Security Directory

S

Slovenská vegánska spoločnosť

veganskaspolocnost.sk

55

Slovenská vegánska spoločnosť is a Slovak non-profit organization dedicated to promoting the benefits of a plant-based diet and vegan lifestyle. Established in 2016, it serves as an advocacy and educational platform offering resources such as podcasts, petitions, membership programs, and certification services (notably the V-Label). The organization targets the general public interested in ethical, environmental, and health aspects of veganism. Their website reflects a consistent brand identity and provides a well-structured user experience with clear navigation and relevant content.

V

V-Label

v-label.eu

55

V-Label is a globally recognized certification organization specializing in vegan and vegetarian product labeling, established in Switzerland in 1996. The website serves as a comprehensive platform for producers, retailers, and consumers, offering certification services and product information. The organization holds a strong market position as the leading vegan and vegetarian trademark worldwide, with a broad international presence and partner network. Technically, the website is built on WordPress and employs modern web technologies including jQuery, cookie consent management via Borlabs Cookie, and analytics tools such as Google Analytics and HubSpot. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices, though some security headers are missing. From a security perspective, the site enforces HTTPS and manages user consent effectively, but lacks several common security headers that could enhance protection against clickjacking and MIME sniffing. The absence of WHOIS registration data for the domain is a notable concern, potentially impacting trust and legitimacy perceptions. Overall, the website is professional, content-rich, and user-friendly, but the missing domain registration information and some security header gaps suggest areas for improvement to strengthen trust and security posture.

V

Vegan Society Luxembourg A.S.B.L.

vegansociety.lu

47

Vegan Society Luxembourg is a small non-profit organization dedicated to promoting veganism in Luxembourg and Europe through education, events, and community engagement. Their website offers membership options, donation capabilities, and resources to support their mission. The organization maintains an active social media presence and provides clear contact information, enhancing their community outreach and trustworthiness. Technically, the website is built on WordPress using popular plugins such as WooCommerce and Elementor, delivering a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks some advanced security headers and visible incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trust. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

G

Green REV Institute

greenrev.org

55

Green REV Institute is a Polish non-profit organization dedicated to advocating for sustainable food systems, animal rights, and climate action. The organization operates through educational programs, advocacy campaigns, coalition building, and publication of reports and magazines. Their target audience includes activists, experts, policymakers, and informed consumers interested in environmental and social justice. The website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and integrates third-party services like Stripe and Hotjar for payments and analytics. Security posture is good with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and security headers are recommended. The WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional, content-rich, and trustworthy, serving as an effective platform for the organization's mission.

V

Vegan France Interpro

vegan-france.fr

51

Vegan France Interpro is a French non-profit association dedicated to the economic development of vegan businesses in France. The website serves as a platform for news, events, and advocacy related to veganism and vegan economic activities. It targets French vegan businesses, startups, and stakeholders interested in the vegan market. The association positions itself as a key player in promoting vegan economic interests within France, providing networking opportunities and visibility for vegan enterprises. Technically, the website is built on WordPress, utilizing common libraries such as jQuery, Font Awesome, and Owl Carousel for UI components. The site is mobile-optimized with a professional design and clear navigation, though some accessibility features are basic. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partially addressed with a privacy policy present and GDPR considerations, but cookie consent mechanisms are absent. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is professional and trustworthy in content and presentation but would benefit from enhanced security headers, explicit cookie consent, and more transparent contact information. The absence of WHOIS data limits domain legitimacy verification, which slightly reduces trustworthiness. Strategic improvements in security and privacy compliance would strengthen the site's risk posture and user trust.

U

Udruženje Sloboda za životinje

sloboda-za-zivotinje.org

43

Udruženje Sloboda za životinje is a Serbian non-profit organization dedicated to animal rights, vegan lifestyle promotion, and education on plant-based nutrition. Established in 2003, it has a strong presence in Serbia with a focus on creating a world free from animal exploitation and suffering. The organization engages in direct animal aid, educational campaigns, volunteer programs, and operates an online store for promotional products. Their website reflects a mature digital presence using WordPress and Elementor, with multilingual support and social media integration. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in DNSSEC and security headers are recommended. Overall, the site is trustworthy, professionally maintained, and compliant with privacy regulations.

P

ProVeg International

proveg.org

66

ProVeg International is a medium-sized international non-profit organization dedicated to promoting healthy and sustainable diets through plant-based foods. The organization collaborates with governments, NGOs, and stakeholders to advocate for action plans supporting plant-based diets. The website reflects a professional and consistent brand image with excellent content quality and clear messaging targeted at governments and NGOs interested in sustainability and health. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and Yoast SEO, hosted behind Cloudflare DNS. It employs a consent management platform (Usercentrics) for cookie compliance and integrates marketing tools like HubSpot and Facebook Pixel. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. From a security perspective, the site uses HTTPS with good SSL configuration and domain registration protections. However, DNSSEC is not enabled, and some common security headers are not explicitly present. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with cookie consent but no explicit privacy or terms of service pages found. Overall, the website is trustworthy and professional with a solid security posture for a non-profit. Strategic improvements in privacy policy transparency and enhanced security headers would further strengthen compliance and trust.

