Security Directory

Hands Mobile is a Brazilian technology company specializing in mobile data intelligence and activation solutions. The company offers a range of services including mobile activations, data intelligence, geolocated media, and creative mobile experiences. With over 200 clients and partnerships with major brands such as BMW, Itaú, and Mastercard, Hands Mobile holds a solid position in the mobile marketing technology sector. The website content is professional, well-structured, and targets agencies and enterprises seeking advanced mobile marketing solutions. Technically, the website employs modern tracking and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, hosted behind Cloudflare DNS services. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features and security headers. Performance is moderate, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site demonstrates a good baseline with HTTPS and no visible sensitive data exposure. However, it lacks explicit security headers and does not provide public security or incident response policies. Privacy compliance is partial; a privacy policy is present but no cookie consent mechanism or GDPR compliance indicators are evident. Contact information is available but no phone number is explicitly labeled. The site uses multiple marketing and retargeting tools, indicating extensive user tracking. Overall, the website is trustworthy and professional but could improve in privacy compliance and security best practices. Strategic recommendations include implementing cookie consent, adding security headers, publishing terms of service and incident response policies, and enhancing transparency around data protection.

H

Harizma Alliance LP

effectivetours.com

68

Effective Tours is a specialized SaaS provider offering a hotel channel manager and property management system designed to streamline hotel inventory, rate, and booking management. The company targets hotels, tour operators, travel agents, and transport providers, positioning itself as a niche player with certifications from major OTAs such as Agoda, Booking, and Expedia. Their business model is subscription-based with a simple pricing structure, supported by a free 60-day trial to attract customers. Technically, the website is hosted on Amazon Web Services, leveraging a modern tech stack including HTML5, CSS3, JavaScript, and integration with Google Analytics and LinkedIn Insight for marketing and analytics. The site is mobile-optimized with responsive design and good SEO practices, though accessibility features are basic. The domain is well-established since 2012, with consistent WHOIS data matching the business entity. From a security perspective, the site enforces HTTPS and uses AWS multi-regional hosting for availability and fault tolerance. However, explicit security headers are not detected, and no published security or incident response policies exist. Privacy compliance is addressed with a cookie consent banner and privacy policy, indicating GDPR awareness. No critical vulnerabilities or exposed sensitive data were found. Overall, the website demonstrates a solid business and technical foundation with good trust indicators and compliance posture. Strategic improvements in security policy transparency, DNSSEC implementation, and enhanced security headers would further strengthen their security posture and customer trust.

The website maru-world.com presents minimal content, primarily consisting of an iframe embedding external content from the domain yfdpco.com, which is suspicious and lacks transparency. There is no visible business information, contact details, or privacy and cookie policies, indicating a very low level of digital maturity and professionalism. The domain is registered since 2019 with a reputable registrar, but the website itself does not reflect a legitimate or mature business presence. Technically, the site lacks HTTPS, security headers, and accessibility features, and it performs poorly in mobile optimization and SEO. The security posture is weak, with no protections or best practices implemented, and the use of an iframe to an unknown external domain raises potential security concerns. Overall, the site scores very low on content quality, security, privacy compliance, and business credibility, indicating high risk and low trustworthiness.

D

Dura-Line

duraline.com

64

Dura-Line is a global manufacturer specializing in HDPE conduits and microducts primarily serving the telecommunications, energy, and transportation sectors. The company positions itself as a leader in conduit technology and installation training, offering a comprehensive product catalog and digital tools to support network deployment. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. The technical infrastructure leverages modern analytics and marketing technologies including HubSpot, Microsoft Application Insights, Hotjar, and Google Tag Manager, indicating a data-driven approach to user engagement and marketing. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Overall, the site is professional and trustworthy from a content and technical perspective but would benefit from enhanced transparency in domain registration and security disclosures.

V

VIVID TECH

vividtech.eu

58

VIVID TECH is a technology company specializing in smart shelf labels with interactive full-color displays designed to enhance retail environments by increasing customer engagement and sales. Their solutions target a variety of retail sectors including airports, pharmacies, tourist shops, wine and beverage stores, restaurants, home & DIY stores, shoes & apparel, hotels, and electronics stores. The company offers a B2B model focusing on hardware and software integration, including API connectivity and customer analytics. The website demonstrates a moderate level of digital maturity, employing modern JavaScript libraries such as Alpine.js, Flowbite, and FancyApps UI, alongside analytics tools like Google Analytics and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and content relevance, though some accessibility features could be improved. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is privacy protected by EURid, which is typical for .eu domains, limiting the ability to fully verify domain registration details. Overall, the website presents a professional and trustworthy front with clear contact information and social media presence. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility and privacy compliance to strengthen trust and compliance posture.

