Security Directory

Ducati Motor Holding S.p.A operates a comprehensive and professionally designed website targeting motorcycle enthusiasts and potential buyers in the Netherlands. The site offers detailed information on Ducati's motorcycle models, racing activities, accessories, and services, supported by a robust digital infrastructure including modern analytics and marketing tools. The security posture is strong, with HTTPS enforced, security headers present, and no exposed sensitive data. Privacy compliance is well managed with clear privacy and cookie policies and consent mechanisms. However, explicit security policy and incident response information are not publicly available, representing an area for improvement. Overall, the website reflects a mature, trustworthy, and well-maintained digital presence aligned with Ducati's premium brand image.

The website vrg.se currently serves as a domain parking or placeholder page managed by Websupport, a major European web hosting and domain registration provider. The page offers minimal content primarily focused on informing visitors that no content is yet available on this domain and promotes domain registration services via Websupport. The site is mobile responsive and uses Websupport's CDN for assets, indicating a basic but functional technical infrastructure. However, the lack of privacy, cookie, and terms of service policies, as well as absence of contact information, limits its compliance and user trust. Security posture is moderate with no visible vulnerabilities but missing security headers and unclear SSL configuration. Overall, the site is low risk but lacks maturity and completeness in security and privacy practices.

Vetoquinol is a well-established, independent family-owned company specializing in veterinary pharmaceuticals and animal health products. The company has a strong global footprint with subsidiaries and distributors in numerous countries, reflecting a mature and expansive business model. Their website provides comprehensive investor relations, career opportunities, and corporate responsibility information, targeting veterinary professionals, investors, and potential employees. Technically, the site is built on Drupal 10, uses modern analytics tools including privacy-focused Matomo Cloud, and implements cookie consent mechanisms compliant with GDPR. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the website demonstrates high professionalism, good technical implementation, and strong business credibility, making it a trustworthy digital presence for the company.

The website valeng.com currently serves as a parked or placeholder domain page hosted by Websupport, a regional domain registration and hosting provider. The page offers multilingual support and directs users to Websupport's domain registration services but contains no active business content or proprietary information. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with hosting provided by Websupport's CDN. Mobile optimization is adequate, but SEO and accessibility features are minimal. Security posture is weak due to lack of visible security headers, privacy policies, or incident response information. No contact details or business-specific data are present, limiting trust and credibility. Overall, the site functions as a domain parking page without active business operations or user engagement features.

Ä

Älmhults kommun

almhult.se

50

Älmhults kommun operates as the official municipal government website for the Älmhult region in Sweden, providing comprehensive information and services to residents, businesses, and visitors. The site offers key services including news updates, event calendars, contact information, and access to e-services, positioning itself as a central digital hub for the community. The website is well-branded and consistent with municipal identity, targeting local citizens and stakeholders. Technically, the website is built on the SiteVision CMS platform, utilizing modern JavaScript frameworks such as React and jQuery. It integrates advanced analytics tools including Piwik PRO, Vizzit, and Rek.ai for user behavior tracking and site optimization. The site demonstrates good mobile responsiveness, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the website enforces HTTPS, uses secure and SameSite cookies, and implements a cookie consent mechanism compliant with GDPR. While explicit security headers like Content-Security-Policy are not detected, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Contact information is clearly provided, enhancing trust and transparency. Overall, Älmhults kommun's website reflects a mature digital presence with solid business credibility and technical infrastructure. The risk profile is low, with recommendations focusing on enhancing security headers and continuous monitoring of third-party scripts to maintain compliance and security standards.

B

bloom daily planners

studentmediagroup.com

57

bloom daily planners is a medium-sized, female-led e-commerce retailer specializing in planners, calendars, stickers, and stationery products. The company has a strong brand presence with a loyal community and offers both physical and digital planning products, including subscription services. The website is built on the Shopify platform, leveraging multiple third-party apps for marketing, customer support, and reviews. The technical infrastructure is modern and well-optimized for performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and no exposed sensitive data, though explicit cookie consent mechanisms and dedicated security policies are absent. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

N

NVA Online Advertising B.V.

sparks.se

36

The website sparks.se is a domain sales landing page operated by NVA Online Advertising B.V., a Dutch company specializing in domain brokerage and escrow services since 2004. The site offers the domain sparks.se for sale with an escrow service to ensure safe and fast domain transfers. The business model focuses on providing a secure marketplace for domain buyers and sellers, leveraging the trusted Nameshift.com platform. The target audience includes individuals and businesses seeking to acquire premium domain names with minimal risk. The site integrates Trustpilot for social proof and offers multiple payment methods, emphasizing buyer protection and ease of transaction. Technically, the website is built using modern web technologies including SvelteKit, JavaScript, and CSS, hosted on Nameshift's CDN infrastructure. The site demonstrates good performance and mobile optimization, though accessibility and SEO optimizations are basic. The presence of multiple module preload scripts and font optimizations indicate a focus on fast loading and user experience. However, no CMS or third-party platforms beyond Trustpilot and Nameshift services are detected. From a security perspective, the site uses an escrow service to protect buyers, which is a strong business-level security control. However, no explicit security headers are detected in the HTML content, and there are no visible privacy or cookie policies, nor incident response contacts. The site does not expose sensitive data or vulnerable libraries in the HTML. The lack of privacy compliance documentation and security headers suggests room for improvement in security posture and regulatory compliance. Overall, the domain and website appear legitimate and consistent with the registrant information. The domain age and registrant details align well with the business claims. The site is accessible without WAF or blocking mechanisms. The main risks relate to missing privacy and security policy disclosures and limited contact information. Strategic improvements in these areas would enhance trust and compliance.

