Security Directory

E

Effical Ingénierie

effical.fr

49

Effical Ingénierie is a French company specializing in climate engineering, focusing on high-efficiency heating systems, thermal exchange substations, and turnkey thermal modules for sustainable development. Their website presents a professional and content-rich platform targeting businesses and organizations in the energy sector requiring advanced heating and thermal solutions. The company emphasizes energy efficiency and sustainable development in its offerings. Technically, the website is built on the SPIP CMS platform and uses common web technologies such as jQuery and Google Analytics. The site is accessible, with a moderate performance profile and basic mobile optimization. However, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. From a security perspective, the site uses HTTPS, which is positive, but the absence of WHOIS data and security headers reduces trustworthiness. No direct contact emails or phone numbers are visible, only a contact form, which may limit direct communication. The use of Google Analytics indicates moderate user tracking without clear privacy disclosures. Overall, the website is functional and professional but would benefit from improved transparency in domain registration, enhanced security practices, and stronger privacy compliance measures to increase trust and reduce risk.

W

Wannitube

wannitube.fr

53

Wannitube is a French company specializing in turnkey solutions for pre-insulated piping networks and thermal exchange substations, positioning itself as a market leader in France with over 40 years of expertise. The website provides detailed information about their services, including engineering, subcontractor management, site coordination, and civil engineering, targeting businesses in the energy and urban heating/cooling sectors. The digital infrastructure is based on the SPIP CMS platform, utilizing jQuery and Google Analytics for analytics and interactivity. The website is accessible, uses HTTPS, and has a professional design, though mobile optimization and accessibility are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. Privacy compliance is partial, with a basic privacy policy present but no cookie consent mechanism or GDPR explicit statements. Contact information is limited to contact forms without direct emails or phone numbers, which may impact user trust and compliance. WHOIS data is unavailable, limiting domain legitimacy verification, though the website content and structure suggest a legitimate business presence.

I

INPAL Energie

inpal.com

58

INPAL Energie is a French company specializing in the manufacturing and engineering of pre-insulated steel pipes and accessories for district heating and cooling networks, as well as industrial applications. The company positions itself as a market leader in France with over 30 years of expertise and a significant installed base of piping. Their website reflects a professional business presence with detailed product and service information targeting urban heating and cooling network operators and industrial clients. Technically, the website is built on the SPIP CMS platform, utilizing jQuery and Google Analytics for tracking. The site is moderately optimized for performance and mobile use, with basic accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks important security headers and visible privacy or cookie policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, despite the professional appearance of the website. Contact information is limited to a contact form without direct emails or phone numbers, and no social media presence is evident. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance, and clearer business contact details.

I

ISOPLUS

isoplus.nl

60

ISOPLUS is a prominent European manufacturer specializing in pre-insulated piping systems that support the energy transition across multiple sectors including district heating, cooling, bioenergy, solar heating, industry, and carbon capture and storage (CCS). The company operates in over 30 countries with a large workforce and is part of the Viessmann Generations Group, indicating a strong market position and backing. The website is professionally designed using TYPO3 CMS, featuring comprehensive product portfolios, service offerings, and multilingual support, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and implements GDPR-compliant cookie consent mechanisms, though it lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Overall, ISOPLUS presents a credible and trustworthy business front with room for improvement in security transparency and incident readiness.

N

NuernbergMesse India Pvt Ltd

indiamattresstechexpo.com

62

IndiaMattresstech & Upholstery Supplies Expo is a specialized B2B trade fair platform focused on the mattress and upholstery manufacturing industry in India. It serves as a key event for manufacturers, suppliers, and buyers to network, showcase products, and explore market opportunities, with expansion into East India via the IME Pavilion at KOLKATAWOOD. The website is professionally designed using ASP.NET WebForms and modern frontend libraries, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and domain locking, though improvements are recommended in cookie consent and security headers. Privacy policy is present but basic, and no terms of service or incident response policies are found. Overall, the site reflects a credible and established business with strong industry presence and trust indicators.

The website w-a-d.in represents the Wood+ In Architecture And Design (WAD) event platform, organized by NürnbergMesse India Pvt Ltd. It serves as a specialized event focusing on the use of wood and mass timber in architecture and design, co-located with the flagship INDIAWOOD event. The platform targets professionals such as architects, engineers, government officials, and manufacturers, providing sessions, networking, and industry insights. The website is professionally designed with consistent branding and clear navigation, supporting a medium-sized event organizer in the manufacturing and real estate sectors in India. Technically, the site is built on ASP.NET WebForms with modern front-end libraries like Bootstrap and OwlCarousel. It uses HTTPS and Google Analytics for tracking but lacks advanced security headers and privacy compliance mechanisms such as cookie consent and privacy policies. The site is mobile optimized and performs moderately well but could improve accessibility and SEO features. From a security perspective, the site enforces HTTPS and does not expose sensitive data, but the absence of security headers and privacy policies indicates room for improvement. No vulnerabilities or malicious content were detected. WHOIS data confirms the legitimacy of the domain and its alignment with the business entity. Overall, the website is a credible and professional event platform with good business credibility but requires enhancements in privacy compliance and security best practices to strengthen trust and regulatory adherence.

