Security Directory

W

Whakarongorau Aotearoa // New Zealand Telehealth Services

gamblinghelpline.co.nz

66

Gambling Helpline is a New Zealand-based national freephone support service operated by Whakarongorau Aotearoa // New Zealand Telehealth Services. It provides 24/7 anonymous support for individuals and families affected by gambling addiction, including specialist helplines for Māori, Pasifika, youth, and debt-related gambling issues. The website is well-branded, consistent, and targets New Zealand residents seeking help with gambling problems. Technically, the site is built on modern frameworks such as Next.js and React, hosted on Microsoft Azure DNS infrastructure, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is moderate with no explicit security headers detected and DNSSEC not enabled, but no critical vulnerabilities or exposed sensitive data were found. Privacy compliance is basic with a privacy policy linked externally but no cookie consent mechanism or terms of service page present. Overall, the domain is long-standing and consistent with the business claims, enhancing trustworthiness. Strategic improvements in security headers, cookie consent, and explicit policies would strengthen compliance and security.

C

Coldwell Banker

coldwellbankercareers.com

67

Coldwell Banker Careers website presents a professional and comprehensive platform for real estate professionals seeking career growth, coaching, and wealth building opportunities. The site reflects a mature digital presence with integration of multiple analytics and marketing tools, including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS and Bootstrap framework, ensuring good mobile responsiveness and user experience. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and published security policies are absent. Privacy compliance is well addressed with TrustArc consent management and clear privacy and cookie policies. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is trustworthy and professional but could improve transparency on security and incident response.

S

SUNSEEKER IBIZA

sunseekeribiza.com

67

Sunseeker Ibiza operates as a luxury motor yacht brand specializing in the sale and service of high-end yachts. The company positions itself as a world leader in luxury motor yachts, targeting affluent customers seeking premium yachting experiences. The website reflects a strong brand identity with professional design and comprehensive content that highlights their engineering excellence and product offerings. Technically, the site is built on modern frameworks such as Next.js and React, integrating Google Tag Manager and OneTrust for analytics and privacy compliance. The site is well-optimized for mobile and accessibility, with good SEO practices in place. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS registration data is a notable anomaly that impacts business credibility and trustworthiness. Overall, the site demonstrates a mature digital presence but would benefit from enhanced transparency in security and domain registration details.

S

SUNSEEKER POOLE

sunseekerpoole.com

59

Sunseeker Poole is a prominent luxury motor yacht brand specializing in the design, engineering, and sales of high-end motor yachts. Positioned as a world leader in the luxury yacht market, the company targets affluent customers seeking premium marine vessels. The website reflects a professional and consistent brand image, leveraging modern web technologies such as Next.js and Chakra UI to deliver a responsive and visually appealing user experience. The digital infrastructure includes integrations with Google Tag Manager, OneTrust for cookie consent, and Google Maps API, indicating a mature digital presence. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit privacy and terms of service documentation are absent. Overall, the site demonstrates good technical and business credibility but would benefit from enhanced privacy compliance and clearer contact information to improve user trust and regulatory adherence.

S

SUNSEEKER NEUSTADT

sunseekerneustadt.de

62

SUNSEEKER NEUSTADT operates as a luxury motor yacht distributor, representing the world-leading Sunseeker brand known for its uncompromising design and engineering excellence. The website targets affluent yacht buyers and enthusiasts, positioning itself strongly in the luxury transportation sector. The business model focuses on high-end yacht sales and related services, with a medium-sized operation based in Germany. The site branding is consistent and professional, reinforcing its market position. Technically, the website is built on modern frameworks such as Next.js and Chakra UI, leveraging Cloudflare for DNS and CDN services. It integrates Google Tag Manager for analytics and OneTrust for cookie consent management, indicating a moderate level of digital maturity. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses Cloudflare, but lacks explicit security headers and published security policies or incident response contacts. No vulnerability disclosure or security.txt files are present, which could be improved. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy. Contact information is limited, with a phone number via WhatsApp and social media links but no direct email or physical address found. Overall, the website presents a professional and trustworthy front with room for improvement in privacy transparency and security best practices. The risk level is moderate, with recommendations to enhance security headers, publish privacy and security policies, and provide clearer contact channels for incident response.

C

Coldwell Banker Commercial

cbcworldwide.com

71

Coldwell Banker Commercial Worldwide operates as a leading commercial real estate brokerage and franchise network in the United States, offering extensive property listings and professional services. The website reflects a mature, well-established brand with a history dating back to 1906 and a parent company affiliation with Anywhere Advisors LLC. The digital presence is robust, featuring advanced search capabilities, user engagement forms, and integration with modern web technologies such as Google Tag Manager, reCAPTCHA, and TrustArc consent management. Security posture is strong with HTTPS enforcement and secure form handling, though there is room for improvement in implementing security headers and publishing explicit security policies. The absence of WHOIS registration data for the domain is a notable anomaly that warrants monitoring but does not detract from the overall legitimacy of the business as presented on the site.

