Security Directory

C

Sign In · Directus

cg-in.de

50

The website cg-in.de/admin/login hosts a login interface for the Directus application platform, a technology solution likely focused on content or data management. The platform targets developers and administrators requiring secure access to backend services. The site is hosted on a German domain with name servers from lima-city.de, indicating a small-scale or private hosting environment. The website's technical infrastructure leverages modern frontend technologies such as Vue.js, Pinia, and Vue Router, reflecting a contemporary and modular design approach. However, the site is limited to a login page without public-facing business or contact information, privacy policies, or terms of service, which limits transparency and user trust for external visitors.

H

Hostinger

hostinger.co.uk

78

Hostinger is a prominent web hosting provider offering a range of hosting solutions including shared, cloud, and VPS hosting, along with domain registration and website building tools. The company targets individuals and businesses in the UK and globally, positioning itself as an affordable and reliable hosting platform. The website reflects a mature digital presence with modern technologies such as Vue.js and Nuxt.js, supported by Cloudflare CDN and Google Tag Manager for performance and analytics. Security posture is strong with HTTPS enforcement and multiple security headers, although explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data reduces domain registration transparency but does not detract from the professional and trustworthy appearance of the site. Overall, Hostinger demonstrates a solid business and technical foundation with room for improvement in transparency and security communication.

BitLab d.o.o. is a medium-sized technology company based in Bosnia and Herzegovina, specializing in IT solutions including web development, mobile applications, 3D visualization, hosting, e-commerce, and education. Established in 2014, the company has a solid market presence with over 500 completed projects and a diverse client base including government and educational institutions. Their business model focuses on providing comprehensive digital services and products to businesses and organizations in the region. Technically, the website demonstrates a modern technology stack with a variety of backend and frontend frameworks, CMS options, and integration of analytics and social sharing tools. The site is mobile optimized and offers a good user experience with clear navigation and professional design. Hosting appears to be managed internally or through affiliated services, with DNSSEC enabled and SSL certificates in use, indicating a secure infrastructure. From a security perspective, the website benefits from HTTPS and DNSSEC but lacks visible security headers and formal security policies such as privacy or cookie policies. No forms or direct data collection mechanisms were detected in the provided content, reducing immediate risk exposure. However, the absence of privacy and cookie policies indicates compliance gaps, especially regarding GDPR and similar regulations. Overall, BitLab d.o.o. presents a trustworthy and professional online presence with strong business credibility and technical implementation. To enhance security posture and compliance, the company should implement security headers, publish privacy and cookie policies, and consider a vulnerability disclosure policy. These steps will improve user trust and regulatory adherence.

S

Solarplexius

solarplexius.co.uk

65

Solarplexius is a well-established company specializing in car window tinting and sun protection products, serving a broad European market with localized websites. Their business model focuses on e-commerce sales of custom-fit sunshades that block sunlight and reduce heat inside vehicles. The company has a strong market presence with over 500,000 customers and a history dating back to 1988. Technically, the website is built on WordPress with WooCommerce and modern JavaScript frameworks like Vue.js, supported by various marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, although there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR, featuring clear contact channels and trust signals like Trusted Shops certification.

S

StEB Köln

hw-karten.de

49

The website hw-karten.de is a government-affiliated platform operated by StEB Köln, providing flood hazard maps and related public safety information primarily for residents and local authorities in Germany. It offers interactive GIS-based mapping services focusing on flood, groundwater flooding, and heavy rain events. The site is well-branded with consistent government imagery and provides links to official resources and publications. Technically, the site is built using modern JavaScript frameworks such as Vue.js and Vuetify, with mapping functionality powered by OpenLayers and Visdom libraries. The hosting appears to be managed via known server providers, with no blocking or WAF detected, ensuring full accessibility.

S

OZG Service Management

service-digitale-verwaltung.de

53

The website service-digitale-verwaltung.de serves as a digital service management platform primarily targeting German government employees and administrators. It provides a login portal for accessing services related to the Onlinezugangsgesetz (OZG), which aims to digitalize public administration. The platform uses modern frontend technologies such as Vue.js and Vuetify, indicating a contemporary technical infrastructure. However, the website content is minimal, focusing mainly on user authentication without extensive public-facing information or policies. From a security perspective, the site uses HTTPS and secure login forms but lacks visible security headers and published privacy or cookie policies, which are critical for GDPR compliance and user trust. No contact or incident response information is publicly available, limiting transparency. The WHOIS data and hosting setup via Colt nameservers suggest a legitimate and professionally managed domain consistent with government services. Overall, the website is functional for its intended purpose but requires enhancements in privacy compliance, security best practices, and public transparency to improve trust and regulatory adherence. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and providing clear contact and incident response channels.

