Security Directory

F

Fagskolen Vestfold og Telemark

fagskolen-vestfoldogtelemark.no

44

Fagskolen Vestfold og Telemark is a vocational higher education institution in Norway, founded in 2024 and operated under Telemark fylkeskommune. The website presents a professional and comprehensive digital presence, offering various study programs, industry-specific courses, and student support services. The institution targets students and professionals seeking flexible and practical education aligned with labor market needs. Technically, the website is built on WordPress with modern JavaScript frameworks and integrates Google Analytics and Tag Manager for analytics and marketing. Security posture is strong with HTTPS, security headers, and consent mechanisms, though formal security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy educational organization.

F

Fagskolen Viken

fagskolen-viken.no

60

Fagskolen Viken is a Norwegian higher vocational college established recently in 2024, providing a wide range of vocational study programs across multiple campuses in the Viken region. The institution targets students seeking practical and career-oriented education to enhance their employability. The website is professionally designed using Drupal 10, featuring good mobile optimization, accessibility, and clear navigation. It integrates modern analytics and marketing tools while maintaining GDPR compliance through a consent management platform. Contact information and social media presence are clearly provided, enhancing trust and engagement. Security posture is solid with HTTPS and privacy policies, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site reflects a credible, well-managed educational institution with a strong regional collaboration network.

F

Fagskolene på Østlandet

fagskolene.no

52

Fagskolene på Østlandet is a consortium of four vocational colleges in Eastern Norway, providing over 150 vocational education programs tailored to meet future labor market demands. The website serves as an information portal for prospective students, offering study guidance, application instructions, and news about the vocational education sector. The organization positions itself as a key regional educational provider with strong ties to industry and municipalities, emphasizing practical and project-based learning. Technically, the website is built on Drupal 10 with modern front-end frameworks like Bootstrap Sass and integrates common analytics and marketing tools such as Google Tag Manager, Google Analytics, and Facebook Pixel. The site is mobile-optimized, accessible, and demonstrates good SEO practices. However, some security headers are not explicitly visible in the HTML content, and no dedicated security or incident response policies are published. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism with opt-in. No critical vulnerabilities or exposed sensitive data were detected. The domain is newly registered in 2024, consistent with the organization's founding date, and uses an official Norwegian domain, enhancing trustworthiness. Overall, the site exhibits a solid security posture but could improve transparency by publishing security policies and contact information for incident response. The overall risk is low, with recommendations focusing on enhancing security headers, publishing formal security policies, and improving contact transparency to strengthen trust and compliance.

A

Arribatec Group

arribatec.com

68

Arribatec Group is a technology consulting and services company specializing in connecting people, processes, and systems to simplify business complexity. Their offerings include consultancy, ERP systems, cloud solutions, business management, and software development, targeting a broad range of industries such as banking, energy, healthcare, and public sector. The company maintains a professional and multilingual website, reflecting a medium-sized enterprise with a strong market presence in Norway and surrounding regions. Technically, the website is built on WordPress with Elementor and integrates multiple marketing and analytics tools including HubSpot, Google Analytics, and LinkedIn Insight Tag, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response details are not publicly available. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the website content and structure suggest a legitimate and established business. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a trustworthy digital presence for the company.

S

Surfrider Foundation

surfrider.org

67

The Surfrider Foundation is a well-established non-profit organization dedicated to the protection and enjoyment of the world's oceans, waves, and beaches. It operates through a large network of volunteers and chapters across the United States, focusing on environmental campaigns such as plastic reduction, ocean protection, beach access, and climate action. The organization engages its audience through advocacy, volunteer programs, and fundraising via donations and merchandise sales. The website reflects a strong market position within the environmental non-profit sector, with clear messaging and calls to action. Technically, the website is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools including Google Tag Manager and Facebook Pixel. The site demonstrates good performance, mobile optimization, and accessibility standards. Security posture is strong with HTTPS enforced and appropriate security headers present, although explicit security policies and incident response information are not publicly detailed. Overall, the website is professional, trustworthy, and compliant with privacy regulations such as GDPR, featuring cookie consent mechanisms and a comprehensive privacy policy. The lack of publicly available WHOIS data is consistent with privacy protection practices common among non-profits. No critical vulnerabilities or suspicious indicators were found, supporting a high legitimacy score. Strategic recommendations include publishing explicit security and incident response policies, adding a vulnerability disclosure or security.txt file, and providing direct security contact information to enhance transparency and trust.

S

Surfers Against Sewage

sas.org.uk

64

Surfers Against Sewage is a UK-based grassroots environmental charity dedicated to protecting oceans, rivers, and beaches from pollution, particularly sewage and plastic pollution. The organization operates through community engagement, campaigning, data collection, and education, positioning itself as a leading voice in ocean activism within the UK. Their website reflects a mature digital presence with comprehensive content, active campaigns, and multiple avenues for public involvement including membership, fundraising, and volunteering. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and Popup Maker, integrating analytics tools like Google Analytics and Facebook Pixel. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism compliant with GDPR. Security measures include HTTPS enforcement and CAPTCHA on forms, though explicit security headers could be improved. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear policies and consent mechanisms. However, WHOIS data for the domain is unavailable due to a domain naming rules error, which does not impact the legitimacy given the charity registration and consistent branding. Overall, the website demonstrates a strong commitment to transparency, user engagement, and compliance, making it a trustworthy platform for its audience and stakeholders.

