Security Directory

C

CIG

cig-architecture.com

51

CIG is a specialized manufacturing and construction company pioneering complex 3D-formed steel constructions, leveraging over 50 years of experience and innovative shipbuilding production techniques. The company targets architects and artists seeking advanced steel shaping solutions, positioning itself as a leader in this niche market. The website reflects a medium-sized enterprise with a professional digital presence built on Drupal 11, incorporating modern web technologies and multimedia content to showcase projects and capabilities. Security posture is adequate with HTTPS and CAPTCHA protections, though improvements in DNSSEC and security headers are recommended. Privacy policies exist but lack comprehensive cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, supporting the company's market position.

S

SidePanda Inc.

sidepanda.com

57

SidePanda Inc. operates a suite of Shopify apps focused on appointment bookings, split payments, and waiver e-signatures, targeting Shopify merchants globally. The company positions itself as a trusted provider with over 3000 Shopify stores using its solutions, offering priority support and multi-country language support. The business model is SaaS-based, leveraging Shopify's app ecosystem for distribution and monetization. Technically, the website is built on Webflow, integrates Google Analytics, Google Tag Manager, and Crisp Chat for analytics and customer engagement. The site is mobile optimized with good SEO practices and moderate performance. Hosting is via Webflow's CDN, ensuring reliable delivery. However, accessibility features are basic and security headers are missing. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure. The lack of security headers and cookie consent mechanisms are notable gaps. WHOIS data is missing, which raises concerns about domain legitimacy and age, though the website content and Shopify app presence support business credibility. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, improved security headers, and transparent domain registration information to strengthen trust and compliance.

T

Tishman Speyer

tishmanspeyer.com

74

Tishman Speyer is a globally recognized real estate company specializing in the development, investment, and management of diverse property portfolios including commercial, residential, mixed-use, and life science sectors. The company emphasizes community building and innovation, integrating technology and local neighborhood engagement into its projects. Their market position as a large enterprise is supported by a professional and content-rich website that clearly communicates their services and global reach. Technically, the website leverages modern frameworks such as Next.js and React, and integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight Tag. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs robust security headers, and uses a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement in transparency and security maturity. Overall, the website presents a low-risk profile with strong business credibility and technical implementation. Strategic recommendations include enhancing security transparency, publishing incident response and vulnerability disclosure information, and maintaining regular audits of third-party scripts to sustain security posture.

A

AEW

aew.com

70

AEW is a leading global real estate investment management firm with over 40 years of experience managing $82 billion in assets across North America, Europe, and Asia Pacific. The company serves institutional investors with a broad range of investment strategies including core, core plus, opportunistic, and real estate securities. AEW operates through multiple offices worldwide and is affiliated with Natixis Investment Managers, enhancing its market credibility and global reach. The website reflects a professional and comprehensive digital presence with clear navigation, rich content, and strong branding. Technically, the website employs modern web technologies including Google Analytics, LinkedIn Insight Tag, and Font Awesome icons. It supports HTTPS with anonymized IP tracking for privacy and includes a cookie consent mechanism compliant with GDPR. The site is mobile optimized and accessible, providing a good user experience. However, no explicit CMS or hosting provider information was detected. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were found in the analysis. The WHOIS data for the domain is unavailable, which is unusual and slightly reduces trust, but the professional site and corporate affiliations mitigate concerns. Overall, AEW's website demonstrates a mature digital presence suitable for its enterprise scale and industry. Strategic improvements in security transparency and WHOIS data verification are recommended to enhance trust and compliance.

S

SelectLeaders

selectleaders.com

73

SelectLeaders operates as a specialized commercial real estate job network, providing a platform for job seekers and employers within the commercial real estate industry. The website offers services such as job search, resume uploads, and job postings across multiple real estate associations, positioning itself as a market leader in this niche. The affiliation with Bisnow enhances its credibility and market reach. Technically, the site employs modern web technologies including Laravel Livewire, Alpine.js, and integrates analytics tools like Google Analytics and Microsoft Clarity, indicating a mature digital infrastructure. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS, uses CSRF tokens, and implements cookie consent mechanisms, but lacks explicit security headers and a public security policy or incident response contacts. The absence of WHOIS registration data is a notable anomaly that slightly reduces trustworthiness but does not detract significantly from the overall legitimacy given the professional presentation and business context. Overall, the site demonstrates a solid security posture and compliance with privacy regulations, though improvements in transparency and security headers are recommended.

L

Lietuvos nacionalinis kultūros centras

lnkc.lt

48

Lietuvos nacionalinis kultūros centras (LNKC) is a Lithuanian governmental cultural institution dedicated to preserving and promoting national culture, folklore, and heritage. The website serves as a portal for cultural information, events, publications, and archives, targeting cultural organizations, folklore enthusiasts, and the general public interested in Lithuanian traditions. The institution holds a significant position in Lithuania's cultural landscape, providing authoritative resources and organizing national cultural events. Technically, the website uses a custom CMS (Smart Web) with a technology stack including jQuery, Bootstrap, and Google Analytics. While the site is mobile-optimized and well-structured, it uses outdated JavaScript libraries that may pose security risks. Security posture is moderate, with HTTPS implied but no visible security headers and outdated libraries. Privacy compliance is basic with cookie consent and privacy policy present, but no terms of service or incident response information is found. Overall, the website is professional and trustworthy but would benefit from technical and security improvements.