AVA - Associazione Vegan Animalista is a small non-profit organization based in Italy dedicated to promoting vegan culture, animal rights, and ethical living. The website serves as an educational platform offering articles, events, and cultural activities to engage its target audience of vegans and animal rights advocates. The organization maintains an active presence on social media and provides clear contact information, enhancing its credibility and community engagement. Technically, the website is built on WordPress with a variety of plugins including Yoast SEO, Everest Forms, and newsletter management tools, indicating a moderate level of digital maturity. The site is hosted with WordPress.com CDN services, uses HTTPS with DNSSEC enabled, and implements cookie consent mechanisms compliant with GDPR. Performance and mobile optimization are adequate, though accessibility features could be improved. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and DNSSEC, but lacks advanced security headers like CSP and does not publicly disclose a security policy or incident response procedures. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is well addressed with visible privacy and cookie policies. Overall, AVA's website is trustworthy, professionally maintained, and aligned with its mission. Strategic improvements in security headers, incident response visibility, and accessibility would further strengthen its posture and user trust.

Ö

Öko-völgy Alapítvány

okovolgy.hu

55

Öko-völgy Alapítvány is a Hungarian non-profit organization dedicated to fostering a sustainable, ecological, and organic farm community. The organization emphasizes education, volunteer work, and community engagement to promote environmental stewardship. The website serves as an informational and engagement platform, providing news, project details, and contact avenues for interested parties. The domain is well-established since 2007, supporting the organization's credibility and longevity. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and Font Awesome. It integrates Google Analytics and Facebook Pixel for user tracking and marketing insights. The site is mobile-optimized with good SEO practices but lacks some advanced security headers and explicit privacy or cookie policies, which are areas for improvement. From a security perspective, the site uses HTTPS with a valid SSL configuration, but no advanced security headers were detected. There is no visible incident response or vulnerability disclosure information. The presence of multiple external gambling-related links and hidden promotional content may pose reputational risks and affect content safety ratings. Overall, the security posture is moderate but could be enhanced with better policies and headers. The overall risk is moderate with no critical security issues detected. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, publishing a security.txt file, and reviewing third-party content to ensure alignment with the organization's mission and audience expectations.

T

The Vegetarian Society of the United Kingdom Limited

vegsoc.org

67

The Vegetarian Society UK is a well-established non-profit organization dedicated to promoting vegetarian and vegan lifestyles through advocacy, education, membership services, and trademark certification. With a history spanning over 175 years, it holds a leading position in the UK vegetarian movement. The website reflects a professional and consistent brand image, offering rich content including cookery classes, recipes, campaigns, and donation opportunities. Technically, the site is built on WordPress with WooCommerce and Gravity Forms, integrating modern tools like Google Tag Manager and accessibility widgets, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be enhanced. WHOIS data confirms domain longevity and legitimacy, with privacy protection justified for this type of organization. Overall, the site is trustworthy, user-friendly, and compliant with privacy regulations.

P

ProVeg International

proveg.com

50

ProVeg International is a medium-sized international non-profit organization dedicated to promoting healthy and sustainable diets through plant-based foods. The organization collaborates with governments, NGOs, and stakeholders to advocate for action plans supporting plant-based diets, positioning itself as a leader in the non-profit advocacy sector focused on sustainability and health. The website reflects a professional and consistent brand image with good content quality and clear messaging aimed at governments and NGOs. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and uses Cloudflare for DNS. It employs Usercentrics for cookie consent, indicating awareness of GDPR compliance. The site is mobile-optimized and uses SEO best practices including Yoast SEO. Performance is moderate with good accessibility features. From a security perspective, the site uses HTTPS with domain locking status flags and cookie consent mechanisms. However, it lacks explicit published security policies, incident response plans, and vulnerability disclosure mechanisms. DNSSEC is not enabled, which is a recommended improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic recommendations include publishing privacy and security policies, enabling DNSSEC, and adding vulnerability disclosure information to enhance trust and compliance.

D

Dansk Vegetarisk Forening

vegetarisk.dk

43

Dansk Vegetarisk Forening is a Danish non-profit organization dedicated to supporting vegetarians, vegans, and advocates of a green lifestyle. The organization offers memberships, political advocacy, education, and information services to its community. It holds a leading position in Denmark's vegetarian movement and maintains a strong digital presence with comprehensive content and active social media engagement. The website is built on WordPress using modern themes and plugins, ensuring good SEO and mobile responsiveness. Security measures such as HTTPS, security headers, and cookie consent mechanisms are properly implemented, reflecting a mature security posture. However, the site lacks explicit security policies and vulnerability disclosure information, which could enhance trust and preparedness. Overall, the website is professional, trustworthy, and well-aligned with its mission, with recommendations to improve incident response transparency and accessibility features.

