High-risk security reports

D

Detail Produktionsbyrå

detailproduktion.se

48

Detail Produktionsbyrå is a creative production agency based in Stockholm, Sweden, founded in 2014. The company offers a broad range of services including graphic design, digital and motion media, copywriting, photography, and accessibility adaptations. Their website demonstrates a strong market position with a comprehensive portfolio and a client base that includes notable organizations. Technically, the website is built on WordPress with modern technologies such as Bootstrap, Google Analytics, and GDPR-compliant cookie management. The site is well-optimized for SEO, mobile-friendly, and accessible. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is robust with clear cookie consent and a detailed privacy policy. Overall, the website projects professionalism and trustworthiness, supporting the company's credibility in the creative media sector.

K

Kaffekompaniet kaffe

kaffekompaniet.se

33

Kaffekompaniet is a Swedish company specializing in premium freshly roasted coffee, professional coffee machines, and comprehensive service solutions primarily targeting the hospitality, office, and healthcare sectors. Backed by the parent company MIKO, with a coffee roasting tradition dating back to 1801, Kaffekompaniet positions itself as a market leader offering tailored coffee solutions to businesses of all sizes. The website reflects a strong brand identity with consistent messaging and a focus on quality and sustainability. Technically, the site is built on WordPress with modern plugins like Elementor and WooCommerce, ensuring a good user experience across devices. Security measures include HTTPS enforcement and a detailed cookie consent mechanism, although some security headers could be improved. Overall, the site demonstrates a mature digital presence with good privacy compliance and trustworthy business information.

W

Wallenius Lines AB

walleniuslines.com

39

Wallenius Lines AB is a well-established investor and active owner in the global shipping industry, focusing on the international car and Ro-Ro segment. The company has a pioneering history dating back to the 1960s and continues to innovate in vessel design and logistics solutions. Their market position is strong within the transportation sector, targeting shipping industry stakeholders and automotive manufacturers. The website reflects a professional digital presence built on WordPress with modern plugins and tools, including Cookiebot for privacy compliance and Matomo for analytics. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates good business credibility and technical maturity.

Unico Consulting AB is a Swedish consultancy specializing in PLM, CAD, and PDM consulting, development, and training services since 1989. The company targets technical industries such as automotive and transportation, offering customized training and expert advisory services. Their website reflects a professional and consistent brand with good content quality and user experience. Technically, the site uses a custom CMS with jQuery and other JavaScript libraries, delivering moderate performance and good mobile optimization. Security posture is moderate but lacks visible HTTPS confirmation and security headers, and no privacy or cookie policies are published, indicating compliance gaps. Overall, the website is trustworthy with clear business information and testimonials but would benefit from improved security and privacy compliance measures.

S

Spoonful Pty Ltd

spoonful.net.au

32

Spoonful Pty Ltd operates a catering service in Australia, specializing in events ranging from intimate dinner parties to extravagant weddings. The website presents a basic but professional digital presence, primarily built on the Webflow platform, with integrated Google Analytics and Tag Manager for visitor tracking. The business targets individuals and organizations seeking catering services, positioning itself as a local hospitality provider with a small business scale. The content is minimal, indicating a forthcoming website update, but includes essential contact methods such as email and a catering enquiry form. Technically, the website leverages modern web technologies including Webflow CMS, jQuery, and asynchronous loading of analytics scripts. The site appears mobile-optimized with good navigation and design quality. However, there is a lack of advanced SEO and accessibility features, and performance is moderate. Security practices include HTTPS usage and reCAPTCHA v3 on forms, but no explicit security headers or incident response information are present. From a security perspective, the site shows moderate maturity with some best practices but lacks comprehensive privacy and cookie policies, security headers, and vulnerability disclosure mechanisms. The absence of these elements reduces privacy compliance and security posture scores. No critical vulnerabilities or malware indicators were detected, but improvements are needed to enhance trust and compliance. Overall, the website is functional and professional but basic in content and security maturity. Strategic enhancements in privacy compliance, security headers, and incident response transparency would improve the risk profile and user trust significantly.

H

Humanit

humanit.se

45

Humanit is a Swedish IT company based in Stockholm, offering IT consultancy, staffing, and support services across Sweden. Their business model focuses on providing specialized IT professionals, human-centric IT support, and strategic consultancy to clients in various industries including energy and technology. The website reflects a mature digital presence built on the Squarespace platform, with good design, navigation, and mobile optimization. Security posture is strong with HTTPS and HSTS enabled, though privacy and cookie policies are missing, indicating room for compliance improvement. Contact information is clear and consistent, enhancing business credibility. Overall, the site is professional and trustworthy, serving a medium-sized enterprise audience in the Swedish IT market.