M

Mær Seaweed

maerseaweed.com

62

Mær Seaweed is a Norwegian company specializing in gourmet seaweed products positioned in the niche superfood market. The website presents a professional and consistent brand image with content focused on the natural and versatile qualities of their seaweed. The technical infrastructure includes modern tracking and consent management tools such as Google Tag Manager, CookieInformation, and Microsoft Azure services, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, but lacks visible security headers and explicit incident response contacts, which could be improved. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness, impacting overall business credibility. Strategic recommendations include verifying domain registration, enhancing security headers, and providing clear contact and compliance information to strengthen trust and compliance.

L

Lerøy Seafood Netherlands

leroyseafood.nl

64

Lerøy Seafood Netherlands operates as a seafood supplier and related services provider in the Netherlands, positioned as an important player within the seafood sector. The website presents a professional corporate image with consistent branding and good content quality focused on business audiences. The technical infrastructure leverages Microsoft Azure hosting, Google Tag Manager, and Application Insights for monitoring, indicating a mature digital setup. The site implements a comprehensive cookie consent mechanism aligned with GDPR requirements, reflecting good privacy compliance. Security posture is strong with HTTPS enforced and monitoring tools in place, though explicit security headers and incident response policies are absent. Overall, the website is trustworthy and well-maintained, with room for improvement in publishing security policies and contact information.

N

Norway Seafoods

norwayseafoods.com

63

Norway Seafoods is a Norwegian brand specializing in sustainable wild-caught whitefish products such as cod and saithe from the Arctic Ocean. The website positions itself as a quality brand targeting general consumers interested in sustainable seafood. The digital infrastructure is built on Microsoft Azure with modern technologies including ASP.NET Core, Google Analytics, and various marketing tools. The site is well-optimized for SEO and mobile devices, featuring a comprehensive cookie consent mechanism compliant with GDPR. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and contact information are absent. The WHOIS data is unavailable, raising concerns about domain registration transparency. Overall, the website is professional and trustworthy but would benefit from improved business credibility disclosures and contact details.

L

Lottstift

lottstift.no

72

Lottstift is a Norwegian government regulatory agency responsible for overseeing lotteries and foundations. The website serves as an official information portal for stakeholders and the general public, providing regulatory information and updates. The site is well-branded and consistent with government standards, targeting Norwegian users primarily. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO for optimization, Cookiebot for consent management, and analytics tools such as Google Analytics and Matomo configured with privacy considerations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and the domain age and WHOIS data align with the official nature of the entity. Overall, the site demonstrates good digital maturity and compliance with privacy regulations, though explicit privacy and terms of service pages were not found in the provided content.

D

Delta Reisen s.r.o.

deltareisen.cz

58

Delta Reisen s.r.o. is a Czech travel agency specializing in offering vacations through German and Austrian travel agencies, providing a wide range of travel packages with over one million available dates. The company targets Czech customers seeking high-quality travel experiences with trusted German and Austrian partners. Their business model focuses on travel package brokerage, online booking, and customer support with a medium-sized market presence since 2016. The website reflects a professional and consistent brand image with good content quality and customer trust signals such as reviews and certifications. Technically, the website uses a modern tech stack including jQuery, Bootstrap, Google Tag Manager, and Matomo analytics, integrated with a specialized travel system (CeSYS). The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers are not explicitly detected. No WHOIS data is available, which impacts transparency and trust. Security-wise, the site shows good practices such as reCAPTCHA on forms and no exposed sensitive data, but lacks a public security policy or incident response information. Privacy compliance is good with GDPR-aligned cookie consent and privacy notices. Overall, the risk is moderate with recommendations to improve WHOIS transparency, security headers, and incident response disclosures. Strategically, Delta Reisen should focus on enhancing security transparency, maintaining up-to-date technology, and expanding trust signals to strengthen market position and customer confidence.

C

Click2Claim s.r.o.

click2claim.eu

49

Click2Claim s.r.o. is a Czech-based company specializing in assisting air passengers with claims for compensation related to flight delays, cancellations, missed connections, and denied boarding. The company offers an online platform for submitting claims and managing the compensation process, targeting primarily Czech and European Union customers. Their market position is that of a niche service provider in the air passenger rights sector, supported by partnerships with various insurance and financial institutions. Technically, the website employs a traditional web stack with jQuery and jQuery UI, integrated with multiple analytics and marketing tools including Google Analytics, Facebook Pixel, Smartlook, and Clixtell. Cookie consent is managed via CookieYes, ensuring GDPR compliance. The site is mobile-optimized and provides a secure login area for clients. However, some technologies like jQuery are outdated and could benefit from modernization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible HTTP security headers and explicit security policies or incident response contacts. No critical vulnerabilities were detected in the HTML content. The absence of WHOIS registrant data is due to EURid privacy policies, but the website content and partner ecosystem support legitimacy. Overall, the website presents a professional and trustworthy front for a small service company in the transportation sector, with good privacy compliance and a moderate to good security posture. Recommendations include updating libraries, enhancing security headers, and publishing explicit security policies to improve trust and compliance.

