Security Directory

G

graz4u

graz4u.at

66

graz4u is a small Austrian IT service provider specializing in professional IT and internet solutions for small and medium-sized enterprises (KMUs). Founded in 2003, the company offers a broad range of services including website design, hosting, email services, domain registration, customer support via ((OTRS)) Community Edition, and security solutions such as SSL certificates and firewall management. The website reflects a focused business model targeting KMUs with a niche market position supported by long-term experience and consistent branding. Technically, the site is built on WordPress with modern plugins and caching mechanisms, delivering moderate performance and good mobile optimization. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, with no detected vulnerabilities or suspicious content.

M

Maschinenring GmbH

shop-maschinenring.at

52

Maschinenring GmbH operates an e-commerce platform focused on providing products and services for the agricultural, forestry, and workwear sectors in Austria. The website offers a broad range of categories including clothing, telecommunications, office supplies, and technical equipment, targeting professionals and businesses in these industries. The company positions itself as a regional specialist with a diversified product portfolio and a medium-sized business footprint. Technically, the website employs modern frontend technologies such as Bootstrap 5 and FontAwesome, with Cookiebot integrated for GDPR-compliant cookie management. The site is mobile optimized and uses HTTPS to secure user interactions. While the CMS is not explicitly identified, the site shows good navigation clarity and a professional design, though some SEO and accessibility enhancements could be made. From a security perspective, the site demonstrates good practices including HTTPS enforcement, session management via secure cookies, and a comprehensive cookie consent mechanism. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No vulnerabilities or suspicious activities were detected in the provided content. Overall, Maschinenring GmbH's website is trustworthy, compliant with privacy regulations, and professionally presented. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility and SEO, and maintaining regular audits of third-party scripts to sustain security posture.

S

Sempergreen International

sempergreen-international.com

59

Sempergreen International is a market-leading organization specializing in sustainable green infrastructure products including green roofs, green walls, and green ground cover. Founded recently in 2022, the company targets businesses and organizations seeking environmentally friendly landscaping solutions. The website reflects a professional and consistent brand presence with a clear focus on its niche market. Technically, the site is built on WordPress with modern technologies such as React and optimized using WP Rocket and Yoast SEO, hosted on AWS infrastructure, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the site demonstrates good business credibility and technical maturity with room for enhanced security and compliance measures.

D

Datlab s.r.o.

tendry.cz

54

Datlab s.r.o. operates the website Tendry.cz, a specialized platform providing daily public procurement opportunities for businesses in the Czech Republic. The company leverages data acquisition and analysis expertise to aggregate over 25,000 sources of public contract data, offering AI-driven smart monitoring and email alerts to its users. Positioned as a niche leader in the Czech public procurement sector, Tendry.cz targets companies across multiple industries including construction, transportation, and office supplies. Technically, the website employs modern frontend technologies such as Vue.js and Bootstrap, hosted by Wedos, a reputable Czech hosting provider. The site is mobile-optimized and features a professional design with clear navigation. However, some technical improvements are recommended, including enhanced accessibility and SEO optimizations. From a security perspective, the site uses HTTPS and defers script loading for performance but lacks explicit security headers and published security policies. No critical vulnerabilities or suspicious content were detected. Privacy compliance is limited due to the absence of privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, Tendry.cz presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic improvements in privacy compliance and security posture will enhance user trust and regulatory adherence.

GTmetrix is a well-established web performance testing and monitoring service founded in 2009. It offers a freemium SaaS model with free and PRO subscription plans, targeting website owners, developers, and digital marketers. The platform provides detailed performance reports using Lighthouse metrics, real user data, and actionable recommendations to optimize website speed and user experience. GTmetrix has analyzed over 1.3 billion pages, indicating strong market presence and trust. Technically, the website employs modern web technologies including JavaScript, HTML5, CSS3, and integrates Lighthouse for performance audits. DNS is managed via Cloudflare, ensuring reliable hosting infrastructure. The site is fast, mobile-optimized, and accessible, with a professional design and clear navigation. Privacy and cookie policies are comprehensive and GDPR compliant, supported by a consent mechanism. Security posture is good with HTTPS enforced and secure forms, though explicit security headers and a published security policy are absent. No vulnerabilities or exposed sensitive data were detected. The absence of direct contact emails or phone numbers is noted, with contact primarily via forms. Social media presence on major platforms enhances credibility. Overall, GTmetrix presents a low-risk profile with strong business credibility, technical maturity, and privacy compliance. Strategic improvements in security transparency and incident response readiness would further enhance trust and resilience.

V

Väre Oy

vappi.fi

63

Väppi® is a Finnish energy app developed by Väre Oy, providing users with personal energy coaching to monitor and optimize their electricity consumption. The app integrates with energy providers such as Väre, Kuopion Energia, and Savon Voima, offering real-time consumption data, billing management, and renewable energy options. The website is professionally designed, mobile-optimized, and provides clear user guidance and partner information. Technically, the site uses modern frameworks like Next.js and React, hosted on AWS infrastructure, ensuring good performance and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, the site and business demonstrate high credibility and trustworthiness.

