Security Directory

T

Tampereen kaupunki

tampere.fi

74

Tampereen kaupunki operates as the official municipal government website for the city of Tampere, Finland, providing residents and visitors with comprehensive access to city services, news, and online transactions. The website is positioned as a key digital gateway for public sector services, reflecting a large-scale government entity with a focus on accessibility and user engagement. The business model centers on public service delivery with no commercial intent, targeting local citizens and stakeholders. Technically, the site leverages Drupal 10 as its CMS, integrates Matomo for analytics, and employs CookieInformation for consent management, indicating a mature digital infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, supported by modern web technologies and performance optimizations such as lazy loading and asynchronous script loading. From a security perspective, the website enforces HTTPS with strong SSL configurations and implements essential security headers. The presence of a cookie consent mechanism and a comprehensive privacy policy aligns with GDPR compliance requirements. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the site exhibits a strong security posture and trustworthy business credibility, with no detected vulnerabilities or suspicious activities. Strategic recommendations include publishing detailed security and incident response policies, implementing a security.txt file for vulnerability disclosures, and enhancing transparency around data protection officer contacts to further strengthen compliance and user trust.

N

Naantali

naantali.fi

75

Naantali.fi is the official website of the city of Naantali, Finland, serving as a portal for municipal services, tourism information, and community engagement. The site targets residents including families, youth, elderly, immigrants, and tourists, providing localized content in Finnish with options for English and Swedish. The business model is that of a government entity focused on public service delivery and regional promotion. The website is well-branded and consistent with municipal identity, featuring a professional design and clear navigation.

R

Raision Kaupunki

raisio.fi

63

Raisio.fi is the official website of Raision Kaupunki, the municipal government of Raisio city in Finland. The site provides comprehensive information and services related to housing, environment, city planning, and public events targeted primarily at residents, immigrants, and tourists. The website is built on Drupal 10 and incorporates modern web technologies including Matomo analytics and CookieHub for cookie consent management. The site demonstrates good design quality, clear navigation, and mobile optimization, reflecting a mature digital presence for a local government entity. From a security perspective, the website enforces HTTPS and uses a consent management platform, but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with cookie consent mechanisms present but no explicit privacy policy or terms of service pages found in the analyzed content. WHOIS data confirms the domain is legitimately registered to the city of Raisio with consistent registration details and a long domain age, supporting trustworthiness. Overall, Raisio.fi presents a secure and professional municipal website with room for improvement in privacy transparency and DNS security. The site is safe for general audiences and does not contain any adult or questionable content.

T

Turun kaupunki

turku.fi

65

The website www.turku.fi is the official digital portal for the City of Turku, Finland. It serves as a comprehensive platform providing residents, businesses, and visitors with access to municipal services, cultural events, educational resources, and administrative information. The site is well-structured, professionally designed, and offers multilingual support, reflecting a mature digital presence for a large government entity. The business model is focused on public service delivery and community engagement, positioning Turku as a transparent and accessible city administration.

C

Crème fraîche

creme-fraiche.lu

59

Crème fraîche is a Luxembourg-based video contest platform targeting young people aged 12 to 30, focusing on promoting creativity and film-making through organized contests and events. The website provides detailed information about contest editions, winners, and related cultural activities, positioning itself as a niche media and cultural event organizer in Luxembourg. The platform leverages modern web technologies including Drupal 10 and Alpine.js to deliver a responsive and engaging user experience, optimized for mobile devices and accessibility. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security policies and headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible platform. Overall, the website demonstrates good professionalism and trustworthiness, supported by active social media channels and clear business focus.

D

Deng Zukunft - Däi Wee

dzdw.lu

63

The website 'Deng Zukunft - Däi Wee' serves as an informational platform primarily targeting young people and their parents in Luxembourg, offering guidance on education and career paths. The site is built on Drupal 10 CMS and employs modern frontend technologies such as Alpine.js and Tailwind CSS, indicating a contemporary technical infrastructure. The website is mobile-optimized and accessible, with a clear navigation structure and professional design. Security measures include HTTPS enforcement and a cookie consent mechanism compliant with GDPR requirements. However, the absence of WHOIS data and lack of explicit business contact information limit the overall business credibility assessment. No security policy or incident response information is provided, which could be improved to enhance trust and compliance. Overall, the site presents a solid digital presence with room for improvement in transparency and security documentation.

J

Jyväskylän kaupunki

jyvaskyla.fi

67

Jyväskylän kaupunki operates as the official municipal government website for the city of Jyväskylä, Finland. It provides comprehensive information and services related to municipal administration, culture, events, and public services targeted primarily at residents and visitors. The website is positioned as the authoritative source for city-related information and services, supporting citizen engagement and municipal transparency. Technically, the site is built on Drupal 10 CMS, leveraging modern web technologies, including a robust cookie consent mechanism and integration with reputable third-party analytics and content delivery networks. The site demonstrates good digital maturity with mobile optimization, accessibility features, and SEO best practices. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance aligned with GDPR. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving as a reliable digital platform for municipal services.

