Security Directory

O

ORPA Papír a.s.

orpa.cz

59

ORPA Papír a.s. is a well-established Czech manufacturer specializing in paper-based tubular packaging solutions, including Tubusbox and paper tubes, serving food and industrial sectors. With over 140 years of tradition and multiple ISO and industry certifications, the company positions itself as a reliable and quality-focused packaging partner. The website reflects a professional and modern digital presence with rich multimedia content, clear navigation, and multilingual support. Technically, the site uses modern frameworks and tracking technologies with appropriate consent mechanisms, hosted by a reputable Czech provider. Security posture is good with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration data aligns well with the company's history and location, supporting legitimacy.

H

Handelsbanken

handelsbanken.ee

74

Handelsbanken is a well-established Swedish bank founded in 1871, recognized as one of the world's strongest banks with a decentralized operational model and strong local presence in Sweden, Norway, the Netherlands, and the UK. The website provides comprehensive information about the bank's services, investor relations, sustainability efforts, and press releases, targeting banking customers, investors, and the general public. The digital infrastructure leverages modern web technologies including JavaScript frameworks and Adobe Analytics for performance and user insights. Security practices include HTTPS enforcement, cookie consent mechanisms, and sandboxed iframes for external content, though explicit security headers are not visible in the provided data. The WHOIS data is incomplete, lacking registrar and creation details, which is unusual but does not detract from the site's legitimacy given the professional content and branding. Overall, the site demonstrates a mature digital presence with strong business credibility and good privacy compliance.

Z

ZB Invest

zbi.hr

62

ZB Invest is a Croatian financial investment company specializing in investment funds and related services. The website provides fund pricing, yield data, calculators, and contact options primarily targeting Croatian investors. The domain is well-established since 2000 and hosted with professional infrastructure including Akamai CDN services. The website uses standard JavaScript libraries for UI and data visualization but lacks modern CMS or frameworks. Security posture is basic with no visible security headers or privacy policies, and no contact information is explicitly provided in the analyzed content. Overall, the site is functional but could improve in privacy compliance and security best practices.

Z

Zagreb nekretnine d.o.o.

zane.hr

59

Zane nekretnine is a well-established Croatian real estate company operating since 1998, offering a comprehensive range of services including property brokerage, valuation, consulting, and market analysis. The company targets a general audience seeking real estate services in Croatia and maintains a professional online presence with a clear and consistent brand. The website is hosted on Akamai infrastructure, uses modern JavaScript libraries for UI components, and implements a cookie consent mechanism compliant with GDPR requirements. Security posture is solid with HTTPS enforced and CSRF protection in forms, though there is room for improvement in security headers and explicit security policies. Overall, the website is accessible, professional, and trustworthy, reflecting the company's long-standing market position.

G

Games Croatia

gamescroatia.com

61

Games Croatia is an official project website dedicated to promoting the gaming industry and innovation within Croatia. The site serves as a hub for information about the project, its partners, public funding opportunities, and activities related to the Croatian games sector. The website targets game developers, industry stakeholders, and governmental bodies interested in fostering growth and collaboration in the gaming ecosystem. The business model appears to be informational and collaborative, supported by public or governmental funding, positioning itself as a niche regional initiative with a focus on technology and innovation. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as HTTPS with HSTS, Google reCAPTCHA for form security, and Google Fonts for typography. The site demonstrates good mobile optimization and a professional design, although some accessibility features could be enhanced. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the website enforces HTTPS and HSTS, uses reCAPTCHA to protect forms, and does not expose sensitive data or vulnerable libraries. However, privacy compliance could be improved by implementing a cookie consent mechanism and publishing explicit security and incident response policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and partner affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy front for the Games Croatia project but would benefit from enhanced privacy compliance and clearer domain registration information to strengthen trust and regulatory adherence.

F

Fortressa

fortressa.com

55

Fortressa is a technology company providing an app store platform for open-source applications, enabling organizations to replace costly per-seat SaaS products with self-hosted, privacy-focused alternatives. The website presents a clear business model centered on cost savings, data ownership, and customization for businesses seeking control over their software stack. The company appears to be established, with a domain registered since 2004 and a consistent brand presence. Technically, the website uses modern front-end technologies such as Tailwind CSS, Alpine.js, and HTMX, delivering a responsive and user-friendly experience. The site is hosted securely with HTTPS, though some security best practices like DNSSEC and security headers are not fully implemented. Analytics are handled via Shynet, a privacy-conscious alternative, indicating a commitment to user privacy. Security posture is moderate; while HTTPS is enforced and forms include basic anti-bot challenges, the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is partial, with a privacy policy and terms of service present but lacking a cookie consent mechanism. Contact options include email forms and social media, but no phone or physical address is provided. Overall, Fortressa presents a trustworthy and professional online presence with a niche focus on open-source SaaS alternatives. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance their security posture and regulatory alignment.