O

Oras

oras.com

54

Oras is a Finnish manufacturing company specializing in faucets and sanitary fittings, serving both consumer and business markets. The website is professionally designed using TYPO3 CMS and includes modern marketing and tracking technologies such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, all managed with a cookie consent mechanism. Despite the professional presentation, the absence of WHOIS data for the domain www.oras.com raises questions about domain registration transparency. Security posture is moderate with no detected security headers and no explicit privacy policy found in the provided content. Overall, the website demonstrates good technical implementation and business credibility but would benefit from improved transparency and security hardening.

R

Rīgas nami

rigasnami.lv

63

Rīgas nami is a leading municipal real estate management company in Riga, Latvia, specializing in property rental, management, and event venue services. The website reflects a professional and consistent brand presence targeting municipal property tenants and event organizers. The technical infrastructure includes modern JavaScript libraries, Cookiebot for consent management, and analytics tools such as Google Analytics and Facebook Pixel, indicating a mature digital presence. Security posture is strong with HTTPS enforcement and CSRF protection, though some security headers could be improved. Privacy compliance is robust with a comprehensive cookie consent mechanism and a detailed privacy policy in Latvian. Overall, the website is well-designed, user-friendly, and trustworthy, supporting the company's market position as a municipal real estate leader.

D

Deutsche Börse Group

eurexgroup.com

70

Eurex, operated by Deutsche Börse Group, is a leading global derivatives exchange specializing in EUR-denominated equity index and fixed income derivatives. The website presents comprehensive market and product information targeting financial market participants such as traders, clearing members, and institutional investors. The business model focuses on providing derivatives trading, clearing services, market data, and repo market solutions, positioning Eurex as a key player in the global financial markets. Technically, the website is built on CoreMedia CMS with JavaScript and integrates Matomo analytics for user tracking. The site demonstrates good mobile optimization, clear navigation, and professional design, supporting a positive user experience. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are not clearly published. WHOIS data is unavailable, likely due to privacy protections common in financial sector domains, but the domain and content legitimacy are supported by consistent branding and association with Deutsche Börse Group. Overall, the website is professional, secure, and credible, serving its target audience effectively.

P

Proks

proks.com

54

Proks is an established Latvian trading and distribution company specializing in supplying top brand computer components and consumer electronics globally, with a strong focus on the Baltic States. Founded in 1992, the company serves a diverse clientele including distributors, retailers, and PC assemblers across more than 62 countries. Their business model centers on wholesale distribution, supported by owned warehouse facilities and a portfolio of official brand partnerships, including a private label for household appliances. The website reflects a professional and consistent brand image, with good content quality and clear navigation. Technically, the website is built on WordPress with modern web technologies and Google Fonts integration. It demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the website is credible and trustworthy, supported by domain registration consistency and business legitimacy indicators such as credit ratings and certifications. However, improvements in privacy compliance, security transparency, and accessibility would enhance the site's maturity and user trust.

F

Faro Barcelona

faro.es

58

Faro Barcelona is a Spanish company specializing in the design and production of lighting and ceiling fans, positioning itself as an expert in lighting and ventilation solutions. The website presents a professional and consistent brand image targeting consumers and businesses interested in lighting products. The technical infrastructure is based on standard web technologies including HTML5, CSS3, and JavaScript, with custom fonts and icons enhancing the user experience. Mobile optimization and SEO practices are adequately implemented, though accessibility features are basic. Security posture is limited with no visible security headers or explicit SSL/TLS configuration details in the provided data. Privacy and cookie policies are not found, indicating potential compliance gaps. Overall, the website is functional and credible but would benefit from enhanced security and privacy transparency.

pitstop.de GmbH operates a large network of automotive workshops across Germany, providing a wide range of vehicle maintenance and repair services including inspections, oil changes, brake services, tire sales, and more. The company leverages an online booking platform and e-commerce capabilities to serve car owners efficiently. With over 300 branches and more than 50 years of experience, pitstop.de holds a strong market position supported by industry awards and positive customer reviews. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Microsoft Application Insights for telemetry and analytics. The site is well-optimized for mobile devices and accessibility, with comprehensive privacy and cookie consent mechanisms in place. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies could be improved. Overall, the website demonstrates a professional, trustworthy, and user-friendly digital presence aligned with the company's business model and market reputation.

du, operated by Emirates Integrated Telecommunications Company (EITC), is a leading telecommunications provider in the United Arab Emirates offering a wide range of consumer services including mobile postpaid and prepaid plans, home internet and TV packages, 5G internet, and device sales. The website reflects a mature digital presence with a focus on consumer engagement, accessibility, and e-commerce capabilities. The technical infrastructure leverages modern JavaScript frameworks, multiple analytics and marketing tools, and implements accessibility features to enhance user experience. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not prominently disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a high level of professionalism, trustworthiness, and business credibility suitable for a major telecom operator in the region.

