Security Directory

O

OneTrust

onetrust.it

79

OneTrust is a leading enterprise technology company specializing in responsible data and AI governance solutions. Founded in 2016 and headquartered in Atlanta, US, OneTrust offers a comprehensive SaaS platform that enables organizations to manage data privacy, consent, compliance, third-party risk, and AI governance. The company positions itself as a market leader with a strong focus on privacy automation and regulatory compliance, targeting businesses and enterprises globally. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site leverages Adobe Experience Manager CMS, integrates advanced consent management tools, and employs modern security measures including HTTPS and Cloudflare Turnstile captcha. Security posture is strong with appropriate headers and no evident vulnerabilities. Privacy compliance is robust, with clear policies and consent mechanisms aligned with GDPR. Overall, the website and business demonstrate high credibility and trustworthiness.

R

Red Gate Software Ltd

red-gate.com

76

Red Gate Software Ltd is a well-established technology company specializing in end-to-end Database DevOps solutions and tools for major database platforms such as SQL Server, Oracle, and PostgreSQL. With over 25 years of industry leadership, the company serves a large customer base including 92% of the Fortune 100, offering products that streamline database management, deployment, monitoring, and test data management. Their business model focuses on software product sales, licensing, and support services targeting database professionals, IT management, and enterprise leadership. Technically, the website demonstrates a mature digital infrastructure using modern JavaScript libraries like jQuery and React, integrated analytics via Google Tag Manager and Bizible, and a responsive, accessible design optimized for performance and SEO. The site includes comprehensive privacy and cookie policies with consent mechanisms, reflecting good privacy compliance practices. From a security perspective, Red Gate shows strong posture with HTTPS enforcement, ISO 27001 certification, and clear trust indicators such as customer testimonials and industry reports. However, the absence of WHOIS data and lack of explicit security headers or vulnerability disclosure pages suggest areas for improvement. Overall, the website is professional, trustworthy, and secure, with minor recommendations to enhance security transparency and incident response readiness. The overall risk assessment is low, with strategic recommendations to add security headers, publish vulnerability disclosure information, and provide incident response contacts to further strengthen trust and compliance.

U

Univerzita Komenského v Bratislave

uniba.sk

62

Univerzita Komenského v Bratislave is the oldest and largest university in Slovakia, founded in 1919, serving over 28,000 students across thirteen faculties. The website reflects a well-established educational institution with a comprehensive offering of academic programs, research activities, and international collaborations. The digital presence is professional, with clear navigation, rich content, and active social media engagement. Technically, the site is built on TYPO3 CMS 4.7 with supporting libraries like jQuery and Bootstrap, providing a stable but somewhat dated infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some improvements are recommended such as updating libraries and adding explicit security policies. Overall, the site demonstrates high business credibility and compliance with privacy regulations, making it a trustworthy source for prospective students and academic partners.

S

SIMBA-DICKIE-Vertriebs-GmbH & Co. KG

zoch-verlag.com

56

Zoch Verlag operates an official e-commerce platform specializing in games for children and adults, offering a wide range of family and board games. The company is part of the Simba-Dickie Group, a reputable manufacturer and distributor in the toy industry. The website presents a professional and user-friendly shopping experience with clear navigation, multilingual support, and detailed terms and conditions. The business model focuses on direct online sales with manufacturer-backed service and fast delivery options.

Schmidt Spiele is a well-established German game manufacturer with a history dating back to 1907. The company offers a broad range of products including puzzles, games for all ages, and wooden toys under multiple brands. Their website reflects a medium-sized retail business with a focus on family-friendly entertainment products. Technically, the site is built on the Contao CMS and uses common JavaScript libraries such as jQuery and Slick Carousel. The site includes multilingual support and basic accessibility features. Security-wise, the site implements cookie consent mechanisms and restricts third-party scripts until consent is given, but lacks explicit security headers and incident response information. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

A

Avalon Hill

avalonhill.com

60

Avalon Hill is a recognized brand specializing in strategy-based and war simulation board games, operating under the parent company Hasbro. The website serves as a platform to showcase their products, news, and multimedia content targeting board game enthusiasts. Technically, the site is built using modern web technologies including React with Next.js, and integrates Google Tag Manager and Ketch for analytics and consent management. The site is mobile-optimized and presents a professional user experience. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The WHOIS data is missing or inaccessible, which is unusual and slightly reduces trustworthiness, though the site content and branding appear legitimate. Overall, the site is functional and professional but could enhance privacy compliance and security transparency.