F

Finlands Röda Kors

rodakorset.fi

69

Finlands Röda Kors is a large, well-established non-profit humanitarian organization operating primarily in Finland with international outreach. The website serves as a platform for public information, volunteer recruitment, donation facilitation, and crisis support communication. It is professionally designed, mobile-optimized, and content-rich, targeting Swedish-speaking audiences in Finland. The organization maintains a strong market position as a trusted humanitarian entity with clear calls to action and social media presence. Technically, the site uses modern web technologies including Microsoft Application Insights and Google Tag Manager for analytics and monitoring, hosted on Microsoft Azure infrastructure. The CMS is Episerver (Optimizely), supporting a structured and accessible content delivery. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some recommended security headers are not explicitly detected. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects high business credibility and trustworthiness.

S

Suomen Punainen Risti

sprkontti.fi

65

SPR Kontti operates as a secondhand retail chain and online shop affiliated with the Finnish Red Cross, offering consumers an opportunity to recycle and donate various household items while supporting humanitarian work domestically and internationally. The website reflects a well-established non-profit business model with a clear mission and strong brand identity. The digital infrastructure is built on Shopify, leveraging modern e-commerce technologies and integrations such as Judge.me for customer reviews and Google Analytics for performance monitoring. Security posture is robust, with HTTPS enforced, hCaptcha protecting forms, and standard security headers implemented. Privacy compliance is well addressed with visible policies and consent mechanisms. Overall, the site presents a trustworthy and professional online presence aligned with its charitable objectives.

V

VIPPS HOLDING AS

mobilepay.fi

70

MobilePay.fi is a Finnish mobile payment service website operated by VIPPS HOLDING AS, a Norwegian company. The service facilitates easy sending and receiving of money using phone numbers and supports payments at physical stores, online shops, and apps. The domain is well-established since 2013 and is hosted on Microsoft Azure infrastructure with modern web technologies including JavaScript and Cookiebot for consent management. The website demonstrates good digital maturity with responsive design, clear navigation, and professional content tailored for Finnish consumers and businesses. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are not prominently published. Overall, the site is trustworthy and compliant with privacy regulations, though it could improve transparency by publishing security and incident response policies.

I

Inferno.fi

inferno.fi

50

Inferno.fi is a Finnish online magazine specializing in heavy rock and metal music news, reviews, and interviews. It operates under the parent company Pop Media Oy and targets Finnish-speaking music enthusiasts. The website features a professional design with good content quality and consistent branding. It leverages WordPress CMS with modern frontend technologies and integrates multiple third-party advertising and tracking services to monetize its content. The site uses a consent management platform to address GDPR requirements but lacks explicit privacy and cookie policy pages in the provided content. Security posture is strong with HTTPS and security headers, though some lazy loading image errors were detected. Overall, the site is a credible niche media outlet with moderate technical maturity and privacy compliance.

Leffatykki.com is a Finnish media website specializing in movie and TV series reviews, news, and related content. It serves a niche audience interested in entertainment, providing rich editorial content and user engagement through forums and top lists. The site is part of the Popmedia network, indicating a focused media business model with partnerships in the Finnish entertainment sector. Technically, the site is built on WordPress with modern front-end technologies and integrates advertising and consent management platforms, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS and consent mechanisms, though some security headers could be improved. The absence of WHOIS data raises concerns about domain legitimacy, but the site content and structure appear professional and trustworthy. Overall, the site presents a moderate risk profile with recommendations to enhance transparency and security.

The website at checkoutstores.com/lander is a minimal landing page with very limited content and no identifiable business information or branding. The domain is relatively new, registered in September 2022 via GoDaddy.com, LLC, with standard domain lock protections but no privacy protection. The site includes external scripts for Google Adsense and static assets hosted on wsimg.com, indicating some advertising intent but lacks any privacy, cookie, or terms of service policies. There are no contact details or forms, and no security headers or HTTPS information was provided, suggesting a low security posture. Overall, the site appears to be a placeholder or under development rather than a fully operational business website.

D

Datlab s.r.o.

datlab.eu

59

Datlab s.r.o. is a Czech-based company specializing in data gathering, processing, and analytics with a focus on economic data and public procurement. Their website highlights multiple specialized products aimed at public authorities, businesses, and researchers, including sanctions verification, tender documentation, supplier risk detection, and procurement monitoring. The company serves a diverse client base including government agencies, municipalities, universities, and NGOs, positioning itself as a trusted regional player in the public procurement data sector. Technically, the website employs modern JavaScript frameworks such as Vue.js and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and professional design. Cookie consent is managed via a Vue.js component, indicating attention to privacy compliance, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, registered under a reputable Czech registrar, supporting legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include publishing a privacy policy and terms of service, adding security headers, and providing vulnerability disclosure information to enhance security posture and compliance.

