Security Directory

Mikroregion Chrudimsko is a regional government association website serving 29 municipalities in the Pardubice region of the Czech Republic. The site provides information about member municipalities, official notices, financial management, realized projects, and tourism opportunities. It targets local residents, government officials, and tourists interested in the region. The business model is informational and supportive of regional development, with a small organizational size and a founding date consistent with the domain registration. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries for UI enhancements. The site is hosted likely by WEDOS, a Czech hosting provider, and shows moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequate with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks visible security headers and published security policies. No forms collect sensitive data, reducing risk, but the absence of privacy and cookie policies indicates compliance gaps with GDPR. No vulnerability disclosures or incident response contacts are provided. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious patterns. Overall, the website is professional, trustworthy, and well-aligned with its regional government purpose. However, it would benefit from improved privacy compliance, enhanced security headers, and formalized security policies to strengthen its security posture and regulatory adherence.

ه

هيئة الإذاعة والتلفزيون

sba.sa

64

The website https://sba.sa/ar represents the official Saudi Broadcasting Authority (هيئة الإذاعة والتلفزيون), a leading government media entity in Saudi Arabia. It provides a comprehensive media platform including television, radio, and digital content services, targeting a broad general audience within Saudi Arabia. The site is professionally designed using Drupal CMS and modern web technologies, offering good mobile optimization and user experience. Social media integration is strong with official accounts on major platforms. Technically, the site employs HTTPS with DNSSEC enabled, indicating a secure DNS setup, though explicit security headers are missing. Privacy and cookie policies are not visibly present, which is a compliance gap. Contact information is not explicitly provided on the site, limiting direct user engagement channels. Overall, the domain registration aligns with the official entity, supporting legitimacy. The site is safe for general audiences with no adult or questionable content detected.

C

Cultural Investment Conference

culturalinvestmentconference.com

61

The Cultural Investment Conference website represents a professional event platform focused on unlocking investment opportunities in the cultural sector, with a strong emphasis on Saudi Arabia's cultural initiatives. The site features detailed information about the conference, including dates, location, speakers, partners, themes, and FAQs, targeting institutional investors, government leaders, cultural entrepreneurs, and NGOs. The business model centers on facilitating networking, knowledge sharing, and partnership building within the cultural investment ecosystem. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Slick Carousel, and analytics tools like Microsoft Clarity and Google Tag Manager. The site is mobile-optimized with good design quality and clear navigation, although accessibility features could be improved. Hosting is via GoDaddy, and the site uses HTTPS with secure forms. From a security perspective, the site demonstrates good practices with HTTPS and CSRF protection on forms but lacks published security policies, incident response information, and security headers. The WHOIS data shows an anomalous future domain creation date, which reduces trustworthiness despite the professional content. No WAF or blocking mechanisms were detected, and no adult or questionable content is present. Overall, the site is credible and professional but should address privacy compliance gaps and WHOIS data inconsistencies to improve trust and security posture.

W

Water Industry Awards

waterindustryawards.co.uk

58

The Water Industry Awards website serves as a professional platform to promote and celebrate excellence within the UK water sector. It is organized by Faversham House and supported by industry partners such as Utility Week. The site provides information about the awards, sponsorship opportunities, past winners, and event details, targeting water industry professionals and stakeholders. The business model centers on event organization and sponsorship revenue, positioning itself as a premier industry event in the UK water sector. Technically, the website leverages modern web technologies including jQuery, Bootstrap, Google Tag Manager, and New Relic for performance monitoring. It is hosted on the Swoogo event management platform, which supports event registration and content management. The site is mobile-optimized with good navigation and accessibility features, although some accessibility aspects could be enhanced. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting good privacy compliance. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data for the domain is unavailable due to a naming rules error, likely caused by querying the 'www' subdomain instead of the root domain, which slightly impacts trust but does not detract from the site's professional presentation. Overall, the website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, maintaining third-party script audits, and clarifying domain registration details to improve trustworthiness and security posture.

M

Mandala Group s.r.o.

ideme.sk

53

Ideme.sk is an established Slovak online travel agency operated by Mandala Group s.r.o., specializing in last minute vacation packages, beach stays, and sightseeing tours worldwide. The website targets Slovak-speaking travelers seeking competitive travel deals and offers a professional, user-friendly platform with clear navigation and relevant content. The company maintains partnerships with reputable travel agencies, enhancing its market position in the hospitality sector within Slovakia. Technically, the site leverages modern web technologies including Bootstrap, Symfony Stimulus, and various JavaScript libraries to deliver a responsive and visually appealing experience. While performance is moderate, mobile optimization and SEO practices are good, supporting effective user engagement. Security posture is solid with HTTPS enforced and secure form handling, though the absence of explicit security headers and a cookie consent mechanism indicates room for improvement. Privacy compliance is strong with a comprehensive GDPR policy, but cookie consent should be implemented to fully align with regulations. Overall, the domain registration data is consistent with the business claims, supporting legitimacy and trustworthiness. Strategic enhancements in security headers and privacy mechanisms would further strengthen the site's security and compliance standing.

