Security Directory

S

Suomen Punaisen Ristin Veripalvelu

sovinkoluovuttajaksi.fi

68

Suomen Punaisen Ristin Veripalvelu operates as the national blood service provider in Finland, responsible for the entire country's blood supply and stem cell registry. The organization is a non-profit entity under the Finnish Red Cross, targeting the general public to encourage blood and stem cell donation. Their website offers tests to determine donor eligibility and provides comprehensive information and support for donors. The site is well-branded, consistent, and professionally maintained, reflecting a strong market position in healthcare services within Finland. Technically, the website is built on WordPress with modern frameworks such as Bulma CSS and uses jQuery, Google Tag Manager, and Cookiebot for analytics and cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security practices include HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Analytics and marketing tools are integrated responsibly with user consent, ensuring GDPR compliance. The WHOIS data confirms the legitimacy of the domain, matching the organization's identity and location. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. Strategically, the organization should consider publishing a formal security policy and incident response contact details to enhance transparency and trust. Additionally, implementing a security.txt file and verifying all security headers would further strengthen their security posture.

Č

Český svaz chovatelů masného skotu, z. s.

milujuhovezi.cz

50

The website www.milujuhovezi.cz serves as an informational platform dedicated to promoting and supporting the beef meat industry in the Czech Republic. It is affiliated with the Český svaz chovatelů masného skotu, a Czech association for beef cattle breeders. The site offers news updates, recipes, beef meat processing information, and resources for both consumers and farmers. The target audience includes beef consumers, farmers offering beef meat, and buyers interested in quality beef products. The business model focuses on education, promotion, and connecting stakeholders within the beef industry niche in the Czech market. Technically, the website is built on the TAH CMS platform and uses JavaScript, jQuery, and Google Tag Manager for analytics and tracking. The site is mobile-optimized with a moderate performance profile. SEO and accessibility features are basic but functional. No advanced frameworks or hosting details were identified. The site is fully accessible without any WAF or security challenge blocking content. From a security perspective, the site uses HTTPS and includes no visible exposed sensitive data or vulnerable libraries. However, it lacks important security headers and explicit privacy and cookie policies, which are critical for GDPR compliance. Incident response contacts and security policies are not present. The WHOIS data is unavailable, which reduces domain trustworthiness but the website content and contact details indicate a legitimate association with a recognized Czech agricultural organization. Overall, the website is professional and trustworthy in content and business credibility but requires improvements in privacy compliance and security best practices to enhance user trust and regulatory adherence.

S

Svaz chovatelů ovcí a koz z.s.

schok.cz

60

Svaz chovatelů ovcí a koz z.s. is a Czech non-profit association dedicated to supporting sheep and goat breeders. Established in 2000, it provides legislative information, event calendars, breeding support, and news updates to its members and the broader agricultural community. The website serves as an information hub with clear navigation and relevant content tailored to its niche audience. Technically, the site employs a custom CMS by Intelligent Webs and integrates multiple modern JavaScript libraries and APIs, including Google Maps and analytics tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks explicit security headers and published incident response policies, indicating room for improvement. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, though enhancements in security and accessibility would strengthen its position.

Č

Český florbal & eSports.cz, s.r.o.

wfc2025.cz

61

Český florbal is the official governing body for floorball in the Czech Republic, operating a comprehensive website dedicated to the Women's World Floorball Championship 2025 (MS žen 2025). The organization provides event information, ticket sales, news updates, fan engagement, and volunteer opportunities. The website reflects a mature digital presence with modern technologies and strong branding consistency. Despite the absence of WHOIS registration data, the site demonstrates legitimacy through official partnerships, social media presence, and compliance with GDPR and cookie regulations. Technically, the site employs a robust tech stack including Google Tag Manager, Facebook Pixel, reCAPTCHA, and Nette Framework components, ensuring good performance and security posture. Security best practices are observed, though some security headers could be enhanced. Overall, the site is professional, trustworthy, and well-optimized for users across devices.

G

graz4u

graz4u.at

66

graz4u is a small Austrian IT service provider specializing in professional IT and internet solutions for small and medium-sized enterprises (KMUs). Founded in 2003, the company offers a broad range of services including website design, hosting, email services, domain registration, customer support via ((OTRS)) Community Edition, and security solutions such as SSL certificates and firewall management. The website reflects a focused business model targeting KMUs with a niche market position supported by long-term experience and consistent branding. Technically, the site is built on WordPress with modern plugins and caching mechanisms, delivering moderate performance and good mobile optimization. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, with no detected vulnerabilities or suspicious content.

C

CADdetails

caddetails.com

64

CADdetails is a professional platform offering free access to thousands of CAD drawings, BIM Revit models, 3D SketchUp files, and technical specifications primarily targeting architects, engineers, and design professionals in North America. The website positions itself as a key resource for building product information and design resources, supporting the construction and design industry with high-quality content. Technically, the site employs modern web technologies including Vue.js, jQuery, and integrates multiple analytics and marketing tools such as Google Analytics, HubSpot, and Microsoft Application Insights, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses secure analytics scripts but lacks some advanced security headers and explicit privacy policies, which could be improved. The absence of WHOIS registration data reduces domain trustworthiness, but the professional presentation and extensive content suggest a legitimate business. Overall, CADdetails presents a robust online presence with room for enhanced privacy and security compliance.