H

Hans im Glück - Spieleverlag für Brettspiel Freunde

hans-im-glueck.de

48

Hans im Glück is a German board game publisher established in 1983, specializing in family and expert board games, including the well-known Carcassonne series. The company has a medium-sized team and a strong market presence in the board game industry, with multiple prestigious awards such as Spiel des Jahres and Deutscher Spielepreis. Their business model focuses on publishing, selling games through a partner webshop (cundco.de), and providing game-related content and support. The website reflects a professional and consistent brand image targeting board game enthusiasts and families. Technically, the website is built on WordPress with modern plugins for SEO, cookie consent, and user interaction. It uses HTTPS with good SSL configuration and integrates push notifications via WonderPush. The site is moderately performant and mobile-optimized, with good SEO practices implemented. However, accessibility features are basic, and some technical improvements could enhance user experience further. From a security perspective, the site employs HTTPS and cookie consent mechanisms but lacks published security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data indicates a standard commercial domain setup without privacy protection, consistent with the business's digital presence. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

B

businessangels.de

businessangels.de

48

Businessangels.de is a well-established company builder and investor based in Berlin, Germany, with over 26 years of experience in the digital industry. The company focuses on building and investing in medium-sized digital businesses and startups, offering capital, expertise, and network support. Their portfolio includes multiple subsidiaries and successful exits, positioning them as a significant player in the German digital venture capital and company building market. The website reflects a professional and consistent brand image, targeting entrepreneurs, startups, and investors. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Slick Carousel, enhanced by Google reCAPTCHA for form security and a consent management platform for GDPR compliance. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, explicit security headers like CSP and X-Frame-Options are not detected, and no formal security or incident response policies are published. No vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with a privacy policy and cookie consent mechanism. Overall, the website and business demonstrate a strong digital maturity and trustworthy presence. Strategic recommendations include enhancing security headers, publishing formal security policies, and improving accessibility. The domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

O

OPPBTP

oppbtp.com

53

OPPBTP is a leading French professional organization dedicated to prevention in the building and public works sector. It provides expert support, training, technical assistance, and information to improve occupational health and safety for construction professionals. The website is well-designed, content-rich, and targets professionals in the BTP sector with a strong emphasis on prevention and safety. Technically, the site uses WordPress CMS with modern libraries and analytics tools, including Google Analytics, Matomo, and Google Tag Manager, combined with a robust consent management platform (Didomi) to ensure GDPR compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. The WHOIS data is missing or unavailable, which slightly reduces trust but the professional presentation and official partnerships support legitimacy. Overall, the site is a trustworthy resource for BTP professionals in France.

S

Schindler, spol. s r.o.

schindler.cz

58

Schindler, spol. s r.o. operates as a stable and professional B2B wholesale distributor specializing in cycling and sport products, targeting specialized retail stores primarily in the Czech Republic. The company represents a wide range of well-known cycling brands and offers a B2B portal for business customers. The website is built on the Shoptet e-commerce platform, leveraging standard web technologies including jQuery, Google Analytics, and Google Tag Manager, with a focus on Czech language and multi-language support. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not evident. The absence of WHOIS data reduces domain trustworthiness but the professional presentation and contact information support legitimacy. Overall, the website is well-structured, user-friendly, and compliant with privacy regulations.

W

WhereGroup GmbH

wheregroup.com

68

WhereGroup GmbH is a specialized GIS company based in Germany, focusing on open-source software solutions for geospatial data processing, analysis, and presentation. Established in 2006, it operates multiple offices and offers a comprehensive range of services including software development, GIS consulting, project management, support, and training. The company maintains a strong presence in the open-source GIS community and provides products such as Mapbender, Metador, and Mops. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics with privacy-conscious configurations. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Overall, the website reflects a professional, trustworthy, and GDPR-compliant organization with clear contact information and transparent data protection practices.

G

Georg-August-Universität Göttingen

uni-goettingen.de

55

The Georg-August-Universität Göttingen is a large, internationally recognized public research university founded in 1737, offering a broad spectrum of academic programs across 13 faculties. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content aimed at students, researchers, and the public. Technically, the site employs a custom CMS (GCMS) and modern frontend libraries such as Bootstrap and jQuery, with good mobile optimization and accessibility. Security posture is strong with HTTPS enforcement and privacy-conscious analytics via Matomo with opt-in consent. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the domain registration and hosting align well with the university's identity, confirming legitimacy and trustworthiness.

S

SRF | We always find a better way

srf.com

52

The website 'SRF' presents a business-oriented digital presence with a professional design powered by WordPress and the Divi theme. The site includes common plugins such as Contact Form 7 and cookie consent mechanisms, indicating a basic level of digital maturity. However, the absence of WHOIS data raises concerns about domain legitimacy and ownership transparency. Security measures include HTTPS enforcement and an anti-clickjacking script, but lack explicit security headers and detailed security policies. Overall, the site is functional and moderately secure but would benefit from enhanced transparency and compliance documentation.