C

Cactus

cactus.lu

58

Cactus is a well-established retail supermarket chain based in Luxembourg, offering a broad range of products including fresh food, household goods, and additional services such as restaurants, home delivery, and customer loyalty programs. The website is professionally designed using Drupal 10 and incorporates modern frontend technologies and analytics tools, indicating a mature digital presence. Security posture is moderate with HTTPS usage and anonymized IP tracking in analytics, but lacks explicit security headers and published privacy policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness from a registration perspective, though the website content and branding strongly suggest a legitimate business. Overall, the site provides a good user experience with clear navigation and mobile optimization.

Å

Ålandstrafiken

alandstrafiken.ax

70

Ålandstrafiken is a regional transportation company operating ferry and bus services in the Åland Islands, Finland. The website serves as an informational portal for residents and visitors seeking public transport options. The company appears to be a medium-sized essential entity within the transportation sector, with a clear focus on regional mobility services. The website is built on Drupal 10 and integrates modern technologies such as Matomo for analytics and CookieYes for cookie consent management, reflecting a moderate level of digital maturity. Accessibility is enhanced through the BrowseAloud tool, indicating attention to inclusive design. Security posture is solid with HTTPS enforced and standard security headers present, although explicit privacy and security policies are missing. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

S

SCRIPT

heydoo.lu

47

Heydoo.lu is an official educational content platform operated under the auspices of Luxembourg's Ministry of National Education, Childhood and Youth, branded as SCRIPT. The platform aggregates a wide range of educational materials including publications, audio, video, apps, and websites, targeting students, teachers, parents, and educators. It supports multilingual content in Luxembourgish, French, and German, enhancing accessibility for its diverse audience. The website is built on Drupal 10 with modern UI frameworks and integrates analytics tools such as Google Analytics and Facebook Pixel for user behavior insights. Technically, the site demonstrates a solid infrastructure with good mobile optimization, accessibility, and SEO practices. Security posture is adequate with HTTPS enforced and anti-bot measures, though some security headers could be improved. Privacy compliance is strong, featuring comprehensive privacy and cookie policies aligned with GDPR requirements. Contact information is primarily provided via a contact form, with no direct emails or phone numbers publicly listed. The absence of WHOIS data due to a malformed domain query limits domain registration trust analysis. However, the official government affiliation and quality content strongly support the site's legitimacy. No adult or questionable content is present, making it safe for general audiences. Overall, Heydoo.lu is a credible, well-maintained educational resource platform with room for minor security enhancements.

F

Fintraffic

fintraffic.fi

76

Fintraffic is a Finnish public sector entity specializing in providing and developing traffic control and management services across all transportation modes, including rail, road, maritime, and air traffic. The organization positions itself as a key national operator ensuring traffic safety and efficiency in Finland. The website reflects a mature digital presence built on Drupal 10, leveraging cloud hosting platforms such as AWS and Microsoft Azure, and integrates reputable analytics and monitoring tools like Piwik Pro, Matomo, and New Relic. The site demonstrates good mobile optimization, accessibility, and SEO practices, supporting a positive user experience for its target audience of general public and transportation stakeholders. Security posture is strong with HTTPS enforcement and a comprehensive cookie consent mechanism, although explicit security policies and incident response information are not found in the provided content. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with no signs of blocking or WAF interference.

M

Maanmittauslaitos

maanmittauslaitos.fi

60

Maanmittauslaitos is the National Land Survey of Finland, a government agency responsible for providing authoritative land, real estate, and geographic information services. The website serves both the general public and professional users, offering access to property data, maps, research, and online service portals. It holds a strong market position as the official national provider of these services in Finland. The site is multilingual and professionally designed, reflecting its role as a trusted government resource. Technically, the website is built on Drupal 10, utilizing modern web technologies and libraries such as Modernizr and JS-Cookie. It features good mobile optimization, accessibility, and SEO practices. The site integrates a chat service powered by Elisa and uses Siteimprove for analytics and quality monitoring. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively supports its mission as a government information provider with a secure and user-friendly digital presence.

C

culture.lu, Inc.

culture.lu

47

culture.lu is a specialized cultural portal serving the Luxembourg cultural community and enthusiasts. It offers a variety of content including articles, videos, podcasts, event listings, calls for participation, and job offers, positioning itself as a key media hub in the Luxembourg cultural sector. The website is built on Drupal 10 with modern web technologies and integrates social media and newsletter marketing tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some HTTP security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie management. The absence of explicit contact information and terms of service pages is noted but does not significantly detract from overall credibility. The domain registration aligns well with the website's cultural and governmental affiliations, supporting legitimacy. Overall, culture.lu presents a professional, trustworthy, and content-rich platform for its target audience.