BIS Bremerhaven is a regional economic development organization focused on supporting businesses and sustainable growth in the Bremerhaven area of Germany. The website presents a professional and well-structured digital presence, offering information on business services, networking, sustainability initiatives, and sector-specific support. The company targets local businesses, entrepreneurs, and investors, positioning itself as a key regional economic facilitator. Technically, the website uses modern web technologies including JavaScript and Cookiebot for GDPR-compliant cookie management, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published security policies and advanced security headers. Privacy compliance is basic, with no explicit privacy policy or terms of service pages found in the provided content. Overall, the website is trustworthy and professional, with room for improvement in security transparency and privacy documentation.

G

Gransy d.o.o.

idealno.rs

59

Idealno.rs is a Serbian online price comparison platform operated by Gransy d.o.o., established in 2015. The website offers users the ability to compare prices, read product reviews, and access shopping guides, positioning itself as a leading shopping assistant in the Serbian market. The platform targets general online shoppers seeking the best deals and product information. Technically, the website employs modern JavaScript technologies, integrates Google Tag Manager and DoubleClick for analytics and advertising, and uses the Didomi Consent SDK for GDPR-compliant cookie consent. The site is hosted on CDN infrastructure, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS but lacks visible security headers and does not publish a security policy or incident response contacts. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service were found in the provided content. Overall, the domain registration is consistent with the business, showing legitimacy and appropriate domain age. The website is accessible without WAF or blocking mechanisms.

P

The biggest Electronic Music Festival in Germany - PAROOKAVILLE

parookaville.com

57

PAROOKAVILLE is a prominent electronic music festival based in Germany, targeting electronic music enthusiasts and festival attendees. The website promotes the event scheduled for July 2026 at Airport Weeze, emphasizing an immersive experience. The business model revolves around event organization and ticket sales, positioning itself as the largest electronic music festival in Germany. Technically, the website is built on TYPO3 CMS, integrates Google Tag Manager for analytics, and uses Usercentrics for cookie consent management, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and lack of published privacy and terms policies indicate room for improvement. The missing WHOIS data raises concerns about domain legitimacy, although the website's professional design and active content suggest operational status. Overall, the site is safe for general audiences with no adult content detected.

N

NBC Sports

nbcsportsedge.com

67

NBC Sports operates a comprehensive fantasy sports media platform under the Rotoworld brand, delivering news, videos, stats, and live coverage to fantasy sports enthusiasts primarily in the United States. The website is part of the larger NBCUniversal media conglomerate, reflecting a strong market position in sports media. The platform leverages a modern technical infrastructure including Brightspot CMS, JWPlayer for video, and multiple advertising and analytics services to deliver a rich user experience. Privacy compliance is well addressed with cookie consent mechanisms and clear privacy policies. Security posture is solid with HTTPS and standard best practices, though some security headers could be enhanced. Overall, the site demonstrates a mature digital presence with professional content and branding consistency.

A

Access

accessonline.com

58

The website www.accessonline.com presents itself as an entertainment news platform branded as 'Access', focusing on celebrity news, TV, music, and movie videos. The content is professionally structured with good design and moderate technical implementation, including the use of modern JavaScript libraries and advertising networks. However, the WHOIS data for the domain is missing, indicating the domain may not be registered or is inactive, which raises concerns about the legitimacy of this specific domain. The website lacks visible privacy, cookie, and terms of service policies, as well as contact information, which are critical for compliance and user trust. Security posture is weak with no detected security headers or explicit security policies, and the site relies heavily on third-party advertising and tracking scripts. Overall, the site is safe for general audiences but requires significant improvements in security, privacy compliance, and business credibility to enhance trustworthiness.

N

NBCUniversal

nbcolympics.com

71

NBC Olympics is a premier digital media platform operated by NBCUniversal, providing comprehensive coverage of Olympic events including live streams, highlights, schedules, and athlete information. The website serves a broad audience of sports fans and general viewers interested in the Olympic Games, leveraging NBCUniversal's strong market position as the official US broadcaster. Technically, the site is built on Drupal 10 and integrates advanced advertising, analytics, and consent management technologies, reflecting a mature and modern digital infrastructure. Security practices are robust, with HTTPS enforcement, security headers, and cookie consent mechanisms in place, though no explicit security policy or incident response contact is publicly available. Overall, the site demonstrates high professionalism, excellent content quality, and strong trust indicators, though the lack of publicly available WHOIS data slightly limits domain trust analysis.

N

NBC Sports

nbcsports.com

67

NBC Sports is a prominent US-based media organization specializing in sports news, scores, statistics, rumors, and video content. As a major brand under NBCUniversal, it holds a strong market position in the sports media industry, targeting sports fans and general audiences with comprehensive and up-to-date sports coverage. The website demonstrates a high level of professionalism and branding consistency, reflecting its enterprise scale and media sector focus. Technically, the site employs a modern technology stack including Brightspot CMS, JWPlayer for video, and robust third-party integrations for advertising and analytics such as Taboola, Adobe DTM, and mParticle. The site is well-optimized for performance, mobile responsiveness, and accessibility, with good SEO practices evident in meta tags and structured data. Security-wise, NBC Sports enforces HTTPS with strong security headers and cookie consent mechanisms, though explicit security policies and incident response contacts are not prominently published. The absence of WHOIS data limits domain registration insights, but the brand's global recognition and trust indicators strongly support legitimacy. Overall, NBC Sports presents a secure, compliant, and user-friendly digital presence with extensive content and advertising integrations.

