Security Directory

G

GGD

ggd.nl

73

GGD is the national public health organization in the Netherlands, providing a wide range of health services including vaccination programs, cancer screenings, health campaigns, and emergency preparedness. The website serves as a portal to regional GGD and GHOR entities, targeting Dutch residents and health professionals. The organization is large, government-affiliated, and focused on public health protection and promotion. Technically, the site is built on WordPress with modern frameworks and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

U

UMass Amherst Foundation

uma-foundation.org

56

The UMass Amherst Foundation is a non-profit organization established in 2003 to support private fundraising efforts for the University of Massachusetts Amherst. The foundation focuses on supporting faculty, students, and campus facilities through philanthropic contributions. The website is professionally designed on the Squarespace platform, featuring clear navigation and relevant content aimed at donors and university stakeholders. Technically, the site uses modern web technologies and is hosted on Squarespace with good mobile optimization and SEO practices. Security posture is strong with HTTPS and HSTS enabled, though additional security headers and incident response information could enhance trust. Privacy compliance is addressed with a cookie consent banner and privacy policy, reflecting GDPR awareness. Overall, the site presents a credible and trustworthy presence for a university-affiliated foundation.

U

University of Massachusetts Athletics

umassathletics.com

58

The University of Massachusetts Athletics website serves as the official digital platform for the university's sports teams, providing comprehensive information including schedules, rosters, news, ticketing, and fan engagement resources. It targets students, athletes, fans, and the broader sports community, positioning itself as a key resource for collegiate athletics within the education sector. The site is well-branded and consistent with the university's identity, reflecting a large, established institution with a history dating back to 1999 for this domain. Technically, the website leverages modern web technologies such as Vue.js and Nuxt.js frameworks, hosted on AWS infrastructure with CDN support for performance optimization. The use of Sidearm Sports CMS indicates a specialized platform for collegiate athletics content management. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. From a security perspective, the website enforces HTTPS, employs standard security headers, and integrates a consent management platform for privacy compliance. However, DNSSEC is not enabled, and there is no explicit security policy or vulnerability disclosure page, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a high level of professionalism and trustworthiness, with strong business credibility and privacy compliance. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and enhancing transparency around vulnerability disclosures to further strengthen security posture and user trust.

V

Vendée Expansion

vendee-expansion.fr

59

Vendée Expansion is a regional economic development agency dedicated to fostering business growth and investment in the Vendée region of France. The agency provides comprehensive support services including land and property offerings, business advisory, and regional promotion to attract and assist companies and investors. Positioned as a key player in regional economic development, Vendée Expansion targets businesses, entrepreneurs, and stakeholders interested in the economic vitality of Vendée. The website is built on a WordPress platform utilizing modern plugins such as FacetWP for faceted search and Contact Form 7 for user interactions. The technical infrastructure demonstrates moderate performance with good mobile optimization and basic accessibility features. Security is well managed with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not publicly available. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements, including a consent mechanism. The site integrates Google Analytics and Tag Manager for analytics and marketing purposes, reflecting a moderate level of user tracking. Overall, the website presents a professional and trustworthy digital presence consistent with a government-backed agency. Security posture is strong but could be enhanced by publishing formal security policies and incident response contacts. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the website's content and presentation support its authenticity. Strategic recommendations include improving transparency around security practices and enhancing accessibility to further strengthen trust and compliance.

C

Clothing and accessories store

edigo.lv

50

Edigo.lv operates as a Latvian e-commerce retail store specializing in clothing and accessories. The website targets Latvian consumers and offers a range of products including apparel for men, women, and children, as well as accessories and personalization services. The business model is primarily online retail with customer account management features. The site is positioned as a local/regional player in the Latvian market with a consistent brand presence and social media engagement on LinkedIn, Instagram, and Facebook. Technically, the website is built on WordPress with WooCommerce as the e-commerce platform. It employs various plugins such as Real Cookie Banner Pro for GDPR compliance, Slider Revolution for visual content, and WPML for multilingual support. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, it lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain registration trust verification, but the website content and structure suggest a legitimate small retail business. Overall, Edigo.lv presents a good security posture and privacy compliance with room for improvement in security headers and incident response transparency. The site offers a professional user experience with clear navigation and relevant content for its target audience.

The NEC Foundation of America website represents a non-profit organization affiliated with NEC Corporation of America, focused on advancing social value and human potential through STEM, health, and environmental initiatives. The foundation has an established market presence with a domain registered since 2001, consistent with its business history. The website content is professionally designed, with clear navigation and branding consistent with the parent company. The primary audience includes community members and stakeholders interested in STEM education and social impact. Technically, the site uses a modern JavaScript stack including jQuery, Slick Carousel, and Google Analytics, hosted behind Cloudflare DNS and CDN services, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain status locks, but lacks DNSSEC and security headers, and does not publish a security policy or incident response information. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR-specific disclosures. Overall, the website is trustworthy and credible but could improve in security and privacy transparency.