R

Red Peppers

red-peppers.cz

46

Red Peppers is a Czech Republic based creative agency specializing in branding, web design, mobile applications, virtual reality, and 3D graphics. The company targets businesses seeking innovative digital and print media solutions. Their website showcases a professional design with rich multimedia content including video showreels and client references, indicating a mature digital presence. Technically, the site uses modern web technologies such as HTML5, CSS3, JavaScript, Bootstrap framework, and integrates Google Analytics and Google Tag Manager for marketing and analytics purposes. Security posture is moderate with HTTPS implied but lacks explicit security headers and privacy compliance documentation. The absence of WHOIS data reduces domain trustworthiness, but the website content and design suggest a legitimate business. Strategic improvements in privacy policy transparency, security headers, and contact information would enhance trust and compliance.

S

STIEFEL EUROCART s.r.o.

stiefel.sk

47

STIEFEL EUROCART s.r.o. is a Slovak company specializing in providing comprehensive educational solutions and didactic aids for kindergartens, primary, and secondary schools. Their offerings include digital interactive tools, educational materials, and workshops, targeting educational institutions and parents. The website reflects a niche market position focused on supporting modern teaching methods through digital technologies. Technically, the website employs common web technologies such as jQuery, Facebook SDK, and Google Tag Manager, with a cookie consent mechanism in place, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and standard tracking scripts but lacks explicit security headers and published privacy or incident response policies, suggesting room for improvement in security posture. Overall, the website is professional and functional with clear contact information, but enhancing privacy compliance and security best practices would strengthen trust and compliance.

U

Ulož.to Disk

quickshare.cz

72

Ulož.to Disk is a Czech Republic-based personal cloud backup service offering a range of storage plans from a free 25 GB tier up to 100 TB for paid subscribers. The service emphasizes secure file storage with end-to-end encryption and provides modern applications across multiple platforms including Windows, Android, and iOS. The website is professionally designed with clear navigation and multilingual support, targeting general users seeking reliable cloud storage and file sharing solutions. Technically, the site employs modern JavaScript frameworks, Google Tag Manager, and analytics tools, hosted likely behind Cloudflare infrastructure ensuring fast performance and security. Security posture is solid with HTTPS enforced and privacy policies in place, though explicit security policies and incident response details are not published. No vulnerabilities or suspicious elements were detected. Overall, the site is trustworthy, compliant with GDPR, and well-positioned in the cloud storage market.

I

Irving Shipbuilding Inc.

shipsforcanada.ca

46

Irving Shipbuilding Inc. operates the Halifax Shipyard as a key partner in Canada's National Shipbuilding Strategy, focusing on constructing naval combatant ships for the Royal Canadian Navy. The company has invested heavily in modernizing its facilities and emphasizes Canadian economic impact, supplier engagement, and career opportunities. The website reflects a professional and consistent brand image targeting government stakeholders, suppliers, and potential employees. Technically, the site uses modern web technologies including JavaScript frameworks, social media integrations, and video content, hosted under a reputable registrar with HTTPS enabled. Security posture is solid but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and well-positioned in its market niche.

Bubufabrics.pl is an e-commerce website specializing in the sale of fabrics, haberdashery, and materials sold by the meter, primarily targeting the Polish market. The website presents a professional and consistent brand image with a good quality design and user experience. The business model is retail-focused, catering to general consumers interested in textile products. The site uses modern web technologies including Bootstrap 4 and integrates marketing and tracking tools such as Google Tag Manager, Facebook Pixel, and SalesManago to support its digital marketing efforts. From a technical perspective, the website is moderately optimized for performance and mobile devices, with good SEO practices evident in meta tags and structured data. However, there is a lack of visible security headers and no explicit SSL configuration details available, which suggests room for improvement in security hardening. Privacy compliance is basic, with a cookie consent mechanism implemented but no visible privacy policy or terms of service pages, which could impact user trust and regulatory compliance. Security posture is moderate but limited by the absence of WHOIS data, which raises concerns about domain registration legitimacy and transparency. No contact information or incident response channels are clearly provided, which could hinder trust and responsiveness in case of security incidents. Overall, the website is functional and professional but would benefit from enhanced security measures, clearer privacy documentation, and verified domain registration information to improve credibility and compliance.

