Security Directory

S

Sirma

sirma.com

74

Sirma is a well-established technology company specializing in AI, data, cloud migration, tailored software development, managed IT services, business and IT consulting, cyber security, and system integration. With over 33 years of experience and a presence in more than 170 countries, Sirma serves a broad enterprise audience seeking advanced technology solutions. The company maintains multiple global offices and partners with leading technology providers such as Apple, IBM, Oracle, Microsoft, and VMware. Technically, the website employs modern web technologies including Astro framework, JavaScript libraries like jQuery, Tiny Slider, and Headroom.js, and integrates advanced analytics and tracking tools such as Google Analytics, Amplitude, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good SEO and accessibility features, hosted via GoDaddy with HTTPS enabled. From a security perspective, the site uses HTTPS and Google reCAPTCHA v3 for form protection but lacks DNSSEC and security headers, and does not publish a security policy or incident response contacts. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. No terms of service page was found. Overall, the website is professional, trustworthy, and content-rich, with moderate security posture and privacy compliance. Strategic improvements in DNS security, cookie consent, and security transparency would enhance trust and compliance.

S

Stroka produkt d.o.o.

stroka.si

55

Stroka produkt d.o.o., operating under the brand Skupina stroka.si, is a well-established Slovenian IT service provider founded in 2005. The company offers a broad range of IT solutions including infrastructure management, business software integration (notably PANTHEON), digital workplace services leveraging Office 365, business analytics, custom software development, and digital transformation consulting. Their market position is strengthened by a Microsoft Gold Partner certification and multiple industry awards, reflecting a strong reputation in the Slovenian technology sector. The website content and design reflect a professional and mature digital presence targeting business clients seeking comprehensive IT solutions. Technically, the website is built on the DotNetNuke CMS platform, utilizing modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the company demonstrates a mature digital infrastructure and credible business operations.

L

LUX-IDent s.r.o.

lux-ident.com

60

LUX-IDent s.r.o. is a leading RFID transponder manufacturer based in Central Europe, specializing in RFID inlays and transponders across multiple frequency bands. The company operates under the parent company HID Global and serves various industries including animal ID, access control, and logistics. Their website is professionally designed, content-rich, and well-structured, targeting business customers requiring RFID solutions. Technically, the site is built on WordPress with common plugins and uses HTTPS with Google Analytics for tracking. Security posture is generally good with enforced HTTPS and no visible vulnerabilities, though security headers and explicit security policies are lacking. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessment. Overall, the website presents a credible business front but would benefit from improved transparency and security practices.

SOMA is a manufacturing company specializing in the production of flexo presses, with a history spanning approximately 25 years. The company positions itself as a top global manufacturer in its niche, emphasizing unique technology development. The website reflects a professional and consistent brand image targeted at businesses requiring specialized industrial equipment. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Smartlook, and integrates Google Maps API for location services. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the website is legitimate and professional but would benefit from enhanced security and privacy disclosures.

S

SANELA spol. s r.o.

sanela.cz

53

SANELA spol. s r.o. is a Czech-based company specializing in sanitary technology products, including stainless steel sanitary equipment, RFID payment systems, and smart sanitary water and energy management solutions. The company targets business and institutional customers requiring advanced sanitary technology solutions. The website reflects a medium-sized manufacturing business with a consistent brand presence and a professional digital footprint. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google Tag Manager and Analytics for tracking, and uses a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and includes reCAPTCHA for forms, but lacks explicit security headers and incident response information. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility.

K

Kozák Svitavy, s.r.o.

kozak-svitavy.cz

52

Kozák Svitavy, s.r.o. operates a wholesale e-commerce platform specializing in candles, home and garden accessories, and related decorative products. The website targets wholesale customers primarily in the Czech Republic, offering a broad product range including seasonal and floristry items. The business model focuses on B2B sales through an online portal, positioning itself as a regional supplier with a clear product focus. The website content is professionally presented in Czech, with clear navigation and relevant business information, including contact details and ethical reporting channels. Technically, the site is built on ASP.NET WebForms with Kentico CMS, utilizing common JavaScript libraries such as jQuery, bxSlider, and fancyBox. Google Analytics and Google Tag Manager are employed for user tracking and analytics. The site shows moderate performance and good mobile optimization but lacks some advanced accessibility features. Security measures include HTTPS and CSRF tokens, but there is an absence of security headers and cookie consent mechanisms, indicating room for improvement in security posture and privacy compliance. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. The website provides clear contact information and an ethical whistleblowing email, which are positive trust signals. Overall, the security posture is moderate but could be enhanced by implementing security headers, cookie consent, and publishing a vulnerability disclosure policy. The overall risk assessment suggests the website is functional and legitimate for its business purpose but would benefit from improved transparency in domain registration and enhanced privacy and security practices. Strategic recommendations include verifying domain registration details, implementing GDPR-compliant cookie consent, adding security headers, and establishing a formal security policy to strengthen trust and compliance.