H

Haninge kommun

haninge.se

36

Haninge kommun is an official municipal government entity serving approximately 100,000 residents in Sweden. The website provides comprehensive information and services related to education, social care, community activities, urban development, business, and local governance. It targets residents, businesses, and community organizations, positioning itself as a rapidly growing municipality with a strong local identity and service orientation. The digital infrastructure is modern, leveraging Episerver CMS, Azure Application Insights, and consent management tools, reflecting a mature digital presence. The site is well-structured, mobile-optimized, and accessible, with clear navigation and relevant content. Security posture is solid with HTTPS, consent mechanisms, and monitoring scripts, though explicit security policies and incident response details are absent. Overall, the website demonstrates a high level of professionalism and trustworthiness consistent with a government entity.

IG is a well-established, large-scale financial services company specializing in online trading of CFDs, Forex, spread betting, options, and other financial instruments. It operates under strong regulatory oversight from the UK Financial Conduct Authority and German regulators, ensuring compliance and trust. The company offers a comprehensive suite of trading platforms, including MetaTrader 4 and mobile apps, targeting both retail and professional traders. Their global presence and extensive client base underscore their market leadership. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies and CDNs for fast, responsive, and accessible user experience. Security practices are robust, with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with user consent mechanisms. Overall, IG demonstrates a mature digital infrastructure and a high level of business credibility.

Junkyard is a prominent Finnish retailer specializing in streetwear apparel, offering a wide range of international and Scandinavian brands through both online and physical stores. The website demonstrates a solid market position within the Finnish streetwear retail sector, targeting fashion-conscious consumers. Technically, the site employs modern web technologies including React, integrates advanced analytics and monitoring tools such as Google Analytics and New Relic, and uses Cloudflare for security and performance. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good privacy compliance. Security posture is generally strong with HTTPS enforced and bot management in place, though there is room for improvement in security headers and explicit incident response disclosures. Overall, the site is professional, user-friendly, and trustworthy, with a moderate to high maturity level in digital infrastructure and compliance.

AddSecure Academy Sweden operates as an online educational platform specializing in training related to AddSecure's products and services. The website is professionally designed using WordPress and LearnDash LMS, targeting customers and users seeking specialized training. The platform integrates modern web technologies and tracking tools to deliver a functional and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site reflects a mature digital presence aligned with the parent company AddSecure, supporting its educational mission effectively.

R

Royal Zeelandia Group BV

zeelandia.com

59

Royal Zeelandia Group BV operates the website zeelandia.com, serving as a supplier of bakery ingredients and solutions to industrial, small, and mid-sized bakeries globally. The company positions itself as a knowledgeable and innovative partner, offering bakery mixes, pastry solutions, and training through masterclasses. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, the site is built on the Plone CMS, integrates modern tools such as Cookiebot for consent management, Wistia for video content, and Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness.

N

NVA Online Advertising B.V.

prosilia.se

37

The website prosilia.se is a domain sales landing page operated by NVA Online Advertising B.V., a Dutch company specializing in domain brokerage and escrow services since 2004. The platform offers a safe and fast way to purchase domain names, emphasizing escrow to protect buyers and sellers. The site is hosted on a CDN and built with modern web technologies including SvelteKit, providing a fast and mobile-optimized user experience. However, the content is limited to domain sale information and lacks comprehensive privacy or security policies. Security posture is moderate with no visible security headers or incident response contacts, but no critical vulnerabilities were detected. Overall, the site is legitimate and professional but could improve privacy compliance and security transparency.

S

SkandiaMäklarna AB

skandiamaklarna.se

43

SkandiaMäklarna AB operates as a real estate brokerage firm in Sweden, offering services such as property sales, valuations, and buyer-seller matching. The company positions itself as a customer-focused agency providing free property valuations and a variety of real estate services including new production and commercial properties. Their target audience primarily consists of individuals and families seeking to buy or sell residential properties in Sweden. The website reflects a medium-sized business with consistent branding and a good level of content quality. Technically, the website is hosted on Microsoft Azure and uses modern technologies including ASP.NET Core, Cloudflare for CDN and bot protection, and integrates analytics and marketing tools such as Google Tag Manager, Microsoft Application Insights, and Optimizely. The site is mobile-optimized with good SEO practices and uses structured data for enhanced search engine understanding. Performance is moderate with good mobile responsiveness. From a security perspective, the site enforces HTTPS, uses anti-forgery tokens, and provides a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks explicit security policies or incident response contact information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Security headers could be improved to enhance protection. Overall, the website demonstrates a solid digital presence with good privacy compliance and security posture. Recommendations include adding explicit security policies, improving security headers, and publishing incident response contacts to further enhance trust and compliance.