G

G53 Network

g53network.org

61

The G53 Network is an academic research network focused on financial literacy and personal finance, connecting top scholars globally to promote evidence-based research and data-driven solutions. Founded in 2021, it offers working paper series, conferences, seminars, and mentoring programs to foster collaboration and knowledge dissemination in this growing field. The website reflects a professional and consistent brand image, targeting researchers and academics in the education sector. Technically, the site is built on WordPress using modern themes and plugins, hosted via Hover, and integrates Google Analytics for visitor insights. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and no explicit security policies or vulnerability disclosures are present. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, though it could improve transparency by adding terms of service, security policies, and incident response information.

G

Vercel Security Checkpoint

gta5cheats.com

49

The website www.gtaboom.com is currently inaccessible due to a Vercel Security Checkpoint that verifies the visitor's browser before granting access. This security mechanism blocks normal content delivery, resulting in no visible business information, contact details, or policies. The domain WHOIS data is unavailable, indicating the domain may be unregistered or inactive, which raises concerns about legitimacy. The technical infrastructure is hosted on Vercel, but no CMS or additional technologies are detectable due to the blocked content. Security posture is weak as no security headers or SSL details are observable, and privacy compliance is absent. Overall, the site cannot be properly evaluated in its current state, and the risk level is high due to lack of transparency and domain registration data.

The domain unequalbrake.com currently serves a 404 Not Found error page with no substantive content. It is used by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. The site infrastructure is hosted on Google Cloud Platform in Europe and uses industry-standard encryption with frequent certificate rotation. However, the website lacks privacy and cookie policies, contact information, and any business-identifying content, limiting its utility and trustworthiness. Security practices are described in the page content, but no explicit security headers or vulnerability disclosure files are present. Overall, the site is accessible but non-functional as a public-facing website, resulting in a low content quality and business credibility score.

E

Eclipse Foundation AISBL

eclipse.foundation

73

The Eclipse Foundation AISBL is a well-established international non-profit organization based in Brussels, Belgium, dedicated to fostering open source software collaboration and innovation. It supports a large global community with over 410 open source projects and more than 360 members worldwide. The foundation provides a vendor-neutral environment that promotes industry-ready open source innovation across multiple technology sectors including cloud, automotive, IoT, and AI. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the website is built using modern technologies such as the Hugo static site generator, Google Tag Manager for analytics, and FontAwesome for icons. It demonstrates good performance, mobile optimization, and accessibility. SEO best practices are followed with proper meta tags and structured navigation. The site uses HTTPS exclusively, ensuring secure communications. From a security perspective, the site implements cookie consent mechanisms and maintains privacy and legal policies that indicate GDPR compliance. However, explicit security headers are not detected in the HTML content, and no security.txt file is published for vulnerability disclosure. No exposed sensitive data or vulnerabilities are apparent. The WHOIS data is privacy protected, which is appropriate for a non-profit of this scale, though it limits direct verification of domain registration details. Overall, the Eclipse Foundation website presents a trustworthy, professional, and secure platform for its community and stakeholders. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clearer incident response contacts to further strengthen security posture and transparency.

B

Breedveld Staal

breedveldstaal.nl

60

Breedveld Staal is a well-established steel and metal supplier based in the Netherlands, with a business history dating back to 1946 and an active domain since 2003. The company serves industrial and business clients requiring steel products, positioning itself as a trusted B2B supplier in the manufacturing sector. The website reflects a professional business presence with good content quality and clear navigation, targeting business customers in need of steel and metal materials. Technically, the site uses modern JavaScript libraries such as Swiper.js and Fancybox, along with Google reCAPTCHA for form security, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and policies could be improved or explicitly published. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, suitable for its industry and audience.

Grünbauer BV is a small manufacturing company based in the Netherlands specializing in steel processing services including cambering, straightening, splitting, sawing, cold rolling, and production of various steel girders and beams. The company targets steel fabricators and steel traders with a niche B2B business model. The website provides multilingual content describing their services and contact information but lacks modern web technologies and advanced digital features. The technical infrastructure is basic, with no detected CMS or analytics tools, and the site appears static and somewhat outdated. Security posture is weak due to lack of HTTPS enforcement and missing security headers, although DNSSEC is enabled on the domain. Privacy compliance is minimal with no privacy or cookie policies present. Overall, the website is functional but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

A

aliam S.A.

aliam.ch

48

aliam S.A. is a Swiss export company specializing in the distribution of laboratory equipment, representing world-leading manufacturers. The website presents a professional and consistent brand image, targeting businesses in the laboratory equipment sector. The company operates primarily as an exporter and distributor within the manufacturing industry in Switzerland. The digital infrastructure is based on WordPress with the Divi theme, leveraging WooCommerce assets, indicating a modern and flexible platform. The site demonstrates good SEO practices and moderate performance with mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced compliance and security transparency.