D

Datlab Institut z.s.

datlabinstitut.cz

52

Datlab Institut is a Czech non-profit organization affiliated with Charles University, specializing in research and analysis to promote transparency and efficiency in public procurement and political finance. The organization operates several projects such as ZINDEX and Politickefinance.cz, targeting public sector stakeholders and the general public interested in governance and public spending. The website reflects a professional and consistent brand image with clear contact information and active external partnerships. Technically, the website employs modern tracking and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, alongside a Vue.js-based cookie consent mechanism. Hosting appears to be managed through WEDOS, consistent with the domain registrar data. The site is mobile-optimized with good navigation and content relevance, though some accessibility and SEO improvements are possible. From a security perspective, the site enforces HTTPS and employs cookie consent defaults denying ad and analytics storage until consent. However, explicit security headers are not detected in the HTML, and no privacy policy or terms of service pages are present, indicating compliance gaps. No vulnerabilities or exposed sensitive data were found. The WHOIS data is transparent and consistent with the organization's profile, supporting legitimacy. Overall, the website presents a low-risk profile with good business credibility and moderate technical maturity. Strategic improvements in privacy documentation, security headers, and accessibility would enhance compliance and trust.

D

Datlab s.r.o.

tenderman.cz

54

Datlab s.r.o. operates the Tenderman platform, a Czech Republic-focused SaaS tool designed to assist public sector entities and contracting authorities in managing suppliers and tender documentation. The company leverages its expertise in economic data and public procurement to provide a specialized service with a clear market niche and reputable client base including government institutions. The website is professionally designed, mobile-optimized, and uses modern web technologies including Vue.js and Bootstrap, supported by multiple analytics and marketing tools. Security posture is solid with HTTPS and CSRF protections, though lacks published security policies and headers. Privacy compliance is partial, with no explicit privacy or cookie policies found despite cookie consent mechanisms. Overall, the domain registration and business information are consistent and legitimate, supporting a trustworthy online presence.

S

ShortPixel

shortpixel.com

67

ShortPixel is a technology company specializing in image optimization services primarily targeting WordPress users and website owners. Their offerings include WordPress plugins for image compression and adaptive image delivery, supporting modern formats like WebP and AVIF to improve website speed and SEO. The company has an established market presence since 2014, supported by positive customer testimonials and a professional website design. Technically, the site uses modern frameworks such as Bootstrap and integrates with major analytics and marketing tools like Google Analytics and ProfitWell. The infrastructure leverages Cloudflare DNS and CDN services, ensuring fast performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though there is room for improvement in DNSSEC and explicit security policies. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

H

Hyperfocus Oy

mikseri.net

64

Mikseri.net is a well-established Finnish music community platform operated by Hyperfocus Oy, founded in 2000. It serves as a hub for Finnish artists and fans to share, listen to, and download free MP3 music, as well as participate in forums and showcases. The platform leverages advertising and community engagement as its primary business model, positioning itself as the largest Finnish music community. Technically, the site uses a custom CMS with a tech stack including jQuery, Google Analytics, Google Tag Manager, Facebook SDK, and multiple advertising networks. While the site is functional and moderately optimized for mobile, there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS and domain protection statuses, but lacks DNSSEC and security headers. Privacy compliance is strong with a consent management platform and clear privacy and cookie policies. Overall, the site is trustworthy and professional, though it could benefit from enhanced security policies and incident response transparency.

B

Blood Service

bloodservice.fi

68

The Finnish Red Cross Blood Service operates as the national blood service provider in Finland, offering comprehensive blood donation services, stem cell registry, biobank services, and active biomedical research. The organization is a key player in healthcare and non-profit sectors, affiliated with the Finnish Red Cross, and serves a broad audience including donors, healthcare professionals, and researchers. The website reflects a mature digital presence with clear navigation, multilingual support, and extensive informational content. Technically, the site is built on WordPress with modern frameworks and integrates essential tools like Cookiebot for privacy compliance and Google Tag Manager for analytics. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. Contact information is clearly presented with multiple channels including phone, email, and social media. Overall, the site demonstrates high professionalism, trustworthiness, and operational transparency.

B

Blodtjänst

blodtjanst.fi

68

Blodtjänst is the centralized national blood service organization in Finland, operating under the Finnish Red Cross. The website serves blood donors, healthcare professionals, and the general public by providing information on blood donation, stem cell registry, blood products, and related healthcare services. It holds a strong market position as the official blood service provider in Finland, emphasizing life-saving activities and community health. The site is multilingual, with Swedish as the analyzed language, and offers comprehensive resources including booking appointments, health declarations, and educational content. Technically, the website is built on WordPress with modern frameworks like Bulma CSS and uses essential third-party services such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement, cookie consent with granular controls, and no visible vulnerabilities or exposed sensitive data. The security posture is strong, with good SSL configuration and security best practices observed. However, there is no explicit security policy or incident response contact published, which could be improved. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. Business credibility is high, supported by official branding, clear contact information, and social media presence. Overall, the website presents a low-risk profile with excellent professionalism and trustworthiness. Strategic recommendations include publishing a dedicated security policy, incident response details, and implementing a security.txt file to enhance transparency and vulnerability management.