B

BĮ Klaipėdos miesto globos namai

kgnamai.lt

46

BĮ Klaipėdos miesto globos namai is a Lithuanian municipal social care institution focused on providing services to elderly individuals and the local community. The organization is actively involved in EU-funded projects such as the Interreg VI-A Latvia-Lithuania Programme, demonstrating engagement in regional cooperation and social welfare initiatives. The website serves as an information portal offering news, contact details, service descriptions, and community engagement opportunities. Technically, the website is built on WordPress with a modern theme and uses common web technologies including jQuery, Google Analytics, Facebook SDK, and Leaflet.js for interactive maps. The site is mobile-optimized, accessible, and implements GDPR-compliant cookie consent mechanisms. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses cookie consent to comply with privacy regulations. However, it lacks explicit security headers and dedicated security or incident response policies on the site. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable due to query limits, but the domain appears legitimate and consistent with a public institution. Overall, the website presents a trustworthy and professional digital presence for a government social care entity. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and compliance maturity.

F

FILLIX

fillix.lt

43

FILLIX is a Lithuanian insurance brokerage company providing insurance, reinsurance, and risk management services to both businesses and private individuals. The website positions the company as a professional broker focused on tailored insurance solutions and risk management. The company appears to be relatively young, founded around 2020, and targets the Lithuanian market primarily. The website is built on WordPress using popular plugins such as Elementor, Yoast SEO, and Revolution Slider, indicating a modern and maintainable technical infrastructure. The site is well-structured with multilingual support and SEO optimization, enhancing its digital presence. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, showing awareness of GDPR compliance. However, no WHOIS data is available to verify domain registration details, which limits trust verification. No explicit security headers or incident response information are present, suggesting room for improvement in security posture. Overall, the website is professional and functional but would benefit from enhanced transparency and security practices.

P

Penki

penki.lt

67

Penki is a Lithuanian telecommunications provider specializing in internet and smart TV services, including fiber optic, 4G, and 5G internet solutions. The company targets both private customers and businesses, offering innovative and technologically advanced services. The website reflects a medium-sized enterprise with a professional online presence, leveraging modern web technologies such as WordPress and Elementor. The technical infrastructure includes multiple analytics and marketing tools, indicating a mature digital marketing strategy. Security posture is generally good with HTTPS enabled and cookie consent implemented, though explicit security policies and incident response information are absent. The lack of WHOIS data limits full domain trust assessment, but the website content and branding suggest legitimacy. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and improving accessibility features to strengthen compliance and user trust.

M

MPS-Yhtiöt

mpsbaltic.lt

61

MPS Baltic is a Lithuanian-based company specializing in executive search and HR services, operating as part of the MPS-Yhtiöt group. The website presents a professional and modern digital presence built on HubSpot CMS, offering services such as executive search, competency assessments, training, and outplacement. The company targets businesses and candidates in Lithuania, positioning itself as a leader in direct search within the local market. The website includes GDPR-compliant privacy and cookie policies, a contact form with reCAPTCHA Enterprise protection, and social media presence on LinkedIn. However, WHOIS data is unavailable, limiting domain trust verification. The technical infrastructure is modern, with good security practices observed, though some security headers could be improved. Overall, the site is well-designed, mobile-optimized, and provides a trustworthy user experience.

M

MB, RINKOS SRAUTAS

ikiwi.lt

47

iKiwi Lietuva, legally MB, RINKOS SRAUTAS, is a small digital marketing agency based in Vilnius, Lithuania, founded around 2022. The company specializes in digital marketing services including Facebook and Google advertising, SEO, email marketing, and website development. Their market position is focused on local businesses seeking to enhance their online presence and sales through targeted digital campaigns and SEO strategies. The website is professionally designed with consistent branding and clear navigation, targeting Lithuanian-speaking business clients. The company maintains active social media profiles on Facebook and LinkedIn, enhancing trust and outreach. Technically, the website is built on WordPress using the Flatsome theme and several plugins such as Yoast SEO, Contact Form 7, and Simple Google reCAPTCHA. It integrates Google Analytics, Google Tag Manager, Facebook Pixel, and MailerLite for marketing automation and analytics. The site is mobile-optimized and performs moderately well, with good SEO practices implemented. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent banners, though security headers are not explicitly detected. The security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and a vulnerability disclosure policy suggests room for improvement. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Contact information is clearly presented, including a contact email and physical address. Overall, iKiwi Lietuva presents a trustworthy and professional digital marketing service provider with a modern web presence and good security hygiene. The lack of WHOIS data limits domain trust analysis, but the website content and external signals support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving accessibility features to further strengthen compliance and security posture.

V

Vedliai

vedliai.lt

61

Vedliai is a Lithuanian educational technology company specializing in an informatics learning system for grades 1 through 10. The platform is widely adopted in Lithuania, serving over 60% of schools, and has received international recognition including the World Summit Awards 2023. The website presents a professional and content-rich digital presence, targeting teachers and schools with educational content, training, and digital learning tools. Technically, the site is built on Hostinger's Website Builder using modern frameworks like Astro, with integrations for Google Analytics and Facebook Pixel for marketing and analytics. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is unavailable due to query limits, limiting domain registration trust verification. Overall, the site demonstrates a mature digital infrastructure and strong market positioning in the Lithuanian education sector.

