Security Directory

V

Vlaamse Milieumaatschappij

vmm.be

70

The Vlaamse Milieumaatschappij (VMM) is the official environmental agency of the Flemish government, focused on making the living environment in Flanders climate-resilient through sustainable air, water, and climate adaptation policies. The organization collaborates with local and international partners to execute environmental projects and provides a broad range of services and products to citizens, businesses, and local governments. The website reflects a mature digital presence with comprehensive content and clear navigation tailored to its diverse audience. Technically, the website leverages modern web technologies including React and the Plone CMS platform, ensuring a responsive and accessible user experience. The site is well-optimized for SEO and mobile devices, with appropriate meta tags and accessibility features. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, implements key security headers, and follows best practices for secure forms and content delivery. However, there is no explicit published security policy or incident response contact information, which could enhance transparency and trust. The WHOIS data is unavailable due to registry restrictions, but the site’s official government affiliation and consistent branding strongly indicate legitimacy. Overall, the VMM website presents a trustworthy and professional digital front for the Flemish environmental agency, with strong content quality and security posture. Strategic recommendations include publishing a formal security policy, adding incident response contacts, and considering a vulnerability disclosure policy to further strengthen security and compliance.

D

Departement Werk, Economie, Wetenschap, Innovatie en Sociale Economie (WEWIS)

ewi-vlaanderen.be

41

The website represents the official Flemish government department responsible for work, economy, science, innovation, and social economy, recently merged into the new Departement WEWIS. It serves as an information portal providing news, publications, events, and departmental mission details targeted at the general public, businesses, and policymakers in Flanders. The site is professionally designed with consistent branding and clear navigation, supporting both Dutch and English languages. Technically, it is built on Drupal 10 with integration of Piwik PRO analytics and a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and secure cookie settings, though explicit security headers and policies could be improved. Overall, the site is trustworthy, safe, and compliant with basic privacy requirements, though it lacks explicit privacy and terms of service pages on the homepage.

P

Portail officiel de la recherche scientifique en fédération Wallonie-Bruxelles

recherchescientifique.be

51

The website 'Portail officiel de la recherche scientifique en fédération Wallonie-Bruxelles' serves as the official government portal for scientific research in the Wallonia-Brussels Federation. It provides comprehensive information on research activities, funding opportunities, career resources, and institutional partnerships. The portal targets researchers, academic institutions, government bodies, and the general public interested in scientific research within the region. The business model is government-funded, focusing on information dissemination and support for the research community. Technically, the site is built on TYPO3 CMS version 4.5, an outdated platform that may pose security risks. It employs common web technologies such as jQuery, Owl Carousel, and Matomo analytics for privacy-conscious user tracking. The site demonstrates moderate performance and good mobile optimization but lacks modern security headers and uses an older CMS version, indicating technical debt. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, the absence of visible security headers and the outdated CMS version present potential vulnerabilities. No direct contact emails or phone numbers are provided, with contact facilitated through forms. WHOIS data is unavailable due to domain registration restrictions, which slightly reduces trust but does not negate the site's legitimacy given its government affiliation. Overall, the website is a trustworthy and professional government portal with good content quality and user experience. Strategic improvements include updating the CMS, enhancing security headers, and publishing explicit security and incident response policies to strengthen the security posture and compliance.

W

Wallonia Export & Investment Agency

awex.be

56

The Wallonia Export & Investment Agency (AWEX) is a government entity dedicated to promoting foreign investment and export activities in the Wallonia region of Belgium. The website serves as a portal for foreign companies seeking to invest, Walloon companies looking to export, and young graduates seeking internships abroad. It provides access to partner sites, international news, and a database of export companies. The agency's market position is that of an official regional government body with a medium-sized operational scale and a founding date consistent with the domain registration in 2000. Technically, the website employs modern JavaScript libraries including Google Tag Manager and Google Maps API, ensuring moderate performance and good mobile optimization. The site uses HTTPS and includes a cookie consent mechanism, reflecting a basic level of privacy compliance. However, there is room for improvement in security headers and accessibility features. From a security perspective, the site is well-positioned with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact limits transparency. The cookie consent banner and privacy policy indicate GDPR awareness but could be enhanced with more comprehensive compliance documentation. Overall, the website is professional, trustworthy, and aligned with its government mandate. Strategic recommendations include enhancing security headers, publishing terms of service and incident response information, and improving accessibility and privacy compliance documentation to strengthen trust and security posture.

Ezy Kitchens is a New Zealand-based kitchen design, renovation, and installation company with multiple showrooms across the South Island. The website presents a professional and comprehensive overview of their services, targeting homeowners seeking quality kitchen solutions. The business model focuses on local manufacturing and personalized service, supported by a consistent brand presence and active social media engagement. Technically, the website employs modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Pipedrive LeadBooster, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, indicating room for compliance improvements. WHOIS data is unavailable due to privacy or registry restrictions, but the website content and external references support legitimacy. Overall, the site is well-designed and trustworthy, though privacy compliance and security policies should be enhanced.