The website nectoday.com is currently inaccessible due to a JavaScript-based proof-of-work CAPTCHA challenge page designed to verify client connection security before granting access. This security mechanism effectively blocks automated access and prevents direct content retrieval, resulting in minimal visible content limited to a robot challenge screen. The domain is registered with GoDaddy.com, LLC since 2008, indicating a mature domain age and stable registration status. However, no business, contact, or policy information is exposed on this page, limiting the ability to assess the company's market position or services. The technical infrastructure includes custom JavaScript for CAPTCHA proof-of-work and uses AWS Cloudfront CDN for content delivery. Security best practices such as DNSSEC and security headers are not evident. Overall, the site’s security posture is moderate due to the challenge mechanism but lacks transparency and compliance documentation.

NEC National Security Systems (NEC NSS) is a technology solutions provider specializing in biometrics, artificial intelligence, and computer vision technologies tailored to support critical U.S. government missions. Their offerings include identity intelligence, automated biometric identification systems (ABIS), credential authentication, and digital identity solutions. The company emphasizes innovation, rapid prototyping, and a strong research and development focus to meet government security needs. The website targets U.S. government agencies and related sectors, positioning NEC NSS as a trusted partner in national security technology. Technically, the website employs modern marketing and analytics tools such as HubSpot, Google Tag Manager, Microsoft Clarity, and AdRoll, indicating a moderate level of digital maturity. The site is mobile optimized with good design and navigation, though accessibility and SEO optimizations are basic. Security-wise, the site uses HTTPS and has domain registration protections but lacks DNSSEC and security headers, and does not publish explicit security or privacy policies. Overall, the site is professional and credible but could improve privacy compliance and security transparency.

F

First Draft

firstdraftnews.org

56

First Draft is a US-based non-profit organization dedicated to combating misinformation and disinformation through research, training, and educational resources. The website serves as a comprehensive hub offering reports, courses, and guides aimed at journalists, educators, and the public. The organization is positioned as a trusted authority in media literacy and information disorder, with a consistent brand presence and a focus on open access content under Creative Commons licensing. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various analytics and tracking tools. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and secure login forms, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with a cookie policy and consent mechanism present but no clear privacy policy or GDPR compliance statements. Contact information is limited to a generic Gmail address and login form, which slightly reduces business credibility. Overall, the site is professional and trustworthy but could improve in privacy transparency and security hardening.

P

PolicyLink

policylink.org

64

PolicyLink is a well-established national non-profit research and action institute focused on building equity and social justice in the United States. The organization provides data, policy advocacy, and resources aimed at fostering a multiracial democracy and equitable economy. Their website reflects a professional and consistent brand presence with comprehensive content targeting policymakers, advocates, and the public. Technically, the site is built on Drupal 7 with modern analytics and marketing tools integrated, though some modernization opportunities exist. Security posture is solid with HTTPS and no exposed sensitive data, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profits but slightly reduces transparency. Overall, the site is credible, trustworthy, and serves its mission effectively.

U

Universidad de Jaén

ujaen.es

66

The Universidad de Jaén website serves as the official digital presence of a large public university in Spain, offering comprehensive academic programs, research initiatives, and community engagement services. The site targets a broad audience including prospective and current students, academic staff, alumni, and institutional partners. It features multilingual support, rich content, and clear navigation, reflecting a mature digital presence. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies such as Bootstrap for responsive design, jQuery, and various accessibility tools including ReadSpeaker. The site enforces HTTPS and implements a Content Security Policy, alongside a robust cookie consent mechanism, indicating a good level of digital maturity and privacy compliance. From a security perspective, the site demonstrates solid practices with HTTPS, basic security headers, and no visible vulnerabilities or exposed sensitive data. However, there is room for improvement by adding additional security headers and HSTS. The WHOIS data is restricted due to registry policies, but no suspicious indicators were found, supporting the legitimacy of the domain. Overall, the website is professional, trustworthy, and well-maintained, with strong compliance to privacy regulations and a clear focus on user experience and accessibility. Strategic recommendations include enhancing security headers, expanding incident response visibility, and continuous monitoring of third-party scripts for vulnerabilities.

U

Universidad Internacional de Andalucía

unia.es

67

The Universidad Internacional de Andalucía (UNIA) is a public university institution in Spain focused on professional specialization through a broad offering of official master's degrees, postgraduate courses, summer courses, and continuous education. The website reflects a mature and well-established educational institution with a clear market position in the Andalusian region. The digital infrastructure is built on Joomla CMS with modern frontend frameworks like UIkit and includes compliance with GDPR and cookie consent regulations. Security posture is strong with HTTPS and consent management, though explicit security headers could be improved. The WHOIS data is restricted by the .es registry policy, which is typical and does not raise concerns. Overall, the website is professional, trustworthy, and well-optimized for users.