P

OZG Service Management

pre-service-digitale-verwaltung.de

53

The website 'OZG Service Management' serves as a digital platform for managing government services in Germany, primarily targeting public sector employees or authorized users. It provides a login interface for users to access service management functionalities related to digital public administration. The platform is built using modern web technologies such as Vue.js and Vuetify, indicating a contemporary technical infrastructure. Hosting is provided by Colt, a reputable provider, aligning with the German locale of the service. However, the website lacks public-facing content beyond the login form, and no privacy, cookie, or terms of service policies are present, which limits transparency and compliance visibility. Security-wise, the site uses HTTPS and secure password inputs but lacks visible security headers and incident response information, which are important for robust security posture. Overall, the site is functional but basic in content and compliance, with moderate technical maturity and some gaps in security and privacy practices.

U

University of Oklahoma

soonersports.com

57

The University of Oklahoma's official athletics website serves as a comprehensive digital platform for collegiate sports fans, students, and alumni. It provides extensive coverage of sports news, schedules, rosters, ticketing, and multimedia content, positioning itself as the authoritative source for all things related to University of Oklahoma athletics. The site leverages modern web technologies including Vue.js and Nuxt.js frameworks, hosted on AWS infrastructure with Cloudfront CDN, ensuring fast and responsive user experiences across devices. Privacy and cookie policies are well established and GDPR compliant, reflecting a mature approach to user data protection. Security posture is strong with HTTPS enforced and domain registration locked, though there is room for improvement in publishing explicit security policies and vulnerability disclosures. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical sophistication appropriate for a large educational institution's athletics department.

M

Mississippi State University Athletics

hailstate.com

60

Mississippi State University's official athletics website serves as a comprehensive digital platform for fans, students, and alumni to access sports schedules, rosters, news, and multimedia content related to the Mississippi State Bulldogs. The site is well-positioned as the authoritative source for university athletics information, leveraging a modern technical infrastructure including Vue.js and AWS hosting. The website demonstrates a mature digital presence with good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforcement and domain management best practices, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, the site reflects a professional and trustworthy brand consistent with a large educational institution's athletics department.

U

University of Georgia Athletics

georgiadogs.com

64

The GeorgiaDogs.com website serves as the official athletics platform for the University of Georgia Bulldogs, providing comprehensive sports news, schedules, rosters, ticketing, and merchandise services. It targets sports fans, students, alumni, and media, positioning itself as the authoritative source for university athletics information. The site leverages modern web technologies including Vue.js and the Sidearm Sports CMS, hosted on AWS infrastructure with CDN support for performance optimization. The design is professional, mobile-optimized, and accessible, offering a high-quality user experience with clear navigation and rich content. Security posture is solid with HTTPS enforcement and domain registration protections, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the site is trustworthy, technically mature, and business credible, supporting the university's athletics brand effectively.

B

Baseline

baseline.is

49

Baseline is a technology company founded in 2020 that offers an all-in-one brand platform SaaS solution designed to automate content creation and streamline brand management. The platform targets agencies, small businesses, non-profits, marketing teams, and franchises, providing tools such as brand guides, on-brand templates, and a design editor to help users maintain consistent branding effortlessly. The company has established a credible market presence with over 16,000 brands created and features customer testimonials and case studies that reinforce its trustworthiness. Technically, the website leverages modern JavaScript frameworks like Vue.js, integrates analytics tools such as PostHog and Google Tag Manager, and uses third-party services including AnyChat and Reditus affiliate scripts. Hosting is provided by Hetzner, a reputable provider, and the site employs SSL/TLS encryption with good configuration. The website is well-designed, mobile-optimized, and SEO-friendly, though some accessibility features are basic. From a security perspective, Baseline enforces HTTPS and uses nonce attributes for stylesheets, but lacks explicit security headers and a vulnerability disclosure policy. DNSSEC is not enabled, representing a minor security gap. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but no cookie consent mechanism is evident. Contact information is limited to forms and newsletter subscription, with no direct emails or phone numbers published. Overall, Baseline presents a professional and trustworthy online presence with a solid technical foundation and good business credibility. Strategic improvements in security headers, cookie consent, and direct contact information would enhance its security posture and privacy compliance, further strengthening user trust.

E

EF2

ef2.nl

54

EF2 is a Dutch creative and digital agency specializing in delivering pragmatic and comprehensive digital solutions primarily for non-profit organizations, wholesale businesses, and service providers. The company positions itself as a specialist agency focused on helping clients grow by rediscovering their strengths and renewing their digital presence. Their key services include strategy and concepting, digital and UX design, development, and SEO optimization. The website reflects a professional and consistent brand image with strong client case studies and technology partnerships, indicating a mature market presence. Technically, the website is built using modern JavaScript frameworks such as Vue.js and Nuxt.js, with integrations for analytics and user behavior tracking via Google Analytics, Hotjar, and Leadinfo. The site is mobile-optimized, fast-loading, and well-structured, demonstrating a high level of digital maturity. However, there is a lack of published privacy and cookie policies, which is a notable compliance gap. From a security perspective, the site uses HTTPS and asynchronous script loading, but lacks visible security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, reinforcing the legitimacy of the domain and business. Overall, EF2 presents a trustworthy and professional digital agency with room for improvement in privacy compliance and security transparency. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, and establishing incident response and vulnerability disclosure mechanisms to enhance trust and compliance.

