Security Directory

Volvo Cars is a premium automotive manufacturer with a strong global presence, including a localized website for Bulgaria. The site offers comprehensive information about Volvo's vehicle lineup, configurators, and customer support, targeting general consumers interested in purchasing Volvo vehicles. The technical infrastructure is modern, leveraging React and Next.js frameworks, with a content management system likely based on Contentstack. The website demonstrates excellent design quality, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforcement, security headers, and a consent management platform for privacy compliance. However, explicit security policies and incident response contacts are not prominently published. WHOIS data is unavailable, possibly due to privacy protection, but the website's branding and content strongly indicate legitimacy. Overall, the site is professional, secure, and compliant with GDPR requirements.

Bra Miljöval is an established Swedish environmental certification organization affiliated with Naturskyddsföreningen. It provides independent eco-labeling services across multiple sectors including energy, transportation, cosmetics, and retail. The website demonstrates a mature digital infrastructure built on modern web technologies such as Next.js and React, with strong mobile optimization and SEO practices. Security posture is robust with HTTPS, security headers, and consent management implemented. Privacy and cookie policies are present and GDPR compliant. However, WHOIS data for the www subdomain is missing, which is likely a technical artifact rather than a legitimacy concern. Overall, the site is professional, trustworthy, and well-positioned in the sustainability market.

P

Pling

pling.ch

67

Pling is a Swiss-based service provider specializing in tailored, digitalized solutions for fiduciary services, administration, human resources, payroll accounting, and C-level consulting. The company targets businesses in Switzerland seeking efficient backoffice and personnel management services. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies, indicating a moderate level of digital maturity. The site is mobile-optimized and presents a professional design with good user experience, although some navigation clarity and accessibility features could be improved. Security posture is strong with HTTPS enforced and security headers present, but lacks published security policies or incident response information. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy or terms of service pages. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

D

Digitron GmbH

digi-tron.ch

66

Digitron GmbH operates as a digital bookkeeping and accounting service provider based in Switzerland, targeting businesses seeking online financial management solutions. The website is built on the Wix platform, leveraging standard Wix technologies and scripts, and presents content primarily in German. The business model focuses on delivering complete bookkeeping services digitally, positioning itself as a niche player in the Swiss finance sector. Technically, the website demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and a cookie consent mechanism in place; however, the absence of security headers and privacy policy pages indicates room for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic enhancements in privacy compliance, contact transparency, and security best practices would strengthen trust and compliance.

A

Aebin Treuhand AG

aebin-treuhand.ch

57

Aebin Treuhand AG is a Swiss-based small finance and business consulting firm specializing in administration and advisory services for companies and private individuals. The company positions itself as a local trusted advisor in Pratteln, Switzerland, offering core services in financial and economic matters. The website reflects a professional and consistent brand image with clear contact details and affiliations to Swiss professional organizations, enhancing trustworthiness. Technically, the website is built using modern web technologies including Statamic CMS and Tailwind CSS, with a focus on performance and accessibility. The site is mobile-optimized and SEO-friendly, with no detected tracking or cookies, indicating a strong privacy posture. The absence of forms on the main page reduces attack surface, and the use of HTTPS ensures secure communications. From a security perspective, the site demonstrates good practices such as disabling automatic detection of emails and phone numbers to prevent scraping. However, explicit security headers are not visible in the HTML content and could be improved. No vulnerability disclosure or incident response information is provided, which could be enhanced to improve security transparency. Overall, the website is safe, professional, and trustworthy with a strong privacy focus. Strategic recommendations include adding explicit security headers, publishing a security policy and incident response contacts, and implementing a cookie consent mechanism if cookies are introduced in the future.

C

cyber-Wear Heidelberg GmbH

fordlifestylecollection.com

51

The Ford Lifestyle Collection website is an official e-commerce platform operated by cyber-Wear Heidelberg GmbH, offering a broad range of Ford branded lifestyle products including apparel, accessories, and collectibles. The site targets Ford enthusiasts primarily in Germany and Europe, providing a multilingual shopping experience with clear navigation and professional branding. The business model focuses on retail sales of licensed merchandise, supported by customer account management and newsletter subscriptions. The domain age and DNS configuration align well with the brand's legitimacy and market presence. Technically, the website is built on a modern e-commerce platform (Shopware) with standard web technologies such as JavaScript, CSS, and HTML5. It integrates PayPal for payments and employs a cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement in loading speed and additional security headers. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, reflecting good security hygiene. However, DNSSEC is not enabled, and no explicit security policy or incident response contacts are published, which could be improved. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong with clear cookie consent and comprehensive privacy and terms documents hosted on a partner domain. Overall, the website presents a low-risk profile with high trustworthiness and professional presentation. Strategic recommendations include enabling DNSSEC, publishing a security policy, and enhancing security headers to further strengthen the security posture and customer trust.