A

ASCL / Asiaspirit

ascl.com

44

ASCL (Asiaspirit) is a small technology service provider specializing in web design, hosting, e-commerce, and website promotion services. The company has a long-standing domain registration dating back to 1996, indicating an established presence in the market. Their website targets businesses and individuals seeking comprehensive internet presence solutions, offering a range of related services. Technically, the website is built on basic HTML, CSS, and JavaScript without modern frameworks or CMS, and shows moderate performance and basic mobile optimization. Security posture is weak, with no HTTPS enforcement visible, no security headers, and no privacy or cookie policies published. Contact information is limited to a single email address, with no phone or physical address provided. Overall, the site is functional but lacks modern security and privacy compliance features.

Q&Q Control Services UK Ltd is a well-established inspection and quality control company specializing in quantity and quality inspections across West Africa, with over 30 years of experience. As part of the SIS Group, it offers a comprehensive range of services including oil and gas inspection, dry cargo inspection, laboratory services, superintendence, and meter and tank calibration. The company targets businesses involved in energy and transportation sectors, providing critical inspection and collateral management services to oil majors, trading companies, and financial institutions. The website is professionally designed, mobile-optimized, and hosted on HubSpot CMS, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS and security headers in place, though the absence of explicit privacy and security policies indicates room for improvement. Overall, the company presents a credible and trustworthy profile with clear contact information and detailed leadership disclosures.

T

Tietoevry

tieto.co.uk

77

Tietoevry is a large enterprise technology company with Nordic roots and a global presence, specializing in purposeful technology solutions that drive digital transformation, IT services, and software development. Their website reflects a mature digital infrastructure with modern analytics and monitoring tools, including Azure Application Insights, Google Tag Manager, and Piwik PRO, indicating a high level of digital maturity. The site is well-designed, mobile-optimized, and provides comprehensive privacy and cookie policies aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policy and incident response contact information are not prominently published. The absence of WHOIS data for the domain www.tietoevry.com is a notable anomaly that impacts domain trustworthiness, suggesting possible privacy protection or registration issues. Overall, the website presents a professional and trustworthy front for the business, but domain registration inconsistencies warrant further investigation.

P

PRo Kansas Recycling

recyclewichita.org

47

PRo Kansas Recycling is a small nonprofit organization established in 2012, providing free recycling services to Wichita and surrounding communities. The organization focuses on environmental sustainability through community engagement, education, and support services. Their website reflects a community-oriented business model with donation capabilities and educational resources. Technically, the site is built on WordPress with a modern plugin stack including Yoast SEO, GiveWP for donations, and WPBakery for page building. The hosting is provided by Bluehost, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. However, DNSSEC is not enabled, which is a recommended security enhancement. The security posture is moderate with room for improvement in security headers and policies. Privacy compliance is lacking due to the absence of privacy and cookie policies, which is a significant compliance gap. Overall, the website is professional and functional but should address privacy and security best practices to improve trust and compliance.

K

Kiwa Latvia

inspecta.lv

70

Kiwa Latvia is a professional service provider specializing in testing, inspection, certification, workplace safety, and professional training services primarily targeting businesses in Latvia. As part of the international Kiwa Group, it holds a strong market position supported by recognized certifications such as ISO 9001, ISO 14001, and ISO 45001. The website is well-structured, multilingual (Latvian and Russian), and provides comprehensive information about its services and industry sectors. Technically, the site employs modern analytics and consent management tools, ensuring GDPR compliance and accessibility standards. Security posture is robust with HTTPS and monitoring tools, though additional security headers and explicit incident response contacts could enhance it further. The absence of WHOIS data is a notable transparency gap but does not detract significantly from the overall legitimacy given the professional presentation and trust signals. Strategic recommendations include improving security header implementation, publishing a security.txt file, and providing clear data protection officer contact details to strengthen compliance and trust.

The website zizu.lv is a parked domain landing page primarily aimed at domain resale. It lacks substantive business content, contact information, or branding, indicating it is not actively used for a commercial business. The technical infrastructure relies on standard HTML and JavaScript with advertising scripts from Google Adsense and Youseasky, served via Amazon Cloudfront CDN. There is no evidence of HTTPS or advanced security headers, and privacy compliance is minimal with only a basic privacy policy page present. The absence of WHOIS data due to query limits prevents a full legitimacy assessment, but the domain appears to be privacy protected and used for domain parking. Overall, the site has a low trustworthiness and business credibility score.

