Security Directory

C

Coop Pank

cooppank.ee

64

Coop Pank is a well-established Estonian bank offering a comprehensive range of retail and business banking services including loans, savings, insurance, and payment solutions. The bank positions itself as a local partner for customers both in urban and rural areas, emphasizing innovative and customer-centric financial products. The website reflects a mature digital presence with modern technologies such as React and Next.js, and integrates multimedia content and social media channels effectively. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit cookie consent mechanisms and published security policies could be improved. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives and regulatory requirements.

A

Arena Center Zagreb d.o.o.

arenacentar.hr

63

Arena Centar is a well-established large retail shopping center located in Croatia, operated by Arena Center Zagreb d.o.o. and owned by the parent company NEPI Rockcastle. The website provides comprehensive information about the shopping center's services, including retail stores, dining, entertainment, parking, and customer engagement via a mobile app and gift cards. The site targets a broad audience including local residents, families, and visitors seeking shopping and leisure experiences. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for analytics and marketing tools like Google Tag Manager, Facebook Pixel, and TikTok Pixel. Hosting and DNS are managed by reputable providers, ensuring stable performance and security. Security posture is good with HTTPS enforced and consent mechanisms for cookies, though explicit security policies and incident response details are not publicly available. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, providing a positive user experience and strong business credibility.

C

Coolinarika

coolinarika.com

58

Coolinarika is a well-established Croatian culinary website offering a rich platform for recipes, cooking inspiration, and food-related content. It targets a general audience interested in cooking and culinary arts, positioning itself as a leading media site in this niche within Croatia. The website leverages modern web technologies including React and Next.js, hosted on Azure CDN, ensuring fast performance and excellent mobile optimization. The presence of structured data and social media integration further enhances its digital maturity. Security-wise, the site enforces HTTPS, employs security headers, and manages user consent for cookies, reflecting a good security posture. However, the absence of WHOIS registrant data and direct company contact emails slightly reduces transparency. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its users.

Credit24.ee is a well-established Estonian online consumer finance provider offering a variety of loan products including credit accounts, car loans, and personal loans. The company operates under IPF Digital AS and has a strong regional presence with subsidiaries and partner brands across the Baltics and Australia. The website is professionally designed using modern web technologies such as React and Next.js, hosted on AWS, and incorporates GDPR-compliant cookie consent mechanisms. Analytics and marketing tools like Microsoft Clarity and Google Tag Manager are used for user behavior tracking and advertising. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

U

UC Affärsinformation

allabolag.se

60

Allabolag.se is a comprehensive Swedish business information platform operated by UC Affärsinformation, a subsidiary of Enento Group Plc. The website offers detailed financial data, official company roles, and business insights for all Swedish companies that file annual reports with the Swedish Companies Registration Office. It targets business professionals, researchers, and companies seeking reliable corporate data. The platform provides both free and premium services, including segmentation tools and network searches, positioning itself as a leading source for Swedish corporate information. Technically, the website is built on modern web technologies including React and Next.js, with Material-UI for design. It integrates multiple third-party advertising and analytics services, managed through a consent platform ensuring GDPR compliance. The site is well-optimized for mobile and accessibility, with good SEO practices and fast loading times. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses a consent management platform for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy or incident response information, which could be improved to enhance trust. Overall, Allabolag.se presents a professional, trustworthy, and well-maintained digital presence with strong business credibility. The missing WHOIS data for the www subdomain is not a concern given the known parent domain and business entity. Strategic recommendations include enhancing security transparency, maintaining third-party script audits, and publishing vulnerability disclosure policies.

A

Afternic / GoDaddy Operating Company, LLC

kf-global.com

68

The website is a professional domain sales landing page hosted by Afternic, a GoDaddy company, offering the domain kf-global.com for sale. It provides multiple purchasing options including buy now, lease to own, and make an offer, targeting businesses or individuals interested in acquiring this domain. The site leverages modern web technologies such as React and Next.js, ensuring a responsive and performant user experience. Security measures include HTTPS, secure forms with reCAPTCHA, and standard security headers, reflecting a mature security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the site presents a trustworthy and professional marketplace environment for domain transactions.

Constálica is a medium-sized Portuguese company specializing in innovative structural systems for construction, including MadreMax®, OmegaMax®, and Réservoir®. The company targets construction professionals and partners globally, offering solutions for industrial, housing, agricultural, and photovoltaic structures. Their business model focuses on B2B manufacturing and structural simulation tools such as MAXBOX®. The website reflects a mature digital presence with modern technologies like React and Next.js, and integrates Google Tag Manager for analytics and Cookie Script for privacy compliance. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. The domain is well-established since 2008, consistent with the company's claims, and no suspicious WHOIS patterns are detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

G

GoDaddy Operating Company, LLC

fratellimantova.com

68

The website is a professionally designed domain sales landing page hosted on the Afternic platform, a well-known domain marketplace owned by GoDaddy Operating Company, LLC. It offers the domain fratellimantova.com for sale with clear pricing options including buy now and lease to own. The site targets German-speaking domain buyers and businesses looking for premium domain names. The presence of GoDaddy branding and a high Trustpilot rating enhances its credibility. Technically, the site uses modern web technologies such as React and Next.js, served via Akamai CDN, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced, security headers present, and reCAPTCHA protecting forms. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. However, WHOIS data for the domain www.afternic.com is unavailable, likely due to querying a subdomain rather than the registered domain, which slightly impacts trust analysis. Overall, the site demonstrates a strong business and technical posture with minor gaps in WHOIS transparency.