N

NürnbergMesse India

nm-india.com

57

NürnbergMesse India is a medium-sized event organization company specializing in trade fairs and exhibitions across various sectors including manufacturing, retail, and media within India. It operates as a subsidiary of the global NürnbergMesse Group, leveraging international expertise and local market knowledge to facilitate business growth and market entry. The website is professionally designed with a clear event portfolio and integrates social media channels effectively. Technically, the site is built on ASP.NET WebForms with modern JavaScript libraries and is hosted with a reputable registrar and DNS provider. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements in security headers and explicit policies are recommended. Overall, the site is accessible, trustworthy, and aligns well with the business's market positioning.

R

Relation Client Mag

relationclientmag.fr

56

Relation Client Mag is a French media website specializing in customer experience and client relations, offering news, webinars, white papers, and practical guides. The site targets professionals interested in customer service and experience management. Technically, the website employs modern tracking and advertising technologies including Google Tag Manager, Google Analytics, and a consent management platform (Didomi), ensuring GDPR compliance and user consent for cookies. The site is well-structured with good SEO and mobile optimization, although accessibility features are basic. Security posture is solid with HTTPS and privacy mechanisms, but could be improved with additional security headers. The absence of WHOIS data limits domain trust assessment, suggesting the domain may be new or privacy protected, which warrants monitoring. Overall, the website presents a professional and trustworthy media presence in its niche.

S

Skills Finland ry

skillsfinland.fi

53

Skills Finland ry is a Finnish non-profit organization dedicated to promoting the quality and attractiveness of vocational education through competitions and training activities. They organize the national vocational skills competition 'Taitaja' and send Finnish teams to international competitions such as EuroSkills and WorldSkills. The organization targets students, educators, and vocational education stakeholders, positioning itself as a national leader in vocational skills development. The website is professionally designed, content-rich, and provides clear information about the organization's mission and activities. Technically, the website is built on the concrete5 CMS platform, utilizing modern web technologies including Bootstrap and jQuery. It incorporates Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and accessible, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, indicating awareness of privacy regulations such as GDPR. However, it lacks explicit security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were found. The WHOIS data confirms the legitimacy of the domain registration, matching the organization's identity and location. Overall, the website demonstrates a solid security posture and good privacy compliance, with room for improvement in security policy transparency and technical security headers. The business credibility is high, supported by clear contact information, social media presence, and partnerships with international vocational skills organizations.

L

Loxam Formation

loxamformation.com

52

Loxam Formation is a professional training organization specializing in safety certifications such as CACES®, electrical habilitation, and work at height training. It operates under the umbrella of Groupe Loxam, a recognized leader in equipment rental and related services. The website is well-structured, professionally designed, and targets professionals and companies seeking compliance and safety training in France. Technically, the site is built on WordPress with modern plugins and SEO optimizations, including Google Analytics and reCAPTCHA for security. The security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and no explicit incident response or vulnerability disclosure policies are found. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy, but the strong brand presence and social media links mitigate this risk somewhat. Overall, the site is trustworthy and professional but would benefit from improved transparency in domain registration and enhanced security policies.

SKONTO MEDIJU GRUPA operates as a leading Latvian commercial radio group, managing multiple radio stations including RADIO SKONTO, RADIO TEV, LOUNGE FM, SKONTO PLUS, and RADIO 9. The group focuses on delivering diverse music content, news, and entertainment to a broad Latvian audience, leveraging both traditional radio and digital streaming platforms. Their market position is strong within Latvia's media sector, supported by a professional website with integrated streaming, podcasts, and interactive contests. Technically, the website employs modern web technologies and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and GDPR adherence. Overall, the business demonstrates credible digital maturity and a trustworthy online presence.

A

ART SOFT

artsoft.lv

45

ART SOFT is a Latvian small technology company specializing in software and IT services. The website presents basic business information including contact details, company registration, and bank information, targeting business clients in need of IT solutions. The technical infrastructure includes modern web technologies such as Google Analytics, reCAPTCHA, and Google Maps API, although the map integration is currently non-functional due to API key or billing misconfiguration. Security measures include the use of reCAPTCHA on the contact form, but no advanced security headers or policies are evident. The absence of privacy and cookie policies indicates limited privacy compliance. Overall, the website is functional but basic in design and content quality, with moderate technical maturity and business credibility.

D

Digital Storyteller

digitalstoryteller.io

59

Digital Storyteller is a specialized digital marketing agency focused on providing outsourced marketing services to B2B financial services companies. Founded in 2018 and based in the US, the company offers a comprehensive suite of services including organic digital marketing, content creation, SEO, social media management, CRM management, and website design. Their market position is that of a niche provider with compliance awareness and a strong emphasis on measurable results and transparent pricing. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress using the Enfold theme and integrates modern marketing and analytics tools such as Google Analytics, HubSpot, Facebook Pixel, and Metricool. The site is mobile optimized and uses structured data for SEO enhancement. Hosting is likely provided by GoDaddy, consistent with the domain registrar information. Performance is moderate with good SEO practices but could benefit from enhanced accessibility features. From a security perspective, the site uses HTTPS and implements reCAPTCHA and cookie consent mechanisms, indicating a baseline security posture. However, the absence of security headers and explicit security policies or incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. The domain registration is privacy protected but consistent with the business type and location, supporting legitimacy. Overall, the website presents a low risk profile with good business credibility and technical implementation. Strategic recommendations include publishing privacy and security policies, enabling DNSSEC, adding security headers, and improving accessibility and compliance disclosures to enhance trust and security posture.