U

Universidad de Huelva

uhu.es

56

Universidad de Huelva is a public higher education institution based in Spain, offering a wide range of undergraduate, master's, doctoral, and specialized academic programs. The university emphasizes research, social responsibility, and sustainability aligned with the UN Sustainable Development Goals. The website is professionally designed using Drupal 8 CMS, with modern front-end frameworks and good mobile optimization. Security practices include HTTPS, security headers, and reCAPTCHA integration. Privacy and cookie policies are present and GDPR compliant. However, WHOIS data is inaccessible due to Red.es restrictions, limiting domain registration verification. Overall, the site demonstrates a mature digital presence suitable for a large educational institution.

U

Universidad de Granada

ugr.es

56

The Universidad de Granada is a historic and large public university institution in Spain, founded in 1531, serving over 54,000 students. It offers a wide range of educational programs including undergraduate, masters, and doctoral studies, alongside research and community services. The website is professionally designed with clear navigation, multilingual support, and comprehensive content tailored to students, staff, companies, and visitors. Technically, the site is built on Drupal 8, uses modern analytics tools like Google Analytics and Matomo, and incorporates cookie consent mechanisms aligned with GDPR requirements. Security posture is good with HTTPS enforced and no exposed sensitive data, though security headers are not visibly implemented and no explicit security or incident response policies are published. WHOIS data is unavailable due to registry access restrictions, but the website's branding and external references strongly support its legitimacy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

U

Universidad de Córdoba

uco.es

46

The Universidad de Córdoba website serves as the official online presence of a large public university in Spain, providing academic, research, and community information primarily targeted at students, faculty, and prospective students. The site features a professional design with consistent branding and good content quality, including news, events, and multimedia resources. Technically, the site employs a traditional tech stack with Bootstrap and jQuery, Google Fonts, and integrates analytics tools such as Google Analytics and Facebook Pixel for user tracking. Mobile optimization is good, though accessibility features are basic. From a security perspective, the site uses HTTPS and trusted external services but lacks visible security headers and uses an outdated jQuery version, which could pose risks. No privacy or cookie policies were found in the provided content, indicating room for improvement in compliance with GDPR and related regulations. The WHOIS data is restricted due to Red.es policies, but the domain appears legitimate and consistent with the university's identity. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced security headers, updated libraries, and explicit privacy and cookie policies to improve compliance and user trust. Strategic recommendations include implementing security headers, updating JavaScript libraries, publishing privacy and cookie policies with consent mechanisms, and enhancing accessibility and incident response information.

P

Prissmacer

prissmacer.es

62

Prissmacer is a Spanish company specializing in the production and sale of ceramic materials, operating as part of the Grupo Industrial Pamesa. The website presents a professional and well-structured digital presence with multilingual support, targeting architects, construction professionals, and distributors. The business model focuses on manufacturing and technical solutions for ceramic products, supported by certifications and a comprehensive product catalog. Technically, the website is built on WordPress using the Divi theme and several plugins for enhanced user experience and GDPR compliance. Security measures include HTTPS, reCAPTCHA, and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data limits domain trust analysis, but the overall business credibility and website professionalism indicate a legitimate and established entity.

T

TAU cerámica

tauceramica.com

65

TAU cerámica is a professional ceramic manufacturing company based in Spain, offering a wide range of ceramic products including porcelain, wall tiles, and outdoor tiles. The company targets architects, interior designers, and construction professionals, providing digital catalogs, virtual showrooms, and 3D design tools to enhance customer experience. The website is built on WordPress with Elementor and integrates modern technologies such as Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is strong with HTTPS, cookie consent, and reCAPTCHA, though explicit security policies and incident response contacts are not visible. The absence of WHOIS data is a notable transparency concern but does not detract significantly from the overall professionalism and trustworthiness of the site. Strategic recommendations include publishing a security policy, incident response contacts, and improving accessibility features.

N

Navarti

navarti.com

51

Navarti is a Spanish manufacturer specializing in ceramic and porcelain tiles, offering a broad product range including technical porcelain and various ceramic finishes. The company targets architects, designers, construction firms, and distributors, positioning itself as a quality and environmentally responsible player in the manufacturing sector. The website is professionally designed, multilingual, and optimized for performance and mobile devices, reflecting a mature digital presence. Security posture is strong with HTTPS, cookie consent, and tracking controls, though some security headers could be improved. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness despite the professional business presentation. Strategic recommendations include verifying domain registration details, enhancing security headers, and improving accessibility compliance.

