Security posture is weak due to missing security headers and unknown SSL configuration, and no contact or incident response information is provided. WHOIS data is unavailable or malformed, which raises concerns about domain legitimacy and trustworthiness. Overall, the site appears functional but lacks critical compliance and security elements necessary for higher trust and credibility.

M

Molecule Consultancy

moleculeconsultancy.com

63

Molecule Consultancy is a Danish consultancy firm specializing in life science and healthcare communication. They serve a broad range of healthcare clients, from large pharmaceutical companies to biotech startups, offering services including strategy, market access, public affairs, digital and social media engagement, corporate communication, medical communication, medical marketing, patient engagement, and PR campaigns. The company positions itself as a trusted advisor with a strong ethical foundation and a commitment to sustainability within the healthcare sector. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website is built on WordPress and leverages modern web technologies such as jQuery, Google Analytics, Google reCAPTCHA, and Cloudflare for CDN and security. The site is mobile-optimized, SEO-friendly, and includes a comprehensive cookie consent mechanism compliant with GDPR. Email addresses are obfuscated to reduce spam, and social media presence is established primarily on LinkedIn and Twitter. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. However, it lacks explicit security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a concern for domain legitimacy and trustworthiness, though the website content and professional presentation mitigate some of this risk. Overall, the site demonstrates a good balance of content quality, technical implementation, security posture, privacy compliance, and business credibility, scoring an overall AI rating of 78 out of 100. Strategic recommendations include improving security headers, publishing explicit privacy and security policies, and verifying domain registration details to enhance trust.

F

FRAMEHOUSE

framehouse.dk

66

FRAMEHOUSE is a Danish real estate business specializing in coworking and office space rental on Amager, Denmark. The company offers a unique blend of office spaces, meeting rooms, and business networking opportunities in sustainable and well-designed environments. Their website reflects a professional and modern digital presence, built on WordPress with Elementor, and includes comprehensive cookie consent management compliant with GDPR. The business targets local companies and professionals seeking flexible office solutions and community engagement. Technically, the site is well-structured with good SEO and accessibility features, though some security headers could be improved. The security posture is solid with HTTPS and cookie consent, but lacks explicit security policies or incident response contacts. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

R

re:lead

scanlead.dk

63

re:lead is a Denmark-based small business specializing in leadership mindset expansion and consulting services. The company targets professionals and organizations seeking leadership development through webinars and consulting engagements. The website is built on Squarespace, leveraging modern web technologies and integrated with Google Tag Manager and Cookie Information for analytics and privacy compliance. The site demonstrates good design quality, mobile optimization, and clear navigation, providing a positive user experience. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, although explicit security headers and policies are not fully published. The absence of WHOIS data limits domain trust verification, but the professional presentation and use of reputable third-party services support legitimacy. Overall, the website is functional, compliant with privacy regulations, and suitable for its business purpose.

N

Home - NPC

nordicpharmaconsulting.com

51

The website npcdk.com represents a small business or organization based in Denmark, founded in 2020. The site is built on WordPress using Elementor and Yoast SEO plugins, indicating a moderate level of digital maturity with good design and mobile optimization. However, the content is basic with limited business information and no explicit privacy, cookie, or terms of service policies detected. The absence of contact information such as emails or phone numbers reduces user trust and business credibility. Security posture is minimal with no security headers detected and DNSSEC not enabled, though the domain registration is transparent and consistent with the business claims. Overall, the site is functional but lacks critical compliance and security features.

A

AMU Nordjylland

amunordjylland.dk

58

AMU Nordjylland is a regional educational institution in Denmark specializing in vocational training and AMU courses. It serves a diverse audience including students, unemployed individuals, and businesses, offering a broad portfolio of courses in construction, electronics, social care, transport, and logistics. The institution maintains a professional online presence with clear navigation, multiple course offerings, and active social media engagement. Technically, the website employs modern JavaScript libraries and frameworks such as jQuery and Bootstrap, integrates marketing and analytics tools like Google Tag Manager and Visual Website Optimizer, and supports mobile responsiveness and accessibility. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms but lacks visible security headers and explicit privacy and security policies. WHOIS data is unavailable, which slightly impacts trust but does not detract significantly from the overall legitimacy. Strategic improvements include publishing comprehensive privacy and security policies, enhancing security headers, and providing incident response information.