M

Mazda

mazda.ee

67

Mazda Estonia operates an official regional website providing comprehensive information about Mazda vehicles, including models, pricing, and promotions. The site targets Estonian consumers interested in purchasing Mazda cars, offering services such as vehicle configuration, test drive booking, and dealer location. The website demonstrates a good level of digital maturity with modern technologies like Google Tag Manager and Usercentrics for cookie consent, ensuring compliance with GDPR. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. Overall, the site reflects a professional and trustworthy brand presence in the automotive sector.

I

Ingenious.com is for sale. Buy it today!

ingenious.com

51

DomainEasy operates as a domain marketplace platform specializing in premium domain sales, exemplified by the listing of Ingenious.com. The website offers a secure buying process with options to buy domains instantly or negotiate offers, supported by escrow services such as Escrow.com. The platform targets domain investors and businesses seeking valuable domain assets. Technically, the site is built on a modern React and Next.js stack, incorporating analytics tools like Microsoft Clarity and Google Tag Manager, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and secure payment workflows, though explicit security headers and incident response information are absent. The lack of WHOIS data for the main domain www.domaineasy.com introduces some trust concerns, but the overall site professionalism and secure transaction mechanisms mitigate risk. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site is a functional and trustworthy domain sales platform with room for improvement in transparency and security disclosures.

M

Meta

meta.com

68

Meta is a leading global technology company primarily known for its social media platforms and related services. The analyzed website serves as a Meta Store portal requiring user authentication via a Meta account, indicating it is intended for registered users only. The site integrates heavily with Facebook and Instagram login mechanisms and uses advanced JavaScript frameworks such as React. However, public content is inaccessible without login, limiting the ability to fully assess the site. The domain WHOIS data is not publicly available, consistent with privacy protection practices common among large tech companies. The website employs extensive tracking and advertising pixels from multiple ad networks and analytics providers, reflecting a mature marketing infrastructure. Security headers and public privacy or cookie policies are not detectable in the accessible content, which is a gap in compliance and security posture.

T

Thinkingbox Enterprise

thinkingboxenterprise.com

60

Thinkingbox Enterprise is a technology consulting partner specializing in digital transformation for large enterprises and global organizations. They provide a broad range of digital services including web and mobile app design and development, digital marketing, and custom software solutions. Their client portfolio includes major brands such as Adobe, Starbucks, Riot Games, and Pfizer, positioning them as a trusted partner in the technology sector. The company operates from offices in Salt Lake City and Vancouver, targeting enterprise-level clients with complex digital needs. Technically, the website employs modern front-end technologies and integrates with multiple CMS platforms such as Adobe EDS, Prismic, and Sanity, hosted on AWS infrastructure. However, some technical aspects like DNSSEC and security headers are missing, indicating room for improvement in security posture. The security evaluation shows a generally good baseline with HTTPS usage but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data raises concerns due to a future domain creation date, which is inconsistent with the website's apparent maturity and client history, slightly reducing trustworthiness. Overall, the website is professional and content-rich but would benefit from enhanced privacy, security, and compliance disclosures to improve trust and regulatory adherence.

S

Sida, Styrelsen för internationellt utvecklingssamarbete

openaid.se

69

Openaid.se is an official Swedish government transparency platform operated by Sida, the Swedish International Development Cooperation Agency. It provides comprehensive open data and visualizations about Swedish international aid, including details on aid recipients, sectors, and results. The platform targets researchers, policymakers, and the general public interested in development cooperation. Technically, the site is built on modern JavaScript frameworks Nuxt.js and Vue.js, hosted by a reputable Swedish provider, and optimized for accessibility and mobile use. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and alignment with government transparency mandates.

M

Mediaflow

mediaflowpro.com

56

Mediaflow is a media asset management platform targeting media professionals and organizations. The website analyzed is a login page for Mediaflow accounts, featuring a minimalistic design with a focus on user authentication. The technical infrastructure uses modern JavaScript frameworks such as LitElement and CSS for styling, indicating a contemporary front-end approach. However, the page lacks comprehensive privacy, cookie, and terms of service policies, as well as contact information, which limits transparency and compliance visibility. Security posture is moderate with secure form practices but lacks visible security headers and SSL configuration details. Overall, the site is functional but could improve in privacy compliance and security best practices to enhance trust and user confidence.

