Security Directory

D

Doc Society

independence-project.org

47

The Independence Project is a non-profit advocacy initiative launched in 2024 by a coalition of independent documentary organizations, supported by Doc Society and The DISCO network. It aims to promote the cultural and societal importance of independent documentary filmmaking through research publications, community engagement, and collaborative platforms. The website reflects a focused mission with professional design and clear navigation, targeting independent filmmakers and cultural advocates. Technically, the website is built with modern web standards including HTML5, CSS3, and JavaScript, hosted on Linode, and uses Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, though accessibility features are basic. No CMS or advanced frameworks were detected. From a security perspective, the site uses HTTPS and domain-level protections like clientDeleteProhibited status but lacks DNSSEC and security headers, which are recommended for enhanced security. No privacy or cookie policies are published, which is a compliance gap. The domain registration uses privacy protection, which is justified for this non-profit project. Overall, the security posture is moderate but could be improved with better policy transparency and technical controls. The overall risk is low to moderate given the nature of the site and its content. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and improving GDPR compliance to enhance trust and security culture.

S

Synexis S.R.L.

synexis.be

44

Synexis S.R.L. is a Brussels-based web agency specializing in website creation, web design, SEO, e-commerce solutions, and digital marketing services. Established in 2010, the company serves local businesses and professionals seeking comprehensive digital presence solutions. The website reflects a professional and consistent brand image with clear service offerings and client references, positioning Synexis as a trusted local technology service provider. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and analytics tools, hosted by OVH, a reputable provider. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional and credible but would benefit from enhanced privacy and security disclosures.

Too Much Media operates the TMM Identity (TMMid) platform, a unified login system designed to streamline user access across its network of products and services. The website serves as a portal for users to create and manage their TMMid accounts, emphasizing privacy and ease of use. The business targets existing and prospective users of Too Much Media's digital offerings, positioning itself as an identity management solution within the technology sector. The site content is basic but functional, focusing on key features and user login capabilities. Technically, the website employs standard web technologies including HTML, CSS, JavaScript, and jQuery, with Google Analytics integrated for user tracking. The site uses HTTPS URLs, indicating basic SSL/TLS implementation, but lacks advanced security headers and modern frameworks. The design and user experience are basic and somewhat dated, with limited mobile optimization and accessibility features. From a security perspective, the site shows moderate maturity with HTTPS and secure password input fields. However, the absence of security headers, anti-CSRF protections, and visible privacy or cookie policies indicates gaps in security best practices and compliance. The missing WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, impacting overall risk assessment. Overall, the website functions as intended but requires improvements in security posture, privacy compliance, and transparency to enhance trust and protect user data. Strategic recommendations include implementing comprehensive security headers, publishing privacy and cookie policies, improving form security, and resolving domain registration inconsistencies to strengthen legitimacy and user confidence.

T

Tesco Bank

tescobank.com

74

Tesco Bank is a UK-based financial institution offering a variety of personal banking products including credit cards, personal loans, and savings accounts. The website reflects a mature digital presence with clear navigation, comprehensive product information, and integration with social media and third-party review platforms such as Trustpilot. The bank operates under a strategic partnership with Barclays Bank UK PLC, enhancing its market position and credibility. The site is well-branded and targets UK residents seeking accessible and rewarding personal finance solutions. Technically, the website employs modern JavaScript frameworks and is hosted on Azure CDN, ensuring good performance and mobile optimization. Accessibility features and SEO best practices are evident, contributing to a positive user experience. The presence of cookie consent mechanisms and detailed privacy policies indicate a strong commitment to privacy compliance. From a security perspective, the site enforces HTTPS and uses secure forms for login and registration. However, the absence of explicit security headers and a vulnerability disclosure policy suggests areas for improvement. The lack of WHOIS registration data is a notable anomaly that warrants further investigation to confirm domain legitimacy. Overall, Tesco Bank's website demonstrates a solid digital and security posture suitable for a large financial institution, though enhancements in transparency and domain registration verification would strengthen trust and compliance.

I

Intuitive Thinking Skills

intuitivethinkingskills.co.uk

66

Intuitive Thinking Skills is a UK-based organization specializing in peer-led attitudinal and behaviour change programs. They offer mentoring and accredited courses designed and delivered by individuals with lived experience, targeting sectors such as criminal justice, public health, education, and social care. The company positions itself as a leader in attitude behaviour change with a strong focus on sustainable outcomes and independence for service users. Their market presence is supported by multiple accreditations and partnerships with recognized UK government and certification bodies. Technically, the website is built on WordPress with modern technologies including React and Leaflet.js for interactive maps. The site is well-structured, mobile-optimized, and uses HTTPS with good SSL configuration. Analytics and marketing tools such as Google Analytics and Trustpilot are integrated for user insights and reputation management. However, some security headers are missing, which could be improved to enhance protection against common web vulnerabilities. From a security perspective, the site demonstrates a moderate security posture with no visible vulnerabilities or exposed sensitive data. The absence of certain HTTP security headers and cookie consent mechanisms are areas for improvement. The WHOIS data is unavailable and flagged with an error from Nominet, which raises concerns about domain registration legitimacy despite the professional and active website presence. Overall, the website is professional, content-rich, and trustworthy from a business and user perspective, but the domain registration inconsistency and minor security header omissions suggest areas for risk mitigation and compliance enhancement.

