Security Directory

A

AmerisourceBergen

amerisourcebergen.com

67

AmerisourceBergen is a leading global healthcare solutions company specializing in pharmaceutical sourcing and distribution. The company serves healthcare providers and pharmaceutical manufacturers with a comprehensive suite of supply chain services. Positioned as one of the largest players in the healthcare distribution sector, AmerisourceBergen emphasizes responsibility in creating healthier futures. The website reflects a mature enterprise with a clear focus on healthcare industry clients and partners. Technically, the website employs modern video APIs, Google Tag Manager for analytics, and OneTrust for cookie consent, indicating a well-maintained digital infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Performance is moderate, with no significant technical debt observed. From a security perspective, the site enforces HTTPS, implements key security headers, and provides detailed security and incident response policies. Certifications such as ISO 27001 and HIPAA compliance are highlighted, reinforcing trust. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data introduces some uncertainty regarding domain registration transparency. Overall, AmerisourceBergen's website presents a professional, secure, and compliant digital presence suitable for an enterprise in the healthcare sector. Strategic recommendations include implementing a security.txt file for vulnerability disclosures and enhancing accessibility compliance to further strengthen the security posture and user experience.

C

CV Market

cvmarket.lv

57

CV Market is a well-established Latvian online job portal serving both job seekers and employers. It offers a comprehensive platform for job listings, resume databases, and employer branding, positioning itself as a leading player in the Latvian employment market. The website is professionally designed with good content quality and clear navigation, targeting primarily the Latvian market. Technically, the site employs modern JavaScript libraries and integrates advanced marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Google Optimize, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and includes a Content Security Policy, although the policy is somewhat permissive and could be tightened to enhance protection. Privacy compliance is robust, featuring a cookie consent mechanism and detailed privacy policies aligned with GDPR requirements. Overall, the site demonstrates a strong business credibility and a good security posture, with room for improvement in security policy transparency and CSP configuration.

Z

Zoetis

zoetis.com

79

Zoetis is a leading global animal health company dedicated to advancing care for animals through a broad portfolio of medicines, vaccines, diagnostics, and innovative technologies. The company serves veterinarians, livestock producers, and pet owners worldwide, positioning itself as the largest player in the animal health sector. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site employs modern web technologies including Google Tag Manager for analytics, OneTrust for cookie consent, and slick carousel for UI elements. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured data. However, explicit security headers are not detected in the provided data, representing an area for improvement. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a concern but likely due to privacy protection or registry limitations; the website content and external references strongly support legitimacy. Overall, Zoetis demonstrates a professional, secure, and compliant online presence suitable for an enterprise in the healthcare sector. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen trust and security posture.

A

AUDITOIRE

auditoire.com

76

AUDITOIRE is a Paris-based creative innovation group specializing in delivering brand and corporate culture experiences. The company positions itself as a medium-sized agency focused on enhancing brand presence through innovative and creative solutions. The website reflects a professional and modern digital presence, leveraging WordPress CMS with advanced SEO and privacy compliance tools such as Yoast SEO and OneTrust Cookie Consent. The technical infrastructure is robust, with fast performance, mobile optimization, and good accessibility. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly available. The absence of WHOIS data for the domain raises some legitimacy concerns, but the overall professional presentation and active social media presence mitigate these risks. Strategic recommendations include publishing security and incident response policies and verifying domain registration details for enhanced trust.

I

Improbable

improbable.io

60

Improbable is a technology company specializing in metaverse infrastructure, venture building, and frontier ecosystems such as AI and web3. With over a decade of experience, they support founders and entrepreneurs in creating immersive virtual worlds and enterprise applications. Their market position is strong, supported by partnerships with major brands like Major League Baseball. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with good performance, mobile optimization, and SEO practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security headers and policies could be improved. The WHOIS data is privacy protected, which is typical for tech companies, and no suspicious patterns were found. Overall, the website reflects a professional and credible business with a clear focus on metaverse technology and venture development.

U

UAB Vertikali Medija

plius.lt

54

Sutarta.lt is a Lithuanian online classifieds platform operated by UAB Vertikali Medija, established in 2003. It offers a wide range of free classified ads across numerous categories including real estate, transport, jobs, and services. The platform targets Lithuanian consumers and businesses seeking to buy, sell, rent, or exchange goods and services. The business model is primarily based on free ad postings with optional paid features such as ad promotion. The site holds a strong market position as one of Lithuania's leading classifieds portals with a broad user base and extensive listings. Technically, the website employs a modern JavaScript-based stack with integrations for Google Tag Manager, Facebook Pixel, and OneTrust for cookie consent management. The site is mobile-optimized and uses HTTPS with good SSL configuration. Performance is moderate with good SEO and basic accessibility features. However, no CMS or hosting provider details were identified. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks advanced security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS data due to query limits limits domain trust assessment, though the site content and business information appear legitimate. Overall, Sutarta.lt presents a professional and functional classifieds platform with good privacy compliance and moderate security posture. Strategic improvements in security transparency and WHOIS data availability would enhance trust and compliance.