C

Chambre des députés du grand-duché de Luxembourg

chd.lu

54

The website www.chd.lu is the official online presence of the Luxembourg Parliament, providing comprehensive information about parliamentary sessions, deputies, commissions, legislative documents, and public engagement tools. It serves a broad audience including citizens, researchers, and media, offering multilingual content and multimedia resources. The site is built on Drupal 10, indicating a modern and maintainable technical infrastructure with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced, though some improvements such as security headers and cookie consent mechanisms could enhance compliance and protection. The absence of WHOIS data is likely due to registry restrictions rather than privacy concerns, but it slightly impacts trust scoring. Overall, the site is professional, trustworthy, and well-positioned as a government information portal.

C

Cour grand-ducale de Luxembourg

monarchie.lu

52

The website monarchie.lu is the official online presence of the Grand-Ducal Court of Luxembourg, providing authoritative information about the Grand-Ducal family, the constitutional monarchy, and related governmental activities. It serves as a key communication channel for citizens and interested parties, offering news, official reports, and educational content including a dedicated kids subdomain. The site is well-positioned as a trusted government resource with consistent branding and multilingual support. Technically, the site is built on Drupal 10, leveraging modern web technologies and includes accessibility features and mobile optimization. It uses Matomo analytics with privacy-conscious configurations. Hosting is managed via Luxembourg government infrastructure, ensuring alignment with the official nature of the content. Performance is moderate with good SEO and metadata implementation. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms. However, it lacks explicit security headers, a published security policy, or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with GDPR considerations evident in cookie management and privacy policy presence. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government entity. Strategic improvements in security transparency and incident response communication would further enhance its posture.

L

Luonnonvarakeskus (Luke)

luke.fi

63

Luonnonvarakeskus (Luke) is a Finnish government research and expert organization focused on building wellbeing and a sustainable future through renewable natural resources. The website serves as a comprehensive portal offering research, expert services, statistics, policy recommendations, and publications targeted at researchers, policymakers, and stakeholders in the bioeconomy and environmental sectors. The site is built on Drupal 10, employs modern web technologies, and integrates privacy-compliant analytics and cookie consent mechanisms. Security posture is strong with HTTPS and security headers in place, though explicit security policies and incident response information are not prominently published. Overall, the website reflects a mature digital presence consistent with a large government entity, providing trustworthy and professional content.

F

Fintraffic

tmfg.fi

76

Fintraffic is a Finnish public service organization specializing in traffic management and safety across all transportation modes. The website reflects a mature digital presence with a modern Drupal 10 CMS infrastructure, integrated with advanced cookie consent management and analytics tools such as Matomo and Piwik Pro. The site demonstrates strong compliance with GDPR and privacy regulations, providing detailed cookie policies and user consent mechanisms. Security posture is robust with HTTPS enforcement and multiple security headers, though explicit security and incident response policies are not publicly detailed. Overall, the website is professional, trustworthy, and well-optimized for user experience and accessibility.

S

Suomen ympäristökeskus

syke.fi

65

Suomen ympäristökeskus (Syke) is a Finnish governmental environmental research and expert center providing comprehensive environmental data, research, and services. The website serves as a portal for information about their activities, projects, publications, and open job positions, targeting environmental professionals, authorities, researchers, and the general public interested in environmental issues. The organization has a strong market position as a key national environmental authority in Finland, with a large operational size and a 30-year history. Technically, the website is built on Drupal 10, uses modern web technologies including SVG graphics, Google Tag Manager for analytics, and CookieHub for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with good performance characteristics. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not published. Overall, the site demonstrates a mature digital presence with strong privacy compliance and business credibility. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. No suspicious or malicious indicators were found. Strategic recommendations include publishing explicit security and incident response policies, adding vulnerability disclosure mechanisms, and enhancing direct contact options for security matters.

Y

Ympäristöministeriö (Finnish Ministry of the Environment) and associated Finnish environmental authorities

ymparisto.fi

60

Ymparisto.fi is the official Finnish government environmental portal providing comprehensive information and resources to support sustainable decision-making by citizens, workers, and policymakers. It is backed by key Finnish environmental authorities, ensuring authoritative and trustworthy content. The website is built on Drupal 10, employs modern web technologies, and offers excellent mobile optimization and accessibility. Privacy and cookie policies are well implemented with active consent mechanisms. Security posture is strong with HTTPS and best practices observed, though explicit security policy and incident response contacts are not published. Overall, the site is professional, trustworthy, and serves as a critical public service platform for environmental awareness and engagement in Finland.