I

iWildCasino - The New Era of Online Casino

iwildcasino.com

56

iWildCasino is an online casino platform launched in 2021, targeting online gamblers and casino game enthusiasts. The website offers a variety of casino games and betting services, positioning itself as a new entrant in the online gambling market. The platform uses modern web technologies including Vue.js (Nuxt.js), Matomo analytics, Google Tag Manager, and Sentry for error tracking, hosted behind Cloudflare DNS and CDN services. The site is mobile optimized and provides a good user experience with a professional design, although content depth is basic. Security posture is moderate with HTTPS enabled and Cloudflare protection, but lacks advanced security headers and published privacy or cookie policies. No contact or incident response information is visible, which impacts trust and compliance. WHOIS data shows the domain is relatively new but consistent with the business type and registered via a reputable registrar. Overall, the site is functional and professionally presented but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and regulatory adherence.

G

Gamblezen Casino: Enjoy Top Slots for Real Cash

gamblezen.com

52

Gamblezen.com is an online casino platform specializing in slot games for real cash play. The website presents a modern and visually appealing design built with contemporary web technologies such as Nuxt.js and Tailwind CSS, indicating a moderate level of digital maturity. The domain is newly registered in 2023, which aligns with the site's apparent new market entry. Security posture is moderate; HTTPS is enabled, and domain status flags provide some protection, but there is a lack of security headers and published security policies. Privacy compliance is weak, with no visible privacy or cookie policies and no GDPR compliance indicators. Business credibility is moderate due to the absence of contact information and trust signals. Overall, the site is functional and professionally designed but requires improvements in privacy, security, and transparency to enhance trust and compliance.

G

GIGI TOYS

gigibloks.com

71

GIGI TOYS operates an e-commerce website gigibloks.com specializing in sustainable, recyclable building blocks and cardboard bricks for children. The company positions itself as a niche leader in eco-friendly children's toys, targeting environmentally conscious parents and families. Founded in 2013, the business leverages the Shopify platform to deliver its products online, offering a multilingual and user-friendly shopping experience. The website content is well organized, with clear navigation and a consistent brand presence emphasizing sustainability and quality.

F

FromMe

fromme.lv

59

FromMe.lv is a Latvian e-commerce platform specializing in the sale of gift cards and gift experiences from over 200 partner companies across Latvia. The website offers a broad selection of gift categories targeting various recipient groups such as men, women, children, couples, and corporate clients. The business model focuses on providing convenient online purchase and fast email delivery of gift cards, positioning itself as a leading gift card marketplace in Latvia. The site is well-branded, with consistent design and clear navigation, supporting both Latvian and Russian languages. Social media presence and marketing integrations indicate active customer engagement and digital marketing efforts. Technically, the website employs modern JavaScript libraries and integrates multiple analytics and marketing tools including Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, and PureChat. The site is served over HTTPS with good SSL configuration, though explicit security headers are not detected. Mobile optimization and SEO practices are good, contributing to a positive user experience. However, accessibility features are basic and could be improved. Security posture is solid with HTTPS enforcement and no visible sensitive data exposure. The absence of explicit security policies, incident response contacts, or vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Privacy and cookie policies are present and appear comprehensive and GDPR compliant, supporting user privacy and consent management. Overall, FromMe.lv presents a trustworthy and professional online retail platform with a strong market position in Latvia. The lack of WHOIS data due to query limits limits domain registration analysis, but website content and business indicators support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, improving accessibility, and maintaining regular security audits to strengthen the security posture further.

D

Durham University

dur.ac.uk

65

Durham University operates as a prestigious higher education institution in the United Kingdom, offering a wide range of undergraduate, postgraduate, and research programs. The website reflects a mature digital presence with comprehensive content targeting prospective students, current students, researchers, and alumni. The institution emphasizes global partnerships, student support, and research impact, positioning itself as a leading academic entity. The domain's long registration history and direct registration with Nominet reinforce its legitimacy and trustworthiness. Technically, the website employs modern JavaScript frameworks, integrates multiple analytics and tracking tools, and is optimized for mobile and accessibility standards. However, explicit privacy, cookie, and security policies are not evident in the provided content, which may impact compliance and user trust. Security posture is strong with HTTPS and best practices observed, but could be improved with clearer policy disclosures and security headers. Overall, the website is professional, content-rich, and credible, with room for enhanced privacy transparency and incident response readiness.

NeoShop.lv is a Latvian e-commerce retailer offering a broad range of products including garden supplies, sports equipment, automotive accessories, household appliances, furniture, health and beauty products, children's items, and collectibles. The website targets Latvian consumers seeking a comprehensive online shopping experience across multiple categories. The site demonstrates a mature digital presence with a well-structured product catalog and clear navigation. Technically, the site uses custom PHP backend scripts, JavaScript, and CSS, with Google Fonts integration. Security posture is solid with HTTPS enforced and standard security headers present, though no explicit security policy or incident response information is published. Privacy compliance is strong, featuring a cookie consent banner and a comprehensive privacy policy in Latvian. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, NeoShop.lv appears to be a legitimate and established online retailer in Latvia with moderate to good technical and security maturity.