U

UAB „Diginet LTU“

diginet.lt

53

Diginet LTU is a Lithuanian digital media company established in 2003, operating several leading online portals in Lithuania including Autoplius.lt, Aruodas.lt, Skelbiu.lt, Cvbankas.lt, Paslaugos.lt, and Kainos.lt. These portals serve diverse audiences ranging from vehicle buyers, real estate seekers, job applicants, to consumers comparing prices. The company holds a strong market position in Lithuania's online classifieds and portal management sector, targeting both consumers and businesses. Technically, the website uses legacy JavaScript libraries such as jQuery 1.7.1 and integrates Google Analytics and OneTrust for cookie consent, indicating a moderate level of digital maturity. The site is accessible, mobile responsive at a basic level, and employs HTTPS for secure communication. Security posture is adequate but could be improved by adding modern security headers and updating legacy libraries. Privacy compliance is partially addressed through cookie consent but lacks a visible privacy policy or terms of service. Overall, the website presents a professional and trustworthy front but would benefit from enhanced security and compliance documentation.

Teva Lithuania operates as a regional branch of the global pharmaceutical company Teva Pharmaceutical Industries, providing a wide range of generic and specialty medicines. The website serves as a corporate and informational platform targeting patients, healthcare professionals, and caregivers in Lithuania. It emphasizes patient safety, social responsibility, and product quality. The digital infrastructure employs modern JavaScript libraries and analytics tools such as Microsoft Clarity and Application Insights, alongside a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. The domain WHOIS data is unavailable due to query limits, but the website's branding and external links strongly indicate legitimacy. Overall, the site is professional, well-structured, and compliant with privacy regulations, supporting Teva's market position in healthcare.

W

Wielton S.A.

wielton.com.pl

36

Wielton S.A. is a well-established Polish manufacturer specializing in the production of truck semi-trailers, construction trailers, agricultural trailers, and dump trucks. The company operates a broad product portfolio targeting transport, construction, and agricultural sectors, supported by a network of subsidiaries and partners across Europe. Their website reflects a mature digital presence with comprehensive product information and service offerings, including telematics and refurbishment services. Technically, the website is built on WordPress with modern integrations such as Google Maps API, Google Tag Manager, Microsoft Clarity, and Facebook Pixel, indicating a moderate to advanced digital maturity. The site is mobile-optimized and employs cookie consent mechanisms, although explicit privacy and terms of service pages were not detected in the provided content. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, but lacks DNSSEC and some recommended security headers, which could be improved. No critical vulnerabilities or blocking WAF mechanisms were detected, suggesting a stable security posture. Overall, the website demonstrates good business credibility and technical implementation, with room for enhanced privacy compliance and security hardening.

B

Biznio mašinų kompanija (BMK)

bmk.lt

57

Biznio mašinų kompanija (BMK) is a Lithuanian technology solutions provider specializing in audio and video equipment, printing and digitalization, educational technologies, and printing production automation. The company targets businesses and institutions requiring innovative technology integration, with a strong presence in the Baltic region and operations in 19 countries worldwide. Their website demonstrates a professional digital presence with good SEO and user experience, leveraging WordPress CMS and modern web technologies. Security posture is adequate with HTTPS, reCAPTCHA, and cookie consent mechanisms, but lacks explicit privacy policies and incident response information. The domain registration is consistent with the business location and registrar, supporting legitimacy. Overall, BMK presents as a credible and established business with room to improve privacy and security transparency.

L

LIDL Lietuva

lidl.lt

66

LIDL Lietuva operates as a large retail supermarket chain in Lithuania, offering weekly promotions and a variety of food and non-food products. The website is professionally designed with a modern frontend technology stack including Vue.js, and it provides comprehensive privacy and cookie consent mechanisms compliant with GDPR. However, the absence of WHOIS data and explicit contact or security incident information limits the ability to fully verify domain legitimacy and security posture. The website employs HTTPS and tracking tools such as Google Analytics and Kameleoon, indicating a mature digital infrastructure. Security best practices are partially implemented, but the lack of security headers and vulnerability disclosure information suggests room for improvement. Overall, the website presents a trustworthy and professional retail presence with moderate technical and security maturity.

S

Spreadshirt

spreadshirt.se

58

Spreadshirt.se is a localized e-commerce platform specializing in custom printed apparel, primarily t-shirts, targeting European consumers and designers. It operates as part of the larger Spread Group, positioning itself as Europe's largest t-shirt printing company. The website offers design tools, a marketplace, and promotional discounts to attract customers. Technically, the site uses modern JavaScript frameworks, including Lit web components, and integrates third-party services such as Adobe Launch for analytics and OneTrust for cookie consent, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security headers and a public security policy are absent. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the main domain is presumably registered and legitimate. Overall, the site demonstrates good content quality, user experience, and privacy compliance, with moderate tracking and marketing tools in use.