C

Canon New Zealand

canon.co.nz

74

Canon New Zealand operates as a regional branch of the global Canon brand, providing a comprehensive range of imaging and printing products including cameras, lenses, printers, and professional services tailored for the New Zealand market. The website reflects a mature digital presence with extensive product catalogs, support resources, and business solutions, positioning Canon as a leading technology provider in the region. The site targets both consumer and business segments, offering financing options and professional memberships to enhance customer engagement. From a technical perspective, the website employs a modern technology stack including Google Tag Manager, Crazy Egg, TikTok and Facebook pixels, Mailchimp, and New Relic for performance monitoring and analytics. The site is well-optimized for mobile devices, features good accessibility practices, and maintains strong SEO fundamentals. Security is robust with HTTPS enforced, comprehensive security headers, and use of reCAPTCHA to protect forms. However, explicit security policies and incident response contacts are not prominently published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is evident through clear privacy and cookie policies with consent mechanisms, aligning with GDPR standards. The absence of WHOIS data is consistent with New Zealand domain registry policies and does not detract from the legitimacy of the domain, which is clearly operated by Canon. Overall, the site demonstrates a high level of professionalism, trustworthiness, and digital maturity. Strategically, Canon New Zealand should consider publishing explicit security policies and incident response contacts to enhance transparency and trust. Implementing a vulnerability disclosure program or security.txt file would further strengthen security posture and community engagement. Continuous monitoring of third-party scripts and enhancing accessibility features will support ongoing compliance and user experience improvements.

T

The Shopsite

theshopsite.co.nz

67

The Shopsite is a New Zealand-based e-commerce retailer founded in 2019, specializing in a broad range of consumer products including electronics, gaming accessories, home living items, security solutions, and pet products. The website positions itself as a competitive price leader offering quality products to New Zealand consumers. The business operates on the Shopify platform, leveraging integrated marketing and review tools such as Klaviyo and Judge.me to enhance customer engagement and trust. The site demonstrates good content quality, consistent branding, and a user-friendly shopping experience optimized for mobile devices.

Canon België | Canon Belgique operates as the Belgian branch of Canon, a global leader in imaging and optical products. The website targets Belgian consumers in Dutch and French, offering access to Canon's consumer cameras, printers, and related services. The site reflects Canon's strong brand presence and market position in the technology sector, particularly in imaging solutions. Technically, the website employs a modern tech stack including JavaScript frameworks, marketing and analytics tools such as Google Tag Manager, Tealium, and Optimizely, and integrates Google reCAPTCHA for security. The site is mobile optimized and SEO friendly, with good content quality and navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and published security policies are absent. WHOIS data is restricted due to DNS Belgium policies, which is typical for .be domains, and does not raise suspicion. Overall, the website is professional, trustworthy, and compliant with GDPR cookie consent requirements.

K

KBC Groep NV

cera.coop

74

Cera is a large Belgian financial cooperative affiliated with KBC Groep NV, offering cooperative shares, member benefits, and community support initiatives. The website targets individual consumers in Belgium and provides comprehensive information about investing in cooperative shares, enjoying exclusive benefits, and participating in societal projects. The digital infrastructure is modern, hosted on Microsoft Azure, and uses technologies such as Google Maps API and lazy loading for images. Security posture is good with HTTPS and domain transfer protections, but lacks some advanced security headers and explicit privacy/cookie policies. The domain registration is consistent with the business entity and shows no suspicious patterns. Overall, the website is professional, trustworthy, and well-positioned in the Belgian cooperative finance market.

K

Kunstwerkt

beeld.be

57

Beeld is a specialized online platform operated by Kunstwerkt, focused on showcasing visual artwork and supporting artists through features like open calls and artist profiles. The platform targets the visual arts community primarily in Belgium and Dutch-speaking regions. Technically, the website is built on Drupal 10, uses modern analytics tools with privacy considerations, and implements cookie consent mechanisms. The site is well-structured, mobile-optimized, and provides a good user experience. Security posture is solid with HTTPS and privacy-respecting analytics, though some security headers and explicit security policies are missing. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, but lacks direct contact information and formal security incident response details.

C

Contact Privacy Inc. Customer 0129608548

requirejs.org

52

RequireJS is an established open source JavaScript module loader project founded in 2010, targeting web developers seeking modular script loading to improve code quality and performance. The website provides documentation, downloads, and community links but lacks formal privacy, cookie, or security policies. Technically, the site uses older JavaScript libraries such as jQuery 1.4.4 and Dojo 1.4, which may introduce security risks. The domain is privacy protected, consistent with open source project practices, and hosted on Hover.com nameservers. Security posture is moderate with no HTTPS or security headers data provided, and no vulnerability disclosure or incident response information is available. Overall, the site is professional and trustworthy but could improve compliance and security practices.

R

rain

rain.co.za

60

Rain is a South African telecommunications company offering 4G and 5G network services with a focus on unlimited 5G wifi and free calls and data for phones. The company positions itself as a modern, contract-free alternative for home, mobile, and work connectivity. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Next.js and React. Multimedia content including videos and responsive images enhance user engagement. Security posture is good with HTTPS enforced and no exposed sensitive data, but the absence of security headers and privacy policies indicates room for improvement. WHOIS data is unavailable, likely due to privacy protection, which is common for commercial entities but reduces transparency. Overall, the website is trustworthy and well-positioned in the telecommunications market in South Africa.