V

Viking Line

vikingline.ee

58

Viking Line is a well-established transportation company specializing in ferry and cruise services across the Baltic Sea region, including routes to Helsinki, Stockholm, and Åland. The website reflects a mature digital presence with multi-language support targeting Nordic and Baltic markets. Key services include line ferry trips, cruises, hotel packages, and group travel, positioning Viking Line as a major regional player in maritime passenger transport. The website content is professionally structured and relevant to its target audience of travelers and business clients. Technically, the site uses modern web technologies such as Cookiebot for cookie consent management and Google Tag Manager for analytics, with a custom or proprietary CMS. Performance and mobile optimization are good, though accessibility could be improved. Security posture is strong with HTTPS enforced, proper security headers, and no visible vulnerabilities or exposed sensitive data. However, the site lacks a dedicated security policy and incident response contact information, which are recommended for enhanced trust and compliance. WHOIS data confirms the domain's legitimacy and consistency with the business's long history. Overall, Viking Line's website is professional, secure, and compliant, supporting its business credibility and customer trust.

R

Roche

roche.lv

61

Roche Latvija is the local website for Roche, a global leader in pharmaceuticals and diagnostics. The site provides information about Roche's products and services in Latvia, targeting healthcare professionals and patients. The website uses modern web technologies such as React and Gatsby, indicating a contemporary digital infrastructure. The content is professionally presented with consistent branding and good user experience, optimized for mobile devices. However, the site lacks visible privacy and cookie policies, security headers, and WHOIS data, which limits the ability to fully assess its security and compliance posture. No contact information or incident response details are provided, which could impact user trust and regulatory compliance. Overall, the website appears legitimate and professionally maintained but would benefit from enhanced transparency and security practices.

C

Congress of Neurological Surgeons

cns.org

59

The Congress of Neurological Surgeons (CNS) operates as a leading professional society dedicated to advancing the field of neurosurgery through education, scientific exchange, advocacy, and professional development. The organization serves a global audience of neurosurgeons, residents, fellows, and medical students, providing a comprehensive suite of services including annual meetings, online education, publications, clinical guidelines, and leadership programs. CNS maintains a strong market position as a preeminent neurosurgical society with extensive corporate partnerships and a robust digital presence. Technically, the CNS website is built on a mature ASP.NET WebForms platform, leveraging modern web technologies such as Google Tag Manager, Google Analytics, and Microsoft Clarity for analytics and marketing. The site is mobile responsive, well-structured, and optimized for SEO and accessibility at a basic level. Hosting utilizes Amazon Cloudfront CDN for asset delivery, contributing to moderate performance. From a security perspective, the site enforces HTTPS and employs standard best practices such as cookie consent mechanisms and secure form handling. While some security headers are not explicitly detected, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive policies and GDPR indicators. Overall, CNS presents a trustworthy and professional online presence with high-quality content and strong business credibility. The lack of WHOIS data is mitigated by the organization's transparency and extensive contact information. Strategic recommendations include enhancing security headers, improving accessibility features, and maintaining vigilance on third-party scripts to sustain security and compliance.

F

Ferrus

ferrus.lv

68

Ferrus is a Latvian e-commerce retailer specializing in tractors, agricultural machinery, garden equipment, and related accessories. The company positions itself as the official dealer for prominent brands such as KIOTI and TORO in Latvia, targeting agricultural professionals and municipal customers. Their website is built on the Shopify platform, leveraging modern e-commerce technologies and integrating multiple marketing and analytics tools to enhance customer engagement and sales performance. The site features clear navigation, product categorization, and customer testimonials, reflecting a professional and trustworthy business presence. Technically, the website demonstrates good mobile optimization, moderate performance, and basic accessibility features. Security measures include HTTPS enforcement, hCaptcha integration for form protection, and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data due to query limits limits domain registration verification, but the overall digital footprint suggests legitimacy. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility compliance to further strengthen the security posture and customer trust.

P

Patchworks

wearepatchworks.com

70

Patchworks is a UK-based technology company specializing in ecommerce integration platforms (iPaaS) designed for fast-growing retail businesses. Their platform offers a comprehensive suite of integration services including embedded iPaaS, blueprints, connector marketplaces, and custom scripting capabilities. Positioned as a leading integration provider in the retail sector, Patchworks targets ecommerce businesses seeking to automate and streamline operations. The website demonstrates a mature digital presence with professional design, clear navigation, and extensive service descriptions. Technically, the site is built on Shopify, leveraging modern JavaScript frameworks, SEO optimizations, and analytics tools such as Google Tag Manager and HubSpot. Security posture is strong with HTTPS enforcement, security headers, and form protection via hCaptcha. However, the absence of WHOIS domain registration data introduces some uncertainty regarding domain legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant, but explicit security policies and incident response contacts are not publicly available. Overall, Patchworks presents a credible and professional business platform with minor gaps in transparency around domain registration and security disclosures.