Bwin Portugal, operated by Gobet Entretenimento, S.A and part of the Entain group, is a prominent online sports betting and casino platform targeting the Portuguese market. The website offers a wide range of betting options including football, tennis, basketball, and live betting, alongside a comprehensive online casino with slots, roulette, and blackjack. The platform is well-positioned in the Portuguese online gambling sector with a strong brand presence and legal compliance. Technically, the site leverages modern web technologies such as Angular and Partytown for script optimization, ensuring a responsive and performant user experience across devices. The integration of advanced analytics and marketing tools is balanced with GDPR-compliant cookie consent mechanisms, reflecting a mature approach to privacy and user data management. Security posture is robust with HTTPS enforcement and no visible vulnerabilities, although explicit security policy and incident response information are not publicly disclosed. Overall, bwin.pt demonstrates a professional, secure, and user-friendly online gambling service with strong business credibility and digital maturity.

G

Gagen MacDonald

gagenmacdonald.com

64

Gagen MacDonald is a consulting firm specializing in human-focused transformation, emphasizing culture, communication, leadership, and design to improve employee experience. The company positions itself as a pioneer in this niche, targeting corporate clients seeking to transform their organizations through people-centric strategies. Their website reflects a professional and modern digital presence, leveraging HubSpot CMS and various marketing and analytics tools to engage visitors and track performance. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies with consent mechanisms, indicating a mature approach to privacy compliance. Security-wise, the website enforces HTTPS and includes standard security headers, but lacks a publicly available security policy or incident response information, which could be improved to enhance trust. The absence of WHOIS registration data is notable and may warrant further investigation, although the website's professional appearance and content suggest legitimate business operations. Overall, the website scores well in content quality, technical implementation, and security posture, with room for improvement in business credibility and transparency.

S

SUNSEEKER POOLE

sunseekerpoole.com

59

Sunseeker Poole is a prominent luxury motor yacht brand specializing in the design, engineering, and sales of high-end motor yachts. Positioned as a world leader in the luxury yacht market, the company targets affluent customers seeking premium marine vessels. The website reflects a professional and consistent brand image, leveraging modern web technologies such as Next.js and Chakra UI to deliver a responsive and visually appealing user experience. The digital infrastructure includes integrations with Google Tag Manager, OneTrust for cookie consent, and Google Maps API, indicating a mature digital presence. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit privacy and terms of service documentation are absent. Overall, the site demonstrates good technical and business credibility but would benefit from enhanced privacy compliance and clearer contact information to improve user trust and regulatory adherence.

S

SUNSEEKER TURKEY

sunseekerturkey.com

69

Sunseeker Turkey represents a luxury motor yacht brand targeting affluent customers interested in high-end marine vessels. The website showcases the brand's commitment to design and engineering excellence, positioning itself as a leading distributor in Turkey. The technical infrastructure is modern, leveraging React and Next.js frameworks, with integration of Google Tag Manager and OneTrust for analytics and cookie consent respectively. The site is mobile optimized and provides a professional user experience with clear navigation and branding consistency. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trustworthiness. Security posture is adequate with HTTPS enforced but lacks comprehensive security headers and explicit security policies. Privacy compliance is partial, with cookie consent present but no visible privacy or terms of service pages. Contact information is available primarily via phone and social media channels, but no verified company emails were found. Overall, the website is functional and professional but requires improvements in domain legitimacy verification, privacy policy transparency, and security best practices to enhance trust and compliance.

D

DNV

dnv.com

60

DNV is a global enterprise focused on safeguarding life, property, and the environment by providing assurance, certification, and advisory services across multiple sectors including maritime, energy, automotive, aerospace, food and beverage, and healthcare. The company positions itself as a trusted partner enabling organizations to advance safety and sustainability in their operations. The website reflects a mature digital presence with comprehensive sector-specific content and clear navigation tailored to diverse industries. Technically, the website employs modern web technologies including React components, Google Tag Manager, Microsoft Application Insights for telemetry, and OneTrust for cookie consent management, indicating a well-maintained and monitored infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, supporting a positive user experience. From a security perspective, the site enforces HTTPS, uses security headers, and integrates monitoring tools, demonstrating a strong security posture. However, the absence of explicit vulnerability disclosure and incident response contact details suggests areas for improvement in transparency and readiness. The WHOIS data is unavailable, likely due to privacy or registry restrictions, but the overall professionalism and trust indicators mitigate concerns about legitimacy. Overall, DNV's website presents a secure, professional, and comprehensive digital front that aligns with its enterprise stature and business objectives, though enhancements in security transparency and WHOIS data availability could further strengthen trust.

B

Baker Hughes

bakerhughesds.com

55

Baker Hughes is a leading energy technology company focused on advancing energy solutions that are safer, cleaner, and more efficient. The company offers a broad portfolio of services and technologies including energy transition, hydrogen technologies, carbon capture, emissions abatement, and AI-driven energy operations. Positioned as a large enterprise in the energy sector, Baker Hughes targets industry professionals, investors, and customers seeking innovative energy solutions. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the website is built on Drupal CMS and integrates modern technologies such as Google Tag Manager and OneTrust for privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained technical infrastructure. Security posture is strong with HTTPS enforced, security headers present, and no exposed sensitive data detected. However, explicit security policies and incident response information are not published, which could be improved. Overall, the security and privacy compliance are good, with clear privacy and cookie policies and consent mechanisms in place. The absence of WHOIS data is a notable gap but does not detract significantly from the site's legitimacy given the professional presentation and verified contact information. Strategic recommendations include publishing security policies, adding vulnerability disclosure information, and enhancing transparency around data protection roles. This analysis suggests Baker Hughes maintains a robust online presence aligned with its enterprise stature, though there are opportunities to enhance security transparency and compliance documentation.