C

Coldwell Banker

coldwellbankerinternational.com

66

Coldwell Banker International operates as a globally recognized real estate brand with a strong presence in 40 countries through a master franchise network. The company offers a comprehensive platform for property searches, agent and office locators, and franchising opportunities, targeting international buyers, sellers, and real estate professionals. The website reflects a mature business with a long history dating back to 1906 and is supported by a parent company, Anywhere Advisors LLC. The brand emphasizes trust, integrity, and service, with a consistent and professional digital presence. Technically, the website employs modern web technologies including Google Tag Manager, Google Maps API, jQuery UI, and Owl Carousel, hosted on a CDN infrastructure ensuring moderate performance and good mobile optimization. The site includes GDPR-compliant privacy and cookie policies managed via TrustArc, indicating a commitment to privacy compliance. Navigation and content structure are clear and user-friendly, supporting a positive user experience. From a security perspective, the site uses HTTPS with strong SSL configuration and secure form handling, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain reduces transparency and trust slightly, though the overall brand legitimacy and external link ecosystem support a moderate to high trust level. Overall, Coldwell Banker International presents a professional, secure, and privacy-conscious online presence suitable for its global real estate business. Strategic improvements in security policy transparency and WHOIS data visibility would enhance trust and compliance further.

C

Coldwell Banker Global Luxury

coldwellbankerluxury.com

66

Coldwell Banker Global Luxury operates as a premier luxury real estate platform, providing affluent clients worldwide with access to high-end property listings, expert specialist agents, and curated editorial content. The brand is well-established with a global footprint spanning 40 countries and daily luxury sales exceeding $200 million, positioning it as a leader in the luxury real estate market. The website reflects a mature digital presence with modern technologies such as Google Maps integration, Google Tag Manager, and TrustArc consent management, ensuring a user-friendly and compliant experience. Technically, the site leverages a robust tech stack including jQuery, Owl Carousel, and likely Ruby on Rails backend, hosted on a CDN for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured content. Security measures include HTTPS enforcement, reCAPTCHA on forms, and cookie consent mechanisms, though explicit security headers are not visible in the provided data. From a security perspective, the site demonstrates good practices but lacks visible security policy or incident response information. The absence of WHOIS data is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts domain trustworthiness. Overall, the site is professional, secure, and compliant, serving its business purpose effectively.

F

Fincantieri S.p.A.

fincantieri.com

68

Fincantieri S.p.A. is a leading global shipbuilding group headquartered in Italy, specializing in the design, construction, and repair of a wide range of vessels including cruise ships, naval vessels, ferries, mega yachts, and offshore platforms. The company holds a strong market position as one of the largest diversified shipbuilders worldwide, supported by numerous subsidiaries and a comprehensive investor relations program. The website reflects a mature enterprise with extensive content targeting investors, partners, suppliers, and customers in the maritime and defense sectors. Technically, the website employs modern web technologies including JavaScript, Google Maps API, and Akamai CDN for content delivery, ensuring moderate performance and good mobile optimization. The site is well-structured with clear navigation and professional design, although accessibility features could be enhanced. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and includes some security headers, but lacks explicit Content-Security-Policy and other advanced headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a comprehensive privacy policy and GDPR adherence, but the absence of a cookie consent mechanism and visible contact information for security or incident response are notable gaps. Overall, the website presents a trustworthy and professional digital presence for a large enterprise, though improvements in privacy compliance and security header implementation are recommended. The missing WHOIS data reduces transparency but does not detract significantly from the site's credibility given the extensive corporate disclosures and investor information available.

H

Healthcare Improvement Scotland

healthcareimprovementscotland.org

66

Healthcare Improvement Scotland is the national agency dedicated to improving health and social care services across Scotland. The organization provides clinical guidance, conducts inspections and reviews, and supports initiatives to enhance care quality. Positioned as a government agency, it serves health professionals and the public with authoritative resources and strategic plans. The website reflects a mature digital presence built on WordPress with NHS branding, offering accessible, well-structured content and multimedia elements. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and no explicit security policy or incident response details are published. WHOIS data is privacy protected, which is typical for public sector entities, and does not detract from the site's legitimacy. Overall, the site demonstrates a professional, trustworthy, and user-friendly platform aligned with its public health mission.

R

RAV Flevoland RAV Gooi en Vechtstreek

ravflgv.nl

55

RAV Flevoland RAV Gooi en Vechtstreek operates as a regional ambulance service provider in the Netherlands, focusing on emergency medical care and patient transport within the Flevoland and Gooi en Vechtstreek regions. The website serves as an information portal for residents and healthcare professionals, offering details about ambulance services, locations, news, and contact options. The organization positions itself as a key regional healthcare service with a public service business model. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates Google services including Analytics, Tag Manager, and reCAPTCHA for security and tracking. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. Hosting appears to leverage Cloudflare for CDN and performance improvements. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks several important security headers that could improve defense against common web attacks. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a privacy policy present, but no explicit cookie consent mechanism was found, which is a gap for GDPR compliance. Overall, the website is professional, trustworthy, and well-maintained, with a solid business credibility score. Recommendations include enhancing security headers, implementing cookie consent, and publishing explicit security and incident response policies to strengthen compliance and security posture.

V

Veiligheidsregio Haaglanden

haaglandenveilig.nl

71

Haaglanden Veilig is an official regional safety and emergency information platform operated by Veiligheidsregio Haaglanden, serving residents, workers, and visitors in the Haaglanden region of the Netherlands. The website provides comprehensive risk information, incident notifications, and safety advice to enhance public preparedness and response. It is well-positioned as a trusted government resource with clear branding and authoritative content. The technical infrastructure is modern, leveraging Drupal 10 CMS, Google Tag Manager, and Google Maps API, with strong mobile optimization and accessibility features. Security posture is robust with HTTPS, DNSSEC, and cookie consent mechanisms in place, though explicit security policies and incident response contacts could be improved. Overall, the site demonstrates high professionalism, compliance with GDPR, and effective communication of public safety information.