C

Center for Sustainable Energy

energycenter.org

70

The Center for Sustainable Energy is a well-established nonprofit organization focused on advancing decarbonization through sustainable, equitable, and resilient transportation, buildings, and communities. Their services include program implementation, advisory, incentive management, policy analysis, and outreach, supported by their proprietary software platform Caret® for electric vehicle policy. The organization targets government agencies, utilities, policymakers, and clean energy stakeholders, positioning itself as a national leader in clean energy program management. Technically, the website is built on Drupal 10 with modern frameworks such as Bootstrap and FontAwesome, and integrates analytics and marketing tools like Google Analytics, Google Tag Manager, and Marketo. The site is mobile-optimized, accessible, and SEO-friendly, hosted likely via GoDaddy infrastructure. Performance is moderate with good technical implementation. From a security perspective, the site uses HTTPS and follows some best practices like external link security attributes, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows a long-established domain with privacy protection appropriate for a nonprofit. Overall, the website is professional, trustworthy, and content-rich, with minor gaps in privacy compliance and security headers. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing security policies to enhance trust and compliance.

C

Center for Sustainable Energy

theapostolicchurch.org

60

The Clean Vehicle Grants Project website serves as the official information portal for the California Clean Vehicle Rebate Project (CVRP), administered by the Center for Sustainable Energy on behalf of the California Air Resources Board. It provides comprehensive resources including eligibility guidelines, rebate application access, FAQs, and program updates targeted at California residents and businesses interested in electric vehicle incentives. The site is positioned as an authoritative source within the clean energy and transportation sectors, supporting California's sustainability goals. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrations such as Google Analytics, Google Tag Manager, and social media pixels for marketing and analytics purposes. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable delivery and moderate performance. Mobile optimization and accessibility features are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs domain registration protections but lacks DNSSEC and advanced security headers, which are recommended for enhanced security posture. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Contact information is clearly provided with multilingual support, enhancing trust and accessibility. Overall, the website demonstrates a solid business credibility and technical foundation with room for improvement in security hardening and privacy compliance. The domain registration details align well with the business purpose, supporting legitimacy and trustworthiness.

R

RONAL GROUP

ronal-wheels.com

59

RONAL GROUP operates an international website focused on manufacturing and supplying high-quality automotive wheels. The company offers a variety of wheel products including forged and winter wheels, targeting automotive dealers and vehicle owners globally. The website is professionally designed using Drupal 10 CMS, incorporating modern web technologies such as Vue.js and jQuery, and includes multimedia content and configurator tools to enhance user engagement. Privacy and cookie compliance are well implemented with a comprehensive privacy policy and an interactive cookie consent mechanism. However, the absence of WHOIS registration data for the domain www.ronal-wheels.com raises concerns about domain legitimacy, despite the professional appearance and active social media presence. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, but the lack of explicit security policies and incident response contacts suggests room for improvement. Overall, the website presents a credible business front but should address domain registration transparency to enhance trust.

Z

ZAPA beton

zapa.cz

54

ZAPA beton is a Czech Republic-based large manufacturing company specializing in the production, delivery, and placement of concrete products. The company operates multiple branches and emphasizes sustainability and innovation in concrete technology, such as their ZAPA QCC and ZAPA NEXT products. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility features. It provides clear navigation and relevant content for construction professionals and students. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

B

Bureau Veritas Latvia

bureauveritas.lv

68

Bureau Veritas Latvia operates as a local branch of the global leader in testing, inspection, and certification services. The company offers a broad portfolio of services including quality, safety, environmental certifications, verification services for emissions and sustainability, inspections, audits, and professional training. Their market position is strong, supported by global brand recognition and multiple accreditations. Technically, the website is built on Drupal 10, integrates modern consent management and analytics tools, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR, providing a reliable digital presence for the business.

K

Královehradecký kraj

kr-kralovehradecky.cz

63

Královehradecký kraj operates an official regional government website providing comprehensive information about the regional administration, public services, news, and community resources. The site targets residents and stakeholders within the Královéhradecký region of the Czech Republic, offering key services such as contact directories, grant information, and cultural portals. The website is built on a modern Drupal 10 CMS platform, utilizing contemporary web technologies including Bootstrap and Google Tag Manager, ensuring a responsive and accessible user experience. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms compliant with GDPR, reflecting a mature privacy posture. However, the absence of security headers and a security.txt file indicates room for improvement in security best practices. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The lack of WHOIS data is unusual but likely due to registry or query limitations rather than malicious intent, given the official nature of the site. Overall, the website demonstrates a solid technical infrastructure and professional presentation consistent with government standards. It maintains good privacy compliance and user trust indicators, including clear contact information and social media engagement. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to further strengthen security posture.