A

Atoy Automotive Finland Oy

atoygroup.com

51

Atoy Group is a well-established Finnish family business operating since 1930 in the automotive sector, primarily focusing on wholesale and service operations across the Nordic countries. The company holds a strong market position as the fourth-largest automotive service provider in the region, with a broad network of subsidiaries and partners. Their digital presence is built on a WordPress platform with a professional design and clear navigation, supporting a good user experience and mobile optimization. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy, although terms of service and explicit security policies are missing. Security posture is moderate with room for improvement in headers and incident response transparency. Overall, the website reflects a credible and trustworthy business with a solid technical foundation.

L

Lambda Networks

lambdanetworks.no

48

Lambda Networks is a specialized provider of fiber-optic communication solutions targeting telecom operators seeking robust and scalable network infrastructure. The company emphasizes custom design and in-house manufacturing to deliver cost-efficient and future-proof solutions. Their market position is that of an innovative and customer-focused small business within the telecommunications sector, primarily operating from Sweden. Technically, the website is built on Squarespace, featuring a modern and responsive design with good SEO and accessibility basics. Security posture is strong with HTTPS and HSTS enabled, though explicit security policies and incident response information are absent. Privacy compliance is basic, with a cookie banner and privacy policy present but lacking comprehensive GDPR details. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

S

Sandvikens kommun

sandviken.se

54

Sandvikens kommun operates as the official municipal government website for Sandviken, Sweden, providing comprehensive information on local services, politics, culture, and community support. The site targets residents and visitors, offering key services such as education, care, infrastructure, and business support. The website is well-branded, consistent, and includes official contact details and social media channels, reinforcing its legitimacy and trustworthiness. Technically, the website is built on the SiteVision CMS platform, utilizing modern JavaScript frameworks including React and jQuery. It integrates Piwik PRO for analytics and ReadSpeaker for accessibility enhancements. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. The presence of cookie consent mechanisms and privacy policies indicates a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration aligns with the municipal entity, supporting high legitimacy. Overall, the site maintains a solid security posture with room for improvement in formal security disclosures and headers. The overall risk assessment is low, with the site serving as a reliable and professional government resource. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

H

Hemsö Fastighets AB

hemso.se

55

Hemsö Fastighets AB is Sweden's leading owner and developer of social infrastructure properties, specializing in facilities for elderly care, education, healthcare, and the justice system. The company emphasizes long-term sustainability and social responsibility, targeting public sector entities, investors, and tenants. Their business model focuses on owning, managing, and developing properties that form the backbone of societal functions. The website reflects a mature digital presence with professional design, clear navigation, and multi-language support, indicating a strong commitment to accessibility and user experience. Technically, the site leverages modern JavaScript frameworks, WordPress CMS, and integrates consent-based analytics via Matomo and Cookiebot, ensuring compliance with privacy regulations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the entity. Strategic recommendations include enhancing security policies, publishing incident response contacts, and maintaining rigorous third-party script audits to sustain compliance and security standards.

G

GoDaddy Operating Company, LLC

developas.com

46

Developas.com is a domain name listed for sale on GoDaddy's aftermarket platform, a leading global domain registrar and marketplace. The site offers potential buyers options to purchase the domain outright or lease to own, supported by secure payment methods and 24/7 customer support. The platform integrates modern web technologies including React and Next.js, ensuring a responsive and performant user experience. Security is robust with HTTPS enforced, comprehensive security headers, and no visible vulnerabilities. Privacy and cookie policies are linked to GoDaddy's main site, indicating compliance with GDPR and other regulations. Overall, the site reflects a mature digital infrastructure aligned with GoDaddy's reputable brand and domain sales business model.

The website sitserv.se currently serves as a parking page hosted by Websupport, one of Europe's largest providers of web hosting and domain registration services. The page contains minimal content, primarily directing visitors to Websupport's main sites and offering a domain search form. The business focus is on providing web hosting and domain registration services, targeting individuals and businesses seeking these services in Sweden and Europe. The website's technical infrastructure relies on Websupport's CDN and standard web technologies such as HTML5, CSS3, and JavaScript. Mobile optimization is adequate, but overall content quality is basic due to the placeholder nature of the site. Security posture is moderate with no HTTPS or security headers explicitly visible in the HTML content, and no privacy or cookie policies are present, indicating compliance gaps. No contact information or incident response channels are provided, limiting trust and transparency. Overall, the site is functional as a parking page but lacks comprehensive business and security information.