S

SOS dětské vesničky

kdyzboliduse.cz

46

The website 'Když bolí duše, jednej rychle' is a mental health awareness campaign operated by SOS dětské vesničky, a recognized non-profit organization in the Czech Republic. It targets children, adolescents, and their families, providing support, crisis plans, and access to helpline contacts. The site is well-branded and professionally designed, reflecting a strong commitment to youth mental health. Technically, it leverages modern web technologies such as React and Next.js, with embedded multimedia content and integration of Google Analytics under a cookie consent framework. Security posture is solid with HTTPS and consent management, though explicit security headers and privacy policies are missing, which are recommended for compliance and trust. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profit campaigns. Overall, the site is trustworthy, safe, and professionally maintained, serving an important social cause.

J

Joer

joer.sk

57

Joer is a well-established Slovak company specializing in custom-made furniture manufacturing, offering design, production, and installation services. With over 25 years of experience and a strong market presence, Joer provides high-quality furniture solutions directly from the manufacturer, ensuring competitive pricing and fast delivery. Their digital infrastructure is modern, leveraging Next.js and React frameworks, with integrated marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The website is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, Joer demonstrates a mature digital presence aligned with its business goals.

D

Duplex

duplex.com

61

Duplex presents itself as a technology platform focused on enhancing digital content discovery and audience engagement to drive revenue. The website content is professionally designed using modern web technologies such as Next.js and React, indicating a contemporary digital infrastructure. However, the absence of WHOIS registration data and domain legitimacy information raises concerns about the domain's registration status or privacy protections in place. Security posture evaluation is limited due to missing SSL and security header information, and no privacy or cookie policies were detected, indicating potential compliance gaps. Overall, while the business proposition appears credible and the website is functional and well-structured, the lack of verifiable domain registration and security best practices lowers the trust and security confidence.

S

Sandoz

sandoz.cz

10

Sandoz Česká republika operates as a regional branch of the global pharmaceutical leader Sandoz, specializing in generic pharmaceuticals and biosimilars. The website provides comprehensive educational content targeted at healthcare professionals and patients in the Czech Republic, supporting its market position as a trusted healthcare provider. The business model focuses on pharmaceutical manufacturing and distribution with a strong emphasis on improving patient outcomes through accessible medicines and educational resources. The site is well-branded and consistent with the parent company's global identity.

O

OLO

olo.sk

66

OLO is a Slovak company specializing in waste management and energy services for the Bratislava region. Established in 2003, it holds a strong local market position as a public utility provider focused on environmental sustainability and energy supply. The website reflects a professional and modern digital presence using React and Next.js technologies, supported by Cloudflare for DNS and CDN services. The company demonstrates good digital maturity with GDPR-compliant cookie consent mechanisms and integration of analytics tools like Microsoft Clarity. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security and incident response policies are not publicly available. Overall, the website is trustworthy, well-structured, and serves its target audience effectively.

S

Shoptet.cz

shoptet.com

78

Shoptet.cz is a leading e-commerce platform based in the Czech Republic, offering SaaS solutions for entrepreneurs and businesses to create and manage online stores. The website promotes a 30-day free trial, targeting small to medium-sized enterprises seeking to establish an online presence. The platform is well-positioned in the Czech market with a professional and modern digital presence. Technically, the website leverages modern frameworks such as React and Next.js, integrates with third-party services like Vimeo for video content, Google Tag Manager for analytics, and Cookiebot for cookie consent management. The site demonstrates good mobile optimization and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses security-related cookies such as CSRF tokens. However, explicit security headers and published security policies are absent, indicating room for improvement in transparency and defense-in-depth. The cookie consent mechanism is robust and GDPR-compliant, but no privacy policy or terms of service were detected in the provided content. Overall, Shoptet.cz presents a trustworthy and professional online platform with a solid technical foundation. The absence of WHOIS data limits domain registration trust analysis, but the website's quality and security posture suggest legitimacy. Strategic recommendations include enhancing security headers, publishing security and privacy policies, and providing clear contact information to improve compliance and user trust.

K

KingHost

kinghost.com.br

10

KingHost is a Brazilian web hosting company established in 2017, offering secure and reliable hosting services including domain registration, email hosting, and cloud solutions. The company targets small to medium businesses and individuals in Brazil, positioning itself as a trusted local provider with a focus on security and performance. The website demonstrates a modern technical infrastructure using Next.js, React, and integrates multiple analytics and marketing tools. Security posture is strong with HTTPS enforcement, security headers, and clientTransferProhibited domain status, though DNSSEC is not enabled. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Overall, KingHost presents a professional and trustworthy online presence with good business credibility and technical maturity.