S

Sportovní a rekreační areál Kraví hora

kravihora-brno.cz

59

Sportovní a rekreační areál Kraví hora is a public sports and recreational facility located in Brno, Czech Republic, offering a variety of services including indoor and outdoor swimming pools, sauna, ice rinks, and multiple sports fields. The website serves local residents and sports enthusiasts, providing information on facility status, booking options, and events. The business operates primarily as a community-focused sports venue with a medium-sized presence in the hospitality and government sectors. Technically, the website is built on Drupal 10 CMS, utilizing modern JavaScript libraries and Google Analytics with privacy-conscious configurations such as IP anonymization. The site is mobile-optimized, accessible, and includes cookie consent mechanisms, reflecting a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks visible security headers and published security policies or incident response information. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this type of public facility. Overall, the site demonstrates a good security posture but could improve transparency and technical security controls. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy policy publication, security headers, and incident response disclosures would enhance trust and compliance.

S

SAKO Brno, a.s.

sako.cz

69

SAKO Brno, a.s. is a large waste management company based in Brno, Czech Republic, providing comprehensive services including waste collection, sorting, and energy recovery. The company targets citizens, businesses, and municipalities with a strong local market presence and multiple related projects such as ReSAKO and specialized collection centers. The website is professionally designed using Drupal 10, with modern tracking and cookie consent technologies, ensuring good user experience and compliance with GDPR. Security posture is solid with HTTPS and cookie consent, though lacking explicit security headers and published security policies. WHOIS data is unavailable, limiting domain trust assessment, but the website's transparency and social presence support legitimacy. Overall, the site is well-structured, secure, and compliant, serving as a reliable digital front for the company.

K

KULTINO*

kult.cz

47

KULTINO* is a Czech regional cultural magazine focused on Brno and surrounding areas, offering a quarterly printed magazine and a comprehensive online platform featuring articles, interviews, reviews, and event listings. The website is professionally designed using Drupal 10 CMS and integrates modern web technologies and analytics tools, indicating a mature digital presence. Social media channels on Facebook, Instagram, and YouTube support audience engagement. Security posture is moderate with HTTPS usage and cookie consent but lacks explicit privacy policy and security headers. WHOIS data is unavailable, limiting domain trust assessment but the website content and partner references suggest legitimacy. Overall, the site is well-positioned as a trusted cultural media outlet in its region.

D

Dopravní podnik města Brna, a. s.

dpmb.cz

62

Dopravní podnik města Brna, a. s. (DPMB) is the primary public transportation operator in Brno, Czech Republic, providing bus, trolleybus, tram, and boat services to tens of thousands of daily passengers. The company maintains a professional and comprehensive website built on Drupal 10, offering detailed transport information, ticketing options, and service updates. The site is well-branded, mobile-optimized, and accessible, targeting residents and visitors of Brno. Technically, the website employs modern web technologies including Google Tag Manager and CookieHub for analytics and cookie consent management. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. WHOIS data is unavailable due to privacy protection, which is common and justified for this type of public entity. Overall, the website demonstrates a mature digital presence with strong business credibility and compliance with privacy regulations.

V

Visit Costa Rica

costaricapuremeetings.com

66

Visit Costa Rica's meetings page is a professionally designed tourism and event promotion website focused on attracting business meetings and events to Costa Rica. The site highlights the country's sustainability leadership, connectivity, and meeting infrastructure, targeting event planners and professionals. Technically, the site uses Drupal 10 CMS, integrates Google Tag Manager and reCAPTCHA, and employs cookie consent management via OneTrust, reflecting a modern digital infrastructure. Security posture is generally good with HTTPS and anti-bot measures, but lacks explicit security headers and visible security policies. WHOIS data is missing, which reduces transparency and trust slightly. Overall, the site is functional, well-branded, and suitable for its business purpose but could improve privacy and security disclosures.

B

Bundesverband der Deutschen Luft- und Raumfahrtindustrie e.V. (BDLI)

bdli.de

61

The Bundesverband der Deutschen Luft- und Raumfahrtindustrie e.V. (BDLI) is a prominent German aerospace industry association representing a broad spectrum of companies from engineering service providers to international system manufacturers. The website serves as the official digital presence, providing industry news, campaigns, event information, and member services. It targets industry stakeholders, policymakers, and professionals interested in aerospace and defense sectors. Technically, the site is built on Drupal 10, leveraging modern analytics (Matomo) and consent management (Usercentrics), ensuring GDPR compliance and a good user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Overall, the site is professional, trustworthy, and well-maintained, reflecting the organization's authoritative market position.

E

Evoluma Klaster Przemysłowy

evoluma.pl

62

Evoluma Klaster Przemysłowy is a Polish industrial cluster that connects over 50 members and partners, employing more than 5,000 people and operating in 36 export markets. The cluster focuses on fostering cooperation, innovation, and development within the industrial sector, offering networking, project support, and event organization services. The website is built on Drupal 10 and integrates modern analytics and marketing tools such as Google Tag Manager and Google Analytics. It features a cookie consent mechanism compliant with GDPR requirements, although no explicit privacy or terms of service pages were found. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks published security policies or incident response contacts. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website presents a professional and trustworthy digital presence for the industrial cluster.