H

Hudson Nordic Denmark

hudson.dk

50

Hudson Nordic Denmark is a professional services company specializing in recruitment, leadership development, and coaching across Denmark and the Nordic region. The company positions itself as a leading Nordic partner with a proprietary approach to talent management, offering services such as Executive Search, Assessment Solutions, Executive Coaching, and Team Development. The website is well-branded and targets businesses and candidates seeking high-quality leadership and talent solutions. Technically, the site is built on WordPress using Elementor and Yoast SEO, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and visible privacy or cookie policies. WHOIS data for the subdomain is unavailable, which is typical for subdomains, but reduces domain trustworthiness slightly. Overall, the site reflects a professional and credible business presence with room for improvement in privacy compliance and security best practices.

L

Lift Relations | relationship intelligence

liftrelations.com

63

The website www.liftrelations.com is hosted on the Wix platform and appears to be a basic marketing or lead generation site. The site uses standard Wix technologies including Wix Thunderbolt framework, Google Tag Manager, Google Analytics, and Leadfeeder tracking scripts. However, the domain WHOIS data is unavailable, indicating the domain may be unregistered, expired, or privacy protected, which raises concerns about the legitimacy of the domain. The website lacks critical compliance documents such as privacy policy, cookie policy, and terms of service, and no contact information is provided, limiting trustworthiness and business credibility. Technically, the site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but no visible security headers or incident response information.

G

Geia Food A/S

geiafood.com

70

Geia Food A/S is a leading Nordic food development company specializing in innovation, project management, and supply chain solutions for the food industry. As part of the Geia Group, it offers a comprehensive portfolio of services including recipe development, quality assurance, packaging, and logistics. The company targets food producers, retailers, and manufacturers, positioning itself as a trusted partner in the Nordic region with expansion into the UK market. The website reflects a mature digital presence built on modern technologies such as Next.js and React, with a strong focus on user experience and mobile optimization. Security posture is robust with HTTPS enforcement and security headers, complemented by GDPR-compliant privacy and cookie policies. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Overall, Geia Food demonstrates a professional and trustworthy online presence aligned with its business objectives.

STEMA srl is an established Italian consulting company specializing in management consultancy, personnel search and selection, corporate restructuring, human resources development, and training services. Operating since 2000, it serves businesses primarily in Como and the broader Italian market. The company holds official authorization from the Italian Ministry of Labor and is affiliated with reputable industry associations such as Confindustria and RSassores, reinforcing its credibility and market position. Technically, the website employs a moderately modern technology stack including jQuery, Bootstrap, Google Analytics, and Google Maps API. The site is mobile-optimized with good navigation and SEO practices, although some technical improvements such as updated libraries and enhanced security headers could be implemented. The use of ezPublish CMS is inferred from HTML comments and structure. From a security perspective, the site uses HTTPS but lacks DNSSEC and explicit security headers, which are recommended for improved protection. The extensive candidate CV submission form collects sensitive personal data with a mandatory privacy consent checkbox, indicating some GDPR compliance. However, no explicit security or incident response policies are published, which could be improved to enhance trust and readiness. Overall, the website is professional, trustworthy, and functional with a solid business foundation. Strategic enhancements in security posture and transparency around data protection policies would further strengthen its risk profile and compliance stance.