nLab sp. z o.o. is a specialized distributor and authorized service provider of scientific measurement instruments operating primarily in Poland and the Baltic states since 1998. The company represents several international brands in electrochemistry, surface plasmon resonance, and tensiometry, offering both sales and technical support including warranty services. Their market position is that of a trusted regional leader in niche scientific instrumentation with a focus on research and industrial R&D customers. Technically, the website is built on a CMS Made Simple platform using classic web technologies such as jQuery and CSS, providing a functional but somewhat dated user experience with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and DNSSEC, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

M

Mirek Beneš

mirekbenes.cz

43

Mirek Beneš operates as a freelance frontend developer based in the Czech Republic, offering specialized services in HTML template coding, JavaScript programming, WordPress development, graphic design, and email newsletter coding. The website serves as a professional portfolio showcasing client references and detailed service offerings, targeting businesses and clients across the Czech Republic seeking quality frontend development and web design solutions. The business model is focused on external collaboration and contract work, with a clear emphasis on usability and modern web standards. Technically, the website is well-constructed using modern web technologies including HTML5, CSS3, SVG graphics, and JavaScript libraries such as Swiper.js for carousels. The site is mobile-optimized, fast-loading, and SEO-friendly, with minimal but privacy-conscious analytics implemented via Plausible Analytics. However, there is no detected CMS or hosting provider information, and no advanced frameworks are identified. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks explicit security headers and formal privacy or cookie policies, which are important for GDPR compliance and user trust. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance security posture and transparency. Overall, the website presents a professional and trustworthy image for a small freelance business but would benefit from improved privacy compliance and security best practices. The absence of WHOIS data reduces domain trustworthiness slightly, but the content quality and business transparency mitigate this concern. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and publishing incident response contacts to strengthen compliance and security.

B

Baltnetos komunikacijos, UAB

tellq.io

61

Tellq.io is a Lithuanian-based technology company operating under Baltnetos komunikacijos, UAB, founded in 2016. The company offers Tellq Multi, a SaaS platform designed to streamline multi-channel customer support and sales through email, chat, phone, and SMS. Positioned as an emerging enterprise solution, Tellq emphasizes features such as a unified inbox, communication history, notifications, analytics, and team collaboration to enhance customer service efficiency. The website reflects a professional and consistent brand image with clear calls to action for early access, targeting businesses seeking advanced customer support tools. Technically, the site employs modern web technologies including SVG graphics, JavaScript, and Cloudflare DNS services, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are recommended in DNSSEC implementation and security headers. Privacy compliance is partial, with a privacy policy and terms of service present but lacking cookie consent mechanisms and GDPR explicit indicators. Overall, the domain registration aligns well with the business identity, supporting a high legitimacy score.

B

The 20 best boutique hotels in Madrid

boutiquehotels-madrid.com

52

The website boutiquehotels-madrid.com is a specialized online platform focused on showcasing and facilitating bookings for boutique hotels in Madrid. It offers curated hotel listings with detailed descriptions, ratings, and booking links, targeting travelers seeking unique and stylish accommodations. The site also provides guidance on local dining and nightlife, enhancing the visitor experience. Technically, the site employs modern web technologies and is hosted with Cloudflare DNS services, ensuring reasonable performance and availability. However, it lacks some advanced security measures such as DNSSEC and security headers, and does not publish privacy or cookie policies, which are important for compliance and user trust. No direct contact or incident response information is provided, limiting transparency. Overall, the site is functional and professional but would benefit from enhanced security and privacy practices to improve trust and compliance.

B

The 20 best boutique hotels in New York

boutiquehotels-newyork.com

51

The website boutiquehotels-newyork.com is a niche online travel guide focused on boutique hotels in New York City. It provides curated hotel listings with descriptions, ratings, and booking links, targeting travelers seeking unique and stylish accommodations. The business model appears to be referral-based, linking users to hotel booking platforms. The domain is well-established since 2014, with professional domain management via Gandi SAS and Cloudflare DNS services. Technically, the site uses modern web standards, Google Fonts, and is mobile optimized, offering a good user experience with clear navigation and relevant content. However, the site lacks visible privacy and cookie policies, contact information, and security policy disclosures, which are important for compliance and user trust. Security posture is generally good with HTTPS and domain transfer protection, but DNSSEC is not enabled and some security headers are missing. Overall, the site is legitimate and professionally presented but would benefit from enhanced privacy compliance and transparency.

B

The 20 best boutique hotels in Paris

boutiquehotels-paris.com

50

The website boutiquehotels-paris.com is a specialized online platform dedicated to showcasing the 20 best boutique hotels in Paris. It provides detailed hotel listings, including descriptions, ratings, room counts, and booking links, targeting travelers seeking unique and stylish accommodations in Paris. The business operates as a travel guide and booking referral service, with a focus on boutique hospitality in the French capital. The domain is well-established since 2014, indicating a mature presence in the niche market. Technically, the site employs modern web standards with HTTPS and Cloudflare DNS, ensuring secure and reliable access. However, it lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. Privacy and cookie policies are absent, which is a compliance gap, especially under GDPR regulations. No direct contact or incident response information is provided, limiting transparency and user trust. Overall, the site offers a good user experience with professional design and relevant content but requires improvements in privacy, security, and contact disclosures to elevate its trustworthiness and compliance posture.