A

Autopay S.A.

autopay.ro

70

Autopay S.A. is a well-established payment processing and fintech solutions provider operating primarily in Romania and Europe. The company offers a broad range of services including card processing, 3DS authentication, API support, and data-driven payment products. It holds important certifications such as PCI DSS and PCI 3DS and is supervised by the Polish Financial Supervision Authority, indicating a strong regulatory compliance posture. The website is professionally designed, mobile-optimized, and provides comprehensive cookie consent mechanisms aligned with GDPR requirements. Technical infrastructure leverages modern frontend frameworks like Vue.js and Bootstrap, with analytics implemented via Matomo and Google Tag Manager. Security practices include HTTPS enforcement and certified payment processing standards, though HTTP security headers could be improved. Overall, the domain registration and WHOIS data are consistent with the business claims, supporting legitimacy and trustworthiness.

A

Autopay S.A.

autopay.eu

74

Autopay S.A. is a well-established payment processing company founded in 1999, offering a broad range of payment solutions including card processing, 3DS authentication, and data-driven insights. The company targets businesses such as e-commerce platforms, fintechs, and payment service providers, positioning itself as a trusted partner with regulatory supervision and certifications like PCI DSS. The website reflects a mature digital presence with modern technologies like Vue.js and Bootstrap, integrated analytics, and a strong cookie consent mechanism. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

A

Autopay

autopay.pl

70

Autopay.pl is a well-established Polish payment solutions provider founded in 2015, offering a range of services including online payments for e-commerce, fleet management solutions, and prepaid phone top-ups. The company targets both business and individual customers primarily in Poland and Europe, positioning itself as a reliable and certified payment service provider with regulatory endorsements from NBP and KNF. The website demonstrates a mature digital presence with modern technologies such as Vue.js and Bootstrap, integrated analytics, and a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy policies are comprehensive and accessible, but explicit contact information and security incident response details are not readily found on the main site. Overall, the site is professional, trustworthy, and optimized for mobile users, supporting Autopay's market position as a credible payment service provider.

O

Oros.pl - pierwsza pożyczka do 7000 zł przez Internet | Oros.pl

oros.pl

60

Oros.pl is a Polish online microloan provider offering loans up to 7000 PLN through a fully digital platform. The website targets Polish consumers seeking quick and easy internet-based loan services. The business model focuses on providing accessible financial products with a simple registration process and flexible repayment options. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on Vue.js, uses Google Tag Manager for analytics, and implements cookie consent mechanisms compliant with GDPR. Security posture is generally good with HTTPS enforced, but lacks some advanced security headers and incident response disclosures. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces trustworthiness. Overall, the site is functional, compliant, and safe for general audiences, but would benefit from enhanced transparency and security practices.

K

Kuki.pl

kuki.pl

62

Kuki.pl is an online financial services provider specializing in offering short-term loans up to 7000 PLN through a fully digital platform targeting Polish consumers. The website presents a professional and modern interface built with Vue.js, incorporating essential features such as a loan calculator, user registration, and multiple repayment options. The company positions itself as a convenient and accessible lender in the Polish consumer finance market. Technically, the website employs modern frontend technologies and integrates standard marketing and analytics tools like Google Tag Manager and Zopim Live Chat. The site is well-optimized for mobile devices and demonstrates good accessibility and SEO practices. Security measures include HTTPS enforcement and standard security headers, alongside a GDPR-compliant cookie consent mechanism. While the website lacks publicly available WHOIS data, likely due to privacy protection, its content and security posture suggest legitimacy. However, the absence of a dedicated security policy page and incident response contacts indicates areas for improvement in transparency and security governance. Overall, Kuki.pl presents a solid digital presence with moderate risk. Strategic enhancements in security documentation and incident response readiness would strengthen trust and compliance.

F

Finbo.pl - pierwsza pożyczka do 7000 zł przez Internet | Finbo.pl

finbo.pl

60

Finbo.pl is an online financial lending platform based in Poland, offering short-term loans with a focus on providing a first free loan up to 7000 PLN. The website targets Polish consumers seeking quick and accessible online loans. The platform uses modern web technologies such as Vue.js and Nuxt.js, providing a responsive and user-friendly interface with a loan calculator and downloadable loan agreement. While the site implements HTTPS and cookie consent mechanisms, it lacks a visible privacy policy and detailed security policies, which are important for compliance and user trust. The absence of WHOIS registrant data reduces transparency but is common in financial services for privacy reasons. Overall, the site presents a professional and functional online lending service with moderate digital maturity and security posture.

C

CM.com

cxcompany.com

74

CM.com is a large technology company specializing in conversational AI cloud platforms that enable businesses to build AI chatbots without coding. Their market position is strong within the AI and telecommunications sectors, offering multi-channel chatbot deployment and customer support automation services. The website reflects a mature digital presence with modern technologies such as Vue.js, Google Tag Manager, and Microsoft Clarity, indicating a high level of digital maturity and performance optimization. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policy and incident response information are not published. Overall, the website and business demonstrate legitimacy and professionalism, with privacy protection applied to WHOIS data, which is common for enterprises of this scale.