C

Codex

codex.lv

54

Codex is a technology company specializing in full potential software engineering (P3) and innovative IT solutions targeted at businesses in the Baltic region. Their offerings include information system development, maintenance, integrations, audits, and DevOps services. The company positions itself as a leading IT solutions provider in the Baltics with a strong focus on efficiency, growth, and digital transformation. The website is professionally designed, multilingual, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins for performance and multilingual support, and it uses Google Tag Manager for analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not published. The company holds multiple ISO certifications, enhancing trust and credibility. Overall, Codex presents a strong business and technical profile with room for improvement in transparency around security policies and incident response.

S

Shondaland

shondaland.com

62

Shondaland.com is a professionally designed media website focused on providing editorial content related to Shondaland's popular TV series such as Bridgerton and The Residence. The site targets fans and viewers interested in immersive content and behind-the-scenes insights. The business model centers on content publishing and brand engagement, supplemented by e-commerce through a linked shop. Technically, the site uses modern web technologies including React and Next.js, with Google Tag Manager for analytics. The website is mobile optimized and offers a good user experience with clear navigation and high-quality content. Security posture is moderate due to lack of visible security headers and missing privacy and cookie policies. WHOIS data is unavailable, which slightly reduces domain trustworthiness. Overall, the site is a credible media property with room for improvement in privacy compliance and security best practices.

B

Blackmagic Design

blackmagicdesign.com

64

Blackmagic Design is a prominent technology company specializing in high-quality products for the film, post-production, and broadcast industries. Their offerings include digital film cameras, video routers, live production switchers, and professional editing software such as DaVinci Resolve. The company targets professional filmmakers, broadcasters, and content creators, positioning itself as a leader in the media technology sector with a strong product portfolio and global reach. The website reflects a mature digital presence with rich multimedia content and clear product information, supporting their market position effectively. Technically, the website employs modern JavaScript libraries, font services, and tracking tools, ensuring a responsive and engaging user experience across devices. However, some technical details such as CMS and hosting provider are not explicitly identifiable from the provided data. Security-wise, the site uses HTTPS and includes tracking scripts but lacks visible security headers and formal security or privacy policies in the analyzed content. The WHOIS data is notably missing or inaccessible, which raises questions about domain registration transparency despite the professional appearance of the site. Overall, the website is well-designed and functional but would benefit from enhanced transparency and security best practices to strengthen trust and compliance.

A

AJA Video Systems, Inc.

aja.com

75

AJA Video Systems, Inc. operates a professional website offering a comprehensive range of video conversion, recording, I/O, and streaming solutions targeted at broadcast, production, post-production, and ProAV markets. The company is positioned as a reliable and robust provider of hardware and software products supporting advanced video workflows including 4K, HDR, IP video, and color management. The website demonstrates a mature digital presence with detailed product catalogs, family pages, and solution-oriented content, indicating a medium-sized technology business with consistent branding and high content quality. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and SVG graphics. It is mobile responsive and well-structured for user navigation. However, there is no explicit CMS or hosting provider information available. Performance is moderate with good SEO and basic accessibility features. Privacy compliance is strong with a clear privacy policy and cookie consent banner, supporting GDPR requirements. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS registration data limits domain trust verification, though the website content and branding strongly suggest legitimacy. Overall, the security posture is adequate but could be improved with enhanced headers, published security policies, and vulnerability disclosure mechanisms. The overall risk assessment is moderate-low risk with recommendations to improve security transparency and domain registration visibility. Strategic enhancements in security best practices and contact information visibility would strengthen trust and compliance posture.

I

Intelligence Media

intelligencemedia.co

69

Intelligence Media is a small, US-based direct-to-consumer ecommerce growth agency founded in 2022. The company specializes in digital marketing strategies focused on customer acquisition and retention for DTC brands. Their website is built on the Shopify platform, leveraging modern ecommerce technologies and integrations with marketing tools such as Klaviyo and Trustpilot. The site presents professional content with clear calls to action but lacks direct contact emails or phone numbers, relying on contact forms instead. Privacy and cookie policies are present and indicate GDPR compliance, with a consent mechanism implemented via a cookie banner. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though DNSSEC is not enabled and security headers are not explicitly detected. The domain is privacy protected but consistent with the business profile and age. Overall, the website demonstrates a good level of digital maturity and professionalism suitable for a small growth agency.

U

un-dark

un-dark.io

58

un-dark is a niche Web3 platform focused on pioneering digital mission work in hidden online spaces, particularly targeting Japan for its first launch. The platform leverages NFT technology to create access cards that grant community membership and participation in mission challenges. The website is professionally designed using Webflow, with interactive terminal-style content that engages users. The technical infrastructure is modern and integrates analytics and marketing tools such as Google Tag Manager and SumoMe. Security posture is good with HTTPS and no visible vulnerabilities, but lacks some security headers and formal policies. WHOIS data is unavailable, indicating privacy protection which is common in Web3 projects but reduces transparency. Overall, the platform presents a credible and innovative approach to digital mission work with room for improvement in privacy compliance and security documentation.