Etihad Airways operates as a major international airline headquartered in the United Arab Emirates, offering premium passenger flight services globally. The website serves as a comprehensive platform for booking flights, managing reservations, and accessing loyalty programs. The digital infrastructure leverages modern web technologies including React and Adobe Experience Manager, supported by robust analytics and marketing tools such as Google Tag Manager and Facebook Pixel. The site demonstrates strong mobile optimization and accessibility features, ensuring a high-quality user experience. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policy and incident response information are not publicly disclosed. The absence of WHOIS data is noted but likely due to privacy or registry policies rather than suspicious activity. Overall, the website reflects a mature digital presence consistent with a large enterprise airline brand.

B

BME Bolsas y Mercados Españoles

bolsasymercados.es

65

BME Bolsas y Mercados Españoles is the leading operator of financial markets in Spain, providing a comprehensive range of services including stock exchange operations, securities clearing and settlement, market data, and financial education. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, the site is built on Adobe Experience Manager, uses modern tracking and consent management tools, and implements HTTPS with appropriate security headers, indicating a solid security posture. However, the absence of publicly accessible WHOIS data and lack of explicit security policies or incident response contacts suggest areas for improvement in transparency and security communication. Overall, the site is trustworthy and well-positioned in the finance sector, serving investors, issuers, and financial institutions effectively.

C

Comcast Spectacor

comcastspectacor.com

73

Comcast Spectacor is a well-established event management and entertainment company with strong ties to Comcast NBCUniversal. The company focuses on leveraging technology and creativity to deliver memorable events and community engagement, positioning itself as a regional leader in media and entertainment. The website reflects a professional and consistent brand identity, with good content quality and clear navigation. Technically, the site is built on WordPress with modern integrations such as Algolia search and Vimeo video embedding, hosted on AWS infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements can be made by adding explicit security headers and publishing a vulnerability disclosure policy. Overall, the site is compliant with privacy regulations and demonstrates a high level of business credibility.

T

team one

teamone-usa.com

68

Team One is a marketing and branding agency focused on helping brands build meaningful relationships with affluent customers. The company positions itself as a specialized agency targeting a niche market segment. The website is built on the Squarespace platform, leveraging modern web technologies and includes integrations with Google Analytics and Google Ads for marketing and tracking purposes. The presence of a cookie consent banner indicates some level of privacy compliance, although no explicit privacy policy or terms of service pages were found. Security posture is strong with HTTPS and HSTS enabled, but the absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the website is professional and functional but lacks some critical compliance and transparency elements.

A

Afinitas

hawkeyepedershaab.com

52

Afinitas is a manufacturing company specializing in equipment and services for producing concrete pipe and precast products. Established in 2014, the company targets B2B customers in the infrastructure and construction sectors. The website reflects a medium-sized enterprise with a consistent brand presence and a professional digital footprint. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern SEO and marketing tools such as Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and domain transfer protections in place, although DNSSEC is not enabled and some security headers are missing. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and stability.

E

Exponent

exponent.com

69

Exponent is a premier scientific and engineering consulting firm delivering multidisciplinary insights to address complex challenges across various industries including energy, transportation, manufacturing, and healthcare. Their website reflects a mature digital presence with comprehensive service descriptions and a professional design that targets businesses seeking expert consulting services. The technical infrastructure is built on Drupal CMS with integrations such as Google Tag Manager and OneTrust for privacy compliance, indicating a modern and privacy-aware digital maturity. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not published, representing an area for improvement. Overall, the website is trustworthy and professional, but the lack of WHOIS registration data introduces some uncertainty about domain legitimacy, warranting further verification.

Leo Burnett is a globally recognized advertising agency operating under the Publicis Groupe umbrella. The website currently serves as a placeholder with a 'Coming Soon' message, indicating ongoing development or rebranding. The company offers creative advertising and marketing services targeting businesses seeking brand communication solutions. The domain is well-established, dating back to 1994, and uses corporate DNS infrastructure consistent with its parent company, enhancing its legitimacy. Technically, the website employs modern web technologies including Next.js and React, with integration of Google Analytics for visitor tracking and OneTrust for cookie consent management. The site is mobile optimized and performs moderately well, though content is minimal at this stage. Privacy compliance is addressed through a comprehensive cookie notice and consent mechanism, reflecting adherence to GDPR requirements. Security posture is solid with HTTPS enforced and domain registration protections such as clientTransferProhibited status. However, the absence of security headers and incident response information suggests room for improvement. No vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a professional but basic digital presence, with strategic recommendations to enhance security policies, transparency, and content richness.