T

TRAG-Plan & Engineering Services Kft

tragplan.hu

47

TRAG-Plan & Engineering Services Kft is a Hungarian engineering and construction company founded in 2023. The website serves as a corporate portal showcasing company information, organizational structure, completed projects, and career opportunities. It also highlights a network of subsidiaries, indicating a medium-sized enterprise with a diversified business model in the real estate and construction sectors. The site targets industry clients, partners, and potential employees within Hungary. Technically, the website uses a custom CMS with modern JavaScript libraries including jQuery, Google Maps API, and Google Analytics for tracking. The design is professional with good navigation and moderate mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit privacy or security policies. No social media presence is linked directly on the site. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

M

MCM beton

mcmbeton.hu

47

MCM beton is a Hungarian construction-related company specializing in concrete and related services, operating as part of the larger Market corporate group. The website presents company information, contact details, and links to sister companies, targeting construction industry clients primarily in Hungary. The digital infrastructure uses modern JavaScript libraries and Google services, indicating moderate digital maturity. However, some security best practices such as security headers and cookie consent mechanisms are missing or minimal. The website is professionally designed with good navigation and mobile optimization, but lacks explicit privacy and security policies on-site. Overall, the domain registration and website content align well, supporting legitimacy and trustworthiness.

V

Vilati Szerelő Zrt.

vilati.hu

48

Vilati Szerelő Zrt. is a well-established Hungarian construction and real estate development company, founded in 1998 and operating as part of a larger corporate group with multiple subsidiaries and partners. The company focuses on construction projects and real estate development, targeting the Hungarian market and related stakeholders. The website presents a professional image with clear navigation, project information, and corporate group affiliations. Technically, the site uses a custom CMS with common JavaScript libraries and Google services for analytics and mapping. While the site is functional and moderately optimized, it lacks explicit privacy and cookie policies, security headers, and incident response information, which are important for compliance and security posture. The domain is longstanding and consistent with the business claims, indicating high legitimacy.

M

Moratus Kft.

moratus.hu

48

Moratus Kft. is a well-established Hungarian construction and real estate company founded in 2005, operating as part of a larger corporate group with multiple subsidiaries. The company focuses on construction projects, real estate development, and related services, targeting clients and partners in the construction and real estate sectors. The website presents a professional image with clear navigation, project showcases, awards, and career opportunities, reflecting a mature business presence. Technically, the website uses modern JavaScript libraries such as jQuery, Google Tag Manager, Google Analytics, and Google Maps API, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience, although accessibility features are basic. SEO optimization is present but could be improved. From a security perspective, the site uses HTTPS and implements a cookie consent banner, but lacks visible security headers and explicit security or incident response policies. No critical vulnerabilities were detected, but improvements in security headers and privacy policy publication are recommended. Overall, the website is credible and trustworthy, with a solid business foundation and digital presence. Strategic improvements in privacy compliance and security posture would enhance its risk profile and user trust.

O

OKM Építőipari és Szolgáltató Kft.

okmkft.hu

47

OKM Építőipari és Szolgáltató Kft. is a Hungarian construction and service company founded in 2020, operating as part of the larger Market corporate group. The company specializes in construction, road and utility planning, and project management services targeting B2B clients in the Hungarian construction sector. The website reflects a medium-sized enterprise with consistent branding and a clear market position within its group. Technically, the site uses common JavaScript libraries and Google services, with moderate performance and good mobile optimization. Security posture is moderate with cookie consent implemented but lacks advanced security headers and explicit privacy or terms of service pages. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site is professional but could improve in privacy compliance and security best practices.

Geo is a Danish consulting engineering company specializing in geotechnical and subsurface expertise, primarily serving clients in the energy sector and infrastructure projects. The company offers a range of services including offshore and onshore geotechnical consulting, environmental advisory, groundwater technology, and geodata modeling. The website presents a professional image with clear contact information and a focus on their specialized expertise. Technically, the website uses AngularJS 1.2.29, Google Analytics, and Google Maps API, indicating a moderately modern but somewhat dated technology stack. The site is accessible, with a cookie consent mechanism in place, but lacks some modern security headers and explicit privacy and terms of service pages. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, the absence of security headers and incident response contacts suggests room for improvement. The lack of WHOIS data limits domain trust analysis, but the website content and contact details support legitimacy. Overall, the website scores well in business credibility and content quality but should enhance privacy compliance and security best practices to strengthen trust and compliance posture.

P

PG Flowteknik Scandinavia ApS

pgflowteknik.dk

51

PG Flowteknik Scandinavia ApS is a medium-sized B2B company specializing in supplying high-quality components such as valves, fittings, and measurement equipment for instrumentation and process industries primarily in Scandinavia. The company holds a strong market position as one of the leading suppliers in its sector, supported by partnerships with globally recognized manufacturers. Their website reflects a professional and consistent brand image, targeting industrial customers requiring reliable and safe flow system solutions. Technically, the website is built on WordPress with modern plugins and libraries, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and secure forms, although no explicit security policy or incident response information is published. Privacy compliance is well addressed with comprehensive GDPR-aligned privacy and cookie policies and a consent mechanism. Overall, the site is trustworthy and professionally maintained, with clear contact information and business legitimacy supported by consistent WHOIS data.