P

Plaza Solutions

plazasolutions.com

43

Plaza Solutions is a Chile-based small web development and support company founded in 2010. The company offers strategic web design, maintenance, and partnership services to help clients improve their web presence. The website content is primarily in Spanish and targets businesses or individuals seeking web solutions. The technical infrastructure is based on Bootstrap and standard web technologies, hosted on HostGator servers, with moderate performance and basic mobile optimization. Security posture is limited, with no visible HTTPS enforcement or security headers, and no privacy or cookie policies present. Contact is primarily via phone, with no email addresses or active contact forms. Overall, the website presents a basic but functional digital presence with room for improvement in security and privacy compliance.

W

We Do Spaces S.r.l.

sitland.com

62

Sitland, operated by We Do Spaces S.r.l., is a well-established Italian manufacturer specializing in ergonomic office and contract furniture. Founded in 1998, the company has a strong market presence with a focus on innovative seating solutions and workspace design. Their website reflects a professional and consistent brand image, targeting businesses and organizations seeking quality office furniture. The company maintains active social media channels and showcases numerous international projects, reinforcing its market position. Technically, the website is built on the ProcessWire CMS and utilizes modern frontend technologies including UIkit, Typekit fonts, and integrates tracking and marketing tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Cookie consent is managed through Iubenda, indicating attention to privacy compliance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, it lacks visible security headers which could enhance protection against common web threats. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-term registration, consistent with the company's history. Overall, Sitland's digital presence is solid with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and explicit security policies could further strengthen their security posture and trustworthiness.

D

de Sede Switzerland

desede.ch

68

de Sede Switzerland is a premium luxury furniture brand specializing in handcrafted leather furniture and designer sofas, masterfully crafted in Switzerland. The company targets affluent consumers and businesses seeking exclusive, high-quality seating solutions. Their e-commerce platform is built on Shopify, leveraging modern web technologies and ensuring a seamless user experience with excellent design, mobile optimization, and clear navigation. The website features comprehensive privacy and cookie policies with consent mechanisms, reflecting good privacy compliance. Security posture is strong with HTTPS enforcement, security headers, and form protection via hCaptcha, although explicit security policies and incident response information are absent. WHOIS data confirms the legitimacy of the domain and its alignment with the business claims. Overall, the website demonstrates a mature digital presence with high trustworthiness and professionalism.

A

A1 Srbija doo

a1.rs

72

A1 Srbija is a well-established telecommunications company operating in Serbia since 2012, offering mobile telephony, internet services, and device sales targeting private consumers. The website reflects a mature digital presence with professional design, good mobile optimization, and clear navigation. The company leverages multiple modern technologies including JavaScript frameworks, translation services, and marketing/tracking tools to enhance user experience and marketing reach. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in DNS security and security headers. Privacy compliance is addressed primarily through a comprehensive cookie policy, but explicit privacy and security policies are not prominently available. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

H

Herbalife International of America, Inc.

myherbalife.com

65

Herbalife International of America, Inc. operates myHerbalife.com as a distributor and member portal for its global nutrition and wellness business. The website provides access to account management, product catalogs, and business opportunity information, targeting Herbalife distributors and members worldwide. The site is professionally designed with consistent branding and supports multiple locales and languages. Technically, the site leverages modern JavaScript frameworks such as Kendo UI, jQuery, and integrates Adobe DTM, OneTrust for privacy compliance, and analytics tools like ContentSquare and UserZoom. The hosting infrastructure appears robust, utilizing Akamai CDN services for performance and security. Security posture is good with HTTPS enforced and privacy consent mechanisms in place, though explicit security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data for the exact domain is unavailable, likely due to it being a subdomain or alias, but the website content and linked domains strongly indicate legitimacy. Overall, the site demonstrates a mature digital presence with good privacy and security practices, suitable for its large global user base.

E

Participating teams

estlatbl.com

41

The website www.estlatbl.com appears to be a sports-related site focused on basketball, specifically listing participating teams. The site has a professional design with good mobile optimization and uses Google Tag Manager for analytics. However, there is a lack of publicly available business information, contact details, and privacy or cookie policies, which limits trust and compliance assessment. The WHOIS data is unavailable, indicating the domain may not be registered or WHOIS information is withheld, raising legitimacy concerns. Security posture is weak with no detected security headers or incident response information. Overall, the site functions well for content delivery but lacks critical compliance and security transparency.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is not accessible or loaded. Therefore, no business-related information, metadata, or structured data is available for analysis. The page is a local browser error page, not a public-facing website. Consequently, no privacy, cookie, or terms of service policies are present, and no contact or security information can be extracted. The technical infrastructure is limited to Chromium internal scripts and canvas-based game code, which is unrelated to any external business or website. The security posture is minimal, with no HTTPS or security headers detected. Overall, the site is inaccessible for meaningful analysis, resulting in a very low AI score and no trust indicators.