S

ShareTheMeal

sharethemeal.org

73

ShareTheMeal is a well-established non-profit platform affiliated with the United Nations World Food Programme, focused on fighting global hunger through donations and fundraising campaigns. The website offers a professional, content-rich experience with clear calls to action for donations and detailed information about ongoing humanitarian projects worldwide. The platform supports multiple languages and is optimized for mobile and desktop users, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Remix, integrates analytics tools like Amplitude and Firebase, and is hosted on AWS, ensuring reliability and performance. Security posture is strong with HTTPS enforced and multiple security headers present, although DNSSEC is not enabled and no visible cookie consent mechanism was detected, which could be improved for compliance. Overall, the domain registration is consistent with the organization's profile, showing a long-standing presence since 2012. The site is trustworthy, safe, and professionally managed, making it a credible platform for charitable donations.

J

Jacquard

jacquard.com

66

Jacquard is an AI-driven SaaS platform specializing in enterprise brand messaging and CRM content generation. The company leverages advanced generative and predictive AI technologies to deliver brand-compliant, high-performing messaging at scale, targeting enterprise marketers and brand teams. The website demonstrates a strong market position with notable clients and a professional digital presence. Technically, the site is built on WordPress with modern SEO and performance optimizations, integrating marketing automation and analytics tools such as Pardot and Google Tag Manager. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and vulnerability disclosures are absent. The lack of WHOIS data is a concern for domain legitimacy but is offset by the professional branding and content quality. Overall, the site is trustworthy and well-constructed, suitable for its target audience.

S

Sveriges lantbruksuniversitet

slu.se

59

Sveriges lantbruksuniversitet (SLU) is a large, internationally recognized Swedish university specializing in education, research, and environmental analysis focused on sustainable use of biological natural resources. The website presents comprehensive educational programs, research catalogs, and environmental data services targeting students, researchers, and collaborators. Technically, the site uses modern web technologies including JavaScript, CSS, and integrates analytics and cookie consent tools, with a CMS likely Episerver. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is solid with HTTPS and cookie consent, though explicit security policies and headers could be improved. WHOIS data is missing due to querying a subdomain rather than the root domain, but the site’s legitimacy is supported by consistent branding and official social media presence. Overall, the site is professional, trustworthy, and compliant with GDPR.

V

Veepee

veepee.com

68

Veepee is a prominent French e-commerce platform specializing in private sales of branded products and travel offers at discounted prices. The website presents a professional and modern interface with clear navigation and multiple sales campaigns targeting French consumers. The technical infrastructure leverages modern JavaScript frameworks such as Next.js and React, with integrations for user behavior analytics and accessibility tools. Security posture is solid with HTTPS enforcement and standard security headers, complemented by a comprehensive privacy and cookie policy with consent management. However, the absence of WHOIS registration data and explicit security incident response contacts slightly reduce trustworthiness. Overall, Veepee demonstrates a mature digital presence suitable for a large e-commerce business.

R

Red Bull

win.gs

66

Red Bull is a globally recognized energy drink brand with a strong digital presence, particularly localized here for the Finnish market. The website focuses on brand marketing, product promotion, and lifestyle content targeting consumers interested in energy drinks and active lifestyles. The technical infrastructure leverages modern web technologies, including JavaScript frameworks, web fonts, and a global CDN (Akamai) to ensure fast and responsive user experience across devices. Security posture is strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, explicit privacy and cookie policies were not detected in the provided content, indicating room for improvement in privacy compliance. WHOIS data is unavailable, likely due to registry restrictions or privacy, but this does not detract from the brand's legitimacy given its global recognition. Overall, the website is professional, secure, and well-optimized, serving its business goals effectively.

Red Bull Powertrains operates as a specialized engineering company focused on the development and manufacturing of powertrain systems for motorsport, particularly Formula 1. The company leverages the strong Red Bull brand and targets professional motorsport teams and automotive technology sectors. The website demonstrates a modern, responsive design with a robust technical infrastructure, including advanced web fonts and optimized loading strategies. Security posture is strong with HTTPS and security headers implemented, though privacy and cookie policies are absent, which impacts compliance. The lack of WHOIS data raises some concerns about domain legitimacy, but the professional presentation and brand association mitigate this risk. Overall, the site is well-positioned but would benefit from enhanced transparency and compliance documentation.

The website www.ft.com represents the Financial Times, a globally recognized media organization specializing in business and financial news. The site is positioned as a leading international news publisher with a subscription-based business model offering news articles and business analysis. However, the provided HTML content is a security challenge page served by Fastly CDN, blocking access to the full website content and limiting detailed analysis. From a technical perspective, the site uses standard web technologies such as JavaScript, CSS, and HTML5, and is hosted or proxied via Fastly CDN. The presence of a Content-Security-Policy header indicates some security best practices, but the lack of additional security headers and visible SSL configuration details limits the security assessment. No analytics, advertising, or tracking scripts were detected in the provided snippet. Security posture is moderate given the CSP header and HTTPS implied by the domain, but the inability to access full content and lack of WHOIS data reduces confidence. No privacy, cookie, or terms of service policies were found in the provided content, and no contact or incident response information is visible. The domain WHOIS data is unavailable from the .com registry, which is unusual for a major brand and suggests privacy protection or proxy registration. Overall, the site appears legitimate and safe with no adult or explicit content detected. However, the security challenge page and missing WHOIS data limit the depth of analysis. Strategic recommendations include improving transparency of security and privacy policies, ensuring WHOIS data availability or clarity, and enhancing security headers and incident response information.