I

Infenso d.o.o.

infenso.hr

44

Infenso d.o.o. is a Croatian technology company specializing in system integration, network equipment design and implementation, IoT solutions, application development, and advanced 3D visualization. Established in 2013, the company targets businesses and organizations seeking digital transformation and integration services. Their market position is that of a niche technology integrator within Croatia, leveraging modern digital tools and platforms to deliver tailored solutions. The website reflects a professional and consistent brand image with good content quality and relevant business information. Technically, the site is built on WordPress with Elementor, utilizing a modern tech stack including jQuery, Google Analytics, and various JavaScript libraries for enhanced user experience. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, but lacks explicit security policies and vulnerability disclosures. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

M

Medialab Varaždin

medialab.hr

45

Medialab Varaždin is a Croatian IT service provider specializing in modern web development, server and NAS maintenance, and IT infrastructure management. Founded in 2016, the company targets businesses seeking reliable technology solutions to support their operations. The website reflects a professional and consistent brand presence with clear messaging about their services and partnerships with local companies. Technically, the site is built on WordPress using popular plugins such as Yoast SEO and WPBakery Page Builder, hosted on Totohost servers. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though it lacks security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and stability.

G

Gradsko društvo Crvenog križa Valpovo

crvenikrizvalpovo.hr

42

Gradsko društvo Crvenog križa Valpovo is a local branch of the Croatian Red Cross focused on humanitarian aid, blood donation, social support, and community health initiatives. The organization serves the local community in Valpovo, Croatia, providing essential services to vulnerable populations and coordinating volunteer efforts. Their website reflects a well-established non-profit with consistent branding and clear communication of their mission and services. Technically, the website is built on WordPress using Elementor, with modern libraries such as jQuery and Swiper.js, hosted by CARNET, a reputable Croatian academic network. The site is mobile-optimized and accessible, with good SEO practices and a moderate performance profile. Security-wise, the site uses HTTPS and common security plugins but lacks explicit security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and trustworthiness.

G

Gradsko društvo Crvenog križa Osijek

crvenikrizosijek.hr

56

Gradsko društvo Crvenog križa Osijek is a local branch of the Croatian Red Cross, providing a wide range of humanitarian, social, health, and educational services to the community. Established in 1878, it holds a strong position as a trusted non-profit organization in Croatia, focusing on first aid training, blood donation, youth programs, disaster response, and social support. The website reflects this mission with well-structured content and clear navigation targeting volunteers, donors, and the general public. Technically, the website is built on WordPress with common frameworks like Bootstrap and jQuery, hosted under Croatian registrar CARNET and using Cloudflare DNS. The site is moderately optimized for performance and mobile devices, with good accessibility features and SEO practices. However, some technical debt is present, such as the use of an outdated jQuery version and lack of advanced security headers. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS, which provides a solid baseline. The presence of Facebook Pixel and Google Analytics indicates moderate user tracking. No critical vulnerabilities or exposed sensitive data were detected, but improvements are recommended in updating libraries, implementing security headers, and adding a vulnerability disclosure mechanism. Overall, the website is professional, trustworthy, and safe for general audiences. It lacks explicit privacy and terms of service pages, which impacts privacy compliance scores. Strategic improvements in security and compliance documentation would enhance its posture and user trust.

G

Gradsko društvo Crvenog križa Đakovo

gdcrvenikrizdjakovo.hr

44

Gradsko društvo Crvenog križa Đakovo is a local branch of the Croatian Red Cross focused on providing humanitarian aid, social services, health-related activities, and volunteer coordination within the Đakovo region. The organization operates as a non-profit entity with a clear community-oriented mission, offering services such as first aid training, blood donation campaigns, and disaster response. Their website reflects this mission with relevant content and official documentation, targeting the general public and volunteers in the local area. Technically, the website is built on WordPress with common plugins such as MasterSlider and Bootstrap for responsive design. The site is hosted under Croatian academic network infrastructure (CARNET), ensuring local presence and reliability. The website demonstrates good mobile optimization and accessibility features, although SEO and advanced technical optimizations are basic. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS properly but lacks several security headers and advanced protections such as anti-CSRF tokens on forms. There is no visible cookie consent mechanism, which is a GDPR compliance gap. The WHOIS data is consistent with the organization's location and purpose, enhancing trustworthiness. No critical vulnerabilities or suspicious indicators are found, but improvements in security policies and technical safeguards are recommended. Overall, the website is a trustworthy and functional digital presence for a small non-profit humanitarian organization. Strategic enhancements in security posture and privacy compliance would further strengthen their digital maturity and user trust.

Gradsko društvo Crvenog križa Donji Miholjac is a local branch of the Croatian Red Cross, established in 2012, providing humanitarian aid, blood donation campaigns, social services such as home assistance, and community support activities. The organization targets local community members, volunteers, and donors, operating as a non-profit entity with a strong local presence and partnerships with municipal and regional government bodies. The website reflects this mission with relevant content, news updates, and event information.

K

Knihovna na Vinohradech

knv.cz

44

Knihovna na Vinohradech is a public library serving the Vinohrady district in Prague, Czech Republic. The website provides information about library services, events, exhibitions, and access to an online catalog. The institution operates as a non-profit entity affiliated with the local municipality (Městská část Praha 2). The site targets the general public and local community members interested in cultural and educational resources. Technically, the website is built on WordPress, utilizing common plugins such as MonsterInsights for analytics and SlideDeck for content presentation. Hosting is provided by Wedos, a Czech hosting provider, consistent with the domain registration data. The website design is basic but functional, with moderate performance and limited mobile optimization.