S

Suomen Punainen Risti

punaisenristinkauppa.fi

62

Suomen Punainen Risti operates the official Finnish Red Cross online store, offering a variety of products including preparedness items, reflective gear, first aid supplies, and gift products. The website serves the Finnish public and supports the organization's humanitarian activities through e-commerce. The domain is well-established since 2011, reflecting a mature online presence. Technically, the site is built on Magento with modern JavaScript frameworks and integrates analytics and monitoring tools such as Google Tag Manager and New Relic, indicating a robust digital infrastructure. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though DNSSEC and additional security headers could enhance protection. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website demonstrates high business credibility and trustworthiness, aligned with the organization's non-profit mission.

C

CZECH NEWS CENTER a.s.

sportovniprogram.cz

51

SportovniProgram.cz is a Czech sports event information portal providing comprehensive schedules, previews, results, and live broadcast information for various sports. Operated by the reputable media company CZECH NEWS CENTER a.s., the website targets sports fans in the Czech Republic with a focus on delivering timely and relevant sports content. The business model centers on media content delivery supported by advertising and affiliate partnerships. The site is relatively new, launched in 2023, and benefits from the backing of a large media group, enhancing its market credibility and reach. Technically, the website employs a modern technology stack including ASP.NET WebForms, jQuery, Google Tag Manager, Google Analytics 4, and a consent management platform (Didomi) to ensure GDPR compliance. The site is hosted via Webglobe and uses multiple third-party scripts for advertising and analytics. Performance is moderate with good mobile optimization and SEO practices. Accessibility is basic but functional. From a security perspective, the site uses HTTPS with a good SSL configuration and implements consent mechanisms for privacy compliance. While some security headers could be improved, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business profile, showing a recent domain registration without privacy protection, which aligns with the transparent nature of the business. Overall, SportovniProgram.cz presents a professional, trustworthy, and well-maintained online presence with good content quality and compliance posture. Strategic recommendations include enhancing security headers, updating legacy libraries, and improving accessibility to further strengthen the site’s security and user experience.

V

Veripalvelu

veripalvelu.fi

68

Veripalvelu is the official national blood service provider for Finland, operating under the Finnish Red Cross. The organization manages blood donation services, blood supply logistics, and donor health questionnaires, serving the general public across Finland. The website reflects a strong market position as the sole blood service entity in the country, offering key services such as appointment booking and donor education. Technically, the website is built on WordPress with modern integrations including Google Tag Manager, Cookiebot for consent management, and a Boost.ai chat panel, indicating a mature digital infrastructure. The site is mobile optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is robust with HTTPS enforced, multiple security headers, and no visible vulnerabilities. Privacy compliance is well addressed with comprehensive cookie and privacy policies and a granular consent mechanism. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the website is trustworthy, professional, and aligned with the organization's mission, with recommendations to enhance transparency around security and incident handling.

F

Finnish Red Cross

redcross.fi

67

The Finnish Red Cross website represents a well-established humanitarian non-profit organization focused on providing aid during accidents and crises both domestically and internationally. The site emphasizes volunteerism, donations, and support services, positioning itself as a leading humanitarian entity in Finland with a strong community and international presence. The content is professionally curated, targeting a general audience interested in humanitarian aid and community support. Technically, the website employs a modern technology stack including Microsoft Azure hosting, Episerver CMS, Bootstrap framework, and advanced analytics tools such as Google Analytics and Microsoft Application Insights. The site is optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure suitable for a large non-profit organization. From a security perspective, the website enforces HTTPS and integrates monitoring tools but lacks explicit public security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. The absence of a vulnerability disclosure policy and security.txt file suggests room for improvement in transparency and security culture. Overall, the website scores highly on content quality, technical implementation, security posture, privacy compliance, and business credibility, indicating a trustworthy and professional online presence. Strategic recommendations include enhancing security header implementation, publishing a formal security policy, and establishing a vulnerability disclosure channel to further strengthen trust and security posture.

F

Finlands Röda Kors

rodakorset.fi

69

Finlands Röda Kors is a large, well-established non-profit humanitarian organization operating primarily in Finland with international outreach. The website serves as a platform for public information, volunteer recruitment, donation facilitation, and crisis support communication. It is professionally designed, mobile-optimized, and content-rich, targeting Swedish-speaking audiences in Finland. The organization maintains a strong market position as a trusted humanitarian entity with clear calls to action and social media presence. Technically, the site uses modern web technologies including Microsoft Application Insights and Google Tag Manager for analytics and monitoring, hosted on Microsoft Azure infrastructure. The CMS is Episerver (Optimizely), supporting a structured and accessible content delivery. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some recommended security headers are not explicitly detected. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects high business credibility and trustworthiness.

S

Suomen Punainen Risti

sprkontti.fi

65

SPR Kontti operates as a secondhand retail chain and online shop affiliated with the Finnish Red Cross, offering consumers an opportunity to recycle and donate various household items while supporting humanitarian work domestically and internationally. The website reflects a well-established non-profit business model with a clear mission and strong brand identity. The digital infrastructure is built on Shopify, leveraging modern e-commerce technologies and integrations such as Judge.me for customer reviews and Google Analytics for performance monitoring. Security posture is robust, with HTTPS enforced, hCaptcha protecting forms, and standard security headers implemented. Privacy compliance is well addressed with visible policies and consent mechanisms. Overall, the site presents a trustworthy and professional online presence aligned with its charitable objectives.