P

Pulse Marketplace Limited

pulsemarket.com

70

Pulse Marketplace Limited operates a sophisticated sustainability platform focused on ESG data management and compliance consultancy. The company targets businesses of all sizes, providing expert-led services such as ESG Discovery, CSRD Readiness, and B-Corp certification preparation. Their platform leverages AI to streamline compliance workflows, positioning them as a modern, tech-enabled sustainability partner. Technically, the website is built on WordPress with modern frameworks and integrates Google Analytics, Tag Manager, and reCAPTCHA for security and analytics. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is strong with HTTPS and privacy compliance mechanisms, though some security headers and incident response details could be improved. Overall, the domain registration and website content are consistent and legitimate, supporting a high trust level.

L

Latvijas Interneta asociācija

lia.lv

46

Latvijas Interneta asociācija (LIA) is a Latvian non-profit organization that unites internet sector companies in Latvia. The association focuses on representing the interests of internet businesses, promoting safer internet initiatives, and supporting digital competence development through projects and seminars. The website content is primarily in Latvian and targets local internet companies and stakeholders. The association's market position is that of a national industry body with recognized members including major telecommunications and internet service providers in Latvia. Technically, the website uses a custom or proprietary CMS with modern frontend technologies such as Google Fonts, Slick Slider, and integrates Google Analytics and AddThis for tracking and marketing. The site is mobile optimized with good navigation and content quality. However, no explicit CMS or hosting provider information is available. Performance is moderate with room for improvement in accessibility features. From a security perspective, HTTPS is implied but no explicit security headers were detected in the provided data. The site includes a cookie consent banner and privacy policy indicating GDPR compliance awareness. There is no visible security policy, incident response contact, or vulnerability disclosure information. No WHOIS data was available due to query limits, limiting domain legitimacy verification. Overall, the security posture is moderate but could be improved with better header implementation and transparency. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, adding vulnerability disclosure mechanisms, and enhancing accessibility. The business credibility is supported by clear contact information, member logos, and social media presence. The website is professional and trustworthy for its intended audience.

S

Skrīveru Saldumi

skriveru.ee

29

Skrīveru Saldumi is a confectionery company based in Estonia, specializing in marzipan and chocolate products. The company operates an e-commerce platform and offers creative workshops, emphasizing traditional recipes and high-quality ingredients. Their market position is that of a small but established retail brand in the Baltic confectionery sector. The website is professionally designed with good navigation and mobile optimization, powered by the schedulebull.com CMS platform. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Swiper.js for interactive elements. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks visible security headers and a comprehensive privacy policy. Analytics are implemented via Google Analytics and Google Tag Manager, indicating moderate user tracking. Overall, the site is functional and trustworthy but would benefit from enhanced privacy and security disclosures.

“

“Skrīveru Saldumi” Ltd.

skriveru.com

54

“Skrīveru Saldumi” Ltd. operates a confectionery manufacturing and retail business specializing in traditional Latvian sweets and premium chocolates, including the well-known “Skrīveru Gotiņa” candies and the “Aspasia” brand marzipan products. The company targets consumers seeking high-quality handmade sweets and also offers corporate gifting solutions. Their website supports e-commerce with an online shop and creative workshop offerings, positioning them as a niche player in the sweets retail sector in Latvia. Technically, the website is built on a schedulebull.com CMS platform, using modern web technologies such as Bootstrap and Swiper.js, and integrates Google Analytics and Tag Manager for tracking, with a cookie consent mechanism in place. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and some recommended security headers. Privacy compliance is basic, with no visible privacy policy or terms of service, though cookie consent is implemented. Overall, the site is accessible, professionally designed, and functional, but could improve transparency and security practices.

L

lab9.pro SIA

lab9.pro

44

lab9.pro SIA is a Latvia-based small technology company specializing in graphic and interactive design, branding, and digital project development for web, mobile, and social media platforms. Established since 1997, the company has a strong portfolio with over 300 clients worldwide, including notable brands such as ŠKODA, Honda, and Kaspersky. The website reflects a professional service provider with a clear focus on creative and technical digital solutions. Technically, the website is built on WordPress 4.6 and uses common libraries such as jQuery and Swipebox. It integrates Google Analytics and Facebook Pixel for tracking and marketing purposes. Hosting appears to be supported by Amazon AWS DNS infrastructure. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features and modern security headers. From a security perspective, the website uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and security headers, which are recommended for enhanced protection. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related privacy regulations. No incident response or security policy information is published, limiting transparency in security governance. Overall, the website is functional and professional but would benefit from improved privacy compliance, updated platform versions, and enhanced security measures to reduce risk and increase trustworthiness.