V

Viešoji įstaiga Architektūros fondas

archfondas.lt

50

Architektūros fondas is a Lithuanian non-profit organization established in 2004, dedicated to promoting architectural culture, education, and community engagement. The organization operates various cultural and educational projects, including mentorship programs and international collaborations, targeting a broad audience interested in architecture and culture. The website is professionally designed, content-rich, and well-structured, supporting the organization's mission and outreach efforts. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses several JavaScript libraries for enhanced user experience. It employs SEO best practices and is mobile-optimized. Security-wise, the site uses HTTPS and GDPR-compliant cookie consent mechanisms, though explicit security headers and policies are not evident. Overall, the site demonstrates a mature digital presence with good privacy compliance and trustworthy business information.

S

Sport Na Františku

sportnafrantisku.cz

45

Sport Na Františku operates a well-established sports complex located in the heart of Prague 1, offering a variety of sports facilities and activities primarily targeting children, schools, and the general public. The website presents a professional and user-friendly interface with detailed information about sports programs, pricing, and event hosting options. Technically, the site is built on WordPress with modern JavaScript libraries and includes cookie consent management and Google Tag Manager integration, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and some privacy controls, but lacks advanced security headers and published security policies. The absence of WHOIS data limits full domain legitimacy verification, representing a moderate risk. Overall, the site is trustworthy and well-positioned in its local market but would benefit from enhanced compliance documentation and security hardening.

N

Naivistit Iittalassa -säätiö SR

naivistit.fi

49

Naivistit Iittalassa -säätiö is a Finnish cultural foundation dedicated to organizing naive art exhibitions and related events in Iittala, Finland. The website serves as a portal for visitors and art enthusiasts to learn about current and upcoming exhibitions, purchase art, and engage with the naive art community. The organization maintains a clear market niche focused on naive art, supported by a small but consistent digital presence and multilingual accessibility. The website is professionally designed with good content quality and clear navigation, targeting a general audience interested in art and culture. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and GDPR-compliant cookie management. Hosting is provided by Hostaan Oy, a Finnish hosting provider. The site demonstrates good mobile optimization and moderate performance. Security measures include HTTPS enforcement and Google reCAPTCHA integration, though some security headers are missing. Privacy compliance is well addressed with clear policies and consent mechanisms. The security posture is solid for a small cultural foundation, with no critical vulnerabilities detected. The WHOIS data confirms legitimacy with consistent registrant information matching the website content and a domain age appropriate for the foundation's history. No suspicious patterns or privacy protection obfuscation are present. Overall, the website is trustworthy, secure, and compliant with relevant regulations. Strategic recommendations include enhancing security headers, maintaining plugin updates, and considering a dedicated security policy page to further improve trust and compliance. The website effectively supports the foundation's mission and provides a reliable digital platform for its audience.

H

Hämeenlinnan kaupunki

hameenlinnantaidemuseo.fi

67

Hämeenlinnan taidemuseo is a municipal art museum located in Hämeenlinna, Finland, operated by the city government. The museum offers a diverse range of visual art exhibitions, events, educational programs, and retail services, targeting the general public, art enthusiasts, and tourists. The website reflects a well-established regional cultural institution with a clear focus on accessibility and community engagement. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for consent management, and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration aligns with the municipal ownership, confirming legitimacy and trustworthiness.

K

Kulttuurikeskus ARX

kulttuurikeskusarx.fi

65

Kulttuurikeskus ARX is a municipal cultural center based in Hämeenlinna, Finland, focused on providing cultural services and events primarily for children, youth, and families. The website serves as a hub for information about their activities, exhibitions, festivals, and youth programs, positioning itself as a key local cultural institution. The business is affiliated with the city of Hämeenlinna, reinforcing its legitimacy and public service orientation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot, indicating a mature digital infrastructure. Analytics are handled via Matomo and Google Analytics, with clear cookie consent mechanisms in place, reflecting good privacy practices. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, with no signs of blocking or WAF interference.

H

Hämeenlinnan Liikuntahallit Oy

liikuntahallit.fi

71

Hämeenlinnan Liikuntahallit Oy is a municipally owned limited company operating under the city of Hämeenlinna, Finland. It provides a broad range of sports and recreational services including management of swimming halls, sports halls, gyms, ice rinks, and related facilities. The company targets local residents, sports clubs, and community groups, positioning itself as a key municipal service provider in the sports sector. The website reflects a professional and consistent brand presence with clear navigation and relevant content for its audience. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for privacy compliance. Analytics are handled primarily through Matomo, ensuring privacy-conscious data collection. The site is mobile optimized and accessible, with good SEO practices implemented. However, some plugins like MonsterInsights are installed but not configured, indicating room for technical refinement. From a security perspective, the site enforces HTTPS and uses a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a publicly available security policy or incident response contact reduces transparency in security governance. The site would benefit from adding security headers and formalizing its security posture. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements. It serves its municipal function effectively with a moderate security maturity level. Strategic improvements in security policy publication and analytics configuration would enhance its posture further.