M

Meteli

meteli.net

54

Meteli.net is a Finnish online platform specializing in listing concerts and music events across Finland. It provides users with comprehensive event information, including dates, locations, genres, and artists, along with ticketing links. The site targets Finnish music fans and concert-goers, positioning itself as a key media player in the Finnish live music event space. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Prebid.js for advertising, and Google Maps API for location services. It is hosted on AWS Cloudfront CDN, ensuring reasonable performance and availability. The site is mobile-optimized and features good navigation and SEO practices. Security-wise, the site enforces HTTPS and uses several security best practices but lacks some HTTP security headers such as Content-Security-Policy and X-Frame-Options. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. However, no explicit security policy or incident response information is publicly available. WHOIS data is unavailable or protected, which slightly reduces transparency but is common for media websites. Overall, Meteli.net presents a professional, trustworthy, and user-friendly platform for Finnish concert information.

D

Datlab s.r.o.

datlab.eu

59

Datlab s.r.o. is a Czech-based company specializing in data gathering, processing, and analytics with a focus on economic data and public procurement. Their website highlights multiple specialized products aimed at public authorities, businesses, and researchers, including sanctions verification, tender documentation, supplier risk detection, and procurement monitoring. The company serves a diverse client base including government agencies, municipalities, universities, and NGOs, positioning itself as a trusted regional player in the public procurement data sector. Technically, the website employs modern JavaScript frameworks such as Vue.js and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and professional design. Cookie consent is managed via a Vue.js component, indicating attention to privacy compliance, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, registered under a reputable Czech registrar, supporting legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include publishing a privacy policy and terms of service, adding security headers, and providing vulnerability disclosure information to enhance security posture and compliance.

M

Markkinointitoimisto Kraak Oy

kraak.fi

51

Markkinointitoimisto Kraak Oy is a Finnish digital marketing agency founded in 2020, specializing in data-driven marketing services for responsible companies. Their offerings include outsourced marketing management, content creation, graphic design, Google Ads, social media advertising, and website development. The company positions itself as a modern, analytics-focused partner delivering measurable results. Technically, the website is built on WordPress with Elementor and uses modern SEO and performance optimization tools. The site is well-structured, mobile-optimized, and integrates multiple marketing and tracking pixels, reflecting a mature digital marketing infrastructure. Security posture is good with HTTPS enabled and no obvious vulnerabilities, though security headers could be improved. Privacy compliance is partial due to the absence of a dedicated privacy policy page, despite having cookie consent mechanisms. WHOIS data is transparent and consistent with the business identity, supporting legitimacy. Overall, the website presents a professional and trustworthy digital marketing service provider with room for improvement in privacy and security disclosures.

G

GALABAU VERBAND Österreich

gartengottwerden.at

54

The website www.gartengottwerden.at serves as a platform promoting gardening and landscaping jobs in Austria, operated by the GALABAU VERBAND Österreich association. It targets job seekers interested in the gardening sector, offering job listings, company portraits, and a merchandise shop. The site is well-branded and consistent with its association identity, providing relevant content in German for the Austrian market. Technically, the site is built on TYPO3 CMS, leveraging modern analytics tools like Matomo and Google Tag Manager, and implements a robust cookie consent mechanism via Klaro. The website is mobile-optimized and accessible, with good SEO practices in place. Security-wise, the site enforces HTTPS and cookie consent but lacks explicit security headers and detailed security or incident response policies. No critical vulnerabilities or suspicious content were detected, and the WHOIS data aligns well with the business, indicating legitimacy. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, with room for improvement in security posture and contact transparency.

H

Helix Pflanzensysteme GmbH

helix-pflanzensysteme.de

58

Helix Pflanzensysteme GmbH is a specialized company focused on vertical greening systems and sustainable urban green solutions, serving architects, urban planners, and municipalities primarily in Germany. Their website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive content about their services including planning, construction, and maintenance of green facades and noise barriers. The technical infrastructure is based on TYPO3 CMS, with modern web technologies and integrations such as Google Tag Manager and reCAPTCHA for security. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. Privacy compliance is well addressed with detailed policies and user consent options. Overall, the website reflects a trustworthy and credible business with a strong market position in the real estate and urban ecology sector.

D

DI Dr. Agnes Fedl Garten- und Landschaftsplanung GmbH

fedl.eu

51

DI Dr. Agnes Fedl Garten- und Landschaftsplanung GmbH is a specialized small business based in Austria focusing on garden and landscape architecture, ecological and sustainable planning, and freiraumgestaltung. The company targets private clients, municipalities, and commercial sectors such as hospitality and health. The website demonstrates a strong market position with professional content, media presence, and partnerships with recognized ecological and greening organizations. Technically, the website uses the SIQUANDO Pro CMS platform with jQuery and Google Tag Manager for analytics. It is moderately performant and well optimized for mobile devices. Security posture is good with HTTPS and cookie consent mechanisms, though additional security headers and policies could enhance protection. The domain registration is consistent and legitimate, registered via a reputable registrar without privacy protection, aligning with the business profile. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it lacks explicit terms of service and incident response policies.

