High-risk security reports

A

Airport Hotel Budapest**** Kft.

vip-parkolo.hu

0

VIP Parkoló is a well-established airport parking service provider located near Budapest Liszt Ferenc International Airport. Operating since 2005, the company offers secure, guarded parking with free airport transfer and online booking capabilities. The website is professionally designed using Joomla CMS with modern frameworks and provides clear contact information and social media presence, supporting a trustworthy user experience. Technically, the site employs HTTPS with good security headers and modern JavaScript libraries, though it lacks a visible cookie consent mechanism and explicit security policies. Overall, the business demonstrates a solid market position in the transportation and hospitality sectors within Hungary.

B

Blue Sky Travel

blueskytravel.hu

0

Blue Sky Travel is a Hungarian travel agency established in 2018, specializing in air and bus travel packages primarily to Greek islands and various exotic destinations. The company offers competitive pricing, last-minute deals, and comprehensive travel organization services targeting Hungarian-speaking travelers. Their website features a professional design with clear navigation, mobile optimization, and integrated booking forms, reflecting a medium-sized business with a solid market presence. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and popular analytics and marketing tools such as Google Tag Manager, Hotjar, Microsoft Clarity, and Tawk.to live chat. Hosting is provided via a CDN, ensuring moderate performance and good mobile responsiveness. SEO and accessibility are adequately addressed, though some improvements are possible. From a security perspective, the site enforces HTTPS and employs consent-based loading of tracking scripts, demonstrating a privacy-aware approach. However, it lacks several important security headers and does not publish a security policy or incident response contacts. No critical vulnerabilities or suspicious activities were detected, and WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a trustworthy and professional travel service with room for improvement in privacy policy transparency and security hardening. The risk level is moderate with no immediate threats identified.

G

Green Savoree St. Petersburg, LLC

gpstpete.com

0

The Firestone Grand Prix of St. Petersburg website represents a well-established motorsports event organizer with a history dating back to 2001. The company, Green Savoree St. Petersburg, LLC, operates a premier motorsports festival in St. Petersburg, Florida, offering ticket sales, hospitality packages, and merchandise. The website effectively targets motorsports fans, tourists, and local attendees with clear event information and partner engagement. Technically, the site is built on Joomla CMS with modern frameworks like Helix3 and Bootstrap, ensuring responsive design and moderate performance. The use of analytics and marketing tools such as Google Analytics, Hotjar, and Constant Contact indicates a mature digital marketing approach, though lacking explicit cookie consent mechanisms. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Overall, the site is professional, trustworthy, and business credible, with room for privacy compliance enhancements.

WGBG Wirtschafts-Genossenschaft Berliner Grundbesitzer eG is a specialized real estate management cooperative based in Berlin, offering comprehensive property management, technical support, and advisory services tailored to property owners in Berlin and Brandenburg. The cooperative business model emphasizes owner interests without investor or shareholder influence, positioning WGBG as a trusted niche player in the local real estate market. Technically, the website is built on WordPress with modern plugins and themes, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent, but lacks published privacy policies and incident response information, indicating room for compliance and security maturity improvements. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency to strengthen user trust and regulatory compliance.

V

Valfrigo

valfrigo.com

0

Valfrigo is a Kosovo-based company specializing in the sale of thermal pumps for central heating, ventilation, air conditioning, and related services such as filtering and degassing of oil transformers. The company markets products from well-known brands like NIBE, TOSHIBA, CARRIER, and CLIVET, positioning itself as a specialized provider in the green energy sector. The website reflects a small-sized business with a clear focus on green energy heating solutions, targeting both businesses and consumers interested in sustainable energy technologies. The domain age of 20 years supports a mature business presence. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution. It employs modern web technologies including jQuery and Google Fonts, and integrates Google Maps API. The site is mobile optimized with good design quality and navigation clarity, although SEO and accessibility features are basic. Hosting appears to be managed via Name.com, consistent with the domain registrar information. From a security perspective, the site uses HTTPS, ensuring encrypted communications. However, no DNSSEC is enabled, and no security headers were detected in the provided data, which are areas for improvement. The absence of privacy and cookie policies, as well as incident response contacts, indicates gaps in compliance and security transparency. No evidence of tracking or advertising scripts was found, suggesting minimal user tracking. Overall, the website is professional and trustworthy with moderate security posture and limited privacy compliance. Strategic improvements in security headers, DNSSEC, and privacy documentation would enhance the site's security and compliance standing.