J

Johs. Jensen Fiske- & Muslingeeksport A/S

johs-jensen.dk

47

Johs. Jensen Fiske- & Muslingeeksport A/S is a well-established Danish seafood exporter specializing in high-quality shellfish products sourced daily from Limfjorden. Founded in 1928, the company operates from Jegindø and maintains strong partnerships with local fishermen. Their product range includes blue mussels, line mussels, heart mussels, and lobsters, all certified for sustainability and organic standards. The website reflects a professional and consistent brand image with clear product and company information targeted at seafood buyers and distributors. Technically, the website is built on WordPress using the Enfold theme, incorporating modern web technologies such as jQuery, Google Fonts, and Google Maps API. The site is mobile-optimized and includes a cookie consent mechanism powered by Iubenda, demonstrating attention to privacy compliance. Performance is moderate, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and a reputable cookie consent solution but lacks advanced security headers and DNSSEC. No incident response or vulnerability disclosure information is provided, which could be enhanced to improve security posture. The domain registration data aligns well with the company's history, supporting legitimacy. Overall, the website presents a trustworthy and professional digital presence with good privacy compliance and business credibility. Strategic improvements in security headers, incident response transparency, and technical performance could further strengthen the site’s security and user trust.

S

SOHO

soho-lounge.dk

48

SOHO operates as a hospitality business with venues in Holbæk and Roskilde, Denmark, offering food, lounge, music, restaurant, night club, and event hosting services. The website is designed to attract local customers and visitors interested in dining and nightlife experiences. The business appears to be small-sized and established since 2013, with a clear focus on hospitality services in the Danish market. Technically, the website is built on WordPress using popular plugins such as LayerSlider and EventON for event management, along with Yoast SEO for search optimization. The site uses Google Maps API for location services and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and implements cookie consent mechanisms, supporting GDPR compliance. However, DNSSEC is not enabled, and security headers are missing, which are areas for improvement. No exposed sensitive data or vulnerable libraries were detected. The absence of explicit security policies or incident response information suggests room for enhancing security transparency. Overall, the website presents a professional and trustworthy front for a local hospitality business with good content quality and privacy compliance. The security posture is moderate but can be strengthened by implementing DNSSEC, security headers, and formal security policies. The business credibility is supported by consistent WHOIS data and domain age appropriate for the business history.

S

Shipwaves

shipwaves.com

59

Shipwaves operates as a digital freight forwarding and logistics solutions provider, targeting businesses requiring international shipping and supply chain optimization. The company offers a comprehensive suite of services including ocean and air freight, land transport, trade finance, warehousing, and customs clearance, supported by a digital platform with real-time tracking and online booking capabilities. Their market position emphasizes technology-enabled, cost-efficient, and integrated logistics solutions primarily serving the Indian and UAE markets. Technically, the website is built on modern frameworks such as Next.js and React, hosted on Vercel, and integrates third-party services like Zoho SalesIQ and Google Maps API. The site demonstrates good performance, mobile optimization, and accessibility, with secure HTTPS connections and validated forms. However, some security best practices like security headers are missing, and no explicit cookie consent mechanism is implemented. From a security perspective, the site maintains a good posture with HTTPS and secure form handling but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trustworthiness. Privacy compliance is basic, with a privacy policy present but no clear GDPR consent mechanisms. Overall, Shipwaves presents a professional and functional digital logistics platform with solid technical foundations but requires improvements in transparency, privacy compliance, and domain legitimacy verification to enhance trust and security assurance.

I

Ivaldi ApS

ivaldi.dk

62

Ivaldi ApS is a Danish web and IT solutions provider specializing in custom digital services tailored to business needs. Their offerings include web development, IT operations, digital marketing, and CRM solutions, targeting businesses seeking professional IT support and digital transformation. The company presents itself with a professional website featuring clear navigation, mobile optimization, and comprehensive cookie and privacy policies compliant with GDPR regulations. Technically, the website leverages AngularJS framework, integrates multiple third-party services such as Google Analytics, Google Tag Manager, TeamViewer, Zendesk, and Weply chat, indicating a mature digital infrastructure. The site uses HTTPS and provides granular cookie consent mechanisms, though security headers are not evident in the provided data, suggesting room for security enhancements. From a security perspective, the site demonstrates good practices in privacy compliance and secure data handling via consent banners and third-party privacy policies. However, the absence of WHOIS registration data limits domain trust assessment, and no explicit security or incident response policies are published. The extensive use of tracking and marketing cookies reflects a moderate to extensive user tracking level, balanced by transparent consent mechanisms. Overall, Ivaldi ApS maintains a solid digital presence with good business credibility and privacy compliance but should improve transparency in domain registration and enhance security headers and incident response disclosures to strengthen trust and security posture.

J. Lauritzen's Eftf. is a well-established Danish family-owned transport and logistics company with over 140 years of experience, specializing in freight transport across Europe and Scandinavia, with particular expertise in Italy and Spain. The company offers a broad range of services including rail transport, road transport, intermodal solutions, logistics, and port services through its sister company. The website reflects a mature digital presence built on the SilverStripe CMS, integrating modern analytics and consent management tools to ensure GDPR compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust verification but the professional presentation and detailed business information support legitimacy. Overall, the company demonstrates strong market positioning and a customer-focused approach with clear contact channels and social media engagement.