T

triggercompany.com

triggercompany.com

48

The website triggercompany.com currently serves as a parked domain with minimal content primarily focused on displaying related search advertisements. There is no clear business presence, description, or services offered on the site, indicating it is not actively used for commercial or organizational purposes. The technical infrastructure relies on basic HTML, CSS, and JavaScript with integration of Google Adsense and Bodis domain parking services. The site lacks modern CMS or frameworks and shows only basic mobile optimization and accessibility features. Security posture is minimal with no advanced security headers or policies detected, and privacy compliance is weak due to absence of cookie consent mechanisms and limited privacy policy details. Overall, the site presents a low trust profile with no contact or business information, making it unsuitable for professional or commercial engagement.

G

GoDaddy Operating Company, LLC

vanco.co.uk

46

The website vanco.co.uk is a premium domain sales landing page operated by GoDaddy Operating Company, LLC, a leading global domain registrar and aftermarket platform. It offers the domain for sale with options to buy outright, lease to own, or make an offer, supported by secure payment methods and customer support. The site targets businesses and individuals seeking premium domain names and leverages GoDaddy's trusted infrastructure and brand reputation. Technically, the site is built on modern web technologies including React and Next.js, hosted on AWS, and optimized for performance and mobile use. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though explicit security and incident response policies are not published on the landing page. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the site demonstrates a mature digital presence with good business credibility and trust signals, suitable for its e-commerce domain sales function.

H

Hectronic

hectronic.se

46

Hectronic is a well-established Nordic company specializing in the design and manufacture of embedded computer systems since 1989. Their market position is strong within the industrial technology sector, serving diverse industries such as defense, vehicle, maritime, medical technology, and telecommunications. The company offers custom embedded solutions, OEM services, and R&D expertise, positioning itself as a key innovator in embedded systems. Technically, the website is built on WordPress with modern tracking and analytics tools like Google Tag Manager and Leadfeeder, and it employs GDPR-compliant cookie consent mechanisms. Security-wise, the site uses HTTPS and reCAPTCHA for form protection, though some security headers could be improved. Overall, the website demonstrates a high level of professionalism, good privacy compliance, and a solid security posture, reflecting the company's credibility and maturity in its field.

A

Animal - A house of creativity based in Stockholm.

animal.cc

45

The website animal.cc serves as a minimal placeholder page for a creative agency based in Stockholm, redirecting visitors to a new agency site, Kurppa Hosk Communications. The business focuses on storytelling and product building for brands in the digital age. The site content is very limited, primarily consisting of branding images and a redirect link, indicating a transition or rebranding phase. The technical infrastructure is modern, leveraging Next.js and React frameworks, with optimized font loading and responsive design elements. However, the site lacks comprehensive SEO, accessibility, and privacy features. Security posture is minimal with no visible security headers or explicit HTTPS confirmation in the HTML content. No privacy, cookie, or terms of service policies are present, nor is there any contact information or forms for user engagement. Overall, the site is functional as a redirect but lacks depth in content, security, and compliance.

S

Sirona Health Solutions

sironagroup.se

34

Sirona Health Solutions is a Scandinavian management consulting firm specializing in healthcare, care, and life science sectors. The company offers strategic consulting services including healthcare analysis, digitalization, governance, change management, project management, and integrated care. Their market position is that of a specialized consultancy focused on improving healthcare outcomes through data-driven insights and strategic governance. The website is built on WordPress with modern plugins and technologies, featuring good SEO and mobile optimization. Security posture is strong with HTTPS, reCAPTCHA on forms, and no exposed sensitive data, though some security headers are missing and cookie consent is not implemented. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and a privacy policy. The domain registration details align well with the business claims, supporting legitimacy.

EasyFill AB is a Swedish publicly listed company specializing in innovative retail shelving solutions designed to optimize store efficiency, reduce food waste, and increase sales. Their flagship products include the TurnLoader™ and RotoShelf® systems, which implement a First In, First Out (FIFO) approach to product replenishment. The company targets retail operators seeking smarter shelving solutions that reduce labor and improve profitability. The website is professionally designed using HubSpot CMS, featuring rich content, customer testimonials, and clear navigation. It is mobile-optimized and incorporates modern web technologies and marketing tools. Security posture is strong with HTTPS enforced and no exposed sensitive data, though some security headers and policies could be improved. Privacy compliance is well addressed with a cookie consent banner and a comprehensive privacy policy. Contact information and social media presence are clearly provided, enhancing business credibility. Overall, the website reflects a mature digital presence aligned with the company's market position and business goals.