J

Jätelautakunta Kolmenkierto

kolmenkierto.fi

67

Jätelautakunta Kolmenkierto is a Finnish governmental waste management authority serving 13 municipalities. The organization provides regulatory oversight and services related to waste management, including waste fees, composting notifications, and waste regulations. The website is professionally designed, targeting residents and municipal stakeholders within its service area. It operates under the parent organization Hämeenlinnan kaupunki and maintains a consistent brand presence online. Technically, the website is built on WordPress CMS with modern plugins such as Yoast SEO and Cookiebot for privacy compliance. It uses Matomo analytics to respect user privacy and implements HTTPS with good SSL configuration. The site is mobile-optimized and accessible, with good SEO practices in place. From a security perspective, the site enforces HTTPS and cookie consent but lacks a dedicated security policy or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear cookie categories and GDPR adherence. The domain registration aligns well with the website's governmental nature, enhancing trustworthiness. Overall, the website presents a low-risk profile with good privacy and security practices. Strategic recommendations include publishing a security policy, adding incident response contacts, and enhancing security headers to further strengthen the security posture.

M

MyIntegration

myintegration.fi

48

MyIntegration is a Finnish-based company with an online presence focused on integration services, as indicated by the website title and branding. The website is built on WordPress and employs a modern technology stack including popular plugins such as Yoast SEO, Smart Slider 3, and Cookiebot for cookie consent management. The site supports multiple languages, indicating a target audience that is international or multilingual. The business appears to be small-sized with a consistent brand image and a moderate level of trust signals, including a Facebook social media presence. Technically, the website is well-structured with proper SEO meta tags and uses HTTPS with an excellent SSL configuration. The use of Matomo analytics shows a commitment to privacy-friendly tracking. However, the site lacks visible security headers and does not publish a privacy policy or terms of service, which are important for compliance and user trust. No direct contact information is found on the homepage, which may affect user confidence. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. There are no visible vulnerabilities or exposed sensitive data. The absence of a security policy and incident response contacts suggests room for improvement in security transparency and readiness. Overall, the website is functional, moderately secure, and privacy-conscious but would benefit from enhanced compliance documentation and clearer contact information to improve trust and professionalism.

A

Association des Agences Marketing et Communication | MarkCom

markcom.lu

56

MarkCom is a well-established non-profit association representing 29 leading marketing and communication agencies in Luxembourg since 1995. The organization promotes excellence, best practices, training, and advocacy for agencies and advertisers. The website is professionally designed, mobile-optimized, and rich in relevant content including events, tools, and news updates. Technically, the site is built on WordPress with modern plugins and performance optimizations, hosted via EuroDNS. Security posture is strong with HTTPS, security headers, and consent management, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the domain registration and hosting details align with the business profile, indicating legitimacy and trustworthiness.

P

Parasta Lapsille ry

parastalapsille.fi

60

Parasta Lapsille ry is a well-established Finnish non-profit organization focused on child welfare and family well-being. The organization offers camps, weekend activities, and volunteer opportunities to support children and families, emphasizing multicultural inclusion. The website reflects a mature digital presence with clear branding, comprehensive content, and active social media engagement. Technically, the site is built on WordPress with modern plugins and is hosted behind Cloudflare, ensuring good performance and security. Privacy compliance is robust, featuring GDPR-aligned cookie consent and a detailed privacy policy. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the domain WHOIS data aligns well with the organization's identity, supporting high legitimacy and trust.

M

Martat

martat.fi

62

Martat is a Finnish non-profit organization dedicated to promoting home and family wellbeing and the appreciation of household management. The website serves as a comprehensive portal for membership, educational courses, events, publications, and community engagement. It targets Finnish households and families interested in sustainable and responsible living. The organization has a strong national presence with local chapters and a variety of services including international aid projects. Technically, the site is built on WordPress with WooCommerce and integrates modern JavaScript libraries and third-party services for analytics, feedback, and chat support. The site is well-optimized for SEO, mobile-friendly, and accessible. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

Z

Zeckit

zeckit.com

75

Zeckit is a Finnish online platform providing free access to background information and customer reviews for all Finnish companies. The website targets Finnish consumers and businesses seeking reliable company data and reviews, positioning itself as a comprehensive resource in the Finnish market. The business model appears to be based on free access, likely monetized through advertising and partnerships. Technically, the site is built on WordPress, hosted on Amazon Web Services, and uses modern web technologies including jQuery, FontAwesome, and Cookiebot for cookie consent management. SEO is well implemented with Yoast SEO and structured data. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers and policies could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is professional, trustworthy, and compliant with GDPR cookie consent requirements, but lacks visible privacy policy and contact information in the analyzed content.