L

Little Greta

littlegreta.co.uk

56

Little Greta is a well-established European strategic creative agency founded in 2003, with a domain registered since 2011. The company offers a comprehensive range of services including strategy, design, communication, and digital solutions, targeting businesses seeking creative consultancy. The website reflects a professional and award-winning agency with a strong market position in the media sector. Technically, the site is built on WordPress with modern integrations such as Yoast SEO, Google Analytics, Hotjar, and Smartlook, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit security policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in privacy and security transparency.

A

Avenir Financial Group

avenirgroup.cz

52

Avenir Financial Group is a Czech Republic based financial advisory company with over 20 years of experience among its founders. The company offers a comprehensive range of financial services including insurance, investment, real estate, mortgage advisory, and vehicle financing. Their business model focuses on providing clients with access to a broad portfolio of vetted financial institutions and products, emphasizing fair and quality service. The website reflects a mature digital presence built on Joomla CMS with Bootstrap and jQuery, featuring a cookie consent mechanism and Google Analytics integration with IP anonymization. Contact information and partner affiliations are clearly presented, enhancing business credibility. However, the absence of WHOIS data limits domain trust evaluation. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, user-friendly, and compliant with privacy regulations, targeting clients seeking financial and insurance services in the Czech market.

P

Pro-Link

pro-link.pl

47

Pro-Link is a Polish digital marketing and web development company specializing in building PrestaShop e-commerce stores, SEO/SEM services, hosting, and domain registration. Established in 2004, the company has a solid market presence with a focus on small to medium businesses seeking online store solutions and digital marketing support. Their website reflects a professional and consistent brand image, targeting businesses in Poland. Technically, the site is built on WordPress with modern technologies such as Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security measures include HTTPS and Google reCAPTCHA on contact forms, but lack advanced security headers and DNSSEC. The site complies well with GDPR, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, Pro-Link demonstrates a mature digital infrastructure with room for security enhancements.

P

PRIMALAB d.o.o.

primalab.hr

48

PRIMALAB d.o.o. is a Croatian company specializing in providing comprehensive laboratory and process analytical equipment solutions, including sales, service, calibration, validation, and expert consulting. Established in 2010, the company serves primarily B2B clients in laboratory and industrial process sectors, offering a broad portfolio of reputable brands. The website reflects a mature digital presence built on the DotNetNuke CMS platform, with modern JavaScript libraries and integration of analytics and marketing tools such as Google Analytics and Mailchimp. The site is well-structured, mobile-optimized, and compliant with GDPR and cookie regulations, providing clear contact information and social media links. Security posture is good with HTTPS and Cloudflare DNS, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and the WHOIS data aligns well with the business claims, indicating a trustworthy domain.

I

International Society of Nephrology

theisn.org

57

The International Society of Nephrology (ISN) is a globally recognized non-profit professional association dedicated to advancing kidney health worldwide through education, research, advocacy, and collaboration. The organization targets healthcare professionals, researchers, and nephrologists, providing key services such as training, conferences, publications, and global health initiatives. The website reflects a mature and professional digital presence consistent with a large healthcare non-profit entity. Technically, the website is built on WordPress with a modern technology stack including popular plugins and marketing tools such as Google Analytics, Facebook Pixel, and Cookiebot for privacy compliance. The site is mobile-optimized, SEO-friendly, and uses structured data to enhance search visibility. Performance is moderate with good accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. While explicit security headers are not fully evident, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for organizations of this nature, and does not raise immediate concerns. Overall, the security posture is solid but could be improved by adding explicit security headers and publishing a security policy. The overall risk assessment is low, with the website demonstrating strong business credibility, good privacy compliance, and a trustworthy online presence. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and formalizing incident response contacts to further strengthen security and trust.

Z

Zone Media OÜ

kuhuviia.ee

42

Kuhuviia.ee is a localized Estonian platform focused on facilitating waste sorting and repair services by providing an interactive map and search functionality for users to find waste disposal points and repair locations. The service is supported by Zone Media OÜ, a local Estonian company, and has been operational since 2014. The platform integrates Google Maps API for geolocation and mapping, and offers user engagement features such as adding new repair points and saving favorites. The website targets general users interested in environmental sustainability and waste management within Estonia. Technically, the website employs a modern JavaScript stack including jQuery, jQuery UI, and Google Maps API, with asynchronous loading of data from a dedicated API. The site is mobile-optimized and provides a good user experience with clear navigation and search autocomplete. However, some minor server-side errors are exposed in the HTML source, and no advanced security headers are implemented, indicating room for improvement in security hardening. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, and exposes a PHP warning which could leak information. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism detected. No direct contact information or incident response contacts are found, which may impact trust and compliance. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk assessment suggests the site is legitimate and functional but would benefit from improvements in security and privacy compliance to enhance trustworthiness and regulatory adherence. Strategic recommendations include fixing server-side errors, enabling DNSSEC, implementing security headers, and adding cookie consent mechanisms to align with GDPR requirements.