O

Original Games

spotthedifference.com

55

SpotTheDifference.com is a niche casual gaming website offering over 70 'spot the difference' puzzles and games. The site targets general audiences interested in casual online puzzles and is funded primarily through advertising. The business appears small and focused on providing entertainment through browser-based games with some social media integration. Technically, the site uses a variety of third-party ad networks and tracking services, including Google Analytics, Criteo, and InMobi, indicating a moderate level of digital maturity but with potential privacy concerns. The site lacks visible privacy policies and contact information, which impacts trust and compliance. Security posture is weak due to missing HTTPS enforcement and security headers, and the absence of WHOIS registration data raises legitimacy concerns. Overall, the site functions as a basic casual gaming platform with room for improvement in security, privacy, and business transparency.

H

Helix Pflanzensysteme GmbH

helix-pflanzensysteme.de

58

Helix Pflanzensysteme GmbH is a specialized company focused on vertical greening systems and sustainable urban green solutions, serving architects, urban planners, and municipalities primarily in Germany. Their website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive content about their services including planning, construction, and maintenance of green facades and noise barriers. The technical infrastructure is based on TYPO3 CMS, with modern web technologies and integrations such as Google Tag Manager and reCAPTCHA for security. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. Privacy compliance is well addressed with detailed policies and user consent options. Overall, the website reflects a trustworthy and credible business with a strong market position in the real estate and urban ecology sector.

K

Kreitl GmbH

kreitl.at

58

Kreitl GmbH is a small Austrian company specializing in tree care, garden design, and water features, aiming to create natural oases for its clients. The website reflects a local service provider with a clear focus on landscaping and environmental aesthetics. Technically, the site is built on WordPress using the Avada theme and incorporates modern plugins like Slider Revolution and lazy loading for images, indicating a moderate level of digital maturity. The site is mobile-optimized and includes basic SEO and accessibility features. Security-wise, the website uses HTTPS and has a cookie consent mechanism, but lacks advanced security headers and visible privacy or terms of service policies, which are areas for improvement. Overall, the site is legitimate and consistent with the business's WHOIS registration data, but could enhance its compliance and security posture to build greater trust and meet regulatory requirements.

F

FRASEBA GmbH

fraseba.de

64

FRASEBA GmbH is a German-based company specializing in substrates, soils, and related landscaping products and services. The company targets businesses, private customers, and municipal clients, offering a broad product range including tree, roof, lawn, and plant substrates, as well as gravel, lava, and soil processing services. Their market position is that of a reliable regional supplier with industry certifications and memberships enhancing their credibility. Technically, the website employs modern web technologies, including Cookiebot for consent management and Matomo for privacy-conscious analytics, with responsive design and good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting a positive business reputation.

W

WoodRocks Bau GmbH

wood-rocks.com

66

WoodRocks Bau GmbH is a medium-sized Austrian company specializing in sustainable wood construction and residential building solutions. The company emphasizes holistic, future-proof building practices with a strong focus on human and environmental integration. Their services span from initial contact and planning through prefabrication and construction to completed residential complexes. The website reflects a professional and consistent brand image, targeting a broad audience interested in sustainable living and affordable housing. Technically, the website employs modern web technologies including Google Tag Manager and CookieHub for cookie consent management, with embedded multimedia content and responsive design. The site is well-structured with good SEO and accessibility basics, although some advanced security headers are missing. The presence of HTTPS and secure forms with CSRF tokens indicates a solid baseline security posture. Security-wise, the site shows good practices such as cookie consent and encrypted communications but lacks explicit security policies or incident response information. The absence of WHOIS registration data is a concern and reduces trustworthiness, though the website content and contact details support legitimacy. No vulnerabilities or suspicious content were detected. Overall, the website scores well on content quality, technical implementation, and privacy compliance but is slightly penalized for missing WHOIS data and security headers. Strategic improvements in security transparency and WHOIS registration verification are recommended to enhance trust and compliance.

A

alchemia-nova research and innovation gemeinnützige GmbH

alchemia-nova.net

53

alchemia-nova is a small Austrian research and innovation institute specializing in nature-based solutions and circular economy principles to foster climate-smart and sustainable societies. The organization offers research, consulting services, and innovative products targeting sectors such as water management, resilient infrastructure, agriculture, and industrial production. Their market position is niche but well-defined, focusing on sustainability and circular transformation. Technically, the website is built on WordPress with modern JavaScript libraries and includes multilingual support. The site is well-optimized for mobile and SEO, with a professional design and clear navigation. Security posture is good with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and security headers. Overall, the website is trustworthy and professionally maintained, with strong privacy compliance and clear contact information.