Sports World is a prominent Danish sports retailer offering a wide range of sportswear, footwear, and equipment from leading brands such as Nike, adidas, and Under Armour. The company operates both online and physical stores, targeting sports enthusiasts and families in Denmark. Their market position is strong within the regional sports retail sector, supported by a professional and user-friendly e-commerce platform. Technically, the website leverages modern frameworks like Next.js and integrates advanced analytics and marketing tools, ensuring fast performance and excellent mobile optimization. Security-wise, the site enforces HTTPS, employs security headers, and provides GDPR-compliant cookie consent mechanisms, though it lacks explicit published security policies or incident response information. Overall, the site demonstrates a mature digital presence with minor gaps in transparency and contact information.

A

Alstom

alstom.com

80

Alstom is a global leader in sustainable and smart mobility solutions, specializing in integrated rail transport systems and services. The company targets transportation stakeholders worldwide, offering a broad portfolio including rolling stock, rail infrastructure, and digital mobility innovations. Their market position is strong, supported by a legacy of innovation and commitment to environmental sustainability. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content aligned with their business objectives. Technically, the site uses Drupal CMS, modern web technologies, and integrates Google Tag Manager and OneTrust for analytics and privacy compliance. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms, though explicit vulnerability disclosure and incident response contacts are not publicly detailed. WHOIS data is missing, which slightly impacts trust but is likely due to privacy or registry policies. Overall, the site demonstrates high professionalism, good privacy compliance, and strong business credibility.

P

Peab

peabasfalt.dk

66

Peab Asfalt is a regional construction and infrastructure company specializing in asphalt production and laying services for roads, motorways, bridges, and specialized industrial applications. Operating across Nordic countries with a workforce of approximately 16,000, the company emphasizes local resource utilization and sustainability initiatives such as eco-asphalt and certified biogas. The website reflects a mature digital presence with comprehensive service descriptions and a clear focus on sustainability and social responsibility. Technically, the site employs modern web technologies including asynchronous loading of marketing and tracking scripts, cookie consent management via OneTrust, and uses HTTPS with good SSL configuration. Security posture is solid though could be improved with enhanced security headers and explicit incident response policies. The domain registration is consistent with the business profile, showing no suspicious patterns and appropriate domain age. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

A

Astellas Pharma Inc.

astellasgenetherapies.com

64

Astellas Gene Therapies, a division of Astellas Pharma Inc., is focused on developing innovative gene therapies targeting rare genetic diseases affecting the eye, central nervous system, and neuromuscular system. The company positions itself as a leader in gene therapy with a robust pipeline and a commitment to transforming patient lives through advanced genetic medicines. Their business model centers on pharmaceutical research, clinical development, and manufacturing of gene therapies, targeting patients, families, and medical professionals globally. Technically, the website is built on Drupal 10 CMS, leveraging modern JavaScript libraries and Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices. A comprehensive cookie consent mechanism is implemented via OneTrust, reflecting strong privacy compliance. However, the absence of explicit security headers and incomplete WHOIS data are notable gaps. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks visible security policies or incident response information. The missing WHOIS data raises concerns about domain registration legitimacy, although the website content and external links strongly indicate authenticity. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, content-rich, and privacy-conscious but would benefit from enhanced transparency in domain registration and explicit security headers. Strategic recommendations include verifying domain registration details, publishing security policies, and improving contact information clarity to strengthen trust and compliance.

A

Astellas Pharma Inc.

astellas.com

70

Astellas Pharma Inc. is a globally recognized pharmaceutical company headquartered in Tokyo, Japan, focused on improving health worldwide through innovative pharmaceutical products and advanced research in regenerative medicine and immuno-oncology. The website reflects a mature enterprise with comprehensive content targeting healthcare professionals, investors, and partners, emphasizing transparency and sustainability. Technically, the site is built on Drupal 10, leveraging modern web technologies and standard security practices, including HTTPS and cookie consent mechanisms. Security posture is strong with appropriate headers and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. The WHOIS data is notably missing, which is unusual for a company of this scale but likely due to registry or query limitations rather than malicious intent. Overall, the website demonstrates high professionalism, good privacy compliance, and solid business credibility.

M

MAPFRE

mapfre.es

76

MAPFRE is a well-established Spanish insurance company offering a broad range of insurance products including home, life, health, car, motorcycle insurance, and pension plans. The website targets individual consumers in Spain, providing an easy-to-use online platform for insurance quotes and purchases. The company holds a strong market position as a large enterprise with consistent branding and a professional online presence. Technically, the website is built on WordPress with the Divi theme and integrates modern analytics and cookie consent tools, ensuring compliance with GDPR and good SEO practices. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is trustworthy, well-designed, and compliant with privacy regulations, supporting MAPFRE's reputation as a leading insurer in Spain.