The domain phuketcondo.net currently serves a standard HTTP 404 error page indicating that the website content is not accessible or the domain is not hosting an active website. There is no business description, contact information, or privacy-related policies available on the page. The technical infrastructure is minimal, relying on default Chromium error page scripts and styles, with no evidence of a content management system or hosting provider details. Security posture is weak due to lack of HTTPS enforcement and absence of security headers or policies. Overall, the website is inactive or misconfigured, presenting a poor user experience and no trust signals.

D

Daikin

daikin.se

49

Daikin Sweden operates a professional and comprehensive website focused on energy-efficient heat pumps and climate control solutions for residential customers. The company positions itself as a market leader with a broad product portfolio and strong customer support through installers and service offerings. The website is built on Adobe Experience Manager, leveraging modern analytics and marketing tools, and demonstrates good digital maturity with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the site is trustworthy and professionally maintained, supporting Daikin's brand as an expert in HVAC solutions in Sweden.

M

Metronik

metronik.net

38

Metronik is a well-established company specializing in innovative automation and digitalization solutions primarily serving industrial, smart building, and infrastructure sectors. With over 30 years of experience and a medium-sized workforce spread across multiple countries, Metronik holds a strong market position in Slovenia and the wider European region. Their offerings include advanced HVAC automation, production process control, energy management, and cloud-based IIoT platforms, supported by partnerships with global manufacturers and a portfolio of notable clients. The website reflects a mature digital presence with comprehensive content and professional branding. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience and mobile responsiveness. Security posture is solid with HTTPS enforced and privacy compliance evident through detailed policies and cookie consent mechanisms. No critical vulnerabilities or suspicious indicators were found, supporting a high legitimacy score. Strategic recommendations include enhancing security headers, publishing a formal security policy, and improving accessibility features to further strengthen compliance and trust.

A

AMRA Medical

amra.se

47

AMRA Medical is a Swedish healthcare company specializing in advanced medical imaging services, particularly MRI-based body composition analysis. Their patented and regulatory compliant technology supports clinicians and clinical researchers worldwide, positioning them as a global leader in this niche. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to their target audience of medical professionals and researchers. Technically, the site leverages WordPress with modern integrations such as HubSpot forms, Google Tag Manager, and NitroPack for performance optimization. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though formal security policies and incident response contacts are not published. Privacy compliance is well addressed with GDPR-aligned cookie consent and a detailed privacy policy. Overall, the site demonstrates high professionalism and trustworthiness, supporting AMRA Medical's market position effectively.

The website at ineko.se is currently inaccessible, serving a 404 Not Found error page with no substantive content or business information. The page only contains a minimal HTML structure embedding an external 404 error page from urllo-cdn.com. There is no metadata, structured data, or contact information available, indicating the site is either inactive or misconfigured. The lack of HTTPS information and security headers further suggests poor technical and security posture. Overall, the site does not provide any meaningful business or compliance information, severely limiting any assessment of its operations or trustworthiness.

R

Rechon Life Science AB

rechon.com

30

Rechon Life Science AB is a Swedish contract manufacturing organization specializing in aseptic compounding and filling of pharmaceutical products such as ampoules, vials, cartridges, and pre-filled syringes. The company offers comprehensive lifecycle support from clinical trials through commercial manufacturing, packaging, quality control, supply chain management, and development services. Their market position is that of a specialized and experienced partner for pharmaceutical companies seeking to bring medicines to market efficiently and with high quality. Technically, the website is built on WordPress using the Divi theme, leveraging jQuery and Google Fonts, indicating a modern but standard CMS infrastructure. The site is mobile optimized and presents content clearly, though SEO and accessibility features are basic. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal security policies. No privacy or cookie policies were found, indicating compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and publishing vulnerability disclosure and incident response information to enhance trust and compliance.