I

Industrial Works, LLC

industrialstainless.com

46

Industrial Works, LLC is a medium-sized manufacturing and industrial services company based in the United States, founded in 2013. The company specializes in metal fabrication, sanitary fabrication, contract manufacturing, and industrial installation services, targeting OEMs and industrial manufacturers. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on WordPress using modern frameworks and libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

Limo Labels is a Danish label manufacturing company that has recently become part of the All4Labels Global Packaging Group. The website currently serves as a maintenance and redirect notice, guiding users to the parent company's new website. The business operates in the manufacturing sector, focusing on label and packaging solutions for B2B clients. The domain is well-established since 2006, consistent with the company's history, and shows no signs of privacy protection or suspicious registration patterns. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, and it integrates Google Tag Manager for analytics and marketing purposes. However, the current page content is minimal, lacking privacy, cookie, or terms of service policies, and no contact information is provided on this maintenance page. Security posture is moderate with HTTPS enabled but missing important security headers and DNSSEC. Overall, the site reflects a basic but consistent brand presence aligned with its parent company.

STEMA srl is an established Italian consulting company specializing in management consultancy, personnel search and selection, corporate restructuring, human resources development, and training services. Operating since 2000, it serves businesses primarily in Como and the broader Italian market. The company holds official authorization from the Italian Ministry of Labor and is affiliated with reputable industry associations such as Confindustria and RSassores, reinforcing its credibility and market position. Technically, the website employs a moderately modern technology stack including jQuery, Bootstrap, Google Analytics, and Google Maps API. The site is mobile-optimized with good navigation and SEO practices, although some technical improvements such as updated libraries and enhanced security headers could be implemented. The use of ezPublish CMS is inferred from HTML comments and structure. From a security perspective, the site uses HTTPS but lacks DNSSEC and explicit security headers, which are recommended for improved protection. The extensive candidate CV submission form collects sensitive personal data with a mandatory privacy consent checkbox, indicating some GDPR compliance. However, no explicit security or incident response policies are published, which could be improved to enhance trust and readiness. Overall, the website is professional, trustworthy, and functional with a solid business foundation. Strategic enhancements in security posture and transparency around data protection policies would further strengthen its risk profile and compliance stance.

C

Comm2ig

comm2ig.dk

68

Comm2ig is a Danish IT service provider specializing in professional IT solutions and services for both public and private sectors. The company offers a broad portfolio including IT solutions, IT services, SKI framework agreements, ESG initiatives, and consulting. Their target audience includes private companies, public institutions, schools, and municipalities. The website reflects a medium-sized enterprise with a solid market position in Denmark's technology sector. Technically, the site is built on WordPress with modern libraries such as jQuery and integrates Google Tag Manager and Cookie Information for analytics and privacy compliance. The site is well-optimized for mobile and accessibility, with good SEO practices. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, though it lacks explicit security headers and incident response disclosures. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

D

Det Danske Sprog- og Litteraturselskab

dsl.dk

60

Det Danske Sprog- og Litteraturselskab (DSL) is a well-established Danish non-profit organization dedicated to publishing and documenting Danish language and literature from historical to modern times. Founded in 1911, it operates with a medium-sized team of scientific staff and a broad membership base overseeing quality. The organization offers a variety of services including printed books, online dictionaries, and linguistic projects, targeting researchers, students, and the general public interested in Danish linguistics and literature. The website reflects a professional and consistent brand presence with good content quality and clear navigation.

P

Polyprint A/S

polyprint.dk

52

Polyprint A/S is a Danish manufacturing company specializing in flexible packaging solutions, serving a broad range of industries with a focus on quality, sustainability, and customer service. Established in 1996, the company offers services including flexographic printing, extrusion, lamination, and further processing, catering primarily to B2B clients such as private label and own brand customers. The website reflects a mature digital presence with multilingual support and professional design. Technically, the website is built on WordPress with modern plugins such as WPML for multilingual capabilities and Cookiebot for GDPR-compliant cookie management. It uses Google Analytics for traffic analysis and Google Maps API for location services. The site is mobile-optimized and performs moderately well, with room for improvement in accessibility and security headers. Security-wise, the site enforces HTTPS and provides a comprehensive cookie consent mechanism, but lacks explicit security policies or incident response information. No critical vulnerabilities or suspicious elements were detected. WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with the company's profile. Overall, Polyprint.dk presents a trustworthy and professional online presence with good privacy compliance and solid technical implementation. Strategic improvements in security headers and explicit security policies would further enhance its security posture and trustworthiness.

C

Clever

clever.dk

52

Clever is a well-established Danish company founded in 2003, specializing in electric vehicle charging solutions for private individuals, businesses, and housing associations. The company holds a leading market position in Denmark's energy and transportation sectors, offering comprehensive EV charging infrastructure and services. Their website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. The technical infrastructure leverages modern technologies including Nuxt.js, Firebase, Azure hosting, and integrates multiple analytics and marketing tools while maintaining good privacy compliance. Security posture is strong with HTTPS, Content Security Policy, and reCAPTCHA Enterprise, although some additional security headers and explicit security policies could enhance their stance. Overall, Clever demonstrates high business credibility and digital maturity with a trustworthy online presence.