I

ITTECO

iframe.ly

52

Iframely is a technology service provider specializing in embedding third-party rich media content such as videos and audio on websites, with a focus on user consent management. The company, registered as ITTECO in France since 2012, offers a utility that allows websites to request and manage user permissions before displaying embedded media from popular providers like YouTube, Instagram, Facebook, and others. The website serves as a consent dashboard for users to control media permissions across the Iframely network. Technically, the website is built with standard web technologies including HTML5, CSS3, and JavaScript, hosted on infrastructure likely provided by Amazon AWS. The site is mobile-optimized with a clean and professional design, though it lacks advanced accessibility features and SEO optimization. No CMS or major frameworks are detected. The site does not include analytics or advertising scripts, indicating a focus on privacy and minimal tracking. From a security perspective, the site uses HTTPS (implied by external resource URLs), but no explicit security headers are present in the HTML content. The domain DNSSEC is not enabled, which is a potential area for improvement. The site implements a consent mechanism for third-party media embedding, which is a positive privacy practice. However, the absence of a published privacy policy, terms of service, or incident response information limits the overall security and compliance posture. Overall, the website is legitimate and consistent with its business claims, with a moderate trust level. The main risks relate to incomplete privacy compliance documentation and missing security headers. Strategic improvements in these areas would enhance user trust and regulatory compliance.

I

Identixweb Limited

identixweb.com

71

Identixweb Limited is a technology company specializing in Shopify app development, offering a suite of 12 apps designed to boost e-commerce store performance and revenue. The company targets Shopify store owners and e-commerce businesses seeking to improve conversions and profits. The website demonstrates a mature digital presence with professional design, strong SEO, and integration of marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The technical infrastructure is based on WordPress CMS with modern optimization plugins and JavaScript libraries, ensuring fast performance and mobile responsiveness. Security posture is solid with HTTPS enforced and standard security headers present, although dedicated security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with cookie consent mechanisms and GDPR indicators. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and registration status, warranting further verification. Overall, the website is professional, trustworthy, and business-focused, with room for improvement in transparency of domain registration and direct contact information.

N

Nationwide News Pty Limited

plusrewards.com.au

68

The website plusrewards.com.au operates as a loyalty and member benefits platform primarily targeting subscribers of major Australian newspapers. It offers exclusive competitions, discounts, and special offers to its members, enhancing the value proposition of newspaper subscriptions. The platform is integrated with several prominent Australian newspapers, indicating a strong market position within the media sector. Technically, the site leverages modern web technologies including React and Next.js, ensuring a responsive and user-friendly experience. The presence of Tealium for tag management and tracking indicates a mature digital marketing infrastructure. Security-wise, the site enforces HTTPS and includes standard security headers, reflecting good security hygiene. Privacy and cookie policies are comprehensive and GDPR compliant, supporting strong privacy compliance. Overall, the site presents a professional and trustworthy digital presence with no critical security or content safety concerns.

The website bedsberry.com currently serves a 404 Not Found error page with no accessible business content. The domain is registered through NameCheap, Inc. and hosted on Google Cloud Platform with AWS DNS servers. The page content indicates the domain is used by Admiral (getadmiral.com) to provide copyright access control and privacy consent services for digital publishers. However, no direct business information, contact details, or policies are available on the site. Technically, the site uses standard web technologies (JavaScript, HTML, CSS) and enforces HTTPS with frequent certificate rotation, but lacks DNSSEC and explicit security headers. Security posture is moderate but limited by minimal content and lack of formal policies. Overall, the site is not accessible for end users and provides no direct business or compliance information, resulting in a low trust and quality score.

W

Westpac

westpac.com.au

72

Westpac is a leading Australian financial institution offering a broad range of personal, business, and corporate banking services. The website reflects a mature digital presence with comprehensive content tailored to its diverse customer base. The company maintains a strong market position as one of Australia's major banks, providing innovative financial packages and services. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience across desktop and mobile platforms. Technically, the website leverages modern technologies including Adobe Experience Manager as its CMS, RequireJS for JavaScript module loading, and Adobe Analytics for data tracking. The site demonstrates good performance and mobile optimization, although accessibility features could be enhanced. Security is robust with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a published security policy would further strengthen the posture. The security posture is solid, with no signs of exposed sensitive data or vulnerable libraries. Privacy compliance is evident through the presence of privacy and cookie policies with consent mechanisms, and GDPR compliance is indicated. However, incident response and vulnerability disclosure information are not prominently available, representing an area for improvement. Overall, Westpac's website is trustworthy and professionally maintained, supporting its enterprise-level banking operations. Strategic recommendations include enhancing security header implementation, publishing detailed security and incident response policies, and improving accessibility compliance to meet broader standards.

V

Vollrath Manufacturing Services

vollrathmanufacturing.com

66

Vollrath Manufacturing Services is a well-established B2B manufacturing company specializing in deep draw stamping, progressive metal stamping, and complementary metal fabrication services. Founded in 2014 and operating under the parent company The Vollrath Company, LLC, it serves industrial and OEM clients primarily in the United States. The company positions itself as an industry leader with a comprehensive suite of manufacturing capabilities and engineering consulting services. The website reflects a professional and consistent brand image with clear navigation and multiple contact options, including phone and interactive chat forms. Technically, the site leverages modern web technologies including Kentico CMS, AWS hosting, and integrates marketing and analytics tools such as Google Analytics, Microsoft Clarity, and Bing UET, while maintaining GDPR and cookie compliance through OneTrust. Security posture is strong with HTTPS, domain status locks, and form protections via reCAPTCHA, although DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the website is trustworthy, well-maintained, and suitable for its target industrial audience.