U

UCB

ucbcaresforneurology.fr

38

The website ucbcaresforneurology.fr is a specialized healthcare support site related to UCB, focusing on neurology patient support and information. Currently, the site is under maintenance and contains no active content beyond a maintenance notice and links to related UCB websites. The technical infrastructure is based on Drupal 10 CMS and hosted with Microsoft Azure DNS services, indicating a modern and scalable platform. However, the lack of active content, privacy policies, and contact information limits its current utility and trustworthiness. From a security perspective, the site uses HTTPS (implied by Azure DNS and modern hosting), but no explicit security headers or policies are detected. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies and incident response contacts indicates compliance gaps. The WHOIS data is consistent and appropriate for the business, with no privacy protection used, supporting legitimacy. Overall, the site scores low on content quality due to its maintenance status but shows moderate technical implementation and business credibility. Security posture and privacy compliance require improvement. The site is safe with no adult or questionable content detected. Strategic recommendations include publishing privacy and cookie policies, adding contact and incident response information, implementing security headers, and improving content availability to enhance user trust and compliance.

I

ICON plc

iconplc.com

68

ICON plc is a globally recognized clinical research organization (CRO) specializing in outsourced clinical development and commercialization services for the pharmaceutical, biotechnology, and medical device sectors. The company positions itself as a leader in the clinical research industry, offering a broad range of solutions including clinical operations, consulting, healthcare intelligence, and strategic services. Their website reflects a mature enterprise with a comprehensive service portfolio targeting industry professionals and stakeholders. Technically, the website is built on Drupal 10, leveraging modern web technologies and third-party integrations such as Google Tag Manager and performance monitoring tools. The site demonstrates good mobile optimization, accessibility, and SEO practices, indicating a high level of digital maturity. Hosting appears to be supported by Akamai CDN services, enhancing performance and reliability. From a security perspective, the site enforces HTTPS with strong SSL configurations and includes multiple security headers. Privacy compliance is well addressed with visible cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. However, explicit security policies, incident response information, and vulnerability disclosure mechanisms are not publicly evident, representing areas for improvement. Overall, the website presents a professional and trustworthy digital presence consistent with an enterprise-level healthcare CRO. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's legitimacy given the strong branding and content quality. Strategic recommendations include enhancing transparency around security policies and incident response, and publishing vulnerability disclosure information to further strengthen trust and compliance.

S

Schréder

schreder.com

64

Schréder is a globally recognized independent smart lighting solution provider focused on enhancing safety, well-being, and sustainability in public spaces. Their offerings include advanced lighting design, engineering, manufacturing, and connected lighting solutions tailored for municipalities, industries, and transport sectors. The website reflects a mature digital presence built on Drupal 10, incorporating modern analytics and cookie consent mechanisms. Security posture is adequate with HTTPS and consent management but lacks explicit security headers and published security policies. WHOIS data is unavailable, which slightly impacts trust but the professional branding and content quality support business credibility. Strategic recommendations include improving transparency with privacy and security policies and enhancing security headers to strengthen trust and compliance.

H

Het Scheepvaartmuseum

hetscheepvaartmuseum.com

67

Het Scheepvaartmuseum, also known as The National Maritime Museum, is a prominent cultural institution in the Netherlands specializing in maritime history and exhibitions. The museum boasts one of the largest maritime collections globally, with approximately 400,000 objects. The website serves as an informational and ticketing platform targeting general audiences interested in maritime culture and history. Technically, the site is built on Drupal 10 CMS and incorporates modern JavaScript libraries and marketing tools such as Visual Website Optimizer (VWO) for analytics and optimization. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The absence of WHOIS data for the domain is a notable anomaly that requires further investigation to confirm domain legitimacy. Overall, the website is professionally maintained and trustworthy but could enhance transparency and security posture.

H

Het Scheepvaartmuseum

hetscheepvaartmuseum.nl

69

Het Scheepvaartmuseum is a prominent maritime museum in the Netherlands showcasing 500 years of Dutch maritime history with one of the world's largest maritime collections. The website is built on Drupal 10 and incorporates modern web technologies and tracking tools such as Cookiebot for consent management and Visual Website Optimizer for analytics and optimization. The site is well-branded, mobile-optimized, and provides rich content aimed at families, tourists, and maritime enthusiasts. However, explicit privacy policies and terms of service are not found in the provided content, which could be improved to enhance compliance and user trust. Security posture is strong with HTTPS and consent mechanisms, but lacks explicit incident response contacts or vulnerability disclosure information.