G

Geotiles Cerámica

geotiles.com

62

Geotiles Cerámica is a Spanish company specializing in ceramic tiles and pavements, targeting architects, builders, retailers, and consumers. The website presents a professional and multilingual digital presence, leveraging WordPress with the Divi theme and various modern plugins to deliver a visually appealing and functional user experience. The company offers a range of ceramic tile collections, technical solutions, and catalogs, supported by clear contact information and social media engagement. Technically, the website uses a mature CMS platform with modern front-end libraries and plugins, ensuring good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. The site enforces HTTPS and provides a comprehensive cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site demonstrates good baseline practices such as HTTPS and cookie consent but lacks explicit security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Overall, the website is well-constructed and compliant with privacy regulations, but the missing WHOIS information and lack of explicit security policies suggest areas for improvement to enhance business credibility and security posture.

E

Ecoceramic

ecoceramic.es

61

Ecoceramic is a Spanish company specializing in ceramic tiles, offering a range of collections and showroom services. The website is professionally designed, multilingual, and targets consumers and businesses interested in ceramic tile products. The digital infrastructure is based on WordPress CMS with modern optimization plugins such as WP Rocket, ensuring good performance and mobile responsiveness. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and formal policies are lacking. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clear privacy policy page. Overall, the website presents a credible business presence but would benefit from enhanced transparency in privacy and security policies. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and adding a vulnerability disclosure mechanism.

Nortic AB operates an e-commerce ticketing platform primarily targeting event attendees and organizers in Sweden. The website new.nortic.se serves as a front-facing portal for ticket sales and event discovery, integrating payment solutions such as Klarna. The company positions itself as a regional player in the event ticketing market with a medium-sized business profile. Technically, the site leverages modern frameworks including Nuxt.js and Storyblok CMS, providing a responsive and well-structured user experience. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though security headers and explicit privacy policies are lacking. The absence of WHOIS data for the subdomain is typical and does not detract from the site's legitimacy. Overall, the site demonstrates a solid digital presence with room for improvement in privacy compliance and security transparency.

P

PP Pension

pppension.se

57

PP Pension is a Swedish pension service provider focused on the media and information sectors, offering tailored pension solutions for freelancers, small to large companies, and collective agreements. The company emphasizes low fund fees, personal advisory services, and customer-centric pension management. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting professionals such as designers, journalists, and project managers. Technically, the site is built on WordPress with modern SEO practices using Yoast SEO, and it employs HTTPS with cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with encrypted connections and secure forms, though some security headers are missing and no explicit security policy or incident response contacts are published. WHOIS data is unavailable or queried incorrectly, limiting domain registration trust verification. Overall, the site demonstrates a strong business presence with good security and privacy compliance, but would benefit from enhanced transparency in security policies and domain registration details.

L

Länsförsäkringar

lansforsakringar.se

58

Länsförsäkringar is a well-established Swedish financial services group offering comprehensive banking and insurance products primarily targeting private individuals, businesses, and agricultural customers in Sweden. The website analyzed is a regional portal for the Stockholm area, providing localized content and services. The company positions itself as a trusted regional financial institution with a strong customer focus. Technically, the website employs a modern technology stack including Episerver CMS, Google Tag Manager, and OneTrust for privacy compliance, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO basics and structured data usage. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some improvements such as adding explicit security headers and updating legacy libraries are recommended. The absence of WHOIS data for the subdomain is expected and does not detract from the overall legitimacy. Overall, the website reflects a professional and trustworthy financial services provider with good compliance and security practices.

F

Futur

futurpension.se

66

Futur is a Swedish financial services company specializing in savings and pension products, targeting private individuals. The website is professionally designed using modern web technologies such as Angular and integrates Google Fonts and Material Icons for a consistent user experience. Hosting and DNS services are provided via Microsoft Azure DNS, indicating a reliable infrastructure. The security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of visible privacy and cookie policies, and no contact information is explicitly provided on the site. Overall, the site is functional and credible but would benefit from improved transparency and security practices.

L

Livförsäkringsbolaget Skandia, ömsesidigt

skandia.se

74

Skandia is a well-established Swedish financial services company specializing in life insurance, pension savings, banking, and health-related financial products. The website demonstrates a strong market position with a comprehensive offering targeting private individuals, businesses, and the public sector. The company emphasizes customer satisfaction and provides extensive advisory services and digital tools for pension management. Technically, the site uses modern frameworks such as React and Semantic UI, hosted on a robust CMS platform (EPiServer), and integrates Adobe Experience Platform for analytics and marketing. Security posture is strong, with HTTPS enforced, security.txt published, and cookie consent mechanisms in place. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature security approach. Overall, the site is professional, accessible, and compliant with GDPR and other privacy regulations.