B

The 20 best boutique hotels in Berlin

boutiquehotels-berlin.com

51

The website boutiquehotels-berlin.com serves as a specialized online guide for boutique hotels in Berlin, offering curated hotel listings, descriptions, ratings, and booking links. It targets travelers seeking unique and stylish accommodations in Berlin, positioning itself as a niche player in the hospitality travel sector. The business model revolves around providing information and facilitating bookings through affiliate or partner links. Technically, the site employs modern web standards with HTTPS, Cloudflare DNS, and responsive design, though it lacks advanced security headers and DNSSEC. The absence of privacy and cookie policies, as well as contact and incident response details, indicates gaps in compliance and transparency. Security posture is moderate with room for improvement in headers and policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

T

The Mail Archive

mail-archive.com

55

The Mail Archive is a specialized service that provides searchable archives for mailing lists, enabling users and administrators to easily search through archived mailing list postings. Established in 1998, it holds a niche position in the technology sector, focusing on mailing list archiving services. The website presents a straightforward interface with basic but functional design and navigation, targeting mailing list users and administrators. Technically, the site uses standard web technologies including HTML5, CSS, and JavaScript, with DNS hosted via Cloudflare. The site shows moderate performance and basic mobile optimization. There is no evidence of advanced frameworks or CMS usage. Security practices include HTTPS usage and domain transfer protection, but DNSSEC is not enabled and security headers are absent, indicating room for improvement. From a security perspective, the website does not expose sensitive data and uses HTTPS, but lacks visible security headers and cookie consent mechanisms. There is no published security policy or incident response information, which could be enhanced to improve trust and compliance. The domain registration is consistent and long-standing, supporting legitimacy. Overall, the website is functional and trustworthy for its niche purpose but would benefit from enhanced security headers, privacy compliance improvements, and clearer contact and security policy disclosures to strengthen its security posture and user trust.

Intel Corporation is a leading global technology company specializing in semiconductor manufacturing and artificial intelligence solutions. Their website showcases a broad portfolio of AI-related products including processors, AI accelerators, software solutions, and network-edge devices, targeting business and technical leadership audiences. The company maintains a strong market position with enterprise-scale operations and consistent branding across its digital presence. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript libraries and hosted on Akamai CDN, ensuring fast performance and excellent mobile optimization. Security posture is robust with HTTPS, security headers, and consent management implemented, though explicit security policies and vulnerability disclosures are not prominently published. Overall, the website reflects a mature digital infrastructure with high professionalism and trustworthiness, suitable for a major technology enterprise.

A

Association for Progressive Communications

apc.org

10

The Association for Progressive Communications (APC) is a well-established global non-profit organization dedicated to advancing human rights, digital inclusion, and internet governance through advocacy, grants, and community support. Their website reflects a mature digital presence with comprehensive content targeting civil society organizations and digital rights advocates worldwide. Technically, the site is built on Drupal 10, employs modern web technologies, and integrates privacy-conscious analytics tools such as Matomo and Plausible. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. The absence of WHOIS registrant data is mitigated by the professional and consistent branding and content, indicating legitimacy. Overall, the site demonstrates a strong commitment to privacy, accessibility, and user experience, positioning APC as a credible and trustworthy entity in the non-profit digital rights sector.

T

The smarter E

thesmartere.com

57

The smarter E Digital is a comprehensive online platform dedicated to smart energy solutions, offering a wide range of content including recordings from exhibitions, conferences, webinars, studies, interviews, and whitepapers from leading experts in the energy sector. The platform targets energy professionals and companies interested in renewable energy and smart grid technologies, providing both free and premium content access through user accounts. Technically, the website employs modern JavaScript libraries, consent management tools, and CAPTCHA for security, with a moderate to good performance and mobile optimization. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and incident response information are not evident. The absence of WHOIS registration data is a notable anomaly, suggesting either privacy protection or a technical issue, which slightly impacts trust but does not detract from the professional and comprehensive nature of the website content. Overall, the platform demonstrates a high level of professionalism, content quality, and user engagement, positioning it as a key player in the smart energy digital space.

2

2Pixels Studio

2pixels.hu

51

2Pixels Studio is a Hungarian web and print design studio specializing in web design, web development, branding, packaging, and print design services. The company targets businesses and individuals seeking cohesive digital and offline visual identities. Their market position is that of a niche, small-sized design studio with a professional portfolio and active social media presence. Technically, the website is built on WordPress with common optimization plugins and uses Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good SEO practices but lacks explicit privacy and cookie policies. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the website is professional and trustworthy but could improve privacy compliance and security best practices.

