Security Directory

The analyzed website content is inaccessible and presents a Chrome internal error page, indicating the site is either down, blocked, or not properly configured. No business-related content, contact information, or policies are present, making it impossible to assess the company's operations or market position. The technical infrastructure appears to be limited to Chromium offline game scripts, with no evidence of hosting, CMS, or external integrations. Security posture is minimal with no HTTPS or security headers detected. Overall, the site lacks fundamental elements required for trust, compliance, and user engagement.

G

Groningen Store

groningenstore.nl

66

Groningen Store is a specialized e-commerce retailer offering unique Groningen-themed products including clothing, decor, and regional food items. Established in 2018, it serves local consumers and tourists interested in authentic regional merchandise. The website is built on the Shopify platform, leveraging modern web technologies and integrated marketing tools such as Google Tag Manager and Shopify analytics. The store maintains a consistent brand presence with active social media channels on Facebook and Instagram. Privacy and cookie policies are implemented with user consent mechanisms, reflecting compliance with GDPR requirements. Security posture is strong with HTTPS, DNSSEC, and form protection via hCaptcha, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates a good balance of business credibility, technical maturity, and user experience.

E

Europa Cinemas

europa-cinemas.org

61

Europa Cinemas is a well-established European cinema network founded in 1992, supported by the European MEDIA Programme and CNC. It serves as a key platform for the circulation and diversity of European films, uniting over 1,200 cinemas across 39 countries. The website reflects a professional and consistent brand presence, targeting cinema operators and film professionals with services including funding, training, and collaborative projects. Technically, the site employs modern web technologies and includes a GDPR-compliant cookie consent mechanism, though some security headers are missing. The security posture is adequate but could be improved with additional headers and policies. WHOIS data is incomplete, which slightly impacts domain trust but is mitigated by the site's content and partner affiliations. Overall, the site is accessible, well-structured, and trustworthy, with room for technical and security enhancements.

The website www.pfizer.hu is currently inaccessible due to a Cloudflare Turnstile human verification challenge page that blocks access to all actual content. As a result, no business, security, or compliance information can be extracted or analyzed. The site appears to be protected by Cloudflare's security mechanisms, preventing automated or unauthorized access. Without access to the underlying content, it is not possible to assess the company's market position, services, or technical infrastructure. The security posture cannot be evaluated beyond the presence of Cloudflare protection. Overall, the site is effectively blocked for analysis, and further investigation would require bypassing or resolving the challenge with proper authorization.

M

Magyar Nemzeti Bank

mnb.hu

67

The Magyar Nemzeti Bank (MNB) is Hungary's central bank, responsible for implementing monetary policy, ensuring financial stability, and supervising banking activities. The website serves as an authoritative source of information for financial institutions, government entities, and the public interested in Hungary's financial system. The site demonstrates a professional design with clear navigation and a focus on compliance with privacy regulations, including a comprehensive cookie consent mechanism and privacy policy. Technically, the website employs modern web technologies such as Vue.js and Google Tag Manager, ensuring a responsive and moderately performant user experience. Security measures are robust, with HTTPS enforced and multiple security headers present, although explicit security policies and incident response information are not prominently published. Overall, the website reflects a mature digital presence consistent with a national financial authority, with recommendations to enhance transparency around security policies and contact information to further strengthen trust and compliance.

이

이노그리드

innogrid.com

61

이노그리드는 2006년에 설립된 대한민국 기반의 클라우드 솔루션 전문 기업으로, 자체 기술력으로 개발한 다양한 클라우드 서비스와 솔루션을 제공하며 국내 시장에서 강력한 입지를 확보하고 있습니다. 주요 서비스로는 IaaS, PaaS, CMP 솔루션과 클라우드 전문 교육 및 관제 센터 운영이 포함됩니다. 다수의 특허와 인증을 보유하고 있으며, K-PaaS 전문기업 인증과 적합성 시험인증을 획득하여 기술력과 신뢰성을 입증하고 있습니다. 기술 인프라는 Next.js 기반의 현대적인 웹 플랫폼을 사용하며, 클라우드플레어 DNS를 통한 안정적인 도메인 관리를 하고 있습니다. 웹사이트는 모바일 최적화와 접근성 측면에서 우수하며, SEO 최적화도 잘 되어 있습니다. 보안 측면에서는 HTTPS가 적용되어 있고, 도메인 상태가 clientTransferProhibited로 설정되어 있어 도메인 탈취 위험이 낮습니다. 다만 DNSSEC 미적용과 일부 보안 헤더 미설정은 개선 여지가 있습니다. 전반적으로 이노그리드는 기술적 성숙도와 시장 신뢰도가 높은 기업으로 평가되며, 보안과 개인정보 보호 정책 강화가 권장됩니다. 웹사이트는 전문적이고 신뢰할 만한 정보를 제공하며, 고객과 파트너를 위한 다양한 접점과 자료를 갖추고 있습니다.