C

Comm2ig

comm2ig.dk

68

Comm2ig is a Danish IT service provider specializing in professional IT solutions and services for both public and private sectors. The company offers a broad portfolio including IT solutions, IT services, SKI framework agreements, ESG initiatives, and consulting. Their target audience includes private companies, public institutions, schools, and municipalities. The website reflects a medium-sized enterprise with a solid market position in Denmark's technology sector. Technically, the site is built on WordPress with modern libraries such as jQuery and integrates Google Tag Manager and Cookie Information for analytics and privacy compliance. The site is well-optimized for mobile and accessibility, with good SEO practices. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, though it lacks explicit security headers and incident response disclosures. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

C

CompanYoung

companyoung.com

52

CompanYoung is a specialized consulting firm focused on attracting and retaining young talent, particularly in education and career choices. Established in 2010, the company offers strategic consulting, workshops, webinars, and research-based insights to educational institutions and businesses aiming to engage the younger generation effectively. Their market position is that of an expert niche player in the education sector within Denmark. Technically, the website employs modern JavaScript frameworks and third-party tools such as Google Tag Manager and Cookiebot, ensuring a good level of digital maturity and user experience. The site is mobile-optimized and provides clear navigation and relevant content. Security-wise, the website uses HTTPS and cookie consent mechanisms but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. No explicit privacy policy or incident response information is published, which represents a compliance gap. Overall, the website is professional and trustworthy, with transparent WHOIS data supporting legitimacy.

I

Illume Candles

illumecandles.com

70

Illume Candles operates a well-established e-commerce platform specializing in premium candles, fragrances, and related lifestyle products. The brand positions itself as artist-founded and artist-led, targeting consumers who appreciate beauty and quality in home fragrance products. The website is built on Shopify, leveraging a mature digital infrastructure with integrations for payments, marketing, and analytics. The domain age and registration data support the legitimacy and longevity of the business. Security practices are solid with HTTPS enforced, form protection via hCaptcha, and cookie consent mechanisms in place. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website demonstrates a high level of professionalism, user experience, and trustworthiness, suitable for a medium-sized retail business in the lifestyle sector.

M

ManageMagazine

managemagazine.com

61

ManageMagazine is an online media publication established in 2015, focusing on leadership, management, and organizational development topics. It serves professionals and academics by providing expert articles, interviews, and educational resources. The website maintains a consistent brand presence and a well-structured content offering, supported by active social media channels across major platforms. Technically, the site is built on WordPress with modern SEO and analytics tools, hosted behind Cloudflare DNS, and optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with no visible cookie consent or comprehensive GDPR statements. Overall, the site is credible and professionally maintained but could improve in privacy and security practices.

ScanBelt is a Denmark-based manufacturer specializing in modular plastic conveyor belts, positioning itself as a leading global player in this niche manufacturing sector. The company offers a broad and flexible product range targeting industrial clients and distributors worldwide. The website reflects a medium-sized enterprise with a professional online presence, including detailed product information, distributor contacts, and case studies. Technically, the site is built on Dynamicweb 8 CMS and uses Google Tag Manager for analytics, but it lacks HTTPS encryption and modern security headers, which are critical for protecting user data and maintaining trust. The presence of a cookie consent mechanism indicates some level of privacy compliance, although no privacy policy or terms of service pages were found. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the site is functional and informative but requires significant improvements in security and compliance to enhance its credibility and protect its users.

The website logimatic.com currently serves as a minimal redirect page informing visitors that Logimatic has transitioned to initgroup.io. The page contains no detailed business information, contact details, or policies, limiting the ability to assess the company's full scope or market position. The domain is well-established, registered since 1999, indicating a mature presence, but the current site content is basic and primarily functional as a redirect. Technically, the site uses simple HTML and CSS with Google Fonts, hosted by One.com A/S. There are no detected scripts, analytics, or advanced frameworks, reflecting a low digital maturity level. The site is mobile responsive and loads moderately fast but lacks SEO optimization and accessibility features. From a security perspective, the site uses HTTPS (implied by domain and modern standards), but no security headers or DNSSEC are enabled. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy, cookie, and incident response policies indicates compliance gaps. No contact or incident response channels are provided, which reduces trust and user assurance. Overall, the website poses a low risk but also offers limited business and security transparency. Strategic improvements in policy publication, contact availability, and security hardening are recommended to enhance trust and compliance.