Bubufabrics.si is an e-commerce platform specializing in the retail of fabrics, haberdashery, and meter goods primarily targeting the Slovenian market. The website presents a professional and user-friendly interface built on Bootstrap 4, with moderate mobile optimization and SEO practices. The business appears to be a small-sized retail operation with a network of related regional partner sites across Central Europe. Technically, the site integrates multiple marketing and tracking tools such as Google Tag Manager, Facebook Pixel, and SalesManago, indicating a moderate level of digital maturity. However, the absence of explicit privacy and terms of service pages, as well as missing security headers, suggests room for improvement in compliance and security posture. The WHOIS data shows inconsistencies, including a future domain creation date and a registrant country mismatch, which lowers the trust score but does not necessarily indicate malicious intent. Overall, the site is functional and safe for general audiences but would benefit from enhanced security and privacy transparency.

Bubufabrics.hr is an online retail platform specializing in fabrics, haberdashery, and fabric sold by the meter, targeting primarily the Croatian market. The website is part of a broader network of regional sites under the Bubufabrics brand, serving multiple European countries with localized versions. The business model is e-commerce focused, catering to consumers and small businesses interested in textile products. The site presents a professional design using Bootstrap 4 and integrates common marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and SalesManago, indicating a moderate level of digital maturity. From a technical perspective, the website employs modern frontend frameworks and asynchronous loading of scripts to optimize performance. Hosting is provided by websupport.sk, with DNS and name servers consistent with the registrar Gransy d.o.o. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. Security evaluation reveals no immediate vulnerabilities or malware indicators, but the absence of privacy and terms of service pages, as well as missing security headers, represent compliance and security gaps. WHOIS data shows inconsistencies, notably a domain creation date set in the future and a registrant country differing from the website's target country, which may warrant further verification. Overall, the website is safe for general audiences and does not contain adult or questionable content. Strategically, the site would benefit from publishing comprehensive privacy and security policies, enhancing security headers, and clarifying WHOIS information to improve trustworthiness and compliance. These improvements will strengthen the site's security posture and business credibility in the competitive e-commerce textile market.

Bubufabrics is an Italian-based e-commerce retailer specializing in fabrics, haberdashery, and fabric sold by the meter. The website targets general consumers interested in textile products and operates multiple localized sites across Europe, indicating a niche but geographically diverse market presence. Technically, the site uses Bootstrap 4 for responsive design and integrates marketing and analytics tools such as Google Tag Manager, SalesManago, and Facebook Pixel, reflecting a moderate level of digital maturity. Security posture is solid with HTTPS enforced and standard security headers present, though the absence of explicit privacy and cookie policies suggests room for compliance improvement. Overall, the site is functional and professional but would benefit from enhanced transparency and contact information to improve trust and regulatory compliance.

Bubufabrics.ro is an e-commerce website specializing in the sale of fabrics and haberdashery products targeted primarily at the Romanian market. The site offers an online shopping experience for customers interested in sewing and crafting materials. The business appears to be a small-scale online retailer with a focus on textile products. Technically, the website is built using Bootstrap 4 and integrates common marketing and analytics tools such as Google Analytics, Facebook Pixel, and SalesManago, indicating a moderate level of digital maturity. However, the absence of visible privacy and cookie policies suggests gaps in compliance with data protection regulations such as GDPR. Security posture is moderate with no detected WAF or blocking mechanisms, but the lack of security headers and unknown SSL configuration indicate room for improvement. Overall, the website is functional and professionally designed but would benefit from enhanced security and privacy practices to improve trust and compliance.

The website www.bubufabrics.com operates as an e-commerce platform specializing in the sale of fabrics and haberdashery products. It targets a general audience interested in textile and sewing supplies. The site presents a professional design using Bootstrap 4 and integrates common marketing and analytics tools such as Google Tag Manager, SalesManago, and Facebook Pixel. However, the absence of WHOIS registration data raises concerns about the domain's legitimacy and registration status. No privacy, cookie, or terms of service policies were detected, which impacts compliance and trustworthiness. Security posture is weak due to lack of security headers and unclear SSL configuration. Overall, the site is functional and safe for general users but lacks critical trust and security indicators.

The website www.bubulakovo.cz is an e-commerce platform specializing in the sale of fabrics and haberdashery products, targeting primarily the Czech Republic market. The site presents a professional design using Bootstrap 4 and integrates multiple marketing and analytics tools such as Google Analytics and SalesManago. However, the absence of publicly available WHOIS data limits the ability to fully verify the domain's registration legitimacy and ownership details. The website lacks visible privacy and cookie policies, which impacts its privacy compliance posture. Security headers are not detected, and SSL configuration details are unknown, indicating potential areas for security improvement. Overall, the site appears functional and well-structured but would benefit from enhanced transparency and security practices.

B

Bubustoffe

bubustoffe.de

47

Bubustoffe.de is a small retail business specializing in fabrics, ribbons, and haberdashery products, targeting primarily German-speaking customers. The website presents a colorful and well-structured e-commerce platform with good design quality and mobile optimization. The technical infrastructure leverages modern frameworks such as Bootstrap 4 and integrates multiple marketing and analytics tools including Google Analytics, Hotjar, and SalesManago, indicating a mature digital marketing approach. Security posture is adequate with HTTPS enabled and some security best practices observed, though there is room for improvement in implementing security headers and publishing security policies. The absence of a privacy policy and terms of service reduces compliance maturity. WHOIS data is minimal and domain status is unusual, which slightly impacts trustworthiness. Overall, the website is functional and professional but would benefit from enhanced privacy and security transparency.