The website at attoresearch.com/lander is currently a minimal placeholder or parking page with very limited content. It primarily serves ads via Google Adsense and loads a parking lander JavaScript framework. There is no visible business information, contact details, or policies on the page, which indicates the site is not actively used for business or customer engagement. The domain itself is registered since 2005 with Wild West Domains, LLC, suggesting a long-standing registration but no active content presence. From a technical perspective, the site uses basic JavaScript and a proprietary parking lander framework (PW). The hosting appears to be managed by the domain registrar's default name servers. There is no evidence of CMS usage or advanced SEO and accessibility features. Performance is likely moderate given the minimal content, but the site lacks mobile optimization and user experience considerations. Security posture is weak due to the absence of DNSSEC, security headers, and no visible HTTPS enforcement details in the HTML content. No privacy or cookie policies are present, and no contact or incident response information is provided. These factors indicate low compliance with privacy regulations such as GDPR. The lack of business credibility signals and trust indicators further reduce confidence in the site. Overall, the website appears to be a parked domain with no active business operations or security measures implemented. The risk is low in terms of active threats but high in terms of trust and compliance. Strategic recommendations include developing a proper website with business content, implementing security best practices, and adding privacy and contact information to improve legitimacy and compliance.

P

Pixelarity

pixelarity.com

57

Pixelarity operates as a niche provider of responsive HTML5 and CSS3 website templates, offering a subscription-based model granting access to over 90 templates. The business targets web developers, designers, and clients seeking professionally coded, customizable website templates. The website is well-structured with clear navigation and mobile optimization, reflecting a moderate level of digital maturity. Technically, the site uses modern web standards and integrates Google Analytics and Tag Manager for user tracking. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with no cookie consent mechanism or explicit GDPR compliance statements. Overall, the site is functional and professional but could improve in privacy and security transparency.

L

Lucentia Research Group

lucentia.es

59

Lucentia Research Group is an academic research entity affiliated with the University of Alicante, specializing in business intelligence, big data, artificial intelligence, and e-learning solutions. Established in 2008, the group has a strong national and international presence demonstrated by numerous high-impact publications and competitive project participation. Their services target both academic and business audiences, focusing on innovative data analytics and AI applications across multiple sectors including education, healthcare, and industry. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder, Contact Form 7, and integrates Google services for fonts, analytics, and reCAPTCHA. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features and security headers. Security posture is solid with HTTPS enforced and spam protection via reCAPTCHA, but the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and defense-in-depth. The lack of WHOIS data due to query restrictions limits domain trust assessment but the website content and structure suggest legitimacy. Overall, the site is professional and trustworthy, serving as a credible platform for the research group. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing security policies, and improving accessibility to strengthen compliance and user trust.

A

Arctic Six

arcticsix.org

67

Arctic Six is a consortium of Nordic universities dedicated to advancing knowledge, education, and innovation for sustainable development in the Arctic region. The alliance represents a significant research and educational infrastructure in the European Arctic, targeting researchers, students, and stakeholders interested in Arctic issues. The website reflects a professional and consistent brand identity with clear navigation and relevant content focused on research, education, and events. Technically, the site is built on the SiteVision CMS platform using React 17 and integrates Piwik PRO for analytics. It is mobile-optimized, accessible, and uses HTTPS with no visible security vulnerabilities. However, the absence of explicit privacy, cookie, and terms of service policies, as well as missing contact information, limits its privacy compliance and user trust. Security posture is generally strong with HTTPS and no exposed sensitive data, but the lack of security headers and incident response contacts suggests room for improvement. The missing WHOIS data reduces domain trustworthiness, though the website content and social media presence support legitimacy. Overall, Arctic Six presents a credible educational alliance website with good technical implementation but requires enhancements in privacy compliance, security transparency, and domain registration transparency to improve trust and compliance.

Gemeente Laren operates as the official municipal government website for the town of Laren in the Netherlands, providing residents and businesses with access to a broad range of public services and information. The website serves as a central hub for municipal announcements, permits, social services, and citizen engagement, positioning itself as a trusted local government authority. The content is primarily in Dutch and targets local citizens, emphasizing accessibility and transparency. From a technical perspective, the website employs a mix of modern JavaScript libraries including jQuery and Prototype.js, alongside Google Analytics and Tag Manager for tracking. Accessibility features and responsive design are well implemented, ensuring usability across devices. The site uses HTTPS and demonstrates good security hygiene, although some security headers could be improved. The CMS appears to be custom or proprietary, with no explicit third-party CMS detected. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Cookie consent mechanisms are in place and privacy policies are comprehensive and GDPR compliant. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which could enhance trust and preparedness. Overall, the website is professional, trustworthy, and well-suited for its government function. Strategic improvements in security headers, transparency around incident response, and vulnerability disclosures would further strengthen its security and compliance stance.

G

Gemeente Gooise Meren

gooisemeren.nl

74

Gemeente Gooise Meren is the official municipal government website serving the residents and visitors of Gooise Meren in the Netherlands. The site provides comprehensive information and services related to passports, driving licenses, waste management, parking, moving notifications, and other local government functions. It positions itself as a trusted public service portal with clear contact channels and a focus on accessibility and user experience. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web standards and accessibility features, with moderate performance and good SEO optimization. Security posture is solid with HTTPS and DNSSEC enabled, though there is room for improvement in explicit security headers and incident response transparency. Privacy compliance is addressed with clear privacy and cookie policies, but lacks an explicit cookie consent mechanism. Overall, the website demonstrates a high level of professionalism and trustworthiness appropriate for a government entity.

Gemeente Blaricum operates as the official municipal government website for the Blaricum region in the Netherlands, providing residents and stakeholders with comprehensive information about local government services, news, permits, and contact details. The website targets local citizens and businesses, offering clear navigation and accessibility features to ensure inclusivity. The business model is public service oriented, focusing on transparency and community engagement. Technically, the website employs a mix of legacy and modern JavaScript libraries including Prototype.js and jQuery, alongside Google Tag Manager and Google Analytics for tracking. The site is built on a custom or proprietary CMS platform, with good mobile optimization and accessibility compliance. Performance is moderate, with room for improvement in modernizing the tech stack. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhancing trust and compliance. No vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained, serving its governmental purpose effectively. Strategic improvements in security policy transparency and technical modernization could further strengthen its posture and user trust.