T

Telewizja Puls Sp. z o.o.

tvpuls.pl

64

Telewizja Puls Sp. z o.o. operates a professional Polish television broadcasting website offering a wide range of entertainment content including popular TV series, movies, and news. The company has a strong market presence in Poland with multiple subsidiary channels and a well-established brand since 2006. The website demonstrates a modern technical infrastructure using React and Next.js frameworks, integrating various analytics and marketing tools such as Google Tag Manager, TikTok Pixel, and Facebook Pixel. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, the website is professional, trustworthy, and well-optimized for user experience and mobile devices.

Svatba.cz s.r.o. operates a leading Czech online wedding planning platform offering a professional wedding planner with budgeting tools, a comprehensive supplier catalog, wedding websites, inspiration, blog, and forum. Established in 1997, it serves engaged couples and wedding suppliers primarily in the Czech Republic, positioning itself as a mature and trusted market leader in the hospitality sector. The website employs modern web technologies including React and Next.js, hosted on DigitalOcean, and integrates multiple analytics tools such as Microsoft Clarity, Google Tag Manager, and Plausible Analytics. The site is well-optimized for mobile and SEO, providing an excellent user experience with clear navigation and professional design. Security posture is strong with HTTPS and best practices observed, though explicit security headers and a cookie consent mechanism are recommended. Privacy and terms of service pages are present and GDPR compliant, but direct contact information and security incident response details are not prominently displayed. Overall, the platform demonstrates a high level of digital maturity and business credibility with moderate room for improvement in privacy compliance and security transparency.

F

fireTMS.com Sp. z o.o.

firetms.com

76

fireTMS.com Sp. z o.o. operates a mature and well-established transport management system platform targeting carriers and forwarders globally, with a strong presence in Poland and Europe. The company offers a comprehensive SaaS solution integrating transport planning, order management, invoicing, GPS tracking, and mobile applications, supported by a freight exchange service (fireXgo). The business is part of the Eurowag Group, enhancing its market credibility and reach. Technically, the website is built on modern frameworks like Next.js and React, optimized for performance and mobile responsiveness, and integrates multiple marketing and analytics tools. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the website and business demonstrate high professionalism, trustworthiness, and compliance with GDPR, making fireTMS a credible and competitive player in the transport software industry.

A

ADAC Reisen

adacreisen.de

68

ADAC Reisen is a well-established travel service provider affiliated with the reputable ADAC brand in Germany. The company offers a wide range of travel products including package holidays, member-exclusive trips, camper rentals, flights, and cruises. The website demonstrates a high level of professionalism with excellent content quality, clear navigation, and strong branding consistency. Technically, the site uses modern frameworks such as Next.js and React, hosted on DigitalOcean infrastructure, and integrates consent management and analytics tools responsibly. Security posture is strong with HTTPS enforced and privacy compliance evident through detailed privacy and cookie policies. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement.

G

GoDaddy Operating Company, LLC

nicexpo.com

71

The website is a domain sales landing page operated by GoDaddy, offering the domain nicexpo.com for sale. It targets individuals and businesses interested in acquiring premium domain names, providing options to buy outright or lease to own. The platform leverages GoDaddy's established market presence and integrates partner services such as Afternic and Trustpilot to enhance trust and user confidence. The site is localized for the German market with appropriate language and currency settings. Technically, the site is built using modern web technologies including React and Next.js, hosted on GoDaddy infrastructure. It employs standard security measures such as HTTPS and reCAPTCHA for form protection, and uses tag management and analytics tools like Tealium and Google Analytics. Performance and mobile optimization are good, though some accessibility features could be improved. From a security perspective, the site demonstrates a solid posture with encrypted connections and secure payment options. However, explicit security headers are not evident, and no dedicated security or incident response policies are published. The WHOIS data for the domain is unavailable, which is typical for parked domains listed for sale, and does not raise concerns. Overall, the site is trustworthy and professionally maintained. The overall risk is low, with recommendations to enhance security headers, improve accessibility, and publish clear security policies to further strengthen user trust and compliance.

S

Sysco Corporation

sysco.com

67

Sysco Corporation operates as the global leader in foodservice distribution, providing a comprehensive portfolio of food and related products to customers preparing meals away from home, including restaurants, healthcare, education, lodging, and entertainment sectors. The company maintains a strong market position as the largest food-away-from-home distributor, supported by an extensive network of distribution centers and a large workforce. Their business model focuses on B2B wholesale distribution with value-added services such as culinary consulting and supply chain solutions. The website reflects a mature digital presence with modern technologies and integrated marketing and analytics tools, supporting a seamless user experience and effective customer engagement. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy given the company's established brand and digital footprint. Strategic recommendations include enhancing transparency on security policies, vulnerability disclosures, and data protection officer contacts to further strengthen trust and compliance.