E

e-l-m Kragelund A/S

e-l-m.com

66

e-l-m Kragelund A/S is a Danish company specializing in handling equipment and attachments for forklifts, targeting professional and business customers in the transportation sector. The website presents a professional image with clear branding and offers product catalogues and a capacity calculator to support customer needs. The digital infrastructure is built on WordPress with Elementor and WooCommerce, indicating a mature e-commerce presence. The site employs modern technologies including Cookiebot for cookie consent management and Google Analytics for traffic analysis, with consent-based tracking to comply with privacy regulations. Security posture is solid with HTTPS enabled and no immediate vulnerabilities detected, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partially met with a cookie policy and consent mechanism, but lacks a clearly accessible privacy policy and terms of service. Overall, the website is functional, professional, and trustworthy, with room for enhanced transparency and security hardening.

T

team3service aps

team3service.dk

57

team3service aps is a Danish commercial cleaning company specializing in sustainable cleaning solutions for offices, laboratories, and other business environments. The company emphasizes customer focus, environmental responsibility, and employee satisfaction, positioning itself as a reliable and quality-driven service provider in the Zealand region. Their website reflects a professional and consistent brand image, with clear contact information and a basic privacy policy. Technically, the site is built on the Wix platform using modern JavaScript frameworks and includes standard analytics tools such as Google Analytics and Visitor Analytics. Security posture is adequate with HTTPS enforced and some security hardening scripts, but lacks explicit security policies or incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is functional, trustworthy, and suitable for its business purpose, though improvements in privacy and security transparency are recommended.

W

Whitehouse Post

capguncollective.com

57

Whitehouse Post is a well-established media company specializing in video editing and post production services with offices in major cities including London, New York, Chicago, and Los Angeles. The website showcases a portfolio of featured works and targets clients in the media production and advertising sectors. Technically, the site uses modern JavaScript frameworks such as Vue.js and Nuxt.js, hosted on Amazon AWS infrastructure, and integrates Vimeo for video playback. Google Analytics and Google Tag Manager are employed for user tracking, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies, and no explicit contact information or security incident response details are provided. Overall, the website is professional and functional but would benefit from improved privacy and security practices to enhance trust and compliance.

M

Mediaxpress

mediaxpress.dk

54

Mediaxpress is a well-established Danish media house specializing in the construction and civil engineering sector. With over 30 years of experience, it publishes several trade magazines and online media targeting professionals such as architects, engineers, contractors, and producers. The company offers marketing and communication services leveraging journalistic content, graphic design, and digital marketing to enhance client visibility within a defined B2B audience. Their market position is strong within their niche, supported by multiple media brands and a loyal readership. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Font Awesome icons, and Swiper sliders. It uses Amazon CloudFront for content delivery and integrates Google Tag Manager for analytics and marketing tracking. The site is mobile responsive and well-structured, though no explicit CMS is detected. Performance is moderate with good SEO practices but basic accessibility features. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers such as Content-Security-Policy or Strict-Transport-Security. There is no visible privacy or cookie policy, which is a compliance gap given GDPR requirements. Contact information is comprehensive and transparent, but no formal security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional and trustworthy with good business credibility. However, improvements in privacy compliance and security hardening are recommended to enhance user trust and regulatory adherence.

B

Brenderup Group

brenderupgroup.com

72

Brenderup Group is a leading Scandinavian manufacturer and provider of trailers, holding a strong market position in Scandinavia and notable presence in Europe. The company operates a professional website built on the Litium CMS platform, featuring modern technologies such as Google Tag Manager and a comprehensive cookie consent mechanism. The website content is well-structured, targeting both B2B and B2C customers, with clear navigation and branding consistency. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, despite the professional appearance and active business operations. Security posture is generally good with HTTPS enforced and privacy compliance evident, though explicit security policies and incident response information are lacking. Overall, the website demonstrates a mature digital presence but would benefit from improved transparency in domain registration and enhanced security disclosures.