I

IndesIA

indesia.org

50

IndesIA is a Spanish industry association focused on promoting the use of data and artificial intelligence among companies and SMEs in the Spanish manufacturing sector. The website positions the organization as a key enabler for the digital transformation of industry, targeting primarily Spanish industrial SMEs. The business model is that of an association providing advocacy, support, and promotion of AI technologies within the industrial ecosystem. The website content is professionally presented, with consistent branding and a clear focus on its mission. Technically, the website is built on WordPress using a modern stack including Elementor, Yoast SEO, Google Analytics, and Cookiebot for cookie consent management. The site is mobile optimized and uses structured data (JSON-LD) for SEO enhancement. Performance is moderate, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS, uses security headers, and integrates reCAPTCHA to protect forms. Cookie consent is implemented, supporting privacy compliance. However, the absence of explicit privacy and terms of service pages, as well as the lack of publicly available WHOIS data, reduces transparency and trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with good technical and security foundations but could improve transparency and compliance by publishing privacy and terms policies and providing clearer contact information. The domain's WHOIS privacy protection is common but limits trust verification. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving contact transparency.

BME Growth is a specialized segment of Bolsas y Mercados Españoles (BME) focused on providing small and medium enterprises (SMEs) with access to capital markets. The platform facilitates financing, liquidity, and investor engagement for growth-oriented companies in Spain. The website demonstrates a professional and consistent branding aligned with BME's corporate identity, targeting investors and companies interested in growth market opportunities. Technically, the website employs modern web technologies including JavaScript, jQuery, Bootstrap, and integrates Google Tag Manager and Google Analytics for tracking and analytics. It also uses OneTrust for cookie consent management, indicating a mature approach to privacy compliance. The site is mobile responsive and offers a good user experience with clear navigation and relevant content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, no explicit security headers were detected in the provided data, suggesting room for improvement in security hardening. No vulnerabilities or exposed sensitive data were found in the HTML content. WHOIS data could not be retrieved due to query restrictions, limiting domain legitimacy assessment, but the website's content and affiliation with BME strongly indicate a legitimate and trustworthy entity. Overall, BME Growth's website is a well-structured, professional platform serving its niche market effectively, with good privacy compliance and a solid technical foundation. Enhancements in security headers and accessibility could further strengthen its posture.

V

Visit Groningen

visitgroningen.nl

65

Visit Groningen is a regional tourism organization promoting travel, events, and cultural experiences in the Groningen area of the Netherlands. The website serves as a comprehensive portal for visitors seeking information about local attractions, events, accommodations, and activities. It targets tourists and visitors interested in exploring Groningen's natural and cultural offerings. Technically, the website employs modern JavaScript libraries, Google Tag Manager, Google Analytics, and reCAPTCHA for bot protection, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly with structured data and meta tags. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. No signs of WAF or content blocking were detected, allowing full content accessibility. Overall, the site demonstrates good professionalism and trustworthiness but could improve privacy compliance and security transparency.

M

Mapillary

mapillary.com

78

Mapillary is a collaborative platform specializing in street-level imagery and mapping data, leveraging computer vision to enhance map accuracy and detail. Owned by Meta, it serves a diverse audience including GIS professionals, developers, and autonomous driving sectors. The platform offers tools for imagery hosting, traffic sign recognition, and integration with major GIS systems like ArcGIS. Technically, the website is built on modern web technologies including React and is hosted on Meta's infrastructure, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. The absence of WHOIS data is a notable anomaly but likely due to privacy or registry issues rather than malicious intent. Overall, Mapillary presents a professional, trustworthy, and technically mature web presence aligned with its business objectives.

(

(주)카카오엔터프라이즈

kakaoilaas.com

61

Kakao i LaaS is a logistics ecosystem platform operated by Kakao Enterprise, focused on connecting shippers and member companies through AI-driven warehouse matching and logistics management systems. The platform offers key services including warehouse sharing, AI-based order and logistics management (OM), and warehouse management (WM) systems, targeting sellers and logistics service providers in South Korea. The website demonstrates a modern technical infrastructure using Nuxt.js and AWS hosting, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is partial, with a clear privacy policy but lacking cookie consent mechanisms. Overall, the site reflects a professional and trustworthy enterprise-grade platform with room for enhanced security and privacy practices.

P

Ponte.hu Kft.

ponte.hu

65

Ponte.hu Kft. is a Hungarian technology company with over 20 years of experience specializing in artificial intelligence, web, and mobile application development. Their core offerings include AI-based frameworks, the DOKK Platform for web content management, and the ATAK automation framework. The company serves a diverse clientele including government agencies, financial institutions, and healthcare organizations, positioning itself as a trusted technology partner in Hungary. Technically, the website employs modern JavaScript frameworks such as Aurelia and React, integrates Google Maps API, and uses advanced UI components and animations, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses CSRF tokens, and implements cookie consent mechanisms, though it lacks some advanced security headers and formal security policies. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and strong partner references.