W

Wave Energy Scotland

waveenergyscotland.co.uk

65

Wave Energy Scotland is a government-backed organization focused on advancing wave energy technology through research, development, and funding programs. The website reflects a professional and authoritative presence with comprehensive information about their technology programs, research strategies, educational resources, and impact. The organization positions itself as a leader in wave energy innovation in Scotland with international collaborations. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, reCAPTCHA, and various UI libraries, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, supporting the organization's mission effectively.

P

PixelBrothers s.r.o.

pixelbrothers.cz

50

PixelBrothers s.r.o. is a Prague-based digital agency specializing in custom web design, e-commerce platforms, and corporate systems development. The company offers a broad range of services including SEO, PPC marketing, programming, and mobile app development, targeting businesses seeking tailored digital solutions. Their market position is strong within the Czech Republic, supported by a portfolio of reputable clients and positive testimonials. Technically, the website is built on modern frameworks such as Bootstrap and PrestaShop, with integrations for analytics and live chat, demonstrating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and consent mechanisms in place, though improvements are recommended in security headers and explicit privacy documentation. Overall, the website is professional, user-friendly, and trustworthy, though the absence of WHOIS data slightly impacts domain trustworthiness. Strategic recommendations include enhancing security policies, publishing comprehensive privacy and terms documents, and verifying domain registration details.

O

Ocmis Irrigazione S.p.A. a Socio Unico

ocmis-irrigazione.it

10

Ocmis Irrigazione S.p.A. is a medium-sized Italian manufacturing company specializing in irrigation systems and technology. The company offers a broad portfolio of irrigation products including machines, pivot systems, rain hoses, and tractor pumps, complemented by digital irrigation services such as the Irriverso platform. With a global presence spanning 90 countries and 5 continents, Ocmis maintains a strong market position supported by 350 active dealers and four distributed brands. The website is professionally designed, multilingual, and emphasizes sustainability and efficient water resource management. Technically, the website is built on Drupal 8 and leverages modern JavaScript libraries and frameworks such as jQuery, Slick Slider, and Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and incident response information suggests room for improvement. The WHOIS data is unavailable, indicating either recent domain registration or privacy protection, which slightly reduces trust but is mitigated by the professional presentation and legal disclosures on the site. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website reflects a mature digital presence aligned with the company's business objectives and market reach.

F

Fletstock s.r.o.

flet.cz

52

Fletstock s.r.o. is a Czech Republic based company specializing in real estate investment and professional property management services. The company offers a comprehensive suite of services including investment planning, property search, financing, renovation, rental, and ongoing management, targeting a broad audience from beginner investors to premium clients with larger portfolios. Their market position is strong within Prague, supported by client testimonials and case studies demonstrating consistent above-market returns. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and various analytics and tracking tools, hosted on VAS Hosting infrastructure. Security posture is good with HTTPS enforced and GDPR compliance evident through cookie consent and privacy policy, though some security headers and incident response information are missing. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO. However, the WHOIS data shows an anomalous future domain creation date, which is likely a data error but slightly impacts trust assessment.

I

IT servitium Ecclesiae s.r.o.

isomnia.cz

63

IS OMNIA is a specialized web-based information system designed primarily for priests, parishes, and their collaborators to manage parish administration efficiently. The platform offers a comprehensive suite of tools including agenda management, financial bookkeeping, digital registries, and integrated web presence for parishes. It supports multiple dioceses and countries, reflecting a niche but well-established market position. The business model is subscription-based with flexible pricing tailored to the financial capabilities of individual parishes, emphasizing accessibility and community support. The company behind the system, IT servitium Ecclesiae s.r.o., founded in 2020, maintains close collaboration with church authorities and religious organizations, enhancing trust and domain expertise.

O

Ocmis Irrigazione S.p.A. a Socio Unico

irtec-irrigazione.it

55

Ocmis Irrigazione S.p.A. is an Italian company specializing in irrigation technology and manufacturing, operating multiple brands including Irtec. The company offers a broad portfolio of irrigation equipment such as hose reels, pivot systems, pumps, and gearboxes, targeting agricultural businesses and irrigation professionals. The website reflects a medium-sized enterprise with a consistent brand presence and membership in industry associations like EIMA. Technically, the site is built on Drupal 8 with modern JavaScript libraries and frameworks, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published incident response policies. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the overall business credibility and website professionalism mitigate this risk. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to improve trust and compliance.

D

Dieci srl

dieci.com

51

Dieci srl is a manufacturer specializing in telehandlers, forklifts, concrete mixers, and dumpers primarily serving the agriculture and construction sectors. The company offers a broad product range including stationary, articulated, and rotating machinery, targeting professional users in farming, construction, mining, and emergency services. The website is multilingual, professionally designed, and includes resources such as downloadable brochures, dealer networks, newsletters, and digital service portals (DTS and DCS). Technically, the site uses modern web technologies including Bootstrap, jQuery, and various UI libraries, with integration of Google Tag Manager and Facebook Pixel for analytics and marketing. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit incident response information. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the site is functional, professional, and trustworthy from a business perspective but could improve security and transparency aspects.