G

G53 Network

g53network.org

61

The G53 Network is an academic research network focused on financial literacy and personal finance, connecting top scholars globally to promote evidence-based research and data-driven solutions. Founded in 2021, it offers working paper series, conferences, seminars, and mentoring programs to foster collaboration and knowledge dissemination in this growing field. The website reflects a professional and consistent brand image, targeting researchers and academics in the education sector. Technically, the site is built on WordPress using modern themes and plugins, hosted via Hover, and integrates Google Analytics for visitor insights. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and no explicit security policies or vulnerability disclosures are present. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, though it could improve transparency by adding terms of service, security policies, and incident response information.

S

SOLEN, s. r. o.

mudr.online

54

mudr.online is an online platform operated by SOLEN, s. r. o., providing online events, webinars, and AD tests primarily for medical professionals in Slovakia. The website is professionally designed with a clear focus on educational services in the healthcare sector. The platform leverages modern web technologies including jQuery, Vimeo API, and Cookiebot for consent management, ensuring GDPR compliance. The domain registration and business information are consistent and legitimate, supporting the credibility of the service. Security posture is good with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and some security headers could be improved. Overall, the site presents a trustworthy and compliant online educational service.

Č

Česká nefrologická společnost, o.s.

nefrol.cz

48

The Česká nefrologická společnost (Czech Society of Nephrology) is a non-profit professional organization dedicated to nephrology, encompassing medical professionals and researchers focused on kidney diseases. The website serves as an information hub for both professionals and patients, providing news, event calendars, and partner collaborations. The organization holds a reputable position within the Czech healthcare sector, supported by partnerships with recognized international nephrology bodies. Technically, the website employs modern analytics tools such as Google Analytics and Fathom, integrates Google Maps API, and demonstrates good mobile responsiveness and accessibility features. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is generally good with HTTPS enforced, but the absence of security headers and vulnerability disclosures suggests room for improvement. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and partner affiliations support its legitimacy. Overall, the site is well-maintained and trustworthy but should enhance privacy compliance and security transparency.

D

DANIELO Sportswear | Sklep online

danieloshop.pl

37

DANIELO Sportswear is a specialized Polish e-commerce retailer focused on professional cycling and sportswear for both groups and individual customers. The website offers a range of cycling clothing and accessories, positioning itself as a niche player in the sports apparel market. The business appears to be small-sized and founded in 2018, with a clear focus on quality and targeted audience engagement. Technically, the website is built on WordPress with WooCommerce, leveraging popular plugins such as Yoast SEO and Google Analytics for SEO and analytics. The site is mobile-optimized and uses modern web technologies, although some accessibility features could be improved. Security-wise, the site enforces HTTPS and includes GDPR-compliant cookie consent mechanisms, but lacks explicit security policies or incident response information. Overall, the site is professional and trustworthy with a moderate risk profile.

G

Geeky Ramblings

geekyramblings.net

60

Geeky Ramblings is a personal blog authored by David, focusing on technology, cycling, and personal experiences. The site targets general tech enthusiasts and the cycling community, operating as a small-scale personal blog supported by advertising and donations. The website is built on WordPress and leverages common web technologies including jQuery, Scriptaculous, and Google services such as Analytics and AdSense. Hosting is supported by Amazon CloudFront CDN, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers are not detected. The absence of WHOIS data raises concerns about domain registration legitimacy, but the website content and structure indicate a legitimate personal blog. Privacy compliance is good with a clear privacy policy and cookie consent. Overall, the site provides a good user experience with consistent branding and relevant content.

I

International Sava River Basin Commission

savacommission.org

47

The International Sava River Basin Commission operates as an intergovernmental organization dedicated to the sustainable management and development of the Sava River Basin. It provides a platform for cooperation among basin countries focusing on water management, navigation, flood protection, sediment management, and environmental preservation. The website reflects a professional and authoritative presence with comprehensive content and official documentation supporting its mandate. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and Slick Carousel, with integration of Google Analytics and Tag Manager for user tracking. The site is mobile optimized and exhibits good performance and SEO practices. However, there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and secure login forms but lacks important security headers and published security policies such as privacy, cookie, and incident response information. The absence of WHOIS data reduces domain trust verification, though the website content and contact details support legitimacy. Overall, the security posture is moderate with recommendations to enhance compliance and transparency. The overall risk assessment is low to moderate, with strategic recommendations focusing on publishing privacy and cookie policies, implementing security headers, adding vulnerability disclosure mechanisms, and improving WHOIS transparency to strengthen trust and compliance.