C

CM.com

cm.com

73

CM.com is a well-established technology company specializing in AI-powered customer engagement and communication platforms. With over 25 years of experience, it offers businesses seamless omnichannel communication solutions leveraging no-code AI tools. The company targets enterprises seeking to enhance customer journeys and engagement through innovative technology. The website reflects a mature digital presence with professional design and comprehensive content, supporting its market position as a leading communication technology provider. Technically, the website employs modern JavaScript frameworks such as Vue.js, integrates advanced analytics tools like Microsoft Clarity and Google Analytics, and implements robust cookie consent mechanisms via Cookiebot. The site is mobile-optimized, fast-loading, and SEO-friendly, indicating a high level of digital maturity and technical infrastructure quality. From a security perspective, CM.com enforces HTTPS, uses multiple security headers, and maintains ISO 27001 certification, demonstrating a strong commitment to information security. However, the absence of a publicly accessible security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement in transparency and security communication. Overall, CM.com presents a low-risk profile with a professional and trustworthy online presence. Strategic enhancements in security policy disclosure and incident response readiness would further strengthen its security posture and stakeholder confidence.

K

Kenniscentrum Bodemdaling en Funderingen

kbf.nl

62

Kenniscentrum Bodemdaling en Funderingen (KBF) is a Dutch national knowledge center focused on addressing soil subsidence and foundation problems. The organization provides knowledge sharing, expert networking, and practical resources to various stakeholders including homeowners, government officials, agrarians, and politicians. The website positions KBF as a central hub for information and solutions related to these environmental and infrastructural challenges. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and Vue.js, ensuring a responsive and user-friendly experience. SEO and accessibility are well addressed, with structured metadata and clear navigation. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Privacy compliance is strong, with clear policies and consent mechanisms in place. Overall, the site demonstrates a professional and trustworthy digital presence aligned with its mission.

H

Hosting Concepts B.V. d/b/a Registrar.eu

realspin.com

63

RealSpin is an established online gambling platform founded in 2014, offering casino games, live casino, virtual sports, and sports betting primarily targeting Finnish-speaking customers. The website demonstrates a mature business model with multi-language support and a focus on user engagement through bonuses and promotions. Technically, the site employs modern web technologies including Vue.js, Cloudflare DNS/CDN, and integrates marketing and chat tools such as Smartico and Zendesk. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements can be made by enabling DNSSEC and adding explicit security policies. Privacy compliance is good with clear privacy and cookie policies and GDPR indicators. Overall, the site is professional, trustworthy, and well-positioned in the online gambling hospitality sector.

D

DAAD (Deutscher Akademischer Austauschdienst)

study-in-germany.com

65

The website www.study-in-germany.com is an authoritative educational portal aimed at international students interested in studying in Germany. It is supported by the German Academic Exchange Service (DAAD) and the Federal Ministry of Education and Research (BMBF), providing comprehensive information on study planning, visa requirements, financing, and living in Germany. The site is professionally designed with clear navigation and rich content primarily in German, targeting prospective international students. Technically, the site uses modern JavaScript frameworks such as Vue.js and Nuxt.js, with analytics provided by eTracker. The site is mobile-optimized and accessible, with good SEO practices. Security-wise, HTTPS is enforced and cookie consent mechanisms comply with GDPR, but explicit security headers and incident response contacts are not evident. The WHOIS data for the domain is missing or unavailable, which is unusual and reduces trust in domain registration transparency, although the website content and branding strongly suggest legitimacy. Overall, the site scores well on content quality and privacy compliance but has room for improvement in security posture and business credibility transparency.

H

Hosting Concepts B.V. d/b/a Registrar.eu

realspin100.com

65

RealSpin is an established online gambling platform primarily targeting Finnish-speaking users, offering casino games, sports betting, and virtual sports. The website is mature with a domain age of over 9 years, indicating a stable market presence. The platform uses modern web technologies including Vue.js and integrates third-party services for analytics, gamification, and customer support. The business model focuses on user registration, deposits, and betting services with a casino-oriented sportsbook. The site is professionally designed with good user experience and mobile optimization.

S

Study in Germany

study-in-germany.de

65

Study in Germany is an educational information platform targeting international students interested in pursuing higher education in Germany. The website provides comprehensive resources including study programs, visa guidance, and cultural information, positioning itself as a key resource in the education sector focused on Germany. Technically, the site employs modern JavaScript frameworks such as Vue.js and Nuxt.js, ensuring a responsive and user-friendly experience with good SEO and accessibility features. Security-wise, the site enforces HTTPS and includes standard security headers, but lacks a publicly available security policy or incident response contact, which could be improved to enhance trust. The absence of WHOIS data reduces domain trustworthiness, though the website content and structure indicate a legitimate and professional operation. Overall, the site scores well in content quality and security posture but could benefit from improved business credibility transparency and explicit security disclosures.