K

Klimaschutz- und Energieagentur Niedersachsen GmbH

klimaschutz-niedersachsen.de

55

Klimaschutz- und Energieagentur Niedersachsen GmbH operates as a regional competence center focused on climate protection, energy efficiency, and renewable energy initiatives within Lower Saxony, Germany. The agency provides informational resources, consulting services, and supports various stakeholders including municipalities, businesses, and societal groups. Their market position is that of an authoritative regional agency supported by the Lower Saxony Ministry for Environment, Energy and Climate Protection. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the website employs modern JavaScript libraries such as jQuery, Foundation-sites, and AOS for animations, alongside RequireJS for module loading. It integrates Google Tag Manager for analytics and CookieFirst for consent management, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured navigation. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism. However, it lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with a legitimate public agency domain. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

T

TrialX

trialx.com

65

TrialX operates as a healthcare technology company specializing in providing a comprehensive clinical trials listing service. Their platform enables users to search for relevant clinical research studies, updated daily, and offers additional solutions such as patient recruitment management and decentralized research. The website demonstrates a professional design with clear navigation and modern interactive features, targeting patients, volunteers, and healthcare professionals. Technically, the site leverages modern JavaScript frameworks, Google Analytics, Hotjar, and OneTrust for analytics and privacy compliance, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain is a notable anomaly that slightly impacts trust but does not detract from the overall professional presentation. Strategic recommendations include enhancing transparency with published privacy and security policies, adding vulnerability disclosure mechanisms, and improving contact information availability to bolster trust and compliance.

budvidetnawebu.cz is a Czech small business specializing in website creation and redesign services primarily using WordPress. The company targets local small businesses and individuals seeking affordable and professional web development solutions. The website demonstrates a good level of digital maturity with modern technologies such as WordPress 6.8.3, Oxygen builder, and integration of analytics tools like Google Analytics and Microsoft Clarity. Cookie consent is managed via CookieYes, indicating awareness of GDPR requirements. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies could be improved. Overall, the website is professional, trustworthy, and well-optimized for performance and mobile devices.

S

Smartim, s.r.o.

smartim.cz

46

Smartim, s.r.o. is a Czech Republic-based small business specializing in comprehensive online marketing services including SEO, PPC, web design, social media marketing, and analytics. With over 14 years of experience, they serve businesses seeking to improve their online presence and marketing effectiveness. The website is professionally designed, content-rich, and well-structured, targeting primarily Czech businesses. Technically, the site uses modern JavaScript libraries such as jQuery and AOS for animations, and integrates Google Tag Manager and LinkedIn Insight for marketing analytics. Security posture is good with HTTPS enforced and secure forms, but lacks some security headers and explicit incident response policies. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and consent mechanisms. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and detailed contact information support legitimacy. Overall, the site is a credible and effective marketing platform with room for security enhancements.

Penzion v Jízdárně is a small hospitality business operating a guesthouse in Olomouc, Czech Republic, with a focus on providing accommodation services including rooms and an apartment. The business targets tourists, visitors to Olomouc, and equine sports enthusiasts, offering pet-friendly lodging and proximity to a partner restaurant. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, the site uses modern web technologies such as ES modules, Swiper.js, and Google Fonts, with indications of a SPA framework like Vue.js, though no CMS is explicitly detected. Performance and mobile optimization are good, but accessibility and SEO could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks security headers and published security policies. Privacy compliance is limited, with no cookie policy or consent mechanism detected, and only basic terms and conditions available. Contact information is clearly presented, enhancing business credibility. Overall, the website is trustworthy and functional but could benefit from enhanced privacy and security practices.

I

il capitano ristorante

ilcapitano.cz

58

il capitano ristorante is a well-established Mediterranean restaurant located in Prague, Czech Republic, known for its quality ingredients, fresh seafood, and excellent steaks. The website reflects a professional and consistent brand image, supported by multiple industry recognitions such as Tripadvisor Certificates of Excellence and Restaurant Guru recommendations. The business targets a general audience seeking authentic Italian dining experiences near the city center. Technically, the website is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data is a notable gap, slightly reducing domain trustworthiness but not impacting the visible business legitimacy. Overall, the site presents a trustworthy and user-friendly digital presence for the restaurant.

G

Guía de la Industria Química

guiaquimica.mx

48

Guía de la Industria Química is a specialized online platform focused on providing comprehensive information, business directories, and advertising opportunities for the chemical industry and related sectors in Mexico. Established in 2011, it serves industry professionals and companies by offering detailed articles, supplier listings, and sector-specific insights. The website positions itself as an important resource within the Mexican chemical manufacturing sector, supporting business decision-making and networking. Technically, the website employs modern front-end technologies including Bootstrap, FontAwesome, Google Fonts, and interactive libraries such as Swiper and AOS for animations. It integrates Google Analytics, Google Tag Manager, and Mouseflow for user behavior tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Hosting details are limited but the domain registrar is consistent with the business location. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on forms to mitigate spam. However, it lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. No privacy or cookie policies are published, indicating compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is provided, which could be improved to strengthen trust. Overall, the website is professional, content-rich, and trustworthy for its target audience but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and providing clear incident response contacts to improve compliance and security posture.