A

Ancora Chile

ancorachile.cl

44

Ancora Chile is a well-established technology partner company founded in 1984, specializing in brand representation, project development, technical services, and product commercialization primarily in the marine and aquaculture sectors within Chile and parts of Latin America. The company has a solid market position with exclusive representation of 14 leading brands and a medium-sized operational footprint. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with common plugins like Revolution Slider and uses Google Analytics for tracking. However, some technical aspects such as outdated jQuery and missing security headers present moderate security risks. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information is available mainly through a contact form, with no direct emails or phone numbers visible. Overall, the website is functional and credible but would benefit from enhanced security and privacy practices.

B

BOTA Technik

botatechnik.com

44

BOTA Technik is a medium-sized Polish company specializing in marine propulsion services and building, with a strong focus on servicing all propulsion elements from engines to propellers, including specialized bow thruster services. The company serves marine industry professionals and offshore energy sectors, offering a broad range of services and products such as marine engines, propulsion systems, thruster services, stern tube seal services, and ship automation solutions. The website reflects a professional and consistent brand image with good content quality and clear navigation, targeting an international audience with multilingual support. Technically, the site is built on WordPress with Elementor and integrates modern web technologies and SEO best practices, though performance is moderate and some security headers could be improved. Security posture is good with HTTPS enabled and no visible critical vulnerabilities, but DNSSEC is not enabled and there is no security.txt or vulnerability disclosure policy. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms of service pages. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is trustworthy and professional but could benefit from enhanced privacy and security policies.

AART ELECTRONICS is a French company founded in 2004 specializing in the centralization and outsourcing of procurement for the Ministry of Defense. With over 30 years of leadership experience, it has established a recognized presence in the French defense sector, providing logistics chain management and technical R&D solutions. The company operates from Neuilly Sur Seine and Croissy Sur Seine, emphasizing quality, competitiveness, and reliability. The website reflects a professional business with certifications such as ISO 9001, EN 9120, and ISO 14001, signaling commitment to quality and environmental standards. Technically, the site is built on WordPress using the Avada theme and includes modern tools like Google Analytics and reCAPTCHA, indicating a moderate level of digital maturity. Security posture is good with HTTPS and CAPTCHA protections, but lacks published privacy and terms policies, which are critical for compliance and trust. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is functional and professional but could improve transparency and compliance documentation.

A

Archimedict B.V.

archimedict.nl

53

Archimedict B.V. is a Dutch technology company founded in 2005, specializing in the development and maintenance of online environments. Their services include front-end and back-end web development, data integration, open source CMS implementations, and consultancy. The company serves notable clients such as KNVB and voetbal.nl, positioning itself as a trusted partner in the Dutch digital services market. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive business information. Technically, the website employs modern JavaScript libraries, Google Analytics, and service workers for progressive web app capabilities. Hosting is provided by Oxilion B.V., a reputable Dutch hosting provider. While the website uses HTTPS and DNSSEC, it lacks explicit security headers and published security policies, which are areas for improvement. Privacy compliance is strong, with a detailed privacy policy and cookie consent mechanism aligned with GDPR requirements. The security posture is solid but could be enhanced by implementing additional HTTP security headers and publishing incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, resulting in a moderate to high trust level. Strategic recommendations include strengthening security headers, publishing a security policy, enhancing accessibility, and improving SEO metadata completeness to further solidify the company's digital maturity and trustworthiness.

C

CIG

centralindustrygroup.com

51

CIG is a specialized company pioneering complex 3D-formed steel constructions, leveraging over 50 years of experience and innovative shipbuilding production methods applied to construction. Their market position is strong within the niche of architectural and artistic steel fabrication, serving architects, artists, and construction professionals globally. The website reflects a medium-sized enterprise with a clear focus on craftsmanship and innovation in steel forming. Technically, the site is built on Drupal 11, uses modern web technologies including video embedding and Google Analytics, and is hosted with a reputable registrar. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks DNSSEC and security headers, which are recommended for enhancement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-structured, supporting the company's business credibility.

D

Damen Marine Components

vdvms.com

53

Damen Marine Components (DMC) is a specialized manufacturer and service provider of marine vessel propulsion and maneuvering systems, including rudders, steering systems, anchors, and chains. The company operates globally with multiple production, service, and sales locations, primarily serving the maritime transportation and manufacturing sectors. The website reflects a professional B2B business model with a strong focus on marine components and vessel performance improvement. Technically, the site is built on WordPress with modern plugins and tracking tools, including Mapbox for interactive global office mapping. Security posture is solid with HTTPS and cookie consent, though lacks some advanced security headers and explicit security policies. Privacy compliance is basic, with no explicit privacy or terms of service pages found. The WHOIS data is missing, which raises some concerns about domain registration transparency but does not detract from the professional presentation and detailed contact information provided. Overall, the site is well-structured, SEO optimized, and provides comprehensive contact and location information, supporting a high level of business credibility.