K

Kratky Garten und Grünflächengestaltung Gesellschaft m.b.H.

kratky.at

46

Kratky Garten und Grünflächengestaltung Gesellschaft m.b.H. is a well-established garden and landscape construction company based in Vienna, Austria. The company offers a range of services including tree care, garden planning, and garden maintenance, catering to both large-scale projects and private gardens. Their website reflects a professional service provider with a clear focus on creating harmonious outdoor spaces for their clients. Technically, the website is built on WordPress with SEO optimization via Yoast and uses Google Analytics and Tag Manager for tracking. Security-wise, the site uses HTTPS and Google reCAPTCHA for form protection but lacks visible security headers and published security policies. Privacy and cookie policies are not found, indicating compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

B

Baumit GmbH

baumit.at

57

Baumit GmbH is a well-established Austrian manufacturer and distributor of building materials, specializing in facades, plasters, screeds, and thermal insulation systems. With a presence in 21 countries and a workforce of approximately 3,200 employees, Baumit holds a strong market position in Europe. The company targets construction professionals such as architects, painters, and facade specialists, as well as end consumers seeking high-quality building products. The website reflects a mature digital presence with comprehensive product information, service offerings, and sustainability initiatives. Technically, the website employs modern web technologies including jQuery, Vue.js, Bootstrap, and various JavaScript libraries for enhanced user experience. It features responsive design, SEO optimization, and accessibility considerations. Privacy compliance is robust, with a clear cookie consent mechanism and a detailed privacy policy. Security posture is good with HTTPS enforced and consent mode implemented, though explicit security headers and incident response information are not publicly detailed. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives. There are no indications of malicious activity or content safety concerns. Recommendations include enhancing security headers, publishing explicit security policies, and providing incident response contacts to further strengthen trust and compliance.

W

WoodRocks Bau GmbH

wood-rocks.com

66

WoodRocks Bau GmbH is a medium-sized Austrian company specializing in sustainable wood construction and residential building solutions. The company emphasizes holistic, future-proof building practices with a strong focus on human and environmental integration. Their services span from initial contact and planning through prefabrication and construction to completed residential complexes. The website reflects a professional and consistent brand image, targeting a broad audience interested in sustainable living and affordable housing. Technically, the website employs modern web technologies including Google Tag Manager and CookieHub for cookie consent management, with embedded multimedia content and responsive design. The site is well-structured with good SEO and accessibility basics, although some advanced security headers are missing. The presence of HTTPS and secure forms with CSRF tokens indicates a solid baseline security posture. Security-wise, the site shows good practices such as cookie consent and encrypted communications but lacks explicit security policies or incident response information. The absence of WHOIS registration data is a concern and reduces trustworthiness, though the website content and contact details support legitimacy. No vulnerabilities or suspicious content were detected. Overall, the website scores well on content quality, technical implementation, and privacy compliance but is slightly penalized for missing WHOIS data and security headers. Strategic improvements in security transparency and WHOIS registration verification are recommended to enhance trust and compliance.

A

alchemia-nova research and innovation gemeinnützige GmbH

alchemia-nova.net

53

alchemia-nova is a small Austrian research and innovation institute specializing in nature-based solutions and circular economy principles to foster climate-smart and sustainable societies. The organization offers research, consulting services, and innovative products targeting sectors such as water management, resilient infrastructure, agriculture, and industrial production. Their market position is niche but well-defined, focusing on sustainability and circular transformation. Technically, the website is built on WordPress with modern JavaScript libraries and includes multilingual support. The site is well-optimized for mobile and SEO, with a professional design and clear navigation. Security posture is good with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and security headers. Overall, the website is trustworthy and professionally maintained, with strong privacy compliance and clear contact information.

S

Sempergreen

sempergreen.com

47

Sempergreen is a globally recognized market leader specializing in sustainable green solutions including green roofs, living walls, and ground cover. The company targets a professional audience comprising contractors, architects, roofers, landscape architects, gardeners, and civil engineers. Their business model focuses on providing direct-green products and tailored project recommendations, supported by a network of nurseries and dealers worldwide. The website reflects a medium-sized enterprise with a strong brand presence and consistent messaging aligned with environmental sustainability. Technically, the website employs modern tracking and marketing technologies such as Google Tag Manager, Matomo Analytics, Cookiebot for consent management, and Google reCAPTCHA for form security. The site is mobile-optimized with good SEO practices and moderate performance. However, no CMS or hosting provider details were explicitly detected. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks visible security headers and published security policies or incident response contacts. No vulnerability disclosure or security.txt files were found, indicating room for improvement in transparency and security maturity. The absence of WHOIS data raises concerns about domain registration legitimacy, which should be investigated further to ensure trustworthiness. Overall, the website is professional, content-rich, and user-friendly, but the domain registration inconsistency and limited security policy disclosures present moderate risks. Strategic enhancements in security governance and domain verification are recommended to strengthen trust and compliance.