S

Stage Entertainment

stage-entertainment.de

70

Stage Entertainment operates a professional German-language website focused on musicals and live shows, offering ticket sales and gift vouchers. The company holds a strong market position in the entertainment sector in Germany, targeting a broad audience interested in family-friendly and popular musical productions. The website is built on Drupal 10 and integrates modern analytics and marketing tools such as Google Tag Manager, Segment Analytics, and Optimizely, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and anti-bot protections on forms, though improvements can be made in security headers and cookie consent mechanisms. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR through a comprehensive privacy policy.

O

Onlineafspraken.nl

onlineafspraken.nl

58

Onlineafspraken.nl is a Dutch technology company specializing in SaaS-based online reservation and appointment scheduling software. Founded in 2004, it offers a comprehensive suite of products including online booking, payment processing, customer management, marketing tools, and mobile apps. The company targets businesses across multiple sectors seeking efficient and integrated scheduling and payment solutions. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the site is built on Drupal 10, employs modern analytics and marketing tools, and is optimized for mobile and accessibility. Security posture is strong, evidenced by ISO 27001 certification, DNSSEC enabled domain, HTTPS enforcement, and cookie consent management. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the website and domain data indicate a trustworthy and credible business with a solid market position in the Netherlands.

G

GS1

gs1.org

72

GS1 is a globally recognized standards organization that provides essential business communication standards, including barcodes and data synchronization, to improve supply chain efficiency and product identification worldwide. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting businesses across multiple industries such as retail, healthcare, and transportation. Technically, the site is built on Drupal 10 with modern libraries and frameworks, hosted on Azure CDN, and optimized for performance and mobile devices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response information are not publicly detailed. Overall, the site demonstrates high trustworthiness and business credibility, supporting GS1's position as a global leader in standards.

U

Université de Picardie Jules Verne

u-picardie.fr

60

Université de Picardie Jules Verne (UPJV) is a large public university based in France offering a broad range of multidisciplinary degree programs from undergraduate to doctoral levels. The institution is positioned as a regional leader in higher education and research within the Hauts-de-France region, providing extensive academic services and fostering research excellence. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding aligned with its educational mission. Technically, the site is built on Drupal 10, employs Matomo for analytics, and demonstrates good mobile optimization and accessibility standards. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some advanced security headers and policies could be improved. The absence of WHOIS data from AFNIC is noted but does not detract from the legitimacy of the site given the official branding and content. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

G

GS1 Switzerland

gs1.events

59

GS1 Switzerland is a professional standards organization focused on providing barcode and identification standards, training, and networking events primarily for retail, logistics, and healthcare sectors in Switzerland. The website is well-structured, content-rich, and targets industry professionals seeking knowledge transfer and collaboration opportunities. Technically, the site is built on Drupal 10 with modern libraries and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and consent management in place, though explicit incident response and vulnerability disclosure information are not found. Overall, the site demonstrates high professionalism and trustworthiness with strong alignment between WHOIS data and business identity.

L

Longfonds

longfonds.nl

69

Longfonds is a Dutch non-profit organization dedicated to promoting healthy lungs and clean air for everyone. The website serves as a platform for health advocacy, supporting scientific research, and raising public awareness about respiratory health. The organization targets the general public concerned with lung health and related issues. The website is built on Drupal 10 and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Visual Website Optimizer, and Cookiebot for cookie consent management. The technical infrastructure reflects a moderate level of digital maturity with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks publicly visible security policies and incident response information. Overall, the website is professional, trustworthy, and safe for general audiences, though it would benefit from publishing explicit privacy, terms of service, and security policies to enhance compliance and transparency.

A

ActiZ

actiz.nl

72

ActiZ is a prominent Dutch healthcare branch association representing approximately 400 care organizations specializing in eldercare and chronic illness care. The website serves as a comprehensive platform for information dissemination, member services, and sector news, targeting healthcare professionals, policymakers, and stakeholders in the eldercare sector. The organization maintains a strong market position within the Netherlands, supported by a large membership base and extensive staff representation. Technically, the website is built on Drupal 10, integrating modern analytics and user behavior tracking tools such as Google Analytics and Hotjar, ensuring a mature digital infrastructure. The site is well-optimized for mobile devices, accessible, and professionally designed, reflecting high content quality and user experience standards. Security posture is solid with HTTPS enforcement and cookie consent mechanisms; however, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. Overall, the domain registration data aligns with the organization's profile, confirming legitimacy and trustworthiness. The website is safe for general audiences with no adult or explicit content detected.

G

GS1 Switzerland

gs1.ch

59

GS1 Switzerland is a national member organization of the global GS1 network, providing standardized barcode and data management solutions to over 8600 companies in Switzerland. Their website offers comprehensive information about GS1 standards, barcode issuance, digital product passes, and related services, targeting businesses across retail, healthcare, logistics, and manufacturing sectors. The site is professionally designed, multilingual, and well-structured to serve a business audience seeking efficient supply chain and product identification solutions. Technically, the website is built on Drupal 10 with modern libraries and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and consent management, though explicit security policies and incident response contacts are not published. Overall, the domain registration and WHOIS data align well with the organization's identity, indicating a legitimate and trustworthy online presence.