G

Gerflor

gerflor.de

59

Gerflor is a leading manufacturer specializing in elastic flooring solutions such as vinyl and linoleum, targeting B2B customers across various sectors including commercial, industrial, transport, and sports. The website reflects a mature digital presence built on Drupal 10, with modern technologies and a strong emphasis on sustainability and product quality. Security posture is robust with HTTPS, CSP, and secure form handling, though no explicit security policy or incident response contacts are published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and technical competence.

A

Avensia

avensia.com

69

Avensia is a professional technology and consulting company specializing in modern commerce solutions for B2C and B2B clients. Their website demonstrates a strong market position with comprehensive service offerings including business transformation, information management, e-commerce technology, customer experience, and proprietary technology products. The site is well-structured, visually appealing, and optimized for multiple languages, reflecting a mature digital presence. Technically, the site leverages HubSpot CMS and integrates multiple analytics and marketing tools, indicating a sophisticated digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional content and external trust signals. Overall, Avensia's website reflects a credible and trustworthy business with room for improvement in transparency around security and compliance documentation.

HERWETEC ® GmbH is a German-based company specializing in industrial and private cleaning and sealing products, including solutions for floors, vehicles, and photovoltaic systems. Established in 2008, the company positions itself as an eco-friendly and certified manufacturer with a focus on quality and compliance. The website reflects a professional business model targeting both B2B and B2C customers, emphasizing sustainability and German manufacturing standards. Technically, the site is built on WordPress with WooCommerce and uses modern tools like Algolia for search and Yoast SEO for optimization. The site is mobile-optimized and provides clear navigation and comprehensive product information. Security posture is good with HTTPS and some best practices, though improvements like DNSSEC and security.txt are recommended. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence, though no explicit cookie consent mechanism was detected. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

Frankfurter Buchmesse

buchmesse.de

72

Frankfurter Buchmesse is a globally recognized book fair held in Frankfurt, Germany, serving as a key event for publishing professionals, authors, media, and culture enthusiasts. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive event-related content. The technical infrastructure is based on Drupal 10 CMS, hosted by Anexia, and integrates modern web technologies including Google Tag Manager and cookie consent mechanisms. Security posture is solid with HTTPS and some security best practices, though explicit security headers could be improved. Privacy compliance is moderate due to the absence of a clearly linked privacy policy and terms of service in the provided content. Overall, the site is trustworthy, content-rich, and well-positioned in the media industry.

G

Gräf Hotel- und Objektausstattung GmbH

graef-objektausstattung.de

47

Gräf Hotel- und Objektausstattung GmbH is a medium-sized general contractor specializing in hotel and interior construction projects across Germany, Austria, Switzerland, and broader Europe. The company offers comprehensive services from planning and demolition to turnkey interior outfitting, targeting hotel operators and real estate developers. Their website reflects a professional market position with detailed service descriptions and references to notable projects such as the JW Marriott Hotel Frankfurt. Technically, the website employs modern JavaScript libraries including jQuery and Slick Carousel, hosted via DomainControl (GoDaddy). The site is mobile-optimized with good SEO practices but lacks advanced CMS or analytics integrations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. However, it lacks cookie consent mechanisms and explicit privacy or security policies beyond basic GDPR compliance. There are no signs of WAF or content blocking, enabling full content accessibility and analysis.

B

B. Braun Vet Care GmbH

bbraun-vetcare.com

72

B. Braun Vet Care GmbH operates as a specialized division of B. Braun SE, providing veterinary medical products and comprehensive solutions for veterinary clinics and practices. The website presents a professional and well-structured digital presence, targeting veterinary professionals with detailed product information, educational resources, and support for practice establishment. The company leverages Adobe Experience Manager as its CMS platform, integrating modern web technologies and user consent management tools to ensure compliance and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security policies and headers could be improved. The absence of WHOIS data for the domain is a notable gap but does not detract from the overall legitimacy indicated by the website content and branding. Strategic recommendations include enhancing security transparency and verifying domain registration details.

M

Mannheimer Versicherung AG

sinfonima.de

59

The website www.sinfonima.de represents the Mannheimer Versicherung AG's specialized insurance offering for the classical music sector, including musicians, orchestras, instrument makers, and related associations. It positions itself as a niche insurance provider with a clear focus on classical music, offering tailored insurance products and services. The website content is well-structured, professionally designed, and targets a German-speaking audience interested in music-related insurance solutions. The business model revolves around providing insurance coverage and risk management for musical instruments and professionals in the music industry. Technically, the site is built on the Liferay DXP platform, leveraging modern web technologies such as React and Clay UI, with additional libraries for UI enhancements and analytics integration. Hosting is managed via Ecotel, with proper HTTPS and security headers implemented. The site includes cookie consent mechanisms compliant with GDPR, and analytics are handled via Piwik PRO. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, professional, and well-maintained, with room for improvement in publishing security and compliance documentation.