B

Büsscher & Hoffmann

bueho.com

61

Büsscher & Hoffmann is an Austrian manufacturer specializing in bitumen and polymer bitumen membranes for roofing and waterproofing systems. The company serves construction professionals and building owners with a broad product portfolio covering flat roofs, green roofs, pitched roofs, basements, and bridges. Their business model includes manufacturing, direct sales, technical support, and logistics services, positioning them as a reputable medium-sized player in the manufacturing sector with a strong regional presence. Technically, the website is built on the Pimcore CMS platform, utilizing modern web technologies and personalization scripts, with moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and implements cookie consent mechanisms but lacks DNSSEC and visible security headers, indicating room for improvement in security posture. Overall, the website is professional and trustworthy, though it lacks explicit privacy policy and terms of service pages in the provided content. The domain registration is consistent and mature, supporting the legitimacy of the business.

W

Weiss+Appetito Spezialdienste GmbH

weissappetito.at

53

Weiss+Appetito Spezialdienste GmbH is a specialized service provider based in Austria, focusing on suction and blowing of materials, roof greening, and cleaning services. Their website presents a professional image with clear descriptions of their key services and a focus on consulting and maintenance for roof greening projects. The company targets construction-related clients and property managers requiring specialized material handling and greening solutions. Technically, the website is built on the Squarespace platform, leveraging modern web technologies and delivering a responsive, user-friendly experience. Security posture is solid with HTTPS and HSTS enabled, though additional security headers and privacy compliance mechanisms are recommended. The absence of WHOIS data limits full trust verification, but the website's content and contact information support its legitimacy. Overall, the site is well-structured and suitable for its business purpose, with room for improvement in privacy and security transparency.

HKK Landschaftsarchitektur GmbH is a German landscape architecture firm specializing in the design and planning of innovative green spaces. The company emphasizes quality, individuality, and sustainable interaction with nature and people. Their website showcases a portfolio of projects, services, and career opportunities, targeting clients such as investors, municipalities, and private individuals. The firm operates primarily in Frankfurt am Main and Dresden regions, positioning itself as a medium-sized, creative, and international team. Technically, the website is built on TYPO3 CMS with modern JavaScript enhancements, providing a good user experience with mobile optimization and clear navigation. Security-wise, the site uses HTTPS and email obfuscation but lacks advanced security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives.

S

StadtLABOR – Innovationen für urbane Lebensqualität GmbH

stadtlaborgraz.at

47

StadtLABOR – Innovationen für urbane Lebensqualität GmbH is a small Austrian company specializing in sustainable and cooperative urban development. Their website presents them as an innovation lab focused on integrating climate protection, resource conservation, and innovation into urban projects and neighborhood development. The company targets municipalities, urban planners, and citizens interested in sustainable city living. Their business model revolves around consulting, project management, and community engagement in urban development. Technically, the website is built on WordPress using the Neve theme, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enabled, but lacks some advanced security headers and published security policies. Privacy compliance is mostly met with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a gap. Overall, the website is professional, trustworthy, and well-branded, with active social media channels and recent content updates.

P

Paul Bauder GmbH & Co. KG

steildach-navigator.de

41

Paul Bauder GmbH & Co. KG operates the Bauder Steildach-Navigator website, a specialized tool designed to assist users in selecting optimal pitched roof system constructions. The company is a recognized player in the roofing manufacturing sector in Germany, providing both product information and consulting services. The website targets construction professionals and end customers seeking roofing solutions. Technically, the site is built on TYPO3 CMS, hosted by hotbytes, and employs modern web technologies including Bootstrap and Usercentrics for GDPR-compliant consent management. The site demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and consent management implemented, though some improvements such as additional security headers and updated JavaScript libraries are recommended. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's market position effectively.

F

FC Slovan Liberec

slovanliberec.cz

45

FC Slovan Liberec operates as a professional football club based in the Czech Republic, providing comprehensive information about its teams, matches, fan engagement, and merchandising through its official website. The site targets football fans and local community members, offering news, schedules, player statistics, and multimedia content. The club holds a notable position in Czech football with historical league and cup victories, supported by multiple commercial partners and sponsors. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as Google Analytics and Facebook SDK for analytics and social media connectivity. The site is mobile-optimized and features a cookie consent mechanism indicating awareness of privacy regulations. However, the absence of a visible privacy policy and WHOIS data limits full trust verification. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and incident response contacts. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

The website elh.cz is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks direct access to its content. The domain is registered since 2005 with REG-WEDOS and uses Cloudflare nameservers, indicating a mature domain with standard security and performance infrastructure. However, no business information, contact details, privacy or cookie policies, or terms of service are visible on the page, limiting the ability to assess the company's operations or compliance. The technical infrastructure relies on Cloudflare's security platform, but no further CMS or technology stack details are available due to content blocking. Security posture cannot be fully evaluated, but the presence of Cloudflare WAF indicates some level of protection. Overall, the site lacks visible trust indicators and business transparency, and the content quality is poor due to the blocking mechanism.