S

Smarty.cz

tigo.cz

61

Smarty.cz operates a specialized e-commerce platform focused on gaming computers under the TIGO brand. The website showcases multiple product lines tailored to different gamer profiles, emphasizing quality components, in-house assembly, and extended warranties. The company targets Czech gamers and technology enthusiasts with a medium-sized market presence. Technically, the website employs modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and formal privacy policies. WHOIS data is unavailable, indicating privacy protection, which slightly reduces transparency but is common for commercial sites. Overall, the site is professional and trustworthy with room for improvement in compliance and security transparency.

A

ACADEMIA d.o.o.

lahko.si

46

Lahko.si is a Slovenian educational platform dedicated to promoting lifelong learning through various educational programs, including live and online courses. The platform is supported by recognized educational entities such as ACADEMIA d.o.o. and ACS, positioning it as a reputable resource in the Slovenian education sector. The website offers video content with accessibility features like captions and transcripts, enhancing user engagement and inclusivity. Technically, the site is built on Drupal 10 with modern front-end technologies, ensuring a responsive and accessible user experience. However, explicit privacy policies and terms of service are not readily found, which may impact user trust and compliance. Security posture is moderate with HTTPS usage and no visible vulnerabilities, but lacks explicit security headers and incident response contacts. Overall, the platform is a credible educational resource with room for improvement in privacy and security transparency.

R

Rich Text Editor

richtexteditor.net

39

RichTextEditor.net is a mature software product website offering a powerful WYSIWYG HTML editor primarily for ASP.NET Web Forms, with related products for PHP, ASP, and Blazor platforms. The company targets web developers seeking to integrate rich text editing capabilities into their applications. The website demonstrates a consistent brand presence with notable client logos and a professional design. Technically, the site uses ASP.NET Web Forms with modern UI libraries and is hosted with DNS managed by Cloudflare, registered via GoDaddy. Security posture is moderate with domain protections in place but lacks visible security headers and cookie consent mechanisms. Privacy policy and terms of service are present but basic. Overall, the site is trustworthy and professionally maintained but could improve in privacy compliance and security best practices.

R

Rich Text Editor

richtexteditor.com

56

RichTextEditor.com is a mature software company specializing in a full-featured Javascript WYSIWYG HTML editor with over 21 years of development history. The company targets web developers and businesses seeking rich text editing solutions, offering multiple related products including Blazor and .NET editors. The website presents a professional image with clear navigation, product demos, and notable client logos, positioning itself as a trusted player in the technology sector. Technically, the site uses modern web technologies including Bootstrap, ASP.NET Web Forms, and Cloudflare DNS, delivering a moderately fast and mobile-optimized experience. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and incident response disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and business credible but could improve security and privacy transparency.

D

DChat

dchat.com

58

DChat is a technology company specializing in AI-powered chatbots for customer service automation. Their platform enables businesses to embed AI chatbots on their websites to handle up to 80% of customer queries autonomously, improving efficiency and customer satisfaction. The company targets businesses seeking to enhance their customer support with AI-driven solutions and positions itself as a trusted provider with notable clients such as Fitbit and Forbes. The website is professionally designed, mobile-optimized, and provides clear navigation and calls to action for user engagement. Technically, the website is built using ASP.NET Web Forms with modern frontend libraries including Bootstrap, AOS, Swiper, and Typed.js. It uses Cloudflare DNS services and is registered with GoDaddy, indicating a stable and mature infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and keywords. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content. There is no visible security policy or incident response contact information on the site. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. No company contact emails or phone numbers are publicly listed, which may impact user trust. Overall, DChat presents a credible and professional online presence with a solid business model and technical foundation. Security posture is adequate but could be improved with enhanced DNS security and security headers. Privacy compliance and transparency would benefit from clearer cookie policies and contact information. Strategic recommendations include enabling DNSSEC, implementing security headers, and improving privacy and incident response disclosures to strengthen trust and compliance.

L

Liechtenstein Marketing

liechtenstein-business.li

64

The website www.liechtenstein-business.li serves as an official platform promoting Liechtenstein as a prime business and economic location. It provides comprehensive information on the economic advantages, company formation processes, business news, and the financial and industrial sectors of Liechtenstein. The site targets businesses, entrepreneurs, and professionals interested in establishing or expanding operations in Liechtenstein. The business model is governmental and marketing-oriented, positioning Liechtenstein as a competitive and attractive business hub. Technically, the website is built on the Concrete5 CMS and utilizes modern web technologies including jQuery, Matomo and Google Analytics for tracking, Google Tag Manager, and Usercentrics for consent management. The site is mobile optimized with good SEO practices and a clear navigation structure, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS, employs standard security headers, and integrates consent mechanisms for cookies, reflecting a good security posture. No vulnerabilities or exposed sensitive data were found. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security maturity. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It effectively supports Liechtenstein's business promotion objectives while maintaining a secure and user-friendly environment. Strategic recommendations include adding explicit security and incident response policies, improving accessibility, and providing terms of service to further enhance compliance and user trust.