T

Tschudi Shipping Company AS

tschudigroup.com

68

Tschudi Shipping Company AS is a well-established, family-owned Norwegian maritime and logistics group with a history dating back to 1883. The company offers a broad range of integrated services including shipping, ship management, transshipment, energy advisory, ocean industries support, offshore wind support, logistics, and financial services. With a strong Nordic and European presence and offices in 12 countries, Tschudi Group targets businesses requiring comprehensive maritime and logistics solutions. The website reflects a professional and consistent brand image, emphasizing their expertise and global reach. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as jQuery, Google Analytics, and Google Tag Manager. The site is well-optimized for performance, mobile responsiveness, and accessibility, with clear navigation and rich content. Privacy and cookie policies are present with consent mechanisms, indicating good privacy compliance. However, explicit security headers are missing, and no public security policy or incident response information is available. From a security perspective, the site enforces HTTPS and anonymizes IPs in analytics, but the absence of WHOIS data for the domain raises concerns about domain registration legitimacy. No vulnerabilities or exposed sensitive data were detected, but improvements in security headers and transparency about security practices are recommended. Overall, the site demonstrates a solid security posture with room for enhancement. The overall risk assessment is moderate with a legitimacy score impacted by missing WHOIS data. Strategic recommendations include verifying domain registration, enhancing security headers, publishing security policies, and implementing vulnerability disclosure mechanisms to strengthen trust and compliance.

A

Audiomack Studios

audiomack.studio

56

Audiomack Studios operates two state-of-the-art recording studios located in NoHo, Manhattan, New York, targeting musicians and producers seeking professional recording services. The website is built on the Squarespace platform and integrates common web technologies such as Google Analytics and Google Tag Manager for tracking. The site currently displays minimal content with a 'Website Under Construction' message, indicating ongoing development. Social media presence is strong with active profiles on Instagram, TikTok, Twitter, and YouTube, reinforcing brand visibility and engagement. Security posture is moderate with HTTPS enabled but lacking several important security headers, and no published privacy or cookie policies, which impacts compliance and trust. The domain WHOIS data is privacy protected, which is typical for small businesses, but limits transparency. Overall, the site is functional but requires enhancements in content, security headers, and compliance documentation to improve trust and professionalism.

M

Materials innovation institute (M2i)

m2i.nl

46

Materials innovation institute (M2i) is a well-established network organization specializing in materials research, connecting industry, academia, and research institutes primarily in The Netherlands and Europe. The website reflects a professional and focused business model aimed at facilitating collaboration and innovation in materials science. The organization targets industry professionals and academic researchers, providing support in product development and production processes. The site is built on a mature WordPress infrastructure using the Avada theme and integrates modern web technologies and analytics tools with privacy considerations.

K

Kersten Group

kerstengroup.com

62

Kersten Group is a global leader specializing in the production of custom curved components and constructions in steel and aluminium. Their website highlights their expertise in bending and processing metal tubes, sections, and plates, serving diverse industries such as offshore, energy, mobility, machinery, architecture, medical, and industrial equipment. The company positions itself as an innovator focused on creating what seems impossible by combining technology, skill, and partnerships to deliver strength, elegance, efficiency, and sustainability in their products. Technically, the website is built on Syveon CMS 4.2.0 and employs modern web technologies including Google Analytics, Google Tag Manager, Leadinfo tracking, and Vimeo for video content. The site is well-optimized for mobile devices, has good SEO practices, and provides a professional user experience with clear navigation and comprehensive content. Cookie consent mechanisms and a detailed privacy policy indicate attention to privacy compliance. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data for the domain is missing or unavailable, which raises some concerns about domain registration transparency, though the website content and social media presence support its legitimacy. Overall, the website demonstrates a strong digital presence and professional business operation with moderate security posture. Strategic recommendations include enhancing security headers, publishing a security policy or incident response contact, and improving domain registration transparency to strengthen trust and compliance.

I

Indianwebs

indianwebs.com

46

Indianwebs is a well-established digital agency based in Spain, specializing in web design, SEO, and online marketing services. With over 20 years of experience and a strong presence in Barcelona and Madrid, the company positions itself as a leader in the national market. Their service offerings include web design, social media management, search engine positioning, online advertising, hosting, and domain registration. The website is professionally designed, mobile-optimized, and integrates modern analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is solid with HTTPS and reCAPTCHA implemented, though there is room for improvement in security headers and explicit security policies. Privacy compliance is basic with a cookie consent mechanism but lacks a visible privacy policy and terms of service. Overall, the website reflects a credible and professional business with a strong technical foundation and good market positioning.

C

CEFIC

tdma.info

69

The website www.tdma.info represents TDMA under the European Chemical Industry Council (CEFIC), serving as an industry association platform focused on the chemical sector in Europe. The site targets industry professionals and stakeholders, providing information and advocacy services. The technical infrastructure is based on WordPress CMS with the Divi theme, enhanced by popular plugins such as Yoast SEO, Slider Revolution, and Cookiebot for cookie consent management. Google Analytics is used for visitor tracking. The site is multilingual, supporting several European languages, indicating a broad regional audience. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and explicit privacy or security policies. WHOIS data is unavailable due to privacy protection, which is typical for such organizations. Overall, the site is professional and trustworthy but could improve transparency by publishing privacy and security policies and contact information.