S

Swaper

swaper.com

72

Swaper operates as a loan marketplace platform specializing in unsecured consumer loans, offering investors the opportunity to earn up to 16% annually. The platform targets investors interested in peer-to-peer lending and positions itself as a transparent and easy-to-use service within the finance sector. The website content and branding are consistent and professional, supporting a medium-sized business with a mature domain age dating back to 1997. Technically, the website is built on modern web technologies including React and Next.js, hosted likely behind Cloudflare DNS services. It integrates multiple third-party analytics and marketing tools such as Google Analytics, Hotjar, and Zendesk, and employs Cookiebot for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS with strong security headers and does not expose sensitive data in the HTML content. However, DNSSEC is not enabled, and there is no published security policy or incident response contact information, which are areas for improvement. The WHOIS data indicates a legitimate and consistent domain registration with no privacy protection, appropriate for the business type. Overall, Swaper presents a solid digital presence with good security and privacy compliance, though it could enhance transparency around security policies and incident response. The risk profile is low, with recommendations focusing on DNS security enhancements and formalizing security governance documentation.

T

Ziemas riepas, vasaras riepas, TavasRiepas.lv

tavasriepas.lv

42

TavasRiepas.lv is an e-commerce and service platform specializing in the sale and servicing of tires and wheels, primarily targeting vehicle owners in the Baltic region. The website offers a comprehensive catalog of tires and wheels, including detailed search and filtering options, and promotes services such as tire replacement and delivery across the Baltics. The business positions itself as a trusted partner with guarantees and customer-friendly policies like a 14-day return period. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and various UI enhancement libraries. The site is well-structured with good SEO metadata and mobile optimization, providing a positive user experience. However, there is no detected CMS or hosting provider information, and performance is moderate. From a security perspective, the site uses HTTPS and includes Google-managed analytics with consent set to denied by default, indicating some privacy awareness. However, it lacks visible security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. The absence of WHOIS data due to query limits restricts the ability to fully assess domain legitimacy and registration consistency. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and transparent contact and incident response information to improve trust and regulatory adherence.

É

Élection du Service Client de l'Année

escda.fr

53

Élection du Service Client de l'Année is a French organization that independently evaluates and awards companies and public services for excellence in customer service. Established in 2013, it operates a recognized label and organizes annual events to promote quality in customer relations. The website serves as an information portal for candidates, consumers, and partners, offering news, laureate listings, and international links. Technically, the site uses a modern stack including jQuery, Bootstrap, and Google Analytics, hosted by OVH, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and reCAPTCHA, though lacking advanced security headers and explicit incident response policies. Privacy compliance is basic but includes cookie consent and a privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

E

European Technology and Innovation Platform on Renewable Heating and Cooling

rhc-platform.org

52

The European Technology and Innovation Platform on Renewable Heating and Cooling (RHC) is a specialized platform that unites stakeholders from biomass, geothermal, solar thermal, and heat pump sectors to promote renewable energy technologies for heating and cooling. The platform serves as a collaborative hub for experts, investors, and policymakers, offering strategic guidance, policy support, and project acceleration services. The website reflects a medium-sized, well-branded organization with a clear focus on the energy sector in Europe, founded around 2019. Technically, the website is built on WordPress with modern JavaScript frameworks such as React and uses Yoast SEO for optimization. It integrates Google Analytics for visitor tracking and employs HTTPS with good SSL configuration. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. The technical stack is modern but could benefit from enhanced security headers and more comprehensive privacy compliance. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX requests, indicating some security best practices. However, it lacks explicit security headers and does not provide clear privacy or cookie policies, which are critical for GDPR compliance. The absence of WHOIS registrant data reduces domain trustworthiness, though the website content and structured data suggest legitimacy. Overall, the site is functional, professional, and relevant to its sector but should improve privacy disclosures, security headers, and WHOIS transparency to enhance trust and compliance. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, publishing incident response contacts, and regularly auditing third-party scripts.

ETIP-Geothermal is a European stakeholder platform endorsed by the European Commission to accelerate geothermal technology development across Europe. It serves as a collaborative forum for industry, academia, and research centers to reduce costs and promote innovation in geothermal energy. The website is built on WordPress with modern technologies such as Bootstrap and jQuery, and it integrates Google Analytics and Tag Manager for user tracking with appropriate cookie consent mechanisms. The site is well-structured, professionally designed, and provides comprehensive content including events, news, and working group information. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies could be improved. Privacy compliance is strong with clear policies and consent banners. Overall, the site reflects a credible and trustworthy organization with active community engagement and EU funding support.

S

Synergy BV

enlit.world

66

Enlit World is a professional media and community platform focused on the energy transition sector, operated by Synergy BV, a company registered in the Netherlands. The platform offers a wide range of services including news, industry reports, directories, podcasts, and events that serve energy professionals and stakeholders globally. The website is well-structured, with consistent branding and a clear focus on energy and transport sectors. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience across devices. Security posture is solid with HTTPS and secure forms, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness.