The website cfmaeroengines.com is currently inaccessible due to a Vercel Security Checkpoint blocking access with a browser verification challenge. As a result, no business content, metadata, or contact information is available for analysis. The domain is registered since 2012 with CSC Corporate Domains, Inc., indicating a mature domain age, but the lack of accessible content limits the ability to assess the company's market position or services. The technical infrastructure includes the Astro framework and hosting on Vercel, but performance and SEO cannot be evaluated due to the block. Security posture is weak from an external perspective as no security headers or policies are visible, and the site is effectively blocked from public access. Overall, the site presents a high risk of poor user experience and low trust due to inaccessibility and lack of transparency.

O

OLC systems s.r.o.

olc.cz

50

OLC systems s.r.o. is a Czech Republic-based software development company specializing in custom software solutions, production monitoring, and production management. The company targets businesses requiring tailored software and outsourcing development services. Their website presents a professional image with clear contact information and a focus on technology services. The technical infrastructure is built on WordPress CMS with modern web technologies and includes Google Tag Manager for analytics and marketing. The website is mobile-optimized and uses HTTPS, indicating a baseline of security awareness. However, the absence of WHOIS data and explicit privacy or security policies reduces transparency and trust. Security posture is adequate but could be improved by adding security headers and formal policies. Overall, the website is functional, professional, and safe for general audiences, but domain registration details should be verified for full trust.

TilePuzzles.com is a niche online gaming website specializing in sliding tile puzzles, including traditional 15 puzzles, wood puzzles, and original train games. The site targets casual puzzle enthusiasts and offers free gameplay supported by advertising and a mobile app for iPhone/iPod Touch. The business model is primarily ad-supported with user engagement through medal scoring and championships. The website is small in scale, with consistent branding linked to OriginalGames.com, and has been active since at least 1999 according to site content, though domain registration data is unavailable. Technically, the site uses classic web technologies such as HTML, CSS, and JavaScript, with Google Adsense for monetization. It is mobile responsive and promotes an iPhone app, indicating some digital maturity. However, the site lacks modern security features such as HTTPS enforcement and security headers, and no CMS or hosting provider information is evident. Performance is moderate, and SEO and accessibility are basic. From a security perspective, the site shows minimal risk but also minimal protections. There is no evidence of privacy or cookie policies, no contact or incident response information, and no security certifications. The absence of HTTPS and security headers is a concern. No vulnerabilities or exposed sensitive data were detected, but the lack of security best practices reduces trustworthiness. Overall, the site is a functional, small-scale gaming portal with basic technical implementation and limited security posture. The missing WHOIS data raises questions about domain legitimacy, though the content appears genuine. Strategic improvements in security, privacy compliance, and contact transparency are recommended to enhance trust and compliance.

S

SkyPro Oy

skypro.fi

58

SkyPro Oy is a Finnish family-owned company specializing in the import and sale of promotional textiles and design products. The company operates an e-commerce platform targeting both business and consumer customers, with physical showrooms in Turku and Helsinki-Vantaa. Their product range includes a wide variety of textile and design items, including custom-made promotional products. The website is professionally designed, localized in Finnish, and provides comprehensive contact information and customer support options. Technically, the website employs modern web technologies including JavaScript, jQuery, Google Tag Manager, and Facebook Pixel for marketing and analytics. It uses HTTPS with secure form handling and a robust cookie consent mechanism that complies with GDPR requirements. The site is mobile-optimized and offers a good user experience with clear navigation and search functionality. From a security perspective, the site demonstrates good practices such as CSRF protection and encrypted connections. However, it lacks some security headers that could enhance protection. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with a detailed privacy policy and cookie management. Overall, the website presents a low risk profile with a trustworthy business presence, good technical implementation, and solid privacy and security measures. Strategic improvements could include adding terms of service, enhancing security headers, and publishing incident response information.

C

CrossFit Medical Society™

crossfitmedicalsociety.com

60

CrossFit Medical Society™ is a healthcare community platform focused on empowering individuals to take control of their health through access to providers, biomarker labs, and community-based healthcare solutions. The website is professionally designed using Squarespace, offering clear navigation and membership services including a provider directory and CommunityCare crowdfunding. Technically, the site is well-implemented with HTTPS and HSTS enabled, but lacks explicit cookie consent and detailed security policies. The absence of WHOIS data for the domain raises some legitimacy concerns, though the site content and structure suggest a legitimate small healthcare-focused business. Overall, the site is safe, targeted at a general audience, and provides valuable healthcare resources.

B

Sælg billetter online som arrangør | Billetlugen.Light

billetlugen-light.dk

61

Billetlugen.Light is a Danish online ticket sales platform targeting event organizers who want to create their own online shops and sell tickets easily. The platform emphasizes user-friendliness and full control over ticket sales, leveraging the reach of Billetlugen's marketplace. Technically, the website is built on TYPO3 CMS and uses modern web technologies including Google Tag Manager and a consent management platform, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and consent mechanisms in place, but lacks some security headers and explicit privacy and terms pages. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessments. Overall, the site is professional and functional but would benefit from enhanced transparency and security best practices.