B

Büro am Draht

dasburo.com

42

Büro am Draht is a German-based digital business solutions provider specializing in developing custom digital platforms that scale with client businesses. Established since 1996, the company leverages over 25 years of experience and a team of 50+ experts to deliver technically excellent and honest digital transformation services. Their offerings include workshops such as Architecture Assessment, Digital Check, and Retrospective, targeting businesses seeking tailored digital solutions. The website content is professional and well-structured, reflecting a medium-sized technology company with a consistent brand presence. Technically, the website uses the Scrivito CMS platform with modern JavaScript and CSS technologies. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. However, there is room for improvement in security configurations, such as enabling DNSSEC and implementing security headers. The site uses HTTPS, ensuring encrypted communications. From a security perspective, the website shows a moderate security posture with HTTPS enabled and domain transfer protection. However, it lacks visible security headers, privacy and cookie policies, and incident response information, which are critical for compliance and trust. No vulnerabilities or suspicious content were detected. The WHOIS data confirms the domain's legitimacy and long-standing registration, supporting the company's credibility. Overall, the website is a credible and professional digital solutions provider with solid technical infrastructure but requires enhancements in privacy compliance and security best practices to improve trust and regulatory adherence.

T

TechDivision GmbH

techdivision.com

65

TechDivision GmbH is a German digital agency specializing in e-commerce, digital consulting, software solutions, and marketing services. The company positions itself as a digital powerhouse with a strong focus on Adobe Experience Cloud technologies and comprehensive digital transformation services. Their website is professionally designed, multilingual (German and English), and targets businesses seeking digital growth and modernization. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with modern JavaScript and CSS technologies, ensuring good performance and mobile optimization. Security-wise, the website enforces HTTPS, implements cookie consent mechanisms, and holds an ISO 27001 certification, indicating a mature security posture. However, the absence of explicit security policy and incident response information is a minor gap. The WHOIS data for the domain is missing, which raises some concerns about transparency, but the overall trust signals from the website content and compliance measures suggest legitimacy. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure information, and improving WHOIS transparency.

P

Proofpoint

urldefense.com

69

The domain urldefense.com serves as a component of Proofpoint's cybersecurity infrastructure, specifically supporting their Targeted Attack Protection (TAP) product. The website content is minimal, primarily providing an informational notice that the domain is used to protect enterprise users from targeted phishing and malware threats by scanning URLs. The domain is registered with MarkMonitor Inc., a reputable registrar for enterprise domains, and uses AWS DNS services, indicating a robust technical infrastructure. However, the website itself lacks comprehensive content such as privacy policies, cookie notices, or contact information, which limits its completeness as a public-facing site. From a technical perspective, the site uses basic HTML and CSS with no detected advanced frameworks or CMS. DNS hosting via AWS and domain registration details reflect enterprise-grade management. Security posture is moderate; while domain status codes prevent unauthorized changes, DNSSEC is not enabled and no security headers were detected in the provided data. The site is accessible without WAF or security challenges, and no vulnerabilities or malicious content were found. Security-wise, the domain functions as a protective redirector within Proofpoint's ecosystem, contributing to enterprise email security by blocking malicious URLs. The lack of explicit security policies or incident response contacts on this domain is a gap but may be addressed on the main Proofpoint corporate site. Overall, the domain is legitimate and trustworthy but limited in standalone content and compliance disclosures. Strategically, the domain supports Proofpoint's market position as a leading cybersecurity provider focused on advanced threat protection for enterprises. Recommendations include enabling DNSSEC, adding security headers, and publishing privacy and cookie policies to enhance compliance and trust.

A

Agroforestry Sverige

agroforestry.se

53

Agroforestry Sverige is a Swedish non-profit association dedicated to promoting agroforestry practices through education, collaboration, and dissemination of knowledge. The organization targets advisors, farmers, growers, and landowners interested in sustainable land use and agroforestry. Their business model relies on project funding and volunteer board engagement. The website is built on WordPress, hosted on WordPress.com infrastructure, and uses Jetpack for analytics and some security features. The site is well-structured, mobile-optimized, and provides rich content including articles, events, and educational resources. However, explicit privacy and cookie policies are not found, which is a compliance gap.