C

Cinando

cinando.com

60

Cinando operates as a premier online networking platform tailored for film industry professionals worldwide. Founded in 2007, it offers a comprehensive suite of services including film and company searches, market preparation tools, and secure streaming of screeners with DRM and watermarking technologies. The platform supports both web and mobile app access, facilitating real-time updates and seamless connectivity among industry stakeholders. Its business model is subscription-based, charging companies an annual fee to register and access the platform's features. Technically, Cinando employs a modern technology stack including jQuery, Google Maps API, and cookie consent management via tarteaucitron, integrated within an ASP.NET MVC framework. Hosting is managed through Gandi SAS, a reputable registrar and hosting provider. The website demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Analytics are implemented using Google Analytics (GA4) with user consent mechanisms in place. From a security perspective, the site enforces HTTPS and incorporates anti-CSRF tokens in forms, alongside DRM and watermarking for content protection. However, there is room for improvement in security headers implementation and explicit publication of security policies or incident response contacts. GDPR compliance is referenced but lacks a dedicated privacy policy page. The domain's WHOIS data aligns well with the business's legitimacy, showing consistent registration details and appropriate domain age. Overall, Cinando presents a trustworthy and professional digital presence with strong business credibility and a solid technical foundation. Enhancements in privacy documentation and security header deployment would further strengthen its security posture and compliance standing.

V

Veiligheidsregio Zeeland

zeelandveilig.nl

74

Zeeland Veilig is a regional government safety portal operated by Veiligheidsregio Zeeland, providing residents and visitors with critical information on emergencies such as fires, floods, cybercrime, and other hazards. The website offers live incident updates, safety tips, and a dedicated mobile app to enhance public preparedness and awareness. The site is well-positioned as a trusted public safety authority within the Zeeland region of the Netherlands. Technically, the website is built on Drupal 10 and integrates modern web technologies including Google Tag Manager and Google Maps API. It demonstrates good mobile optimization, accessibility, and SEO practices. The site uses HTTPS with strong SSL configuration and implements security headers, reflecting a solid security posture. Cookie consent mechanisms and privacy policies are in place, supporting GDPR compliance. Security-wise, the site shows no critical vulnerabilities or exposed sensitive data. However, it lacks a dedicated security policy page and explicit incident response contact emails. The presence of a responsible disclosure page is a positive indicator of security awareness. WHOIS data confirms the domain's legitimacy and consistency with the website's government affiliation. Overall, Zeeland Veilig is a professionally maintained, secure, and privacy-conscious government website that effectively serves its public safety mission. Strategic improvements could include publishing a security policy, incident response contacts, and a security.txt file to further enhance transparency and trust.

N

Nemzetközi Gyermekmentő Szolgálat Magyar Egyesület

gyermekmento.hu

49

Nemzetközi Gyermekmentő Szolgálat Magyar Egyesület is a well-established non-profit organization dedicated to supporting disadvantaged children in Hungary and internationally. Founded in 1988, the organization operates multiple programs aimed at improving the lives of physically and mentally disabled, orphaned, and socially disadvantaged children. Their activities include healthcare services, organizing charity events, and community outreach. The website reflects a professional and consistent brand with a focus on transparency and engagement through events and social media. Technically, the website employs modern JavaScript frameworks such as Aurelia and React, along with Bootstrap for responsive design. It uses Google Analytics and Google Tag Manager for tracking and performance monitoring. The site is hosted securely with HTTPS and includes CSRF tokens for form security. However, some security headers are not explicitly detected, and privacy compliance elements like privacy and cookie policies are missing. From a security perspective, the site demonstrates basic good practices but lacks comprehensive security policies and vulnerability disclosures. No WAF or blocking mechanisms are detected, and the domain's WHOIS data is consistent with the organization's history, supporting legitimacy. The absence of explicit contact emails and phone numbers in the analyzed content suggests these may be located on other pages. Overall, the website is credible and professionally maintained but would benefit from enhanced privacy compliance and security policy transparency to improve trust and regulatory adherence.

G

Gazdasági Versenyhivatal

gvh.hu

65

The Gazdasági Versenyhivatal (GVH) website serves as the official online presence of the Hungarian Competition Authority, a government regulatory body established in 1993. The site provides comprehensive information and services related to competition law enforcement, consumer protection, and public education. It targets Hungarian businesses, consumers, legal professionals, and public authorities, offering key services such as document inspection booking, event information, and regulatory publications. The website is primarily in Hungarian with an English language option, reflecting its national focus. Technically, the website employs a modern technology stack including Aurelia and React frameworks, modular JavaScript loading via SystemJS, and various UI libraries such as Chart.js and Select2. The site demonstrates good mobile optimization, accessibility, and SEO practices, supported by structured navigation and consistent branding. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, uses CSRF tokens, and implements secure login and password reset forms. While standard security headers are not explicitly confirmed, the site follows best practices in avoiding exposed sensitive data and using modern frameworks. Privacy and cookie policies are present and GDPR compliant, with consent-based loading of Google Analytics scripts. No critical vulnerabilities or suspicious content were detected. Overall, the GVH website presents a trustworthy, professional, and secure platform aligned with its government mandate. Strategic recommendations include enhancing security header implementation, publishing explicit security policies and incident response contacts, and maintaining up-to-date third-party libraries to sustain a strong security posture.