The website www.econoxx.com is currently inaccessible due to a client-side Proof of Work challenge that blocks direct access to any meaningful content. The domain WHOIS query returned no match, indicating the domain may not be registered or is extremely new, which raises concerns about legitimacy. No business information, contact details, or legal policies are available on the site, limiting the ability to assess the company's operations or compliance posture. Technically, the site uses JavaScript and CryptoJS for the challenge but lacks HTTPS and security headers, which are critical for secure web presence. Overall, the site presents a low trust profile and minimal digital maturity.

SCHENK STAHL GmbH is a German company established in 1986 specializing in the trading of stainless, heat-resistant, and acid-resistant steel products including pipes, tubes, fittings, and special alloys. The company targets industrial clients requiring high-quality steel materials for demanding applications. The website reflects a traditional B2B business model with a focus on product range and technical specifications. The digital infrastructure is based on TYPO3 CMS version 4.4, with legacy Flash content still present, indicating a need for modernization. The site includes multiple language options, suggesting an international audience. Security posture is moderate but lacks modern security headers and visible HTTPS enforcement. Privacy compliance is weak, with no privacy or cookie policies detected and tracking scripts active without consent mechanisms. Overall, the site is functional but requires updates to improve security, privacy, and user experience.

V

Van Geenen

vangeenen-metallschleiferei.de

43

Van Geenen is a specialized B2B company offering comprehensive metal finishing and processing solutions targeting industrial, high-tech, and aesthetic sectors. The company positions itself as a one-stop-shop for metal refinement services including polishing, grinding, coating, and cleanroom packaging. The website reflects a professional and consistent brand image with clear service offerings and a project portfolio, catering primarily to industrial clients in the Netherlands and surrounding regions. Technically, the website employs modern JavaScript frameworks such as Alpine.js and Livewire, integrates Google Tag Manager for analytics, and uses Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and consent mechanisms in place, but lacks advanced security headers and published security policies. The domain is newly registered in 2025 with minimal WHOIS registrant information, which slightly reduces trust but is offset by the professional website presentation and clear contact details. Overall, the website is well-structured, user-friendly, and business-focused, with room for improvement in privacy and security transparency.

S

Schoeller Werk GmbH & Co. KG

schoellerwerk.de

53

Schoeller Werk GmbH & Co. KG is a well-established German manufacturer specializing in premium longitudinally welded stainless steel tubes, serving industrial and automotive sectors globally. Founded in 1827, the company emphasizes quality, sustainability, and innovation, positioning itself as a leading European supplier with a strong reputation and certifications such as ISO 9001. The website reflects a professional digital presence built on WordPress with multilingual support and modern technologies, providing clear navigation, comprehensive product and company information, and active engagement through social media and news updates. Security posture is robust with HTTPS, cookie consent management, and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is strong, with detailed policies and user consent mechanisms aligned with GDPR. Overall, the site demonstrates high business credibility and trustworthiness, supporting the company's market position and customer engagement.

T

The Chartered Institute of Building

ciob.org

67

The Chartered Institute of Building (CIOB) is a well-established professional body founded in 1834, dedicated to advancing the science, ethics, and practice of construction management and leadership globally. The organization offers membership services, professional development courses, events, and industry support, positioning itself as a leading authority in the built environment sector. The website reflects a mature digital presence with a clear focus on education, member support, and industry engagement. Technically, the site is built on Drupal 10, leveraging modern web technologies and Google Tag Manager for analytics and marketing. It demonstrates good mobile optimization, accessibility compliance (AA certified), and a professional design that supports user engagement and navigation. The presence of multiple certifications such as Cyber Essentials and Disability Confident further underscores its commitment to security and inclusivity. From a security perspective, the site enforces HTTPS and employs recognized certifications, though explicit security headers could be more visible. Privacy compliance is robust, with clear cookie and privacy policies and consent mechanisms in place. However, no explicit incident response or vulnerability disclosure information is provided, which could be improved. Overall, CIOB's website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security header implementation, publishing vulnerability disclosure policies, and providing clearer incident response contacts to further strengthen trust and security posture.

M

Metrohm

metrohm.cz

63

Metrohm is a well-established company specializing in chemical analysis systems for laboratories and industrial processes, with a strong presence in Germany and globally. The website reflects a mature digital infrastructure with professional design, multi-language support, and comprehensive product and service information. The technical stack includes modern JavaScript frameworks, Adobe Experience Manager CMS, and advanced analytics tools such as Adobe Analytics, Google Tag Manager, and New Relic, indicating a high level of digital maturity. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the site presents a trustworthy and professional image suitable for its B2B audience.

B

Bouwen met Staal

staalconserveren.nl

39

Bouwen met Staal operates the Conserveringsinformatiesysteem, a specialized digital information portal focused on the design and assessment of steel constructions for durability, particularly addressing corrosion protection in infrastructure projects such as bascule bridges. The website serves a niche audience of engineers and construction professionals by providing curated, phase-based technical content supported by industry partners. The business model centers on knowledge sharing and industry collaboration rather than direct commercial sales. Technically, the website employs legacy technologies including Prototype.js and Adobe GoLive for content management, with JavaScript-based UI elements such as slideshows and lightbox galleries. While HTTPS is used, there is a lack of modern security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. The site performance is moderate with basic mobile optimization and accessibility features. From a security perspective, the site shows basic best practices such as HTTPS and form POST methods but lacks advanced protections like CSP or HSTS headers. No privacy or cookie policies are published, which is a compliance gap under GDPR. Contact information is clearly provided, enhancing business credibility. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is a moderately professional and trustworthy resource within its niche but would benefit from enhanced security measures, privacy compliance, and modernization of its technical stack to improve user trust and regulatory adherence.