O

Oberoi International School

oberoi-is.org

68

Oberoi International School is a leading private international school in Mumbai, India, offering the full International Baccalaureate continuum from Nursery through Grade 12. The school is highly ranked nationally and holds multiple prestigious accreditations, positioning itself as a top choice for families seeking world-class international education. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the site uses modern web technologies and integrates analytics via Google Tag Manager, though some security headers and privacy compliance features are missing. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, but improvements in privacy policy visibility and cookie consent are recommended. The domain WHOIS data is unavailable or protected, but the website's content and accreditations support its legitimacy. Overall, the site scores well for content quality, business credibility, and security, with room for enhancement in privacy compliance and explicit security policies.

A

Auchan Retail

groupe-auchan.com

64

Auchan Retail is a large, established French retail company focused on food commerce, local products, franchising, and energy partnerships. The website presents a professional and consistent brand image with a clear mission to improve quality of life through healthy and sustainable food. The digital infrastructure uses modern technologies including Bootstrap and a CMS named Snowboard, delivering a good user experience with mobile optimization and structured navigation. Security posture is solid with HTTPS and secure form handling, though some security headers are missing and no cookie consent mechanism is detected. The absence of WHOIS data for the domain is unusual and slightly reduces trust, but the website content and social media presence strongly support legitimacy. Overall, the site is well-built and credible but could improve privacy compliance and security header implementation.

VentEko JSC is an environmental engineering services company operating primarily in the Baltic States, offering a broad range of environmental consultations, training, and engineering services. The company positions itself as a leading provider in its region, with key services including soil and groundwater investigation, environmental monitoring, hydrocarbon pollution remediation, sustainable management services, and practical environmental management training. The website content is professionally presented and targets businesses and organizations requiring environmental expertise in the Baltic region. Technically, the website is built on the Contao CMS platform with custom JavaScript components for interactive image sliders. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. No advanced analytics or tracking tools are detected, indicating a minimal user tracking approach. From a security perspective, the site lacks visible security headers and privacy/cookie policies, which are important for compliance and user trust. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional appearance of the website. No WAF or blocking mechanisms are detected, and no vulnerabilities or exposed sensitive data are found in the HTML content. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance measures, and verification of domain registration details to improve trustworthiness and compliance posture.

T

TOMWARE s.c.a r.l.

tomware.it

45

TomWare is an established Italian technology company specializing in digital transformation services, cybersecurity, and tailored IT solutions. Founded in 1997, it offers a broad portfolio including network design, data center solutions, cloud computing, and managed services. The company targets businesses seeking secure and efficient IT infrastructure and consulting. The website reflects a mature digital presence with professional design and clear service offerings. Technically, the site is built on WordPress with modern fonts and responsive design, though performance is moderate and accessibility is basic. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Business credibility is high, supported by clear contact information, company registration details, and certifications. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

The website at wotcc.org/lander is currently a minimal placeholder or parking page with no substantive content, business information, or user engagement features. The domain is registered through GoDaddy with privacy protection, which obscures registrant details. The site uses basic JavaScript and React frameworks for rendering but lacks any meaningful metadata, forms, or contact information. There are no privacy, cookie, or terms of service policies present, indicating low compliance with common data protection standards. Security posture is weak due to absence of security headers and no visible HTTPS enforcement details. Overall, the site does not provide sufficient information to assess business legitimacy or operational maturity. The domain age is moderate but does not correlate with any visible business presence.

T

The PR Department

theprdepartment.net

54

The PR Department is a small, boutique public relations agency based in the United Kingdom, specializing in impactful communication strategies for businesses. With over 20 years of experience, the company offers tiered PR services including DIY training, campaign kickstarts, and sustained media influence building. The website is professionally designed using Squarespace, featuring clear navigation, good mobile optimization, and relevant content including client testimonials and contact information. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the website being fully accessible and functional. Security posture is moderate with HTTPS enabled but lacking security headers and privacy compliance documentation. Overall, the site presents a credible business front but would benefit from improved transparency and security practices.

The domain grupolatoja.es currently serves as a parked domain page hosted by Arsys, offering promotional links to domain registration, hosting, and related services. There is no active business content or identifiable company information on the site, indicating it is not currently used for operational business purposes. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with external resources from Arsys. Mobile optimization and accessibility are minimal but functional. Security posture is weak due to lack of HTTPS enforcement, absence of security headers, and no visible privacy or cookie policies. WHOIS data is inaccessible due to Red.es restrictions, limiting transparency and trust. Overall, the site presents low business credibility and minimal user engagement.