I

IT-NUM

001.africa

52

001.africa is a cloud services and domain registration provider focused on the African market, particularly offering Africanized domain names and hosting solutions. The company positions itself as a leader with 10 years of experience, targeting developers, startups, SMEs, NGOs, and larger organizations across Africa. Their key offerings include domain registration, web hosting with Plesk and Cpanel, SSL certificates, VPS servers with geolocation, e-commerce solutions, and professional email services. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in French. Technical infrastructure leverages modern frontend technologies such as Vue.js and Bootstrap, with integrations for analytics and live chat support. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and published security policies. Privacy compliance is basic with cookie consent and privacy policies present but no explicit GDPR statements. Overall, the domain registration data aligns well with the business focus and geographic targeting, supporting legitimacy. The website is accessible without WAF or blocking mechanisms, and no suspicious content or vulnerabilities were detected.

I

Input Objects GmbH

inputobjects.eu

57

Input Objects GmbH is a small technology company based in Berlin, Germany, specializing in SaaS product development and bespoke software consulting services. Their website presents a professional image with clear branding and a focus on delivering innovative software solutions to business clients. The company emphasizes long-term partnerships and continuous improvement in their offerings. Technically, the website is built using modern frameworks such as Nuxt.js and PrimeVue, with Tailwind CSS for styling, resulting in a fast and mobile-optimized user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is partially addressed via an external privacy policy, but lacks a cookie consent mechanism. Overall, the site is trustworthy and well-maintained, suitable for its target audience of businesses seeking software development expertise.

R

Repaircafe

repaircafe.org

63

Repair Café is a global community-driven initiative focused on promoting the culture of repair to foster sustainability and reduce waste. The website serves as a platform to connect volunteers and participants worldwide to organize and attend repair events. The organization positions itself as a non-profit with a medium-sized global reach, emphasizing community engagement and environmental responsibility. Technically, the website is built on WordPress using modern plugins such as BuddyPress and Events Manager, with additional technologies like Vue.js and Algolia for enhanced user experience. The site is well-optimized for SEO and mobile devices, though some accessibility features could be improved. Security-wise, the site enforces HTTPS and uses a cookie consent mechanism but lacks some security headers and explicit privacy and terms of service documentation. Overall, the site is trustworthy and professional, though it would benefit from enhanced privacy compliance and security best practices.

S

Stuart

stuart.com

63

Stuart is a leading European urban logistics company specializing in instant, same-day, and next-day delivery solutions for businesses across various sectors including restaurants, grocery, retail, and professional services. The company positions itself as a key player in the urban delivery market, leveraging technology to provide efficient and scalable delivery services. The website reflects a mature digital presence with a modern tech stack primarily based on Vue.js and HubSpot CMS, supported by extensive analytics and marketing tools. Security posture is strong with HTTPS enforcement and security headers, though there is room for improvement in publishing explicit security policies and vulnerability disclosure mechanisms. Overall, Stuart demonstrates a professional and trustworthy online presence aligned with its business objectives.

Lightbug Ltd is a UK-based technology company specializing in the design and manufacture of ultra-long battery life GPS tracking devices and integrated software solutions. Their products target distributors, integrators, and developers seeking reliable, small-sized tracking hardware with advanced features such as RTK high accuracy and environmental sensors. The company emphasizes quality manufacturing in Bristol, UK, and sustainability in operations. Technically, the website employs modern web technologies including Material Design Lite and Vue.js, hosted on AWS infrastructure, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and Cyber Essentials PLUS certification, though improvements are recommended in security headers and published policies. Overall, the site is professional, trustworthy, and business-focused, with no blocking or suspicious content detected.

O

OpenSSL Foundation and OpenSSL Corporation

openssl-communities.org

62

The OpenSSL Communities website serves as a collaborative platform for a diverse range of stakeholders involved in the OpenSSL project, including academics, developers, businesses, and individual contributors. It supports the OpenSSL Foundation and Corporation by facilitating advisory committees that guide business and technical decisions. The site positions itself as a central hub for community engagement and governance in the open source security software space. Technically, the website is built on modern web technologies including Vue.js and Vuetify, hosted behind Cloudflare DNS services. It leverages the Loomio platform for community discussions and collaboration. The site is mobile optimized and demonstrates good design quality and navigation clarity, though some accessibility features could be enhanced. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and important security headers. There is no visible security policy or incident response contact information, which could be improved to enhance trust and compliance. Privacy compliance is partial, with privacy and terms pages present but no cookie policy or consent mechanism detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. The domain registration is consistent and legitimate, supporting the credibility of the site. Strategic recommendations include implementing DNSSEC, adding security headers, publishing a security policy, and introducing cookie consent mechanisms to improve compliance and security posture.

T

Transpond

mpzmail.com

76

Transpond is a small US-based technology company offering an all-in-one marketing platform designed to help businesses create, automate, engage, and analyze their marketing campaigns. The platform includes modern features such as AI content assistance, marketing automations, transactional emails, live chat conversations, and social campaign management, positioning it competitively in the SaaS marketing automation market. The website is professionally designed with clear navigation and mobile optimization, supporting a positive user experience. Technically, the site leverages Vue.js, Google Tag Manager, and CookieYes for consent management, hosted under a reputable registrar with privacy protection. Security posture is good with HTTPS and cookie consent mechanisms, though improvements are recommended in DNSSEC and security headers. Privacy compliance is strong with clear policies and GDPR indicators. Overall, the site reflects a credible and trustworthy business with moderate technical maturity and good privacy practices.