The Landtag des Fürstentums Liechtenstein website serves as the official parliamentary portal for the Principality of Liechtenstein. It provides comprehensive information about parliamentary sessions, agendas, news, protocols, and contact details for parliamentary staff. The site targets citizens, government officials, and researchers interested in legislative activities. It operates as a government service platform with a focus on transparency and public engagement. Technically, the website is built on an ASP.NET Web Forms framework, utilizing libraries such as jQuery, Splide.js for sliders, and AOS for animations. The site demonstrates good mobile optimization and accessibility features, with a moderate performance profile. The content is well-structured, professionally designed, and consistent with the branding of an official government entity. From a security perspective, the site uses HTTPS and employs standard ASP.NET state management techniques. However, no explicit security headers were detected in the provided HTML content, and there is no visible cookie consent mechanism, which may present compliance gaps. No vulnerabilities or exposed sensitive data were found, but improvements in security headers and privacy compliance are recommended. Overall, the website is trustworthy, professionally maintained, and fulfills its role as a government information portal. Strategic enhancements in security policies, privacy mechanisms, and incident response disclosures would further strengthen its posture and compliance standing.

C

Computer-L.A.N. GmbH

lansoftware.de

51

Computer-L.A.N. GmbH operates LAN Software, a specialized software house based in Fulda, Germany, focusing on software solutions for education institutions, seminar houses, authorities, and group accommodations. Their offerings include cloud-based seminar management (LANcloud), house and academy management (AkademieManager), group house management (HausManager), and ERP and HCM solutions via Sage partnerships. The company positions itself as an experienced, regional provider with a strong focus on tailored business software and customer support including workshops and training. Technically, the website is built on WordPress with modern plugins and frameworks, including Yoast SEO, Bootstrap, and Borlabs Cookie for privacy compliance. The site is well-optimized for SEO and mobile devices, with moderate performance and good accessibility. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some HTTP security headers could be improved. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

K

Kandersteg International Scout Centre

kisc.ch

56

Kandersteg International Scout Centre (KISC) operates as the World Centre of the World Organisation of the Scout Movement (WOSM), providing accommodation, adventure programs, and volunteering opportunities primarily for scouts and youth organizations globally. The website reflects a well-established non-profit entity with a clear mission to support scouting activities and community engagement. The site is professionally designed with consistent branding and clear navigation, targeting a global scouting audience. Technically, the site is built on Drupal 7 with a range of JavaScript libraries enhancing user experience and interactivity. Mobile optimization and SEO practices are adequately implemented, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks visible security headers and published security policies. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site is trustworthy, functional, and compliant with privacy regulations.

F

FPT Software

fpt-software.com

79

FPT Software is a well-established global technology solutions provider headquartered in Vietnam, specializing in digital transformation and IT consulting services. The company offers a broad portfolio of services including AI, IoT, cloud computing, smart factories, and RPA, targeting enterprise clients worldwide. Their market position is strong, supported by a long domain history and a consistent brand presence across multiple localized domains. Technically, the website employs modern frameworks and analytics tools, indicating a mature digital infrastructure. However, some gaps exist in privacy compliance and security headers implementation. The security posture is generally good with HTTPS and domain transfer protections, but enabling DNSSEC and publishing security policies would enhance trust. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

F

FPT Software

fptsoftware.com

79

FPT Software is a well-established global technology solutions provider headquartered in Vietnam, specializing in AI-powered digital transformation and IT consulting services. The company offers a broad portfolio of services including smart factories, cloud, RPA, AI, IoT, and product engineering, targeting enterprises seeking next-level digital transformation. The website reflects a mature digital presence with excellent design, mobile optimization, and clear navigation, supporting its enterprise market positioning. Technically, the site leverages modern frameworks such as Bootstrap 5 and integrates multiple analytics and marketing tools including Google Analytics, Hotjar, Microsoft Clarity, and LinkedIn Insight Tag. Hosting and DNS services are managed via Cloudflare, ensuring good performance and security. However, the absence of DNSSEC and security headers indicates room for improvement in technical security hardening. From a security perspective, the website uses HTTPS and has domain transfer protections in place, but lacks visible privacy and cookie policies, consent mechanisms, and incident response contacts. No vulnerability disclosure or security.txt files were found, which are recommended for enterprise-grade security transparency. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website demonstrates strong business credibility and technical maturity but requires enhancements in privacy compliance and security best practices to align with modern enterprise security standards.

T

tomorrow bird GmbH

tomorrowbird.de

10

tomorrow bird GmbH is a specialized consulting firm focused on organizational and innovation development for the German Mittelstand. The company offers a range of transformation programs and ready-to-use products aimed at helping medium-sized family businesses navigate complex challenges related to digitalization and innovation. Their market position is strengthened by a portfolio of notable clients and a professional online presence. Technically, the website is built on WordPress with Elementor, leveraging modern analytics and marketing tools while maintaining GDPR compliance through a comprehensive cookie consent mechanism. Security posture is solid with HTTPS and privacy controls, though there is room for improvement in publishing explicit security policies and headers. Overall, the website reflects a mature digital infrastructure and a trustworthy business entity.