Wortelboer is a well-established family business specializing in the manufacturing and supply of anchors, anchor chains, and connecting parts for the maritime industry, including commercial shipping, yachting, and offshore sectors. With over 70 years of experience and a strong presence in Rotterdam, the company offers worldwide delivery and maintains a significant stock to ensure fast and reliable service. The website reflects a professional and consistent brand image, supported by ISO certifications and class certificates from major classification societies, reinforcing its market credibility. Technically, the website employs modern web technologies such as JWPlayer for multimedia, Google Tag Manager and Analytics for tracking, and reCAPTCHA for form security. The site is mobile-optimized with good navigation and SEO practices, although accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms, but lacks explicit security headers and public security policies or incident response information. No vulnerabilities or suspicious content were detected. Privacy compliance is addressed with a cookie consent banner and privacy policy, though GDPR compliance indicators could be more explicit. Overall, Wortelboer presents a trustworthy and professional online presence with a solid business foundation. Strategic improvements in security policies, accessibility, and transparency would further enhance its risk posture and user trust.

D

DESAmedia

desamedia.lt

46

DESAmedia is a Lithuanian technology service provider specializing in the creation and planning of innovative digital products and unique web programming solutions for businesses. The company targets businesses seeking tailored web development, ecommerce platforms, and digital advertising services. Their website demonstrates a professional and consistent brand presence, supported by client testimonials and recognizable client logos, indicating a trusted market position. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and secure form handling, though additional security headers and explicit security policies could enhance their stance. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website and business presence suggest a legitimate and professional small-sized technology company with room for technical and security improvements.

Epas.lt is a Lithuanian digital services provider specializing in website creation, mobile application development, advertising services, graphic design, SEO optimization, and hosting. The website presents a basic but functional online presence targeting businesses or individuals seeking digital solutions. The market position appears local and small-scale with no explicit information on company size or history. The technical infrastructure includes integration with Google Analytics and Facebook Pixel for marketing and tracking purposes, but lacks advanced security headers and privacy policies. The website is accessible without any WAF or blocking mechanisms, but the absence of WHOIS data limits the ability to fully verify domain legitimacy. Security posture is moderate with room for improvement in privacy compliance and security best practices.

E

ECOVIS ProventusLaw

ecovis.lt

67

ECOVIS ProventusLaw is a Lithuania-based international law firm specializing in legal, tax, audit, and corporate services with a strong focus on fintech, AML compliance, and data protection. The firm is part of the global ECOVIS consulting group and holds top-tier rankings from reputable legal directories such as The Legal 500 and Chambers and Partners. Their services target businesses and financial institutions operating in Europe, offering comprehensive support in regulatory and corporate matters. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential analytics and consent management tools such as Google Analytics, Google Tag Manager, and Cookiebot. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS and employs consent mechanisms for cookies, but lacks explicit security headers and dedicated security policy pages. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the professional presentation and consistent branding support legitimacy. Overall, the website presents a strong business and technical profile with minor areas for security enhancement. Strategic recommendations include implementing comprehensive security headers, publishing incident response policies, and maintaining regular audits of third-party scripts to sustain trust and compliance.

P

Pension Real Estate Association

prea.org

68

The Pension Real Estate Association (PREA) is a well-established non-profit trade association serving the global institutional real estate investment industry. It caters primarily to institutional investors such as pension funds, endowments, foundations, insurance companies, and investment advisory firms. PREA offers a comprehensive suite of services including industry research, conferences, publications, webinars, and awards programs, positioning itself as a key resource and networking hub within the real estate investment sector. The website reflects a professional and consistent brand image with rich, relevant content targeted at its institutional audience. Technically, the website is built on Mura CMS 7.0 and leverages modern web technologies including jQuery, Bootstrap, Google Analytics, Google Tag Manager, and Google reCAPTCHA for security. The site is mobile optimized with good SEO and accessibility features, though some accessibility improvements could be made. Performance is moderate, and the site uses HTTPS with a strong SSL configuration, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and use of CAPTCHA on forms. However, the absence of security headers and a cookie consent mechanism indicates room for improvement in compliance and security hardening. The lack of WHOIS data limits domain trust verification, though the professional presentation and industry presence support legitimacy. Overall, the site maintains a solid security posture but should enhance privacy compliance and security headers to strengthen trust. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, publishing security policies, and conducting regular security audits. These steps will enhance the site's security posture, compliance, and user trust, supporting PREA's role as a trusted industry association.

N

National Council of Real Estate Investment Fiduciaries

ncreif.org

71

NCREIF is a well-established US-based institutional real estate association founded in 1982, providing comprehensive data products, investment performance indices, educational programs, and industry events to its members. The website reflects a professional and consistent brand presence targeting institutional investors and real estate professionals. Technically, the site uses modern web technologies including Google Analytics and Tag Manager, with moderate performance and good mobile optimization. Security posture is moderate but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is longstanding and consistent with the organization's claims, enhancing trustworthiness.

S

Sinoptik

sinoptik.ua

66

Sinoptik.ua is a well-established Ukrainian weather forecasting website providing detailed weather information for over 29,000 localities in Ukraine and more than 104,000 cities worldwide. The site targets residents and visitors seeking reliable weather forecasts, offering 7-day and 10-day detailed forecasts. Its business model is primarily advertising-supported, partnering with FORECA for meteorological data. Technically, the site employs modern JavaScript frameworks and integrates multiple ad networks and tracking services, ensuring a responsive and SEO-optimized user experience. Security posture is solid with HTTPS enforced, though some security headers are missing and no explicit security policy or vulnerability disclosure is present. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism despite tracking scripts. Overall, the site is professional, trustworthy, and technically mature, with room for improvement in security headers and privacy transparency.