Y

Yo Adrian

profil.se

42

Yo Adrian is an independent, award-winning social media agency based in Gothenburg, Sweden, specializing in end-to-end social media marketing and brand growth through culturally relevant content and social brand strategies. The website showcases their key services including ecosystem design, social concept innovation, organic community activations, and social campaigns, targeting brands seeking to enhance their social media presence. The site is professionally designed using Framer, with good content quality and consistent branding, but lacks explicit privacy, cookie, and security policies as well as direct contact information.

Agero is a Swedish technology company specializing in helping businesses improve their competitiveness by streamlining processes and enabling faster decision-making through innovative applications and AI-powered decision support tools. The company positions itself as a trusted partner in application development, decision support, and IT management services, targeting companies seeking digital transformation and operational efficiency. Their market position is reinforced by recognized employer awards and a professional online presence. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies including Bootstrap, jQuery, and FontAwesome. The site integrates multiple analytics and marketing tools such as Google Analytics (both Universal and GA4), LinkedIn Insight, and Facebook Pixel, indicating a mature digital marketing infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, explicit security headers are not detected, and no published security or incident response policies are found. There are no visible vulnerabilities or exposed sensitive data in the HTML content. The domain registration uses privacy protection, which is common and justified for this business type. Overall, the website presents a professional and trustworthy image with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing a security policy and incident response information, and implementing a vulnerability disclosure mechanism to further strengthen trust and compliance.

A

Ale kommun

ale.se

50

Ale kommun operates as the official municipal government website for Ale municipality in Sweden, providing a broad range of public services including education, social care, cultural activities, urban planning, and business support. The website targets local residents, businesses, and visitors, offering relevant information and resources. It maintains a consistent brand presence with clear navigation and professional content quality. The business model is typical of a public sector entity funded by municipal taxes, focusing on service delivery rather than commercial revenue. Technically, the website is built on the SiteVision CMS platform, leveraging modern JavaScript frameworks such as React (versions 17 and 18) and jQuery. It integrates Piwik PRO for analytics and employs standard web technologies with good mobile optimization and accessibility features. Performance is moderate, with proper SEO and meta tag usage enhancing discoverability. From a security perspective, the site enforces HTTPS and uses secure cookies, including consent mechanisms for analytics cookies compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and CSRF tokens appear unpopulated, suggesting areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Incident response and security policy documentation are absent, which could be enhanced to improve transparency and readiness. Overall, Ale kommun's website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. The domain registration aligns well with the municipal identity, reinforcing trustworthiness. Strategic recommendations include enhancing security headers, implementing proper CSRF protections, and publishing security and incident response policies to strengthen the security posture and user trust.

I

INFICON

inficon.com

54

INFICON is a globally recognized provider of advanced instrumentation, sensor technologies, and software solutions tailored for industrial vacuum processes, semiconductor fabrication, and gas leak detection. The company holds a strong market position with a broad portfolio serving diverse sectors including automotive, energy, security, and research. Their website reflects a mature digital presence with comprehensive product and market information, supported by modern web technologies and analytics tools implemented with user consent. Security posture is robust with HTTPS enforcement, security headers, and secure form handling, although explicit security policies and incident response details are not publicly disclosed. Overall, INFICON demonstrates a high level of professionalism, compliance, and technical sophistication, positioning them as a trustworthy and credible industrial technology provider.

E

Essity Aktiebolag (publ)

bsnmedical.com

56

Essity Aktiebolag (publ) is a leading global healthcare and hygiene company specializing in incontinence products, wound care, compression therapy, and orthopedics. The company holds a strong market position with globally recognized brands such as TENA, Leukoplast, and JOBST. Their business model focuses on manufacturing and distributing medical and health-related products to a diverse audience including family carers, professional caregivers, patients, and consumers through multiple channels including pharmacies, hospitals, and e-commerce. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the website employs modern JavaScript libraries and tools such as JWPlayer for media, Google Tag Manager for analytics, OneTrust for consent management, and New Relic for performance monitoring. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained technical infrastructure. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS, uses standard security headers, and integrates cookie consent mechanisms aligned with GDPR. No exposed sensitive data or vulnerable libraries were detected. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance transparency and trust. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. The domain registration data aligns with the company's public information, reinforcing legitimacy. Strategic recommendations include publishing detailed security policies, providing incident response contacts, and adding a vulnerability disclosure mechanism to further strengthen security posture.

A

AICEP

portugalglobal.pt

47

AICEP is a Portuguese public agency dedicated to promoting productive investment and the internationalization of the Portuguese economy. It supports export growth and the international expansion of companies through its offices in Portugal and an external network spanning approximately 50 markets. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. The technical infrastructure leverages modern JavaScript libraries, marketing automation via Mautic, and cookie consent management through OneTrust, ensuring compliance with GDPR and user privacy standards. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit incident response policies are absent. Overall, the site presents a trustworthy, professional, and well-maintained platform aligned with its government agency role.