G

GoDaddy Operating Company, LLC

blackboard.se

43

The website blackboard.se is a premium domain sales landing page operated by GoDaddy Operating Company, LLC, a leading domain registrar and aftermarket service provider. The site offers the domain blackboard.se for sale with secure payment options and professional brokerage support. The business model focuses on facilitating domain acquisitions for businesses and individuals seeking premium domain names. The platform is well-positioned in the domain aftermarket industry with strong trust signals including verified domain badges and a high Trustpilot rating. Technically, the site is built using modern web technologies including React and Next.js, hosted on Amazon AWS infrastructure. It demonstrates good performance, mobile optimization, and accessibility features. Security is robust with HTTPS enforced, multiple security headers, and integration of reCAPTCHA to prevent abuse. Payment integrations include trusted providers such as Klarna, PayPal, and major credit cards. From a security posture perspective, the site follows best practices with no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant, though explicit security policies and incident response contacts are not published. Overall, the site presents a low risk profile with strong business credibility and technical maturity. Strategically, the site could enhance trust further by publishing dedicated security and incident response policies and providing direct contact emails for security concerns. Regular updates to third-party libraries and continued monitoring for vulnerabilities are recommended to maintain security posture.

F

FAMECO

fameco.se

39

Fameco AB is a well-established Swedish company specializing in industrial fasteners and assembly solutions, serving sectors such as heavy industry and automotive. Founded in 1945 and now part of Keller & Kalmbach, Fameco offers a comprehensive product range and value-added services including engineering, sourcing, and C-parts management. The company emphasizes sustainability and customer-centric solutions, positioning itself as a trusted partner in its market segment. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern technologies and compliance tools such as CookieYes for GDPR adherence. Security posture is strong with HTTPS, bot management, and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, accessible, and optimized for SEO and user experience, supporting the company's credibility and market position.

K

Kungälvs kommun

kungalv.se

41

Kungälvs kommun operates as the official municipal government website for the Kungälv region in Sweden, providing comprehensive information and services across education, social care, culture, environment, and local governance. The website serves residents, businesses, and visitors with a broad range of resources including detailed navigation for municipal services, event information, and contact points. The site demonstrates a mature digital infrastructure leveraging Microsoft Azure hosting, Episerver CMS, and multiple analytics platforms such as Matomo and New Relic, indicating a commitment to performance monitoring and user experience optimization. Security posture is strong with enforced HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not present. Overall, the site reflects a professional, trustworthy government portal with good accessibility and privacy compliance.

S

Statens institutionsstyrelse

stat-inst.se

48

Statens institutionsstyrelse (SiS) is a Swedish government agency specializing in individually adapted compulsory care and closed youth care. The agency operates 21 special youth homes and 11 LVM homes, targeting youth and clients with serious psychosocial problems in collaboration with social services. The website serves as an informational and service portal for social services, youth, clients, and the general public, emphasizing transparency and accessibility. Technically, the site employs a moderate tech stack including jQuery, Cookiebot for consent management, and Matomo for analytics, reflecting a balance between functionality and privacy. Security posture is solid with HTTPS enforcement and session security cookies, though improvements in security headers and incident response disclosures are recommended. Overall, the site is professional, accessible, and compliant with GDPR, supporting the agency's mission and public trust.

N

Norvatek

norvatek.se

35

Norvatek is a Swedish company specializing in the manufacturing and delivery of pump stations for water and sewage projects, offering flexible solutions in various materials such as concrete, GAP, and stainless steel. The company serves municipalities and contractors with a comprehensive business model that includes project planning, construction, automation, and installation services. Their market position is supported by decades of experience and recognized certifications such as ISO 9001 and ISO 14001. The website reflects a professional and consistent brand image targeting the Swedish and Nordic markets. Technically, the site is built on WordPress with modern plugins and SEO optimizations, providing a good user experience with mobile responsiveness and accessibility considerations. Security posture is strong with HTTPS, security headers, and a cookie consent mechanism ensuring GDPR compliance. Contact information is detailed and regionally segmented, enhancing customer engagement. Overall, Norvatek demonstrates a mature digital presence aligned with its business operations and compliance requirements.

I

Integrationsbolaget

integrationsbolaget.se

41

Integrationsbolaget is a Swedish consulting company specializing in integration and cybersecurity digitalization services. Since its acquisition by Omegapoint in June 2021, it is transitioning its brand to unify under the Omegapoint name. The website serves primarily as an informational landing page announcing this rebranding and linking to the parent company's site for more details. The technical infrastructure is minimal, built with modern but basic web technologies including the Astro framework. The site lacks advanced features such as forms, analytics, or security policies, indicating a low digital maturity level. Security posture is weak due to absence of visible HTTPS confirmation, security headers, and privacy compliance documentation. Overall, the site is functional but basic, with room for significant improvements in security, privacy, and user engagement.