T

Transpond

transpond.io

71

Transpond is a recently founded (2022) SaaS marketing platform focused on providing businesses with easy-to-use tools for email campaigns, automation, live chat, analytics, and social media management. The platform targets small to medium businesses seeking to streamline their marketing efforts through a unified solution. Technically, the website is built using modern JavaScript frameworks (Vue.js) and integrates standard marketing and analytics tools such as Google Tag Manager and CookieYes for consent management. The domain is privacy protected but consistent with the business profile, and the website is professionally designed with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and domain status protections, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the site demonstrates a solid business credibility and technical maturity for a small SaaS company, with room for improvement in security transparency and DNS security.

A

IMBASLOT⚡️Dapatkan Bonus Promo Slot Imba Slot Disini

americancensorship.org

45

The website substitutionpicks.com is a small-scale online platform primarily focused on promoting slot gaming bonuses and related promotions, targeting an Indonesian-speaking mature audience interested in gambling. The business model appears to be affiliate marketing or promotional in nature, without clear business entity information or contact details. Technically, the site uses modern JavaScript frameworks such as Vue.js and integrates multiple third-party marketing and analytics tools including Google Analytics, Facebook Pixel, AppsFlyer, and MoEngage. Hosting is provided by Hawk Host, and the domain is relatively new, registered in 2022 via NameCheap. Security posture is basic, with no DNSSEC enabled and no visible security headers, and privacy compliance is poor due to the absence of privacy and cookie policies. The site is accessible without WAF or blocking mechanisms, but lacks trust indicators and business transparency. Overall, the site presents moderate technical implementation but low business credibility and privacy compliance.

L

LEOLEO Studio

leoleo.studio

61

LEOLEO Studio is a creative agency specializing in brand design, identity, and custom websites. The company positions itself as a multidisciplinary studio offering a range of services including branding, website design, service design, e-commerce solutions, 3D and motion graphics, and social media content. Their market position targets brands seeking innovative and stylish digital presence to define their time. The website showcases a professional portfolio with multimedia content and client testimonials, indicating a strong creative capability and client satisfaction. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, leveraging Prismic CMS for content management. The site is mobile optimized and demonstrates good SEO practices, though accessibility features are basic. Security posture is limited by the absence of visible security headers and privacy policies, and WHOIS data is unavailable due to privacy protection and malformed queries, which slightly reduces trust. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

Hoteliers.com operates as an online platform facilitating direct hotel bookings with discounts by eliminating commission fees. The website targets travelers seeking cost-effective hotel stays by connecting them directly to hotel websites. The platform showcases multiple hotel listings with images, pricing, and direct booking links, emphasizing commission-free benefits. Technically, the site is built using modern JavaScript frameworks such as Vue.js and Nuxt.js, with integration of Google Analytics and Tag Manager for tracking and analytics. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks comprehensive security headers and formal privacy or cookie policies, which are important for compliance and trust. The WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the site presents a moderate risk profile with recommendations to improve privacy compliance, security headers, and domain registration transparency.

H

Halloween Agency

halloween.fr

59

Halloween Agency is an established French communication agency specializing in event management, social media, brand activation, influence, and staffing services. Founded in 1998, the agency operates primarily in France with offices in Paris and Toulouse, targeting businesses seeking comprehensive communication solutions. The website reflects a professional and modern digital presence, leveraging Vue.js and Nuxt.js frameworks, hosted by OVH, and integrating Google Analytics and Tag Manager for analytics and marketing purposes. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking some advanced security headers and explicit privacy and terms policies. Overall, the site demonstrates a mature business with a solid market position but could improve compliance and security transparency.

E

Evangelisch-reformierte Kirche des Kantons St.Gallen

ref-sg.ch

59

The Evangelisch-reformierte Kirche des Kantons St.Gallen operates as a regional religious institution serving the canton of St.Gallen in Switzerland. The website provides information about church services, community events, pastoral care, and educational offerings. It targets local residents and church members, positioning itself as a trusted non-profit religious organization with a medium-sized operational scope. The site is well-branded and consistent, reflecting its established presence in the community. Technically, the website is built on the Contao CMS platform and leverages modern JavaScript libraries such as Vue.js and jQuery, alongside UI components like Slick Carousel and Colorbox. The site is mobile-optimized and offers a moderate performance profile. SEO and accessibility are basic but functional. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and formal security or incident response policies. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a low-risk profile with good business credibility and moderate technical maturity. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance its security posture and compliance.