G

GPTCA AG

gptcatennis.org

58

The Global Professional Tennis Coach Association (GPTCA) is a Switzerland-based organization founded in 2012, dedicated to educating and supporting professional tennis coaches aiming to work at ATP Tour and women's pro tennis levels. The website serves as a global hub offering membership, educational courses, events, and resources tailored to tennis coaching professionals. It maintains partnerships with recognized entities such as ATP, ITIA, and Golden Set Analytics, enhancing its credibility and market position. Technically, the website employs a modern tech stack including Google Analytics, Google Tag Manager, Alpine.js, Swiper.js, and AOS for animations, hosted likely on home.pl infrastructure. The site is mobile-optimized with good SEO practices and a consistent branding approach. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There are no privacy or cookie policies published, representing compliance gaps. No incident response or vulnerability disclosure information is provided. The domain WHOIS data is consistent and legitimate, supporting trustworthiness. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security headers, and incident response transparency to improve its security posture and regulatory adherence.

N

nbkc bank

nbkc.com

11

nbkc bank is a reputable online bank and mortgage lender based in the United States, offering a range of financial products including home loans, checking and savings accounts, personal loans, and digital banking services. The company is recognized for its customer-centric approach and has received notable awards such as NerdWallet’s 2023 Best Mortgage Lender Overall. The website reflects a mature financial institution with a strong market position targeting consumers seeking convenient online banking solutions. The business model focuses on direct-to-consumer online services with competitive rates and knowledgeable support.

E

Ermin Plant Hire Services Ltd

erminplant.co.uk

69

Ermin Plant Hire Services Ltd is a well-established UK-based company specializing in plant, tool, and access hire, alongside equipment sales and training services. With over 60 years of operational history, the company serves professional contractors, tradespeople, and DIY enthusiasts primarily across Gloucestershire and surrounding counties. Their market position is that of a trusted regional specialist with multiple depots and a comprehensive product offering. The website reflects a professional and consistent brand image, supported by testimonials and active social media channels. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, leveraging modern plugins such as Yoast SEO, Instagram Feed, and Contact Form 7. The site is mobile-optimized, SEO-friendly, and includes cookie consent mechanisms aligned with GDPR requirements. Performance is moderate with good accessibility features, although some security headers are not explicitly detected. From a security perspective, the site enforces HTTPS and employs cookie consent, but lacks visible advanced security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were identified. The absence of WHOIS data due to a domain query error limits full domain trust verification, but the website content and contact details support a moderate to high trust level. Overall, Ermin Plant presents a solid digital presence with good business credibility and privacy compliance. Strategic improvements in security headers and incident response transparency would enhance their security posture and trustworthiness further.

P

Party.Rent

partyrent.com

10

Party.Rent is a leading European rental company specializing in event equipment including furniture, tableware, and catering supplies. The company operates under the parent group Rent.Group and targets event planners, corporate clients, and private individuals across multiple European countries. Their website is professionally designed with a strong focus on user experience, multilingual support, and detailed product offerings. Technically, the site uses modern frameworks such as Bootstrap and integrates Google Tag Manager and reCAPTCHA for analytics and security. Security posture is good with HTTPS and CSRF protections, though explicit security policies and headers could be improved. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

C

Centigrade GmbH

centigrade.de

48

Centigrade GmbH is a medium-sized German technology company specializing in human-centered IT solutions, focusing on digital product development, UX design, software engineering, and AI integration. The company serves business clients seeking to enhance user experience and digital transformation success. Their website reflects a mature digital presence with comprehensive service descriptions, client references, and industry awards, positioning them as a reputable player in the UX and software engineering consultancy market. Technically, the website employs a modern tech stack including jQuery, lazy loading, Google Analytics with privacy features, and a consent management platform (Usercentrics). The site is mobile-optimized, accessible, and SEO-friendly, though it appears to use a custom or proprietary CMS. Performance is moderate, with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS, uses consent management for GDPR compliance, and implements form validation with required privacy consent. However, it lacks explicit security policies, incident response information, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture but with room for improvement in transparency and security headers. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security documentation and incident response readiness are recommended to further strengthen trust and compliance.

I

iakoe

carrot.is

53

iakoe is a specialized Shopify agency focused on delivering design-led e-commerce solutions, balancing brand identity, user experience, and store optimization to create effective shopping experiences. Founded in 2019, the company targets design-conscious brands seeking Shopify development, UX design, SEO, CRO, and migration services. The website demonstrates a strong market position with notable client logos and positive testimonials, indicating trust and professionalism. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Splide.js, and integrates analytics and marketing tools such as Google Analytics, HubSpot, and Crazy Egg. The site is mobile-optimized, accessible, and SEO-friendly, hosted via GoDaddy with a Craft CMS backend. Performance is moderate with good responsiveness and user experience. Security posture is solid with HTTPS enforced, CSRF protection on forms, and no exposed sensitive data. However, the absence of DNSSEC, security headers, and published security or privacy policies indicates room for improvement. Privacy compliance is limited due to missing privacy and cookie policies, which could pose regulatory risks. Overall, the website is professional, trustworthy, and technically competent but would benefit from enhanced security policies and privacy compliance to strengthen its risk posture and regulatory adherence.