D

Digital Thing

digitalthing.com.au

61

Digital Thing is a specialized WordPress development agency based in Melbourne, Australia, with over 15 years of experience delivering custom WordPress and WooCommerce solutions. The company targets businesses seeking expert digital strategy, UX/UI design, and development services, positioning itself as a trusted local agency with a strong portfolio and client testimonials. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern JavaScript libraries, Google Analytics, and optimized for mobile devices, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the domain registration is consistent with the business location and type, though WHOIS data is limited due to Australian domain privacy policies.

The Daily Telegraph is a prominent Australian news media outlet providing comprehensive news coverage, including live streams and replays of local sports in New South Wales. The website serves a broad Australian audience with a focus on sports, news, entertainment, and lifestyle content. It operates under the News Corp Australia umbrella, leveraging a large-scale digital infrastructure to deliver content efficiently. The site employs modern web technologies and integrates multiple third-party analytics and advertising platforms to optimize user engagement and monetization. Security posture is strong with HTTPS enforcement and standard security headers, though visible privacy and cookie policies are absent in the analyzed content, which may impact compliance perception. Overall, the site demonstrates a mature digital presence with high trustworthiness and professional content delivery.

T

TasAwardsandTrophies

tassieawardsandtrophies.com

53

TasAwardsandTrophies operates a local business based in Hobart, Tasmania, specializing in supplying trophies, medallions, ribbons, shields, and awards. The website is built on the Wix platform, indicating a moderate level of digital maturity with standard Wix technologies and error tracking via Sentry. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. The site lacks critical privacy and cookie policies, contact information, and security headers, which impacts its security posture and compliance standing. Overall, the business appears to be a small local supplier with basic online presence but requires improvements in security and compliance documentation to enhance trust and professionalism.

T

Talent Advisory

talentadvisory.com.au

52

Talent Advisory is a specialized HR, people, and recruitment consultancy based in Tasmania, Australia. The company offers comprehensive HR services including compliance support, HR health checks, and recruitment solutions tailored for small to medium businesses and government entities. Their business model emphasizes affordable, flat-fee services without lock-in contracts, positioning them as a cost-effective alternative to large organizational HR departments. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the website is built on the SitePlus platform, utilizing modern web standards such as HTML5, CSS3, and JavaScript, with responsive design and mobile optimization. Hosting is provided via Syrahost, and the site uses Google Fonts and SVG icons for visual consistency. Performance is moderate, with room for improvement in SEO and accessibility features. No advanced frameworks or analytics tools are detected, indicating a lean technical infrastructure. From a security perspective, the site employs HTTPS with a good SSL configuration but lacks visible security headers and a formal security policy. Cookie consent is implemented, indicating some privacy awareness, but GDPR compliance is partial due to the absence of detailed privacy and security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's Australian location and business claims, supporting legitimacy. Overall, Talent Advisory's website presents a trustworthy and professional front for their HR consultancy services, with a solid foundation in technical and security practices but opportunities for enhancement in security policies, SEO, and analytics integration.

N

Nameshift.com

techventures.be

46

Nameshift.com operates a domain name marketplace specializing in safe and fast domain transfers using an escrow service. The platform targets domain buyers and sellers seeking secure transactions without additional fees. The website is built on modern SvelteKit technology and hosted via Vimexx with CDN support, indicating a contemporary technical infrastructure. However, the site content is minimal with placeholder elements, suggesting it may be under development or low in content volume. Security posture is moderate with HTTPS enabled but lacking security headers and privacy policies. The domain is very recently registered, which may affect trustworthiness. Overall, the business model is clear but the digital maturity and compliance aspects require enhancement.

SOFAM is a Belgian organization dedicated to managing authors' rights for visual artists. The website serves as an information and service portal for visual artists, providing updates, copyright information, and member services. The organization appears to be a small, specialized entity focused on the media sector, particularly visual arts. The website is professionally designed with clear navigation and content relevant to its target audience. Technically, the site uses older JavaScript libraries such as MooTools and includes a cookie consent mechanism, indicating some level of privacy compliance. Security posture is moderate with HTTPS enabled but lacking modern security headers and using outdated libraries, which could pose risks. WHOIS data is unavailable due to domain registration restrictions, which slightly impacts trust but does not negate the legitimacy of the website content and contact information. Overall, the site is functional, privacy-conscious, and serves its niche audience effectively.

D

Designregio Kortrijk

designregio-kortrijk.be

52

Designregio Kortrijk is a well-established regional innovation and design organization based in Kortrijk, Belgium, founded in 2005. The organization focuses on connecting companies, designers, and partners to foster creativity and innovation in various sectors including sustainability, digitalization, and circular economy. Their market position is that of a key regional hub facilitating collaboration and creative solutions. The website is professionally designed, mobile-optimized, and content-rich, targeting businesses, organizations, and projects seeking innovation support. Technically, the site uses modern JavaScript libraries, Craft CMS, and integrates Google Analytics and Tag Manager for analytics, alongside reCAPTCHA v3 for form security. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are absent. Overall, the site demonstrates high professionalism and trustworthiness with clear contact information and partner affiliations.