P

Primalab d.o.o.

primalab.si

44

Primalab d.o.o. is a Slovenian company established in 2006 specializing in the sale and support of laboratory and process equipment. The company offers a comprehensive range of products from reputable suppliers, alongside technical consulting, training, and maintenance services. Their market position is that of a trusted regional supplier with a focus on quality and customer service. Technically, the website is built on the DNN CMS platform, utilizing common JavaScript libraries and hosted behind Cloudflare, indicating a moderate level of digital maturity. The site is mobile-optimized and provides clear navigation and professional content. Security-wise, the site uses HTTPS and Cloudflare DNS but lacks some modern security headers and uses slightly outdated JavaScript libraries, which could be improved. Privacy compliance is addressed with clear privacy and cookie policies and consent mechanisms, though incident response and vulnerability disclosure information are absent. Overall, the website is professional and trustworthy with room for security enhancements.

E

ECKOLAB World Wide

eckolab-worldwide.com

56

ECKOLAB World Wide is a small business founded in 2022, specializing in supplying quality laboratory equipment and materials primarily targeting customers in Europe and Africa. The company positions itself as a trusted partner for laboratories, with a professional online presence built on WordPress and the Divi theme. The website content is relevant and well-structured, catering to a B2B audience with clear contact information and product offerings. Technically, the site uses modern CMS and plugins, hosted by Scaleway SAS, with Cloudflare DNS services enhancing availability and performance. Security posture is adequate with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and security headers are minimal. Privacy compliance is lacking, with no visible privacy or cookie policies, and no consent mechanisms for tracking scripts such as Google Analytics. Overall, the site is trustworthy and professional but would benefit from improved privacy and security practices.

Mailman4.com is a niche technology website offering Mailman 3 mailing list management software as a service via the AWS Marketplace. The business is positioned as a small provider focusing on delivering a well-maintained Mailman 3 installation with enhanced features and reliable email delivery. The website content is basic but functional, targeting organizations requiring mailing list solutions, including large enterprises. The technical infrastructure leverages AWS hosting and DNS, with integrations of Google Analytics, Google Tag Manager, and Bugsnag for monitoring and marketing. However, the site lacks comprehensive privacy, cookie, and security policies, and no contact information is provided, which limits user trust and compliance. Security posture is moderate with domain registration protections but missing DNSSEC and security headers. Overall, the site is accessible and operational but would benefit from improved compliance and security transparency.

W

Wir helfen Kindern e.V.

whk-online.de

64

Wir helfen Kindern e.V. is a German non-profit organization dedicated to supporting disadvantaged children through various charitable projects focusing on child cancer aid, abuse prevention, poverty alleviation, education, and integration. Established in 1998, the organization has a strong regional presence and a history of supporting over 100 projects with more than one million euros in donations. The website serves as an information and donation platform, targeting donors, volunteers, and supporters interested in child welfare. Technically, the website is built on WordPress using modern plugins such as Yoast SEO, Slider Revolution, and Borlabs Cookie for GDPR-compliant cookie management. It integrates Google Analytics and Google Tag Manager for analytics and marketing purposes. The site is mobile-optimized with a moderate performance profile and good SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and a dedicated security policy or incident response page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, showing a long-standing domain registration appropriate for the organization's history. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable platform for its charitable mission.

2

2Pixels Studio

2pixels.hu

51

2Pixels Studio is a Hungarian web and print design studio specializing in web design, web development, branding, packaging, and print design services. The company targets businesses and individuals seeking cohesive digital and offline visual identities. Their market position is that of a niche, small-sized design studio with a professional portfolio and active social media presence. Technically, the website is built on WordPress with common optimization plugins and uses Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good SEO practices but lacks explicit privacy and cookie policies. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the website is professional and trustworthy but could improve privacy compliance and security best practices.

T

Terrán Tetőcserép Gyártó Kft.

terran-generon.hu

57

Terrán Tetőcserép Gyártó Kft. operates the Terrán Generon website, offering innovative solar roof tile solutions primarily targeting homeowners and businesses in Hungary. The company leverages its century-long expertise in roofing combined with modern solar technology to provide aesthetically pleasing and environmentally friendly energy solutions. The website reflects a strong market position supported by multiple industry awards and certifications, emphasizing product quality and sustainability. Technically, the site is built on WordPress with modern technologies such as Google Analytics, Facebook Pixel, and CookieYes for compliance and marketing. The site is well optimized for performance, mobile responsiveness, and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

D

Duel-Press s.r.o.

ujszo.com

57

Új Szó is a well-established Hungarian language daily newspaper and online news portal serving the Hungarian-speaking community in Slovakia. Operated by Duel-Press s.r.o., the website has a strong market position as the leading Hungarian news source in the region. The site offers a broad range of news categories and multimedia content, supported by a modern Drupal 10 CMS infrastructure and integrated advertising and analytics technologies. The domain is longstanding and consistent with the business history, enhancing credibility. Technically, the site is well-optimized for mobile and SEO, with good accessibility features and a moderate performance profile. Security posture is adequate with HTTPS and transfer protection, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is strong with GDPR and cookie consent mechanisms in place. Overall, the site presents a professional and trustworthy media outlet with room for security enhancements.

BigMedia, spol. s r.o. is a well-established leader in the Central European outdoor advertising market, specializing in a broad range of advertising formats including billboards, digital displays, and transport advertising. The company offers comprehensive services from rental to production and installation, targeting businesses and advertisers seeking out-of-home advertising solutions. Their market position is strong, supported by a domain registered since 2008 and active social media presence. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Quantcast Choice for consent management, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and professional design. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found. Overall, the website is professional and trustworthy but could improve transparency and security practices.