H

HERWE GmbH

herwe.de

48

HERWE GmbH is a German-based medium-sized manufacturing company specializing in skin protection, cleansing, care, disinfection products, and dispenser systems. With over 35 years of market presence, the company holds a strong position in the professional hygiene and skin protection sector, targeting industrial and professional users. Their product portfolio and services are well-structured and supported by certifications such as ISO 27001, reflecting a commitment to quality and security. The website is professionally designed, bilingual (German and English), and provides comprehensive product and service information, supporting a B2B business model.

I

Integrity S.A.

integrity.pt

78

Integrity S.A. is a specialized cybersecurity company operating internationally with a strong focus on pentesting, consulting, auditing, training, and managed security services. The company is positioned as a trusted provider with recognized certifications such as ISO 27001, CREST, and PCI QSA, serving a diverse range of sectors including banking, energy, government, and healthcare. Their business model revolves around delivering comprehensive cybersecurity solutions and compliance advisory to organizations worldwide. Technically, the website employs modern frameworks like Bootstrap and jQuery, integrates Google Analytics and reCAPTCHA for security and analytics, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, Content Security Policy, and consent-based cookie management, though some security headers could be enhanced. Overall, the site reflects a mature digital presence with professional branding and clear trust signals. The domain registration aligns well with the business claims, reinforcing legitimacy. No critical vulnerabilities or suspicious content were detected.

B

B. Braun Medical (Pty) Limited

bbraun.co.za

69

B. Braun Medical (Pty) Limited is a subsidiary of the global healthcare company B. Braun SE, specializing in manufacturing and providing a wide range of healthcare products and therapies including infusion therapy, dialysis, surgery, and infection prevention. The website targets healthcare professionals, patients, industry partners, veterinarians, and job applicants, reflecting a broad and professional market presence in South Africa and globally. The company maintains a strong brand consistency and trust signals through official contact information, social media presence, and comprehensive privacy and cookie policies. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript libraries such as jQuery and integrating advanced consent management via Usercentrics. The site uses Google Tag Manager and Adobe Launch for analytics and marketing, ensuring a mature digital infrastructure. Performance and mobile optimization are good, although accessibility could be improved. SEO practices are well implemented with proper meta tags and hreflang for internationalization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and dedicated security or incident response pages. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable due to privacy protection, which is justified for a large healthcare company. Overall, the domain and website appear legitimate and trustworthy. The overall risk is low with recommendations to enhance security headers, publish incident response and vulnerability disclosure policies, and improve accessibility compliance. These steps will strengthen the security posture and trustworthiness of the digital presence.

I

Irish Rugby Football Union

irishrugby.ie

54

The Irish Rugby Football Union operates the official website for Irish rugby, providing comprehensive coverage of Ireland's rugby teams, provincial games, and community rugby activities. The site serves a large audience of rugby fans and stakeholders in Ireland, offering news, fixtures, ticketing, and merchandise services. The organization is well-established with a domain age dating back to 2001, reflecting its longstanding presence in the sports sector. Technically, the website leverages a modern technology stack including WordPress CMS, Bootstrap, Vue.js, and various JavaScript libraries to deliver a responsive and engaging user experience. Hosting and content delivery utilize Gandi as registrar and Cloudfront CDN for media assets, ensuring reliable performance. SEO and mobile optimization are well addressed, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and visible security headers, which are recommended for enhanced security. No privacy or cookie policies were detected in the provided content, indicating potential compliance gaps with GDPR and related regulations. Social media presence is strong, supporting community engagement. Overall, the website is professional and trustworthy with good business credibility. However, improvements in privacy compliance and security hardening are advised to mitigate risks and enhance user trust.

B

B. Braun Melsungen AG

bbraun.lk

70

B. Braun Sri Lanka is a regional website representing B. Braun Melsungen AG, a global healthcare company specializing in medical products and services such as anesthesia, infusion therapy, dialysis, and wound care. The website targets healthcare professionals, job applicants, the general public, and industry partners, positioning itself as a leading healthcare provider in the Asia Pacific region. The business model focuses on delivering healthcare solutions and standards through a constructive dialogue with customers and partners. The site is part of a larger corporate ecosystem with multiple regional domains and partner sites.