H

Hosting Ukraine LLC

h2o.best

56

The website h2o.best represents a residential real estate project named ЖК H2O, developed by Stolitsa Group, a well-established real estate developer in Kyiv, Ukraine. The project emphasizes a unique location with extensive waterfront, modern amenities, and a secure, private living environment. The site targets homebuyers and investors interested in comfort-class housing with business-class features. Technically, the site uses a modern JavaScript stack including jQuery, Swiper, and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. Hosting is provided by Hosting Ukraine LLC, consistent with the business location. Security posture is adequate with HTTPS enabled and secure forms, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is transparent and consistent with the business claims, indicating legitimacy.

R

Realist Digital

realist.digital

44

Realist Digital is a small digital agency focused on providing digital solutions tailored for the real estate sector. The website is primarily in Ukrainian and presents basic information about the company’s services with a modern but simple design. The company was founded around 2014, consistent with the domain registration date. The site uses common JavaScript libraries and Google Analytics for tracking visitor behavior. However, it lacks critical compliance and transparency features such as privacy policies, cookie consent mechanisms, and contact information, which limits trust and user confidence. Technically, the site is moderately optimized but could improve in mobile responsiveness and accessibility. Security posture is minimal with no detected security headers or advanced protections.

U

UAB INFOFACE

infoface.lt

40

UAB INFOFACE is a Lithuanian small-sized technology company specializing in professional web development, branding, and digital marketing services. Their website showcases a comprehensive portfolio of services including website creation, e-commerce development, content management systems, SEO, social media marketing, and advertising solutions. The company targets businesses and organizations seeking to establish or improve their online presence. The website is well-structured, visually consistent, and provides detailed contact information and client testimonials, indicating a credible market position within Lithuania. Technically, the website employs a traditional tech stack with jQuery 1.11.3, Google Analytics, Google Tag Manager, and Google Maps API integrations. While the site is mobile-optimized and SEO-friendly, it uses an outdated jQuery version and lacks modern security headers, which could pose security risks. Performance is moderate, and accessibility features are basic. No CMS platform is explicitly identified. From a security perspective, the site uses HTTPS as indicated by the base URL, but no explicit security headers were detected. There is no visible privacy or cookie policy, nor any incident response or vulnerability disclosure information, which indicates compliance gaps especially under GDPR. No forms collecting personal data were found on the main page, reducing immediate risk exposure. The WHOIS data is unavailable due to query limits or privacy protection, limiting domain registration trust analysis. Overall, the website is functional, professional, and credible for its business scope but requires improvements in privacy compliance, security best practices, and technology updates to enhance its security posture and regulatory adherence.

A

ASSITEJ International

assitej-international.org

59

ASSITEJ International is a globally recognized non-profit association dedicated to Theatre & Performing Arts for Children & Young People. Founded in 2009 and based in Italy, it serves as a network uniting theatres, organizations, and individuals worldwide to advocate for the artistic and educational rights of children. The organization offers key services including advocacy, events, awards, and professional networking, positioning itself as a leader in its niche cultural sector. Technically, the website is built on WordPress with modern SEO and accessibility features, supported by Google Analytics and Tag Manager for performance insights. Security posture is solid with HTTPS and bot protection via reCAPTCHA Enterprise, though improvements are recommended in DNSSEC deployment and formal security policies. Overall, the site demonstrates good professionalism and moderate trustworthiness, with room for enhanced privacy compliance and security transparency.

F

FoxiAD

foxiad.lt

42

FoxiAD is a Lithuanian internet marketing and web development agency offering services such as website creation, e-commerce development, SEO, and brand creation. The company targets businesses seeking to establish or improve their online presence with a focus on marketing-driven web solutions. The website is built on WordPress with a modern tech stack including jQuery and Owl Carousel, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and includes customer testimonials enhancing trust. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy policies. WHOIS data is unavailable due to query limits, limiting domain trust analysis. Overall, FoxiAD presents as a professional small business with room for improvement in compliance and security transparency.

S

SiteGuarding CY Ltd.

siteguarding.com

53

SiteGuarding CY Ltd. is a Cyprus-based company specializing in comprehensive website security solutions including antivirus scanning, malware removal, firewall protection, website backup, and blacklist removal services. The company targets website owners and businesses using popular CMS platforms such as WordPress, Joomla, Drupal, Magento, and others. With over 25,000 websites protected and a client base of approximately 450,000 users, SiteGuarding positions itself as a reliable and professional security service provider in the technology sector. The website content is well-structured, informative, and supported by external trust signals such as TrustPilot reviews. Technically, the website employs a moderately modern technology stack including jQuery, Google Analytics, and Google Tag Manager. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is strong with HTTPS enforced and privacy compliance evident through cookie consent banners and a comprehensive privacy policy. However, the absence of explicit security headers and direct security contact information are areas for improvement. The WHOIS data is notably missing, with the raw WHOIS query returning no match for the domain. This inconsistency raises some concerns about domain registration transparency but does not necessarily indicate malicious intent given the professional nature of the website and its services. Overall, the site demonstrates a solid security posture and business credibility but would benefit from enhanced transparency and security best practices. Strategic recommendations include implementing security headers, publishing an incident response policy with direct contact channels, and verifying domain registration details to improve trustworthiness and compliance.