VTD is a Swedish logistics and distribution company specializing in parcel, newspaper, and mail delivery services primarily in the Västsverige region. Established in 2001, the company operates a strong distribution chain reaching approximately 700,000 to 800,000 households daily. Their business model focuses on sustainable and reliable delivery using various transport modes including walking, cycling, mopeds, and cars. The website reflects a medium-sized regional player with a clear market position and a professional digital presence. Technically, the website is built on WordPress using the Divi theme and leverages Yoast SEO for optimization. Hosting appears to be on Oracle Cloud infrastructure. The site is moderately performant with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and structured data. However, some technical improvements such as enabling DNSSEC and adding security headers could enhance security posture. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and explicit security policies. No incident response or vulnerability disclosure information is publicly available. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism was detected, which is a GDPR compliance gap. Contact information is clearly provided, enhancing business credibility. Overall, VTD's website is professional, trustworthy, and business-focused with room for improvement in privacy compliance and security best practices. The risk profile is low with no critical vulnerabilities detected. Strategic recommendations include implementing cookie consent, enabling DNSSEC, adding security headers, and publishing security policies to strengthen trust and compliance.

The website vtab.se is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block page. This prevents any meaningful content or business information from being retrieved or analyzed. The domain is recently registered in June 2023 and uses Cloudflare for DNS and security services. No privacy, cookie, or terms of service policies are visible, nor are there any contact details or business descriptions available on the landing page. The technical infrastructure relies on Cloudflare, but no further technology stack details can be determined due to the block. Security posture cannot be fully assessed, but the presence of a WAF indicates some level of protection. Overall, the site’s risk profile is elevated due to lack of accessible content and transparency, and the AI scoring reflects this with a low overall score.

N

New Voices Foundation

newvoicesfoundation.org

0

New Voices Foundation is a non-profit organization dedicated to fostering a more inclusive entrepreneurial ecosystem by providing capital, leadership development, skill-building, and networking opportunities primarily to entrepreneurs of color, especially African-American and Latina women. The organization leverages its PACE model and hosts events such as pitch competitions at high-profile venues like EssenceFest and CES. The website reflects a mature digital presence built on WordPress with modern plugins and integrations, including LayerSlider and WPBakery Page Builder. While the site is well-designed and content-rich, it lacks some privacy compliance features such as cookie consent mechanisms and security headers, which could be improved to enhance user trust and regulatory adherence. The domain registration is consistent with the organization's history and shows no suspicious indicators, supporting the legitimacy of the business.

T

Traildeer

traildeer.com

0

Traildeer is a specialized bike travel agency offering mountain bike adventures and guided tours primarily in Europe. The company operates a professional WordPress-based website with e-commerce capabilities for booking trips and purchasing merchandise. The technical infrastructure includes modern web technologies and standard marketing tools such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Overall, the website presents a credible and professional front for a niche travel service provider.

The website rumt-sg.com currently presents minimal content, displaying only a brief message indicating a wrong request and suggesting use of an SDK for reporting. This suggests the site is not intended for direct public browsing but rather for API or SDK integration. The domain is relatively new, registered in early 2022, and uses Tencent-related DNS servers, which may indicate hosting or DNS services but no clear business identity is established from the available data. The lack of metadata, forms, or any business-related content limits the ability to assess the company's market position or services. Technically, the site lacks visible security headers, HTTPS information, or modern web technologies, indicating a low level of digital maturity. Security posture is weak due to the absence of HTTPS and security best practices, and no privacy or cookie policies are present, raising compliance concerns. Overall, the site appears to be either under development, restricted for API use only, or improperly configured for public access.

Oklahoma Press operates a straightforward website providing downloadable advertising PDFs primarily serving the Oklahoma region. The business appears to be a small regional media service provider with a focus on facilitating ad content distribution to clients. The website is minimalistic, with basic design and limited interactive features, focusing solely on the ad download functionality. The technical infrastructure is simple, relying on basic HTML, CSS, and PHP for form handling, hosted on HostGator servers. There is no evidence of advanced CMS or modern frameworks, and SEO and accessibility features are minimal. Security posture is weak, with no DNSSEC, no visible security headers, and no explicit HTTPS confirmation in the provided data. The site lacks privacy, cookie, and terms of service policies, which impacts compliance and user trust. Contact information is limited to phone numbers without email or social media presence. Overall, the site is functional but basic, with room for significant improvements in security, privacy compliance, and technical modernization.

The website origin-point.de currently hosts a default Craft CMS installation placeholder page, indicating that the site is under initial setup or development. There is no custom content, business information, or contact details presented. The site targets developers or site builders preparing to build the actual website. The technical infrastructure is based on Craft CMS with standard HTML and CSS, hosted on generic servers indicated by the nameservers. Mobile optimization is basic but present, and the site is accessible without any WAF or blocking mechanisms. From a security perspective, the site lacks visible security headers, privacy policies, cookie consent mechanisms, and contact information for incident response. SSL configuration details are not provided, but HTTPS is assumed given the URL scheme. No analytics or advertising scripts are detected, indicating minimal tracking or marketing activity. The WHOIS data is minimal and generic, with no registrant details to verify legitimacy fully. Overall, the security posture is basic with room for significant improvement. The overall risk is low given the placeholder nature of the site and lack of sensitive data or active services. However, the absence of privacy and security policies, contact information, and custom content limits trust and business credibility. Strategic recommendations include replacing the placeholder content with a professional website, implementing privacy and cookie policies, adding security headers, and providing clear contact and incident response information to improve compliance and trust.