C

Carl Stahl ARC GmbH

carlstahl-architektur.com

65

Carl Stahl ARC GmbH is a medium-sized German company specializing in stainless steel cable and net systems for demanding architectural projects. Their offerings include consulting, planning, static calculations, manufacturing, and installation services targeted primarily at architects, planners, and construction professionals. The company positions itself as a reliable partner providing flexible and sustainable solutions for architectural safety and design. Technically, the website is built on the Contao CMS and uses modern JavaScript libraries and services such as Weglot for multilingual support, Google Tag Manager, and Hotjar for analytics and user behavior tracking. The site is well-optimized for mobile and accessibility, with good SEO practices. Security-wise, the website uses HTTPS and has domain transfer protections but lacks DNSSEC and some security headers. No explicit security or incident response policies are published. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

BAD Agency

badagency.fi

55

BAD Agency is a newly established creative audio agency based in Finland, specializing in comprehensive audio design and production services. The company operates under the parent organization Bauer Media Oy, a reputable media company in Finland. The website is professionally designed using WordPress CMS and integrates modern tools such as Google Tag Manager and Yoast SEO to enhance digital presence and analytics capabilities. The content is primarily in Finnish, targeting local businesses and clients seeking high-quality audio production solutions. Technically, the site demonstrates good mobile optimization, accessibility, and SEO practices, although there is room for improvement in security headers and privacy compliance documentation. The security posture is solid with HTTPS enabled and no blocking mechanisms detected, but lacks DNSSEC and explicit security policies. Overall, the domain registration is transparent and consistent with the business profile, indicating legitimacy and trustworthiness.

H

hotbytes

hotbytes.de

62

hotbytes is a medium-sized digital agency based in Heilbronn, Germany, founded in 2010. The company specializes in web development using TYPO3, WordPress, and Shopify platforms, alongside comprehensive online marketing services including SEO, Google Ads, and lead generation strategies. With a 22-person team, hotbytes emphasizes transparency, partnership, and sustainable client relationships, positioning itself as a trusted regional player in the digital services market. The website reflects a professional and modern digital presence with clear service offerings and client engagement pathways. Technically, the site is built on WordPress 6.6.2, leveraging popular plugins for SEO, forms, and cookie management, and is hosted behind Cloudflare for performance and security benefits. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility.

E

eSportsmedia

esportsmedia.com

49

eSportsmedia is a well-established digital services provider specializing in the sports industry, offering a broad range of bespoke web and mobile solutions including club websites, registration systems, statistical data services, and multimedia content. With over 23 years of experience and a client base spanning the Czech Republic and 20 other countries, the company holds a strong market position supported by numerous high-profile sports organizations. Technically, the website leverages modern frameworks such as Next.js and React, ensuring fast performance and excellent mobile optimization. The presence of Google Tag Manager indicates moderate user tracking for analytics purposes. Security-wise, the site enforces HTTPS and domain transfer protections but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is partially addressed through a cookie consent mechanism, though no explicit privacy policy or terms of service are found. Overall, the website demonstrates high professionalism and trustworthiness, with clear business credibility and a strong digital presence.

D

Dowty

dowty.com

66

Dowty, a GE Aerospace company, is a globally recognized provider of integrated composite propeller systems and related services for commercial and defense aerospace sectors. The company offers high-quality, reliable propeller solutions and tailored maintenance services, supporting large regional turboprops, military transporters, and hovercraft. The website reflects a professional and consistent brand image aligned with its parent company, GE Aerospace, targeting aerospace manufacturers and operators. Technically, the website is built on Drupal 11, leveraging modern web technologies including Google Tag Manager for analytics and Evidon for cookie consent management. The site is mobile-optimized, accessible, and performs moderately well. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and dedicated security policies are absent. The WHOIS data is unavailable or withheld, which is unusual but the website's professional presentation and association with GE Aerospace mitigate concerns about legitimacy. No direct contact emails or phone numbers are publicly listed, with contact primarily via web forms. Privacy and terms policies are comprehensive and linked to the parent company domain, indicating good privacy compliance. Overall, the website demonstrates a mature digital presence with strong business credibility and good security hygiene, though improvements in explicit security policies and incident response disclosures are recommended to enhance trust and compliance.

U

Unison Industries

unisonindustries.com

69

Unison Industries, a GE Aerospace company, is a leading supplier of gas turbine engine components and electrical and mechanical systems serving a broad range of markets including aviation, space and defense, power, oil and gas, and transportation. The company holds a strong market position supported by its affiliation with GE Aerospace and certifications such as ISO 9001 and AS9100. Their website reflects a professional B2B supplier model targeting aerospace and related industries. Technically, the website is built on WordPress using the Divi theme, incorporating modern JavaScript libraries and Google Tag Manager for analytics and marketing. The site is mobile-optimized with good SEO practices and basic accessibility features. Security posture is solid with HTTPS enforced and standard security headers implemented, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Overall, the website is trustworthy and professional, though the absence of WHOIS data reduces domain registration transparency. Strategic recommendations include enhancing security transparency, adding vulnerability disclosure mechanisms, and improving accessibility compliance.

I

Institut pro kriminologii a sociální prevenci

iksp.cz

50

Institut pro kriminologii a sociální prevenci is a Czech governmental research institute specializing in criminology and social prevention. It provides research, publications, and statistical analyses to support policy and social initiatives in the Czech Republic. The website reflects a professional government-affiliated entity with clear contact information and a focus on transparency and compliance. Technically, the site uses modern web technologies including the Nette framework and Google Tag Manager, with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a concern but does not detract significantly from the trustworthiness given the official nature of the content and domain. Overall, the site is well-maintained, informative, and trustworthy for its target audience.