L

LUGA

luga.lu

63

LUGA is a cultural event organizer hosting an ephemeral urban garden exhibition in Luxembourg from May to October 2025. The website serves as an information and engagement platform for visitors, volunteers, and partners, showcasing event details, locations, and news. The site is well designed, multilingual, and optimized for SEO and accessibility, reflecting a mature digital presence. Technically, it leverages WordPress CMS, Cloudflare for DNS and CDN, and integrates modern analytics and consent management tools, indicating a good level of digital maturity. Security posture is solid with HTTPS, security headers, and cookie consent, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

C

Czech Union of the Deaf, z.ú.

cun.cz

54

The Czech Union of the Deaf, z.ú. is a well-established non-profit organization dedicated to supporting the deaf community in the Czech Republic. Their website presents a clear and professional overview of their services, including activation services, sign language interpreting, simultaneous transcription, educational courses, and publications. The organization maintains multiple regional branches and active social media presence, indicating a strong community engagement and outreach. Technically, the website is built on WordPress with WooCommerce integration for e-commerce functionality, leveraging common web technologies such as jQuery and Google Fonts. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks advanced security headers and explicit privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data is a notable concern, reducing domain registration transparency and trustworthiness. Overall, the website is functional, trustworthy, and serves its community well, but could improve in privacy compliance and security best practices.

Luxembourg for Finance is a government-related agency focused on the development and promotion of Luxembourg's financial services industry. Established in 2008, it serves as a key player in identifying new business opportunities and supporting the financial sector's growth. The website reflects a professional and consistent brand image, targeting financial industry stakeholders and investors interested in Luxembourg's market. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates analytics tools including Google Analytics and Piwik PRO. It employs Google Tag Manager and reCAPTCHA for enhanced tracking and security. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features could be improved. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms to comply with GDPR. However, it lacks visible security headers and explicit security or incident response policies on the site. The absence of WHOIS domain registration data raises concerns about domain transparency and legitimacy, although the professional content and social media presence mitigate some risk. Overall, the website presents a moderate risk profile with good content quality and technical implementation but requires improvements in privacy transparency, contact information availability, and domain registration clarity. Strategic recommendations include publishing comprehensive privacy and terms of service policies, enhancing security headers, and verifying domain registration details to strengthen trust and compliance.

K

Kultur | lx – Arts Council Luxembourg

kulturlx.lu

58

Kultur | lx – Arts Council Luxembourg is a governmental cultural promotion organization dedicated to supporting artists and promoting Luxembourg's cultural creation. The website serves as a comprehensive platform for cultural news, events, funding opportunities, and resources, targeting artists, cultural professionals, and the general public interested in Luxembourg's arts scene. The organization holds a strong national position as the official arts council, supported by government partnerships and a clear mission to foster cultural development. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates Google services like Tag Manager and reCAPTCHA. Accessibility features and GDPR-compliant cookie management via Axeptio demonstrate digital maturity and compliance. The site is mobile-optimized and well-structured, providing a positive user experience. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though the absence of explicit security headers and incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data limits domain trust verification, but the professional presentation and official branding mitigate concerns. Overall, the website is a trustworthy, well-maintained digital presence for a government cultural entity, with recommendations to enhance security headers and incident response transparency to further strengthen its security posture.

P

Poutapilvi

poutapilvi.fi

71

Poutapilvi is a Finnish digital agency specializing in digital service design, WordPress and WooCommerce development, and content marketing support. The company positions itself as a reliable partner for businesses and organizations seeking professional web solutions, emphasizing accessibility, usability, and customer service excellence. Their market presence is supported by multiple references and a high credit rating, indicating strong business credibility. Technically, the website is built on WordPress with a modern tech stack including Algolia search, Matomo analytics, and Google Tag Manager. The site demonstrates excellent performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies. Security posture is solid with HTTPS enforced and privacy-respecting analytics, though the absence of explicit security policies and incident response contacts suggests room for improvement. No critical vulnerabilities or suspicious indicators were found, supporting a high trust level. Overall, Poutapilvi presents a professional, secure, and privacy-conscious digital presence suitable for its target audience. Strategic enhancements in security transparency and incident readiness would further strengthen their position.

S

Seravo

seravo.com

78

Seravo is a Finnish company specializing in premium managed WordPress hosting services, focusing on site speed, security, and automatic updates with continuous 24/7 monitoring. The company positions itself as a niche provider targeting WordPress site owners and agencies seeking reliable and secure hosting solutions. Their business model is subscription-based, emphasizing high-quality service and compliance with industry standards such as ISO 27001 and GDPR. The website reflects a professional and consistent brand image with comprehensive business and security information.