SCHENK STAHL GmbH is a German company established in 1986 specializing in the trading of stainless, heat-resistant, and acid-resistant steel products including pipes, tubes, fittings, and special alloys. The company targets industrial clients requiring high-quality steel materials for demanding applications. The website reflects a traditional B2B business model with a focus on product range and technical specifications. The digital infrastructure is based on TYPO3 CMS version 4.4, with legacy Flash content still present, indicating a need for modernization. The site includes multiple language options, suggesting an international audience. Security posture is moderate but lacks modern security headers and visible HTTPS enforcement. Privacy compliance is weak, with no privacy or cookie policies detected and tracking scripts active without consent mechanisms. Overall, the site is functional but requires updates to improve security, privacy, and user experience.

S

Schoeller Werk GmbH & Co. KG

schoellerwerk.de

53

Schoeller Werk GmbH & Co. KG is a well-established German manufacturer specializing in premium longitudinally welded stainless steel tubes, serving industrial and automotive sectors globally. Founded in 1827, the company emphasizes quality, sustainability, and innovation, positioning itself as a leading European supplier with a strong reputation and certifications such as ISO 9001. The website reflects a professional digital presence built on WordPress with multilingual support and modern technologies, providing clear navigation, comprehensive product and company information, and active engagement through social media and news updates. Security posture is robust with HTTPS, cookie consent management, and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is strong, with detailed policies and user consent mechanisms aligned with GDPR. Overall, the site demonstrates high business credibility and trustworthiness, supporting the company's market position and customer engagement.

C

CIOB Jobs

ciobjobs.com

65

CIOB Jobs is a professionally maintained online job board and career resource platform affiliated with the Chartered Institute of Building. It serves the construction and building industry by providing job listings, career advice, training courses, and CPD resources. The website targets construction professionals and recruiters, positioning itself as an authoritative niche platform with a medium-sized operational scale and a founding date of 2009. The business model revolves around job advertising and career support services within the UK and global construction sectors. Technically, the site is built on WordPress with WooCommerce and uses modern tracking and analytics tools such as Google Analytics, Hotjar, and Google Tag Manager. Hosting and DNS are managed via Cloudflare, ensuring reliable infrastructure and domain security. The site demonstrates good SEO, mobile optimization, and accessibility standards. Security posture is solid with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, CIOB Jobs presents a trustworthy and professional digital presence with room for enhanced security and privacy practices.

V

VVKL

vvkl.cz

55

VVKL is a specialized conference focused on the development, manufacturing, and quality control of pharmaceutical products, targeting professionals in the healthcare and pharmaceutical industries. The website is built on the Wix platform, leveraging standard Wix technologies and Google Analytics for visitor tracking. The site presents professional content relevant to its niche audience but lacks explicit privacy and cookie policies, as well as visible contact information, which are important for compliance and trust. Security posture is adequate with HTTPS enabled, but could be improved with additional security headers and transparency about data protection. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the site content and technical setup suggest a legitimate small-scale event organizer. Strategic improvements in privacy compliance and contact transparency would enhance trust and security.

A

Asociación de Fabricantes Españoles de Paneles Sándwich

afepp.com

53

The Asociación de Fabricantes Españoles de Paneles Sándwich (AFEPP) is an industry association representing Spanish manufacturers of sandwich panels. The website serves as an informational and promotional platform targeting manufacturers and stakeholders within Spain's manufacturing sector. The site is built on WordPress using the Colibri page builder and integrates marketing and analytics tools such as HubSpot and Google Analytics. It features a cookie consent mechanism compliant with GDPR principles but lacks a dedicated privacy policy and terms of service pages. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy despite the professional appearance of the website. Security posture is moderate with HTTPS enabled but no detected security headers or published security policies. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

N

Nationale staalprijs

nationalestaalprijs.nl

46

Nationale staalprijs is a Dutch organization dedicated to promoting and awarding excellence in steel construction projects. The website serves as a platform to showcase nominations, winners, and project submissions related to steel construction within the Netherlands. It targets professionals and companies in the steel construction industry, providing information and recognition to encourage innovation and quality in this sector. The business model appears to be non-profit or industry promotional in nature, focusing on national recognition rather than commercial sales. Technically, the website is built on Drupal 10 CMS and integrates modern web technologies including Google Tag Manager, Google Analytics, YouTube and Vimeo APIs, and Google reCAPTCHA for form security. The site is mobile optimized with good navigation and SEO practices, although some accessibility features could be improved. Performance is moderate with asynchronous loading of scripts. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on user registration and login forms to mitigate automated abuse. However, no explicit security headers were detected in the provided content, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is limited as no privacy or cookie policies were found on the homepage content, which could be improved to meet GDPR standards. Overall, the website is professional, trustworthy, and well-targeted to its audience. The main risks relate to privacy compliance and security policy transparency. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and providing vulnerability disclosure information to enhance trust and compliance.