PR.com operates as a specialized online platform focused on press release distribution and business profile services, targeting businesses and marketers seeking to enhance their brand visibility and reach. The company positions itself as an industry leader with a broad client base exceeding 250,000 companies, offering key services such as press release distribution, business profiles, and product/service directories. The website content is professionally presented with clear navigation and consistent branding, supporting a medium-sized business presence primarily in the United States. Technically, the website employs modern web technologies including the Foundation CSS framework, Google Analytics, Google Tag Manager, and Bing UET for marketing and analytics purposes. The site is mobile optimized with good SEO practices and moderate performance. However, there is room for improvement in accessibility and security headers implementation. From a security perspective, the site benefits from HTTPS encryption and secure form practices but lacks visible security headers and explicit cookie consent mechanisms, which are important for GDPR compliance and enhanced security posture. The absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, although the professional website content and business information mitigate this concern. Overall, PR.com presents a credible and functional business platform with solid marketing and distribution capabilities. Strategic improvements in security headers, privacy compliance, and transparency around domain registration would further strengthen trust and security posture.

Seed&Spark is a specialized crowdfunding platform focused on film and storytelling projects, fostering a community that celebrates diverse voices and creative expression. Founded in 2011, the company has established a niche market position supporting filmmakers and storytellers through crowdfunding, events, and community engagement. The website reflects a medium-sized business with a clear mission and targeted audience. Technically, the site employs modern JavaScript libraries and analytics tools, hosted via Cloudflare, ensuring reliable performance and security. The presence of cookie consent mechanisms and privacy policies indicates compliance with GDPR and privacy best practices. Security posture is solid with HTTPS and domain protections, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Overall, the site is professional, trustworthy, and well-structured, supporting its business goals effectively.

G

Green The Bid

greenthebid.earth

56

Green The Bid is a small US-based non-profit organization dedicated to promoting sustainable and environmentally focused practices within the global advertising production industry. The organization provides open-source resources, educational sessions, and a community platform for brands, agencies, production companies, and allies to transition towards zero-waste and minimal carbon footprint productions. The website is professionally designed using Squarespace, featuring clear navigation and mobile optimization. Security posture is strong with HTTPS and HSTS enabled, though some advanced security headers and privacy policies are missing. Contact is primarily via social media and a contact form, with no direct emails or phone numbers published. Overall, the site presents a credible and focused mission but would benefit from enhanced privacy compliance and explicit security policies.

C

CODARS DESIGN, SIA

igstudija.lv

72

CODARS DESIGN, SIA is a Latvia-based technology company specializing in web project development, UX/UI design, and usability testing. With over 20 years of experience, the company serves leading Latvian businesses, offering tailored and innovative website solutions leveraging modern technologies such as Vue.js and Nuxt.js. Their market position is solid within the regional technology services sector, focusing on delivering flexible and user-centric digital products. The website reflects a professional and trustworthy brand with clear service offerings and client references. Technically, the website is built on a modern JavaScript stack with Nuxt.js and Vue.js frameworks, hosted behind Cloudflare DNS services. Performance and mobile optimization are excellent, and SEO practices are well implemented. The site uses a headless CMS approach and integrates Google Analytics configured for privacy with IP anonymization and cookie-less storage. The cookie consent mechanism is comprehensive, supporting GDPR compliance. From a security perspective, the site uses HTTPS with good SSL configuration and privacy-conscious analytics. However, DNSSEC is not enabled, and security headers are not explicitly detected, representing areas for improvement. No explicit security policy or incident response information is published, and no vulnerability disclosure mechanism is present. The WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, CODARS DESIGN demonstrates a mature digital presence with strong content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing DNS security with DNSSEC, publishing security policies, and adding vulnerability disclosure information to further strengthen security posture and trust.

The website at lidds.com/lander appears to be a minimal placeholder or parking page with very limited content. There is no visible business information, contact details, or policies, which suggests the site is not actively used for customer engagement or business operations. The domain is registered with GoDaddy.com, LLC since 2004, indicating a long-standing registration, but the website content does not reflect an active or mature business presence. Technically, the site uses basic JavaScript and CSS assets served from wsimg.com and includes Google Adsense scripts, but lacks modern SEO, accessibility, or security features. The absence of HTTPS and security headers is a significant security concern. Overall, the site has a low security posture and poor privacy compliance, with no visible incident response or vulnerability disclosure mechanisms.

A

Austell.com

austell.com

38

Austell.com is a local online city guide focused on Austell, Georgia, providing residents and visitors with information about attractions, restaurants, hotels, real estate, and community news. The website operates as a media platform with a content and advertising-based business model, targeting local audiences interested in exploring and living in Austell. The site maintains a consistent brand presence and offers regularly updated local news and advertisements from regional businesses. Technically, the website is built on WordPress CMS using the Newsmag theme and WPBakery Page Builder, integrating common technologies such as jQuery, Google Analytics, and Facebook SDK. The site is mobile-optimized with good SEO practices, though accessibility features are basic. Performance is moderate, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site has HTTPS enabled and does not expose sensitive data in the HTML. However, it lacks important security headers and does not provide a security policy or vulnerability disclosure mechanism. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, which could pose compliance risks under GDPR or similar regulations. Overall, Austell.com presents a moderate risk profile with good business credibility but needs improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