G

GoDaddy Operating Company, LLC

tecnet.se

42

The website tecnet.se is a premium domain sales landing page operated by GoDaddy Operating Company, LLC, a leading domain registrar and aftermarket service provider. The site offers the domain tecnet.se for sale with secure payment options and professional brokerage support. The platform targets businesses and individuals seeking premium domain names to establish or expand their online presence. The business model revolves around domain aftermarket sales, leveraging GoDaddy's extensive infrastructure and market reach. Technically, the site is built using modern web technologies including React and Next.js, hosted on Amazon AWS, and integrates payment services such as Klarna and PayPal. The site demonstrates good performance, mobile optimization, and accessibility features. Security is robust with HTTPS enforced, security headers present, and use of reCAPTCHA to protect forms. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security posture is strong with no detected vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site is trustworthy and professional, with strong brand consistency and trust signals such as verified domain badges and positive Trustpilot ratings. The risk assessment is low given the reputable operator and secure infrastructure. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and enhancing transparency around data protection officers to further strengthen trust and compliance.

C

CAPE Media

capemedia.se

30

CAPE Media is a Swedish media company specializing in advertising services with a strong focus on long-term partnerships and customer-centric media solutions. The company targets advertisers in Sweden and offers campaign management and media planning services. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with Elementor and uses modern web technologies, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite the use of Google AdSense and tracking tools. Overall, the site is trustworthy and credible with clear contact information and social media presence.

The website keypasco.com is currently inaccessible, displaying only a minimal HTML page with the message 'User is not authorized to perform this action.' This indicates that the site content is blocked or restricted, preventing any meaningful analysis of business operations, services, or technical infrastructure. Due to the lack of accessible content, no metadata, forms, external links, or contact information could be extracted. The absence of visible security headers or SSL details further limits the security assessment. The domain appears to have privacy-protected WHOIS registration, which combined with the blocked content, results in a low trust and legitimacy score. Overall, the site is not currently providing any public-facing information or services.

G

GoDaddy Operating Company, LLC

comfortaudio.com

47

The website comfortaudio.com is a domain aftermarket sales landing page operated by GoDaddy Operating Company, LLC, a leading global domain registrar and marketplace. The site offers the domain comfortaudio.com for sale at a fixed price with secure transaction processes and dedicated customer support. The target audience includes businesses and individuals interested in acquiring this domain to establish or expand their online presence. The business model is focused on domain sales and transfers, leveraging GoDaddy's extensive infrastructure and market reach. Technically, the site is built using modern web technologies including React and Next.js, hosted on AWS, and integrates payment and security features such as Klarna and Google reCAPTCHA. The site demonstrates good security posture with HTTPS, security headers, and no exposed sensitive data. Privacy and cookie policies are linked to GoDaddy's comprehensive legal pages, indicating compliance with GDPR and other regulations. Overall, the site is professional, trustworthy, and functional, though content is minimal as expected for a domain sale landing page.

E

Exertus IT AB

exertusit.se

33

Exertus IT AB is a Swedish technology consulting company specializing in Code and Cloud consulting services, primarily serving clients in Göteborg and the surrounding region. The company emphasizes long-term client relationships, high-quality software development, and agile methodologies. Their website reflects a professional and consistent brand image, with clear navigation and relevant content targeting businesses seeking modern development and cloud solutions. Technically, the site is built on WordPress using common plugins such as Contact Form 7 and Cookie Law Info, indicating a standard but effective digital infrastructure. Performance and mobile optimization are adequate, though there is room for improvement in accessibility and SEO. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and compliant with GDPR, though it would benefit from enhanced security disclosures and incident response information.

O

Ortic AB

ortic.se

29

Ortic AB is a Swedish manufacturing company specializing in advanced roll forming machinery and related services. With over 40 years of experience, the company positions itself as a trusted expert in the roll forming industry, offering machines, aftermarket products, process optimization, training, and service. The website reflects a professional and consistent brand presence targeting manufacturing businesses seeking high-quality roll forming solutions. Technically, the site uses a custom CMS with common JavaScript libraries and integrates Google Analytics and Tag Manager for user tracking. The cookie consent mechanism is implemented, indicating awareness of privacy compliance, although no explicit privacy policy or terms of service pages were found. Security posture is moderate with no visible critical vulnerabilities but lacks advanced security headers and incident response information. Overall, the website is accessible, well-structured, and credible, with clear contact information and social media presence supporting trust.