T

Tediber

tediber.com

63

Tediber is a French e-commerce retailer specializing in high-quality bedding products including mattresses, bed frames, bedding packs, and related sleep accessories. The brand emphasizes local manufacturing, quality, and customer-friendly policies such as free express delivery, 100 nights trial, and free returns. The website is professionally designed with a consistent brand image and targets consumers in France seeking premium sleep products. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, integrates multiple marketing and analytics tools, and implements cookie consent mechanisms. Security posture is good with HTTPS enabled, but lacks visible security headers and explicit security policies. The absence of WHOIS data raises concerns about domain legitimacy, though the website content appears professional and trustworthy. Overall, the site scores well on content and technical implementation but should improve privacy disclosures and domain registration transparency.

A

Acierto.com: Comparador de Seguros y Préstamos

acierto.com

69

Acierto.com is an online Spanish-language platform specializing in the comparison of insurance, loans, and mortgage products. It targets Spanish consumers seeking to save money by comparing financial products. The website is professionally designed with good mobile optimization and SEO practices. Technically, it employs modern JavaScript libraries, Google Tag Manager, Cookiebot for consent management, and New Relic for performance monitoring. Security posture is generally good with HTTPS enforced and consent mechanisms in place, but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Contact information is not explicitly found, limiting direct communication channels. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

C

CHECK24 Comparador S.L.U.

check24.es

64

CHECK24.es is the Spanish branch of CHECK24, Europe's largest price comparison platform founded in 1999 in Germany. The company offers a wide range of comparison services including car insurance, hotel bookings, car rentals, and other insurance products. It serves millions of customers seeking transparent, objective, and expert-assisted price comparisons to save time and money. The website is professionally designed, mobile-optimized, and integrates advanced tracking and analytics tools while maintaining strong privacy compliance with GDPR. Contact options and customer support are clearly presented, enhancing user trust. The absence of publicly accessible WHOIS data is due to registry restrictions for .es domains and does not detract from the site's legitimacy. Overall, CHECK24.es demonstrates a mature digital presence with robust business and technical infrastructure.

R

RASTREATOR COMPARADOR CORREDURÍA DE SEGUROS S.L.U

rastreator.com

64

Rastreator.com is a well-established Spanish online comparison platform specializing in insurance, energy tariffs, finance products, and telecommunications offers. Founded in 2009, it serves consumers by providing transparent price comparisons and expert advisory services to help users select the best products in sectors such as car insurance, health insurance, mortgages, and energy. The website demonstrates a professional and consistent brand presence with comprehensive content and a user-friendly interface optimized for mobile devices. Technically, the site uses modern web technologies including lazy loading scripts and Google Tag Manager for analytics and marketing, hosted on a secure HTTPS platform. Security posture is strong with no visible vulnerabilities, though some security headers and explicit policies are missing. Privacy compliance is partially met with a cookie consent mechanism but lacks a visible privacy policy and terms of service in the provided content. The WHOIS data is notably absent, which slightly reduces trustworthiness but does not negate the legitimacy indicated by the website content and structured data. Overall, Rastreator.com is a credible and professional service with room for improvement in transparency and security documentation.

S

Sass team

sass-lang.com

51

Sass-lang.com is the official website for Sass, a mature and widely adopted CSS extension language used by web developers globally. The site provides comprehensive information about Sass's features, current releases, and community involvement. It is supported by a consortium of tech companies and a dedicated core team, positioning it as a leading technology project in the web development ecosystem. Technically, the website employs modern web standards, including HTML5, CSS3, and JavaScript, and leverages external services such as Google Fonts, DocSearch, and Google Analytics. Hosting is provided by Netlify, ensuring fast performance and good mobile optimization. Security-wise, the domain is stable with a long registration period and transfer protection, but lacks DNSSEC and explicit security headers. No privacy or cookie policies are present, and no contact or incident response information is provided, indicating areas for compliance improvement. Overall, the site is professional and trustworthy but could enhance its security posture and privacy compliance to align with best practices.

S

Serverless, Inc.

serverless.com

62

Serverless, Inc. operates the website serverless.com, providing a comprehensive Serverless Framework platform that enables developers and organizations to build, deploy, and manage serverless applications primarily on AWS Lambda and related cloud services. The company positions itself as a technology leader with a strong community presence, evidenced by significant GitHub stars, downloads, and partnerships with major enterprises such as Nordstrom and Coca-Cola. The website is professionally designed, mobile-optimized, and rich in content, targeting developers and enterprises seeking efficient serverless solutions. Technically, the website leverages modern web technologies including AWS services, JavaScript frameworks, analytics tools like Google Analytics and Hotjar, and search capabilities via Algolia DocSearch. The site is hosted likely on Webflow infrastructure, ensuring fast performance and good accessibility. However, explicit security headers and detailed security policies are not evident, which suggests room for improvement in security transparency. From a security perspective, the site uses HTTPS and secure form submission methods, but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of WHOIS data for the domain is unusual and slightly reduces trust, although the website content and branding strongly indicate legitimacy. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy policy page. Overall, the website demonstrates a mature digital presence with strong business credibility and technical implementation but would benefit from enhanced security disclosures and privacy documentation to improve trust and compliance posture.

S

See PrivacyGuardian.org

nakarte.me

49

nakarte.me is a specialized online mapping service offering users access to various map layers, track management, and panorama viewing capabilities. It integrates multiple map sources such as OpenStreetMap, Google, and Yandex, catering primarily to outdoor enthusiasts and GIS users. The platform is small-scale, founded in 2018, and operates with a donation-based model without evident commercial advertising or tracking. Technically, the site uses JavaScript and Leaflet.js for map rendering and is hosted via CloudNS DNS services. The website is moderately optimized for mobile and offers a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, security headers, and visible SSL/TLS configuration details, which impacts its security posture. The domain registration is privacy-protected but consistent with a legitimate small tech service. Overall, the site is functional and trustworthy but would benefit from enhanced security and compliance measures.