The website www.ob-tampons.com represents the o.b.® brand, a feminine hygiene product line specializing in non-applicator tampons. It is branded under Edgewell, a large company in the retail sector. The site provides product information, a period calculator tool, FAQs, and promotional offers targeting women seeking environmentally friendly tampon options. The business model is primarily informational with e-commerce support through product details and offers. Technically, the site is built on the Telerik Sitefinity CMS platform with modern JavaScript libraries and is mobile optimized with a moderate performance profile. Security posture is adequate with HTTPS enabled but lacks visible security headers and explicit privacy and terms of service pages, which are important for compliance and trust. The absence of WHOIS data for the domain is a notable anomaly that reduces trustworthiness despite the professional branding and content. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the requested website content is not accessible or blocked. No actual website content, metadata, or business information is present to evaluate. The page is a local browser error placeholder rather than a live website. Consequently, no privacy policies, cookie notices, terms of service, contact information, or security policies are found. The technical infrastructure is limited to Chromium internal scripts and styles used for the error page display. No external links, analytics, advertising, or tracking mechanisms are detected. The security posture is minimal with no HTTPS or security headers evident. WHOIS data is not provided, and the domain appears to be an internal or placeholder domain without public registration data. Overall, the site is inaccessible for meaningful analysis and scores very low on content quality, privacy compliance, business credibility, and security posture.

C

Corporate Solutions

bodylease.dev

66

bodylease.dev is an international IT company specializing in leasing IT talent such as developers, testers, and consultants to businesses seeking to outsource IT projects and improve productivity. The company operates primarily from Latvia with a support office in Uzbekistan and is part of the Corporate Solutions group. Their business model focuses on providing flexible IT staffing solutions to accelerate project delivery and reduce costs for clients. The website presents a professional and consistent brand image with clear navigation and relevant content targeting businesses in need of IT outsourcing services. Technically, the site is built on Drupal 10, uses modern web technologies including Font Awesome and Google Tag Manager, and is mobile optimized with basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are absent. No blocking or WAF mechanisms interfere with content access. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the site is functional, professional, and trustworthy with room for improvement in security and privacy transparency.

O

OnlineKazino.net

onlinekazino.net

55

OnlineKazino.net is a Latvian online casino informational and affiliate website established in 2018. It provides comprehensive reviews, bonus listings, free spins offers, and educational content targeting Latvian-speaking online casino players. The website is built on WordPress, uses Cloudflare DNS, and integrates Google Analytics and Clicky for visitor tracking. It employs HTTPS with a valid SSL certificate but lacks some advanced security headers. No privacy or cookie policies are explicitly found, which may impact compliance. The domain registration is transparent and consistent with the business claims, indicating legitimacy. Overall, the site offers good content quality and user experience with moderate technical and security maturity.

3

360 Cities Holding B.V.

360cities.net

62

360Cities.net operates as a leading global platform specializing in 360° panoramic images and videos, catering to a diverse audience including educators, publishers, advertisers, filmmakers, and VR content creators. The company offers a marketplace and licensing services that enable contributors to monetize their panoramic media while providing customers with high-quality immersive content. The website demonstrates a strong market position with a professional and consistent brand presence, supported by a vibrant contributor community and notable customer partnerships.

S

SIA DEPO DIY

depo-diy.ee

49

DEPO is a well-established retail company operating primarily in Estonia with a focus on home improvement, gardening, and general retail products. The website reflects a mature digital presence with multilingual support and an online shopping platform, targeting consumers in the Baltic region. The company appears to have a solid market position with physical stores and online services, catering to a broad consumer base. Technically, the website is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional and trustworthy, with clear contact information and consistent branding.

The website wildside.it currently presents a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is well aged, created in 2010, and DNSSEC is enabled, which are positive indicators of legitimacy. However, the site uses very outdated CMS technologies (Joomla 1.5 and WordPress 2.5), which are known to have multiple security vulnerabilities and are no longer supported. No privacy, cookie, or terms of service policies are visible, nor is there any contact or business information available on the page. The security check is powered by BitNinja.IO, a third-party security service, suggesting some level of protection against attacks. Overall, the site’s technical infrastructure appears outdated and the user experience is poor due to the blocking page and lack of content.

D

domina.lv

domina.lv

47

The domain domina.lv currently hosts a parked domain page indicating it is for sale, with no active business or service content. The website primarily serves as an advertising placeholder with Google Ads integration. There is no identifiable company or business information, and no contact details are provided. The site lacks substantive content, branding, or trust indicators, limiting its business credibility. Technically, the site uses basic HTML, CSS, and JavaScript with Google advertising scripts. There is no evidence of a CMS or advanced frameworks. The site is moderately optimized for mobile but lacks accessibility and SEO best practices. Security measures such as HTTPS and security headers are not verifiable from the provided data, and no forms or user inputs are present. Security posture is minimal with no visible vulnerabilities but also no advanced protections. Privacy compliance is basic with a privacy policy and terms of service pages but no cookie consent mechanism or GDPR indicators. The lack of WHOIS data due to query limits restricts domain legitimacy assessment, but the parked status and domain-for-sale message suggest no active business use. Overall, the site presents a low-risk profile but also low trust and business credibility. Strategic recommendations include improving transparency, adding contact information, implementing security best practices, and enhancing privacy compliance if the domain is to be developed into an active business site.