P

Presto AB

presto.se

47

Presto AB is a well-established Swedish company specializing in fire safety, training, and security products for businesses and organizations. Their website demonstrates a strong market position in the Nordic region, offering comprehensive services including education, consultancy, and product sales aimed at minimizing fire and accident risks. The company targets B2B customers seeking to enhance workplace safety and compliance. Technically, the website is built on modern frameworks such as Next.js and Prismic CMS, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is solid with HTTPS enforcement and nonce usage for scripts, though some security headers and explicit policies could be improved. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a professional and trustworthy business presence with active social media engagement and clear contact channels.

C

Celltech AB

celltech.se

40

Celltech AB is a well-established Nordic leader in integrated battery solutions, founded in 1984 and operating under the Addtech group. The company specializes in designing, selling, and integrating high-quality batteries and battery systems tailored for professional and industrial applications across various sectors including energy and transportation. Their business model focuses on close collaboration with customers and partners to deliver both standard and customized battery solutions. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with Elementor and employs modern SEO and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is robust, with a clear privacy policy and cookie consent banner. Overall, the site projects high professionalism and trustworthiness, supporting Celltech's market position as a leading battery solutions provider in the Nordic region.

M

Medivir AB

medivir.com

48

Medivir AB is a Swedish pharmaceutical company specializing in the discovery and development of innovative cancer drugs, leveraging expertise in protease inhibitor design and nucleoside/nucleotide science. The company targets cancers with high unmet medical needs and operates through proprietary projects, licensing, and partnerships. Their website reflects a professional and consistent brand image with comprehensive investor relations and transparent contact information. Technically, the site uses modern web technologies such as jQuery, Video.js, and Headroom.js, and is likely powered by the Umbraco CMS. The site is mobile-optimized and SEO-friendly, though accessibility could be improved. Security posture is strong with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

SeCom Datakonsulter AB is a small Swedish IT consultancy firm established in 1987, specializing in IT development, server administration on Linux and UNIX platforms, .NET application development, and database services with a focus on SAP Sybase. The company primarily serves public sector clients, notably the Swedish Armed Forces, and maintains a small team of four employees. The website is a basic informational portal with limited interactive features and no visible privacy or security policies. Technically, the site uses standard HTML, CSS, and JavaScript but lacks modern security implementations such as HTTPS and security headers. There are no analytics or tracking tools detected, indicating minimal user data collection. The security posture is weak due to the absence of HTTPS and security policies, which poses risks for trust and compliance. Overall, the site reflects a small, specialized consultancy with a modest digital presence but requires significant improvements in security and privacy compliance to align with modern standards.

The website www.ritvars.lv currently presents an empty HTML page with no content, metadata, or technical elements. There is no visible business information, contact details, or security and privacy policies. This indicates the site is either a placeholder or under construction, lacking any meaningful digital presence or user engagement features. The absence of content and metadata severely limits the ability to assess the company's market position, services, or target audience. Technically, the site lacks any detectable technologies, frameworks, or CMS, and no performance or accessibility features are present. Security posture is minimal with no evidence of HTTPS or security headers, exposing the site to potential risks. Overall, the site scores very low on content quality, technical implementation, security, privacy compliance, and business credibility, indicating a critical need for development and security improvements.

M

Mediekompaniet

mediekompaniet.com

47

Mediekompaniet is a Swedish media and advertising company specializing in tailored communication solutions for Sweden's largest advertisers. The company operates primarily in the media sector, offering print, digital, and content marketing services, including programmatic and native advertising. Their market position is strong within local media advertising, targeting Swedish advertisers and media consumers. The website is professionally designed using WordPress with the Divi theme, featuring multimedia content and a clear navigation structure. Technical infrastructure includes modern web technologies and integrations with marketing and analytics platforms such as HubSpot and Google Tag Manager. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and published security policies. Overall, the website demonstrates good business credibility and digital maturity, with clear contact information and social media presence. Strategic recommendations include enhancing security policies, publishing privacy and terms documents, and improving transparency around data protection and incident response.

T

Tecnau

tecnau.com

38

Tecnau is a specialized manufacturing company providing advanced digital print feeding and finishing solutions. Their product portfolio covers a wide range of applications including transactional, transpromotional, direct mail, graphic arts, and book on demand. The company positions itself as an expert in automation and workflow optimization within the digital print industry, serving a global B2B market. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the site is built on WordPress with WooCommerce, utilizing modern plugins and frameworks to ensure good performance and SEO optimization. Security measures such as HTTPS and security headers are properly implemented, with no critical vulnerabilities detected. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website demonstrates a high level of professionalism and trustworthiness, supporting Tecnau's market position as a reliable provider in their sector.