L

LITE-led

lite-led.dk

64

LITE-led is a Danish company specializing in LED lighting solutions for indoor and outdoor applications, targeting B2B customers such as municipalities, schools, and commercial enterprises. The company positions itself as a specialist provider offering comprehensive lighting solutions including consultancy and design services. The website reflects a professional business with clear branding and relevant content tailored to its market segment. Technically, the site uses modern web technologies including Google Tag Manager, Hotjar, and Cloudflare for hosting and performance optimization. The presence of detailed cookie consent and privacy policies indicates a good level of GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. The absence of WHOIS data limits domain trust verification, but the overall digital presence and business information support legitimacy. Strategic recommendations include enhancing security transparency and publishing terms of service and incident response contacts.

G

Gastech-Energi A/S

gastech.dk

63

Gastech-Energi A/S is a Danish energy company specializing in the sale, installation, and maintenance of gas boilers and heat pumps. The company offers service agreements that provide customers with reliable support and maintenance throughout the heating season. Positioned as a trusted provider in Denmark, Gastech-Energi leverages a strong brand presence supported by customer reviews and active social media channels. The website is designed to serve both private and commercial customers, providing tools such as savings calculators and self-service portals to enhance customer engagement. Technically, the website is built on WordPress using the Understrap theme framework and integrates modern technologies including Google Tag Manager, Google Analytics, and CookieInformation for privacy compliance. The site demonstrates good SEO practices with comprehensive metadata and structured data, ensuring strong search engine visibility. Mobile optimization and user experience are well addressed, although accessibility features could be improved. From a security perspective, the site enforces HTTPS and employs a detailed cookie consent mechanism aligned with GDPR requirements. While some security headers are not explicitly detected, no critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data limits domain trust verification, but the overall digital footprint and compliance posture suggest a legitimate and professionally managed online presence. Overall, Gastech-Energi's website reflects a mature digital infrastructure supporting its business goals, with room for enhancements in security headers and accessibility to further strengthen its security posture and user inclusivity.

C

Concept X

concept.dk

66

Concept X is a digital advertising service provider focused on empowering marketers with a comprehensive toolbox and scalable media distribution to accelerate success in the digital ad space. The website is professionally designed using modern technologies such as Next.js and Prismic CMS, with integration of privacy management and analytics tools like Plausible Analytics. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and privacy policies indicates room for improvement. The domain WHOIS data is missing, which raises concerns about domain registration legitimacy and reduces overall trust. The website lacks visible contact information and formal privacy or cookie policies, which impacts privacy compliance scores. Overall, Concept X presents as a credible small business in the media sector but should address domain registration transparency and privacy compliance to enhance trust and security.

The website jexen.dk represents a small Danish web design and hosting service provider, Skandiaweb A/S, established in 2007. The site is built on an outdated Joomla 1.5 CMS platform with basic content and navigation primarily targeting local businesses or individuals seeking web services. The company appears to have a modest market position with a focus on web design and hosting. Technically, the site uses legacy JavaScript libraries and lacks modern security features such as HTTPS and security headers, which exposes it to potential vulnerabilities. The presence of a cookie consent banner indicates some awareness of privacy regulations, but the absence of a privacy policy and terms of service pages highlights compliance gaps. Analytics are handled via a self-hosted Piwik (Matomo) instance, suggesting some control over user data collection. Overall, the website's security posture is weak due to outdated software and missing HTTPS, and privacy compliance is minimal. Strategic improvements in security, privacy documentation, and technology modernization are recommended to enhance trust and compliance.

The domain solutia.com represents a longstanding business entity likely involved in specialty chemicals and manufacturing, as suggested by the domain name and WHOIS registration dating back to 1997. However, the current website is inaccessible, returning a 503 Service Temporarily Unavailable error with minimal HTML content, preventing any meaningful content or security analysis. The lack of accessible content means no privacy, cookie, or terms of service policies are available, nor any contact or social media information. Technically, no information about the technology stack, hosting, or security headers could be determined. The WHOIS data indicates a legitimate domain with proper registration and no privacy protection, consistent with a reputable business. Overall, the website's digital presence is currently non-functional, limiting the ability to assess its security posture or compliance status.