H

HANDWERK BW

handwerk-bw.de

52

HANDWERK BW is the leading umbrella association representing craft and trade organizations in the Baden-Württemberg region of Germany. The organization provides advocacy, consulting, publications, and event services to support the local craft industry. The website is professionally designed using TYPO3 CMS and incorporates modern web technologies and privacy-conscious analytics via Matomo. It offers clear navigation, mobile optimization, and a comprehensive content structure targeting handcraft businesses and stakeholders in the region. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are not published. Overall, the site reflects a mature digital presence aligned with the organization's mission and regional focus.

C

Computer-L.A.N. GmbH

lancloud.cloud

53

LANcloud is a cloud-based seminar and event management software developed by Computer-L.A.N. GmbH, targeting organizers of seminars, coachings, courses, and events primarily in Germany. The platform offers a comprehensive SaaS solution with automated administrative processes, integrated online booking, and compliance with GDPR and GoBD standards. The company positions itself as a reliable and modern solution with a growing customer base and strong trust indicators such as certifications and customer testimonials. Technically, the website is built on WordPress with a modern tech stack, hosted securely on Microsoft Azure, and employs best practices in privacy and security, including SSL encryption and cookie consent management. The security posture is strong, though improvements like enabling DNSSEC and additional security headers are recommended. Overall, the website is professional, secure, and compliant, reflecting a trustworthy business with a clear market niche.

A

Awaze Vacation Rentals Ltd

awaze.com

60

Awaze Vacation Rentals Ltd operates as the largest managed vacation rentals and holiday resorts business in Europe, aggregating multiple trusted travel brands such as cottages.com, Hoseasons, and NOVASOL. The company targets holidaymakers and property owners across Europe, offering a wide range of self-catering accommodations and villas. Their market position is strong as a leading group in the European hospitality sector, with a large employee base and extensive property portfolio. The website reflects a professional and consistent brand image with comprehensive business information and regulatory compliance references. Technically, the website is built on WordPress and leverages modern JavaScript libraries and analytics tools including Google Analytics and CookieScript for cookie consent management. The site is mobile optimized, accessible, and SEO friendly, with good performance metrics. However, some security headers are missing, and no explicit security or incident response policies are published, which could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. The absence of WHOIS domain registration data is a concern, potentially indicating privacy protection or query limitations, which slightly impacts trustworthiness. Overall, Awaze presents a credible and professional online presence with strong business and technical foundations. Strategic improvements in security transparency and domain registration clarity would enhance trust and compliance further.

M

Medyum Şehrazat Hoca

medyum-sehrazat-hoca.de

63

Medyum Şehrazat Hoca operates as a small-scale spiritual and occult service provider primarily targeting Turkish-speaking individuals in Germany and Europe. The website presents a professional and consistent brand image, offering a range of services including love spells, tarot readings, horoscope analysis, and spiritual protection. The business leverages testimonials and direct contact channels to build trust with its audience. Technically, the website uses common frontend frameworks such as Bootstrap and jQuery, with Cookiebot integrated for cookie consent management. While the site is mobile-optimized and user-friendly, it lacks advanced security headers and explicit incident response policies. Overall, the security posture is moderate with room for improvement in formalizing security and privacy policies. The domain registration data aligns with the website's claims, indicating legitimacy. Strategic recommendations include enhancing security headers, publishing detailed privacy and security policies, and improving incident response readiness.

H

HMC Architects

hmcarchitects.com

55

HMC Architects is a well-established, employee-owned architecture firm founded in 2002, specializing in healthcare, education, and civic space design. The company emphasizes community impact and sustainability through its 'Design For Good' philosophy. The website reflects a professional and consistent brand image with a focus on employee ownership and community service. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and offers a good user experience with clear navigation. Security posture is moderate with HTTPS enabled but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data supports the legitimacy and longevity of the business.

T

TENNIUM GERMANY GMBH

hamburgopenatp500.com

43

The Bitpanda Hamburg Open ATP 500 website serves as the official digital presence for a major professional tennis tournament scheduled for May 16-23, 2026 in Hamburg, Germany. The site provides comprehensive information about the event including tournament details, player profiles, ticket purchasing options, news updates, and sponsor information. The business is positioned as a medium-sized event organizer within the hospitality and sports sectors, leveraging partnerships with notable sponsors such as Bitpanda and Betway. The website demonstrates a good level of digital maturity, utilizing WordPress CMS with modern front-end libraries and integrations for social media and marketing tools. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Contact information is clearly presented, enhancing business credibility.