V

Vidispine GmbH

vidispine.com

56

Vidispine GmbH is a Germany-based company specializing in media management and broadcast solutions. Their offerings include scalable software products such as VidiNet and BMS, designed to optimize media workflows, rights management, and broadcast operations. The company targets media organizations, broadcasters, and content owners seeking to maximize the value and efficiency of their digital assets. The website reflects a professional and consistent brand presence with clear messaging and customer highlights, positioning Vidispine as a trusted player in the media technology sector. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies including Google Analytics 4 for analytics and Google reCAPTCHA Enterprise for form security. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Hosting is managed via HubSpot's EU data center, ensuring compliance with regional data protection standards. From a security perspective, the site enforces HTTPS and integrates advanced bot protection on forms. While explicit security policies and incident response details are not published, the site follows best practices in data protection and privacy compliance, including GDPR-aligned cookie consent mechanisms. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, Vidispine's digital presence is robust, secure, and compliant, supporting their business credibility. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure information, and enhancing transparency around data protection officer contacts to further strengthen trust and compliance posture.

B

Bokio Group AB

redflag.se

41

Bokio Group AB operates a comprehensive SaaS platform focused on simplifying financial management for small and medium-sized businesses in Sweden. Their integrated offering includes automated bookkeeping, invoicing, payroll, and banking services, positioning them as a competitive player in the Nordic fintech space. The website demonstrates strong branding consistency, professional content, and clear communication of services and pricing plans. Technically, the site uses modern JavaScript frameworks and analytics tools such as Google Tag Manager and Microsoft Application Insights, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit incident response policies. Overall, the site reflects a mature digital presence suitable for its target audience, with high trustworthiness and compliance with GDPR.

S

Stockholm Lighting Company AB

stockholmlighting.se

34

Stockholm Lighting Company AB is a Swedish company specializing in innovative and energy-efficient LED lighting solutions and smart control systems. The company targets professionals such as lighting designers, architects, electrical consultants, installers, and end customers, offering a broad range of services including reuse of existing fixtures, demos, test lighting, technical consultation, and service agreements. Their market position is strong with a portfolio of high-profile projects and collaborations, supported by a consistent and professional web presence. Technically, the website is built on modern frameworks like React and Next.js, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and incident response contacts could be improved. Privacy compliance is evident with a comprehensive privacy policy, but lacks a visible cookie consent mechanism. Overall, the website and business demonstrate high professionalism and trustworthiness.

A

Axel Group AB

axel.se

49

Axel Group AB is a leading Swedish company specializing in personal alarms, personal safety, and alarm services, with a strong focus on workplace safety, lone workers, and protection against violence and threats. The company offers a range of products including personal alarms, alarm services, vehicle tracking, and safety training, supported by a webshop for streamlined ordering. Their market position is strong within Sweden, targeting organizations and individuals requiring reliable safety solutions. Technically, the website is built on a modern stack using HTML5, CSS3, JavaScript, and integrates Google reCAPTCHA for form security. The site uses purePUBLISH CMS and is hosted by WebOne AB. The website demonstrates good mobile optimization, clear navigation, and professional design, although accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms from spam. However, explicit security headers like Content-Security-Policy and HSTS are not clearly present, and there is no visible vulnerability disclosure or security policy page. Privacy compliance is partial; a privacy policy and terms of service are present, but no cookie consent mechanism is detected, which may be a GDPR compliance gap. Overall, the website is professional, trustworthy, and well-maintained, with a solid business credibility score. Strategic improvements in privacy compliance and security headers would enhance their security posture and regulatory adherence.

ESSVE AB is a Swedish company specializing in manufacturing and retailing fastening products such as screws, fasteners, and construction tools. The website targets construction professionals and DIY enthusiasts, providing a comprehensive product catalog along with building guides and customer support. The company holds a strong market position in Sweden and the Nordic region, emphasizing quality products and customer engagement through social media and informative content. Technically, the website is built on the Dynamicweb CMS platform with Bootstrap framework, employing modern JavaScript libraries and asynchronous script loading to enhance performance and user experience. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Security posture is good with HTTPS enforced and use of security best practices, although explicit security policies and incident response contacts are not present. Overall, the website is professional, trustworthy, and well-optimized for both desktop and mobile users.

O

Osolo

osolo.se

45

Osolo is a strategic web agency based in Sweden, specializing in system development, e-commerce, web design, digital marketing, and technical management to support digital success. Established in 2004, the company positions itself as an experienced and passionate partner offering comprehensive digital solutions including dedicated consultants and technical system management. The website reflects a professional and consistent brand image with clear service offerings and contact channels. Technically, the site uses modern web technologies including Umbraco CMS, Google Tag Manager, reCAPTCHA, and GSAP for animations, indicating a mature digital infrastructure. Security measures such as HTTPS and CAPTCHA on forms are implemented, though some HTTP security headers are missing, suggesting room for improvement. Privacy compliance is basic, with a cookie consent banner present but no explicit privacy policy or terms of service pages found. Overall, the site is well-structured, mobile-optimized, and trustworthy, with active social media engagement and marketing tracking in place.