BME Growth is a specialized segment of Bolsas y Mercados Españoles (BME) focused on providing small and medium enterprises (SMEs) with access to capital markets. The platform facilitates financing, liquidity, and investor engagement for growth-oriented companies in Spain. The website demonstrates a professional and consistent branding aligned with BME's corporate identity, targeting investors and companies interested in growth market opportunities. Technically, the website employs modern web technologies including JavaScript, jQuery, Bootstrap, and integrates Google Tag Manager and Google Analytics for tracking and analytics. It also uses OneTrust for cookie consent management, indicating a mature approach to privacy compliance. The site is mobile responsive and offers a good user experience with clear navigation and relevant content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, no explicit security headers were detected in the provided data, suggesting room for improvement in security hardening. No vulnerabilities or exposed sensitive data were found in the HTML content. WHOIS data could not be retrieved due to query restrictions, limiting domain legitimacy assessment, but the website's content and affiliation with BME strongly indicate a legitimate and trustworthy entity. Overall, BME Growth's website is a well-structured, professional platform serving its niche market effectively, with good privacy compliance and a solid technical foundation. Enhancements in security headers and accessibility could further strengthen its posture.

S

Sports Tracker

sports-tracker.com

72

Sports Tracker is a well-established fitness and sports tracking application focused on running, cycling, and general fitness training. The website presents a professional and consistent brand image with a clear focus on sports enthusiasts. The technical infrastructure leverages AngularJS, Google Fonts, and Adobe Launch for analytics and tag management, hosted on AWS infrastructure, indicating a mature digital presence. Security posture is solid with HTTPS enforced and domain transfer protections in place, though some security headers and explicit policies are missing. Privacy compliance is partially addressed through a cookie consent mechanism but lacks visible privacy and terms of service documentation. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security best practices.

B

Billogram

billogram.com

69

Billogram is a technology company specializing in Invoice-to-Cash orchestration, providing a SaaS platform that streamlines invoicing, payment processing, and customer communication to improve cash flow and customer relationships. The company targets businesses with recurring revenue and positions itself as a modern, scalable solution in the financial automation space. The website demonstrates a high level of digital maturity with a modern tech stack including Next.js and React, hosted likely on Vercel, and integrates analytics and cookie consent tools to comply with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. The WHOIS data is missing or unavailable, which is unusual and reduces trustworthiness from a domain registration perspective. Overall, the website is professional, well-designed, and compliant with privacy standards, but the domain registration opacity warrants further verification.

L

Länsförsäkringar

lansforsakringar.se

58

Länsförsäkringar is a well-established Swedish financial services group offering comprehensive banking and insurance products primarily targeting private individuals, businesses, and agricultural customers in Sweden. The website analyzed is a regional portal for the Stockholm area, providing localized content and services. The company positions itself as a trusted regional financial institution with a strong customer focus. Technically, the website employs a modern technology stack including Episerver CMS, Google Tag Manager, and OneTrust for privacy compliance, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO basics and structured data usage. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some improvements such as adding explicit security headers and updating legacy libraries are recommended. The absence of WHOIS data for the subdomain is expected and does not detract from the overall legitimacy. Overall, the website reflects a professional and trustworthy financial services provider with good compliance and security practices.

Q

QBE Sverige

qbe.se

74

QBE Sverige is a branch of the global insurance company QBE Insurance Group, offering corporate insurance solutions across more than 180 countries. The website presents a professional and well-structured digital presence, targeting businesses seeking sector-specific insurance policies with flexible and tailored coverage. The company emphasizes its global reach, expertise, and customer-centric approach. Technically, the website leverages modern technologies including Google Tag Manager, OneTrust for cookie consent, and Akamai CDN for hosting, ensuring moderate to good performance and mobile optimization. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, though there is room for improvement in security headers and DNSSEC implementation. Overall, the site reflects a mature and credible business with good privacy compliance and user experience.

B

Blogthinkbig.com

blogthinkbig.com

42

Blogthinkbig.com is a professional innovation and technology blog operated under the Telefónica brand, targeting Spanish-speaking audiences interested in AI, sustainability, education, and responsible technology use. The website serves as a content publishing platform to disseminate knowledge and insights related to technological transformation and connectivity. Technically, the site is built on WordPress using the Astra theme and integrates modern SEO tools like Yoast SEO Premium and Google Tag Manager. It employs cookie consent mechanisms via OneTrust and Utiq, reflecting a commitment to privacy compliance, although no explicit privacy policy or terms of service were found in the provided content. Security posture is solid with HTTPS enabled and good practices observed, but DNSSEC is not enabled and additional security headers could enhance protection. Overall, the site is well-branded, professionally designed, and trustworthy, with a strong alignment between domain registration and business identity.

MetaRed is a large educational network focused on ICT collaboration among higher education institutions in Ibero-America. The website offers information about international courses, events, awards, and publications aimed at university CIOs, CISOs, and rectors. The technical infrastructure is based on Adobe Experience Manager CMS, uses modern JavaScript libraries like jQuery, and integrates Google Tag Manager for analytics. The site is mobile optimized and provides a cookie consent mechanism via OneTrust, indicating some privacy compliance efforts. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit security policies. No WHOIS registrant data is publicly available, suggesting privacy protection, which is reasonable for this type of organization. Overall, the website is professional and trustworthy but could improve transparency and security practices.