MultiBriefs, operated by Multiview, Inc., is a media platform delivering targeted, industry-specific news briefs and exclusive articles across a wide range of industries. The website serves professionals and organizations seeking curated news content to support their business growth and industry knowledge. The business model centers on content publishing and subscription services, positioning MultiBriefs as a leader in business association news briefs. Technically, the site employs a modern tech stack including Bootstrap 5, jQuery, Google Analytics, and Adobe DTM, with ExpressionEngine CMS inferred from script references. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA on forms, but lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. Overall, the website is trustworthy and professionally maintained, with room for improvement in privacy compliance and security best practices.

Europos Parkas is a well-established non-profit open-air modern art museum located in Lithuania, founded in 1991. It offers a unique cultural experience with over 90 international sculptures and art installations across a large outdoor area. The institution targets tourists, art lovers, and educational groups, providing exhibitions, artist residencies, and visitor services including a restaurant and event spaces. The website reflects a modest digital presence with multilingual support and links to partner cultural sites. Technically, the site uses legacy technology (Microsoft FrontPage 6.0) and includes Google Analytics for visitor tracking. However, it lacks modern security features such as HTTPS enforcement and security headers, and no privacy or cookie policies are present, indicating gaps in compliance and security maturity. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site is functional but would benefit from modernization and improved security and privacy practices.

P

PERE

perenews.com

66

PERE is a specialized media platform focused on the private equity real estate sector, providing industry news, analysis, and subscription-based content to investment professionals and stakeholders. The website demonstrates a mature digital presence with a WordPress CMS, integrated analytics, and consent management tools, reflecting a moderate to advanced technical infrastructure. Security posture is generally good with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking. The absence of WHOIS registration data raises concerns about domain legitimacy, which should be addressed to enhance trust. Overall, the site is professional and functional but would benefit from improved transparency and security documentation.

P

Property Council New Zealand

propertynz.co.nz

66

Property Council New Zealand operates as a leading advocacy organization representing New Zealand's largest industry, property. The website presents a professional and comprehensive digital presence, offering membership services, advocacy information, events, research, and industry leadership content. The organization targets property professionals and stakeholders across New Zealand, positioning itself as a key influencer in shaping urban development and policy. Technically, the website is built on WordPress with modern plugins such as Elementor and WooCommerce, indicating a mature digital infrastructure. The site is mobile-optimized and includes standard SEO and accessibility features, though some accessibility aspects could be improved. Security posture is solid with HTTPS enforced and secure login forms, but lacks some advanced security headers and visible security policies. Privacy compliance is minimal with no explicit privacy or cookie policies detected, which is an area for improvement. The absence of WHOIS data for the domain raises concerns about domain registration transparency, though the website content and branding suggest legitimacy. Overall, the site is functional, professional, and secure but would benefit from enhanced privacy disclosures and domain registration transparency.

A

Asian Association for Investors in Non-Listed Real Estate Vehicles (ANREV)

anrev.org

61

ANREV is a well-established not-for-profit organization serving as a leading platform for investors in the Asia Pacific non-listed real estate sector. It provides comprehensive research, market data, standards, and events to support transparency and best practices in the industry. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to institutional investors and real estate professionals. Technically, the site employs modern analytics and tracking tools, including Google Analytics, Google Tag Manager, and Facebook SDK, while maintaining good privacy compliance with cookie consent and a detailed privacy policy. Security posture is solid with HTTPS enforced and secure login mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data limits domain registration trust analysis, but the overall professionalism and strategic partnerships support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and improving accessibility features.

A

Asia Pacific Real Assets Association Limited

aprea.asia

47

Asia Pacific Real Assets Association Limited (APREA) operates as a leading regional membership association focused on real assets in the Asia Pacific region. The organization provides advocacy, research, professional development, and networking services to real assets professionals and investors. APREA holds a strong market position as a key industry advocate and knowledge hub, supported by a professional website with comprehensive content and clear navigation. The website is built on Joomla CMS and integrates modern analytics and marketing tools such as Google Analytics, Hotjar, and LinkedIn Insight. Security posture is good with HTTPS enforced and reCAPTCHA implemented, though some security headers and cookie consent mechanisms could be improved. WHOIS data is privacy protected, limiting domain registration transparency but the website content and professional presentation support legitimacy. Overall, APREA demonstrates a mature digital presence aligned with its business objectives and target audience.

E

European Cloud Alliance

europeancloudalliance.com

56

The European Cloud Alliance is a Microsoft-supported community focused on promoting cloud adoption and policy advocacy across Europe. It serves businesses involved in the cloud value chain, aiming to increase trust and accelerate cloud usage. The website is professionally designed using WordPress with modern plugins and SEO optimizations, providing a good user experience and clear navigation. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the active and professional online presence. Security posture is generally good with HTTPS enforced, but lacks advanced security headers and incident response information. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is credible but would benefit from enhanced transparency and security practices.

J

Jeruzalės bendruomenės centras

jeruzalesbendruomene.lt

41

Jeruzalės bendruomenės centras is a local community center serving the Jeruzalė neighborhood and adjacent microdistricts in Vilnius, Lithuania. The organization focuses on community engagement, project implementation, and providing information and support to local residents. The website reflects a small non-profit entity with clear contact details, social media presence, and community-oriented content. Technically, the site is built on WordPress using modern plugins and libraries, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and privacy policies are lacking. The absence of WHOIS data limits domain trust analysis but the site content and contact information appear legitimate.