F

Fríorka

friorka.is

0

Fríorka is an Icelandic company specializing in the sale of NIBE heat pumps, offering energy-efficient heating solutions with up to 85% savings. The company targets Icelandic consumers and businesses interested in renewable energy and heat pump technology. Their website provides e-commerce capabilities, product information, and customer support, positioning them as a key player in the local energy sector. Technically, the website is built on WordPress with WooCommerce and the Avada theme, supported by modern tracking and analytics tools such as Google Analytics and Facebook Pixel. The site is hosted by an Icelandic hosting provider, ensuring local presence and performance. Security-wise, the site uses HTTPS and Google reCAPTCHA but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and well-structured but would benefit from improved privacy and security practices.

Z

Zuzana Smatanová

zuzanasmatanova.sk

0

The website zuzanasmatanova.sk serves as the official online presence for Slovak singer Zuzana Smatanová. It provides comprehensive information about her music, concerts, videos, and merchandise, targeting fans and the general public interested in Slovak music. The site is professionally designed with consistent branding and clear navigation, supporting a small-sized media business model focused on artist promotion and fan engagement. Technically, the site is built on WordPress with common libraries such as jQuery and Bootstrap, hosted likely by a Slovak provider (Euronet). The performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks visible security headers like CSP or HSTS. No forms collecting sensitive data are present on the homepage, reducing immediate risk. Privacy compliance is limited as no privacy policy or terms of service pages are found, though a cookie policy page exists without an explicit consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is trustworthy and professional but would benefit from improved security headers and privacy documentation to enhance compliance and user trust.

O

Občianske združenie COOLTAJNER

cooltajner.sk

0

CoolTajneR is a Slovak non-profit cultural and community organization based in Považská Bystrica, founded in 2015. It operates as a cultural and educational center offering a variety of community events, educational programs, and cultural activities. The organization is funded primarily through private donations, grants, and public funds from the Fond na podporu umenia, which is a key partner. The website reflects a well-established local presence with a focus on community engagement and cultural enrichment. Technically, the website is built on WordPress using common libraries such as jQuery and Bootstrap, with SEO optimization via Yoast plugin. The site is mobile responsive and provides a good user experience with clear navigation and relevant content.

R

R&D MOLD MACHINING

radmold.sk

0

R&D MOLD MACHINING is a Slovak manufacturing company specializing in the production of molds, tooling, and composite parts primarily for the automotive, aerospace, engineering, energy, food, and pharmaceutical industries. Founded in 2008, the company has grown from a start-up to a medium-sized enterprise with a strong international client base including premium brands such as Bentley, Porsche, BMW, Jaguar, and Boeing. Their business model focuses on providing comprehensive engineering and manufacturing services from design through production and maintenance, emphasizing quality and efficiency. Technically, the company operates a modern WordPress-based website using Elementor and Yoast SEO, with GDPR-compliant cookie consent mechanisms and Google Analytics for tracking. The site is well-optimized for SEO and mobile devices, reflecting a mature digital presence. Security posture is good with HTTPS enforced and standard security headers present, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website and business demonstrate a high level of professionalism and trustworthiness, supported by client testimonials and partnerships with reputable companies. The absence of privacy and terms of service pages is a minor compliance gap. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the company's stated history and location. Strategic recommendations include enhancing privacy and security policy transparency, publishing incident response contacts, and improving accessibility features to further strengthen compliance and user trust.

L

home

lungenatlas.de

0

The website www.lungenatlas.de appears to be an informational platform focused on lung atlas data, likely related to medical or scientific research in Germany. The content primarily consists of an interactive SVG map of German regions, with minimal textual content and no evident privacy or cookie policies. The site lacks visible contact information and social media presence, indicating a limited digital engagement strategy. Technically, the site uses SVG and CSS with no detected JavaScript frameworks or analytics tools, hosted likely via GoDaddy based on nameserver data. Security posture is basic with no HTTPS or security headers confirmed from the data, and privacy compliance is minimal due to absence of policy documents. Overall, the site serves a niche informational purpose but requires enhancements in security, privacy, and user engagement to improve trust and compliance.

F

Forward & Forward

forwardandforward.com

0

Forward & Forward is a small design and development studio specializing in branding, product strategy, UX, and design development services. The company appears to target businesses and organizations seeking professional design and development solutions. The website presents a professional and consistent brand image with good design quality and user experience. The technical infrastructure includes common web technologies such as jQuery, Google Tag Manager, Google Analytics, and Albacross tracking, hosted likely via Websupport.sk based on DNS data. Mobile optimization is good, but accessibility features are basic. Security posture is moderate with some best practices like domain transfer protection but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no GDPR indicators. Overall, the website is functional and professional but could improve in security and compliance areas.