C

Campus Digital

mycampusdigital.com

68

Campus Digital is a technology platform offering a secure digital identity solution for universities and their students. The platform facilitates access to academic services, communications, and benefits through a mobile app, positioning itself as a trusted partner for educational institutions. The website demonstrates a professional and consistent brand presence, supported by testimonials and partnerships, notably with Santander. Technically, the site is built on a modern Angular framework, integrates Google Analytics and Tag Manager for tracking, and employs reCAPTCHA for form security. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is moderate, with room for improvement in security headers and incident response disclosures. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security practices.

B

Banco Santander, S.A.

santanderx.com

76

Santander X is a digital platform operated by Banco Santander, S.A., offering free courses and resources aimed at businesses, SMEs, startups, and entrepreneurial projects across multiple countries. The platform focuses on business growth, digital transformation, and internationalisation, providing training, awards, challenges, and community benefits. Technically, the website is built on Adobe Experience Manager with modern JavaScript libraries, Google Tag Manager for analytics, and OneTrust for cookie consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a public security policy are absent. The lack of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the website's branding and content strongly align with Banco Santander's official presence. Overall, the site is professional, user-friendly, and privacy compliant, but would benefit from enhanced transparency on security policies and incident response.

S

Santander Open Academy

santanderopenacademy.com

74

Santander Open Academy is an educational platform sponsored by Banco Santander, offering free e-learning courses, study grants, and mobility grants to individuals over 16 years old, regardless of their banking relationship with Santander. The platform targets a broad audience seeking skill development and leadership training. The website is professionally designed, mobile-optimized, and uses modern web technologies including Adobe Experience Manager CMS, Keycloak for authentication, and integrates analytics and consent management tools such as Google Tag Manager and OneTrust. Despite the lack of WHOIS data, the website's branding, structured data, and social media presence strongly support its legitimacy. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response information are not publicly available. Overall, the platform presents a trustworthy and professional digital presence aligned with Santander's educational initiatives.

N

Nissan Motor Corporation

nissanmotornews.com

65

The Global Nissan Newsroom website serves as the official media and corporate news platform for Nissan Motor Corporation, a leading global automotive manufacturer headquartered in Japan. The site provides comprehensive news releases, photos, videos, and corporate information targeting media professionals, investors, and automotive enthusiasts worldwide. It highlights Nissan's commitment to electrification, sustainability, and innovation in the automotive sector. The website is well-structured with clear navigation and professional branding consistent with Nissan's corporate identity. From a technical perspective, the site employs modern web technologies including Bootstrap 5, jQuery, and various analytics and tracking tools such as Google Analytics, Hotjar, and Facebook Pixel. It uses Amazon CloudFront CDN for hosting and performance optimization. The site is mobile-optimized and accessible, with a cookie consent mechanism implemented via OneTrust, indicating awareness of privacy regulations such as GDPR. Security posture is strong with HTTPS enforced, presence of security headers, and no visible vulnerabilities or exposed sensitive data. However, the absence of a publicly accessible privacy policy and terms of service pages, as well as lack of explicit contact emails or phone numbers for security or general inquiries, represent areas for improvement. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the overall domain and website are legitimate and trustworthy based on content and branding. Overall, the website demonstrates a mature digital presence with strong business credibility and technical implementation. Strategic enhancements in privacy transparency and contact information would further strengthen trust and compliance.

A

alpine

alpinecars.ch

72

Alpine Schweiz operates as the official regional website for the Alpine sports car brand in Switzerland, providing detailed information on their sports car models, motorsport activities including Formula 1 and WEC, and connected services for customers. The site targets automotive enthusiasts and potential buyers interested in premium sports cars and motorsport. The business is positioned as a premium automotive brand under the Renault Group umbrella, with a medium-sized market presence in Switzerland. Technically, the website leverages modern web technologies such as React, uses a CDN hosted by Renault Group, and implements cookie consent via OneTrust, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and Google site verification present, though explicit security headers and incident response policies are not evident. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service in the provided content. Overall, the site is professional, well-branded, and trustworthy, but could improve transparency around privacy and security policies.

A

Alpine España

alpinecars.es

69

Alpine España operates as the official Spanish website for the Alpine brand, specializing in sports vehicles and motorsport competition. The site provides detailed information on Alpine's electric and sports car models, services such as financing and vehicle personalization, and updates on racing events including F1 and WEC. The website is well-branded, consistent with the parent company Renault Group, and targets automotive enthusiasts and potential buyers in Spain. Technically, the site leverages modern web technologies including React, Google Analytics, and OneTrust for cookie consent, hosted primarily on Renault's CDN infrastructure. Performance and mobile optimization are good, with a moderate security posture evidenced by HTTPS enforcement and security headers. Privacy compliance is strong with clear policies and consent mechanisms. However, the site lacks explicit security policies and incident response contacts, and no vulnerability disclosure program is evident. Overall, the site is professional, trustworthy, and well-positioned in its market segment.