O

OLC systems s.r.o.

olc.cz

50

OLC systems s.r.o. is a Czech Republic-based software development company specializing in custom software solutions, production monitoring, and production management. The company targets businesses requiring tailored software and outsourcing development services. Their website presents a professional image with clear contact information and a focus on technology services. The technical infrastructure is built on WordPress CMS with modern web technologies and includes Google Tag Manager for analytics and marketing. The website is mobile-optimized and uses HTTPS, indicating a baseline of security awareness. However, the absence of WHOIS data and explicit privacy or security policies reduces transparency and trust. Security posture is adequate but could be improved by adding security headers and formal policies. Overall, the website is functional, professional, and safe for general audiences, but domain registration details should be verified for full trust.

Z

Založtesro.cz

zaloztesro.cz

56

Zaloztesro.cz is a Czech Republic based online platform specializing in facilitating the formation of limited liability companies (s.r.o.) directly through notaries, bypassing intermediaries. The website positions itself as the fastest and most cost-effective solution for entrepreneurs seeking to establish their business entities. It provides step-by-step guidance, notary selection tools, and direct links to relevant legal and governmental resources, targeting local entrepreneurs and startups. The platform leverages WordPress with the Divi theme, integrating modern web technologies such as Google Analytics, Google Tag Manager, and Google Maps API to enhance user experience and operational insights. Accessibility features and GDPR-compliant cookie consent mechanisms are implemented, reflecting a mature approach to privacy and user inclusivity. Security posture is solid with HTTPS enforced, though some security headers could be improved. Overall, the site demonstrates a professional and trustworthy digital presence with clear business focus and compliance adherence.

S

SkyPro Oy

skypro.fi

58

SkyPro Oy is a Finnish family-owned company specializing in the import and sale of promotional textiles and design products. The company operates an e-commerce platform targeting both business and consumer customers, with physical showrooms in Turku and Helsinki-Vantaa. Their product range includes a wide variety of textile and design items, including custom-made promotional products. The website is professionally designed, localized in Finnish, and provides comprehensive contact information and customer support options. Technically, the website employs modern web technologies including JavaScript, jQuery, Google Tag Manager, and Facebook Pixel for marketing and analytics. It uses HTTPS with secure form handling and a robust cookie consent mechanism that complies with GDPR requirements. The site is mobile-optimized and offers a good user experience with clear navigation and search functionality. From a security perspective, the site demonstrates good practices such as CSRF protection and encrypted connections. However, it lacks some security headers that could enhance protection. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with a detailed privacy policy and cookie management. Overall, the website presents a low risk profile with a trustworthy business presence, good technical implementation, and solid privacy and security measures. Strategic improvements could include adding terms of service, enhancing security headers, and publishing incident response information.

B

Sælg billetter online som arrangør | Billetlugen.Light

billetlugen-light.dk

61

Billetlugen.Light is a Danish online ticket sales platform targeting event organizers who want to create their own online shops and sell tickets easily. The platform emphasizes user-friendliness and full control over ticket sales, leveraging the reach of Billetlugen's marketplace. Technically, the website is built on TYPO3 CMS and uses modern web technologies including Google Tag Manager and a consent management platform, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and consent mechanisms in place, but lacks some security headers and explicit privacy and terms pages. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessments. Overall, the site is professional and functional but would benefit from enhanced transparency and security best practices.

V

Veho Mercedes-Benz Cars

mercedes-benz.fi

75

Veho Mercedes-Benz Cars operates as the official Mercedes-Benz dealership and service provider in Finland, offering a wide range of luxury vehicles including sedans, SUVs, coupes, and electric models. The company provides comprehensive automotive services such as new and used car sales, vehicle servicing, warranty, roadside assistance, and digital tools like vehicle configurators. The website reflects a strong market position with consistent branding and multiple dealership locations across Finland, targeting consumers interested in premium automotive products.

K

Kauppakeskus Mylly

kauppakeskusmylly.fi

57

Kauppakeskus Mylly is a prominent shopping center located in Raisio, Finland, offering nearly 150 stores and a variety of services including restaurants, gift cards, and event information. The website serves as an information portal for visitors, providing details on opening hours, offers, and contact information. The business targets local residents and shoppers in the region, positioning itself as a major retail hub near Turku. Technically, the website is built using modern frameworks such as Astro and leverages CDNs like AWS Cloudfront for content delivery. It integrates Google Tag Manager and reCAPTCHA for analytics and security respectively. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and standard security headers present, though there is room for improvement in privacy compliance, particularly regarding cookie consent mechanisms. WHOIS data confirms the legitimacy of the domain with consistent registrant information matching the business location. Overall, the website is trustworthy, professional, and serves its business purpose effectively.