Mastercard Polska operates as a regional presence of the global Mastercard brand, providing payment solutions and services tailored to the Polish market. The website serves as an informational platform targeting consumers and businesses in Poland, showcasing Mastercard's products and digital payment technologies. The site demonstrates a consistent and professional brand image aligned with Mastercard's global identity. Technically, the website employs modern web technologies including custom web components and a digital experience platform framework, ensuring a responsive and user-friendly interface. Security posture is strong with HTTPS enforced, though there is room for improvement in implementing additional security headers and explicit privacy and cookie policies. Overall, the site is trustworthy and safe, with no indications of malicious content or vulnerabilities in the provided data.

S

Suomen Punainen Risti

punainenristi.fi

66

Suomen Punainen Risti is a leading humanitarian non-profit organization in Finland dedicated to disaster relief, first aid, volunteer coordination, and international humanitarian aid. The website clearly communicates its mission to assist people in crises both domestically and globally, encouraging public participation through volunteering, membership, and donations. It maintains a strong market position as the Finnish Red Cross with consistent branding and trust signals. Technically, the website is built on a modern stack including Episerver CMS, Microsoft Azure hosting, and uses advanced analytics tools like Google Tag Manager and Microsoft Application Insights. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and transparent in its operations.

Aramco is a globally recognized leader in the energy sector, specializing in integrated oil, gas, and chemicals production and supply. The company operates at an enterprise scale with a strong market position and a comprehensive portfolio of services that support global energy demands. Their website reflects a mature digital presence with professional branding, extensive content, and a focus on corporate values and sustainability. Technically, the site employs modern web technologies including React, Google Tag Manager, and multiple analytics and tracking tools, hosted likely on Akamai's infrastructure, ensuring fast performance and mobile optimization. Security-wise, Aramco demonstrates a strong posture with HTTPS enforcement, comprehensive security headers, and adherence to best practices, although the absence of a security.txt file suggests room for improvement in vulnerability disclosure transparency. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, supporting a positive risk profile for users and partners.

A

Austrian Federal Ministry for Innovation, Mobility, and Infrastructure

nachhaltigwirtschaften.at

64

The website nachhaltigwirtschaften.at is an official Austrian government platform dedicated to sustainable development, renewable energy, and environmental technologies. It serves as a communication and information hub for various research and technology programs managed by the Austrian Federal Ministry for Innovation, Mobility, and Infrastructure (BMIMI). The platform provides open access to project data, publications, events, and training materials, targeting researchers, policymakers, industry stakeholders, and the general public interested in sustainability. The site is well-branded, consistent, and professionally maintained, reflecting its government affiliation and mission. From a technical perspective, the website uses standard web technologies including HTML5, CSS3, JavaScript, and CKEditor for content management. It appears to be custom-built rather than using a common CMS. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security-wise, HTTPS is enforced, and forms are secured, but there is a lack of explicit security headers and no visible incident response or vulnerability disclosure information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the security posture is solid but could be improved by adding security headers, cookie consent, and incident response details. The domain registration is consistent with the Austrian government entity, supporting high legitimacy and trustworthiness. There are no signs of malicious activity or content safety concerns. The platform is a reliable and authoritative source for sustainable development information in Austria.

A

Aspen Institute Central Europe

aspeninstitutece.org

54

Aspen Institute Central Europe is a well-established non-profit organization founded in 2012, serving as a regional platform for policy innovation, leadership development, and inclusive dialogue primarily in the Czech Republic, Hungary, Poland, and Slovakia. The organization is affiliated with the global Aspen network, enhancing its credibility and reach. Their website reflects a professional and comprehensive digital presence, offering detailed information about programs, events, and publications aimed at fostering societal improvement and values-based leadership. Technically, the website is built on WordPress with modern plugins for SEO, multilingual support, and GDPR compliance, ensuring a robust and user-friendly experience. The site is mobile-optimized, fast-loading, and accessible, with clear navigation and rich content. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved and explicit security policies are absent. Overall, the website demonstrates a strong commitment to privacy and compliance, with comprehensive privacy and cookie policies. However, the absence of WHOIS data and direct contact emails or phone numbers slightly reduces transparency. No signs of blocking or WAF interference were detected, allowing full content accessibility and analysis.

R

Rohnson

rohnson.cz

57

Rohnson.cz is a Czech e-commerce retailer specializing in household appliances designed to simplify everyday life. The company positions itself as a direct importer offering reliable products at competitive prices, supported by fast delivery and expert customer service. The website is professionally designed, with clear navigation and a focus on user experience for Czech-speaking consumers. Technically, the site uses the Shoptet CMS platform, integrates modern marketing and analytics tools such as Google Analytics and Facebook SDK, and enforces HTTPS with appropriate security headers. Privacy compliance is addressed through a comprehensive privacy policy and cookie consent mechanism, reflecting GDPR awareness. However, the absence of WHOIS data due to privacy protection limits transparency about domain ownership. Security posture is solid but could be improved by publishing explicit security policies and incident response contacts. Overall, the site is trustworthy and well-positioned in its market segment.