B

Ein Geschäft voller Liebe zum nähen | Bubustoffe.at

bubustoffe.at

47

Bubustoffe.at is a small retail business specializing in colorful fabrics, ribbons, haberdashery, and sewing supplies, targeting general consumers interested in crafting and sewing. The website presents a professional and consistent brand image with good design quality and mobile optimization. The technical infrastructure includes modern frontend frameworks such as Bootstrap 4 and integrates multiple marketing and analytics tools including Google Analytics, SalesManago, and Facebook Pixel. However, the absence of WHOIS data and lack of visible privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with no detected security headers and unknown SSL configuration, suggesting room for improvement in security best practices. Overall, the website is functional and relevant for its retail purpose but would benefit from enhanced privacy compliance and security measures.

B

Commerce de tissus, mercerie en ligne | Bubutissus.fr

bubutissus.fr

45

Bubutissus.fr is an e-commerce website specializing in the retail of fabrics, ribbons, and haberdashery supplies, targeting primarily the French market. The site presents a colorful and well-structured online store experience, catering to customers interested in textile crafts and related products. The business appears to be a small retail entity with regional sister sites in various European countries, indicating a localized but multi-national retail group. Technically, the website employs modern front-end frameworks such as Bootstrap 4 and integrates multiple marketing and analytics tools including Google Tag Manager, SalesManago, and Facebook Pixel, reflecting a moderate level of digital maturity. Security-wise, the site enforces HTTPS and has implemented cookie consent mechanisms, but lacks several recommended security headers and explicit privacy or terms of service pages, which are important for compliance and trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and technical setup do not raise immediate red flags. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

H

Hanen

hanen.no

10

Hanen is a Norwegian organization dedicated to promoting authentic Norwegian rural tourism and local food experiences. The website serves as a comprehensive portal for discovering farm visits, local food producers, accommodation, and cultural activities across Norway. It targets Norwegian residents and tourists interested in rural and culinary experiences, positioning itself as a leading membership-based promoter in this niche. Technically, the site is built on WordPress with modern plugins and integrations such as Google Tag Manager, Facebook Pixel, and CookieYes for cookie consent, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and bot protection via Google reCAPTCHA cookies, though some security headers are not explicitly detected. Privacy compliance is supported by a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the provided content. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is reasonable for this type of organization. Overall, the site is professional, trustworthy, and well-optimized for its audience.

X

XperiTech AS

campio.no

60

Campio is a Norwegian-based online platform specializing in providing comprehensive listings and direct booking options for campsites and motorhome parkings across Europe. Founded in 2021 and operated by XperiTech AS, the company targets outdoor enthusiasts and travelers seeking convenient access to camping accommodations. The platform leverages modern web technologies including Next.js and Material-UI, and integrates analytics and marketing tools such as Google Tag Manager and HubSpot to optimize user engagement and business insights. Security posture is strong with HTTPS and security headers implemented, though the absence of explicit privacy and cookie policies indicates room for compliance improvement. Overall, Campio presents a professional and trustworthy digital presence with moderate risk exposure primarily related to privacy compliance gaps.

D

Dab Pumps Spa

dabpumps.com.au

9

Dab Pumps Spa is a well-established company specializing in water technology solutions with over 40 years of experience. The company focuses on manufacturing and providing technological solutions for water movement and management across residential, commercial, agricultural, and irrigation sectors. Their offerings emphasize reliability, efficiency, and energy optimization. The website reflects a professional and consistent brand presence targeting industrial and commercial audiences primarily in Australia and internationally. Technically, the website is built on Drupal 9 with modern frontend libraries such as jQuery, Bootstrap, and Owl Carousel, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and secure login forms but lacks advanced security headers and incident response disclosures. Privacy and cookie policies are present, though cookie consent mechanisms are missing. WHOIS data is incomplete and malformed, which raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

D

DAB PUMPS SPA

dabpumps.mx

10

DAB PUMPS SPA is a well-established company specializing in water technology solutions with over 40 years of industry presence. The company offers a broad portfolio of products and services including pumps, digital connectivity solutions, and training programs, targeting residential, commercial, and agricultural sectors. The website reflects a mature digital presence built on Drupal 9, with modern UI components and a clear focus on user experience and compliance. The security posture is adequate but can be improved by implementing additional security headers and renewing the expired domain promptly. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and serves as a solid digital asset for the company.

D

DAB PUMPS S.p.A.

dabpumps.us

11

DAB PUMPS S.p.A. is an established Italian manufacturer specializing in pump products with a significant presence in North America through its subsidiary DAB Pumps Inc. The company offers a broad portfolio of pump solutions, complemented by customer service, training, and technical support. The website reflects a mature digital presence built on Drupal 9, integrating modern frontend technologies and a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and domain registration protections, though DNSSEC is not enabled and some advanced HTTP security headers are missing. The WHOIS data is consistent with the business claims, reinforcing legitimacy. Overall, the website is professional, trustworthy, and well-structured for its industrial target audience.