S

SMARTBROKER+

smartbrokerplus.de

38

SMARTBROKER+ operates as a cost-effective online brokerage platform based in Germany, offering a wide range of financial products including stocks, bonds, ETFs, derivatives, funds, cryptocurrencies, and savings plans. The platform targets retail investors seeking affordable and comprehensive trading services. The website demonstrates a professional design and clear branding, emphasizing its market position as a cost leader confirmed by Finanztest in 11/2024. Technically, the site is built on modern frameworks such as Next.js and integrates multiple marketing and tracking tools with a consent management platform, reflecting a mature digital infrastructure. Security-wise, the website enforces HTTPS and uses consent management but lacks explicit security headers and published security policies, indicating room for improvement in security transparency and incident response readiness. Overall, the site is accessible without WAF blocking, contains no adult content, and maintains a high trustworthiness level, though it would benefit from publishing privacy and terms policies and providing clear contact information.

H

Heavy

heavy.com

71

Heavy.com is an established sports news media website founded in 1998, providing comprehensive coverage of major sports leagues including NFL, NBA, MLB, and NHL. The site offers news, player statistics, analysis, trade rumors, and subscription-based alerts targeting sports fans and fantasy sports enthusiasts. Technically, the website is built on WordPress CMS with SEO optimizations via Yoast SEO Premium and uses Cloudflare for DNS and AdThrive for advertising. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enabled and domain transfer protections, but lacks visible security headers and published security policies. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages detected. Overall, the site is professional and trustworthy with moderate user tracking via advertising and analytics services.

B

Bouygues Telecom

bouyguestelecom.fr

65

Bouygues Telecom is a leading French telecommunications company providing mobile phone services, mobile plans, and internet connectivity including Fibre and ADSL. The company is a major player in the French telecom market and operates under the Bouygues Group umbrella. Their website is professionally designed, mobile-optimized, and provides comprehensive information about their products and services targeting general consumers in France. The digital infrastructure leverages modern web technologies such as React and Next.js, ensuring a responsive and performant user experience. Security is robust with HTTPS enforced and multiple security headers implemented, reflecting a mature security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms in place. Overall, the website demonstrates high business credibility and trustworthiness, although WHOIS data is not publicly available due to registry policies or privacy protection. Strategic recommendations include publishing explicit security and incident response policies and enhancing accessibility features.

I

IPPEN.MEDIA

ippen.media

62

IPPEN.MEDIA is a major German media publishing group specializing in digital and print journalism with a strong focus on local news. The website presents a professional and comprehensive digital presence, showcasing news articles, network information, and career opportunities. The technical infrastructure leverages modern JavaScript frameworks and asynchronous loading to optimize user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the website reflects a mature and credible media business with a strong market position in Germany.

B

Breitling

breitling.com

75

Breitling is a renowned Swiss luxury watchmaker specializing in high-end timepieces that combine style, purpose, and action. The company targets luxury watch consumers and enthusiasts globally, offering a comprehensive range of collections and services including watch sales, servicing, warranty registration, and boutique location. The website reflects a strong market position with consistent branding and excellent content quality. Technically, the site is built on modern frameworks such as Next.js, ensuring fast performance, mobile optimization, and good accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, slightly impacting trust.

C

Clara and Co

claraandco.co.uk

58

Clara and Co is a small retail e-commerce business specializing in luxury women's fashion, emphasizing timeless elegance and contemporary style. The website presents a curated collection aimed at women who appreciate sophisticated and classic fashion. The business model is focused on online retail with features such as newsletter subscriptions and social media engagement, although direct contact details are limited to a contact form. The market position is niche, targeting customers seeking quality and timeless fashion pieces. Technically, the website is built using modern web technologies including Next.js and React, indicating a contemporary and scalable infrastructure. The site is mobile-optimized with good design quality and clear navigation, although some accessibility features could be improved. Performance is moderate, with no major issues detected in the HTML content. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies. There is no cookie consent mechanism, which may impact GDPR compliance. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS lookup failed due to domain naming rule violations, which raises concerns about domain registration legitimacy but does not necessarily reflect on the website's operational security. Overall, the website is professional and functional with moderate trustworthiness. Strategic improvements in security headers, privacy compliance, and clearer business contact information would enhance the security posture and user trust. The domain registration inconsistency should be investigated to ensure full legitimacy and compliance.

P

Pierce Me London

piercemelondon.co.uk

68

Pierce Me London is a UK-based small business specializing in body piercing services and retailing body jewellery and aftercare products. The company operates an e-commerce platform built on Shopify, offering a range of piercing essentials and jewellery items. Their market position is niche, targeting consumers interested in body modification and related accessories. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site leverages modern web technologies and Shopify's secure infrastructure, ensuring reliable performance and security. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security and incident response policies are not published. Privacy compliance is good, with a privacy policy and cookie consent banner implemented. Overall, the website is trustworthy and well-maintained, with room for improvement in publishing terms of service and security policies.