E

Selg billetter på nett som en proff | EVENTIM.Light

eventim-light.no

64

EVENTIM.Light is a Norwegian online ticketing platform enabling event organizers to create their own online shops and sell tickets efficiently. The platform supports various event types including concerts, festivals, theater, sports, and nightlife. The website is built on TYPO3 CMS and integrates Google Tag Manager for analytics and a consent management platform for cookie compliance. While the site is professionally designed and mobile-optimized, it lacks explicit privacy and terms of service pages and does not provide direct contact information, which are areas for improvement. WHOIS data is not publicly available, indicating privacy protection which is common but reduces transparency. Overall, the site presents a moderate security posture with HTTPS enabled but missing some security headers and explicit policies.

P

Paul Bauder GmbH & Co. KG

bauderfoam.de

45

Paul Bauder GmbH & Co. KG operates a professional website for its BauderFOAM product line, specializing in polyurethane rigid foam insulation for technical applications. The company is a leading European manufacturer with a long history and a strong market position in manufacturing insulation materials. The website is well-structured, content-rich, and targets industrial and manufacturing sectors. Technically, the site uses TYPO3 CMS with JavaScript libraries including jQuery and Usercentrics for consent management, indicating a moderate level of digital maturity. Security posture is good with HTTPS and consent mechanisms, but lacks some advanced security headers and explicit policies. The absence of WHOIS data for the domain is a notable gap in domain legitimacy verification but does not detract from the professional presentation and contact transparency. Overall, the site presents a trustworthy business presence with room for technical and security improvements.

P

Paul Bauder GmbH & Co. KG

bauderfoam.com

46

Paul Bauder GmbH & Co. KG operates as a leading European manufacturer specializing in polyurethane rigid foam insulation products tailored for technical applications across multiple industries. The company boasts a long heritage of over 165 years, combining tradition with innovation to deliver high-quality insulation materials and customized solutions. Their market position is strong within Europe, supported by a professional digital presence and comprehensive product offerings. Technically, the website is built on TYPO3 CMS with standard JavaScript libraries and integrates a modern consent management platform (Usercentrics), reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and consent mechanisms in place, though some improvements are recommended such as updating legacy libraries and adding explicit security policies. Overall, the website is trustworthy and professional, but the lack of WHOIS data introduces some uncertainty regarding domain registration legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and modernizing technical components to strengthen trust and compliance.

P

Paul Bauder GmbH & Co. KG

bauder.nl

37

Paul Bauder GmbH & Co. KG operates a professional and comprehensive website focused on roofing systems, insulation, and green roofing solutions. The company holds a leading market position in Europe with over 160 years of experience and a broad product portfolio. The website targets construction professionals and building owners, providing detailed product information, downloads, and contact options. Technically, the site is built on TYPO3 CMS with standard JavaScript libraries and includes modern consent management for privacy compliance. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

P

Paul Bauder GmbH & Co. KG

bauder.it

44

Paul Bauder GmbH & Co. KG operates the website bauder.it as a localized Italian portal for its roofing and insulation product lines. The company is a European market leader specializing in flat roofs, pitched roofs, and green roofing systems, with a strong emphasis on sustainability and high-performance insulation materials. The website targets architects, roofers, retailers, and industrial builders, providing detailed product information, technical support, and training resources. Technically, the site is built on TYPO3 CMS, uses JavaScript and jQuery, and integrates Usercentrics for GDPR-compliant cookie consent and Google Tag Manager for analytics. The site is fully accessible, mobile-optimized, and professionally designed with clear navigation and consistent branding. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit security policies are not publicly disclosed. WHOIS data confirms the domain's legitimacy and consistency with the company's long-standing history. Overall, the website reflects a mature digital presence aligned with business goals and compliance requirements.

B

Bauder

bauder.co.uk

71

Bauder is a leading UK-based manufacturer and expert provider of commercial flat roofing systems, specializing in waterproofing, green roofs, and photovoltaic solutions. The company targets commercial clients seeking high-quality roofing services and solutions. The website demonstrates a mature digital presence with modern technologies such as React, Google Tag Manager, and Cookiebot for consent management. The site is well-structured, mobile-optimized, and professionally designed, reflecting Bauder's market position as a trusted roofing expert. From a security perspective, the website enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not fully confirmed, the use of reCAPTCHA and consent management indicates a proactive approach to security and privacy. No critical vulnerabilities or suspicious content were detected. However, the WHOIS lookup for the subdomain www.bauder.co.uk failed due to domain naming rules, suggesting the need to verify domain registration details for the main domain bauder.co.uk. Overall, Bauder's website presents a secure, compliant, and professional front that supports its business credibility. Strategic recommendations include enhancing transparency around security policies and incident response, confirming security header implementations, and ensuring WHOIS data accuracy for domain legitimacy verification.