N

NIBE Industrier AB

nibe.com

71

NIBE Industrier AB is a large enterprise specializing in sustainable energy solutions, including climate solutions, heating elements, and stoves. The company positions itself as a global player focused on reducing greenhouse gas emissions through innovative products and corporate sustainability. The website reflects a mature digital presence with comprehensive corporate governance, investor relations, and sustainability content. Technically, the site uses modern web technologies including SiteVision CMS, Google Tag Manager, and UIkit CSS framework, delivering good performance and mobile optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional presentation and content. Strategic recommendations include publishing security and incident response policies, adding a security.txt file, and improving transparency around data protection officer contact details.

B

Blue Sky Travel

blueskytravel.hu

47

Blue Sky Travel is a Hungarian travel agency established in 2018, specializing in air and bus travel packages primarily to Greek islands and various exotic destinations. The company offers competitive pricing, last-minute deals, and comprehensive travel organization services targeting Hungarian-speaking travelers. Their website features a professional design with clear navigation, mobile optimization, and integrated booking forms, reflecting a medium-sized business with a solid market presence. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and popular analytics and marketing tools such as Google Tag Manager, Hotjar, Microsoft Clarity, and Tawk.to live chat. Hosting is provided via a CDN, ensuring moderate performance and good mobile responsiveness. SEO and accessibility are adequately addressed, though some improvements are possible. From a security perspective, the site enforces HTTPS and employs consent-based loading of tracking scripts, demonstrating a privacy-aware approach. However, it lacks several important security headers and does not publish a security policy or incident response contacts. No critical vulnerabilities or suspicious activities were detected, and WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a trustworthy and professional travel service with room for improvement in privacy policy transparency and security hardening. The risk level is moderate with no immediate threats identified.

P

Personal Tours

personaltours.hu

57

Personal Tours is a well-established Hungarian travel agency specializing in personalized travel packages primarily to Greek islands and exotic destinations. With nearly three decades of experience, the company offers a variety of services including flight-inclusive trips, individual accommodation bookings, cruises, and city tours. The website reflects a professional and user-friendly design, targeting Hungarian-speaking travelers seeking affordable and customized holiday options. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and integrates marketing and analytics tools like Google Tag Manager and Facebook Pixel. Security measures include HTTPS enforcement, reCAPTCHA for forms, and a comprehensive cookie consent mechanism compliant with GDPR. However, explicit security policies and incident response contacts are not present on the site, representing an area for improvement. Overall, the website is trustworthy, well-maintained, and provides a solid digital presence for the business.

Orex Travel is a Hungarian travel agency specializing in organizing vacation packages primarily to Turkey, Egypt, and Bulgaria. The company offers a wide range of travel services including hotel bookings, direct flights, insurance, excursions, private transfers, and airport parking. The website reflects a well-established business with a domain age since 2011, consistent with its market presence. Technically, the site uses modern frameworks such as Next.js and React, with integrations for analytics, chat support, and cookie consent, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie management, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving Hungarian travelers effectively.

B

BUDAVÁR TOURS Utazási Iroda

budavartours.hu

60

Budavár Tours is a well-established Hungarian travel agency operating since 1999, offering a broad portfolio of travel services including bus tours, exotic trips, family vacations, and city tours. The website is professionally designed with good content quality and clear navigation, targeting Hungarian-speaking travelers. Technically, the site uses a mix of legacy and modern technologies such as jQuery, Google Tag Manager, Facebook Pixel, and Hotjar, with a consent management system in place for cookie compliance. Security posture is solid with HTTPS and some security best practices, though security headers could be enhanced. Privacy compliance is partial due to the absence of explicit privacy and terms of service pages. Overall, the domain age and WHOIS data support the legitimacy of the business, and contact information is clearly presented. The site is safe for general audiences and does not contain adult or explicit content.

C

Children's of Alabama Indy Grand Prix

indyalabama.com

56

The Children’s of Alabama Indy Grand Prix website represents a well-established motorsports event held annually at Barber Motorsports Park in Birmingham, Alabama. The event supports the Children’s of Alabama hospital and is powered by AmFirst, indicating a strong charitable and community focus. The website provides comprehensive information about the event, ticketing, hospitality, fan activities, and sponsorship opportunities, targeting motorsports enthusiasts and local supporters. The site is professionally branded and maintains consistent messaging aligned with its charitable mission. Technically, the website is built on WordPress using the Total theme, incorporating modern web technologies such as jQuery, Revolution Slider, and Gravity Forms. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized and accessible, with a user-friendly design and clear navigation. However, it lacks an explicit cookie consent mechanism, which may impact privacy compliance. From a security perspective, the site enforces HTTPS and uses standard tracking and marketing scripts. There is no evidence of exposed sensitive data or vulnerabilities in the visible content. Security headers are not explicitly detected but HTTPS presence suggests a baseline security posture. The absence of WHOIS registration data is a concern for domain legitimacy, although the site content and branding appear trustworthy. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, the website demonstrates a solid digital presence with good content quality and technical implementation. Privacy compliance could be improved by adding cookie consent and GDPR indicators. The lack of WHOIS data reduces trustworthiness slightly but does not outweigh the professional presentation and clear business purpose. Strategic recommendations include enhancing security headers, implementing a vulnerability disclosure policy, and improving privacy compliance to strengthen trust and security posture.