S

Soaps n Scrubs

soapsnscrubs.co.uk

64

Soaps n Scrubs is a small UK-based retailer specializing in handmade, natural, and eco-friendly skincare products including soaps and body scrubs. The company targets consumers seeking organic, vegan, and cruelty-free personal care items. Their market position is niche with a focus on quality and sustainability. The website is built on WordPress using the Gutenberg editor, indicating a modern CMS platform with moderate performance and good mobile optimization. However, the site lacks visible privacy and cookie policies, and no advanced security headers were detected, which could be improved to enhance trust and compliance. The WHOIS data for the domain is unavailable due to a naming rules violation error from Nominet UK, which raises some concerns about domain legitimacy, although the website content and business information appear consistent and professional. Overall, the site is functional and trustworthy from a content perspective but would benefit from improved security and compliance transparency.

C

CH Media

chmediawerbung.ch

68

CH Media operates a comprehensive advertising portal targeting Swiss advertisers with cross-media offerings including newspapers, magazines, radio, TV, and digital platforms. The company has a strong market position as the largest private broadcaster group in Switzerland, reaching millions daily. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses modern JavaScript and CSS technologies, including Lottie animations and Piwik PRO analytics, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are absent. Overall, the site is trustworthy and compliant with GDPR, but could improve transparency around security policies and incident response.

F

ford.si

ford.si

66

Ford.si is the official website for Ford vehicles in Slovenia, representing a well-established automotive brand with a domain age dating back to 2004. The site offers comprehensive information on Ford's vehicle lineup, including electric and hybrid models, servicing options, financing, and test drives, targeting Slovenian consumers and businesses. The website demonstrates a mature digital infrastructure utilizing modern web technologies such as Ruby on Rails, Stimulus JS, Turbo, and Mapbox GL JS, complemented by marketing and analytics tools from HubSpot and Google Tag Manager. Security posture is strong with HTTPS enforcement, security headers, and consent management, although explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and compliant with GDPR, providing a positive user experience and clear brand consistency.

Ford Romania operates an official regional website providing comprehensive information and offers for new Ford vehicles. The site targets Romanian consumers interested in purchasing or learning about Ford cars, offering detailed specifications, pricing, and dealer information. The business model focuses on automotive sales and marketing, supported by a strong brand presence and consistent digital branding aligned with the global Ford Motor Company. The website demonstrates a mature digital infrastructure with modern technologies such as Adobe Experience Manager CMS, Adobe Analytics, and Akamai CDN services, ensuring good performance and user experience across devices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site is professional, trustworthy, and aligned with industry standards for automotive e-commerce and marketing.

Ford Polska operates as the official regional website for Ford Motor Company in Poland, providing comprehensive information about their vehicle lineup including electric cars, SUVs, and commercial vehicles. The site targets Polish consumers interested in Ford products, offering services such as test drive scheduling and dealer location. The website demonstrates a mature digital infrastructure, leveraging Adobe Experience Manager CMS, Adobe Analytics, and Akamai service workers to deliver a performant and secure user experience. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly visible. Overall, the site reflects a high level of professionalism and trustworthiness consistent with a major automotive brand's regional presence.

Ford Norge operates the official Norwegian website for Ford Motor Company, providing comprehensive information on passenger and commercial vehicles, including electric models. The site targets Norwegian consumers and businesses interested in Ford products, offering vehicle specifications, finance options, and dealer locators. The website is built on modern web technologies including Adobe Experience Manager and uses Akamai for hosting and performance optimization. It employs Adobe Analytics for user tracking and has implemented cookie consent mechanisms to comply with privacy regulations. Security posture is strong with HTTPS enforced and service workers for performance, though explicit security headers and detailed privacy policies are not detected in the provided content. The domain WHOIS data is unavailable from the Norid service, likely due to privacy protection, which is common for large brand domains. Overall, the site demonstrates a professional and trustworthy presence with good technical implementation and business credibility.

Ford Magyarország operates as the official Hungarian website for the Ford automotive brand, providing comprehensive information on passenger cars, commercial vehicles, pickups, financing options, and aftersales services including maintenance and repairs. The website targets Hungarian consumers interested in purchasing or servicing Ford vehicles, positioning itself as a trusted national brand portal. Technically, the site leverages Adobe Experience Manager as its CMS, integrates Adobe Analytics for data insights, and uses Akamai for content delivery and service worker capabilities, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and modern security headers, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is robust with clear cookie consent mechanisms and GDPR-aligned privacy policies. Overall, the site presents a professional, trustworthy, and user-friendly experience with moderate tracking balanced by user consent.