Q

QBE Sverige

qbe.se

74

QBE Sverige is a branch of the global insurance company QBE Insurance Group, offering corporate insurance solutions across more than 180 countries. The website presents a professional and well-structured digital presence, targeting businesses seeking sector-specific insurance policies with flexible and tailored coverage. The company emphasizes its global reach, expertise, and customer-centric approach. Technically, the website leverages modern technologies including Google Tag Manager, OneTrust for cookie consent, and Akamai CDN for hosting, ensuring moderate to good performance and mobile optimization. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, though there is room for improvement in security headers and DNSSEC implementation. Overall, the site reflects a mature and credible business with good privacy compliance and user experience.

L

Lajumate.ro

carzz.ro

52

CarZZ.ro is an established Romanian online marketplace specializing in automotive sales, including new and used vehicles, auto parts, and agricultural machinery. It operates as a project under the Lajumate.ro brand, targeting Romanian consumers and businesses interested in automotive transactions. The platform offers free listings with options for promoted ads, supporting a business model based on advertising revenue. The website demonstrates a good level of content quality, user experience, and branding consistency, appealing to its target audience effectively. Technically, CarZZ.ro employs a modern JavaScript-based infrastructure with integrations of Google Tag Manager, Google Analytics, Firebase, and CookiePro for consent management. Advertising is managed through Google Ad Manager and header bidding with RTBHouse, complemented by retargeting services such as Facebook Pixel and Tapad. The site is mobile-optimized and SEO-friendly, although accessibility features are basic. From a security perspective, the website enforces HTTPS and monitors Content Security Policy violations, indicating attention to security best practices. However, explicit privacy policies, terms of service, and security incident contact information are not found, representing gaps in compliance and transparency. The use of privacy protection in WHOIS data is justified and common for this business type, with no suspicious patterns detected. Overall, CarZZ.ro presents a moderate risk profile with good technical and business maturity but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

H

Homezz

homezz.ro

54

Homezz.ro is a Romanian real estate online marketplace specializing in property listings including apartments, houses, villas, land, and commercial spaces for sale and rent. Established in 2016, it serves a broad Romanian audience seeking real estate opportunities. The platform offers additional services such as moving, financial consultancy, and solar panel installations, positioning itself as a comprehensive real estate service provider. The website is professionally designed with clear navigation and good mobile optimization, leveraging modern technologies like Vue.js and Cloudflare for hosting and performance. Analytics and monitoring tools such as Google Tag Manager, Google Analytics, and New Relic are integrated to track user behavior and site performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though DNSSEC is not enabled and explicit security policies are absent. Contact information is clearly provided via structured data, enhancing trust. Overall, Homezz.ro presents as a credible and well-maintained real estate platform in Romania.

A

Ajut eu (Campanie Antena 1)

ajuteu.ro

51

Ajuteu.ro is a Romanian non-profit campaign platform initiated by Antena 1 and supported by Observator and Fundația Mereu Aproape. It serves as a social platform where individuals can submit wishes and receive help, primarily targeting vulnerable populations and donors willing to contribute. The website features rich multimedia content including videos and news articles, and facilitates donations through trusted partners. Technically, the site uses modern JavaScript libraries such as jQuery and Video.js, integrates Google Analytics and Facebook Pixel for tracking, and is hosted behind Cloudflare DNS services. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced, and form validations are implemented, but the absence of security headers and DNSSEC are notable gaps. Privacy compliance is strong with comprehensive GDPR policies and terms of service available, though a cookie consent mechanism is missing. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

The website bulta.lv serves as an event portal for a running and Nordic walking competition held in Latvia, specifically the Sigulda-Nurmiži-Sigulda 21km event. It provides registration forms, event results, photos, and competition rules primarily targeting local sports enthusiasts and participants. The site uses a simple HTML5 UP template with JavaScript and jQuery for interactive form handling, indicating a modest technical infrastructure suitable for small-scale event management. The content is basic but functional, with clear navigation links to event results and documentation. However, the site lacks comprehensive privacy, cookie, and terms of service policies, which are critical for GDPR compliance given its European audience. Security posture is moderate with no visible advanced security headers or protections, and no WHOIS data could be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is functional for its purpose but requires improvements in security, privacy compliance, and business transparency to enhance trust and professionalism.

U

Universidad de Cádiz

uca.es

59

The Universidad de Cádiz is a well-established public university in Spain, offering a broad range of academic programs, research initiatives, and student services. The website reflects a mature digital presence with comprehensive content targeting students, researchers, and staff. It maintains a strong market position in the education sector with recognized certifications such as ISO 14001 and EFQM 500, enhancing its credibility and trustworthiness. Technically, the site is built on WordPress with modern frameworks like Bootstrap and jQuery, providing a responsive and accessible user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although there is room for improvement in HTTP security headers and incident response transparency. Overall, the site demonstrates a high level of professionalism and compliance with privacy regulations, supporting its role as a reputable educational institution.