T

tamatam

tamatam.sk

0

tamatam is a small creative duo agency based in Slovakia, specializing in marketing services and travel-related content. The website presents a professional and well-structured digital presence using WordPress with Elementor and Yoast SEO, targeting Slovak-speaking audiences with some English content available. The business focuses on storytelling, creative marketing, and travel blogging, positioning itself as a niche player in the media sector. Technically, the site employs modern web technologies and integrates Google Analytics and reCAPTCHA for analytics and spam protection respectively. Security posture is good with HTTPS enforced and secure forms, though the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security best practices.

P

Primavera Home & Garden

primaveragarden.com.br

0

Primavera Garden Center is a well-established retail garden center and floral decoration business based in Florianópolis, Brazil, with approximately 35 years of history. The company offers a variety of products and services including fresh flowers, bouquets, garden plants, decoration objects, and technical guidance for customers. Their website is professionally designed using WordPress and WooCommerce, providing a good user experience with mobile optimization and clear navigation. The business maintains an active social media presence and offers newsletter subscriptions via Mailchimp. Technically, the site uses modern web technologies and is hosted on a European hosting provider. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, although the absence of security headers and privacy/cookie policies indicates room for improvement. Overall, the website reflects a credible and trustworthy business with minor compliance gaps.

The website at groupoffice.net currently returns a 404 Not Found error page, indicating that the requested content is missing or the site is not properly configured. The domain is registered since 2016 with a reputable registrar and DNS hosting provider, suggesting a legitimate registration. However, the lack of accessible website content prevents any meaningful analysis of business operations, services, or security posture. No metadata, contact information, or compliance policies are present, which significantly limits trust and credibility assessments. The technical infrastructure details are minimal, and no security headers or HTTPS status are available from the provided data. Overall, the site appears non-functional or misconfigured at this time.

S

Stampen Media

stampenmedia.se

0

Stampen Media is a leading Swedish media group primarily serving the west coast region with local quality journalism across 18 newspaper titles. The company also operates printing, distribution, and outdoor advertising subsidiaries, positioning itself as a comprehensive media service provider. The website is built on WordPress with modern SEO and consent management tools, reflecting a mature digital presence. Security posture is adequate with HTTPS and cookie consent but lacks some advanced security headers and DNSSEC. Privacy compliance is partial due to missing explicit privacy and terms pages. Overall, the site is professional and trustworthy but could improve transparency and security practices.

M

Indicadores económicos diarios, Chile - API REST / Internal Server Error

mindicador.cl

0

Mindicador.cl is an open source service providing daily economic indicators for Chile in JSON format via an API REST interface. The website targets developers, analysts, and businesses interested in Chilean economic data. The domain is well established since 2014 and hosted on DigitalOcean infrastructure. However, the current website is experiencing backend issues, returning an Internal Server Error which severely impacts accessibility and user experience. The technical stack includes older versions of Bootstrap and Font Awesome, with Google Analytics integrated for visitor tracking but no visible privacy or cookie policies. Security posture is weak with no detected security headers and no public security or incident response policies. Overall, the site demonstrates a niche technical service but suffers from operational and compliance gaps.

F

Freeride Mountain Bike Association e.V. (FMBA)

fmbworldtour.com

0

The Freeride Mountain Bike Association e.V. (FMBA) operates the FMB World Tour, the official international circuit for freeride mountain biking disciplines. Founded in 2010 and registered as a non-profit in Munich, Germany, FMBA governs and promotes the sport through event sanctioning, athlete licensing, and ranking systems. The website serves athletes, event organizers, and fans with news, rankings, event calendars, and membership information. The organization holds a strong market position as the official governing body for freeride mountain biking.

Y

Yrkesorganisasjonenes Sentralforbund

arbeidslivsbarometeret.no

0

YS Arbeidslivsbarometeret is a Norwegian research platform operated by Yrkesorganisasjonenes Sentralforbund (YS), providing annual labor market surveys and analyses. The website serves as a repository for reports and databases related to Norwegian working life, targeting workers, unions, and policymakers. The platform is supported by academic collaboration with Oslo Metropolitan University, enhancing its credibility and research quality. Technically, the site is built on WordPress with common plugins and integrates Google Analytics and Tableau for data visualization. The site is mobile-optimized and presents a professional user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is adequate with privacy and cookie policies present, but the absence of a cookie consent mechanism is a minor gap. Overall, the site is trustworthy and well-positioned within its niche, with room for improvement in security and compliance transparency.

The website hno.at represents the Österreichische Gesellschaft für Hals-, Nasen-, Ohrenheilkunde, Kopf- und Halschirurgie, a professional medical society in Austria specializing in ENT medicine. It serves as an informational and organizational platform for medical professionals and patients, offering resources on health topics, specialist roles, congresses, and events. The site is built on TYPO3 CMS and employs standard web technologies including jQuery, Bootstrap, and Google Analytics for user tracking. It demonstrates GDPR compliance through cookie consent mechanisms and a privacy policy page. However, explicit terms of service and security policies are not present. The site is professionally designed with good navigation and content relevance, targeting a German-speaking audience in the healthcare sector.