Ford Italia operates the official Italian website for Ford Motor Company, providing detailed information on vehicle models, pricing, technical specifications, and promotional offers. The site targets Italian consumers interested in purchasing or learning about Ford vehicles, including commercial vehicles. The business is positioned as a major automotive brand with a strong market presence in Italy, supported by a comprehensive digital platform built on Adobe Experience Manager and leveraging Akamai for performance and security.

Ford Ireland operates as the official regional website for Ford Motor Company, providing comprehensive information on vehicle models, pricing, specifications, and promotions tailored for the Irish market. The site targets consumers interested in purchasing or financing Ford vehicles, offering detailed product data and dealer locator services. The business is positioned as a leading automotive brand with a strong market presence in Ireland, supported by the global Ford Motor Company brand. Technically, the website leverages Adobe Experience Manager as its CMS platform, integrated with Adobe Launch for tag management and analytics, and Akamai for content delivery and service worker-based performance enhancements. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be improved. The technology stack is modern and robust, supporting a professional user experience. From a security perspective, the site enforces HTTPS and employs security best practices such as service workers and cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly disclosed, which could be enhanced to improve transparency and trust. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR and cookie regulations. The domain's WHOIS data is not publicly available due to .ie domain privacy norms, but the site aligns well with the official Ford brand, indicating legitimacy. Strategic recommendations include publishing security policies, enhancing accessibility, and maintaining regular security audits to sustain a strong security posture.

Ford Spain operates a comprehensive and professionally designed website serving as the official portal for Ford vehicles in Spain. The site provides detailed vehicle specifications, pricing, and promotional information tailored to the Spanish market. The use of Adobe Experience Manager and Akamai service workers indicates a mature technical infrastructure supporting performance and scalability. Privacy and cookie policies are well implemented, reflecting compliance with GDPR requirements. However, explicit contact information and security incident response policies are not readily visible in the provided content, which could be improved to enhance user trust and compliance transparency. Overall, the website demonstrates a strong security posture with HTTPS enforcement and modern web technologies, positioning it as a reliable and authoritative source for Ford customers in Spain.

Ford Deutschland GmbH operates the official German website for Ford, providing comprehensive information on passenger cars, commercial vehicles, financing, and after-sales services. The website targets consumers and business customers in Germany, offering vehicle configurators, test drive bookings, and detailed product information. The brand is well-established with a strong market position in the automotive sector. Technically, the site leverages Adobe Experience Manager CMS, Adobe Analytics, and Akamai CDN services, reflecting a mature digital infrastructure. The website is well-optimized for mobile and accessibility, with good SEO practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting Ford's enterprise-level digital presence in Germany.

Ford.cz is the official website for Ford Motor Company in the Czech Republic, providing comprehensive information about Ford vehicles, pricing, and dealer services. The site targets consumers and businesses interested in purchasing or learning about Ford vehicles in the region. It leverages modern web technologies including Adobe Experience Manager and Adobe Analytics, ensuring a professional and responsive user experience. The website demonstrates strong branding consistency and good content quality, supporting Ford's market position as a leading automotive brand in the Czech market. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. The absence of WHOIS data is a notable gap but does not detract significantly from the overall legitimacy given the brand and content quality. Strategic recommendations include publishing security policies, incident response contacts, and vulnerability disclosure programs to enhance trust and compliance.

The website www.ford.be serves as the official Ford Belgium landing page, primarily offering a language selection interface for Dutch and French users. It represents a major automotive brand with a strong market presence in Belgium, providing vehicle information and dealer services. The site employs modern web technologies including Adobe DTM, Google Tag Manager, and Akamai service workers, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and use of service workers, but lacks visible security headers and explicit privacy or cookie policies on this landing page. No forms or direct contact information are present, limiting data collection points. Overall, the site appears legitimate and professionally branded, but could improve transparency and compliance by adding privacy and cookie policies and enhancing security headers.

S

Springer Nature

springernature.com

66

Springer Nature is a leading global academic publisher with a strong market position and a comprehensive portfolio of services aimed at researchers, authors, librarians, and institutions. The website reflects a mature digital presence with a focus on open science, licensing, and research dissemination. The technical infrastructure leverages modern web technologies including CoreMedia CMS, Google Tag Manager, and reCAPTCHA, ensuring a secure and performant user experience. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

A

Aargauer Zeitung

aargauerzeitung.ch

60

Aargauer Zeitung is a well-established regional news media portal serving the Aargau region in Switzerland since 1996. It provides comprehensive news coverage including sports, politics, economy, and entertainment, targeting a regional audience. The website is professionally designed with consistent branding and good content quality, supported by a large media company, CH Media AG. The digital infrastructure leverages modern web technologies such as React, structured data, and integrates multiple advertising and analytics services to support its business model. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not publicly detailed. Overall, the website demonstrates a mature digital presence with moderate tracking and advertising typical for media outlets.