B

B. Braun Melsungen AG

bbraun.ie

72

B. Braun Melsungen AG operates a professional and comprehensive website focused on medical technology and healthcare solutions. The company offers a wide range of products and services including infusion therapy, surgical instruments, and patient care solutions. The website targets healthcare professionals, patients, and industry partners, positioning itself as a leading global medical technology company. The digital infrastructure is built on Adobe Experience Manager with modern JavaScript libraries, providing a responsive and accessible user experience. Privacy and cookie policies are well implemented with consent management, reflecting good GDPR compliance. Security posture is solid with HTTPS and CSRF protections, though explicit security headers and incident response information are absent. Overall, the website demonstrates high professionalism and trustworthiness, supporting the company's enterprise status in the healthcare sector.

M

Momentus Technologies

gomomentus.com

69

Momentus Technologies is a technology company specializing in providing a comprehensive, end-to-end venue and event management software platform. The company targets a broad audience including convention centers, higher education institutions, corporate event planners, stadiums, arenas, and arts and culture organizations. Their platform integrates CRM, booking, event management, accounting, reporting, and API capabilities to streamline event operations and maximize revenue. The company positions itself as a trusted leader with global customers and strong industry certifications such as ISO 27001 and SOC 2. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies including Google Fonts, FontAwesome, Splide.js for carousels, and various marketing and analytics tools such as Google Analytics 4, Hotjar, and CookiePro for consent management. The site demonstrates good performance, mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs best practices including email validation on forms, and prominently displays security certifications. However, DNSSEC is not enabled, and there is no visible security.txt or explicit incident response contact information. No vulnerabilities or exposed sensitive data were detected, indicating a strong security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with extensive tracking and marketing tools in use. The domain registration data aligns with the business claims, supporting legitimacy. Strategic recommendations include enabling DNSSEC, publishing a vulnerability disclosure policy, and adding Terms of Service for legal completeness.

V

Viaplay Group

viaplaygroup.com

72

Viaplay Group is a leading Nordic entertainment provider offering streaming services, TV channels, and radio stations across multiple countries. The company targets a broad audience with a focus on live sports, films, series, and music content. The website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive corporate information including investor relations and sustainability efforts. Technically, the site uses Drupal CMS and integrates modern analytics and marketing tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not evident. The absence of WHOIS data reduces domain trust slightly, but the overall business credibility remains high due to transparent corporate disclosures and Nasdaq listing. Strategic recommendations include enhancing security headers, publishing incident response details, and improving contact information visibility.

I

Instabee

instabee.com

45

Instabee is a large European last-mile delivery company formed in 2022 by merging Budbee, Instabox, and Porterbuddy. It offers consumer-facing parcel delivery and return services across six countries, focusing on convenience and sustainability. The website is built on WordPress with modern optimization tools and is hosted behind Cloudflare DNS. Security posture is good with HTTPS and domain transfer protection, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is supported by a comprehensive privacy policy and terms of service, but lacks a visible cookie consent mechanism. Overall, the site is professional, trustworthy, and well-branded with clear investor and partner relationships.

B

Bankgirot

bankgirot.se

71

Bankgirot is a key Swedish financial infrastructure provider specializing in payment services including clearing, invoicing, and direct debit solutions. The company serves businesses and organizations in Sweden, offering a broad portfolio of payment-related services. The website reflects a mature and professional organization with a clear focus on supporting Swedish payment infrastructure and customer self-service. The presence of job listings and annual reports indicates an active and transparent business. Technically, the website uses modern JavaScript libraries and analytics tools, with a cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS and secure forms, though some security headers and explicit policies could be improved. WHOIS data extraction failed due to querying a subdomain, but metadata and content suggest a legitimate and established entity. Overall, the site is well-designed, trustworthy, and compliant with privacy regulations.

株式会社働きがいのある会社研究所 operates the website hatarakigai.info, serving as the Japanese branch of the global Great Place To Work® Institute. The organization specializes in conducting employee engagement surveys, certifying companies as 'Great Place To Work', and publishing rankings to promote workplace excellence. Their services include research, certification, rankings, and training aimed at improving workplace culture and employee satisfaction. The website is professionally designed, mobile-optimized, and rich in relevant content targeting Japanese companies and HR professionals seeking to enhance workplace engagement and employer branding. Technically, the website employs a modern analytics and tracking stack including Google Analytics, Microsoft Clarity, Facebook Pixel, and Bing Ads, alongside jQuery and Slick Carousel for UI components. The site is served over HTTPS with no visible security vulnerabilities in the HTML content. However, security headers are not explicitly detected, and no dedicated security or incident response policies are published, indicating room for improvement in security transparency. From a security and compliance perspective, the site has a comprehensive privacy policy and cookie consent mechanism, indicating GDPR awareness. Contact information is clearly provided, including phone numbers, physical address, and contact forms. The WHOIS data for the domain is unavailable due to TLD restrictions, limiting domain registration trust verification. Despite this, the website's professional presentation and consistent branding support its legitimacy. Overall, the website scores well on content quality, technical implementation, and business credibility, with moderate security posture and privacy compliance. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving domain registration transparency to strengthen trust and security posture.