The website letsmeeton2ndst.com currently serves a 403 Forbidden error page, indicating that access to the content is restricted or blocked. There is no accessible business information, contact details, or policy documents on the site. The domain is very recently registered in January 2024 and uses SiteGround hosting services. The lack of content and contact information suggests the site is either under development or intentionally restricted. Technically, the site uses basic HTML with Google Fonts but lacks modern SEO, accessibility, or security features. No analytics or tracking scripts are present, and no privacy or cookie policies are found, indicating poor privacy compliance. Security posture is minimal with no DNSSEC and no visible security headers. Overall, the site is not currently functional for end users or business purposes.

E

Erfurt Tourismus & Marketing GmbH

erfurt-tourismus.de

0

Erfurt Tourismus & Marketing GmbH operates the official tourism website for the city of Erfurt, Germany, providing comprehensive information on city tours, accommodation, events, and cultural highlights. The website serves as a central hub for tourists and event planners, offering online booking capabilities and detailed guides. The company holds a strong market position as the official tourism promoter for the region, targeting a broad audience including families, groups, and individual travelers. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design, hosted on AWS infrastructure. It employs modern web technologies and privacy-conscious analytics tools such as Matomo alongside Google and Facebook tracking pixels. The site is well-optimized for SEO, mobile use, and accessibility, with clear navigation and multilingual support. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security headers are not visibly implemented, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The website content is safe for general audiences, focusing on tourism and cultural promotion without any adult or questionable content. Contact information is comprehensive and clearly presented, supporting business credibility and trust. The domain registration and DNS setup are consistent with a legitimate public entity, reinforcing the site's authenticity. Strategic recommendations include implementing explicit security headers, publishing a security policy or incident response contact, and continuing to maintain GDPR compliance and transparency to enhance user trust and security maturity.

T

Team Stadt Erfurt

erfurt-klingt-gut.de

0

The website 'Team Stadt Erfurt – Klingt gut.' serves as a public sector employment and training portal for the city of Erfurt, Germany. It targets job seekers interested in municipal jobs, apprenticeships, and internships, positioning itself as one of the largest employers in the region with approximately 3,700 employees. The site promotes a diverse range of job opportunities within the city administration, emphasizing job variety and security. Technically, the website is built on the TYPO3 CMS platform, utilizing the UIkit CSS framework for responsive design. The site demonstrates good mobile optimization and SEO practices, with structured data and Open Graph tags enhancing search engine visibility. Hosting appears to be managed via domaincontrol.com nameservers, commonly associated with GoDaddy services. Performance is moderate, with no critical technical issues detected in the provided content. From a security perspective, the site uses HTTPS as indicated by canonical URLs, and implements a cookie consent mechanism, reflecting basic privacy compliance. However, no explicit privacy policy, terms of service, security policy, or incident response contacts were found in the analyzed content. Security headers and vulnerability disclosures are absent, suggesting room for improvement in security posture. No signs of WAF or content blocking were detected, and the content is safe for general audiences. Overall, the website is professionally designed and credible as a municipal employment portal. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and providing clear contact information for data protection and incident response to enhance trust and compliance.

The domain hostcompliance.com currently resolves to a Squarespace placeholder page indicating that the domain has been mapped but not claimed by any website owner. As such, no actual business content, branding, or services are presented on the site. The domain was registered in 2015 with GoDaddy Corporate Domains, LLC and is currently active with a valid registration status but lacks DNSSEC protection. The technical infrastructure is minimal, relying on Squarespace's platform and Cloudflare nameservers, but no active website content or security headers are present. From a security perspective, the site shows no evidence of HTTPS enforcement or security best practices, and no privacy or cookie policies are published. This results in a very low security posture and poor privacy compliance. Overall, the website is inaccessible for meaningful analysis beyond the placeholder content, leading to a low AI score and limited business credibility.

P

PMT Water Engineering

watereng.com.au

0

PMT Water Engineering is an Australian-based manufacturer and facilitator specializing in prefabricated steel water tanks and packaged water treatment systems. The company serves commercial, industrial, and export markets with over 20 years of experience, operating under the parent company Asia Pacific Tanks Pty Ltd. Their website presents a professional image with clear contact information and service descriptions, targeting industrial clients and remote locations both domestically and internationally. Technically, the website is built on WordPress using the Divi theme, incorporating modern technologies such as Google reCAPTCHA v3 for spam protection. Hosting is provided by HostYourServices in Australia, ensuring regional alignment with the business. Security posture is moderate with HTTPS enforced and spam protection active; however, the absence of security headers and published security policies indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which could expose the company to regulatory risks. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures.