A

Aestas IT

aestasit.com

63

Extreme automation is about enabling your business to move faster & deliver reliable software, as well as offering expertise in implementing Devops initiatives.

The website viventor.com is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, preventing access to actual site content. As a result, no business, contact, or policy information is available for analysis. The domain is registered since 2015 with GoDaddy.com, LLC and uses Cloudflare DNS services. The technical infrastructure includes Cloudflare's security mechanisms, indicating a focus on protection against automated threats. However, the lack of accessible content and absence of privacy or cookie policies limit the ability to assess compliance and business credibility. Security posture benefits from HTTPS and Cloudflare protection but cannot be fully evaluated due to content blocking. Overall, the site presents a low risk but also low transparency and trustworthiness from an external perspective.

Иностудио is a well-established Russian IT company specializing in the development and integration of complex digital solutions for corporate clients. With a domain age dating back to 2004 and a strong portfolio of long-term client collaborations, the company positions itself as a leading digital integrator in the Russian market. Their services span IT outsourcing, QA testing, web and mobile development, DevOps, analytics, and design, supported by ISO 9001 certification and multiple industry awards. The website reflects a professional and consistent brand image, targeting businesses seeking robust IT solutions with high integration complexity. Technically, the website is built on the Bitrix CMS platform, hosted on Yandex Cloud infrastructure, and employs modern web technologies including JavaScript frameworks, Yandex SmartCaptcha for spam protection, and analytics tools like Google Analytics and Roistat. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers could be enhanced. Privacy compliance is well addressed with clear policies and consent mechanisms. From a security perspective, the site enforces HTTPS, uses spam protection, and maintains quality management standards via ISO 9001. However, it lacks explicit incident response contact information and a vulnerability disclosure policy, which are recommended for improved security posture. No critical vulnerabilities or suspicious indicators were found. Overall, Иностудио presents a trustworthy and mature digital presence with strong business credibility and a solid technical foundation. Strategic improvements in DNS security and security headers, along with formalizing incident response and vulnerability disclosure, would further enhance their security and compliance stature.

R

ROKA

rokarestaurant.com

69

ROKA is a premium hospitality business specializing in Japanese Robatayaki cuisine with multiple international locations including London, Dubai, and Istanbul. The website presents a professional and consistent brand image targeting customers seeking high-end dining experiences. The technical infrastructure leverages modern web technologies including JavaScript frameworks, Google Tag Manager, Microsoft Clarity, and Cookiebot for privacy compliance. Embedded third-party forms and payment processing via Stripe and reservation management via Sevenrooms indicate a mature digital ecosystem. Security posture is strong with HTTPS, CSRF protection, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The lack of WHOIS data introduces some uncertainty about domain legitimacy, but the overall website quality and business presentation are trustworthy. Strategic recommendations include improving transparency around security policies and contact information to enhance trust and compliance.

K

Kvites Architects

kvitesarchitects.com

56

Kvites Architects is a small architectural consultancy based in Latvia, specializing in sustainable and functional architecture projects developed within a BIM environment. The company targets clients seeking professional architectural design services with a focus on sustainability and modern building information modeling technologies. The website is professionally designed using the Wix platform, featuring relevant content and structured data that supports the business's legitimacy. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Technically, the site uses modern web technologies and enforces HTTPS, but lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is generally good with no obvious vulnerabilities or exposed sensitive data, but improvements in security headers and privacy compliance are recommended. Overall, the website presents a credible business front but requires domain registration verification and enhanced privacy disclosures to strengthen trust and compliance.

P

DABĪGA LINEĻĻA – Painteco.com

painteco.eu

69

Painteco.com is an e-commerce website specializing in natural linseed oil coatings for wood, targeting primarily Latvian-speaking customers with multilingual support for German and English. The business appears to be a small, niche player in the natural wood coatings market, founded in 2014, leveraging the Shopify platform for its online presence. The website features professional design and consistent branding, with customer reviews integrated via Judge.me, enhancing trust signals. Technically, the site uses modern web technologies and Shopify's infrastructure, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS and hCaptcha protection on forms, but lacks some advanced security headers and DNSSEC. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, and no visible terms of service or incident response information. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures to improve compliance and trust.