L

Latvijas Bankas Naudas skola

naudasskola.lv

58

Latvijas Bankas Naudas skola is an official educational website operated by Latvijas Banka, aimed at improving financial literacy among Latvian citizens, including students and teachers. The platform offers a wide range of resources such as budgeting tools, savings and investment information, insurance, credit guidance, fraud awareness, games, podcasts, videos, and infographics. The website is well-branded, professionally designed, and provides comprehensive content in the Latvian language. Technically, it is built on Drupal 10 and integrates modern analytics and user experience tools like Google Analytics, Microsoft Clarity, Hotjar, and ReadSpeaker, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs security headers, and uses cookie consent mechanisms, reflecting good security hygiene. However, the absence of explicit contact information and terms of service pages, along with unavailable WHOIS data due to query limits, slightly reduce the overall trust score. Overall, the site presents a low-risk profile with strong educational and governmental backing.

D

Dukascopy Bank

dukascoin.com

66

Dukascoin.com is the official website for Dukascoin (DUK+), a cryptocurrency project issued by Dukascopy Bank, a reputable Swiss financial institution. The site promotes the cryptocurrency with features such as free initial coins, staking rewards, and integrated banking services including multi-currency accounts and crypto lending. The business model leverages the trust and regulatory compliance of a Swiss bank to position Dukascoin as a credible crypto asset in the finance sector. Technically, the website uses standard web technologies including jQuery and Google Analytics, hosted on AWS infrastructure, with a moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and domain locked with multiple prohibitions, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and security policies.

D

Domains By Proxy, LLC (registrant proxy)

911p2p.io

44

911 Crypto P2P operates as a peer-to-peer cryptocurrency exchange platform specializing in fiat settlement for crypto transactions. The website targets cryptocurrency traders seeking direct exchange services with fiat currency integration. Positioned as a niche player in the crypto finance sector, it leverages partnerships with related financial and crypto services such as Dukas.io and Dukascoin. The platform was established in 2021 and maintains a modern, mobile-optimized web presence with consistent branding and moderate trust indicators.

D

Dukascopy Bank

dukas.io

64

Dukascopy Bank operates a specialized crypto services platform offering clients the ability to buy, sell, store, and trade cryptocurrencies, including their proprietary Dukascoin. The bank leverages its Swiss regulatory status and FINMA authorization to provide fiduciary custody and blockchain operations, positioning itself as a pioneer in regulated crypto banking. The website reflects a mature digital infrastructure with integration of Google Tag Manager and AWS hosting, delivering a professional and mobile-optimized user experience. Security posture is solid with HTTPS and domain protections, though improvements such as DNSSEC and explicit security policies are recommended. Privacy compliance is currently weak due to absence of visible privacy and cookie policies. Overall, the site is trustworthy and well-branded but would benefit from enhanced transparency and security disclosures.

D

Dukascopy Bank SA

dukascopy.bank

72

Dukascopy Bank SA is a Swiss financial institution offering a broad range of banking services including multi-currency accounts, private and corporate banking, investment options, and payment card solutions. The bank emphasizes Swiss precision and innovation, providing a mobile app for seamless banking access. The website reflects a mature digital presence with professional design and comprehensive content targeting individuals and businesses seeking Swiss banking services. Technically, the site employs modern JavaScript libraries, analytics tools, and security best practices including HTTPS and security headers. However, public WHOIS data is unavailable due to .bank domain privacy policies, which is typical for regulated banking domains. The security posture is strong with no evident vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

N

NJ TRANSIT

njtransitresilienceprogram.com

48

The NJ TRANSIT Resilience Program website serves as an informational platform dedicated to communicating the agency's efforts to strengthen and fortify transit infrastructure against extreme weather events and future transportation demands. The site targets NJ TRANSIT customers, stakeholders, and government entities, providing project overviews, environmental reviews, and public engagement opportunities. The business operates within the public transportation sector, funded primarily through federal grants, positioning itself as a key regional transit authority focused on resilience and sustainability. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Soliloquy Slider, leveraging Google Analytics for user tracking. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the site uses HTTPS but lacks DNSSEC and important security headers, which could improve its security posture. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is limited to a contact form without direct emails or phone numbers, which may affect user trust and support accessibility. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security configurations, and more transparent contact information to strengthen trust and regulatory adherence.

N

NJ TRANSIT

njtplans.com

69

NJ TRANSIT operates the largest state transit system in the United States, providing essential public transportation services including trains, buses, light rail, and ADA paratransit to nearly one million daily riders in New Jersey and surrounding metropolitan areas. The organization supports a significant regional economy and is focused on modernizing and expanding its infrastructure through strategic and capital planning initiatives aimed at 2030. The website reflects a mature digital presence with a professional design and comprehensive service information, targeting residents and commuters reliant on public transit. Technically, the website leverages modern web technologies such as Nuxt.js for server-side rendering, integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and HubSpot, and uses Google Fonts and translation services to enhance accessibility and user experience. The site is mobile optimized and demonstrates good SEO and accessibility practices, although some performance optimizations could be improved. From a security perspective, the site enforces HTTPS and uses controlled script loading via Google Tag Manager, but lacks explicit security headers and published privacy or cookie policies on the analyzed page. No WHOIS registrant data is available, which slightly reduces trustworthiness, though the official branding and social media presence support legitimacy. There is no visible vulnerability disclosure or incident response contact information. Overall, NJ TRANSIT's website is a credible and professional platform for public transportation information, but it would benefit from enhanced privacy compliance, clearer security policies, and improved transparency in domain registration data to strengthen trust and regulatory adherence.