L

La Rotta dei Fenici

fenici.net

47

La Rotta dei Fenici is a cultural tourism website dedicated to promoting a European Council-endorsed itinerary that connects Mediterranean heritage, archaeology, and tourism. The site targets tourists and cultural enthusiasts interested in Mediterranean history and archaeological sites. The business model focuses on cultural promotion and tourism facilitation. Technically, the website is built on WordPress using the Divi theme, with SEO and donation plugins integrated, hosted by Seeweb in Italy. The site is mobile-optimized and uses HTTPS, but lacks advanced security headers and DNSSEC, which are recommended for improved security. Privacy compliance is weak, with no visible privacy or cookie policies, and no explicit contact information is provided, which may affect user trust and regulatory compliance. Overall, the site is professional and content-rich but would benefit from enhanced security and privacy practices.

G

GGD Noord- en Oost-Gelderland

ggdnog.nl

73

GGD Noord- en Oost-Gelderland operates as a regional public health authority in the Netherlands, focusing on promoting health and preventing health problems among residents of the Noord- en Oost-Gelderland region. The website serves as an informational portal offering extensive health-related topics including infectious diseases, vaccinations, youth health, sexual health, and environmental health. It targets residents, healthcare professionals, municipalities, schools, and businesses within the region. The organization positions itself as a trusted public health service provider with a comprehensive range of services aimed at community well-being. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and Laravel Livewire components. It integrates third-party services such as Monsido for accessibility and analytics, ReadSpeaker for text-to-speech, and Google Translate for multilingual support. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes standard security headers. Forms are protected with CSRF tokens, and cookie consent mechanisms comply with GDPR requirements. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Overall, the website is professional, trustworthy, and well-maintained, with a strong alignment between domain registration and business identity. Strategic recommendations include publishing detailed security and incident response policies, enhancing direct contact information visibility, and implementing a formal vulnerability disclosure process to further strengthen security posture and user trust.

V

Veiligheidsregio Noord-Holland Noord

vrnhn.nl

73

Veiligheidsregio Noord-Holland Noord (VRNHN) is a governmental regional safety authority responsible for coordinating emergency services including fire brigade, ambulance care, crisis management, and medical assistance in the Noord-Holland Noord region of the Netherlands. The website serves residents, municipalities, and crisis partners by providing timely incident information, safety advice, and organizational details. The organization positions itself as a reliable and proactive public safety entity with a clear focus on community safety and crisis readiness. Technically, the website is built on Drupal CMS with Matomo analytics for user tracking, featuring good mobile optimization, accessibility, and SEO practices. Security posture is moderate with cookie consent implemented but lacks explicit security headers and published security policies. The domain registration aligns well with the organization's claims, indicating legitimacy and trustworthiness. Overall, the site is professional, content-rich, and compliant with privacy regulations, serving as an effective communication platform for regional safety information.

G

GGD Drenthe

ggddrenthe.nl

68

GGD Drenthe is a regional public health organization serving the province of Drenthe in the Netherlands. The website provides comprehensive information about their health services including vaccination programs, child health consultations, infectious disease control, and public health education. The organization targets residents of Drenthe and operates as a government health authority with a medium-sized operational scale since 2017. The website is built on the IPROX CMS platform, tailored for government and public sector use, and demonstrates good digital maturity with responsive design, clear navigation, and relevant content. From a technical perspective, the site uses modern web technologies including JavaScript and CSS, and is hosted on a platform provided by InfoProjects bv. Performance is moderate with good mobile optimization and accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no exposed sensitive data. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. Privacy compliance is well addressed with clear privacy and cookie policies that align with GDPR requirements. Contact information is prominently displayed including phone numbers and a contact form, enhancing business credibility and user trust. No terms of service or explicit security policy pages were found, and there is no vulnerability disclosure or security.txt file, which could be areas for future enhancement. Overall, the website is professional, trustworthy, and well-suited for its public health mission. The domain registration details align with the organization's identity and location, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security and compliance posture.

G

GGD Zuid-Limburg

ggdzl.nl

70

GGD Zuid-Limburg is a regional public health organization focused on protecting and promoting the health and safety of residents in Zuid-Limburg, Netherlands. Their services include health monitoring, infection prevention, youth health care, vaccination programs, and environmental health initiatives. The website targets local residents, healthcare professionals, and municipal partners, positioning itself as a trusted regional health authority. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript and CSS, and integrates Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. The design is professional and consistent with government health service branding. From a security perspective, the site enforces HTTPS and employs secure form handling but lacks some security headers and explicit security or incident response policies. Privacy and cookie policies are present and GDPR compliant, though a cookie consent mechanism is missing. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture. Overall, the website is trustworthy and professionally maintained, with minor improvements recommended in security policy transparency and cookie consent implementation to enhance compliance and user trust.