B

Bouwen met Staal

staalsupport.nl

40

Staalsupport.nl is a specialized digital information platform operated by Bouwen met Staal, focused on providing technical guidance and support for steel construction professionals in the Netherlands. The website serves as a knowledge base with over 300 questions and answers related to steel design, connections, fire safety, materials, sustainability, and execution. It is supported by the Koninklijke Staalfederatie, enhancing its credibility and industry relevance. The platform also offers direct helpdesk support for unanswered queries, positioning itself as a trusted resource in the niche market of steel construction. Technically, the website employs standard web technologies including HTML, CSS, JavaScript, and external libraries such as Font Awesome and Google Fonts. It uses HTTPS and includes analytics tools like Mtrack and MonkeyStats for user tracking. While the site is mobile responsive at a basic level and has good navigation and content structure, it lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. From a security perspective, the site benefits from HTTPS encryption and absence of exposed sensitive data or vulnerable libraries. However, the lack of security headers and absence of privacy and cookie policies reduce its compliance posture. No WAF or blocking mechanisms are detected, and the domain registration data aligns well with the website's business claims, indicating a trustworthy and legitimate online presence. Overall, Staalsupport.nl is a professionally maintained, niche informational website with good business credibility and moderate technical maturity. Enhancing privacy compliance and security best practices would further strengthen its risk profile and user trust.

E

Eclipse Foundation

ocxconf.org

74

The website www.ocxconf.org hosts the Open Community Experience (OCX) 2026 event, the flagship developer conference organized by the Eclipse Foundation. It targets developers, open source contributors, and technology professionals, offering a comprehensive program including collocated events on tooling, automotive, AI, compliance, and research. The site is professionally designed, mobile-optimized, and provides rich content about the event, sponsorship, and registration. Technically, the site is built on the Cvent event platform using React and modern web technologies, delivering moderate performance and good accessibility. Security posture is solid with HTTPS and privacy policies, though explicit security headers and incident response contacts are not evident. WHOIS data is unavailable due to a malformed query, which slightly reduces trust but is common for event domains. Overall, the site is trustworthy, well-maintained, and serves its business purpose effectively.

D

Dineplan

voucherplan.co.za

49

Dineplan operates a digital platform focused on providing universal restaurant vouchers primarily targeting the South African hospitality market. The website promotes the benefits of accepting Dineplan vouchers, aiming to increase restaurant exposure and revenue through a seamless voucher redemption process. The platform leverages HubSpot CMS technology, integrating forms and analytics to engage restaurant partners effectively. The website is professionally designed, mobile-optimized, and includes clear calls to action and contact mechanisms. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is supported by comprehensive privacy and terms pages hosted on the main domain. Overall, the site reflects a mature digital presence suitable for its business model and audience.

O

OVH sas

tatoeba.org

51

Tatoeba.org is a community-driven educational platform established in 2008, focused on collecting and sharing multilingual sentences and translations to support language learners, linguists, and educators worldwide. The platform operates under OVH sas hosting in France, reflecting a stable and legitimate domain registration consistent with its long-standing presence. Technically, the website employs AngularJS and Material Design frameworks, offering a good user experience with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and DNSSEC, indicating room for improvement. Privacy compliance is minimal, with no visible privacy or cookie policies, which could be enhanced to meet modern standards. Overall, the website is safe, professional, and trustworthy, serving a niche educational market effectively.

D

Designspiration - Design Inspiration | Inspirational Art, Photography & Typography Images

designspiration.com

49

Designspiration is a niche technology platform focused on providing design inspiration through an image and color search engine. It targets creative professionals and enthusiasts who seek to create mood boards and find art, design, logos, photography, and UI inspiration. The platform offers a freemium business model with a Pro subscription for enhanced features and includes a browser extension to facilitate saving creative inspiration. The website is professionally designed with consistent branding and good content quality, though explicit business registration details are not available. Technically, the website uses modern JavaScript technologies, integrates Google Tag Manager for analytics, Stripe for payment processing, and social media SDKs for user engagement. The site is moderately optimized for performance and mobile use, with basic accessibility and good SEO practices. However, no CMS or hosting provider information is discernible from the content. From a security perspective, the site uses HTTPS and includes CSRF tokens for form security, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy and cookie policies are not explicitly found, which may impact compliance with GDPR and other regulations. No contact information for security incidents or data protection officers is provided. Overall, the site is accessible and functional with a moderate security posture and some gaps in privacy compliance and transparency. The lack of WHOIS data raises concerns about domain registration legitimacy, which should be further investigated. Strategic improvements in security headers, privacy disclosures, and contact transparency would enhance trust and compliance.