V

Visit Naantali

visitnaantali.com

55

Visit Naantali operates as the official tourism website for the Naantali region in Finland, providing comprehensive information about local attractions, events, accommodations, and activities. The site targets tourists and visitors seeking to explore Naantali, positioning itself as a trusted and authoritative source for travel planning in the area. The business model focuses on tourism promotion and visitor engagement through digital content and booking facilitation. Technically, the website is built on WordPress with modern technologies including Bootstrap 5 for responsive design, Yoast SEO for search optimization, and Cookiebot for GDPR-compliant cookie consent management. The infrastructure includes Google Tag Manager and Matomo Analytics for tracking and performance monitoring. The site demonstrates good mobile optimization and accessibility features, though some accessibility aspects could be enhanced. From a security perspective, the website enforces HTTPS and employs clientTransferProhibited status on the domain to prevent unauthorized transfers. Cookie consent is actively managed, and no critical vulnerabilities or exposed sensitive data were detected. However, DNSSEC is not enabled, and additional HTTP security headers could be implemented to strengthen security posture further. Overall, the website presents a professional, trustworthy, and user-friendly platform for tourism promotion with a solid technical foundation and good privacy compliance. The absence of explicit privacy policy and terms of service pages in the scanned content is a gap that should be addressed to improve compliance and user trust.

D

DRUŠTVO CRVENOG KRIŽA ZAGREBAČKE ŽUPANIJE

dck-zagrebacka-zupanija.hr

45

The website represents the Croatian Red Cross Society of Zagreb County, a regional non-profit organization dedicated to humanitarian aid, blood donation, and volunteering. It serves the general public in Zagreb County and provides information and services aligned with the Red Cross mission. The site is built on a WordPress platform using modern themes and plugins, including Elementor and Modern Events Calendar Lite, indicating a moderate level of digital maturity. Accessibility features and GDPR-compliant cookie consent mechanisms are implemented, reflecting attention to user experience and privacy. Security posture is good with HTTPS enabled and no visible vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy and professionally maintained, with clear branding and consistent content.

D

Društvo Crvenog križa Varaždinske županije

dck-vz.hr

44

Društvo Crvenog križa Varaždinske županije is a regional branch of the Croatian Red Cross, providing humanitarian aid, first aid training, blood donation campaigns, and volunteer coordination primarily for the Varaždin County community. The website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, featuring a modern design and good mobile responsiveness. Security posture is solid with HTTPS enforced and Google reCAPTCHA protecting forms, though additional HTTP security headers could improve defenses. Privacy compliance is evident with a cookie consent banner and a privacy policy page aligned with GDPR requirements. Contact information including emails, phone, and physical address is clearly presented, enhancing business credibility.

L

Living Room Conversations

livingroomconversations.org

54

Living Room Conversations is a US-based non-profit organization established in 2011, dedicated to fostering community dialogue and understanding through structured conversations. Their website serves as a platform to provide resources and frameworks to individuals and organizations interested in facilitating meaningful conversations. The organization operates in the non-profit sector with a focus on community engagement and education. Technically, the website is built on WordPress using popular plugins such as Elementor and GiveWP, hosted on SiteGround, and employs Google Analytics for visitor tracking. The site is mobile-optimized and presents a professional design with good navigation and content relevance. Security-wise, the site enforces HTTPS and has domain protections in place but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

A

AllSides Education Fund

allsideseducationfund.org

64

AllSides Education Fund is a nonprofit organization dedicated to strengthening democratic society by enhancing media literacy, providing balanced news access, and fostering constructive conversations across political divides. Founded in 2015 as a joint initiative of AllSides, Living Room Conversations, and the Mediators Foundation, it offers educational resources, scholarships, and grants primarily targeting educators and community leaders. The website serves as a platform to promote these services and facilitate donations and grant applications. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and GiveWP for donations, with a responsive design optimized for accessibility and SEO. Hosting is supported by Amazon AWS infrastructure, and the site employs Google Tag Manager for analytics and tracking. While the site uses HTTPS and has domain transfer protections, it lacks DNSSEC and some security headers, indicating room for security improvements. From a security perspective, the site demonstrates a moderate security posture with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies and incident response information, along with missing DNSSEC, suggests potential compliance and security gaps. Privacy policies and cookie policies are present but do not include explicit consent mechanisms, which may affect GDPR compliance. Overall, the website is professional, trustworthy, and well-aligned with its nonprofit educational mission. Strategic recommendations include enhancing DNS security, implementing security headers, and improving privacy compliance mechanisms to strengthen trust and security posture.

C

College Magazine, LLC

collegemagazine.com

65

College Magazine, LLC operates a professional online media platform focused on providing college-related content authored by students nationwide. The website offers comprehensive guides on colleges, majors, internships, career advice, and student life, positioning itself as a niche educational media outlet. The platform leverages a modern WordPress infrastructure with advanced SEO and analytics tools, ensuring a fast, mobile-optimized, and accessible user experience. Security posture is strong with HTTPS enforcement and privacy management tools, though explicit privacy and terms pages are missing, which should be addressed to improve compliance and trust. WHOIS data is unavailable or privacy protected, slightly impacting domain trust but not detracting from the professional presentation and content quality. Overall, the site is a credible resource for college students and prospective applicants.

S

Saunia

saunia.sk

55

Saunia operates as a regional sauna and wellness service provider primarily targeting customers seeking relaxation and health benefits through sauna experiences. The website presents a professional and consistent brand image, with content focused on promoting their sauna worlds and wellness offerings. The company appears to be established in the Czech Republic, serving a general audience interested in wellness and leisure. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Cookiebot for consent management, and various plugins for social sharing and popups. The site is mobile-optimized and includes structured data for SEO and organization information, indicating a mature digital presence. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is supported by cookie disclosures and consent but lacks a clearly accessible privacy policy page in the provided content. Overall, the website is trustworthy and professionally maintained, with no blocking or WAF interference detected. The absence of WHOIS data limits domain registration insights but does not detract from the site's apparent legitimacy. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and adding vulnerability disclosure information to improve trust and compliance.