S

SEPOS, spol. s r. o.

sepos.cz

0

SEPOS, spol. s r. o. is a Czech family-owned company specializing in the manufacturing and retail of interior and entrance doors, door frames, and fittings. With over 30 years of experience, the company serves a diverse clientele including investors, architects, construction firms, and end customers. Their business model combines retail and wholesale sales with comprehensive services such as professional advice, certified installation, and delivery. The company maintains a strong market position in the Czech Republic with multiple design stores nationwide. Technically, the website is built on the INT - JET CMS platform and uses modern web technologies including Foundation CSS framework, jQuery, and integrates analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Snowplow Analytics. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks a publicly available security policy, incident response contacts, and security.txt file. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-term registration consistent with the company's stated history. Overall, SEPOS.cz presents a professional and trustworthy online presence with solid business credibility and moderate technical maturity. Strategic improvements in security transparency and accessibility would further strengthen their posture.

H

KEMBANGTOTO - Bandar Resmi Situs Toto 4D Penyedia Slot Togel Toto Hiburan Menarik

hog-roast.com

0

The website hog-roast.com operates as an online gambling platform branded as Kembangtoto, offering toto 4D and slot togel games primarily targeting Indonesian players. The business claims a long history dating back to 2003, positioning itself as a trusted bandar (agent) in the gambling niche. The site integrates modern tracking and analytics technologies primarily from Alibaba and Lazada ecosystems, indicating a moderate level of digital maturity. However, the website lacks critical compliance elements such as privacy and cookie policies, terms of service, and visible contact information, which undermines its credibility and user trust. Security posture is weak with no visible security headers or DNSSEC enabled, and no HTTPS enforcement details were found in the provided data. The domain is well aged and registered with GoDaddy, which supports legitimacy but lacks transparency due to missing registrant details. Overall, the site presents moderate business viability but requires significant improvements in compliance, security, and transparency to enhance trust and reduce risk.

The website safefoodaustralia.com.au currently serves a 404 Not Found error page, indicating that the site content is inaccessible or not configured. There is no visible business information, metadata, or structured data to analyze. The domain is registered through a reputable registrar, Tucows (Australia) Pty Ltd trading as OpenSRS, with standard domain status prohibitions but lacks DNSSEC. The absence of website content and policies severely limits the ability to assess the business, technical infrastructure, or security posture. No security headers or SSL configuration details are available, and no contact or compliance information is present. Overall, the site appears inactive or improperly maintained, resulting in a low trust and credibility score.

U

UK Wing Chun Assoc.

ukwingchun.com

0

The UK Wing Chun Association operates as a small, specialized martial arts organization focused on Wing Chun Kung Fu training and community building within the United Kingdom. Founded in 1985 by Master James Sinclair, it holds a respected position in the martial arts community and offers classes, instructor resources, and merchandise through its website. The digital presence is built on a modern WordPress platform utilizing WooCommerce for e-commerce and Elementor for design, indicating a moderate level of digital maturity. The website is well-structured, mobile-optimized, and integrates social media and payment processing via PayPal, supporting a seamless user experience. From a security perspective, the site enforces HTTPS with good SSL configuration and employs Facebook Pixel for marketing and analytics. However, the absence of explicit security headers and a visible privacy policy or terms of service page indicates room for improvement in compliance and security posture. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and trustworthiness, despite the professional appearance and established business history claimed on the site. Overall, the website presents a professional and trustworthy front for its target audience but should address privacy compliance and domain registration transparency to enhance trust and security. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and verifying domain registration details to align with best practices and regulatory requirements.

A

ARO Inc.

aro.ca

0

ARO Inc. is a Canadian accounts receivable management company established in 1993, providing debt collection and payment solutions primarily to Canadian consumers and businesses. The company maintains a professional online presence with clear contact information and multiple office locations, positioning itself as a reliable service provider in the finance sector. The website is built using modern web technologies including Vue.js and Google Fonts, offering a responsive and user-friendly experience. However, the site lacks key compliance documents such as privacy and cookie policies, which are critical for regulatory adherence and user trust. Security posture is generally good with HTTPS enforced, but could be improved by enabling DNSSEC and adding security headers. No incident response or vulnerability disclosure information is published, indicating room for maturity in security governance. Overall, the domain registration is consistent with the business claims, supporting the legitimacy of the company. Strategic improvements in privacy compliance and security transparency would enhance trust and reduce risk.

A

Axxis

axxisconsulting.com.mx

0

Axxis is a Mexico-based technology consulting firm specializing in business process management, robotic process automation, and digital transformation solutions. Established in 2004, the company positions itself as a leader in intelligent process automation, serving medium to large enterprises with services including BPM, RPA, cloud optimization, and digital marketing consulting. The website reflects a mature digital presence built on WordPress with modern plugins and a professional design. However, it lacks critical privacy and cookie policies, which impacts compliance and user trust. Security posture is generally good with HTTPS enabled, but could benefit from enhanced security headers and published incident response policies. Overall, the domain registration and business information are consistent and trustworthy, supporting a positive legitimacy assessment.