G

Grupo Nacional Provincial S.A.B.

gnp.com.mx

67

Grupo Nacional Provincial S.A.B. (GNP Seguros) is a leading Mexican insurance company offering a broad portfolio of insurance products including auto, medical, life, home, and pet insurance. The company targets both individual and business customers within Mexico, positioning itself as a financially solid and trusted insurer. The website reflects a mature digital presence with comprehensive product information, online quoting tools, and client portals. Technically, the site is built on Adobe Experience Manager, leveraging modern analytics and marketing tools such as Google Tag Manager, Adobe Analytics, Facebook Pixel, and Hotjar, indicating a high level of digital maturity. Security posture is strong with HTTPS, security headers, and bot protection via reCAPTCHA, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, well-branded, and trustworthy, supporting GNP's market position as a major insurance provider in Mexico.

M

Mass Portal SIA

massportal.com

58

Mass Portal SIA is a specialized manufacturer and service provider in the precision 3D printing industry, offering a range of products including desktop and standalone 3D printers, filament dryers, and automated printfarm solutions. Their services extend to printing services and custom solution development, targeting innovators, engineers, and manufacturing professionals. The company positions itself as a niche player focusing on high-quality, flexible 3D printing technologies. Technically, the website is built on the Mozello CMS platform, leveraging Amazon Cloudfront for content delivery and using common JavaScript libraries such as jQuery and Fancybox. Google Analytics and Google Tag Manager are employed for user tracking and analytics. The site is mobile-optimized with good navigation and professional design, though some SEO and accessibility features could be improved. From a security perspective, the site uses HTTPS but lacks several important security headers, and no explicit privacy or cookie policies are present, which impacts compliance posture. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues or privacy protection that is not disclosed. Social media presence and professional branding support legitimacy, but the missing WHOIS data warrants caution. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance improvements, and verification of domain registration status to strengthen trust and reduce risk.

S

SteamTalmark

steam.nl

60

SteamTalmark is a Dutch communication agency specializing in employer branding and recruitment communication services. The company focuses on aligning the ambitions of talents and employers through creative campaigns, career sites, and integrated talent journeys. Their market position is that of a specialized boutique agency with a strong local presence in the Netherlands, supported by offices in Amsterdam and Utrecht. The website reflects a professional and consistent brand image with clear service offerings and client case studies. Technically, the site uses modern JavaScript frameworks such as Vue.js and GSAP, integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, and Cookiebot for GDPR compliance. Security posture is good with HTTPS enforced, though some standard security headers are not explicitly detected in the HTML content. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is well designed, user-friendly, and trustworthy, supporting the company's business credibility effectively.

L

Labiana Life Sciences S.A.

labiana.com

54

Labiana Life Sciences S.A. is a well-established pharmaceutical company based in Spain, specializing in both animal and human health sectors. The company offers a broad portfolio of products and contract development and manufacturing services (CDMO), supported by multiple subsidiaries including Veterinarski Zavod Subotica and Zoleant Pharmaceuticals International. The website reflects a professional and consistent brand image, targeting pharmaceutical companies, investors, and health professionals. Technically, the site is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is robust with comprehensive policies and GDPR adherence. The absence of WHOIS data reduces domain trust slightly but does not detract from the overall credibility. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility.

M

MF Shipping Group

mfshippinggroup.nl

68

MF Shipping Group operates as a specialized international ship management company focusing on multi-purpose vessels, tankers, and cement carriers. The company provides a comprehensive suite of services including technical ship management, crew management, quality assurance, project management, and financial management. Their market position is supported by a fleet of approximately 50 vessels and a workforce of 900 seafarers alongside 80 office employees, indicating a medium-sized enterprise with a strong presence in the maritime transportation sector. Technically, the website demonstrates a mature digital infrastructure utilizing modern web technologies such as Google Tag Manager, Swiper.js for interactive content, and cookie consent mechanisms, ensuring good performance, mobile optimization, and SEO practices. The site is well-structured, multilingual, and integrates social media widgets to enhance engagement. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks explicit security headers and a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a notable anomaly, although the website's professionalism and trust indicators mitigate immediate concerns. Overall, the website presents a low risk with strong business credibility and technical implementation. Strategic improvements in security headers and transparency around incident response would further enhance trust and compliance.

F

Food Union

rpk.lv

71

Food Union is a well-established Latvian dairy and food manufacturing company with a leading market position since 1909. The company operates a professional website primarily targeting consumers and business partners in the Baltic region. The site provides comprehensive information about their products, brands, sustainability efforts, and corporate details. Technically, the website is built on a modern React framework, integrating Google Analytics and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, but lacks some advanced security headers and explicit security policy disclosures. The absence of WHOIS data due to query limits restricts full domain trust verification, though the website content and external links suggest legitimacy. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security policy transparency and incident response readiness.