O

OVH sas

kivy.org

48

Kivy.org represents the official website for Kivy, an open source Python framework designed for rapid development of cross-platform GUI applications. The project is mature, founded in 2010, and hosted by OVH sas in France. It targets developers and businesses seeking to build multi-touch and innovative user interfaces across Windows, Linux, macOS, iOS, and Android platforms. The business model is community-driven, supported by contributors and backers, with sponsorship options available. The website demonstrates a consistent brand and a strong community presence via GitHub and social media channels. Technically, the site uses modern web technologies including Vue.js and Axios, with good mobile optimization and fast performance. Hosting is provided by OVH sas, a reputable provider. SEO and accessibility are basic to good, though no CMS is detected. The site lacks explicit privacy and cookie policies, which is a compliance gap. No security headers were detected in the provided data, and DNSSEC is not enabled, indicating room for security improvements. From a security perspective, the site uses HTTPS and has domain registration protections like clientDeleteProhibited and clientTransferProhibited statuses. However, the absence of security headers, privacy policies, and vulnerability disclosure mechanisms reduces the overall security posture. No critical vulnerabilities or suspicious patterns were found. The WHOIS data is consistent and legitimate, supporting trustworthiness. Overall, Kivy.org is a professional, trustworthy, and technically sound website supporting a well-established open source project. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance its security and compliance standing.

I

ICS INDUSTRIAL CABLES SLOVAKIA, spol. s r.o.

ics-cables.sk

66

ICS INDUSTRIAL CABLES SLOVAKIA, spol. s r.o. is a medium-sized manufacturing company specializing in highly flexible energy cables and customized cable solutions. As part of the SKB-GROUP family business, ICS benefits from a long-standing market presence and a strong reputation for quality and innovation. Their website reflects a professional and modern digital presence, leveraging Vue.js and Inertia.js technologies, hosted likely on DigitalOcean with Cloudflare DNS for performance and security. The company demonstrates commitment to sustainability, evidenced by their EcoVadis Bronze Medal certification. Security posture is strong with HTTPS, security headers, and CSRF protections, although incident response and vulnerability disclosure information are not publicly available. Overall, ICS presents a trustworthy and credible business with a well-structured online presence.

P

PRAKAB Pražská Kabelovna s.r.o.

prakab.cz

69

PRAKAB Pražská Kabelovna s.r.o. is a well-established Czech manufacturer specializing in energy cables, including halogen-free and fire-retardant cables. The company operates as part of the SKB Group, a family-run business with roots dating back to 1891 in Austria, positioning PRAKAB as a reputable player in the energy cable manufacturing sector. Their website reflects a professional and modern digital presence, featuring a comprehensive product catalog, configurator tools, and multilingual support targeting industrial and energy sector clients. Technically, the site leverages modern JavaScript frameworks such as Vue.js and Inertia.js, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, CSRF protections, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high business credibility and digital maturity, supporting PRAKAB's market position as a trusted cable manufacturer.

N

NaturaSì

naturasi.it

61

NaturaSì operates as a large retail e-commerce platform specializing in organic and natural products, primarily targeting health-conscious consumers in Italy. The website is built using modern web technologies such as Vue.js and Vuetify, providing a good user experience with mobile optimization and clear navigation. The site integrates Cookiebot for cookie consent management and Google Consent Mode to restrict ad and analytics storage by default, reflecting a basic level of privacy compliance. However, the absence of visible privacy policies, terms of service, and contact information limits transparency and user trust. Security posture is moderate with HTTPS enforced but lacks additional security headers and explicit incident response information. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security practices.

B

Bio-Planet

bioplanet.be

72

Bio-Planet is a Belgian biosupermarket brand offering organic products through physical stores and an online webshop. It operates under the Colruyt Group umbrella, a well-established retail company. The website provides rich content including promotions, recipes, and store information, targeting general consumers interested in organic and healthy food. The site is professionally designed, mobile-optimized, and uses modern web technologies such as Vue.js and Adobe Experience Manager CMS. Security measures include HTTPS, security headers, and no visible vulnerabilities. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR. WHOIS data is restricted due to DNS Belgium policies but the domain aligns with the business identity and shows no suspicious patterns.

S

SIBA Swiss Insurance Brokers Association

siba.ch

45

SIBA Swiss Insurance Brokers Association is a professional membership organization serving insurance brokers in Switzerland. The website provides information about the association, membership options, education, regulatory guidance, and contact details. The target audience is insurance brokers and related professionals within the Swiss finance sector. The business model is centered on membership services and professional development. The website is well-branded and consistent, with a professional design and clear navigation primarily in German with French language options. Technically, the site uses a modern JavaScript framework (Vue.js) and includes Typekit fonts for typography. The performance is moderate with good mobile optimization. However, SEO and accessibility features are basic, and no structured data or advanced metadata are present. The site is served over HTTPS but lacks visible security headers and cookie consent mechanisms. From a security perspective, the site has a basic security posture with HTTPS enabled but no advanced security headers or published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a privacy policy present but no cookie consent or GDPR compliance indicators. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy with room for improvement in security practices, privacy compliance, and technical SEO. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and enhancing accessibility and SEO.

R

responsiblo s.r.o.

responsiblo.com

60

responsiblo s.r.o. operates a specialized smart education platform targeting businesses in regulated sectors such as alcohol, gambling, tobacco, pharmaceuticals, and financial services. The platform offers interactive, customizable educational content designed to promote responsible product use and help companies meet CSR and regulatory compliance requirements. The company is positioned as an innovative leader in responsible business education with a focus on leveraging AI and machine learning for tracking and analytics. Technically, the website uses modern web technologies including Vue.js and is well-optimized for mobile and SEO, though some security headers and cookie consent mechanisms are missing. The security posture is solid with HTTPS enabled and no exposed sensitive data, but improvements in DNS security and explicit security policies are recommended. Overall, the website is professional, trustworthy, and mature-audience oriented due to the nature of the industries served.