S

Sokrati

sokrati.com

63

Sokrati is a well-established digital marketing and performance media agency founded in 2008 and operating under the parent company Dentsu. The company specializes in data-driven marketing solutions including performance marketing, organic search optimization, analytics, and strategic planning. Their market position is strong with globally recognized clients and certifications from Meta and Google, supported by detailed case studies and client testimonials demonstrating measurable success. Technically, the website is built on modern frameworks such as Next.js and React, with good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and explicit security policies are not visible on the site. Privacy compliance is partial, with a comprehensive privacy policy linked via the parent company but lacking a cookie consent mechanism on the site. Overall, the website is professional, trustworthy, and well-positioned in the digital marketing industry.

H

HOMA

homacz.cz

50

HOMA is an e-commerce retailer specializing in home textiles and household products primarily serving the Czech market with sister sites in Slovakia, Hungary, and Austria. The website offers a broad product range including bedding, towels, and cosmetics, targeting domestic consumers seeking quality products at reasonable prices. The digital infrastructure employs modern tracking and marketing technologies such as Google Analytics, Facebook Pixel, and reCAPTCHA, indicating a mature online presence. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy is published. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification, though the website content and business information appear professional and trustworthy. Overall, the site is safe for general audiences and demonstrates a solid e-commerce platform with room for security and technical improvements.

H

HOMA

homa.sk

53

HOMA is a Slovak-based e-commerce retailer specializing in home textiles such as bedding, sheets, blankets, towels, and related products. The website targets general consumers seeking quality home textile products at reasonable prices. The business operates a medium-sized online retail platform with a consistent brand presence and a good level of content quality and user experience. Technically, the website uses a proprietary CMS called CREATIVE shop and integrates modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and affiliate marketing tools. Security measures include HTTPS enforcement, Google reCAPTCHA for bot protection, and a comprehensive cookie consent mechanism. However, explicit privacy and terms of service pages are not detected in the provided content, and no clear contact information is visible, which could impact user trust and compliance. Overall, the website demonstrates a solid technical and business foundation with room for improvement in privacy transparency and contact accessibility.

N

Nestle Professional

nestleprofessional.ca

70

Nestlé Professional Canada operates as a B2B supplier specializing in culinary and beverage solutions for the hospitality and foodservice sectors. The website presents a professional and consistent brand image aligned with the global Nestlé brand, targeting Canadian foodservice operators and culinary professionals. The business model focuses on providing products, systems, and expertise to grow operations in the food and beverage industry. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates Google Tag Manager and OneTrust for analytics and cookie consent management. The site is mobile-optimized and accessible with good SEO practices. Security posture is moderate; HTTPS is implied, but no explicit security headers or vulnerability disclosures are present. The absence of WHOIS data for the domain is a notable anomaly, potentially indicating privacy protection or registration issues. Overall, the site is trustworthy and professional but would benefit from enhanced transparency in privacy and security policies.

D

DFB GmbH & Co. KG

dfb-efootball.de

62

The website www.dfb-efootball.de serves as the official portal for the German Football Association's esports activities, including the DFB-ePokal tournament powered by ERGO and the German eNationalmannschaft. It targets esports enthusiasts and the football community, providing tournament information, news, and community engagement. The platform is professionally branded and positioned as a key player in the esports media sector in Germany. Technically, the site is built as an Angular single-page application hosted on AWS infrastructure, integrating modern marketing and analytics tools such as Google Tag Manager, TikTok Pixel, and Usercentrics for consent management. Accessibility is enhanced with Eye-Able tools, and the site is mobile-optimized with good SEO practices. Security posture is strong with HTTPS enforced and use of security headers implied, although explicit security policies and vulnerability disclosures are absent. Privacy compliance is well addressed with clear privacy and cookie policies linked to official DFB domains. Overall, the site demonstrates a mature digital presence with extensive user tracking balanced by consent mechanisms. No critical security issues or content safety concerns were detected.

S

Sirius Facilities GmbH

siriusfacilities.com

53

Sirius Facilities GmbH is a prominent German commercial real estate company specializing in flexible leasing of office spaces, storage, production halls, conference centers, and virtual office services. With over 70 locations and a large portfolio, they cater primarily to small and medium-sized enterprises as well as larger firms. Their website demonstrates a mature digital presence with a professional design, comprehensive service offerings, and multiple contact channels. Technically, the site is built on Drupal CMS with modern JavaScript libraries and includes privacy compliance tools such as Usercentrics CMP and analytics via Google Analytics and Matomo. Security posture is strong with HTTPS and secure forms, though some HTTP security headers could be improved. The WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding and transparent contact information.