V

LIFE Viva Grass | Integrated planning tool for grassland ecosystem services

vivagrass.eu

42

The website vivagrass.eu represents the LIFE Viva Grass project, an EU co-financed environmental initiative focused on preserving high nature value grasslands through an integrated planning tool and ecosystem service approach. The project targets environmental planners and policy makers in the Baltic region, offering tools, educational content, and project results. Technically, the site is built on WordPress with a moderate tech stack including jQuery and Google Analytics. The site is accessible, mobile-optimized, and well-structured but lacks key privacy and security policies. Security posture is adequate with HTTPS and captcha usage but missing security headers and formal policies. Overall, the site is credible and professional but would benefit from enhanced privacy compliance and security hardening.

B

Balsių bendruomenė

balsiai.org

40

Balsių bendruomenė is a local community organization based in the Balsiai neighborhood of Vilnius, Lithuania. The website serves as a hub for community news, events, cultural heritage preservation, and local engagement activities. It targets residents and community members interested in active participation and local development. The organization operates as a non-profit entity, focusing on fostering community spirit and providing information about local initiatives. Technically, the website is built on WordPress CMS, utilizing common plugins such as Contact Form 7, Everest Forms, NextGEN Gallery, and Pojo Accessibility for enhanced user experience and accessibility. Google Analytics is integrated for visitor tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although performance is moderate. From a security perspective, the site enforces HTTPS and shows no exposed sensitive data or vulnerable libraries. However, it lacks explicit security headers and formal privacy or cookie policies, which are important for compliance and user trust. The WHOIS data is unavailable due to a malformed query response, which limits domain trust verification and slightly reduces overall credibility. Overall, the website is a well-maintained community portal with good content and technical implementation but would benefit from improved privacy compliance and enhanced security policies to strengthen trust and regulatory adherence.

T

Teatrų vaikams ir jaunimui asociacija ASITEŽAS

assitej.lt

38

Teatrų vaikams ir jaunimui asociacija ASITEŽAS is a Lithuanian non-profit association dedicated to promoting theater arts for children and youth. The website serves as an information hub for members, events, news, and international collaboration, notably linked with the global ASSITEJ network. The organization targets cultural professionals and young audiences, providing updates on festivals and activities. Technically, the site is built on WordPress with multilingual support and uses standard web technologies including jQuery and Google Analytics for visitor tracking. The site is accessible, mobile-optimized, and presents a professional design with clear navigation. Security-wise, the site enforces HTTPS and includes basic form validation and user tracking opt-out mechanisms. However, it lacks visible security headers, privacy and cookie policies, and incident response information, which are areas for improvement. WHOIS data is unavailable due to query limits, limiting domain trust analysis. Overall, the site is functional and credible but could enhance privacy compliance and security posture.

R

RETROVILLE

retroville.ua

65

RETROVILLE is a large lifestyle shopping and entertainment center located in Kyiv, Ukraine, offering a wide range of services including shopping, dining, entertainment, sports, and business center facilities. The website presents a modern, well-structured digital presence with good mobile optimization and user experience. It leverages popular analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, indicating a mature digital marketing strategy. Security posture is solid with HTTPS and CSRF protections, but lacks some advanced security headers and visible security policies. Privacy compliance is weak due to absence of privacy and cookie policies, which is a notable gap given the tracking technologies in use. WHOIS data confirms domain legitimacy and consistency with the business location and nature. Overall, the website is professional and credible but should improve privacy and security transparency to enhance trust and compliance.

S

Stolitsa Group

stolitsagroup.com

58

Stolitsa Group is a well-established Ukrainian real estate developer specializing in residential and commercial projects primarily in Kyiv. Founded in 2003, the company has built a strong market presence with over 136 buildings completed and a reputation for quality and reliability. Their business model focuses on property development and sales, targeting local buyers and investors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs a modern tech stack including jQuery, Swiper, Google Maps API, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and SendPulse. Hosting and DNS are managed via Cloudflare, enhancing performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks visible security headers and does not provide explicit privacy or cookie policies, which are critical for GDPR compliance. There is no published incident response or vulnerability disclosure information. The use of multiple third-party tracking scripts indicates extensive user tracking, which may raise privacy concerns. Overall, Stolitsa Group's website is professional and credible but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

C

Click Guardian

clickguardian.ai

56

Click Guardian is a UK-based SaaS company specializing in click fraud detection and protection for PPC advertising campaigns on Google Ads and Bing Ads. Positioned as a market leader in the UK, the company offers automated real-time monitoring and blocking of fraudulent clicks, targeting businesses seeking to protect their advertising budgets from competitors, bots, and malicious actors. Their service includes advanced features such as device fingerprinting, VPN/TOR/proxy detection, and multi-device support, delivered through a subscription model with tiered pricing and a free trial. Technically, the website is built using modern web technologies including Alpine.js, Statamic CMS, and is hosted on AWS infrastructure with DNS managed by Amazon Route 53. It integrates multiple analytics and marketing tools such as Google Analytics, Matomo, Facebook Pixel, and Crisp Chat for user engagement and tracking. The site is mobile optimized, fast loading, and SEO friendly, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS and employs Cloudflare Turnstile CAPTCHA to mitigate automated abuse. However, it lacks some advanced security headers and does not publish explicit security or incident response policies. The domain registration is privacy protected, which is common but slightly reduces transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, Click Guardian presents a professional and trustworthy online presence with a solid technical foundation and good security posture. Areas for improvement include implementing a cookie consent mechanism to enhance privacy compliance and publishing detailed security and incident response policies to build further trust with customers.