The website universidadesdeinvestigacion.com is a domain parking page currently offering the domain for sale via Sedo. It does not provide any business services, contact information, or content beyond domain sale information. The site is primarily targeted at domain investors or buyers interested in acquiring this domain. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with Google Ads and Sedo's domain parking platform. The site is served over HTTPS but lacks advanced security headers and DNSSEC, indicating a minimal security posture. Privacy compliance is limited to a basic cookie banner and a generic privacy policy hosted by Sedo. Overall, the site has poor content quality and low business credibility due to lack of information and branding.

I

Instituto Interuniversitario de Investigación Avanzada sobre Evaluación de la Ciencia y la Universidad

inaecu.com

61

INAECU is an interuniversity research institute focused on the evaluation of science and higher education, created by universities in the Alianza 4U in Spain. The website presents a professional and content-rich platform primarily in Spanish, targeting academic researchers and institutions. The business model revolves around scientific research, specialized teaching, and technical advisory services in science and technology evaluation. Technically, the site is built on WordPress with the Avada theme and several plugins, including Google Translate and social feed integrations. While the site is accessible and well-structured, some technical aspects such as Google Analytics configuration and security headers could be improved. Security posture is generally good with HTTPS enforced and CAPTCHA usage, but lacks advanced security headers and vulnerability disclosure information. The absence of privacy and cookie policies indicates non-compliance with GDPR best practices. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional appearance of the site. Overall, the site is functional and credible for its academic purpose but requires enhancements in privacy compliance and security transparency.

O

OEI - Organización de Estados Iberoamericanos

oei.int

60

The Organización de Estados Iberoamericanos (OEI) is a large, well-established international non-profit organization focused on education, culture, science, and multilateral relations within Ibero-American countries. The website serves as a comprehensive portal offering information on their programs, projects, training, and cultural initiatives, targeting governments, educational institutions, and citizens in the region. The organization maintains a strong digital presence with multilingual support and accessibility features. Technically, the website is built on WordPress with modern SEO and accessibility best practices, including the use of Yoast SEO, WPML for multilingual content, and Google Tag Manager for analytics. Hosting is provided by Interhost, and the site uses HTTPS with a good SSL configuration. Performance is moderate with good mobile optimization. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers and a published security policy or incident response contacts are absent, representing areas for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of blocking or WAF interference. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

C

Centro de Estudios Garrigues

centrogarrigues.com

63

Centro de Estudios Garrigues is a recognized educational institution specializing in business and law education, targeting students and professionals in Spain. The website presents a professional image with clear descriptions of its services and market position as a reference center in its sector. The technical infrastructure leverages modern web technologies including React and Gatsby, hosted on Griddo's platform, with integration of Google Tag Manager for analytics. Security posture is strong with HTTPS enforcement and appropriate security headers, though the absence of a published security policy and incident response details is noted. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. However, the lack of WHOIS domain registration data raises concerns about domain legitimacy, warranting further verification. Overall, the website is well-designed, functional, and trustworthy, but domain registration transparency should be improved.

I

Instituto Internacional de Estudios Sociales (IIES)

iies.es

56

The Instituto Internacional de Estudios Sociales (IIES) operates as an educational institution specializing in social sciences, targeting students and academics interested in this field. The website is built on the Wix platform, leveraging standard Wix technologies and scripts, including Sentry for error monitoring. While the technical infrastructure is modern and the site is mobile-optimized, the content quality and privacy compliance are basic, with no explicit privacy or cookie policies detected. Security posture is adequate with HTTPS enabled and some security hardening scripts, but lacks comprehensive security headers and incident response contacts. Overall, the site presents a moderate risk profile with room for improvement in privacy compliance and contact transparency.

F

Fundación Botín

fundacionbotin.org

52

Fundación Botín is a well-established non-profit foundation based in Spain, focused on social development, education, culture, science, and rural development, with a significant presence in Cantabria, Madrid, and Latin America. The foundation operates key programs and the internationally recognized Centro Botín arts center. The website is built on WordPress with modern plugins and technologies, offering a rich user experience and good SEO. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site reflects a professional and trustworthy organization with strong digital maturity.