R

Rageot

rageot.fr

60

Rageot is a French publishing company specializing in youth literature, targeting children and adolescents with popular series such as Ewilan and Ellana. The website reflects a professional and consistent brand image aligned with its parent company, Hachette Livre. The business model centers on publishing and distributing books for young readers, positioning Rageot as a recognized player in the French educational publishing sector. Technically, the website employs modern frameworks such as Next.js and Material-UI, with integration of Google Tag Manager and a GDPR-compliant cookie consent mechanism. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site uses HTTPS and cookie consent but lacks visible security headers and published security policies, which are areas for improvement. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is justified for this business type. Overall, the website is professional, secure, and compliant with basic privacy regulations, serving its target audience effectively.

Hanser Literaturverlage is a well-established German publishing house specializing in literature and books across several imprints including Hanser, Hanser Kinder- und Jugendbuch, Zsolnay, Hanser Berlin, and hanserblau. The website serves as a comprehensive platform for showcasing their authors and publications, targeting German-speaking literary audiences and book buyers. The business model revolves around traditional and digital book publishing and sales, positioning Hanser as a reputable player in the German media and publishing sector. Technically, the website is built using modern web technologies such as Next.js and React, supported by cloud-based image hosting and integrated marketing and analytics tools like Emarsys and eTracker. The site demonstrates good mobile optimization, accessibility features, and SEO practices, reflecting a mature digital infrastructure. Hosting appears to be managed by Noris Network AG, a reputable provider. From a security perspective, the site enforces HTTPS, implements standard security headers, and uses cookie consent management compliant with GDPR. While no explicit security policy or vulnerability disclosure page is present, the site shows no signs of vulnerabilities or exposed sensitive data. The WHOIS data is transparent and consistent with the business identity, enhancing trustworthiness. Overall, Hanser Literaturverlage's website is professional, secure, and compliant with privacy regulations, supporting its business credibility and user trust. Strategic improvements could include publishing a dedicated security policy and vulnerability disclosure to further enhance transparency and incident response readiness.

S

Stokker AS

stokker.com

64

Stokker AS is a leading sales and service company specializing in professional tools, machinery, and maintenance services primarily serving the Baltic region and Europe. With over 30 years of experience, it operates both physical tool centers and an e-commerce platform, offering a broad range of products and services including a loyalty program and financing solutions. The company positions itself as a reliable partner with extensive expertise and a large maintenance team. Technically, the website is built on modern frameworks such as Next.js and React, integrating Google Tag Manager and Salesforce Live Agent for analytics and customer support. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although some advanced security policies and incident response information are not publicly disclosed. Privacy and cookie policies are present and GDPR compliant. Overall, the website is professional, user-friendly, and trustworthy, though the absence of WHOIS data introduces some uncertainty about domain registration details.

C

Conta Azul

contaazul.com

64

Conta Azul is a well-established Brazilian company providing a comprehensive ERP system focused on financial and business management for small and medium enterprises. The company offers a SaaS model with key services including sales management, invoicing, automatic billing, inventory control, bank reconciliation, and reporting. The website reflects a strong market position with professional design and clear navigation, targeting SMB owners and managers in Brazil. Technically, the site is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and integrates advanced analytics tools like Google Tag Manager, Segment, and Amplitude, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no evident vulnerabilities, although DNSSEC is not enabled and no explicit vulnerability disclosure or incident response contacts are published. Overall, the website is professional, secure, and compliant with privacy regulations, making it a trustworthy platform for its target audience.

C

Community Hospital

westernorthosports.com

66

Community Hospital is a well-established healthcare provider specializing in orthopedic and spine care services, located in Grand Junction, Colorado. The hospital offers comprehensive treatment for musculoskeletal diseases and injuries, serving a broad patient base from recreational to elite athletes. The website reflects a strong market position supported by multiple certifications and awards, including recognition as a Joint Commission Center of Excellence for total joint replacement. The business model focuses on specialty healthcare services with a regional reach and a medium-sized organizational footprint. Technically, the website is built on modern web technologies including React and Next.js, hosted on AWS infrastructure, and incorporates accessibility features such as the UserWay widget. The site demonstrates excellent mobile optimization, fast performance, and good SEO practices. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although there is room for improvement in DNS security and explicit security headers. From a security perspective, the site maintains a good posture with no visible vulnerabilities or exposed sensitive data. However, the absence of a cookie consent mechanism and a published security or incident response policy indicates partial compliance with privacy regulations such as GDPR. Contact information is clearly presented, enhancing business credibility and user trust. Overall, the website is professional, trustworthy, and well-maintained, with a high AI score reflecting strong content quality, technical implementation, and business credibility. Strategic recommendations include implementing cookie consent for privacy compliance, enabling DNSSEC, and publishing security policies to further enhance trust and security posture.