Tagore is a Swedish IT consulting company specializing in helping organizations achieve tangible results from their IT investments by translating strategies into operational actions. The company positions itself as an independent advisor with deep expertise in both IT and management, targeting businesses seeking clarity and effective execution in complex IT environments. Their website reflects a professional and consistent brand with a focus on trust and operational success. Technically, the site is built on WordPress with modern libraries and is moderately optimized for performance and mobile use. However, the absence of explicit privacy and cookie policies, combined with extensive use of tracking scripts without consent mechanisms, indicates gaps in privacy compliance. Security posture is generally good with HTTPS enforced, but lacks some security headers and published security policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security transparency.

T

Tibro kommun

tibro.se

48

Tibro kommun operates as the official municipal government website for the Tibro region in Sweden, providing comprehensive information and services to residents, businesses, and visitors. The site covers a broad range of municipal functions including education, social services, cultural activities, technical services, and local governance. It maintains a consistent brand presence and offers clear navigation to various service areas, news, and events. The website integrates social media channels and regional partner links to enhance community engagement. Technically, the website is built on the EPiServer CMS platform and utilizes modern web technologies such as jQuery, Typekit fonts, and FontAwesome icons. It includes performance and accessibility considerations, with mobile optimization and a cookie consent mechanism in place. Analytics are handled via Vizzit, and a chat widget from Imbox is integrated for user interaction. From a security perspective, the site uses HTTPS and implements cookie consent but lacks explicit security headers and a published security policy or incident response contacts. No critical vulnerabilities or blocking mechanisms were detected. The WHOIS data confirms the domain is legitimately registered to Tibro kommun, matching the website's governmental identity. Overall, the website demonstrates a solid digital presence for a municipal government entity with good content quality and technical implementation. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and trustworthiness.

E

Emcomp

emcomp.se

44

Emcomp is a specialist provider of electrical components and solutions designed for harsh industrial environments, with a strong focus on Ex-machinery and automation. Operating primarily in Europe and Asia, the company leverages partnerships with leading manufacturers to deliver tailored solutions across sectors such as energy, marine, offshore, and manufacturing. Their market position is reinforced by their affiliation with the Addtech Group and a commitment to quality and sustainability, including ISO certification. The website reflects a mature digital presence built on WordPress and WooCommerce, with a professional design and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Privacy compliance is evident through cookie consent mechanisms and GDPR-aligned policies. Overall, Emcomp presents as a credible and trustworthy business with a clear value proposition in the industrial electrical components market.

The website draftitprivacy.com currently serves only a 404 error page indicating that the domain is pointed to WP Engine hosting but is not configured for an active account. No business or service information is available on the site. The lack of content and configuration prevents any meaningful assessment of the company's market position or services. Technically, the site is hosted on WP Engine but lacks any CMS or platform-specific content. No security headers or SSL information is present in the provided data, and no privacy or cookie policies are found, indicating a very low digital maturity level. The security posture is minimal due to the absence of HTTPS and security best practices. Overall, the site is inaccessible for end users and does not provide any contact or compliance information, resulting in a very low trust and credibility score.

DB SCHENKER is a global logistics and supply chain solutions provider with a strong market position, recently merged with DSV to form a world-leading transport and logistics entity. The website offers comprehensive information on their services, including digital services, transport modes, contract logistics, and industry-specific solutions, targeting businesses requiring international shipping and supply chain optimization. The technical infrastructure is modern, leveraging advanced JavaScript frameworks, Adobe Experience Platform Launch, and custom widgets, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, Content-Security-Policy headers, secure login portals, and cookie consent mechanisms, though explicit security policy documentation and incident response contacts are not found. Overall, the site is professional, trustworthy, and compliant with privacy regulations, reflecting a mature digital presence for an enterprise-level logistics company.

F

Fellowshop AB

fellowshop.se

43

Fellowshop AB is a Swedish communications agency specializing in strategic and creative communication services including branding, copywriting, and campaign management. The company positions itself as a small but effective agency emphasizing collaboration and impactful communication. The website is professionally designed using Squarespace, with good mobile optimization and clear navigation. Security-wise, the site uses HTTPS with HSTS enabled, indicating strong SSL configuration. However, it lacks explicit privacy, cookie, and terms of service policies, which impacts compliance and trust. No incident response or vulnerability disclosure information is provided. Overall, the site reflects a legitimate small agency with room for improvement in privacy and security transparency.