C

Cultural Agents, Inc., NGO

culturalagents.org

53

Cultural Agents, Inc. is a small, US-based non-profit organization founded in 2004 and affiliated with Harvard University. The organization focuses on integrating arts and humanities into civic engagement, targeting academics, artists, community leaders, and active citizens. Their offerings include academic courses, conferences, publications, internships, and a newsletter, positioning them as a niche educational and cultural platform. The website is professionally designed with consistent branding and good content quality, supporting their mission and audience engagement. Technically, the website is built on WordPress with modern plugins such as Elementor, Yoast SEO, and event management tools. It is hosted on Bluehost with HTTPS enabled and uses Google reCAPTCHA for form security. Performance and mobile optimization are moderate to good, with SEO practices in place. However, some accessibility features could be improved, and the contact form is currently misconfigured. From a security perspective, the site benefits from HTTPS and reCAPTCHA but lacks DNSSEC and important security headers, which are recommended for enhanced protection. The WHOIS data shows domain privacy protection, which is justified for a non-profit entity, and the domain age supports legitimacy. No critical vulnerabilities or exposed sensitive data were found, but improvements in security policies and incident response disclosures are advised. Overall, the website presents a trustworthy and credible platform with room for improvement in privacy compliance and security hardening. Strategic recommendations include publishing clear privacy and cookie policies, fixing contact form issues, enabling DNSSEC, and implementing security headers to strengthen the security posture and user trust.

P

Pacto Mundial ONU España

pactomundial.org

49

Pacto Mundial ONU España is a prominent non-profit organization dedicated to advancing corporate sustainability and responsible business practices in Spain. Affiliated with the United Nations Global Compact, it serves as a key platform for Spanish companies to align with global sustainability goals. The website reflects a professional and consistent brand image, targeting businesses and organizations interested in environmental, social, and governance (ESG) initiatives. Key services include sustainability guidance, training, networking, and resource provision. Technically, the website is built on WordPress, leveraging modern web technologies such as JavaScript libraries, Google Fonts, and Font Awesome icons. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes essential security headers, indicating a solid baseline security posture. However, there is no dedicated security policy or incident response information publicly available, which could enhance transparency and trust. Privacy compliance is strong, with clear privacy and cookie policies and a visible data protection officer contact. Overall, the website presents a trustworthy and credible digital presence for a non-profit sustainability organization. Strategic improvements in security transparency and performance optimization could further strengthen its position.

I

Increasing Customers | Quickly Grow Your Email List and Boost Revenue with AI

increasingcustomers.com

57

IncreasingCustomers.com is a technology-focused website offering AI-powered solutions aimed at rapidly growing email lists and boosting revenue for businesses. The site targets marketers and businesses seeking to leverage AI for customer acquisition and email marketing growth. The business appears to be small-sized and founded in 2012, with a consistent domain registration history. Technically, the website uses modern web fonts and libraries such as libphonenumber-js and intl-tel-input, indicating attention to user input validation and internationalization. However, no major frameworks or CMS platforms were detected. The website is mobile optimized and has a good design quality, but lacks comprehensive privacy and cookie policies, which impacts privacy compliance scores.

I

iPresso

marketingautomagic.com

58

The website marketingautomagic.com serves as a content marketing blog for iPresso, a marketing automation platform. It targets SME marketers and professionals interested in leveraging AI and automation to improve marketing outcomes. The site is positioned as a niche resource providing insights, tips, and news related to marketing automation, AI, and lead generation. The business model focuses on brand awareness and thought leadership to support the parent company iPresso. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, LayerSlider, and Slider Revolution plugins. It uses Google Analytics and Google Tag Manager for analytics and iPresso's own tracking scripts for marketing automation. The hosting provider is likely home.pl based on DNS records. The site is mobile optimized and SEO friendly with structured data and meta tags. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, DNSSEC is not enabled and no advanced security headers were detected. There is no visible cookie consent mechanism despite tracking scripts, and no explicit security or incident response policies are published. Privacy policy exists but is basic and GDPR compliance indicators are minimal. Overall, the site is professionally maintained with good content quality and technical implementation. Security posture is adequate but could be improved with additional measures. Privacy compliance needs enhancement, especially regarding cookie consent. The domain registration data is consistent and trustworthy. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security policies to enhance trust and compliance.

F

Faire Savoir

faire-savoir.com

56

Faire Savoir is a French technology company specializing in the development of information systems and custom websites, primarily serving the tourism sector. They hold a strong market position in France with international reach in overseas territories and Quebec. Their key offerings include the Tourinsoft information system, bespoke WordPress website development, and the Crono Travel web generator tailored for tourism professionals. The website demonstrates a professional digital presence with good content quality and user experience. Technically, the site leverages WordPress with performance optimizations and SEO enhancements but lacks some security headers and explicit privacy policies. The security posture is solid with HTTPS and bot protection but could be improved with additional headers and compliance documentation. WHOIS data is missing, which slightly impacts trust but the overall business credibility remains high based on content and client references.