W

Wallonie-Bruxelles Design Mode

wbdm.be

60

Wallonie-Bruxelles Design Mode (WBDM) is a specialized agency dedicated to accelerating the international development of design and fashion professionals based in Wallonia and Brussels. The agency also acts as a curator to enhance the visibility of these talents on the global stage. Their website reflects a professional and modern digital presence, leveraging Vue.js and WordPress components, hosted on a reputable cloud provider. The site is well-structured, mobile-optimized, and includes comprehensive contact and social media information, supporting effective user engagement. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism compliant with GDPR standards. However, it lacks explicit security headers and published security policies or incident response information, which are recommended for enhanced trust and compliance. The WHOIS data for the domain is restricted, limiting transparency about domain ownership, but the website content and external partnerships suggest legitimacy. Overall, WBDM presents a credible and professional online presence suitable for its target audience of design and fashion professionals seeking international exposure. Strategic improvements in security policy transparency and WHOIS data availability could further strengthen trust and compliance.

N

Netwerk Architecten Vlaanderen

nav.be

70

Netwerk Architecten Vlaanderen (NAV) is a Flemish professional community focused on connecting and strengthening professionals within the architecture sector. The website serves as a platform for news, opinions, publications, and dossiers relevant to architecture in Flanders. NAV positions itself as a leading growth community for architecture professionals in the region, offering networking and informational services. The website is primarily in Dutch and targets professionals in the Flemish architecture community. Technically, the website employs modern web technologies including Alpine.js for interactivity, Cookiebot for cookie consent management, Google Analytics for visitor tracking, and reCAPTCHA for bot protection. The presence of Craft CMS cookies suggests the use of Craft CMS as the content management system. The site is mobile optimized and uses HTTPS with appropriate security headers, indicating a mature digital infrastructure. From a security perspective, the site demonstrates good practices such as enforcing HTTPS, implementing CSRF protection cookies, and managing user consent for cookies. However, there is no publicly visible security policy or incident response information, which could be improved to enhance transparency and trust. The WHOIS data is restricted and not publicly available, but the website content and security posture suggest legitimacy. Overall, NAV presents a professional and trustworthy online presence for its community. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility features, and providing clearer contact information for privacy and security inquiries to further strengthen trust and compliance.

The website fingerprint.com is currently inaccessible due to a Vercel security checkpoint that blocks access with a browser verification failure (Code 10). This prevents any meaningful content from being retrieved or analyzed. The domain is very old, registered since 1996, and hosted on AWS infrastructure, indicating a mature and potentially legitimate business. However, no business, contact, or policy information is available on the accessible page. The technical infrastructure includes JavaScript and Vercel platform usage, but performance, SEO, and accessibility cannot be assessed due to blocked content. Security posture cannot be evaluated beyond the presence of the security checkpoint itself. Overall, the site is currently not analyzable beyond the WAF detection, and the AI score is low due to lack of accessible content.

6

66fit Australia

66fit.com.au

60

66fit Australia operates as a specialized e-commerce retailer offering a broad range of fitness, recovery, sports, clinical, and physical education products. The company targets fitness enthusiasts, athletes, and sports professionals primarily within Australia. The website is built on the Shopify platform, leveraging modern web technologies and integrations such as Yotpo for reviews and Facebook Pixel for marketing analytics. The digital infrastructure is robust, with fast performance and mobile optimization, although accessibility features are basic. Security posture is solid with HTTPS and secure checkout processes, but the absence of explicit security headers and privacy policies indicates areas for improvement. Overall, the business demonstrates legitimacy and a consistent brand presence, though privacy compliance and transparency could be enhanced.

T

Thomson Reuters

thomsonreuters.com.au

75

Thomson Reuters Australia provides trusted expertise, advanced technology, and AI-driven insights primarily targeting legal, tax, and risk professionals. The company operates as a large enterprise under the global Thomson Reuters Holdings Inc umbrella, delivering industry-leading solutions to professional markets in Australia. The website reflects a mature digital presence with professional design and consistent branding, supported by advanced monitoring and analytics tools such as Datadog and AppDynamics. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and detailed privacy policies are not evident in the provided content. Overall, the domain and website appear legitimate and well-maintained, consistent with a reputable enterprise business.

C

Chatling

chatling.ai

65

Chatling is a technology company specializing in no-code AI chatbot solutions designed to empower businesses with automated customer support, lead generation, and knowledge base search capabilities. The platform targets a broad audience ranging from startups to enterprises, positioning itself as an easy-to-use and scalable SaaS solution. The website demonstrates a strong market position with positive user reviews and trust indicators such as G2 badges and customer testimonials. Technically, the site leverages modern JavaScript frameworks, Cloudflare hosting, and advanced analytics tools like PostHog and Google Tag Manager, ensuring a fast, mobile-optimized, and SEO-friendly experience. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements could be made by enabling DNSSEC and adding explicit security headers. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a user consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

S

Sigmund

sigmund.ca

65

Sigmund is a Quebec-based small technology company specializing in the development of custom digital solutions including software applications, data visualization tools, and UX/UI design. The company targets businesses and organizations seeking to optimize processes, improve decision-making, and engage audiences through tailored digital products. Their market position is that of a niche regional player with a professional online presence and client portfolio. Technically, the website is built on the Squarespace platform, leveraging modern web technologies and integrated with Google Analytics and Google Ads for marketing and analytics. The site is mobile optimized and demonstrates good SEO and accessibility basics. Security posture is solid with HTTPS and HSTS enabled, though additional security headers and policies could enhance protection. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, but lacks visible terms of service or security incident response information. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for small businesses. Overall, the website is professional, secure, and business-focused with moderate risk and room for security and compliance improvements.