M

MadSword Studios

madsword.com

57

MadSword Studios is a small technology company based in Latvia specializing in the development of mobile and VR games across platforms including iOS, Android, and Windows Phone. Their portfolio includes a variety of casual, puzzle, and VR games targeting mobile users and social network gamers. The website presents a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses common JavaScript libraries and Google services, hosted behind Cloudflare DNS, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain registration protections in place, but lacks advanced DNS security (DNSSEC) and security headers. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. Business credibility is supported by clear contact information and social media presence. Overall, the website is functional and trustworthy but could improve in privacy compliance and security best practices.

S

SIA "RAIBUM"

raibum.com

56

RAIBUM is a small Latvian retail company specializing in personalized luggage and travel accessories. The company offers customers the ability to upload custom images or select from pre-designed options to create unique suitcases. Founded in 2016, RAIBUM targets travelers who desire distinctive and personalized travel gear, positioning itself as a niche player in the luggage market. The website reflects a professional e-commerce platform with clear navigation and a focus on user experience. Technically, the website employs modern web technologies including Vue.js, Google Analytics, Facebook Pixel, and GSAP for animations. The site is mobile optimized and uses HTTPS, ensuring secure data transmission. However, some security best practices such as DNSSEC and security headers are not implemented, representing areas for improvement. The domain registration is consistent with the business history and shows no suspicious patterns. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is basic, with a cookie consent banner present but no dedicated privacy policy page found. Contact information is comprehensive, including phone, email, physical address, and a contact form. Overall, RAIBUM presents a trustworthy and professional online presence with room to enhance security and privacy compliance. Strategic improvements in DNS security, security headers, and transparency around data protection would strengthen the company's security posture and customer trust.

M

M&H Engineering & Consulting for The Oil & Gas Industry

mhes.com

46

M&H Engineering & Consulting for The Oil & Gas Industry is a professional services firm specializing in engineering, consulting, and sustainability services tailored to the oil and gas sector. With a domain age dating back to 2000, the company presents itself as an established player offering a range of services including enterprise asset management, technical writing, and risk management. The website is built on WordPress using modern plugins such as LayerSlider and Slider Revolution, indicating a moderate level of digital maturity and technical infrastructure. The site is hosted by GoDaddy.com, LLC and uses HTTPS, ensuring basic transport security. However, there is no evidence of advanced security headers or DNSSEC implementation, which are recommended for enhanced security posture. The absence of privacy and cookie policies, as well as lack of explicit contact information, suggests gaps in privacy compliance and user trust facilitation. Overall, the website is professional and content-rich but would benefit from improved privacy compliance and security best practices to enhance trust and regulatory adherence.

Storm International Management Services B.V. is an established international casino operator with over 30 years of experience managing high-end gaming and entertainment facilities primarily in Georgia, Armenia, and Germany. The company emphasizes a branded gaming experience through its Shangri La casinos and proprietary casino management software. The website reflects a professional and consistent brand presence with clear business information and contact details. Technically, the site uses CMS Made Simple and modern JavaScript libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and DNSSEC, indicating room for improvement. Privacy compliance is basic, with no explicit cookie consent or comprehensive privacy policy found. Overall, the website is credible and functional but would benefit from enhanced security and privacy practices.

J

JSJ Corp

jsjcorp.com

58

JSJ Corporation is a well-established growth firm and holding company specializing in manufacturing, distribution, and service businesses with a global footprint. The company emphasizes long-term investment and partnership with innovative companies aligned with its core values. The website reflects a professional corporate presence with clear business descriptions, portfolio highlights, and community impact initiatives. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, Hotjar, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized with good SEO and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though no explicit security policy or incident response information is published. The absence of WHOIS registration data is a notable concern for domain legitimacy, warranting further verification. Overall, the website presents a credible and professional image with minor gaps in security transparency and legal documentation.

V

ValPro

valpro.co.in

51

ValPro is a boutique investment banking and financial advisory firm based in India, operating since 2005 as an initiative of the ANG Group. The company offers a comprehensive suite of services including mergers and acquisitions, portfolio management, startup funding, ESG advisory, and business development. Their market position is strengthened by a seasoned management team and advisory board with extensive industry experience. The website is built on a modern WordPress platform with professional design and SEO optimization, supporting a good user experience and mobile responsiveness. Security posture is solid with HTTPS and reCAPTCHA integration, though lacking explicit privacy and cookie policies. Overall, the digital maturity is moderate with room for improvement in privacy compliance and security disclosures.

The website arutec.lv is currently in maintenance mode, presenting minimal content and no active business information. The site uses WordPress CMS with the Divi theme and integrates Google Analytics via the MonsterInsights plugin for visitor tracking. Due to the maintenance state, there is a lack of visible contact information, privacy policies, or terms of service, which limits the ability to assess business credibility and compliance. The WHOIS lookup failed due to query limits, preventing extraction of domain registration details and registrant information, which further constrains trust evaluation. Technically, the site employs modern web technologies but lacks visible security headers and privacy compliance mechanisms. Overall, the site’s security posture is basic, with room for improvement in policy transparency and contact availability.