R

Restorator Oy

barfredrik.fi

51

Bar Fredrik & Yökerho Doris is a hospitality business located in Turku, Finland, operating since 2020 under the company Restorator Oy. The website presents a local nightlife venue offering bar services, a nightclub named Doris, karaoke, and venue rental options. The business targets adult customers interested in social nightlife experiences. The website is built on WordPress using Elementor and integrates modern web technologies including SEO plugins and GDPR-compliant cookie management. Social media presence on Facebook and Instagram supports customer engagement. Security posture is good with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. WHOIS data confirms transparent and consistent domain registration aligned with the business identity. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

L

Lounais-Suomen Taxidata Oy

taxidata.fi

55

Lounais-Suomen Taxidata Oy operates as a major taxi dispatch and transportation service provider in Southwest Finland, serving multiple municipalities with a fleet of approximately 460 taxis. The company offers a variety of taxi services including normal, eco-friendly, premium, and accessible vehicles, as well as parcel and food delivery. The website reflects a well-established business with a history dating back to 1953 and a modern digital presence since 2016. The company targets both consumers and businesses in the region, emphasizing reliability, safety, and local expertise. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, Piwik PRO analytics, and GDPR-compliant cookie management via Complianz. The site is mobile-optimized, uses HTTPS, and integrates reCAPTCHA for form security. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and employs privacy and cookie consent mechanisms aligned with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, some security headers could be improved for enhanced protection. The WHOIS data is transparent and consistent with the business identity, registered through a reputable Finnish registrar without privacy protection, supporting legitimacy. Overall, the website demonstrates a strong security posture, good privacy compliance, and professional business credibility. It effectively serves its target audience with clear contact information and service offerings. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and publishing formal security policies to further strengthen trust and compliance.

H

Hansakortteli

hansakortteli.fi

75

Hansakortteli is a well-established retail shopping center located in Turku, Finland, offering a diverse range of over 130 services including retail stores, restaurants, and event spaces. The website reflects a strong market position with a focus on providing a comprehensive urban shopping and leisure experience. The business targets a broad audience including local residents and visitors seeking shopping, dining, and cultural activities. Technically, the website is built on WordPress with modern SEO and analytics integrations, including Google Analytics, HubSpot, and Cookiebot for privacy compliance. The site is mobile-optimized and accessible, providing a professional user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration details align well with the business identity, enhancing trust and legitimacy. The website demonstrates good privacy compliance and transparent data collection practices.

S

Suomen Punainen Risti

punainenristi.fi

66

Suomen Punainen Risti is a leading humanitarian non-profit organization in Finland dedicated to disaster relief, first aid, volunteer coordination, and international humanitarian aid. The website clearly communicates its mission to assist people in crises both domestically and globally, encouraging public participation through volunteering, membership, and donations. It maintains a strong market position as the Finnish Red Cross with consistent branding and trust signals. Technically, the website is built on a modern stack including Episerver CMS, Microsoft Azure hosting, and uses advanced analytics tools like Google Tag Manager and Microsoft Application Insights. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and transparent in its operations.

L

LecToGo

lectogo.com

59

LecToGo operates a technology-driven powerbank rental service available across Scandinavia, including Sweden, Finland, Denmark, and Norway. The company provides mobile app-based access to powerbank stations located in over 3000 venues, targeting general consumers who need on-the-go charging solutions. The website is professionally designed using Squarespace, with good mobile optimization and moderate performance. It integrates common marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Snap Pixel. Security-wise, the site enforces HTTPS with HSTS, indicating a strong baseline for secure communications. However, the absence of privacy and cookie policies, lack of contact information, and missing WHOIS domain registration data present compliance and trust challenges. These gaps reduce the overall security posture and business credibility, suggesting areas for improvement in transparency and regulatory adherence.

P

PrimaCat vehnätön ja viljaton kissanruoka - aina runsaasti lihaa | PrimaCat

primacat.com

63

PrimaCat is a Finnish brand specializing in wheat-free and grain-free cat food products, emphasizing natural nutrition with high meat content and no added sugars. The website targets cat owners primarily in Finland and neighboring Nordic countries, offering a range of dry and wet cat food, treats, and cat litter. The business model focuses on retail distribution with availability in local stores. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrating analytics and marketing tools such as Matomo and Google Tag Manager. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are absent. WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and social media presence support legitimacy. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in business credibility and security transparency.

T

Tampereen Aluetaksi Oy

taksitampere.fi

48

Tampereen Aluetaksi Oy operates the Taksi Tampere service, the largest taxi dispatch center in the Pirkanmaa region of Finland, providing 24/7 taxi ordering services via phone, mobile app, and WhatsApp. The company boasts a fleet of approximately 450 vehicles and handles nearly 2 million rides annually, positioning itself as a dominant regional transportation provider. The website reflects a mature digital presence with multilingual support, social media integration, and modern web technologies. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The business demonstrates transparency with clear contact details and certifications, supporting trustworthiness and compliance with GDPR. Overall, the site is professional, user-friendly, and well-optimized for SEO and mobile use.

S

Skydda Suomi Oy

skydda.fi

69

Skydda Suomi Oy is a Finnish company specializing in supplying personal protective equipment primarily for the industrial and construction sectors in Northern Europe. The company positions itself as a leading supplier in this niche, targeting B2B customers requiring safety solutions. The website reflects a professional business presence with consistent branding and relevant content tailored to its target audience. Technically, the site is built on the HubSpot CMS platform, leveraging Cloudflare for security and performance, and integrates modern marketing and analytics tools such as Google Analytics 4, Google Tag Manager, and HubSpot analytics. The cookie consent mechanism is comprehensive and GDPR compliant, indicating a mature approach to privacy. Security posture is solid with HTTPS enforced and Cloudflare protections, though some improvements such as explicit security policies and updated libraries could enhance the overall security maturity. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, suitable for its professional audience.