Alpine Cars Slovenija operates as an official regional dealer for the Alpine automotive brand in Slovenia, offering a range of Alpine car models, test drives, financial services, and after-sales support. The website is designed to showcase the brand's offerings and facilitate customer engagement primarily through contact forms and informational content. The business is relatively new, established in 2021, and targets automotive enthusiasts and potential buyers within Slovenia. The site leverages modern web technologies including Nuxt.js, Alpine.js, and jQuery, hosted on a CDN for performance optimization. Google Analytics and OneTrust are used for analytics and cookie consent management respectively. Security posture is moderate with HTTPS implied but lacking visible advanced security headers and published security policies. Privacy compliance is basic with a cookie consent banner but no dedicated privacy policy or terms of service pages found. Overall, the website is professional and consistent with the Alpine brand, though improvements in transparency and security documentation are recommended.

A

alpine

alpinecars.pt

70

Alpinecars.pt is the official Portuguese website for the Alpine brand, specializing in sports vehicles and motorsport competition engagement including Formula 1 and WEC. The site targets Portuguese-speaking automotive enthusiasts and potential customers, offering detailed information on vehicle models, connected services, financing, insurance, and brand experiences. It operates under the Renault Group umbrella, reflecting a medium-sized regional presence with consistent branding and good content quality. Technically, the website leverages modern web technologies including React, optimized image formats, and CDN hosting by Renault Group. It integrates Google Analytics and Tag Manager for user tracking and employs OneTrust for cookie consent management. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS with excellent SSL configuration and implements multiple security headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy policy, terms of service, and contact information for security or incident response reduces privacy compliance and user trust slightly. Overall, the website presents a professional and trustworthy digital presence with a strong security posture but would benefit from enhanced transparency regarding privacy and contact details to improve compliance and user confidence.

A

alpine

alpinecars.pl

69

Alpinecars.pl is the official Polish website for the Alpine brand, specializing in sports cars and automotive racing news including Formula 1 and esports. The site serves as a regional portal providing detailed product information, news updates, and services related to Alpine vehicles, targeting Polish-speaking automotive enthusiasts and potential buyers. The website is well-branded and leverages Renault Group's infrastructure, indicating a strong corporate backing. Technically, the site is built using modern web technologies such as React and employs best practices including responsive design, optimized images, and GDPR-compliant cookie consent mechanisms. The use of Google Analytics and Tag Manager indicates moderate user tracking for marketing and performance analysis. Hosting and content delivery are managed via Renault's CDN, ensuring fast load times and reliability. From a security perspective, the website enforces HTTPS and uses a reputable cookie consent platform, but explicit security headers are not clearly visible in the provided data. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of visible contact information for security or incident response and the lack of WHOIS transparency slightly reduce the overall trust score. Overall, alpinecars.pl presents a professional and trustworthy digital presence for the Alpine brand in Poland, with good technical and security posture. Strategic improvements could include publishing explicit security policies and incident response contacts to enhance transparency and trust.

A

alpine

alpinecars.lu

68

Alpine Luxembourg operates as the official regional website for Alpine sports cars, a brand under the Renault Group, targeting sports car enthusiasts and motorsport fans in Luxembourg. The site provides detailed information on Alpine vehicle models, connected services, financing options, and motorsport activities including F1 and WEC. The website demonstrates a professional digital presence with consistent branding and a modern React-based technical infrastructure, leveraging Renault Group's CDN and assets for performance and reliability. Security posture is generally good with HTTPS enforced and cookie consent implemented; however, the absence of explicit privacy and terms of service pages, lack of security headers, and missing WHOIS data represent areas for improvement. Overall, the site is trustworthy and well-positioned in its niche but would benefit from enhanced transparency and security best practices.

A

alpine

alpine-cars.co.uk

73

Alpine-cars.co.uk is the official UK website for the Alpine brand, a sports car manufacturer and motorsport participant under the Renault Group umbrella. The site offers comprehensive information on Alpine's sports car models, connected services, financial offers, and motorsport activities including Formula 1, WEC, and esports. The website targets sports car enthusiasts and potential buyers in the UK market, positioning itself as a premium automotive brand with a strong motorsport heritage. Technically, the website is built using modern web technologies including React, and leverages Renault Group's CDN infrastructure for hosting. It employs Google Analytics and Tag Manager for analytics and tracking, and uses OneTrust for cookie consent management. The site is mobile-optimized, fast-loading, and SEO-friendly, with good accessibility features. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security headers and published security policies or incident response contacts. The WHOIS data for the domain is unavailable due to a domain registration failure, which raises some concerns about domain legitimacy despite the professional and branded content. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in privacy, security policies, and domain registration legitimacy to enhance trust and compliance.

A

alpine

alpinecars.fr

67

Alpinecars.fr is the official French website for Alpine, a renowned sports car manufacturer under the Renault Group umbrella. The site provides comprehensive information about Alpine's range of sports vehicles, including electric models, and offers services such as vehicle configuration and test drive booking. The website targets automotive enthusiasts and potential customers in France, positioning itself as a premium brand with a strong motorsport heritage. Technically, the site leverages modern web technologies including React and employs a robust content delivery network associated with Renault, ensuring fast performance and excellent mobile optimization. Security-wise, the site enforces HTTPS, implements standard security headers, and uses a GDPR-compliant cookie consent mechanism, reflecting a mature security posture. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, trustworthy, and well-aligned with Alpine's brand identity.