GHOR Amsterdam Amstelland is a regional governmental organization responsible for coordinating medical emergency response in the Amsterdam-Amstelland area. Their website serves as an information hub for GHOR officials and partners, providing news, contact details, and resources related to crisis management and public health. The site is built on the IPROX CMS platform, a common choice for Dutch governmental websites, and employs HTTPS with Google Analytics tracking configured for IP anonymization. The content is well-structured and professionally presented, targeting a specialized audience involved in emergency preparedness and response. Technically, the website demonstrates moderate digital maturity with a modern CMS and basic SEO and accessibility features. The site is mobile-optimized and includes a cookie consent mechanism, though it lacks a dedicated privacy policy page and visible security headers in the HTML content. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but there is room for improvement in publishing security policies and incident response information. Overall, the website is trustworthy and credible, reflecting its governmental nature and regional focus. However, enhancements in privacy compliance documentation, security header implementation, and incident response transparency would strengthen its security and compliance posture. No blocking or WAF challenges were detected, allowing full content access and analysis.

B

Balcia.lv

balcia.lv

73

Balcia.lv is an established Latvian online insurance provider offering a variety of insurance products including OCTA, KASKO, accident, and travel insurance. The website targets Latvian customers seeking quick and convenient online insurance solutions. The business model focuses on digital brokerage and sales, positioning Balcia.lv as a competitive player in the Latvian insurance market. The website content is professionally presented with consistent branding and clear service descriptions. Technically, the website employs modern web technologies including JavaScript frameworks, CSS, and HTML5, supported by multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, Hotjar, and Cookiebot for cookie consent management. The site is mobile optimized and demonstrates good SEO practices. Security headers and HTTPS are properly implemented, contributing to a strong security posture. Security-wise, the site shows good practices with enforced HTTPS, cookie consent, and no visible vulnerabilities or exposed sensitive data. However, the absence of a published privacy policy, terms of service, and explicit incident response contacts are gaps in compliance and security transparency. The extensive use of third-party tracking and advertising scripts indicates a high level of user tracking, which may require enhanced privacy disclosures. Overall, the website presents a moderate to good risk profile with solid technical and security foundations but needs improvements in privacy compliance and transparency. Strategic recommendations include publishing comprehensive privacy and terms policies, adding a security.txt file for vulnerability disclosure, and providing clear contact information for security incidents to enhance trust and compliance.

V

Viajes Halcón, S.A.U.

halconviajes.com

70

Viajes Halcón, S.A.U. operates as a prominent online travel agency in Spain, offering a wide range of travel services including vacation packages, cruises, hotels, flights, and group travel. The website targets Spanish-speaking travelers seeking competitive travel deals and comprehensive vacation options. The company is part of the Ávoris Travel Retail group, indicating a strong market presence and backing. Technically, the website employs modern JavaScript libraries, uses Amazon Cloudfront CDN for content delivery, and integrates Google Tag Manager and Google Analytics for marketing and analytics purposes. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses secure forms with validation, but lacks explicit security headers in the provided data, which is a recommended improvement. Privacy compliance is strong, with a comprehensive privacy policy, GDPR consent mechanisms, and a named Data Protection Officer. However, the absence of WHOIS domain registration data is a concern for domain legitimacy verification, reducing trust from a domain registration perspective. Overall, the site is professional and trustworthy from a business and user perspective but should address domain registration transparency and enhance security headers.

The website socialenergy.es is currently inaccessible to normal visitors due to a proof-of-work CAPTCHA challenge page designed to verify the visitor is not a bot. This security mechanism effectively blocks access to the actual website content, preventing any meaningful analysis of business information, services, or user experience. The page is served with assets from Cloudfront CDN and uses advanced JavaScript to perform cryptographic challenges. WHOIS data for the domain is unavailable due to IP authorization restrictions imposed by the .es registry, limiting transparency about domain ownership and registration details. From a technical perspective, the site employs modern JavaScript features and a CDN for content delivery, but lacks visible SEO, accessibility, or privacy compliance features. The security posture is partially demonstrated by the presence of a proof-of-work CAPTCHA, but no other security headers or policies are observable. The absence of contact information, privacy policies, or terms of service further reduces trust and compliance confidence. Overall, the site’s risk profile is elevated due to the lack of accessible information, inability to verify domain legitimacy, and absence of compliance indicators. The security challenge page, while protecting the site from automated abuse, also hinders legitimate user access and third-party assessments. Strategic recommendations include improving transparency by enabling WHOIS access, publishing privacy and cookie policies, providing clear contact details, and enhancing SEO and accessibility to improve user trust and compliance.

ASISA is a leading Spanish health insurance provider offering a broad portfolio of insurance products including health, dental, life, accident, hospitalization, pet, travel, and funeral insurance. The company leverages a large network of proprietary hospitals and contracted medical centers to provide comprehensive coverage. The website is professionally designed, mobile-optimized, and built on Adobe Experience Manager, indicating a mature digital infrastructure. Analytics are implemented via Google Tag Manager, supporting moderate user tracking. Security posture is adequate with HTTPS usage but lacks visible security headers and explicit privacy and cookie policies, which are areas for improvement. WHOIS data is unavailable due to query restrictions, limiting domain legitimacy verification. Overall, the website presents a trustworthy and professional image suitable for its large customer base.