M

Maerki Baumann & Co. AG

maerki-baumann.ch

57

Maerki Baumann & Co. AG is an independent private bank based in Zurich, Switzerland, specializing in private banking, asset management, and advisory services for private clients and independent asset managers. The website reflects a professional banking institution with a clear focus on wealth management and personalized financial services. The company positions itself as a family-owned bank with generational expertise, targeting a discerning clientele seeking bespoke financial solutions. Technically, the website is built on Drupal 10, integrating modern tools such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and employs standard SEO and accessibility practices, although some accessibility features could be enhanced. Security-wise, the website enforces HTTPS and implements several security headers, demonstrating a solid security posture. Cookie consent is comprehensive, with detailed cookie categories and provider information, indicating good privacy compliance and GDPR adherence. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not present, representing areas for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, with moderate technical sophistication and a strong business credibility profile.

S

Schweizer Fleisch

schweizerfleisch.ch

71

Schweizer Fleisch is a Swiss-focused informational and promotional website dedicated to educating consumers about Swiss meat, its quality, safety, and sustainability. The site offers recipes, cooking tips, and detailed content aimed at encouraging the consumption of Swiss meat products. The platform appears to be professionally managed, likely by industry stakeholders, and targets consumers interested in high-quality, locally sourced meat. Technically, the website is built on Drupal 10 and incorporates modern web technologies including Google Tag Manager and Mailchimp for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS with a good SSL configuration but lacks visible security headers and explicit privacy and terms of service policies, which are areas for improvement. Overall, the domain registration data aligns well with the website's Swiss identity and business focus, indicating legitimacy and trustworthiness.

P

Public Health Accreditation Board

phabdata.org

58

The Public Health Accreditation Board (PHAB) operates a professional website focused on advancing public health practice through accreditation and data visualization services. The site targets governmental public health agencies and accredited health departments, providing tools for benchmarking and exploring health department capacity data. The organization positions itself as a trusted authority in public health accreditation with a clear mission and service offering. Technically, the website is built on Drupal 10, leveraging modern web technologies including jQuery, Bootstrap, and Google Analytics for tracking. The site is mobile-optimized, accessible, and performs moderately well. Security practices include HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response information are absent. From a security perspective, the site demonstrates a solid baseline with no detected vulnerabilities or blocking mechanisms. However, improvements could be made by publishing security policies, providing contact channels for security incidents, and implementing vulnerability disclosure processes. The lack of WHOIS data limits domain registration insights but does not detract from the site's apparent legitimacy. Overall, the website is professional, trustworthy, and well-suited for its audience. Strategic recommendations include enhancing security transparency, improving privacy policy visibility, and expanding contact information to bolster user trust and compliance.

M

Maerki Baumann & Co. AG

archip.ch

59

Maerki Baumann & Co. AG operates as an independent Zurich-based private bank specializing in blockchain and cryptocurrency asset management services. The website presents a professional image targeting private and corporate clients interested in custody, trading, staking, crypto investment advice, asset management, and NFT custody. The bank emphasizes generational expertise and a focused business model in the finance sector. Technically, the website is built on Drupal 10, integrates Google Tag Manager and Cookiebot for consent management, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be further enhanced. The website uses multiple third-party advertising and tracking services with transparent consent. Overall, the domain registration data aligns well with the website's claims, indicating a legitimate and trustworthy entity. No critical security or content safety issues were detected.

The Department of Social Services (DSS) website serves as the official online presence of the Australian Government's department responsible for improving the economic and social wellbeing of individuals, families, and vulnerable community members. The site provides comprehensive information on various social programs including community support, disability services, family and children support, housing, and violence prevention. The department holds a strong market position as a government entity with enterprise scale and a clear focus on public service delivery. Technically, the website is built on Drupal 10 and hosted on the GovCMS platform, ensuring modern content management capabilities and compliance with government digital standards. The site integrates Google Analytics and Tag Manager with privacy-conscious configurations such as IP anonymization. Accessibility and mobile optimization are excellent, supporting a wide range of users. From a security perspective, the site enforces HTTPS and includes standard security headers, reflecting good security hygiene. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. The WHOIS data is restricted, typical for government domains, but the domain's .gov.au TLD and content authenticity strongly indicate legitimacy. Overall, the DSS website demonstrates a mature digital presence with strong content quality, technical implementation, and business credibility. Strategic recommendations include publishing detailed security and incident response policies, implementing a vulnerability disclosure program, and enhancing transparency around data protection contacts.