S

SUEZ

safege.com

67

SUEZ is a global enterprise specializing in water and waste management, providing circular economy solutions to local authorities and businesses. The company positions itself as a leader in environmental services, focusing on sustainability and resource management. The website reflects a mature digital presence with multilingual support and comprehensive content tailored to a professional audience. Technically, the site employs modern web standards and frameworks, ensuring good performance and accessibility. Security posture is strong with HTTPS enforcement and standard security headers, though explicit incident response contacts and vulnerability disclosure mechanisms are not prominently published. Overall, the site demonstrates a high level of professionalism and compliance with privacy regulations, supporting trustworthiness and business credibility. However, the absence of WHOIS data for the domain is unusual and warrants further verification to confirm domain registration legitimacy.

L

LNSO

lnso.lv

62

LNSO is a Latvian local business with an online presence hosted on the Wix platform. The website serves as an informational portal likely related to cultural or musical activities, given the name and imagery. It targets Latvian and English-speaking audiences and provides contact information including a physical address in Riga and a phone number. The technical infrastructure is based on Wix's Thunderbolt framework, leveraging modern JavaScript and polyfills for compatibility. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, the absence of explicit privacy, cookie, and terms of service policies indicates gaps in compliance and transparency. Security measures include hardened JavaScript fetch and XMLHttpRequest methods, but lack of security headers and incident response information suggests room for improvement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

E

E-Klase - Labākai izglītībai

e-klase.lv

72

E-Klase is a prominent Latvian educational platform serving a large user base of teachers and families, providing essential digital tools for the education system. The website demonstrates a professional design with clear navigation and mobile optimization, supporting user login and content access. Technically, it employs modern JavaScript libraries, cookie consent management via Cookiebot, and privacy-focused analytics with Plausible. Advertising is managed through Adbox with user consent. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit privacy policies are absent in the provided content. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the platform appears legitimate and well-maintained, serving a critical role in Latvian education.

The website bitfury.com is currently inaccessible due to a Cloudflare Turnstile security challenge, which blocks access to the actual business content. Bitfury is a technology company with a domain registered since 2004, indicating an established presence. However, no business descriptions, contact information, or policy documents are accessible on the landing page. The technical infrastructure relies on Cloudflare for security and performance, but no detailed security headers or SSL configuration information is available. The lack of accessible content severely limits the ability to assess privacy compliance, security posture, and business credibility. Overall, the site appears to be protected by strong WAF mechanisms but lacks visible transparency and user-facing information in the accessible content.

R

Radware Ltd.

radware.com

75

Radware Ltd. is a well-established global cybersecurity and application delivery solutions provider founded in 1996. The company offers a comprehensive portfolio of services including DDoS protection, cloud-based Web Application Firewall (WAF), bot management, and AI-powered security solutions. Positioned as a leader in the technology sector, Radware targets enterprise customers and IT security professionals worldwide, with a strong presence in the US and multiple international locations. The website reflects a mature digital presence with professional branding, clear navigation, and extensive business information.

W

Whimsical

whimsical.co

68

Whimsical is a mature technology company offering an integrated all-in-one workspace designed to unify teams, tasks, and tools visually. Their platform combines projects, boards, docs, and posts to facilitate efficient team collaboration and planning. The company targets fast-moving teams seeking a seamless visual workspace to enhance productivity and communication. The website reflects a modern SaaS business model with a focus on user experience and visual clarity. Technically, the site is built on a modern React-based framework (Next.js) and leverages Cloudflare for DNS and CDN services, ensuring good performance and security. The security posture is strong with HTTPS enforced and domain transfer protections in place, although some security best practices like DNSSEC and explicit security policies could be improved. Privacy compliance is currently weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy, with a high legitimacy score based on domain age and WHOIS data. Strategic recommendations include enhancing privacy compliance, publishing security and incident response policies, and enabling DNSSEC to further strengthen trust and security.

N

Nordea

nordea.lv

75

Nordea is a leading Nordic universal bank providing a wide range of financial services including personal and business banking, asset management, and investment solutions. The bank targets individuals and corporate clients primarily in the Nordic region, maintaining a strong market position supported by comprehensive corporate governance and investor relations transparency. The website is built on Drupal 10, indicating a modern and maintainable technical infrastructure with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, security headers, and secure login portals, although explicit incident response and vulnerability disclosure information are not publicly available. Overall, the site demonstrates a high level of professionalism and trustworthiness, though the absence of WHOIS data for the domain is unusual and should be further verified to ensure domain legitimacy.