Vin De Constance is a premium wine brand website showcasing a rich history of over 300 years in winemaking. The site targets adult consumers interested in high-quality alcoholic beverages and brand heritage. The business model focuses on brand marketing and storytelling through multimedia content, including images and videos, to engage visitors and promote their products. The website is professionally designed with consistent branding and good user experience, optimized for mobile devices and featuring clear navigation.

H

Hrvatski audiovizualni centar

havc.hr

45

The Hrvatski audiovizualni centar (HAVC) is a Croatian public institution dedicated to supporting and promoting the audiovisual sector, including film production and cultural initiatives. The website serves as an authoritative portal providing news, event calendars, film catalogs, and official publications relevant to the Croatian and international film community. It targets industry professionals, cultural stakeholders, and the general public interested in audiovisual culture. The business model is primarily public funding and cultural promotion, positioning HAVC as a key national player in the media sector. Technically, the website employs a modern JavaScript-based frontend with libraries such as jQuery, Nivo Slider, and Google Fonts, alongside integrations with Google Maps API, Facebook Pixel, and Google Analytics for tracking and user engagement. The site is mobile-optimized and accessible, with features to adjust contrast and font size, enhancing usability. Hosting and domain registration are consistent with a Croatian academic network registrar, indicating a stable and legitimate infrastructure. From a security perspective, the site uses HTTPS and includes tracking scripts responsibly. However, it lacks visible security headers and does not publish a security policy or incident response contacts, which are areas for improvement. Privacy compliance is partial; while a cookie banner is present, it lacks explicit consent mechanisms, and no privacy policy or terms of service are directly linked or found on the homepage. The absence of vulnerability disclosure mechanisms also suggests room for maturity in security practices. Overall, HAVC's website is professional, content-rich, and trustworthy, with a strong business credibility score. The main risks relate to privacy compliance and security best practices, which if addressed, would enhance user trust and regulatory adherence. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and improving cookie consent mechanisms.

Stocktwits is a leading social media platform and real-time market data provider focused on investors and traders. Founded in 2008, it has grown to serve over 10 million users, offering live stock and cryptocurrency quotes, social community discussions, news, earnings tracking, and AI-powered insights. The platform integrates multiple advertising and analytics services to monetize and optimize user engagement. Technically, Stocktwits employs modern web technologies including Next.js, Cloudflare CDN, and various tracking and marketing tools, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement and domain locking, though DNSSEC is not enabled and explicit privacy and security policies are not found in the provided content. Overall, Stocktwits presents a professional, trustworthy, and comprehensive service for its target audience of investors and traders.

V

Vocal

vocal.media

60

Vocal is a digital media platform designed to support, discover, and reward content creators by providing tools for story creation, audience building, and monetization through reads, tips, and challenges. The platform targets creative individuals and readers interested in storytelling and community engagement. It holds a niche position in the media industry focusing on creator empowerment and safe content moderation without intrusive advertising. Technically, Vocal employs a modern web stack including React and Next.js frameworks, supported by a variety of third-party analytics and advertising services such as Google Analytics, Heap Analytics, Facebook Pixel, and TikTok Pixel. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS with strong SSL configuration and implements multiple security headers, reflecting a mature security posture. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for further strengthening trust and compliance. Overall, Vocal presents a professional and trustworthy platform with extensive content and community features. The absence of direct contact information and privacy-protected WHOIS data is typical for media platforms and does not detract significantly from its credibility. Strategic improvements in transparency and security communication would enhance its risk profile and user trust.

5

5mods

gta5-mods.com

65

GTA5-Mods.com is a well-established community platform dedicated to providing a comprehensive repository of mods for the Grand Theft Auto V PC game. It serves a global audience of gamers and modders by offering a wide variety of downloadable content including vehicles, scripts, player skins, and tools. The platform operates primarily on a user-generated content model supported by advertising revenue and community engagement through social media and Discord. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, and Prebid.js for advertising and analytics, ensuring a responsive and user-friendly experience across devices. Security-wise, the site enforces HTTPS and includes CSRF tokens, with a consent management system for GDPR compliance, though it lacks explicit security policy disclosures or incident response information. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the site's legitimacy given its active community and professional presentation. Overall, the site demonstrates a mature digital infrastructure with room for improvement in security transparency and domain registration clarity.

E

Experiment

experiment.com

67

Experiment.com is a well-established crowdfunding platform dedicated to funding and sharing scientific research across diverse disciplines. It serves researchers, scientists, and science enthusiasts by providing a marketplace to fund innovative projects and share findings openly. The platform positions itself as the world's largest open platform for science funding, emphasizing transparency and community engagement. Technically, the website employs modern web technologies including JavaScript frameworks, cloud CDN hosting, and integrates analytics and bot protection tools such as Google Analytics, Mixpanel, Facebook SDK, and Google reCAPTCHA. The site is mobile-optimized with a professional design and clear navigation, supporting a positive user experience. Security-wise, the platform enforces HTTPS, uses reCAPTCHA for bot mitigation, and includes some security headers, though DNSSEC is not enabled and some headers could be added to enhance protection. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Overall, the website demonstrates a mature digital presence with strong business credibility and a secure, user-friendly environment.