The domain pingit.dk is registered since 2012 and currently active, hosted by JCD A/S. The website content is extremely minimal, serving as a placeholder page with only a logo and a single external link to jcd.dk. There is no business description, contact information, or any user-facing content that would indicate active business operations on this domain. The hosting provider appears to be JCD A/S, a Danish hosting company, which aligns with the domain's country of registration. The lack of content and policies suggests the domain may be parked or reserved for future use. From a technical perspective, the website lacks modern web features such as HTTPS, security headers, SEO metadata, and accessibility optimizations. No scripts, forms, or analytics tools are present, indicating a very basic technical infrastructure. The absence of HTTPS is a critical security concern, exposing visitors to potential risks. Security posture is weak due to missing HTTPS and security best practices. No privacy or cookie policies are present, and no contact or incident response information is provided. The WHOIS data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, the website does not currently support any business or compliance functions. Given these findings, the overall risk is moderate due to lack of security controls and transparency. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, providing contact information, and improving website content and technical implementation to support trust and compliance.

V

Vestsjællands Jernhandel A/S

vsj.dk

55

Vestsjællands Jernhandel A/S is a Danish retail company specializing in hardware and ironmongery products, operating since at least 1998 as indicated by the domain registration. The website serves primarily as an informational and commercial portal targeting customers in Denmark. The technical infrastructure is based on WordPress CMS with the Divi theme and optimized using WPRocket, incorporating Google Fonts and Google reCAPTCHA for bot protection. The website demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is limited, with a cookie consent mechanism present but no privacy policy or terms of service detected. Overall, the website is professionally designed and functional but would benefit from enhanced security and compliance documentation to improve trust and regulatory adherence.

Q

Qant

qant.dk

51

Qant is a Danish consultancy specializing in infrastructure expertise, particularly in the railway sector, along with organizational and leadership development services. The company appears to be a small-sized business founded in 2011, with a focused market position serving organizations involved in transportation infrastructure. The website is built on WordPress using the Divi theme, indicating a standard and widely used CMS platform. The technical infrastructure is moderate with basic mobile optimization and SEO features. Security posture is basic with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Contact information and social media presence are not evident in the provided content, which limits direct communication channels and trust signals. Overall, the website reflects a functional but basic digital presence with room for improvement in security, privacy, and business transparency.

The website nisportal.com currently serves a robot challenge screen implementing a proof-of-work captcha mechanism to verify visitor legitimacy before granting access. This indicates the presence of a Web Application Firewall (WAF) or similar security control blocking direct content access. Due to this, no substantive business content, contact information, or policy documents are accessible for analysis. The domain is registered since 2008 with a reputable registrar and uses Microsoft Azure DNS hosting, suggesting a stable technical foundation. However, the lack of DNSSEC and security headers, combined with no visible HTTPS enforcement in the provided data, indicates room for security improvements. The site lacks privacy and cookie policies, contact details, and business transparency, which negatively impacts trust and compliance assessments.

D

DrugRebels

drugrebels.dk

51

DrugRebels is a Danish non-profit organization dedicated to educating youth and parents about drugs and empowering them to make informed choices. The website serves as a platform offering interactive ROADSHOW lectures, educational content about various substances, support resources for parents, and a podcast series. The organization is well-positioned within the Danish non-profit sector focused on drug prevention and youth education, supported by multiple sponsors and testimonials that enhance its credibility. Technically, the website is built on a modern React and Next.js framework with Sanity CMS as the content backend. The site demonstrates excellent performance, mobile optimization, and accessibility. It uses HTTPS with a good SSL configuration but lacks some advanced security headers. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site shows good practices such as secure mailto links and no exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and cookie consent mechanisms. The absence of WHOIS data for the domain is unusual but does not appear to impact the legitimacy of the site based on its content and contact information. Overall, DrugRebels presents a professional, trustworthy, and well-maintained online presence with minor areas for improvement in security headers and privacy compliance. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to further strengthen trust and compliance.