C

Cinema8 Limited

cinema8.com

71

Cinema8 Limited operates an advanced SaaS platform specializing in interactive video hosting, creation, and monetization, leveraging AI-powered tools to enhance user engagement and analytics. Positioned as a comprehensive solution for businesses and individuals, Cinema8 offers scalable video hosting, editing, collaboration, and marketing features, targeting a broad audience including marketers, educators, and enterprises. The company maintains a strong market presence supported by multiple ISO certifications and a professional digital footprint. Technically, the website is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, delivering fast performance and excellent mobile optimization. Security posture is robust with HTTPS enforcement, multiple security headers, and domain registration protections, though DNSSEC is not enabled. Privacy compliance is well addressed with accessible policies, though cookie consent mechanisms could be improved. Overall, Cinema8 demonstrates a mature digital and security posture suitable for its business model and market demands.

I

IN LEASE

rentcarnow.cz

56

RentCarNOW is a Czech Republic-based car rental company offering a wide range of vehicles including compact cars, SUVs, microbuses, and luxury vehicles. The company provides flexible rental options for both short-term and long-term needs, including operational leasing services through a partner site. Their business model focuses on customer convenience with multiple pick-up locations and a professional service approach. The website is well-designed, mobile-optimized, and provides comprehensive information about their offerings and policies. Technically, the website is built using modern frameworks such as Next.js and React, ensuring good performance and accessibility. Security best practices are observed with HTTPS enforcement and appropriate security headers. However, the absence of a cookie consent mechanism and detailed incident response policies indicates room for improvement in privacy compliance and security transparency. The security posture is strong with no visible vulnerabilities or exposed sensitive data. The company maintains active social media profiles and provides clear contact information, enhancing trustworthiness. The lack of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy. Overall, RentCarNOW presents a professional and reliable service with a solid technical foundation and good security practices, though enhancements in privacy compliance and transparency are recommended.

C

CUX Research Sp. z o. o.

cux.io

72

CUX Research Sp. z o. o. operates a sophisticated digital experience analytics platform designed to transform user behavior data into actionable business insights. The company targets businesses seeking to optimize customer journeys and improve digital experiences through a combination of advanced analytics and expert consulting. Positioned as a trusted partner for top brands, CUX offers services including web and mobile app analytics, behavioral insights, and strategic guidance. The company is headquartered in Poland with additional offices in Germany and Portugal, reflecting a European market focus. Technically, the website leverages modern web technologies such as React and Next.js, ensuring fast performance, mobile optimization, and good SEO practices. Hosting is provided by OVH SAS, a reputable provider, and the site integrates Google Tag Manager for analytics. The platform emphasizes ease of implementation with minimal impact on site performance, supporting rapid deployment and scalability. From a security perspective, CUX demonstrates strong adherence to GDPR and privacy principles, employing data encryption, role-based access controls, and enterprise-grade audit trails. While no critical vulnerabilities or exposed sensitive data were detected, the absence of DNSSEC and a formal vulnerability disclosure policy are areas for improvement. The website is fully accessible without WAF or blocking mechanisms, indicating a stable and trustworthy online presence. Overall, CUX presents a professional, secure, and compliant digital platform with a clear business focus and strong market credibility. Strategic recommendations include enhancing DNS security, publishing incident response contacts, and implementing cookie consent mechanisms to further strengthen compliance and trust.

L

Leadpages (US), Inc.

lpages.co

65

Leadpages (US), Inc. is a well-established SaaS company founded in 2013, specializing in lead generation and landing page building solutions for small to large businesses, agencies, and enterprises. The company offers a comprehensive platform that includes landing page creation, lead capture, A/B testing, AI content generation, and team collaboration features. Positioned strongly in the technology sector, Leadpages serves a global audience with a focus on marketing professionals and online entrepreneurs. The website reflects a mature digital presence with excellent design, clear navigation, and mobile optimization. Technically, it leverages modern frameworks such as Next.js and React, supported by robust analytics and marketing tools including Google Tag Manager, Facebook Pixel, and Hotjar. Security posture is strong with HTTPS enforcement and security headers, though public WHOIS data is privacy protected, which is common and justified for this business type. Overall, Leadpages demonstrates a high level of professionalism, trustworthiness, and digital maturity.

H

HYPOX

hypox.cz

64

HYPOX is a Czech Republic based company specializing in providing online real estate valuation, price mapping, and portfolio management services. The website targets property owners and investors within the Czech market, offering tools such as price maps for properties and rentals, free online property valuation, and portfolio management features. The company was founded in 2018 and operates a modern web platform built on Next.js and React, hosted on AWS infrastructure. The site is professionally designed, mobile optimized, and provides clear navigation and relevant content for its audience. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response information are not publicly disclosed. The domain registration data is consistent with the business claims, enhancing trustworthiness. Overall, HYPOX presents a credible and professional online presence in the real estate technology sector.