S

Saunia

saunia.de

52

Saunia operates as a regional wellness and sauna service provider primarily targeting customers in the Czech Republic and neighboring countries. The website presents a professional and well-structured digital presence, leveraging WordPress CMS and integrating multiple marketing and analytics tools such as Google Analytics, Microsoft Clarity, and Cookiebot for consent management. The business focuses on delivering sauna experiences and wellness services, positioning itself as a trusted brand in the hospitality sector. However, the absence of publicly available WHOIS data and explicit privacy or terms of service pages slightly detracts from the overall trustworthiness. Technically, the site is well-optimized for mobile devices and SEO, though there is room for improvement in accessibility and security header implementation. The security posture is solid with HTTPS enforced and no visible vulnerabilities, but could benefit from enhanced transparency through published security policies and vulnerability disclosure mechanisms.

E

European Vegetarian Union

euroveg.eu

48

The European Vegetarian Union (EVU) is a well-established non-profit organization representing vegetarian and vegan associations across Europe. It focuses on advocacy, policy influence, and promoting plant-based diets with a clear emphasis on sustainability, health, and consumer protection. The website serves as a central hub for information, membership coordination, and news related to plant-based food systems in the EU. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The presence of Matomo and Google Analytics shows moderate user tracking for analytics purposes. Security-wise, the site employs HTTPS and several security headers, but lacks publicly available security policies or incident response information. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and serves its niche audience effectively, though it would benefit from enhanced privacy disclosures and direct contact information.

C

cyber_Folks d.o.o.

avalon.hr

57

CyberFolks d.o.o. is a Croatian technology company specializing in web hosting, domain registration, SSL certificates, and e-marketing services. Founded in 2019, it targets businesses, developers, and individuals in Croatia with a strong emphasis on performance, reliability, and customer support. The company positions itself as a trusted local provider with a comprehensive portfolio of hosting solutions including shared hosting, VPS, and specialized WordPress hosting. The website reflects a professional and modern digital presence with clear service offerings and customer testimonials that reinforce trust and credibility. Technically, the site is built on WordPress with modern technologies such as LiteSpeed, CloudLinux, and HTTP/2, ensuring fast performance and mobile optimization. Security practices include HTTPS enforcement, DDoS protection, and backup retention, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, CyberFolks demonstrates a mature digital infrastructure and a solid market position in the Croatian hosting sector.

B

Boston Herald

bostonherald.com

64

Boston Herald is a prominent local news media organization serving the Boston, Massachusetts area, providing comprehensive coverage of news, sports, politics, entertainment, weather, and obituaries. The website demonstrates a mature digital presence with a subscription-based business model supported by a parent company, MediaNews Group. The site is well-branded and targets a general audience seeking timely and relevant local information. Technically, the site is built on WordPress and integrates multiple modern technologies including Google Tag Manager, Auth0 for authentication, and sophisticated ad and analytics platforms such as Google Ad Manager and Parsely. The site is mobile optimized and employs consent management via Osano, reflecting a commitment to privacy compliance. From a security perspective, the site enforces HTTPS, uses standard security headers, and manages cookie consent effectively. However, the absence of a public WHOIS record and lack of explicit security policies or incident response contacts slightly reduce trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, Boston Herald's website is professional, secure, and compliant with privacy regulations, though improvements could be made in transparency around security policies and contact information. The domain WHOIS data absence warrants monitoring but does not currently undermine the site's legitimacy.

EZProvider Networks Inc. operates the website www.ezp.net, providing web hosting services primarily focused on the Vancouver and Canadian market. Their offerings include shared hosting, VPS hosting, and dedicated server hosting, targeting businesses and individuals seeking reliable and fast Canadian-based hosting solutions. The company positions itself as a local, customer-focused provider emphasizing performance and support. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and Google Analytics, indicating a moderate level of digital maturity. The site is mobile optimized and performs well with clear navigation and professional design. Security posture is adequate with HTTPS enforced and use of Google reCAPTCHA; however, the absence of security headers and cookie consent mechanisms indicates room for improvement. The lack of WHOIS data for the domain is a notable concern, impacting trust and legitimacy assessments. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures.

K

Kappa Data France

kappadata.fr

57

Kappa Data France is a value-added IT distributor specializing in network infrastructure and security solutions for businesses. Established in 1986, the company offers reliable products, technical expertise, and support services targeting IT resellers, SMEs, and large enterprises. The website reflects a mature digital presence with a professional design, multi-language support, and modern WordPress infrastructure. Security posture is solid with HTTPS and Cloudflare DNS, though explicit security headers and privacy policies are missing. Analytics are implemented via Google Tag Manager, indicating moderate user tracking. Overall, the site is trustworthy and well-positioned in the technology distribution sector.