V

Vendee Tourisme

en-vendee.com

60

Vendee Tourisme operates as a regional tourism portal for the Vendée region in France, offering vacation planning, accommodation booking, event information, and tourism guides. The website is built on Drupal 7 and integrates various third-party services including Matomo for analytics and Criteo for retargeting. The site is well-branded, mobile-optimized, and provides a good user experience with clear navigation and relevant content for tourists. However, the absence of WHOIS data raises concerns about domain registration legitimacy. Security posture is generally good with HTTPS and cookie consent mechanisms, but security headers and explicit privacy policies are lacking. Overall, the site is functional and professional but would benefit from enhanced transparency and security improvements.

theMarketer is a mature SaaS platform specializing in email marketing, SMS, loyalty, and referral automation tailored for e-commerce businesses. Established in 2002, it holds a strong market position supported by official partnerships with Amazon AWS and recognized certifications such as ISO 27001 and Deloitte cybersecurity audits. The platform offers a comprehensive suite of marketing tools designed to enhance customer engagement and drive sales growth through personalized campaigns and automation. Technically, the website leverages modern frameworks like Nuxt.js and Vue.js, integrates multiple analytics and marketing pixels, and is hosted with a reputable registrar and DNS provider. The site demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a high level of digital maturity. From a security perspective, the platform enforces HTTPS, maintains domain registration locks, and holds industry-standard certifications. However, there is room for improvement in explicit security headers and public incident response information. Privacy compliance is robust, with clear GDPR adherence and cookie consent mechanisms. Overall, theMarketer presents a low-risk profile with strong business credibility, technical sophistication, and security posture. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security header implementation to further strengthen trust and resilience.

Trafic.ro is a Romanian web analytics platform operated by EXTREME SOLUTIONS SRL, providing real-time monitoring and statistics of online audiences in Romania. The platform targets website owners and digital marketers seeking detailed traffic insights and SEO benefits. It holds a strong market position as a leading private analytics site in Romania, supported by a domain age of over 15 years and authoritative claims backed by AHREFS data. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Font Awesome, hosted behind Cloudflare DNS, ensuring moderate performance and good mobile optimization. However, the site lacks visible privacy and cookie policies, security headers, and explicit contact information, which impacts its privacy compliance and security posture. The WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, the site is functional and professional but requires improvements in privacy compliance and security best practices to enhance user trust and regulatory adherence.

G

GGD GHOR Nederland

ggdghor.nl

72

GGD GHOR Nederland is a well-established national umbrella organization representing 25 regional public health (GGD) and safety (GHOR) bureaus in the Netherlands. The organization focuses on advocacy, coordination, and strengthening public health and safety across the country. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to both professionals and the general public. Technically, the site is built on WordPress using FoundationPress, with modern libraries and analytics tools such as Google Tag Manager and Piwik PRO, complemented by Cookiebot for consent management. Security posture is strong with HTTPS and DNSSEC enabled, though some advanced security headers could be added. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms. Overall, the domain registration data aligns well with the organization's claims, supporting legitimacy and trustworthiness.

The website at vimkit.io currently serves only a 404 'Page not found' error page, indicating that the site content is missing or the URL is incorrect. There is no visible business information, contact details, or policies presented on the site. The domain is registered through a privacy proxy service based in the US and was created in 2020, suggesting a relatively new or inactive web presence. Hosting is provided by Netlify, as indicated by the external link to Netlify's support page. The technical infrastructure is minimal with no detected scripts, analytics, or security headers, and DNSSEC is not enabled. Overall, the website lacks content, security best practices, and compliance documentation, resulting in a low trust and security posture.

A

Astrit

astrit.co

55

Astrit.co is a personal portfolio and blog website representing the work and digital presence of an individual named Astrit. The site primarily targets designers, developers, and followers interested in Astrit's creative and technical work. The business model is centered on personal branding and content sharing, with a niche market position. The website is built on WordPress and hosted on Vercel, utilizing standard web technologies such as jQuery and custom JavaScript. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features and comprehensive SEO optimization. Security posture is basic, with no detected security headers or privacy policies, and the domain uses privacy protection services typical for personal sites. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

The website 'cron.re' appears to be a newly launched technology service focused on providing cron-related functionality or tools, as suggested by the site title 'cron'. The domain was registered recently in April 2024, consistent with a new business or product launch. The site uses modern web technologies including React and Next.js, hosted on Vercel, indicating a contemporary and scalable technical infrastructure. However, the website content is minimal with no descriptive business information, contact details, or legal policies visible, which limits user trust and compliance transparency. From a security perspective, the site benefits from HTTPS and a domain status that prevents unauthorized transfers, but lacks standard security headers and any visible security or incident response policies. No privacy or cookie policies were found, which is a compliance gap especially under GDPR. The site uses Vercel Analytics for minimal user tracking but does not provide cookie consent mechanisms or detailed privacy disclosures. Overall, the website demonstrates a solid technical foundation but is immature in terms of content, compliance, and security best practices. The absence of contact information and legal policies reduces business credibility and user trust. Strategic improvements in privacy compliance, security headers, and business transparency are recommended to enhance the site's professionalism and security posture.