The website vob.se is currently inaccessible beyond a security challenge page that performs browser integrity checks and automatic redirects, indicating the presence of a Web Application Firewall or similar security mechanism. The visible metadata suggests the site is built on outdated CMS platforms, Joomla 1.5 and WordPress 2.5, which are no longer supported and pose significant security risks. No business, contact, or compliance information is directly accessible, limiting the ability to assess the company's market position or operational details. Technically, the site lacks modern security headers, HTTPS enforcement, and privacy or cookie policies, which are critical for trust and compliance in today's web environment. Overall, the site exhibits poor content quality, minimal technical sophistication, and a low security posture, compounded by the blocking security layer that prevents deeper analysis.

The website sanmina.com is currently inaccessible, returning a 403 Forbidden error page served by nginx. Due to the lack of accessible content, no metadata, business information, or security policies could be extracted or analyzed. The absence of visible content and resources prevents a meaningful assessment of the company's digital presence, technical infrastructure, or security posture. Consequently, the overall risk assessment is high due to the inability to verify any security or compliance measures. It is recommended to contact the site administrators or owners for further information and to resolve access restrictions to enable a full evaluation.

K

KWD Studio

kwdstudio.se

37

KWD Studio is a Swedish award-winning creative agency specializing in digital marketing and communication services. The company emphasizes understanding brand culture and context to deliver tailored communication solutions that resonate with target audiences. Their market position is strong, supported by multiple awards and a reputable client portfolio including major brands. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site uses modern web standards with SVG logos and privacy-friendly analytics, though there is room for improvement in security headers and explicit privacy compliance. Security posture is adequate with HTTPS enforced but lacks advanced header configurations and formal security policies. Overall, the site is trustworthy and well-positioned but should enhance privacy and security disclosures to align with best practices.

F

Fortinova

fortinova.se

33

Fortinova is a private real estate company operating in western Sweden, specializing in residential and commercial property rentals. The company positions itself as a growing and responsible market player with a focus on sustainability and customer satisfaction. Their website reflects a professional and modern digital presence, leveraging WordPress CMS with SEO and accessibility best practices. The technical infrastructure includes modern JavaScript libraries and tracking tools, ensuring good user experience and performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and vulnerability disclosure practices could be improved. Overall, the website and domain registration details align well, indicating a trustworthy and legitimate business.

T

Tundra Fonder AB

tundrafonder.se

43

Tundra Fonder AB is a Swedish asset management company specializing in frontier markets, focusing on sustainable investment opportunities in emerging economies such as Vietnam, Nigeria, Pakistan, and Sri Lanka. The company positions itself as a niche leader with a large dedicated analyst and management team for frontier markets. Their business model revolves around managing funds and discretionary portfolios with an emphasis on ESG factors. The website is professionally designed, multilingual, and integrates social media feeds to engage investors. Technically, the website is built on WordPress using Visual Composer and several plugins including Custom Twitter Feeds and Google reCAPTCHA for security. The site is mobile optimized and performs moderately well, though some accessibility features could be improved. Security posture is good with HTTPS enforced and form protection via reCAPTCHA, but lacks advanced security headers and a public security policy. Overall, the site presents a credible and trustworthy business front with clear contact information and active social media presence. However, the absence of explicit privacy and terms of service pages is a compliance gap. The domain WHOIS data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and improving accessibility to strengthen compliance and trust.

E

ELOVADE Deutschland GmbH

innosoft.se

39

ELOVADE Deutschland GmbH operates as a technology solutions provider specializing in IT security, managed services, and infrastructure software. The company targets IT service providers and managed service providers (MSPs), offering reliable value-added services. The website is professionally designed with consistent branding and good content quality, primarily in Swedish, reflecting a regional focus within Europe, particularly Germany. The business model centers on providing advanced IT security software and managed infrastructure solutions, positioning ELOVADE as an established player in the technology sector since its founding in 2017. Technically, the website is built on WordPress 6.8.1 with React components, enhanced by modern tools such as Usercentrics for consent management and Captcha.eu for bot protection. SEO is well implemented using Yoast SEO with structured data, and Google Tag Manager is used for analytics and tracking. Performance is moderate with good mobile optimization, though accessibility features are basic. The technical stack reflects a mature digital infrastructure suitable for a medium-sized technology company. From a security perspective, the site enforces HTTPS with excellent SSL configuration and integrates consent management and anti-bot measures, indicating a solid baseline security posture. However, explicit security headers are missing, and no published security policy or incident response contacts are found, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with GDPR-aligned cookie consent and a comprehensive privacy policy. Overall, the website presents a trustworthy and professional front for ELOVADE Deutschland GmbH, with a moderate risk profile. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and improving accessibility. These steps would strengthen the security posture and compliance maturity, supporting business credibility and customer trust.