F

Forever Green

forevergreen.es

52

Forever Green is a Spanish sustainability program that leverages the power of football to promote environmental awareness and action. The website serves as a platform for companies to showcase their sustainability efforts and engage with a community focused on saving the planet. The business model centers on collaboration and visibility within the sports and environmental sectors, targeting companies interested in sustainability initiatives. The website is built on WordPress using the Divi theme and incorporates SEO best practices via the Yoast SEO plugin, indicating a moderate level of digital maturity. From a technical perspective, the site uses modern web technologies and includes a cookie consent mechanism compliant with GDPR standards. However, there is a lack of explicit privacy policies, terms of service, and contact information, which limits transparency and user trust. Security posture is basic, with no detected security headers or incident response contacts, and WHOIS data is inaccessible due to registry restrictions, reducing confidence in domain legitimacy verification. Overall, the website presents a professional and focused sustainability initiative but would benefit from enhanced security measures, clearer privacy and contact information, and improved transparency to strengthen trust and compliance. The current risk level is moderate, with recommendations to address privacy and security gaps to better protect users and the business reputation.

The website solidi.com is a personal homepage for the Plymouth Buckley Family, operating under the name Solidus Systems. It does not represent a commercial business entity and lacks business-related content or services. The site is built on WordPress with standard themes and plugins, hosted by InMotion Hosting. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is minimal, with HTTPS enabled but no advanced security headers or policies. Privacy compliance is absent, with no privacy or cookie policies found. Overall, the site presents low business credibility and trustworthiness due to its personal nature and lack of professional content or contact information.

B

Billogram

billogram.com

69

Billogram is a technology company specializing in Invoice-to-Cash orchestration, providing a SaaS platform that streamlines invoicing, payment processing, and customer communication to improve cash flow and customer relationships. The company targets businesses with recurring revenue and positions itself as a modern, scalable solution in the financial automation space. The website demonstrates a high level of digital maturity with a modern tech stack including Next.js and React, hosted likely on Vercel, and integrates analytics and cookie consent tools to comply with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. The WHOIS data is missing or unavailable, which is unusual and reduces trustworthiness from a domain registration perspective. Overall, the website is professional, well-designed, and compliant with privacy standards, but the domain registration opacity warrants further verification.

Younited is a leading European instant credit provider specializing in credit solutions for retailers, banks, fintechs, and telcos. The company offers installment payment options and instant credit services, positioning itself as a market leader with a strong brand presence and a large client base. The website reflects a professional and modern digital presence with good SEO and user experience, targeting business partners and customers in the financial and retail sectors. Technically, the site is built on WordPress and leverages modern JavaScript libraries and consent management tools, hosted on Azure DNS infrastructure. Security posture is solid with HTTPS and domain protections, though some security headers and policies could be improved. Privacy compliance is partially addressed via a cookie consent mechanism, but lacks explicit privacy and terms of service documentation on the analyzed page. Overall, the site is trustworthy and credible with room for enhancement in privacy and security transparency.

B

Tartalmak - Bet site

bet.hu

64

Bet.hu is a well-established Hungarian financial market information portal, providing comprehensive data on equities, bonds, indices, and related financial instruments primarily for the Budapest Stock Exchange. The site targets investors, financial professionals, and market analysts interested in Hungarian market data. The business model centers on delivering market data, news, and downloadable resources to its audience. Technically, the website employs modern JavaScript frameworks such as Aurelia and React, alongside libraries like jQuery and Chart.js, indicating a mature and contemporary technical infrastructure. The site is served over HTTPS with CSRF protection and uses Google reCAPTCHA to mitigate automated abuse. However, explicit privacy, cookie, and security policies are not present in the analyzed content, which impacts compliance and user trust. Tracking technologies like Google Analytics and Facebook Pixel are used without visible consent mechanisms, suggesting room for improvement in privacy compliance. Overall, the website is functional, professional, and secure but would benefit from enhanced transparency and compliance documentation.

P

Privacy service provided by Withheld for Privacy ehf

llamahub.ai

58

Llama Hub is a specialized technology platform providing a comprehensive hub of integrations for LlamaIndex, including data loaders, agent tools, vector databases, and large language models (LLMs). The platform targets developers and organizations building retrieval-augmented generation (RAG) applications, offering modular utilities to connect LLMs with diverse data sources. The business operates as a small, community-driven entity with a focus on open source contributions via GitHub. Technically, the website is built using modern JavaScript frameworks such as React and Next.js, hosted on Vercel, and demonstrates good design and mobile optimization. However, it lacks some advanced accessibility features and comprehensive SEO optimizations. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms, and no contact information is provided for incident response or data protection officers. Overall, the site is functional and professional but would benefit from improved privacy and security practices to enhance trust and compliance.

W

WhatCISO

whatciso.com

56

WhatCISO is a newly launched virtual Chief Information Security Officer (CISO) service that leverages AI technology to provide fast, expert advice on cybersecurity via WhatsApp. The service targets small and medium enterprises and individuals seeking accessible and personalized security guidance. It also offers curated news updates on cybersecurity and artificial intelligence, enhancing user awareness and knowledge. The platform is affiliated with DragonJAR SAS, a recognized entity in the cybersecurity field, which adds credibility and domain expertise to the offering. Technically, the website is built using modern JavaScript frameworks (Nuxt.js) and integrates various external resources for fonts and icons, ensuring a responsive and user-friendly experience.

R

Raycast

raycast.com

62

Raycast is a technology company offering a productivity launcher for macOS that integrates various tools and extensions to streamline user workflows. The website presents a professional and modern interface, targeting developers, teams, and productivity enthusiasts. It offers a freemium business model with a marketplace for extensions and upcoming support for iOS. The technical infrastructure is based on modern web technologies including React and Next.js, hosted on Vercel, ensuring fast performance and good mobile optimization. Security posture is solid with HTTPS and CSRF protections, but lacks explicit security headers and published security policies. Privacy compliance is minimal with no visible privacy or cookie policies, which is an area for improvement. The domain WHOIS data is missing, which raises some concerns about registration transparency. Overall, the website is trustworthy and professional but could enhance trust by improving privacy and security disclosures.