F

Fundacja Polska Bezgotówkowa

polskabezgotowkowa.pl

52

Fundacja Polska Bezgotówkowa is a Polish non-profit foundation dedicated to promoting cashless payments across Poland by providing payment terminals and educational initiatives. The foundation targets Polish businesses and merchants aiming to adopt modern payment technologies. The website reflects a professional and consistent brand image with a clear focus on its mission. Technically, the site is built on a modern Next.js and React stack, integrating multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Cookiebot for consent management. The site is mobile-optimized and performs moderately well, though accessibility could be improved. Security posture is strong with HTTPS enforced and standard security headers likely in place. However, the absence of explicit privacy policy and terms of service pages, as well as lack of direct contact information, slightly reduce privacy compliance and business credibility scores. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and transparency. Strategic recommendations include publishing comprehensive privacy and terms pages, enhancing accessibility, and providing clear contact channels for security and general inquiries.

G

Gamban

gamban.com

10

Gamban.com is a specialized technology company focused on providing software solutions to help individuals quit online gambling. The company offers an award-winning gambling blocking application complemented by tools to monitor recovery progress. The website reflects a mature and professional digital presence, leveraging modern web technologies such as Next.js and React, hosted with Cloudflare DNS services. The site is well optimized for mobile and desktop users, providing a seamless user experience with clear navigation and relevant content tailored to its target audience of individuals seeking gambling addiction support. Security posture is strong with HTTPS enforced and standard security headers present, although DNSSEC is not enabled and no explicit privacy or cookie policies were found in the provided content. The domain registration is consistent with the business claims, having been created in 2015, aligning with the company's founding year. Overall, Gamban.com demonstrates a credible and trustworthy online presence with room for improvement in privacy compliance and explicit contact information.

I

Icelandair ehf.

icelandair.is

66

Icelandair ehf. operates a professional and comprehensive airline website targeting travelers primarily in Iceland, Europe, and North America. The company offers direct flights to over 25 European destinations and more than 20 in the United States and Canada, along with hotel and car rental bookings and package holidays. The website is well-branded, consistent, and provides a rich user experience with clear navigation and booking functionalities. The business is well-established, founded in 1937, and holds a significant market position in the transportation sector in Iceland. Technically, the website leverages modern web technologies including React and Next.js frameworks, and integrates major analytics and marketing tools such as Google Analytics, Google Tag Manager, and Bing Ads. The site is mobile-optimized, accessible, and SEO-friendly, ensuring good performance and user engagement. Security best practices are observed with HTTPS enforcement and appropriate security headers, although no explicit public security policy or incident response page was found. The security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms in place, indicating adherence to GDPR requirements. However, the absence of direct contact emails or phone numbers in the HTML and lack of a vulnerability disclosure program are areas for improvement. Overall, the website represents a trustworthy and professional airline business with a mature digital presence. The lack of WHOIS data is likely due to privacy protection, which is justified for a company of this size. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure channel, and enhancing transparency around data protection officer contacts to further strengthen trust and compliance.

Prowly is a well-established SaaS company founded in 2007, specializing in public relations and media relations software. Their platform offers a comprehensive suite of tools including media databases, media monitoring, PR CRM, media pitching, press release creation, PR reports, and online newsrooms. The company targets PR professionals, agencies, in-house teams, and small businesses, positioning itself as an affordable and trusted solution with over 5000 experts relying on their services. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on modern frameworks such as React and Next.js, hosted on AWS infrastructure, and uses a variety of marketing and analytics tools including HubSpot, Google Analytics, Hotjar, and VWO. The site is mobile-optimized, fast, and SEO-friendly, with good accessibility features. Security posture is strong with HTTPS enforced and multiple security headers present, although DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR compliance indicators. Contact information is primarily via contact forms, with no direct emails or phone numbers publicly listed. The domain registration is consistent and legitimate, registered since 2007 with GoDaddy and protected against unauthorized changes. No WAF or blocking mechanisms were detected, allowing full content access. Overall, Prowly presents a secure, professional, and trustworthy online presence suitable for its business model and target audience.

K

Kino Hvězda Přerov

kinohvezdaprerov.cz

53

Kino Hvězda Přerov is a local cinema in the Czech Republic offering advanced movie screening technology including 4K laser projection and a large panoramic screen. The business targets general audiences including families and children, providing ticket sales, event hosting, and related services such as gift cards and podcasts. The website is built on modern web technologies such as React and Next.js, with a good level of mobile optimization and user experience. Security posture is solid with HTTPS and security headers, though some compliance gaps exist such as the absence of a cookie consent mechanism. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses. Overall, the site is professional, trustworthy, and safe for general audiences.

G

GoDaddy Operating Company, LLC

bazar.to

71

The website is a professionally designed domain sales landing page operated by GoDaddy Operating Company, LLC, a leading domain registrar and hosting provider. It offers the premium domain bazar.to for sale with options to buy immediately or make an offer. The site targets businesses and individuals seeking premium domain names to establish or enhance their online presence. The business model is focused on domain aftermarket sales and brokerage services, leveraging GoDaddy's trusted brand and infrastructure. Technically, the site is built using modern web technologies including React and Next.js, hosted on GoDaddy's platform. It demonstrates good performance, mobile optimization, and accessibility features. The presence of comprehensive privacy and cookie policies indicates compliance with GDPR and other privacy regulations. The site integrates secure payment methods and displays trust signals such as verified domain badges and a high Trustpilot rating. From a security perspective, the site enforces HTTPS with strong security headers and does not expose sensitive data. However, it lacks a dedicated security policy or incident response contact information, which could be improved. No vulnerabilities or suspicious patterns were detected in the content or technical setup. The WHOIS data for the subdomain is unavailable, which is expected as it is a GoDaddy-controlled subdomain rather than a registered domain. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing explicit security and incident response policies to enhance transparency and trust further.