B

BIWAC Digital Solutions

biwac.ch

59

BIWAC Digital Solutions is a Swiss-based digital agency specializing in custom websites, web applications, and e-commerce solutions, serving over 500 SMEs and institutions for more than 25 years. Their market position is that of a trusted local provider with a strong portfolio and a focus on modern technologies such as Silverstripe CMS, Magento, and JavaScript frameworks like React and Vue. The company targets primarily Swiss SMEs and institutions, offering tailored digital solutions including photography, SEO, and newsletters. Technically, the website is built on Silverstripe CMS 5.2 and integrates multiple modern technologies and frameworks. It demonstrates good mobile optimization, accessibility, and SEO practices. The site uses HTTPS with a solid SSL configuration and employs consent-based analytics tools including Google Analytics, Microsoft Clarity, and Leadinfo. Accessibility is enhanced by the UserWay widget. From a security perspective, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security policy pages and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's stated history and no privacy protection that would obscure legitimacy. Overall, the website presents a professional, trustworthy, and secure digital presence with minor areas for improvement in security transparency and policy disclosures. The risk level is low, and the company demonstrates a mature digital and security posture.

B

Biomondo

biomondo.ch

68

Biomondo is an online marketplace focused on organic products in Switzerland, connecting consumers directly with regional bio farms. The website presents a professional and modern design using Vue.js and Vuetify frameworks, indicating a moderate level of digital maturity. The platform emphasizes regional and organic product offerings, targeting environmentally conscious consumers within Switzerland. Technically, the site uses HTTPS and includes a cookie consent mechanism via Cookiebot, but lacks visible privacy policies, terms of service, and security headers, which are important for compliance and security posture. No contact information or incident response details are readily available, which may impact user trust and regulatory compliance. Overall, the website is functional and secure at a basic level but would benefit from enhanced transparency and security practices.

R

Reisebüro Mittelthurgau Fluss und Kreuzfahrten AG

mittelthurgau.ch

60

Reisebüro Mittelthurgau Fluss und Kreuzfahrten AG is a Swiss travel agency specializing in sustainable and premium river cruises across Europe. The company offers a variety of travel packages including themed cruises, gourmet festivals, solo travel, and worldwide cruises, targeting discerning travelers interested in luxury and eco-friendly travel experiences. The website reflects a mature digital presence with a focus on user experience and clear business communication. Technically, the site leverages modern web technologies such as Vue.js and Concrete5 CMS, supported by robust analytics and marketing tools including Google Tag Manager, Hubspot, and Mouseflow. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Overall, the site demonstrates good compliance with privacy regulations and provides comprehensive contact and business information, reinforcing trustworthiness.

P

Printful

printful.me

69

Printful is a leading print-on-demand and dropshipping platform that enables entrepreneurs and brands to design, create, and sell custom products online without managing inventory. The company offers extensive integrations with popular e-commerce platforms and provides tools for product customization and fulfillment. The website reflects a mature, professional business with strong branding and trust indicators, including high customer ratings and partnerships with well-known brands. Technically, the website employs modern web technologies such as Vue.js, Bootstrap, and Webpack, alongside analytics and error tracking tools like Google Analytics, Google Tag Manager, and Sentry. The site is optimized for performance and mobile responsiveness, with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, uses security headers, and implements CSRF protections. However, it lacks a publicly visible dedicated security policy or incident response contact information, which could enhance transparency and trust. The WHOIS data is unavailable, which raises minor concerns but does not detract significantly from the site's legitimacy given its established market presence. Overall, Printful's website demonstrates a strong digital maturity and business credibility, with recommendations to improve security transparency and WHOIS data availability to further strengthen trust and compliance.

S

Schellenberg Druck AG

klebebinder.ch

50

Schellenberg Druck AG is a well-established Swiss family-owned printing company with over 60 years of experience, specializing in traditional and digital print media and marketing instruments. As part of the Schellenberg Gruppe, it holds a strong market position in the manufacturing and media sectors, offering comprehensive services from consulting and publishing to production, finishing, and logistics. The company emphasizes sustainability and social responsibility, supported by ISO certifications and a broad network of subsidiaries. Technically, the website employs modern web technologies including Vue.js, UKit, and Matomo analytics, with a CMS based on Cockpit. The site is mobile-optimized and provides a good user experience, although some accessibility features could be improved. Security posture is strong with HTTPS and secure forms, but lacks visible cookie consent and dedicated security policies. Overall, the security posture is solid with no detected vulnerabilities or exposed sensitive data. The domain registration is consistent with the business claims, enhancing trustworthiness. However, privacy compliance could be enhanced by implementing cookie consent mechanisms and publishing security policies. Strategic recommendations include improving privacy compliance, publishing security and incident response policies, enhancing security headers, and further improving accessibility and transparency to strengthen trust and compliance.