Wholesale 4 Inc. operates an e-commerce platform specializing in residential and commercial hardware products, locksmith supplies, and specialty locks. The company offers a broad catalog of hardware items from multiple well-known brands, targeting hardware retailers, locksmiths, and commercial and residential customers. The business model is primarily retail and wholesale via an online store, with an established domain since 2003 indicating a mature presence in the hardware retail sector. The website is built on WordPress with WooCommerce, leveraging popular plugins and technologies such as WPBakery Page Builder and Slider Revolution to deliver a functional and visually consistent user experience. Mobile optimization and navigation are good, supporting usability across devices. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and important security headers, which are recommended for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies, which could expose the business to regulatory risks. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy practices.

I

Indian Association of Preventive and Social Medicine

iapsm.org

0

The Indian Association of Preventive and Social Medicine (IAPSM) is a well-established non-profit professional organization founded in 1974, focused on advancing public health in India through education, research, advocacy, and community medicine programs. The website serves as a portal for members and the public to access information about events, publications, membership, and educational resources. The organization targets healthcare professionals, epidemiologists, and medical students in India, positioning itself as a key player in the public health sector. Technically, the website employs legacy JavaScript libraries such as jQuery 1.12.4 and plugins like bxSlider and jcarousel for UI components. Hosting appears to be via a shared hosting provider linked to PublicDomainRegistry.com. The site shows moderate performance and basic mobile optimization but lacks modern CMS or frameworks. SEO and accessibility features are basic, with room for improvement. From a security perspective, the site lacks visible security headers and DNSSEC is not enabled, which are areas of concern. There is no explicit HTTPS enforcement information available, and no privacy or cookie policies are present, indicating compliance gaps. The domain registration is consistent and legitimate, with a long registration period and transfer protections in place. Overall, the website is functional and professional but would benefit from enhanced security measures, privacy compliance improvements, and modernization of its technical stack to improve performance, security, and user trust.

C

Centro de Administraciones Tributarias Subnacionales (CeATS)

ceats.org

0

Centro de Administraciones Tributarias Subnacionales (CeATS) is a well-established non-profit organization based in Argentina, focused on subnational tax administration collaboration, training, and research. The website reflects a professional presence with clear navigation, relevant content, and active engagement through events and educational programs. The organization partners with universities and government tax agencies, reinforcing its credibility and market position in the government and education sectors. Technically, the website uses a modern but standard technology stack including Bootstrap, jQuery, and various carousel and slider libraries. Hosting is stable with a reputable registrar, and the site is mobile optimized with moderate performance. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC, which are recommended to enhance protection. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, supporting business credibility. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening to align with best practices and regulatory requirements.

C

Castorani

castorani.it

0

Castorani is a small Italian wine producer and retailer with a well-established online presence since 2002. The website offers e-commerce capabilities for purchasing wines, along with hospitality services such as tastings and vineyard tours. The company targets wine enthusiasts and tourists interested in authentic Italian wine experiences. Technically, the site is built on PrestaShop, uses modern web technologies, and integrates Cookiebot for GDPR-compliant cookie management. Security posture is solid with HTTPS, DNSSEC, and no visible vulnerabilities, though additional security headers could enhance protection. Privacy compliance is strong, with clear cookie consent and a comprehensive privacy policy. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

C

Camping de Rozenhof

campingrozenhof.com

0

Camping de Rozenhof is a family-oriented camping and rental business located in Zeeland, Netherlands, offering various camping pitches and rental accommodations such as chalets and houses. The website targets families and beach lovers seeking a tranquil vacation experience. The business operates a small-scale hospitality model with a regional market focus. Technically, the website is built on Joomla CMS with modern JavaScript libraries including jQuery, Bootstrap, and Swiper.js, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are not found, indicating compliance gaps. Suspicious external links embedded in the HTML may pose reputational risks. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

The domain searchranktraffic.live currently serves only a 404 Not Found error page with no accessible content or metadata. There is no visible business information, contact details, or any form of user engagement elements. The WHOIS data for this domain is unavailable due to unsupported TLD, providing no registrar, creation, expiry, or registrant details. This lack of information severely limits the ability to assess the legitimacy or business operations behind the domain. Technically, the site is served by nginx 1.24.0 but lacks HTTPS and security headers, indicating a minimal or non-existent security posture. Overall, the domain appears inactive or improperly configured, posing a high risk for trust and usability.

The website socketapiupdates.com currently presents minimal content consisting solely of placeholder text ('Lorem Ipsum'), indicating it is either under development or abandoned. The domain WHOIS data is suspicious due to a future creation date (July 1, 2025), which is inconsistent with the current timeline and raises legitimacy concerns. No business information, contact details, or policies are present on the site, limiting its credibility and trustworthiness. Technically, the site lacks metadata, security headers, and advanced configurations, and no CMS or frameworks are detected. The absence of privacy and cookie policies indicates non-compliance with GDPR and other privacy regulations. Overall, the site exhibits a very low security posture and poor digital maturity.