G

Great Place To Work® Ireland

greatplacetowork.ie

64

Great Place To Work® Ireland is a well-established organization specializing in workplace culture assessment, employee experience measurement, and certification services. With over 20 years of domain presence and a global network, it holds a strong market position as a trusted authority in its niche. The website reflects a mature digital infrastructure leveraging HubSpot CMS and integrates modern marketing and analytics tools. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, though some improvements like DNSSEC and explicit security policies could enhance trust further. Overall, the site is professional, user-friendly, and compliant with GDPR, supporting its credibility and business goals.

F

Fujitsu Limited

fujitsu.com

70

Fujitsu Limited operates a comprehensive global website focused on sustainability transformation and digital innovation. The company is a large enterprise headquartered in Japan, providing consulting, IT infrastructure, cloud, AI, and industry-specific solutions to enterprise and public sector clients worldwide. The website demonstrates a high level of digital maturity with modern technologies, responsive design, and accessibility features. Security posture is strong with HTTPS enforced and clientTransferProhibited domain status, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the site projects a professional and trustworthy corporate image with extensive content relevant to its target audience.

K

KITA Ämmehüpfer Burgdorf

kita-aemmehuepfer.ch

54

KITA Ämmehüpfer Burgdorf is a local childcare service primarily serving children of employees at Spital Emmental in Switzerland. The website presents a professional and consistent brand image with clear focus on early childhood care and education. The technical infrastructure is modern, utilizing HTML5, CSS3, JavaScript, Google Tag Manager, and popular libraries such as jQuery and FontAwesome. Mobile optimization and SEO practices are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. WHOIS data confirms legitimacy with consistent registrant information matching the website's business and location. Overall, the site is trustworthy and suitable for its audience, with room for improvement in privacy and security disclosures.

O

OneTrust

onetrust.eu

78

OneTrust is a leading enterprise SaaS platform specializing in privacy, consent, AI governance, and risk management solutions. Founded in 2016 and headquartered in Atlanta, US, it serves organizations seeking to automate compliance and build trust through responsible data and AI use. The company holds a strong market position as a trusted provider of governance and compliance software, supported by a comprehensive product suite and extensive integrations. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript libraries such as jQuery and Slick Carousel, and integrates advanced security and privacy tools including Cloudflare Turnstile captcha and OneTrust's own cookie consent SDK. The site demonstrates good performance, mobile optimization, and accessibility, with strong SEO and analytics implementations primarily via Adobe Analytics. Security posture is robust with HTTPS enforcement, security headers, and bot protection mechanisms. However, explicit security policies and incident response contacts are not publicly detailed, representing an area for improvement. The WHOIS data is unavailable, which slightly impacts domain trust but is mitigated by the company's strong online presence and branding. Overall, OneTrust's website reflects a mature digital infrastructure and a high level of professionalism, supporting its role as a market leader in privacy and AI governance. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure mechanisms, and improving transparency around incident response to further enhance trust and compliance posture.

I

ID.KOM

speedkom.de

65

ID.KOM is a medium-sized German IT service provider with approximately 30 years of experience, specializing in IT services, cloud solutions, data center operations, and telecommunications. The company operates its own ISO 27001 certified data centers and offers a broad portfolio including managed IT services, IT outsourcing, security, and telecom solutions tailored primarily for the Mittelstand segment. The website reflects a professional and consistent brand image with clear service offerings and contact channels. Technically, the site is built on WordPress with modern plugins and includes cookie consent management, indicating a reasonable level of digital maturity. Security posture is strong with HTTPS, security headers, and ISO certification, though explicit incident response and vulnerability disclosure policies are not publicly available. Overall, the site is trustworthy and well-positioned in its market niche.

I

ID.KOM

idkom.de

65

ID.KOM is a well-established IT service provider based in Germany with over 30 years of experience specializing in IT services, cloud solutions, data center operations, and telecommunications for medium-sized businesses. The company operates its own ISO 27001 certified data centers and offers a broad portfolio including managed IT services, IT outsourcing, security, and telecommunication solutions. Their market position is strengthened by their long-standing presence, certifications, and partnership with major technology providers such as Microsoft and VMware. Technically, the website is built on WordPress with the Divi theme and uses modern plugins and frameworks, ensuring a good user experience and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although there is room for improvement in incident response transparency and security.txt adoption. Overall, the website and business demonstrate professionalism, trustworthiness, and compliance with GDPR regulations.