N

NVA Online Advertising B.V.

axion.ch

54

The website axion.ch is a domain sales landing page operated by NVA Online Advertising B.V., a domain expert company based in the Netherlands. The site offers the domain axion.ch for sale through the Nameshift.com platform, which provides escrow services to ensure safe and fast domain transfers. The business model focuses on domain brokerage with an emphasis on security and buyer protection via escrow. The target audience includes domain investors and businesses seeking premium domain names. The website content is professional and consistent with the business purpose, featuring clear calls to action and trust signals such as payment method icons and a Trustpilot widget. Technically, the website is built using modern web technologies including SvelteKit and JavaScript, hosted on a CDN associated with Nameshift.com. The site is fast, mobile-optimized, and has a clean design, though accessibility features are basic. SEO optimization is minimal but sufficient for the domain sale purpose. No CMS or complex platform is detected, indicating a lightweight and focused implementation. From a security perspective, the site uses HTTPS (implied by CDN usage and external links), but no explicit security headers or policies are visible. There is no privacy or cookie policy, nor incident response or vulnerability disclosure information, which are gaps in compliance and security transparency. The escrow service mitigates transactional risk, but the site could improve by adding formal security and privacy documentation. Overall, the website is legitimate and trustworthy for its purpose, with a moderate security posture and good business credibility. Strategic improvements in privacy compliance and security transparency would enhance trust and reduce risk.

C

Crédit Mutuel de Bretagne

cmb.fr

66

Crédit Mutuel de Bretagne is a regional cooperative and mutual bank serving individuals, professionals, enterprises, associations, and collectives primarily in Brittany, France. The website offers comprehensive banking services including account management, online account opening, and card services, positioning itself as a trusted regional financial institution under the Crédit Mutuel Arkéa group. The site is professionally designed with consistent branding and clear navigation tailored to its diverse audience segments. Technically, the website leverages modern web technologies including JavaScript, CSS, Bootstrap, and Jalios CMS. It integrates advanced consent management via Didomi and analytics through Piano Analytics and Google Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search visibility. From a security perspective, the website enforces HTTPS, employs cookie consent mechanisms aligned with GDPR, and avoids exposing sensitive data. While explicit security headers are not fully visible in the HTML, the overall posture is strong with no evident vulnerabilities. The absence of WHOIS data is likely due to privacy protection, which is justified for a financial institution. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for a major regional bank. Strategic recommendations include enhancing visible security headers, publishing clear security and incident response policies, and maintaining vigilance on third-party scripts to sustain trust and compliance.

P

Free Images & Free stock photos - PxHere

pxhere.com

59

PxHere is a free stock photo platform offering over 1.1 million high-quality images under the CC0 license, allowing free commercial use without attribution. The website targets a broad audience including content creators, marketers, and businesses seeking royalty-free images. It supports multiple languages, enhancing accessibility globally. Technically, the site uses standard web technologies including JavaScript and Google Analytics for user tracking. While the site design and content quality are good, there is a lack of visible security headers and privacy policies, which impacts its security posture and privacy compliance. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, PxHere presents a moderate risk profile with room for improvement in security and compliance documentation.

Winds of Dawn is a small, niche community website dedicated to a clan within the online role-playing game Clan Lord. The site serves as an informational hub for clan members and new players, offering clan history, leadership details, guides, newsletters, and galleries. The business model is community-focused without commercial transactions or extensive digital services. The website is hosted by DreamHost and has been active since 2000, indicating a stable and long-term presence in its niche. Technically, the site is built with basic HTML and CSS without modern frameworks or CMS platforms. It lacks mobile optimization and advanced SEO or accessibility features. Performance is moderate given the simple static content. No analytics or tracking technologies are detected, reflecting a privacy-conscious or minimalistic approach. From a security perspective, the site lacks HTTPS information in the provided data, no DNSSEC is enabled, and no security headers are detected. There are no visible vulnerabilities or exposed sensitive data, but the absence of modern security practices and policies is notable. No privacy, cookie, or terms of service policies are present, which limits compliance with GDPR or similar regulations. Overall, the website is safe and trustworthy for its intended audience but would benefit from modernizing its technical infrastructure, improving security posture, and adding privacy and security policies to enhance compliance and user trust.

P

Primal

primal.net

55

Primal.net is a technology-focused website dedicated to discovering and presenting content related to Nostr, a decentralized social network protocol. The website appears to be a small-scale operation with a modern frontend architecture leveraging JavaScript modules and CSS. The domain is well-established, having been registered since 2002, which supports the legitimacy and maturity of the business. However, the website lacks visible privacy, cookie, and terms of service policies, as well as contact information, which limits transparency and user trust. Technically, the site uses Cloudflare DNS and serves content over HTTPS, but no advanced security headers or analytics tools are detected in the provided content.