The website at lonne.com is currently inaccessible due to an active CAPTCHA challenge implemented by a third-party anti-bot service (geo.captcha-delivery.com). The page content is minimal and does not provide any meaningful business information, metadata, or contact details. The page title references a different domain (rubix.com), which suggests possible misconfiguration or domain misuse. Due to the blocking mechanism, a full analysis of the website's content, security posture, and compliance status is not possible. The lack of visible HTTPS information, security headers, and privacy policies further limits the assessment. Overall, the site appears to be either a placeholder or protected by aggressive security measures that prevent legitimate access.

M

MariTrain AB

maritrain.com

45

MariTrain AB is a specialized maritime consultancy firm founded in 2003, offering services such as Navigational Audits, CDI Inspections, ISM/ISPS Audits, pre-SIRE vettings, consultancy, and training primarily for the maritime industry. The company positions itself as a niche service provider with expertise in tanker, chemical, and offshore shipping sectors. The website is professionally designed using the Wix platform, featuring clear navigation and relevant content targeted at maritime professionals and shipping companies. Technically, the site employs modern web technologies including React 18 and Wix Thunderbolt, hosted on Wix's infrastructure with moderate performance and basic mobile optimization. Security-wise, the site enforces HTTPS and uses Sentry for error monitoring but lacks published security policies and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

Avantec Consulting AB is a Swedish IT consulting company based in Göteborg with over 20 years of experience providing IT architecture, system design, development, and project management services primarily to businesses and government agencies. Their key technical competencies include Java, ReactJS, NodeJS, and cloud platforms such as Azure and Amazon AWS. The company positions itself as a trusted local expert with a focus on delivering tailored IT solutions across multiple industries including public sector, life sciences, construction, automotive, and telecom. Technically, the website employs modern frontend technologies like Bootstrap, jQuery, and FontAwesome, ensuring a responsive and user-friendly experience. However, the site lacks advanced SEO and accessibility features and does not appear to use a CMS or advanced analytics tools. Performance is moderate with good mobile optimization but basic accessibility. From a security perspective, the site does not display privacy or cookie policies, lacks security headers, and does not provide incident response or vulnerability disclosure information. No forms are present to collect user data, reducing immediate risk exposure, but the absence of HTTPS confirmation and security best practices lowers the security posture score. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but would benefit from improved privacy compliance, enhanced security measures, and better transparency regarding data protection. Strategic improvements in these areas would strengthen trust and reduce risk.

O

Oticon

oticon.com

61

Oticon is a leading healthcare company specializing in hearing aids and hearing loss solutions. The website showcases their innovative products such as Oticon Intent and BrainHearing technology, targeting individuals with hearing impairments and hearing care professionals. The site is professionally designed with clear navigation and rich content, supporting a broad range of hearing needs. Technically, the website leverages a modern tech stack including ASP.NET, Sitecore CMS, and integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and ClickDimensions. The site is hosted behind Cloudflare, ensuring good performance and security. Security posture is strong with HTTPS enforced and multiple security headers present, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy and cookie policies. Overall, the website demonstrates a mature digital presence with high trustworthiness and professional credibility.

Z

Ztorage Sverige AB

ztorage.se

49

Ztorage Sverige AB operates a modern, flexible storage and moving service primarily serving Stockholm and surrounding areas in Sweden. The company offers on-demand storage solutions where customers pay only for the space they use, combined with pickup and delivery services, supported by a digital platform for inventory management. Founded in 2014, Ztorage has positioned itself as a cost-effective and customer-friendly alternative to traditional self-storage, with strong trust signals including excellent Trustpilot ratings and comprehensive customer support. Technically, the website is built using modern frameworks like Svelte, integrates multiple analytics and marketing tools, and is hosted behind Cloudflare, ensuring good performance and security. The security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although a dedicated security policy and incident response contacts are not publicly available. Overall, the site demonstrates a mature digital presence with good compliance and user experience.

M

Mitronic IT Services AB

mitronic.se

37

Mitronic IT Services AB is a small Swedish IT service provider targeting Swedish residents in Spain, particularly in Fuengirola. The company offers IT consulting, support, network installation, and sales of computers and accessories, with services delivered both locally in Spain and remotely from Sweden. The website is built on WordPress and provides bilingual content in Swedish and Spanish, reflecting its target audience. The technical infrastructure is standard for a small business website, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacking advanced security headers and incident response mechanisms. Privacy compliance is minimal with a basic privacy policy but no cookie consent or GDPR compliance indicators. Overall, the website is professional and trustworthy but could improve in security and privacy practices to enhance user trust and compliance.