A

Accio Communication by Jérôme Duchêne

accio.be

48

Accio Communication by Jérôme Duchêne is a small digital communication and marketing agency based in Wallonia, Belgium, founded in 2022. The company offers services including website creation (both showcase and e-commerce), visual identity, marketing materials, and photo/video production. Their target audience consists primarily of local businesses seeking to improve their online presence and marketing effectiveness. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, reflecting a solid market position as a regional service provider. Technically, the website is built on WordPress and leverages modern front-end libraries such as Swiper.js and AOS for animations. It uses Typekit fonts and is hosted by OVH, a reputable hosting provider. The site implements GDPR-compliant cookie consent management via the Complianz plugin, indicating a good level of digital maturity and privacy awareness. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and manages cookie consent properly. However, no explicit security headers were detected, and there is no visible security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the security posture is good but could be enhanced by adding security headers and formal policies. The overall risk assessment is low, with no critical issues detected. Strategic recommendations include implementing security headers, enhancing accessibility, and publishing a security policy or incident response plan to improve trust and compliance further.

The website 'Healthcare Access' is a minimal WordPress blog with no substantive content or business information. It appears to be a placeholder or underdeveloped site with no clear business model or target audience beyond a general healthcare interest. The technical infrastructure is basic, relying on WordPress with no advanced frameworks or performance optimizations. Security posture is weak, lacking HTTPS and security headers, and no privacy or cookie policies are present, indicating poor compliance with data protection regulations. The absence of WHOIS data and registrant information further reduces trustworthiness. Overall, the site presents a high risk due to lack of transparency, security, and content quality.

S

System Logistics

systemlogistics.com

72

System Logistics is a globally recognized supplier specializing in intralogistics and material handling solutions aimed at optimizing supply chains for warehouses, distribution centers, and manufacturing operations. The company positions itself as a leader in its sector, offering innovative solutions to improve operational efficiency. The website reflects a professional and consistent brand image, targeting B2B clients in the transportation and manufacturing sectors worldwide. Technically, the website employs modern technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance, ensuring a good level of digital maturity and user experience across devices. Security-wise, the site enforces HTTPS and provides a comprehensive cookie consent mechanism, but lacks some advanced security headers and explicit security policies, which could be improved to enhance trust and compliance. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and structure suggest a legitimate business operation. Overall, the site scores well in content quality and business credibility but should address domain registration transparency and enhance security and privacy disclosures to strengthen its risk posture.

D

Chez DeuZa (aka 0x2a)

deuza.net

59

The website 'Chez DeuZa (aka 0x2a)' is a personal blog primarily targeting tech enthusiasts, geeks, and hobbyists interested in AI, open source projects, cats, and DIY topics. It is hosted on the Tumblr platform and features a variety of posts including technical guides, personal opinions, and project links. The site demonstrates moderate digital maturity with basic mobile optimization and standard SEO practices. However, it lacks formal privacy, cookie, and terms of service policies, which impacts compliance and user trust. Security posture is minimal with no detected security headers or incident response information. The WHOIS data is incomplete, raising concerns about domain legitimacy. Overall, the site serves as a niche personal blog with good content quality but requires improvements in security and compliance to enhance trustworthiness.

C

Casus Belli

casusbelli.fr

40

Casus Belli is a French creative communication agency established since 2005, specializing in artisanal digital craftsmanship and quality communication services. The website presents a professional and consistent brand image targeting businesses seeking bespoke digital communication solutions. The technical infrastructure includes JavaScript libraries such as jQuery and tarteaucitron.js for cookie consent management, with Google Analytics implemented for audience measurement. Mobile optimization and SEO practices are good, though accessibility features are basic. Security posture is moderate with cookie consent and privacy settings enabled, but lacks visible security headers and explicit privacy policies. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for small agencies. Contact information is clearly provided, including email, phone, and physical address, supporting business credibility.

S

Scope Technology

scopetechnology.com

60

Scope Technology is a UK-based technology service provider specializing in software development and IT solutions. The company targets businesses seeking technology services and operates primarily through its website hosted on the Wix platform. The website presents a basic but professional digital presence with moderate mobile optimization and standard Wix technologies. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies. No explicit contact or incident response information is provided, which limits transparency and compliance. Overall, the website is functional but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

The website videodone.io operates as an adult content affiliate platform, primarily linking to third-party adult image galleries. It targets adult users interested in explicit content, leveraging affiliate marketing to monetize traffic. The site lacks direct business transparency, with domain registration protected by a privacy service, and no clear company contact information or policies presented on the site. The business model is typical for small-scale adult affiliate sites, focusing on volume of external links rather than original content creation. Technically, the site uses basic web technologies including JavaScript and CSS with Google Fonts, hosted via GoDaddy. The site is served over HTTP without HTTPS, lacks modern security headers, and includes a pop-under ad script that opens a suspicious external domain, raising security concerns. The site’s design and user experience are poor, with minimal mobile optimization and accessibility features. SEO practices are basic, with minimal metadata and no structured data. From a security perspective, the absence of HTTPS and security headers, combined with the presence of potentially malicious pop-under scripts, significantly lowers the security posture. There is no evidence of privacy or cookie policies, nor GDPR compliance mechanisms. Incident response contact is limited to an abuse removal link, with no dedicated security or data protection contacts. These factors collectively indicate a high risk for users and low trustworthiness. Overall, the site scores poorly on content quality, technical implementation, security, privacy compliance, and business credibility. Strategic improvements are necessary to enhance security, transparency, and user trust, including enabling HTTPS, implementing security headers, providing clear privacy and cookie policies, and removing suspicious scripts.