A

Anthony Veder

anthonyveder.com

58

Anthony Veder is a well-established gas shipping company with a strong focus on sustainability and innovation in the energy transportation sector. The company operates a majority-owned fleet of gas tankers worldwide, providing high-quality and flexible services to leading clients. Their website reflects a professional digital presence with clear branding and relevant content aimed at clients, partners, and potential employees. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and uses popular plugins like Gravity Forms and Yoast SEO. The site is mobile-optimized and integrates analytics tools including Google Analytics and Hotjar, supported by a cookie consent mechanism ensuring privacy compliance. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protection. However, DNSSEC is not enabled, and additional HTTP security headers could enhance the security posture. No explicit security policies or incident response contacts are published, which could be improved to strengthen trust. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The domain WHOIS data supports the legitimacy and long history of the business. Strategic recommendations include enabling DNSSEC, enhancing security headers, and publishing security and incident response policies to further improve security and compliance.

Bright is a small Latvian digital agency specializing in creative and technical digital solutions including web design, e-commerce, animation, social media strategy, graphic design, and online advertising. The company has a professional online presence with a portfolio of notable clients and active social media engagement. The website is built on WordPress and employs modern web technologies and marketing tools such as Google Analytics, Facebook Pixel, and Trustpilot for customer reviews. Security measures include HTTPS and Google reCAPTCHA v3, though some security headers are missing. Privacy and cookie policies are present with consent mechanisms, indicating GDPR awareness. However, WHOIS data is unavailable due to query limits, limiting domain registration transparency. Overall, the site demonstrates good digital maturity and business credibility with room for security and compliance enhancements.

S

SIA Norde

norde.lv

49

SIA Norde is a well-established Latvian automotive dealership specializing in Nissan, Renault, and Dacia vehicles. Founded in 1991, it offers a comprehensive range of services including new and used car sales, servicing, body repairs, spare parts, leasing, and insurance brokerage. The website reflects a mature digital presence with multimedia content, clear navigation, and integration of official brand partner domains. Technically, the site employs modern JavaScript libraries and analytics tools, with a strong emphasis on user privacy through a detailed cookie consent mechanism. Security posture is good with HTTPS and bot protection measures, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the overall business credibility and professional presentation indicate a legitimate and reputable company.

C

CHD Living

chdliving.co.uk

66

CHD Living is a well-established, family-owned healthcare provider specializing in residential, nursing, rehabilitation, and home care services primarily in Surrey and South London. Founded in 1984, the company has built a strong regional presence with multiple care homes and specialized care offerings, targeting individuals and families seeking quality care solutions. The website reflects a professional and trustworthy brand with clear service descriptions and transparent contact information. Technically, the website is built on an ASP.NET WebForms platform with modern integrations such as Google Tag Manager, Google Analytics, Microsoft Clarity, and social media tracking pixels. The site is mobile-optimized and features interactive elements like carousels and embedded videos, indicating a moderate to advanced digital maturity. However, some security headers could be enhanced to improve overall security posture. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA v3 to protect forms, with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR considerations are evident. The WHOIS lookup failed due to querying the subdomain rather than the base domain, but the website's legitimacy is supported by consistent branding and contact transparency. Overall, CHD Living presents a low-risk profile with a strong business reputation and good digital hygiene. Strategic improvements in security headers and accessibility could further enhance trust and compliance.

F

Fintelum

fintelum.com

69

Fintelum operates a compliant crypto crowdfunding platform specializing in the issuance and trading of tokenised assets, including security and utility tokens. The company targets businesses seeking compliant fundraising solutions and investors interested in high-growth tokenised projects. Their platform offers services such as KYC/AML compliance, token transfer agency, and secondary peer-to-peer trading, positioning them as a niche player in the intersection of finance and blockchain technology. The website demonstrates a professional and consistent brand presence with comprehensive legal and privacy documentation, supporting their market credibility. Technically, Fintelum's website is built on WordPress with modern web technologies including jQuery, Google Analytics, Facebook Pixel, and CookieYes for consent management. The site is mobile-optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and bot management via Cloudflare, although some security headers are not explicitly detected, suggesting room for improvement. From a security standpoint, the platform shows good practices such as cookie consent and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies and incident response information is a gap. The missing WHOIS data for the domain raises concerns about domain registration transparency, although the active and professional website presence mitigates some risk. Overall, Fintelum presents a credible and functional platform with solid technical and privacy compliance foundations. Strategic recommendations include enhancing security header implementation, publishing explicit security policies, and verifying domain registration details to improve trustworthiness and compliance posture.

R

Robert Morris University

rmu.edu

79

Robert Morris University (RMU) is a well-established higher education institution based in Pittsburgh, Pennsylvania, offering a broad range of academic programs including undergraduate, graduate, doctoral, and certificate options. The university emphasizes career readiness, affordability, and a supportive campus environment that blends the benefits of a small college with access to a major city. RMU maintains a strong market position in education with recognized programs in business, nursing, cybersecurity, and engineering. The website reflects a professional and comprehensive digital presence, supporting prospective and current students, faculty, alumni, and donors.