Q

Quotev

quotev.com

65

Quotev is an interactive media platform that enables users to read and write stories, take quizzes, and participate in surveys and polls. The platform targets a general audience interested in creative and social content, positioning itself as a niche community for interactive storytelling and entertainment. The website demonstrates a good level of content quality and user experience, with a consistent brand presentation and clear navigation. Technically, the site uses modern web technologies including asynchronous JavaScript loading and responsive design, providing a moderate performance and good mobile optimization. However, the absence of WHOIS domain registration data raises questions about domain legitimacy and ownership transparency. Security-wise, the site employs cookie consent mechanisms and privacy policies compliant with GDPR, but lacks visible security headers and explicit incident response information, indicating room for improvement in security posture. Overall, the site is functional and trustworthy for general users but would benefit from enhanced security practices and clearer business transparency.

5

5mods

gta5-mods.com

65

GTA5-Mods.com is a well-established community platform dedicated to providing a comprehensive repository of mods for the Grand Theft Auto V PC game. It serves a global audience of gamers and modders by offering a wide variety of downloadable content including vehicles, scripts, player skins, and tools. The platform operates primarily on a user-generated content model supported by advertising revenue and community engagement through social media and Discord. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, and Prebid.js for advertising and analytics, ensuring a responsive and user-friendly experience across devices. Security-wise, the site enforces HTTPS and includes CSRF tokens, with a consent management system for GDPR compliance, though it lacks explicit security policy disclosures or incident response information. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the site's legitimacy given its active community and professional presentation. Overall, the site demonstrates a mature digital infrastructure with room for improvement in security transparency and domain registration clarity.

J

JustPaste.it

justpaste.it

56

JustPaste.it is an established online platform founded in 2009 that provides users with a quick and easy way to share text and images via a web-based editor. The service targets a general audience seeking simple content sharing without requiring account creation, supported by optional premium subscriptions for enhanced features. The website employs standard web technologies including the TinyMCE rich text editor and is accessible via HTTPS, ensuring basic security for users. However, the site lacks advanced security features such as DNSSEC and comprehensive security policies. Privacy and cookie policies are present but do not include explicit GDPR compliance mechanisms or cookie consent banners. Contact information and incident response details are not publicly available, which may impact user trust and compliance. Overall, the platform offers a functional and user-friendly service with moderate technical maturity and a stable domain registration history.

A

Automattic Inc.

intensedebate.com

62

IntenseDebate is a commenting system service owned by Automattic Inc., providing enhanced comment features such as threaded replies, social media login integration, email notifications, and moderation tools. The service targets bloggers and website owners seeking to increase reader engagement and community interaction. The website is professionally designed with clear navigation and good content relevance, reflecting a mature and stable business offering. Technically, the site uses modern web technologies, integrates with WordPress and other blogging platforms, and is hosted on Automattic's infrastructure, ensuring reliable performance and moderate loading speeds. Security measures include HTTPS enforcement, spam filtering via Akismet, and anti-clickjacking scripts, though there is room for improvement in DNS security and security headers. Privacy compliance is strong, with comprehensive policies linked from the site and GDPR considerations addressed. Overall, the site demonstrates a high level of trustworthiness and business credibility.

E

Experiment

experiment.com

67

Experiment.com is a well-established crowdfunding platform dedicated to funding and sharing scientific research across diverse disciplines. It serves researchers, scientists, and science enthusiasts by providing a marketplace to fund innovative projects and share findings openly. The platform positions itself as the world's largest open platform for science funding, emphasizing transparency and community engagement. Technically, the website employs modern web technologies including JavaScript frameworks, cloud CDN hosting, and integrates analytics and bot protection tools such as Google Analytics, Mixpanel, Facebook SDK, and Google reCAPTCHA. The site is mobile-optimized with a professional design and clear navigation, supporting a positive user experience. Security-wise, the platform enforces HTTPS, uses reCAPTCHA for bot mitigation, and includes some security headers, though DNSSEC is not enabled and some headers could be added to enhance protection. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Overall, the website demonstrates a mature digital presence with strong business credibility and a secure, user-friendly environment.

P

POWERbunker.com

pub400.com

41

PUB400.COM operates as a free and public IBM i 7.5 server platform aimed at the IBM i community, providing users with a programming and learning environment. The website serves over 55,000 users worldwide and offers features such as user profile creation, disk storage, and support for various programming languages including CL, RPG, SQL, and COBOL. The business model is community-focused and educational, with no commercial transactions evident. Technically, the site uses basic HTML, CSS, and IBM i Net.Data technology, with no advanced CMS or frameworks detected. Performance is moderate with basic mobile optimization and accessibility. Security posture is limited, lacking DNSSEC, security headers, and visible HTTPS enforcement, and no privacy or cookie policies are published. The domain registration is stable and consistent with the website's purpose, though the domain age is younger than the claimed service history, suggesting possible re-registration or domain change. Overall, the site is functional and trustworthy for its niche audience but requires improvements in security and privacy compliance to enhance trust and protection.