Z

ZZ Dats

zzdats.lv

60

ZZ Dats is a Latvian IT company specializing in the development and support of information technology solutions primarily for government and municipal sectors. Their flagship offering is the Unified Municipal System, an integrated IT solution supporting various municipal functions to streamline internal and inter-agency collaboration. The company also emphasizes DevOps methodologies and cloud computing services, complemented by IT training programs. Their market position is that of a trusted mid-sized technology provider with a strong focus on public sector digital transformation. The website content is professionally presented in Latvian with English language support, reflecting a mature digital presence.

L

Liberty Interactive Corporation

qvcgrp.com

59

QVC Group is a global leader in live social shopping and video-driven commerce, operating multiple retail brands and reaching millions of customers worldwide through TV networks, digital streaming, and social media platforms. The company is headquartered in the United States and is part of Liberty Interactive Corporation. The website reflects a mature digital presence with professional content and multi-channel engagement. Technically, the site is built on WordPress with modern plugins for SEO, forms, and analytics, showing moderate performance and good mobile optimization. Security posture is generally good with HTTPS and reCAPTCHA integration, but lacks some security headers and cookie consent mechanisms. WHOIS data is incomplete or unavailable, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and professional but could improve privacy compliance and security best practices.

S

Synchrony Financial

syf.com

68

Synchrony Financial operates a comprehensive consumer financial services website offering credit cards, financing solutions, banking products, and a marketplace for deals and partner brands. The company positions itself as a premier provider in the finance sector with a strong focus on retail partnerships and consumer payment flexibility. The website is well-structured, professionally designed, and targets both consumers and businesses seeking financial products. The digital infrastructure leverages modern JavaScript libraries and performance monitoring tools, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement, security headers, and a public vulnerability disclosure page, although explicit security policy documentation is not found. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a notable gap but does not detract significantly from the overall legitimacy given the professional presentation and external references. Overall, Synchrony.com demonstrates a mature, secure, and user-friendly online presence aligned with enterprise-grade financial services.

S

Starbreeze Studios

paydaythegame.com

58

The website www.paydaythegame.com/payday3/ serves as the official digital presence for PAYDAY 3, a cooperative heist FPS game developed and published by Starbreeze Studios. It offers comprehensive information about the game, including purchase options across multiple platforms (PC, Xbox Series X|S, PlayStation 5), updates, community engagement, and support resources. The site targets gamers interested in cooperative multiplayer heist experiences and maintains a strong brand presence with consistent design and professional content. Technically, the site is built on WordPress with modern web technologies and includes features such as age verification and cookie consent to comply with privacy regulations. Security posture is strong with HTTPS enforced and security headers present, though some advanced security policies and incident response details are not publicly disclosed. The absence of WHOIS data limits domain registration trust assessment, but the website content and external links indicate a legitimate and established business. Overall, the site demonstrates a mature digital infrastructure supporting an active gaming community and commercial operations.

R

Regionalspital Emmental AG

spital-emmental.ch

59

Spital Emmental AG operates as a regional hospital in Switzerland with two main locations in Burgdorf and Langnau. The hospital provides a broad spectrum of healthcare services including emergency care, specialized medical departments, patient and visitor services, and additional comfort options for insured patients. The website targets patients, visitors, healthcare professionals, and referring physicians, positioning itself as a trusted regional healthcare provider. The company maintains a professional online presence with clear contact information, certifications, and active social media engagement. Technically, the website employs a modern technology stack including jQuery, Font Awesome, and various analytics and marketing tools such as Google Analytics, HubSpot, and Siteimprove. The site is mobile optimized with a responsive design and good SEO practices. Security measures include HTTPS enforcement and a Content Security Policy, although additional security headers could enhance protection. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. The security posture is solid with no evident vulnerabilities in the HTML content. However, the use of multiple third-party scripts suggests a need for ongoing privacy and security reviews. The domain registration details are consistent with the hospital's identity, supporting the legitimacy and trustworthiness of the website. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance, making it a reliable resource for its audience.

S

Swiss Parks Network

paerke.ch

52

The Swiss Parks Network operates as a government-supported non-profit entity promoting the conservation, cultural heritage, and sustainable tourism of 20 unique Swiss parks. The website serves as a comprehensive portal for visitors, local communities, and stakeholders, offering detailed information, events, and support programs such as corporate volunteering and a voucher system. The network holds a strong market position as the authoritative source for Swiss parks, supported by the Federal Office for the Environment (FOEN). Technically, the website is built on the indual CMS platform, leveraging modern JavaScript libraries such as jQuery, Fancybox, and Slick Carousel for enhanced user experience. It implements HTTPS with anonymized IP tracking in Google Analytics and a robust cookie consent mechanism via Klaro, reflecting a mature digital infrastructure. The site is well-optimized for mobile and accessibility standards, with clear navigation and multilingual support. From a security perspective, the site enforces HTTPS and employs privacy-compliant analytics and cookie management. However, it lacks explicit security headers and a public vulnerability disclosure policy, which are recommended for further strengthening its security posture. No vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, the Swiss Parks Network website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively balances user engagement with security and privacy considerations, making it a reliable resource for its audience.