F

Forum Groningen

forum.nl

65

Forum Groningen is a well-established cultural and educational institution based in the Netherlands, offering a wide range of services including film screenings, exhibitions, library access, workshops, and events. The website reflects a professional and consistent brand presence targeting a broad audience interested in culture and education. Technically, the site uses a modern tech stack with popular JavaScript libraries and APIs, and it is optimized for mobile and accessibility. Security posture is strong with HTTPS and DNSSEC enabled, though improvements could be made by adding security headers and publishing explicit security and privacy policies. The domain is longstanding and registered with a reputable Dutch registrar, supporting the legitimacy of the organization. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance documentation and security transparency.

P

Ponte.hu Kft.

ponte.hu

65

Ponte.hu Kft. is a Hungarian technology company with over 20 years of experience specializing in artificial intelligence, web, and mobile application development. Their core offerings include AI-based frameworks, the DOKK Platform for web content management, and the ATAK automation framework. The company serves a diverse clientele including government agencies, financial institutions, and healthcare organizations, positioning itself as a trusted technology partner in Hungary. Technically, the website employs modern JavaScript frameworks such as Aurelia and React, integrates Google Maps API, and uses advanced UI components and animations, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses CSRF tokens, and implements cookie consent mechanisms, though it lacks some advanced security headers and formal security policies. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and strong partner references.

T

Tediber

tediber.com

63

Tediber is a French e-commerce retailer specializing in high-quality bedding products including mattresses, bed frames, bedding packs, and related sleep accessories. The brand emphasizes local manufacturing, quality, and customer-friendly policies such as free express delivery, 100 nights trial, and free returns. The website is professionally designed with a consistent brand image and targets consumers in France seeking premium sleep products. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, integrates multiple marketing and analytics tools, and implements cookie consent mechanisms. Security posture is good with HTTPS enabled, but lacks visible security headers and explicit security policies. The absence of WHOIS data raises concerns about domain legitimacy, though the website content appears professional and trustworthy. Overall, the site scores well on content and technical implementation but should improve privacy disclosures and domain registration transparency.

Inbank is a Latvian financial institution focused on providing digital banking services such as loans and deposits to retail customers. The website is professionally designed and leverages modern web technologies including Nuxt.js and integration with Dokobit for secure digital authentication. The technical infrastructure appears solid with HTTPS enforced and use of reputable external libraries and APIs. However, the absence of explicit privacy and cookie policies, as well as lack of visible contact information and WHOIS data, limits the ability to fully assess compliance and legitimacy. Security posture is generally good but could be improved by implementing security headers and publishing incident response information. Overall, the website presents a credible banking service but would benefit from enhanced transparency and compliance documentation.

B

Bonusukarte.lv

bonusukarte.lv

47

Bonusukarte.lv operates a specialized employee motivation platform in Latvia, offering personalized prepaid bonus cards that enable employers to provide tax-efficient benefits such as meals, healthcare, and transport expense coverage. The website is professionally designed with clear navigation, client testimonials, and comprehensive information about the service, targeting medium-sized businesses seeking to enhance employee satisfaction and loyalty. Technically, the site uses modern JavaScript libraries and frameworks, ensuring a responsive and user-friendly experience. Privacy and cookie policies are well implemented, reflecting GDPR compliance. However, WHOIS data is unavailable due to query limits, limiting domain legitimacy verification. Security posture is adequate but could be improved by adding explicit security headers and incident response information.

B

Tartalmak - Bet site

bet.hu

64

Bet.hu is a well-established Hungarian financial market information portal, providing comprehensive data on equities, bonds, indices, and related financial instruments primarily for the Budapest Stock Exchange. The site targets investors, financial professionals, and market analysts interested in Hungarian market data. The business model centers on delivering market data, news, and downloadable resources to its audience. Technically, the website employs modern JavaScript frameworks such as Aurelia and React, alongside libraries like jQuery and Chart.js, indicating a mature and contemporary technical infrastructure. The site is served over HTTPS with CSRF protection and uses Google reCAPTCHA to mitigate automated abuse. However, explicit privacy, cookie, and security policies are not present in the analyzed content, which impacts compliance and user trust. Tracking technologies like Google Analytics and Facebook Pixel are used without visible consent mechanisms, suggesting room for improvement in privacy compliance. Overall, the website is functional, professional, and secure but would benefit from enhanced transparency and compliance documentation.

G

GGD

ghor.nl

73

GGD is a Dutch public health organization providing regional health services and information, including locating GHOR (medical assistance organizations) in various regions. The website serves residents of the Netherlands seeking public health information and regional health emergency services. It is positioned as an established government health authority with a focus on public health promotion and prevention. The technical infrastructure is based on WordPress CMS with modern plugins such as Yoast SEO and Cookiebot for compliance and analytics integration via Piwik PRO and Google Tag Manager. The site uses HTTPS and implements cookie consent mechanisms, indicating a good level of digital maturity. Security posture is solid with encrypted connections and consent management, but lacks explicit security headers and published security policies. Overall, the website is professional, trustworthy, and serves its public health mission effectively, though it could improve transparency by publishing privacy, terms, and security policies.