H

Hrvatske vode

voda.hr

54

Hrvatske vode is the official Croatian government agency responsible for managing water resources, flood protection, and related environmental projects. The website serves as a comprehensive portal providing information, public notices, project details, and access to e-services primarily targeting Croatian citizens, government bodies, and professionals in water management. The agency is well-established with a domain registered since 2011 and operates transparently with clear contact information and public tenders. Technically, the site is built on Drupal 10, uses modern web technologies, and integrates Google Analytics with privacy-conscious configurations. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

midrange.com is a long-established, niche online community resource dedicated to IBM i midrange system professionals. It offers free mailing lists, discussion forums, archives, and a wiki to support users and developers of IBM i, System i5, iSeries, and AS/400 platforms. The site is maintained by David Gibbs, a senior software engineer, and is hosted on Amazon AWS Lightsail. The website employs standard web technologies including Bootstrap and jQuery, with integrations for Google Analytics, Adsense, and LinkedIn widgets. While the site lacks explicit privacy and security policy pages, it implements a comprehensive cookie consent mechanism compliant with GDPR standards. Security posture is moderate with HTTPS enabled and domain protections in place, but could benefit from additional security headers and DNSSEC activation. Overall, the site is trustworthy, content-rich, and serves a specialized technical audience effectively.

A

ActiveState Software Inc.

komodoide.com

60

ActiveState Software Inc. operates the Komodo 12 Documentation website, providing comprehensive resources for their cross-platform, multi-language IDE integrated with the ActiveState Platform and State Tool. The company targets developers and software engineers seeking advanced development tools. The website is professionally designed with good navigation and content relevance, supporting a medium-sized technology business model with a strong market presence in developer tools. Technically, the site uses modern web technologies including Hugo static site generator, Google Analytics, and highlight.js for code syntax highlighting. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit security policies. Privacy compliance is moderate with a clear privacy policy but no cookie consent mechanism. Overall, the site is trustworthy, safe, and professional, with no signs of malicious content or blocking mechanisms.

S

SmarterASP.NET

smarterasp.net

67

SmarterASP.NET is a specialized web hosting provider focusing on ASP.NET and Windows-based hosting solutions. They offer a wide range of hosting plans including shared, semi-dedicated, managed, VPS, cloud, dedicated servers, and reseller plans. Their services are supported by datacenters in the US and Europe, providing customers with options for geographic hosting. The company emphasizes unlimited resources, free SSL certificates, and a 60-day free trial to attract developers and businesses requiring reliable ASP.NET hosting. The website reflects a mature business with over one million customers, indicating a strong market presence in the ASP.NET hosting niche. Technically, the website uses modern web technologies such as jQuery, Bootstrap, Google Tag Manager, and Olark live chat. Hosting infrastructure is based on Windows Server platforms with support for the latest .NET versions and SQL Server databases. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security best practices include HTTPS with free SSL, isolated application pools, and FTP over SSL, but some security headers are missing. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance with GDPR. Security posture is solid but could be improved by adding explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data was not retrievable from the provided raw output, which limits domain registration trust analysis. However, the website's professional appearance, extensive content, and trust signals support its legitimacy. Overall, SmarterASP.NET presents a reliable and professional hosting service with a good balance of technical capabilities and customer trust. Strategic improvements in security transparency and WHOIS data verification would enhance their security posture and business credibility.

S

Shoes Or No Shoes

shoesornoshoes.com

44

Shoes Or No Shoes is a niche museum website dedicated to the cultural and artistic significance of shoes, operating as a division of Safety Jogger. The site offers visitors insights into shoe collections spanning ethnic cultures and modern art, and promotes a sneaker design contest. The business model is cultural and educational, targeting general audiences interested in art and footwear. Technically, the site is built on a modern Angular framework with Bootstrap styling, ensuring good mobile responsiveness and user experience. However, the site lacks key privacy and security policies, and does not provide direct contact information, which limits trust and compliance. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Overall, the domain is legitimate and well-established, supporting the credibility of the site.

M

Manifattura Falomo

manifatturafalomo.com

57

Manifattura Falomo is an established Italian manufacturer specializing in mattresses, pillows, and bed frames with over 60 years of experience. The company emphasizes quality and the culture of healthy sleep, targeting consumers seeking premium sleep products. The website is multilingual, supporting English, Italian, and German, reflecting an international market presence. Technically, the site is built on WordPress with modern plugins and integrations such as WPML for multilingual support, Google Analytics for tracking, and Iubenda for privacy compliance. Security measures include HTTPS enforcement, reCAPTCHA on forms, and a cookie consent mechanism, indicating a mature security posture. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts the overall trust score. The site lacks explicit contact emails and phone numbers but provides a contact form for inquiries. Overall, the website is professional, secure, and compliant with privacy regulations, serving as a credible digital presence for the business.