B

Bolsius International BV

bolsius.com

71

Bolsius International BV is a well-established European candle manufacturer and retailer, founded in 1870, with a strong emphasis on quality, heritage, and sustainability. The company is B Corp certified, reflecting its commitment to social and environmental responsibility. The website is professionally designed, multilingual, and optimized for user experience and SEO, targeting a broad consumer audience interested in candles and related products. Technically, the site is built on WordPress using modern libraries such as jQuery, Bootstrap, and Slick Carousel, with integration of Google Maps API and Yoast SEO for enhanced functionality and search visibility. Security posture is good with HTTPS enforced and a comprehensive cookie consent mechanism, though some security headers are missing and no explicit security or incident response policies are published. WHOIS data is unavailable, which slightly reduces transparency and trust but does not detract significantly from the overall legitimacy given the professional web presence and branding. Overall, the site demonstrates a mature digital infrastructure with good privacy compliance and business credibility.

R

Roistat

roistat.com

45

Roistat is a mature SaaS company founded in 2014, specializing in marketing analytics and automation solutions targeted at CEOs, marketers, business analysts, and sales leaders. The platform offers a comprehensive suite of tools including summary reports, lead generation, multichannel analytics, and CRM integrations, positioning itself as a key player in marketing intelligence. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience and trustworthiness. Technically, the site leverages modern web technologies such as jQuery, Bootstrap, and various UI libraries, hosted behind Cloudflare DNS services. The site is mobile optimized and performs moderately well, with good SEO practices and accessibility features. Tracking is implemented via Yandex.Metrika and VK retargeting pixels, reflecting moderate user tracking practices. Security posture is solid with HTTPS enforced and domain transfer protections in place, though there is room for improvement by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. However, incident response and vulnerability disclosure policies are not publicly available. Overall, Roistat presents a trustworthy and professional online presence with a strong business model and technical foundation. Strategic improvements in security policies and transparency could further enhance its risk profile and customer confidence.

E

Eskimi

eskimi.com

67

Eskimi is a technology-driven AdTech platform specializing in programmatic advertising and creative media solutions for brands and agencies globally. The company offers a comprehensive suite of services including AI-powered targeting, premium media supply, and creative services, positioning itself as a leader in delivering impactful advertising campaigns. The website demonstrates strong digital maturity with modern technologies such as Webflow CMS, Google Tag Manager, Facebook Pixel, and multilingual support via Weglot, ensuring a seamless user experience and effective marketing reach. Security posture is robust with HTTPS enforcement, security headers, and certifications like ISO 27001, although the absence of WHOIS data and explicit incident response policies slightly reduce trust scores. Overall, Eskimi presents a professional, secure, and compliant online presence suitable for its business sector.

S

Swiss Parks Network

parks.swiss

54

The Swiss Parks Network operates as a government-supported non-profit entity promoting the 20 Swiss parks. It focuses on nature conservation, cultural heritage, sustainable tourism, and regional economic development. The website serves as an informative portal for visitors, locals, and stakeholders, offering detailed information on parks, events, activities, and support programs. Technically, the site uses a modern CMS (indual CMS) with common web technologies such as jQuery, FontAwesome, and cookie consent management via Klaro. The site is well-structured, mobile-optimized, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no vulnerability disclosure or incident response information is published. Overall, the domain is privacy protected in WHOIS but aligns with the official nature of the business, supported by the Swiss government. The site is trustworthy, professional, and compliant with privacy regulations.

P

Pur Jus

pur-jus.ch

47

Pur Jus is a specialized education provider based in Switzerland offering internationally recognized wine and spirits certifications, including WSET, Wine Scholar Guild, and RVFA programs. The company targets both amateur and professional wine enthusiasts, providing high-quality courses and workshops with a strong emphasis on recognized certifications and practical tastings. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and GDPR compliance, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

U

Universidad CEU Cardenal Herrera

uchceu.es

67

Universidad CEU Cardenal Herrera is a private Catholic university based in Spain with campuses in Valencia, Alicante, and Castellón. It serves a diverse international student body from over 70 countries, offering higher education and research services. The university positions itself as a global campus with a strong academic reputation. Technically, the website employs a modern tech stack including jQuery, Slick carousel, Google Tag Manager, and Cookiebot for privacy compliance. The site is hosted behind Cloudflare, enhancing security and performance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. Overall, the website is professional, well-structured, and GDPR compliant, reflecting a mature digital presence. The lack of WHOIS data limits domain legitimacy verification but the content and structured data support the institution's authenticity.