S

Saminvest AB

fouriertransform.se

43

Saminvest AB is a Swedish state-owned risk capital company founded in 2016, focusing on investing in sustainable risk capital funds and business angel programs to develop the Swedish risk capital market. The company operates through subsidiaries Fouriertransform and Inlandsinnovation, managing capital and portfolio companies. The website presents a professional and consistent brand image with clear business descriptions and contact information, targeting innovative and fast-growing companies and investors in the risk capital sector. Technically, the website uses modern web standards including HTML5, CSS3, and JavaScript with HTTPS enforced and resource integrity checks. The site is moderately performant with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured navigation. However, no CMS or hosting provider details are evident. From a security perspective, the site enforces HTTPS and uses Subresource Integrity for scripts and stylesheets, but lacks advanced security headers and visible security policies. No vulnerability disclosure or incident response contacts are provided. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or terms of service page detected. Contact information is clearly provided, enhancing trust. Overall, the website is trustworthy and professional with a solid business foundation. Security posture is adequate but could be improved with additional headers and policies. Privacy compliance should be enhanced with cookie consent and terms of service. The site is not blocked or protected by a WAF, allowing full content access and analysis.

Infotrek is a Swedish company specializing in SAS Business Intelligence solutions, positioning itself as a leading competence provider in this niche. The website content is minimal, primarily serving as a landing page with a brief description of the company's focus on data analysis and SAS products. The technical infrastructure leverages modern web technologies including Nuxt.js and Prismic CMS, indicating a contemporary digital maturity level. However, the site lacks visible security best practices such as HTTPS enforcement and security headers, and does not provide privacy or cookie policies, which are critical for GDPR compliance. The absence of contact information and security-related disclosures limits trust and transparency. Overall, the website presents a basic digital presence with room for significant improvements in security posture, privacy compliance, and content richness.

C

Catella Group

catella.com

37

Catella Group is a leading European specialist in property investments and fund management, providing strategic consulting, capital market services, and transaction advice. The company operates across 12 countries with a strong local presence and a Pan-European platform, targeting professional investors and corporate clients. Their business model focuses on delivering customized property and alternative investment solutions, positioning them as a trusted partner in the real estate finance sector. The website reflects a mature digital presence with comprehensive content, clear navigation, and multi-language support. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Cookiebot for consent management, and Microsoft Application Insights for telemetry, indicating a well-maintained infrastructure. Security posture is solid with HTTPS enforced, anti-CSRF tokens, and cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates good privacy compliance and business credibility, supported by clear contact information and social media presence.

E

Episurf Medical

episurf.com

36

Episurf Medical is a healthcare technology company specializing in personalized orthopedic implants and surgical instruments designed to treat painful joint injuries. The company positions itself as a pioneer in personalized technology with a focus on custom solutions for patients suffering from cartilage lesions and osteoarthritis. Their target audience includes patients, healthcare professionals, and investors, supported by a multilingual website and active social media presence. The business model revolves around manufacturing and delivering individualized medical devices, supported by scientific research and clinical results. Technically, the website is built on WordPress with modern SEO and multilingual capabilities, offering a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response information are not published. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website reflects a professional, trustworthy, and mature digital presence suitable for a medium-sized healthcare company based in Sweden.

P

Perrigo Company plc

perrigo.com

62

Perrigo Company plc is a well-established enterprise in the healthcare sector, specializing in manufacturing and distributing trusted consumer self-care products globally. With a history dating back to 1887, Perrigo has positioned itself as a leader in affordable and high-quality self-care solutions, serving markets primarily in North America and Europe. The website reflects a mature business with comprehensive corporate responsibility initiatives and a strong investor relations presence. Technically, the website is built on Drupal 10, leveraging modern JavaScript libraries such as Slick Carousel and Google Tag Manager for analytics and user experience enhancements. The site is hosted on Amazon S3 for assets, ensuring reliable content delivery. Mobile optimization and accessibility are well addressed, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, uses Content Security Policy nonces, and integrates OneTrust for cookie consent management, demonstrating good privacy compliance and security hygiene. However, the absence of a dedicated security policy, incident response information, and vulnerability disclosure mechanisms indicates areas for improvement. Overall, Perrigo's website is professional, trustworthy, and compliant with privacy regulations, supporting its business credibility. Strategic enhancements in security transparency and incident response readiness would further strengthen its security posture and stakeholder trust.

L

Hosted by one.com

laxafordonsservice.se

35

The website laxafordonsservice.se currently serves as a placeholder page hosted by one.com, a known web hosting provider. The page offers basic information and links to services such as website building, domain registration, and customer support through one.com. There is no original business content or branding specific to laxafordonsservice.se, indicating that the domain is either newly registered or inactive. The technical infrastructure is minimal, relying on standard HTML, CSS, and JavaScript without advanced frameworks or CMS detected. Mobile responsiveness is implemented, but content and SEO optimization are basic. Security posture is weak due to lack of HTTPS information, security headers, and absence of privacy or cookie policies. No contact or business information is provided on the page, limiting trust and credibility. Overall, the site is functional as a hosting placeholder but lacks business maturity and security readiness.