W

Women’s Refuge

shielded.co.nz

58

The Shielded Site, operated by Women’s Refuge, is a New Zealand-based non-profit initiative focused on providing a safe and discreet way for victims of domestic violence to seek help online. The website serves as a platform to embed a shielded help tool on partner websites, enabling victims to access resources without fear of detection by abusive partners. The organization has established a broad partnership network across various sectors in New Zealand, enhancing its reach and credibility. Technically, the website employs a modern JavaScript stack including Vue.js, Bootstrap, and several libraries for UI and interactivity. Hosting is supported by Amazon AWS infrastructure, ensuring reliable availability. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some areas such as accessibility and SEO could be improved. From a security perspective, the site uses HTTPS and trusted external libraries but lacks DNSSEC and security headers, which are recommended to enhance protection. No sensitive data exposure or vulnerabilities were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is limited to an email address, with no phone or physical address provided. Overall, the website is trustworthy and professionally maintained, with a strong focus on its social mission. Strategic improvements in security headers, DNSSEC, and privacy compliance would further strengthen its posture and user trust.

A

Audi Centre Hobart

audicentrehobart.com.au

59

Audi Centre Hobart is a professional automotive dealership located in Hobart, Australia, specializing in the sale of new and used Audi vehicles, as well as providing vehicle servicing and parts. The website reflects a strong brand alignment with Audi's global standards, offering a user-friendly experience with clear navigation and mobile optimization. The business targets Audi enthusiasts and car buyers in the local market, positioning itself as a trusted local dealer within the transportation sector. Technically, the website is built on Adobe Experience Manager (AEM) Headless CMS and leverages Audi's proprietary feature apps and content delivery networks, ensuring fast performance and modern infrastructure. The site uses Google Tag Manager and Podium for analytics and customer engagement, indicating a mature digital marketing approach. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks visible explicit privacy, terms of service, and incident response policies. The WHOIS data is privacy protected, which is justified for this business type, and no suspicious patterns were detected. Overall, the security posture is good but could be improved with more transparency and published policies. The overall risk assessment is low, with recommendations focusing on enhancing privacy compliance and security transparency to build further trust with users and regulators.

B

Bonava

bonava.lt

60

Bonava is a leading residential real estate developer in Europe, with a strong presence in Lithuania. The company focuses on creating happy neighborhoods by building new residential housing, primarily targeting home buyers and real estate investors. The website reflects a professional and consistent brand image, with clear business descriptions and contact information. Technically, the site uses modern web technologies including JavaScript, CSS3, and Google Tag Manager, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS and security headers implemented, though there is room for improvement in publishing explicit security policies and vulnerability disclosures. Overall, the site is trustworthy and well-maintained, but the lack of WHOIS data limits full domain legitimacy verification.

B

Bonava

bonava.lv

57

Bonava is a real estate development company focused on creating homes and living environments in Latvia, particularly in Riga neighborhoods such as Teika, Purvciems, Dreiliņi, Ganību Dambis, and Imanta. The website presents a professional and modern design with content primarily in Latvian, targeting local home buyers and residents. The company positions itself as a quality provider of accessible housing with a focus on lifestyle and community development. Technically, the website uses modern web technologies including JavaScript, CSS, and Google Tag Manager for analytics and marketing. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy and cookie policies. No forms or direct contact information were found in the provided HTML snippet, which limits user engagement and transparency. Overall, the website is trustworthy and professional but could improve privacy compliance and security practices.

B

Bonava

bonava.ee

59

Bonava is a real estate development company focused on creating homes and neighborhoods primarily in Tallinn and its surrounding areas in Estonia. The website presents a professional image with clear branding and relevant content aimed at prospective home buyers and real estate customers. The business model centers on property development and sales, positioning Bonava as an established player in the Estonian real estate market. The site uses modern web technologies including JavaScript, Modernizr, and Google Tag Manager, indicating a moderate level of digital maturity. However, there is room for improvement in security and privacy compliance, as no explicit privacy or cookie policies were found, and security headers are not evident. The WHOIS data aligns well with the website's claims, supporting the legitimacy of the domain and business. Overall, the website is functional and professional but would benefit from enhanced security practices and clearer privacy disclosures.

B

Bonava

bonava.fi

57

Bonava is a Finnish real estate developer specializing in new residential properties primarily in the Helsinki metropolitan area, Turku, and Tampere. The company emphasizes building not just homes but happy and communal neighborhoods, fostering a sense of community and belonging among residents. The website reflects a professional and consistent brand image targeting Finnish home buyers. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics and tracking, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but lacks visible security headers and explicit privacy and cookie policies, which are critical for GDPR compliance. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security best practices are recommended to enhance trust and regulatory adherence.

B

Bonava

bonava.dk

57

Bonava.dk is a professional real estate development website focused on new home construction and neighborhood development in Denmark. The site targets home buyers looking for new properties and emphasizes creating communities where people feel they belong. The website is well-branded and consistent with the company's market position as an established real estate developer in Denmark. Technically, the site uses modern web technologies such as JavaScript, CSS, and HTML5, with some performance and mobile optimization. However, there is a lack of visible privacy and cookie policies, and no WHOIS data was found, which slightly impacts trustworthiness. Security posture is moderate, with no detected security headers and no visible incident response or vulnerability disclosure information. Overall, the site is safe and professional but could improve transparency and security practices.