B

Be The Change Stiftung

baeume-fuer-den-wandel.de

0

Be The Change Stiftung is a German non-profit organization dedicated to environmental sustainability, particularly through tree planting projects in Kenya. Their website showcases detailed project information, funding status, and transparency reports, positioning them as a trustworthy entity in the environmental non-profit sector. The organization targets environmentally conscious donors and partners, leveraging digital tools to engage and inform stakeholders. Technically, the website is built on WordPress with modern plugins such as WooCommerce, Yoast SEO, and Borlabs Cookie for compliance and user experience. Hosting is provided by Manitu, a reputable German hosting provider. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear GDPR-aligned policies and consent mechanisms. Overall, the website is professional, well-branded, and trustworthy, with good SEO and mobile optimization.

T

Tilt d.o.o.

irobot.si

0

iRobot Slovenija, operated by Tilt d.o.o., is a specialized retailer and distributor of smart robotic cleaning devices such as Roomba and Braava in Slovenia. The company offers a range of robotic vacuum cleaners, mops, and accessories, targeting Slovenian consumers seeking innovative home cleaning solutions. The website is professionally designed with multimedia content and clear navigation, supporting a positive user experience and brand consistency. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and Facebook Pixel for analytics and marketing, hosted under a Slovenian registrar with secure HTTPS configuration. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Security posture is good with no critical vulnerabilities detected, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

S

Spletna trgovina za male živali Pasjahrana.net

pasjahrana.net

0

PasjaHrana.net is a Slovenian online retail store specializing in pet supplies, particularly for dogs and cats. The business is veterinarian-led, emphasizing quality products and pet well-being. The website targets pet owners in Slovenia and offers a range of products including food, supplements, hygiene, and accessories. The site features structured data for local business identification and provides contact phone and physical address information. Technically, the site uses modern web fonts, integrates multiple marketing and analytics tools such as Klaviyo, Hotjar, Google Analytics, and Facebook Pixel, and is mobile optimized with good SEO practices. Security posture is adequate with HTTPS enforced and consent mechanisms for tracking, but lacks explicit security headers and published privacy or incident response policies. WHOIS data is missing or unavailable, raising concerns about domain registration legitimacy, though the website content and business information appear consistent with a small Slovenian e-commerce operation. Overall, the site is professional and trustworthy but would benefit from improved transparency in privacy and security policies and verification of domain registration status.

L

Lassana

lassana.si

0

Lassana is a well-established beauty salon chain based in Ljubljana, Slovenia, offering a wide range of hairdressing, pedicure, cosmetic, and massage services. The company operates 14 salons and also retails professional cosmetics both in-store and online. The website reflects a mature digital presence with integrated online booking via Fresha and an e-commerce platform for product sales. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring good performance, SEO, and mobile responsiveness. Security measures include HTTPS, reCAPTCHA, and cookie consent management, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

C

Creative Industry Košice

atdays.sk

0

Art & Tech Days is a Slovak-based cultural festival that uniquely combines art, technology, and digital culture, organized by Creative Industry Košice in partnership with EIT Culture & Creativity. The festival is positioned as a regional leader in media art and innovation, attracting international speakers and audiences. The website is professionally designed, multilingual, and optimized for SEO and mobile use, reflecting a mature digital presence. Technically, it leverages WordPress with modern plugins and Google Tag Manager for analytics, hosted on a reputable Slovak hosting provider with DNSSEC and HTTPS enabled, ensuring a secure user experience. Security posture is strong with standard best practices, though improvements in security headers and incident response disclosures are recommended. Privacy compliance is robust with clear cookie consent and GDPR-aligned policies. However, the absence of direct contact information and terms of service slightly reduces business credibility. Overall, the site is trustworthy, safe, and well-maintained, serving its audience effectively.

D

Deutscher Berufsverband der Hals-Nasen-Ohrenärzte e.V.

hno-aerzte.de

0

The Deutscher Berufsverband der Hals-Nasen-Ohrenärzte e.V. operates as a professional association for ENT (ear, nose, throat) specialists in Germany. The website serves as a comprehensive portal offering information about the association, professional development events, a marketplace for medical equipment and job postings, and patient education resources. It targets medical professionals and practice staff, positioning itself as a leading entity in the German healthcare sector for ENT specialists. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Matomo for analytics and responsive design frameworks. The infrastructure is hosted on servers indicated by the agenturserver nameservers, with good mobile optimization and accessibility features. The site implements a cookie consent mechanism compliant with GDPR, and uses HTTPS with a solid SSL configuration. From a security perspective, the site demonstrates good practices such as encrypted connections, cookie consent, and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy documentation and incident response contacts, which are recommended for enhanced trust and compliance. The WHOIS data aligns well with the website's claims, supporting legitimacy. Overall, the website is professional, trustworthy, and well-maintained, with minor areas for improvement in security transparency and policy disclosures.