G

GGD

ggd.nl

73

GGD is the national public health organization in the Netherlands, providing a wide range of health services including vaccination programs, cancer screenings, health campaigns, and emergency preparedness. The website serves as a portal to regional GGD and GHOR entities, targeting Dutch residents and health professionals. The organization is large, government-affiliated, and focused on public health protection and promotion. Technically, the site is built on WordPress with modern frameworks and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

P

Partnership on AI

partnershiponai.org

63

Partnership on AI is a US-based non-profit organization founded in 2016 that brings together diverse stakeholders from the AI community including technology companies, civil society, and academia. The organization focuses on collaborative research, developing industry guidelines, hosting international forums, and educating policymakers to promote ethical and responsible AI development. Their market position is strong as a multi-stakeholder convener supported by major technology companies such as Apple, Amazon, Meta, Google/DeepMind, IBM, and Microsoft. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Tag Manager, and Cookiebot for cookie consent management. The site is moderately performant, mobile-optimized, and accessible at a basic level. Security posture is good with HTTPS enforced and cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website demonstrates a professional and trustworthy presence aligned with its mission and audience.

A

AutoWallis Nyrt.

autowallis.com

58

AutoWallis Nyrt. is a leading automotive and mobility service provider in Central and Eastern Europe, specializing in new and used vehicle sales, fleet management, and mobility services. Founded in 2021, the company has quickly established a strong market position with a large operational scale and a clear focus on investor relations and corporate transparency. The website reflects this with comprehensive business information, investor resources, and multilingual support. Technically, the site is built on WordPress with modern libraries and plugins, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit incident response policies. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

M

Mitsubishi Motors France

mitsubishi-motors.fr

57

Mitsubishi Motors France operates a comprehensive automotive website targeting French consumers and professionals interested in Mitsubishi vehicles. The site offers detailed vehicle information, configurators, financing options, and after-sales services, positioning itself as a key player in the French automotive market. The digital infrastructure leverages modern JavaScript libraries, Google Tag Manager, and Iubenda for cookie compliance, reflecting a mature technical setup with good mobile optimization and user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data from AFNIC limits domain trust analysis but the website content and branding strongly indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with GDPR requirements.

G

Gran Canaria Official Tourism

grancanaria.com

30

Gran Canaria's official tourism website serves as a comprehensive portal for visitors seeking information about the island's attractions, accommodations, climate, and cultural events. The site is positioned as an authoritative source for tourism-related content, targeting travelers interested in the Canary Islands. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design and integrates Google Maps and social media tracking pixels, indicating a moderate level of digital maturity. Security-wise, the site enforces HTTPS and employs a cookie consent mechanism, but lacks visible security headers and incident response information, which are areas for improvement. The absence of WHOIS data introduces some uncertainty about domain registration legitimacy, although the website's professional presentation and content quality support its credibility. Overall, the site is functional and trustworthy but could enhance its security posture and transparency to strengthen user trust.

T

TIC

airchat.ai

46

AirChat is a technology company specializing in AI-driven passenger communication solutions for airports worldwide. Their platform automates real-time flight notifications and chatbot interactions across multiple social and messaging channels, enhancing passenger experience and operational efficiency. The company serves a broad range of airports, from small to very large, and leverages advanced technologies including NLP, AI, ML, LLM, and Generative AI to deliver personalized and contextual messaging. Technically, the website is built on WordPress with modern plugins and integrations such as Google Analytics, Google Maps API, and reCAPTCHA, indicating a mature digital infrastructure. Security posture is solid with HTTPS and form protections, though explicit security headers and incident response policies are absent. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website and business demonstrate moderate to high professionalism and trustworthiness, with room for improvement in privacy and security transparency.

T

TIC

biztweet.ie

46

AirChat is a technology company specializing in AI-driven passenger communication solutions for airports worldwide. Their platform leverages advanced technologies such as Natural Language Processing, Machine Learning, Large Language Models, and Generative AI to provide personalized, real-time flight notifications and chatbot services across multiple messaging channels. With deployments in over 60 airports globally, AirChat targets airport operators seeking to enhance passenger experience and operational efficiency through automated, data-driven communication. The company is headquartered in Ireland with additional presence in Australia. Technically, the website is built on WordPress with modern plugins and integrates Google Analytics, Google Tag Manager, and reCAPTCHA for analytics and security. The site is mobile-optimized and provides a user-friendly interface with clear navigation and rich content. Security posture is strong with HTTPS and spam protection, though some improvements in security headers and privacy compliance are recommended. Overall, AirChat presents a credible and professional digital presence aligned with its business objectives.

S

Sizewell C Ltd

szcworkstracker.co.uk

28

Sizewell C Ltd operates the Sizewell C Works Tracker website, an official platform designed to provide up-to-date information and alerts about the construction progress of the Sizewell C nuclear power project in the United Kingdom. The website targets local residents, stakeholders, and interested parties by offering detailed activity updates, filtering options, and subscription services for alerts. The business model focuses on community engagement and transparent communication regarding construction activities. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Gravity Forms for data collection and Yoast SEO for search engine optimization. It integrates Google Tag Manager and Google Maps API to enhance tracking and mapping functionalities. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. From a security perspective, the site enforces HTTPS with an excellent SSL configuration and employs best practices such as nonce tokens and honeypot fields in forms to mitigate spam. However, it lacks explicit security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture. Overall, the website is trustworthy, professional, and well-aligned with the business objectives of Sizewell C Ltd. It effectively balances user engagement, technical implementation, and privacy compliance, making it a reliable resource for its audience.