B

Bonava

bonava.de

60

Bonava is a large real estate developer operating nationwide in Germany, specializing in the development and sale of newly built houses and condominiums. The website targets prospective home buyers looking for new residential properties across Germany. The company presents itself with a professional and consistent brand image, supported by a well-structured and visually appealing website. The content is relevant and focused on real estate offerings, with clear navigation and good mobile optimization. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Tag Manager and Azure App Insights, along with OneTrust for cookie management. While the site uses HTTPS and includes Google site verification, explicit security headers and detailed security policies are not evident in the provided content. The site shows moderate performance and basic accessibility features. From a security perspective, the website demonstrates basic best practices but lacks visible security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious patterns were detected, and the domain appears legitimate based on WHOIS data. Privacy compliance is limited due to the absence of explicit privacy and cookie policies in the analyzed content. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced transparency in privacy, security policies, and compliance documentation to improve user trust and regulatory adherence.

B

Bonava

bonava.se

59

Bonava is a Swedish real estate developer specializing in new residential construction and community building. The company positions itself as a creator of new homes and vibrant living spaces, targeting home buyers and residents in Sweden. The website reflects a professional and consistent brand image with good content quality and clear messaging about their services. Technically, the site uses modern web technologies including JavaScript, Google Tag Manager, and OneTrust for cookie management, with moderate performance and good mobile optimization. Security posture is moderate with HTTPS likely enabled but lacking explicit security headers and published security policies. Privacy compliance is basic, with no explicit privacy or cookie policies detected in the provided content. Overall, the domain WHOIS data was not found for the exact queried subdomain, but the website content and external trust signals indicate a legitimate and established business. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and cookie policies, and adding vulnerability disclosure information to improve trust and compliance.

S

Southern California Eagles

seahorsesoccer.com

60

Southern California Eagles is a small, Christian-focused non-profit soccer organization established in 1983, offering youth and competitive soccer programs, camps, and international outreach. The website is built on Squarespace, featuring modern design and good mobile responsiveness, but lacks comprehensive privacy and cookie policies. Security posture is strong with HTTPS and HSTS enabled, though additional security headers and incident response information are absent. The missing WHOIS data raises concerns about domain registration legitimacy, but the active social media presence and consistent branding support the organization's credibility. Strategic improvements include adding privacy and cookie policies, enhancing security headers, and publishing incident response contacts to improve trust and compliance.

A

Australian Sports Commission

ais.gov.au

66

The Australian Sports Commission (ASC) website serves as the official online presence of the Australian Government agency responsible for supporting and investing in sport at all levels. The site targets athletes, sports organizations, and the general public interested in sports development within Australia. It provides resources, information, and support aligned with its government mandate. The website uses modern web technologies including Next.js and React, hosted partially on Microsoft Azure Blob Storage for assets, ensuring a contemporary digital infrastructure. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured content. Security posture is solid with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and explicit privacy and cookie policies indicates room for improvement. The WHOIS data shows the domain is managed by the official Australian domain authority (auDA) with privacy protections, consistent with government domain management practices. Overall, the site is professional, trustworthy, and aligns well with its government entity status.

F

FLOWBOX s.r.o.

flowbox.com

72

FLOWBOX s.r.o. is a Czech-based company specializing in autonomous energy management and optimization solutions for industries, buildings, and cities. Their flagship product, FLOWBOX EMOS, integrates energy data intelligence, microgrid management, and advisory services to help clients reduce energy costs by up to 50%, improve energy resilience, and reduce CO2 emissions. Recognized by Gartner and holding ISO 27001 certification, FLOWBOX positions itself as a trusted vendor in the energy management software market. The company targets industrial clients, municipalities, and building managers, offering tailored solutions with quick ROI and scalable implementation. Technically, the website is built on the Webflow platform, leveraging modern JavaScript libraries such as GSAP for animations, Swiper.js for sliders, and DotLottie for interactive graphics. The site is well-optimized for mobile devices, features clear navigation, and includes GDPR-compliant cookie consent mechanisms. Security practices include HTTPS enforcement and ISO 27001 certification, though HTTP security headers are not explicitly detected. The presence of Cloudflare Turnstile captcha enhances form security. The security posture is strong overall, with no evident vulnerabilities or exposed sensitive data. However, the absence of WHOIS registration data for the domain www.flowbox.com is a notable anomaly that slightly reduces trustworthiness. The website content is professional, comprehensive, and safe for general audiences, with no adult or questionable content detected. Strategic recommendations include adding security headers, publishing a security.txt file, and providing explicit incident response contacts to further enhance trust and compliance. Overall, FLOWBOX demonstrates a mature digital presence with strong business credibility and technical implementation, serving a niche but critical market segment in energy management and sustainability.