U

US.COM

us.com

61

US.COM operates as a premium domain registry offering the .US.COM namespace, targeting businesses and entrepreneurs seeking an unrestricted domain presence in the U.S. market. The website positions itself as a global domain alternative to the restricted .us ccTLD, emphasizing premium domain availability and global reach. The business model centers on domain registration and sales, supported by Gen.xyz for customer and abuse support. Technically, the website employs modern web technologies including jQuery, Underscore.js, Bootstrap grid, and Google Tag Manager, delivering a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

The website thebrexitparty.org is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. This prevents extraction of meaningful business, privacy, or security information. The domain is registered since 2019 with NameCheap and uses Cloudflare for DNS and security services. No privacy policies, cookie consent mechanisms, contact information, or business details are visible in the accessible content. The technical infrastructure relies on Cloudflare's security platform, but no further CMS or technology stack details are available. The security posture cannot be fully assessed due to lack of content access, but the presence of Cloudflare WAF indicates some level of protection. Overall, the site appears to be a placeholder or protected gateway rather than a fully accessible website.

M

Maximus Canada

maximuscanada.ca

73

Maximus Canada is a well-established service provider specializing in government and public sector program transformation, with a focus on health services, citizen services, and technology solutions. The company operates primarily in Canada and is part of the larger Maximus Inc. group. Their website reflects a professional and modern digital presence, leveraging Drupal 10 CMS and integrating advanced analytics and consent management tools. The content is relevant and well-structured, targeting government agencies and public sector clients. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance mechanisms in place, although there is room for improvement in DNS security and incident response transparency. Overall, the website and domain registration data indicate a legitimate and credible business with a solid market position in the Canadian government services sector.

I

iRobot

irobot.pt

61

The website www.irobot.pt is a localized e-commerce platform for iRobot products targeting the Portuguese market. It offers robotic vacuum and mop products, accessories, and customer support information. The site is built on Salesforce Commerce Cloud and integrates modern technologies such as Braintree for payments, Gigya for customer identity management, TrustArc for cookie consent, and Google Tag Manager for analytics. The website demonstrates a good level of digital maturity with responsive design, accessibility features, and a professional user experience. Security posture is strong with HTTPS, security headers, and reCAPTCHA v3 implemented on forms. However, explicit privacy policy and terms of service pages were not found in the provided content, which is a compliance gap. Contact information such as emails or phone numbers is also not directly visible, which may impact user trust and support accessibility. Overall, the site is legitimate, well-structured, and secure, but could improve privacy compliance and transparency.

I

iRobot Corporation

irobot.nl

60

iRobot.nl is the localized Dutch e-commerce website for iRobot Corporation, a leading global manufacturer of robotic vacuum and mop cleaners. The site offers a comprehensive product catalog including Roomba and Braava robots, accessories, and promotional offers. It targets consumers in the Netherlands and surrounding European markets, leveraging Salesforce Commerce Cloud for its e-commerce platform. The website demonstrates a mature digital infrastructure with integrations for secure payments (Braintree), customer identity management (Gigya), and consent management (TrustArc). Security posture is strong with HTTPS, security headers, and reCAPTCHA protections. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and aligned with corporate branding and business objectives.

I

iRobot

irobot.ie

69

iRobot.ie is the official Irish e-commerce website for iRobot, a leading global brand specializing in robotic vacuum and mop products. The site offers a comprehensive catalog of Roomba and Braava products, accessories, and deals tailored for the Irish market. The platform is built on Salesforce Commerce Cloud, integrating advanced identity management (Gigya), secure payment processing (Braintree), and analytics (Datadog, Google Analytics). The website demonstrates a mature digital infrastructure with good mobile optimization, accessibility features, and SEO practices. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections. Privacy and cookie policies are present and GDPR compliant, reflecting adherence to European data protection standards. WHOIS data is unavailable due to privacy protection, which is typical for commercial domains, but the website content and branding strongly support legitimacy. Overall, the site is a professional, secure, and user-friendly platform for iRobot's Irish customers.

I

iRobot

irobot.be

59

iRobot.be is a professional e-commerce website dedicated to selling robotic vacuum and mop cleaning devices primarily targeting the Belgian market. The site is part of the global iRobot brand, a recognized leader in robotic cleaning technology. The website leverages a mature technical infrastructure based on Salesforce Commerce Cloud, integrating advanced customer identity management (Gigya), payment processing (Braintree), and consent management (TrustArc). The site is well-optimized for mobile and accessibility, with good SEO and user experience. Security posture is strong with HTTPS, reCAPTCHA, and consent mechanisms, although explicit security policies and incident response contacts are not publicly visible. WHOIS data is restricted by the .be registry, but the domain and website content are consistent with a legitimate commercial entity. Overall, the site demonstrates a solid digital maturity and trustworthy e-commerce presence.