C

Central Asian Expo Uzbekistan

caexuzbekistan.com

48

CAEx Uzbekistan is a modern international exhibition center located in Tashkent, Uzbekistan, serving as a major business arena in Central Asia. It offers versatile pavilion spaces adaptable for various projects and event formats. The center is a member of prestigious international exhibition associations UFI and IAEE, underscoring its commitment to quality and international standards. The website targets businesses and event organizers seeking exhibition and event hosting services in the region. Technically, the website employs modern web technologies including Swiper.js for interactive galleries, AOS for animations, Google Tag Manager and Yandex Metrika for analytics, and a live chat widget for customer engagement. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. The design is professional, mobile-optimized, and provides clear navigation and relevant content. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no explicit security headers were detected, which are areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is clearly provided, but no incident response or vulnerability disclosure policies are available. Overall, the website presents a trustworthy and professional image suitable for its business purpose. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance its security posture and regulatory adherence.

C

Creative SHOPPING GmbH

creative-shopping.com

54

Creative SHOPPING GmbH is a German-based technology company specializing in premium advantage and cashback solutions, operating over 120 shopping portals including the well-known GETMORE cashback portal. The company targets businesses seeking to enhance customer and employee loyalty through white-label and custom SaaS platforms. Their market position is strong, supported by awards and a minority investment by ProSiebenSat.1 Media SE. Technically, the website employs modern web technologies, including Google Analytics with privacy features and reCAPTCHA for form security, reflecting a mature digital infrastructure. Security posture is good with HTTPS and form protections, though some security headers and explicit policies are missing. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and privacy policies. No critical vulnerabilities or suspicious content were detected.

HanmiGlobal Co., Ltd. is a large Korean construction and project management company with a global footprint, specializing in advanced technology and strategic construction services. The company has executed over 3,200 projects worldwide and offers a broad range of services including project management, development, supervision, and energy infrastructure consulting. Their market position is strong, reflected by a world ranking of 7 in ENR 2025 and a diversified portfolio of subsidiaries and partners. Technically, the website employs a moderate modern tech stack including jQuery, Swiper.js, GSAP, and Google Analytics, with good mobile optimization and a professional design. However, some outdated libraries and missing security headers indicate areas for improvement. The site uses HTTPS but lacks DNSSEC and explicit security policies. Security posture is moderate with good practices like HTTPS and reCAPTCHA on forms, but the absence of security headers, outdated libraries, and missing privacy and cookie policies reduce compliance and security maturity. No incident response or vulnerability disclosure information is published. Overall, the website is professional and trustworthy but would benefit from enhanced security measures, privacy compliance, and updated technical components to improve risk posture and user trust.

H

Hallett Independent Limited

hallettindependent.com

52

Hallett Independent Limited is a specialist insurance brokerage firm focused on private clients and art insurance. The company operates independently from large global insurers, providing expert advice and tailored risk management services to a niche market including artists, art dealers, museums, and private collectors. Their market position is that of a trusted, small-scale expert broker with a strong emphasis on professionalism and client care. The website reflects this with high-quality content, clear navigation, and consistent branding. Technically, the site is built on WordPress with modern libraries and integrations such as Google Analytics and reCAPTCHA, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and Cyber Essentials certification displayed, though some improvements like security headers and cookie consent are recommended. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the overall business credibility remains high due to regulatory compliance and professional presentation.

융

융코리아 일렉트릭(주)

jung-korea.com

64

융코리아 일렉트릭(주) is a Korean-based manufacturer and distributor specializing in premium electrical wiring devices and smart building automation solutions, representing the German brand JUNG. The company operates a professional e-commerce website hosted on the Cafe24 platform, targeting both B2B and B2C customers interested in high-quality electrical products and smart home/building solutions. Their market position is that of a premium brand distributor with a solid presence in Korea, supported by a comprehensive product catalog and active social media engagement. Technically, the website employs modern JavaScript libraries and frameworks such as jQuery, Fullpage.js, and AOS for animations, with Google Analytics integrated for user tracking. The site is hosted on Cafe24, a popular Korean e-commerce platform, ensuring stable infrastructure but with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks advanced DNS security (DNSSEC) and security headers, which are recommended for enhanced protection. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy but could improve in security and privacy compliance to meet higher standards.

H

HanmiGlobal Co., Ltd.

hanmiglobal.com

50

HanmiGlobal Co., Ltd. is a large, established construction and project management company based in Korea, with a global presence and a strong portfolio of over 3,200 projects. The company offers a wide range of services including construction project management, development projects, overseas business, and specialized technology services, positioning itself as a key player in the real estate and infrastructure sectors. Their market position is reinforced by an ENR world ranking of 8 for 2025, indicating significant industry recognition. Technically, the website employs a modern JavaScript stack including jQuery, Swiper.js, GSAP, and Google reCAPTCHA for security. The site is mobile optimized and provides a good user experience with multimedia content and clear navigation. However, some technical improvements are recommended such as adding security headers and enabling DNSSEC to enhance security posture. From a security perspective, the site uses HTTPS and Google reCAPTCHA to protect forms, but lacks explicit security headers and a published security policy or incident response contact. No privacy or cookie policies were found, which is a compliance gap especially under GDPR. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy with good business credibility but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.