R

Rakuten Advertising

rakutenadvertising.io

59

Rakuten Advertising's developer portal at rakutenadvertising.io provides resources and SDK documentation for mobile attribution services, targeting developers and advertisers. The site is part of the larger Rakuten Advertising ecosystem, a recognized player in digital advertising technology. The technical infrastructure leverages modern web frameworks such as Next.js and Material-UI, with integration of Google Tag Manager for analytics. The site is well-designed, mobile-optimized, and provides clear navigation to key developer resources. Security posture is moderate with HTTPS enforced and domain registration protections, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

La Montagne is a regional French news media website operated by Centre France, focusing on local news for the Auvergne and Limousin regions. The site provides comprehensive coverage of politics, sports, economy, and social issues relevant to its regional audience. It holds a strong market position as a leading regional news source in its coverage areas. Technically, the website is built using modern web technologies including Next.js and React, and integrates advanced advertising and analytics frameworks such as Google Ad Manager, Prebid.js, and Amazon APS. The site demonstrates good performance and mobile optimization, although accessibility features could be improved. Security posture is solid with HTTPS enforced and multiple security headers implied, but explicit security policies and incident response information are absent. Privacy compliance is limited as no clear privacy or cookie policies were detected in the analyzed content. Overall, the website is professional and trustworthy, but the lack of WHOIS data and explicit privacy/contact information slightly reduces its credibility. Strategic improvements in privacy transparency and security documentation are recommended.

G

GoDaddy Operating Company, LLC

belgrade.org

71

The website forsale.godaddy.com/forsale/belgrade.org is a professionally designed domain sales landing page operated by GoDaddy Operating Company, LLC. It offers the premium domain belgrade.org for sale with options to buy immediately or make an offer. The site targets German-speaking customers and emphasizes secure transactions, fast domain transfers, and multiple payment methods. The presence of trust indicators such as a high Trustpilot rating and verified domain badges reinforces its credibility. Technically, the site uses modern web technologies including React and Next.js, hosted on AWS, with good performance and mobile optimization. Security measures include HTTPS enforcement and reCAPTCHA on forms, though some security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the site demonstrates a mature digital infrastructure and a strong security posture appropriate for an enterprise-level e-commerce platform focused on domain aftermarket sales.

MFEX Mutual Funds Exchange AB, now rebranded as Euroclear FundsPlace®, operates as a financial services platform integrated within the Euroclear group. The company provides a comprehensive end-to-end solution for fund distribution and processing across multiple asset classes, including private market funds. The website reflects a professional and consistent brand image aligned with Euroclear's market infrastructure, targeting financial institutions and asset managers. Technically, the site is built on modern web technologies such as Next.js and React, offering good mobile optimization and user experience. However, some technical aspects like security headers and SEO metadata could be improved. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security policies and incident response contacts. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the business content and branding suggest a legitimate financial entity. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

Berliner Verkehrsbetriebe (BVG) operates as the primary public transportation provider in Berlin, Germany, offering comprehensive services including route planning, ticketing, subscriptions, and mobile applications. The website serves a broad audience including residents and tourists, providing timely service updates, ticket purchase options, and customer support. BVG holds a strong market position as the leading transit operator in Berlin with a large operational scale. Technically, the website is built on modern frameworks such as React and Next.js, hosted likely by Cronon, and managed via Magnolia CMS. It demonstrates excellent performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. The site employs standard SEO and metadata practices, including Open Graph tags and structured JSON data. From a security perspective, the site enforces HTTPS, includes standard security headers, and implements a robust cookie consent mechanism compliant with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and user-friendly, with strong privacy compliance and business credibility. Strategic recommendations include publishing detailed security policies, providing direct security contact information, and establishing a vulnerability disclosure program to enhance transparency and trust.

S

SchemaRabbit

schemarabbit.com

54

SchemaRabbit is a specialized SaaS platform providing AI-driven schema markup generation and maintenance services to improve website visibility across traditional and AI-powered search engines. The company targets businesses and website owners aiming to enhance SEO performance with structured data. The platform offers a free audit and paid subscription tiers, positioning itself as a leader in future-proofing search visibility. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for Google Analytics, Google Tag Manager, Hotjar, and Google reCAPTCHA, indicating a mature digital infrastructure. Performance and mobile optimization are excellent, supporting a high-quality user experience. Security posture is good with HTTPS enforced and anti-bot measures in place, though the absence of security headers and explicit security policies suggests room for improvement. The WHOIS data reveals an unusual future domain creation date, which slightly impacts trust but does not detract from the professional presentation and business legitimacy. Overall, the website scores well on content quality, technical implementation, and business credibility, with moderate privacy compliance due to missing cookie policies.