ATLETICA operates as a small e-commerce business specializing in athletic-related products, leveraging the Shopify platform for its online storefront. The website is currently password protected, indicating a private or pre-launch phase. The company targets consumers interested in athletic wear, primarily in Mexico, as evidenced by geo-redirects and social media presence. The domain is well-established, registered since 1998, which supports the legitimacy of the business. However, the website content is basic with limited public information and no visible privacy or cookie policies, which impacts compliance and user trust. Technically, the site uses modern web technologies and Shopify's infrastructure, ensuring a moderate level of performance and mobile optimization. The absence of DNSSEC and security headers suggests room for improvement in security hardening. The site uses HTTPS exclusively, and password protection adds a layer of access control. Analytics and marketing pixels are present, indicating moderate user tracking. From a security perspective, the site benefits from Shopify's platform security but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of privacy and cookie policies is a compliance gap, especially under GDPR. The domain registration data aligns well with the website's business claims, enhancing trustworthiness. Overall, ATLETICA presents as a legitimate small e-commerce business with a solid technical foundation but requires enhancements in privacy compliance, security headers, and public policy disclosures to improve trust and regulatory adherence.

C

CMC Group, Inc.

cmcgp.com

66

CMC Group, Inc. is a medium-sized manufacturing business group based in Bowling Green, Ohio, focused on birthing, growing, and operating businesses that model and extend their stated mission. The company operates multiple subsidiaries including The Center for Manufacturing Excellence, Century Label, DayMark Safety Systems, and SmartSolve, positioning itself as a regional player in the manufacturing sector. The website is professionally designed using the Squarespace platform, featuring clear navigation, consistent branding, and accessible contact information. Technical infrastructure is modern and secure, with HTTPS and HSTS enabled, though some security headers are missing. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be further investigated. Overall, the website reflects a credible business with room for improvement in security policy transparency and domain registration verification.

F

Filmu darbnīca

filmudarbnica.lv

43

Filmu darbnīca is a small Latvian media blog focused on film production, sharing video content and related posts primarily in Latvian. The website operates on the Blogger platform with a custom domain, providing a niche content experience for film enthusiasts. The technical infrastructure relies on Blogger's hosting and integrates embedded videos from YouTube and Brightcove. While the site has a good content quality and basic design, it lacks modern security features such as HTTPS and security headers, which poses risks to user data confidentiality and trust. Privacy compliance is minimal, with no privacy or terms of service pages, though a cookie consent banner is present. Overall, the site demonstrates moderate business credibility but requires significant improvements in security and privacy to enhance trustworthiness and compliance.

T

TransIP

bbq.nl

51

The website bbq.nl is a reserved domain placeholder page managed by TransIP, a major Dutch domain registrar and hosting provider. The page indicates the domain is registered by a TransIP customer and offers no direct business services or contact information. The business behind the domain is TransIP, founded in 2003, with a strong market position as the largest registrar in the Netherlands. The site is primarily informational and designed to redirect or inform visitors about domain availability and related services. Technically, the site uses standard HTML, CSS, and JavaScript with responsive design for mobile devices. Hosting is provided by TransIP itself. Security posture is minimal on this page, with no visible security headers or explicit HTTPS enforcement visible in the HTML content, though DNSSEC is enabled at the domain level. Privacy and terms policies are linked to TransIP's main sites, indicating compliance at the parent company level. Overall, the domain is legitimate and well-managed but the placeholder page offers limited content and security features.

The website at fundamentalms.com/lander presents minimal content, consisting primarily of a basic HTML skeleton with no visible text, forms, or business information. The domain is registered with GoDaddy.com, LLC since 2020, indicating a relatively new or small business presence. The site loads external JavaScript resources including Google AdSense scripts and a JavaScript bundle from wsimg.com, but lacks any metadata, structured data, or contact details. There are no privacy, cookie, or terms of service policies detected, and no evidence of GDPR compliance or security policies. The absence of security headers and DNSSEC, combined with no visible HTTPS status, suggests a weak security posture. Overall, the site appears to be a placeholder or parking page rather than a fully developed business website.