N

Navaltecnica

navaltecnica.it

62

Navaltecnica is an established Italian company specializing in naval plant engineering and marine anti-pollution solutions, operating since 1996. The company positions itself as a leader in Italy, providing technical consultancy, post-sales support, and product distribution to shipyards and operators in the maritime sector. Their website reflects a professional and consistent brand image, targeting industry professionals and businesses in the transportation sector. Technically, the website is built on WordPress with Elementor and integrates modern SEO and analytics tools, demonstrating a moderate to good level of digital maturity. Security-wise, the site enforces HTTPS, employs security headers, and uses a compliant cookie consent mechanism, although it lacks a dedicated security policy or incident response information. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements, with room for improvement in security transparency and accessibility.

T

Technava S.A.

technava.gr

55

Technava S.A. is a well-established Greek company founded in 1968, specializing in the supply, installation, and servicing of shipbuilding and industrial equipment. It serves a broad clientele including the Greek Shipping Industry and various industrial sectors such as power plants and oilfield industries. The company maintains a medium-sized workforce of highly skilled engineers and positions itself as a leading supplier and service provider in its market segment. The website reflects a professional digital presence with clear navigation, comprehensive service descriptions, and multilingual support. Technava demonstrates compliance with privacy regulations through detailed privacy and cookie policies and employs modern web technologies including WordPress, Google Analytics, and reCAPTCHA for security and analytics purposes. The presence of ISO 9001:2015 certification further reinforces its commitment to quality and trustworthiness.

S

Stone Marine Services

stonemarineservices.com

49

Stone Marine Services is a UK-based marine service and repair specialist established in 2013, providing comprehensive maritime industry solutions including propulsion, propeller repair, stern seal servicing, marine controls, and dynamic positioning. The company targets ferry operators, naval fleets, commercial, military, and luxury vessels worldwide, positioning itself as a dependable and OEM-trained service partner with a global operational footprint. Their business model focuses on operational support, emergency field service, dry dock assistance, and parts supply, supported by strategic partnerships with recognized marine component manufacturers. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, WPBakery Page Builder, and Slider Revolution. It integrates Google Analytics, Google Tag Manager, and Google AdSense for analytics and advertising. The site is mobile-optimized with good SEO practices but shows room for improvement in accessibility and performance tuning. Hosting details are not explicit but domain registration and DNS are managed by reputable providers. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protections. However, DNSSEC is not enabled, and several security headers are missing or not explicitly detected. There is no visible privacy policy, terms of service, or incident response information, which are critical for compliance and trust. Cookie consent is implemented, indicating some GDPR awareness. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website presents a professional and trustworthy front with solid business credibility but requires enhancements in privacy compliance, security policies, and technical security headers to strengthen its security posture and regulatory adherence.

D

Damen Marine Components

damenmc.com

57

Damen Marine Components (DMC) is a specialized manufacturer and service provider focused on marine vessel propulsion and maneuvering systems. As part of the larger Damen Shipyards Group, DMC operates globally with multiple production facilities, service centers, and sales offices across Europe, Asia, and the Americas. Their business model centers on B2B manufacturing, repair, and distribution within the maritime transportation sector. The website reflects a mature digital presence with comprehensive content, interactive maps of global locations, and multilingual support, targeting marine industry professionals and vessel operators. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, WPML for multilingual support, and Mapbox for interactive location mapping. It uses Google Analytics and Tag Manager for analytics and tracking, alongside GDPR-compliant cookie management. The site is mobile-optimized and employs standard web technologies including jQuery and Font Awesome icons. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses reCAPTCHA v3 for form protection. However, explicit security headers like CSP and X-Frame-Options are not clearly present, and no dedicated security policy or incident response information is published. The absence of a security.txt file and vulnerability disclosure page indicates room for improvement in transparency and security maturity. Overall, the site is professionally designed and trustworthy, with strong business credibility and compliance posture. The main risk lies in the lack of publicly available WHOIS data, which reduces domain transparency. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen trust and resilience.

C

Core77, Inc.

coroflot.com

57

Coroflot is an established online platform specializing in connecting design professionals with employers through job postings and portfolio hosting. The site targets designers and companies seeking creative talent, offering services such as job listings, portfolio showcases, and a design salary guide. The platform is positioned as a niche leader in the design employment market, supported by its parent company Core77, Inc. The website demonstrates a professional and consistent brand presence with active content and social media engagement. Technically, Coroflot employs a modern web stack including jQuery, Google Tag Manager, Google Analytics, and New Relic for performance monitoring. The site is served over HTTPS with valid SSL certificates, ensuring secure communications. While the site is mobile optimized and SEO friendly, accessibility features are basic and could be improved. No CMS or hosting provider details were explicitly identified. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML. However, it lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection against common web attacks. The absence of a cookie consent mechanism and explicit privacy compliance features indicates room for improvement in GDPR and privacy adherence. No incident response or vulnerability disclosure policies were found. Overall, Coroflot presents a trustworthy and functional platform with good business credibility and technical implementation. The main risks relate to privacy compliance and security header implementation. Strategic enhancements in these areas would strengthen the site's security posture and regulatory compliance.