P

Paul Bauder GmbH & Co. KG

bauder.cz

41

Paul Bauder GmbH & Co. KG operates the Czech regional website bauder.cz, providing comprehensive roofing solutions including flat, green, and pitched roofs. The company is a leading European manufacturer of roofing systems and insulation materials, targeting architects, planners, traders, processors, public sector, and private investors. The website offers detailed product information, technical documentation, and support resources, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes a consent management platform for GDPR compliance. Security posture is moderate with HTTPS usage and client-side validation but lacks visible security headers and explicit incident response information. WHOIS data is unavailable, which slightly reduces trustworthiness but the professional presentation and active social media presence support legitimacy. Overall, the site is well-structured, privacy-conscious, and business-focused, suitable for its target audience.

B

bito AG

referenzen-bito-ag.de

53

bito AG is a German company specializing in facade and interior renovation products including colors, lacquers, plasters, floor coverings, and coatings. The company has a strong market presence in Germany with many completed projects, targeting both B2B and B2C customers. The website is built on the Wix platform, leveraging Wix's proprietary technologies and hosting services. The technical infrastructure is standard for Wix sites, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and some cookie handling best practices, but lacks advanced security headers and visible security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Business credibility is moderate with consistent branding but missing explicit contact details and trust signals. Overall, the site is functional and professional but could improve in privacy and security transparency.

B

bito AG

nachhaltiges-bauen.info

56

The website www.nachhaltiges-bauen.info represents the company bito AG, focusing on sustainable building products and information. The site promotes environmentally friendly construction materials such as Cradle to Cradle certified paints and floor coverings, targeting a general audience interested in eco-conscious building practices. The business model appears to be informational and promotional, leveraging the Wix platform for website hosting and content management. Technically, the site uses Wix's Thunderbolt framework with modern JavaScript and polyfills, ensuring moderate performance and good mobile optimization. However, accessibility and SEO optimizations are basic and could be improved. Security-wise, the site uses HTTPS but lacks advanced security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, although the site content and branding appear professional and consistent. Overall, the site is functional and informative but requires enhancements in privacy compliance, security posture, and contact transparency to improve trust and regulatory adherence.

S

Sanoma Media Finland Oy

ruutu.fi

71

Ruutu.fi is a leading Finnish streaming platform operated by Sanoma Media Finland Oy, offering a wide range of entertainment including popular TV series, movies, sports, children's programming, and podcasts. The service integrates content from multiple partners such as SkyShowtime, Pluto TV, and Elisa Viihde, targeting Finnish-speaking audiences with a subscription and ad-supported business model. The website is professionally designed with excellent content quality and user experience, optimized for mobile and desktop platforms. Technically, it leverages modern web technologies including Next.js and React, with fast loading times and good SEO practices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly detailed. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy compliance. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score. Strategic recommendations include publishing explicit security policies, vulnerability disclosure mechanisms, and enhancing direct contact information for security matters.

E

Exekutorská komora České republiky

portaldrazeb.cz

49

The website portaldrazeb.cz is an official auction portal operated by the Exekutorská komora České republiky (Executor Chamber of the Czech Republic). It serves as the largest Czech platform for judicial auctions of execution-seized assets, targeting residents and stakeholders interested in such auctions. The portal provides comprehensive auction listings, filtering options, and support services, positioning itself as a key government-affiliated resource in the real estate and judicial auction sector. Technically, the site employs modern JavaScript frameworks, likely Vue.js with Element UI components, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site is secured with HTTPS and includes a cookie consent mechanism compliant with GDPR principles, although explicit privacy and terms of service pages are not found. The site is mobile-optimized with good navigation and user experience. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and bot protection via reCAPTCHA. However, it lacks visible security headers and a published security policy or vulnerability disclosure, which are recommended for enhanced security posture. The absence of WHOIS data reduces domain trust slightly but is mitigated by the official government affiliation and consistent branding. Overall, the website is a professional, trustworthy government portal with moderate technical maturity and a solid security baseline. Strategic improvements in privacy transparency, security headers, and incident response disclosures would further enhance its security and compliance stature.

S

Softmedia s.r.o.

softmedia.ai

56

Softmedia s.r.o. operates the website softmedia.ai, offering AI-driven business solutions including chatbots, AI audits, tailored AI implementations, and training workshops. The company targets businesses aiming to leverage AI for competitive advantage, emphasizing rapid deployment and practical applications. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content, reflecting a mature digital presence. Technically, the site uses modern technologies such as Tailwind CSS and Google Fonts, is hosted with Cloudflare DNS, and employs HTTPS, ensuring good performance and security. However, the absence of privacy and cookie policies indicates compliance gaps. Security posture is solid with no evident vulnerabilities, but could be improved by adding security headers and incident response contacts. The WHOIS data shows a suspicious future domain creation date inconsistent with the company's claimed 10+ years experience, which slightly reduces trustworthiness. Overall, the site is trustworthy, professional, and business-focused, but should address compliance and minor security enhancements.