P

Pilgrimages

pilgrimsfortheplanet.org

53

The website 'pilgrimsfortheplanet.org' appears to be a Wix-hosted site related to pilgrimages, possibly with an environmental or spiritual focus. The site lacks explicit business descriptions, contact information, or privacy and security policies, which limits its transparency and trustworthiness. Technically, the site uses Wix's Thunderbolt framework and standard JavaScript libraries, indicating a modern but basic technical infrastructure. Security posture is moderate due to the use of HTTPS (implied by Wix hosting) but lacks explicit security headers and policies. The absence of WHOIS data and registrant information reduces domain legitimacy and trust. Overall, the site is functional but minimal in content and security compliance, suggesting it may be an early-stage or informational site without strong business or security maturity.

R

RENAISSANCE NOW

renaissancenow-cai.org

44

The website 'RENAISSANCE NOW' is a small-scale arts and culture initiative focused on promoting art as a renewable human resource. It offers educational content such as a certificate program for cities on arts and policy, collections on arts in public service, and a public engagement platform. The target audience includes cultural organizations, policymakers, artists, and the general public interested in societal challenges addressed through art. The business model appears to be non-profit or educational, with a niche market position in arts advocacy and cultural policy education. Technically, the website is built using standard web technologies including HTML5, CSS3, JavaScript, and jQuery, hosted on Bluehost with WordPress inferred from URL patterns. It uses Google Analytics for visitor tracking and includes video backgrounds for visual engagement. Mobile optimization and accessibility are basic but functional. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS with a valid SSL certificate and domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There are no forms or input fields to assess for secure handling. Privacy and cookie policies are absent, and no contact or incident response information is provided, indicating gaps in compliance and transparency. Overall, the website is legitimate and consistent with a small arts organization but lacks comprehensive privacy, security, and contact information. Recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear contact and incident response details to improve trust and compliance.

J

Jouw GGD

jouwggd.nl

68

Jouw GGD.nl is a Dutch public health information website focused on youth health topics, providing accessible information, anonymous chat services with youth healthcare professionals, and regional GGD contact details. The website is well-positioned as a trusted regional health resource with a clear mission to support young people in the Netherlands. Technically, the site is built on WordPress with modern JavaScript enhancements, uses Matomo and Google Tag Manager for analytics, and integrates accessibility tools like ReadSpeaker. The site demonstrates good mobile optimization, clear navigation, and consistent branding. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms, though explicit security policies and vulnerability disclosure practices are absent. Overall, the site is trustworthy and professionally maintained, with room for improvement in formal security documentation and direct contact information. The domain registration is consistent and legitimate, supporting the website's credibility.

G

GGD GHOR Kennisnet

ggdghorkennisnet.nl

68

GGD GHOR Kennisnet is a Dutch government-affiliated platform serving employees of GGD and GHOR bureaus, focusing on public health knowledge sharing and employment opportunities. The website provides secure access via OpenID Connect and features a vacancy bank for related organizations. The platform demonstrates a consistent brand and professional design tailored to its target audience. Technically, it employs modern frontend technologies including jQuery, Tailwind CSS, and FontAwesome, with Google Analytics for visitor tracking. Security posture is solid with HTTPS enforced and CSRF tokens present, though it lacks some security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and well-positioned within its government sector niche.

V

Vendée Expansion

vendee-expansion.fr

59

Vendée Expansion is a regional economic development agency dedicated to fostering business growth and investment in the Vendée region of France. The agency provides comprehensive support services including land and property offerings, business advisory, and regional promotion to attract and assist companies and investors. Positioned as a key player in regional economic development, Vendée Expansion targets businesses, entrepreneurs, and stakeholders interested in the economic vitality of Vendée. The website is built on a WordPress platform utilizing modern plugins such as FacetWP for faceted search and Contact Form 7 for user interactions. The technical infrastructure demonstrates moderate performance with good mobile optimization and basic accessibility features. Security is well managed with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not publicly available. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements, including a consent mechanism. The site integrates Google Analytics and Tag Manager for analytics and marketing purposes, reflecting a moderate level of user tracking. Overall, the website presents a professional and trustworthy digital presence consistent with a government-backed agency. Security posture is strong but could be enhanced by publishing formal security policies and incident response contacts. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the website's content and presentation support its authenticity. Strategic recommendations include improving transparency around security practices and enhancing accessibility to further strengthen trust and compliance.

C

Clothing and accessories store

edigo.lv

50

Edigo.lv operates as a Latvian e-commerce retail store specializing in clothing and accessories. The website targets Latvian consumers and offers a range of products including apparel for men, women, and children, as well as accessories and personalization services. The business model is primarily online retail with customer account management features. The site is positioned as a local/regional player in the Latvian market with a consistent brand presence and social media engagement on LinkedIn, Instagram, and Facebook. Technically, the website is built on WordPress with WooCommerce as the e-commerce platform. It employs various plugins such as Real Cookie Banner Pro for GDPR compliance, Slider Revolution for visual content, and WPML for multilingual support. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, it lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain registration trust verification, but the website content and structure suggest a legitimate small retail business. Overall, Edigo.lv presents a good security posture and privacy compliance with room for improvement in security headers and incident response transparency. The site offers a professional user experience with clear navigation and relevant content for its target audience.