U

US Federal Contractor Registration (USFCR)

usfcr.com

62

US Federal Contractor Registration (USFCR) is a specialized service provider focused on assisting businesses, nonprofits, and government agencies with federal contracting registrations, including SAM registrations and SBA set-aside certifications. Established in 2009, USFCR has completed over 300,000 SAM registrations, positioning itself as a trusted partner in the federal contracting space. Their service offerings include registration facilitation, compliance monitoring, proposal writing consulting, and vendor verification programs, targeting a broad audience from small to large entities seeking federal contracts. Technically, the website employs a modern technology stack including Bootstrap, FontAwesome, Google reCaptcha, and various analytics and advertising pixels such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted on DigitalOcean and built using HubSpot CMS components, indicating a mature digital infrastructure. The site is mobile optimized with good SEO and accessibility basics, though some improvements could be made in accessibility features. From a security perspective, the site uses HTTPS and implements reCaptcha for form security, but lacks DNSSEC and explicit security headers such as Content-Security-Policy and X-Frame-Options. No privacy or cookie policies were found, representing a compliance gap especially regarding GDPR. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, supporting the business credibility. Overall, USFCR presents a professional and trustworthy online presence with solid business credibility and technical implementation. However, it should improve privacy compliance and security hardening to enhance user trust and regulatory adherence.

I

Innova

innovaenergie.com

57

Innova is a technology-focused company based in Italy, providing innovative digital solutions and services. The website presents a professional image with consistent branding and a clear focus on technology and business audiences. The company leverages modern web technologies including ProcessWire CMS, Google Tag Manager, and Cookiebot for cookie consent management, indicating a mature digital infrastructure. The website is well-optimized for SEO and mobile devices, with good user experience and navigation clarity. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies could enhance trust further. Privacy compliance is partially addressed through Cookiebot, but the absence of a visible privacy policy and terms of service is a gap. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

P

Proff AS

proff.no

67

Proff AS operates the website proff.no, a Norwegian business information platform providing comprehensive data on Norwegian companies including financials, official roles, shareholders, and industry overviews. The company is part of the Enento Group, a recognized entity in the Nordic business information market. The website targets professionals and businesses seeking detailed corporate data to support decision-making and market analysis. Technically, the site leverages modern web technologies such as Next.js and React, with integrations for analytics and advertising managed through Google Tag Manager and other third-party services. Security posture is strong with HTTPS enforcement, multiple security headers, and a consent management platform ensuring GDPR compliance. However, the absence of WHOIS data for the domain reduces domain registration trustworthiness, though the website content and business affiliations strongly indicate legitimacy. Overall, the site presents a professional, secure, and user-friendly platform for business data services in Norway.

Situación Portuaria is a Chile-focused online platform providing historical and real-time data on port closures and operational restrictions across Chilean bays. The website offers services such as monitoring bay statuses, notifications for operational changes, and embedding gadgets for integration into other systems. The platform targets maritime operators and stakeholders requiring timely and historical port operation information. Technically, the website is built with modern web standards including HTML5, CSS3, and JavaScript, leveraging Google Fonts and Google Tag Manager for analytics. Hosting is managed via Cloudflare DNS, ensuring reliable domain resolution and HTTPS support. The site demonstrates good mobile optimization and user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and formal policies such as privacy and cookie policies. Contact information is clearly provided, including email and WhatsApp, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

B

BigRock

bigrock.com

68

BigRock is a well-established web presence solutions provider focusing on domain registration, web hosting, and related services primarily targeting small businesses, professionals, and individuals. The website indicates a transition away from the .com domain for new orders, directing new customers to the .in domain, which suggests a strategic regional focus. The company is part of Newfold Digital, a known parent company in the web services industry. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Google Analytics, with a moderate performance and good mobile optimization. Security practices include HTTPS usage and cookie consent mechanisms, though explicit security headers are not evident in the provided content. The WHOIS data for the domain www.bigrock.com is missing, which raises concerns about domain registration transparency and legitimacy. Overall, the site is professional and trustworthy from a user perspective but would benefit from improved security header implementation and clearer domain registration information.

B

B2XBET Apostas e Casino site oficial online no Brasil 🇧🇷 Bônus de registro

b2xbets.com.br

57

B2xBet Brasil is an established online gambling platform specializing in sports betting and casino games targeted at the Brazilian market. The platform offers a wide range of casino games including slots, crash games, live casino, and sports betting with a focus on football and e-sports. It holds a Curaçao eGaming license and is recognized as one of the top 5 casinos on Reclame Aqui, indicating a strong market position and trust among users. The website provides bonuses, a referral program, and supports transactions primarily via PIX, a popular Brazilian payment method. The content is professionally presented, with good SEO and structured data implementation, targeting adult users 18 years and older.