SGS is a globally recognized leader in testing, inspection, and certification services, with a dedicated website for its Greece operations. The company positions itself as the world's leading provider in its sector, targeting a broad audience requiring quality assurance and compliance services. The website demonstrates a professional and consistent brand presence with good content quality and user experience. Technically, the site leverages modern frameworks such as Next.js and Tailwind CSS, and integrates multiple Google Tag Manager scripts for analytics and marketing purposes, indicating a mature digital infrastructure. However, the absence of visible privacy and cookie policies, as well as missing WHOIS data, limits the assessment of compliance and domain legitimacy. Security posture is moderate with no detected security headers or explicit security policies, suggesting room for improvement in hardening the website. Overall, the site is accessible, safe, and professional but would benefit from enhanced transparency and security measures.

G

GoDaddy Operating Company, LLC

icrn.org

71

This website is a domain sales landing page hosted by GoDaddy, offering the domain icrn.org for sale or lease-to-own. It targets businesses and individuals interested in premium domain names, providing secure transactions, multiple payment options, and expert support. The site is professionally designed with consistent branding and a strong trust signal from a high Trustpilot rating. Technically, it uses modern web technologies including React and Next.js, hosted on GoDaddy infrastructure, with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and secure payment integrations, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy and compliant with GDPR, suitable for its e-commerce domain sales business model.

Blika is an Icelandic weather information website providing accurate and updated weather forecasts, observations, and camping site information across Iceland. The site targets Icelandic residents and visitors interested in weather conditions, offering a range of weather-related services including detailed forecasts, wind predictions, and weather maps. The business operates in the weather information sector with a focus on Icelandic geography and climate. Technically, the website is built using modern web technologies such as React and Next.js, ensuring a responsive and user-friendly experience. The site integrates Google Analytics for user tracking and Airserve for advertising, indicating a monetization model based on ads and data insights. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data suggests privacy protection for the domain registration, which is common for Icelandic domains. Overall, the website is professional and functional but could enhance trust and compliance by adding clear privacy and security policies and contact information.

R

RÚV

ruv.is

63

RÚV.is is the official website of RÚV, the Icelandic National Broadcasting Service, providing a comprehensive range of media services including news, radio, television, and podcasts primarily targeted at the Icelandic public. The site demonstrates a high level of digital maturity with modern web technologies such as Next.js and React, supported by Cloudflare for hosting and security. It integrates multiple analytics and tracking services while maintaining user privacy through a robust cookie consent mechanism. Security posture is strong with HTTPS enforced and standard security headers present, although explicit security policies and incident response information are not publicly disclosed. Overall, the website is professional, trustworthy, and well-optimized for performance and accessibility.

S

Sam Collins

smcllns.com

56

The website smcllns.com is a personal site belonging to Sam Collins, a product manager at Facebook specializing in strategic infrastructure. The site serves as a personal branding platform sharing writings, tools, and personal interests. It targets a general audience interested in technology and product management. Technically, the site is built using modern frameworks such as Next.js and hosted on Vercel, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal privacy or cookie policies. The domain registration is consistent and legitimate, reflecting a stable online presence since 2009. Overall, the site is professional and trustworthy but could improve compliance and security practices.

I

IngenCO2.dk

co2neutralwebsite.fi

55

CO2 Neutral Website is a service operated by IngenCO2.dk, focused on enabling website owners to make their websites carbon neutral by offsetting their carbon emissions through membership fees. The company funds global renewable energy projects certified by the Gold Standard, enhancing sustainable branding for its clients. The website is well-positioned in the niche market of environmental sustainability and digital carbon offsetting, targeting businesses and website owners who want to demonstrate environmental responsibility. Technically, the site uses modern web technologies including Next.js and React, with integrations for analytics and security such as Google Analytics, Google Tag Manager, and reCAPTCHA v3. The site is mobile optimized and SEO friendly, providing a good user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although there is room for improvement in privacy compliance and incident response transparency. Overall, the domain registration is consistent with the business claims, enhancing trustworthiness.

I

IngenCO2.dk

minskaco2.se

53

IngenCO2.dk operates the CO2 Neutral Website certification service, enabling website owners to offset their digital carbon footprint by supporting globally recognized sustainability projects certified by Gold Standard. The company positions itself as a trusted provider with over 32,000 websites certified, offering branding benefits and verified CO2 neutrality through annual audits by BDO. The website is professionally designed, multilingual, and leverages modern web technologies including Next.js and Sanity.io CMS, ensuring a fast and responsive user experience. Security measures include HTTPS and Google reCAPTCHA v3, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain www.minskaco2.se raises concerns about domain registration legitimacy, warranting further investigation. Overall, the business demonstrates strong sustainability credentials and market presence, but domain registration transparency should be improved.