The Lottery Office, operated by Global Players Network Pty Ltd, is a government regulated Australian online lottery platform that enables Australians and New Zealanders to participate in major international lotteries such as US Powerball, Mega Millions, EuroMillions, and others. The business model involves selling tickets into their own government-approved lotteries and purchasing matching tickets in overseas lotteries, ensuring legitimacy and compliance. The website is professionally designed, mobile optimized, and provides comprehensive user support and clear business information, positioning it as a trusted market player in the online lottery sector. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, Braze SDK, and AppsFlyer for analytics and marketing. It uses Typekit fonts and asynchronous script loading to optimize performance. The site is secured with HTTPS and implements strong security headers, reflecting a mature digital infrastructure. The website is accessible, SEO optimized, and provides a good user experience with clear navigation and relevant content. From a security perspective, the site demonstrates good practices such as encrypted connections, secure forms, and no visible vulnerabilities or exposed sensitive data. However, there is no explicit security policy or vulnerability disclosure program published, which could enhance transparency and trust. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms and GDPR compliance indicators. Overall, the website presents a low risk profile with strong business credibility and technical maturity. The absence of WHOIS data due to privacy protection is typical for this business type and does not detract from its legitimacy. Strategic recommendations include publishing a dedicated security policy, implementing a vulnerability disclosure program, and enhancing transparency on data retention and accessibility compliance.

S

Stoelting Foodservice

stoeltingfoodservice.com

62

Stoelting Foodservice is a specialized manufacturer of frozen dessert machines, including soft-serve ice cream, frozen yogurt, custard, gelato, and beverage dispensers. The company operates as a brand under the larger Vollrath Companies umbrella, positioning itself as a reputable provider in the foodservice equipment manufacturing sector. Their website reflects a professional and consistent brand image, targeting commercial foodservice operators such as restaurants, convenience stores, and amusement parks. Technically, the site is built on the Kentico CMS platform, employs modern web technologies, and integrates privacy and analytics tools such as OneTrust, Google Analytics, and Microsoft Clarity. Security posture is strong with HTTPS and security headers properly configured, although explicit security policies and incident response information are not publicly available. The absence of WHOIS registration data for the domain is a notable concern, potentially indicating privacy protection or data retrieval issues, which slightly reduces domain trustworthiness. Overall, the website is well-designed, compliant with privacy regulations, and serves its business purpose effectively.

T

The Vollrath Company, LLC

vollrathcompany.com

62

The Vollrath Company, LLC is a well-established manufacturing business with a history dating back to 1874. It specializes in commercial cooking and serving equipment, OEM manufacturing solutions, medical products, and cleaning products. The company operates multiple subsidiaries and brands, positioning itself as a leader in the commercial foodservice and manufacturing sectors. The website reflects a professional and consistent brand image with good content quality and clear navigation aimed at commercial clients and partners. Technically, the website uses modern web technologies including JavaScript frameworks, Google Tag Manager, Microsoft Clarity for analytics, and OneTrust for cookie consent management. It is hosted with Amazon Registrar and uses AWS DNS services. The site is mobile optimized and has good SEO and accessibility basics, though some improvements could be made. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks published privacy policies, terms of service, security policies, and incident response contacts. No critical vulnerabilities or suspicious patterns were detected, but adding these compliance and security documents would improve trust and regulatory adherence. Overall, the website is professional and trustworthy with moderate technical maturity and a solid business foundation. Strategic improvements in privacy and security documentation would enhance compliance and user trust.

T

The Vollrath Company, LLC

vollrathfoodservice.com

62

The Vollrath Foodservice website represents a large, established company specializing in commercial kitchen equipment and foodservice supplies. The company offers a broad product range and maintains multiple subsidiaries and partner companies, positioning itself as a leader in the hospitality sector. The website is professionally designed with comprehensive content targeting commercial foodservice businesses, dealers, and consultants. Technically, the site uses modern web technologies including Kentico CMS, Google Tag Manager, and OneTrust for privacy compliance, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and a formal security policy is absent. The lack of WHOIS data for the domain is a notable concern, potentially indicating a subdomain or registration anomaly, but the overall site content and branding suggest legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to strengthen trust.

U

United Tables by Zwiesel

united-tables.de

57

United Tables by Zwiesel is a specialized e-commerce platform focused on providing modern and high-quality tableware products such as glassware, cutlery, crockery, and table accessories primarily for gastronomy businesses including restaurants, hotels, and bars. The website is well-branded and professionally designed, reflecting a consistent and trustworthy image aligned with its parent company Zwiesel Glas. Technically, the site employs modern web technologies, is mobile-optimized, and uses Cloudflare for DNS and likely CDN services, ensuring good performance and security. Privacy and cookie policies are clearly stated with consent mechanisms in place, demonstrating compliance with GDPR requirements. However, explicit contact information and security policies such as incident response or vulnerability disclosure are not publicly available, which could be improved to enhance trust and transparency. Overall, the website presents a strong market position in the hospitality sector with a good security posture and user experience.

F

Fulltrack AI | A.I. Ball Tracking & Analytics for Cricket

fulltrack.ai

58

The website www.fulltrack.ai is hosted on the Wix platform and utilizes Wix's Thunderbolt framework along with JavaScript libraries such as Google Tag Manager and Microsoft Clarity for analytics and tracking. The site content is minimal and primarily consists of technical scripts and styles, with no visible business descriptive content or contact information. The absence of WHOIS data and registrant information limits the ability to verify domain legitimacy and business credibility. No privacy or cookie policies were found, and no security headers or advanced security configurations are evident, indicating a low security posture. Overall, the site appears to be in an early or incomplete stage, lacking essential business and compliance information.