B

BoMek AB

bomek.se

33

BoMek AB is a Swedish manufacturing company specializing in subcontracted metal processing, including cutting and welding of various metallic materials. Established since the 1970s and located in central Gothenburg, the company serves a diverse range of industries such as automotive, medical technology, defense, and food machinery. BoMek AB is ISO9001 certified, emphasizing quality and service. The website reflects a mature digital presence built on WordPress with Elementor, featuring modern design and responsive layout. Security measures include HTTPS, reCAPTCHA v3 on forms, and email obfuscation, though some security headers are missing. The site implements a comprehensive cookie consent mechanism, supporting GDPR compliance. Overall, the company presents a credible and professional image with clear contact channels and social media presence.

H

Hoy

hoy.se

47

Hoy is a creative digital agency based in Gothenburg, Sweden, specializing in the intersection of design, technology, and culture. They offer services including website development, app creation, and immersive experiences such as VR and AR. As part of the Mojna agency network, Hoy maintains a strong market position within the Swedish digital services sector, targeting businesses seeking innovative digital solutions. The website reflects a professional and modern digital presence with comprehensive service offerings and a clear brand identity. Technically, the site leverages modern frameworks like Next.js and Sanity CMS, integrating multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and includes GDPR-compliant privacy and cookie policies, though explicit security and incident response policies are not published. Overall, Hoy demonstrates a solid security posture with room for improvement in transparency around security policies and incident handling. The domain registration data aligns well with the website's claims, supporting the legitimacy of the business. Strategic recommendations include publishing detailed security policies, establishing incident response contacts, and maintaining regular audits of third-party scripts to enhance security and trust.

Chemotechnique MB Diagnostics AB is a specialized healthcare company based in Sweden, established in 1981, focusing on providing high-quality patch testing products and services for dermatology professionals worldwide. Their website serves as both an e-commerce platform and an informational resource, offering products like IQ Ultra™ and BasIQ Ultra™ patch test kits, detailed instructions, downloadable record forms, and patient education materials. The company maintains a strong market position as a trusted name in patch testing with a clear target audience of physicians and patients interested in contact allergy diagnosis. Technically, the website employs a custom-built infrastructure leveraging legacy JavaScript libraries such as jQuery 1.8.1 and jQuery UI 1.10.3, integrated with Google Tag Manager, Google Analytics, and Google reCAPTCHA for analytics and security. The site is mobile optimized with responsive design elements and basic accessibility features. However, the use of outdated libraries and lack of advanced security headers like CSP indicate areas for modernization and security enhancement. From a security perspective, the site uses HTTPS with good SSL configuration and includes cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The presence of outdated JavaScript libraries poses potential security risks. No WAF or blocking mechanisms were detected, and no critical vulnerabilities were found in the visible content. Overall, the security posture is moderate but could be improved with updated libraries and enhanced security headers. The overall risk assessment is low to moderate with a well-established business and professional online presence. Strategic recommendations include upgrading legacy JavaScript libraries, implementing CSP headers, publishing security and incident response policies, and enhancing privacy compliance documentation to strengthen trust and security culture.

S

Staffanstorps kommun

staffanstorp.se

37

Staffanstorps kommun operates as the official municipal government website for the Staffanstorp region in Sweden, providing a broad range of public services including education, social care, environmental management, traffic, cultural events, and business support. The website serves residents and local businesses with comprehensive information and e-services, positioning itself as a trusted local government authority. The digital infrastructure is built on modern technologies such as React and Gatsby, integrated with a WordPress CMS backend, ensuring a responsive and accessible user experience across devices. Security measures include a strict Content-Security-Policy and HTTPS enforcement, reflecting a mature security posture. Privacy compliance is robust, featuring clear privacy and cookie policies with consent mechanisms aligned with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, supporting the municipality's mission to serve its community effectively.

F

Företagsuniversitetet

foretagsuniversitetet.se

43

Företagsuniversitetet is a leading Swedish educational institution specializing in professional development courses, conferences, and customized training solutions. Owned by the Stiftelsen Kursverksamheten vid Stockholms universitet, it targets working professionals and organizations in Sweden, offering practical and up-to-date knowledge across various sectors including HR, IT, security, and leadership. The website reflects a solid market position with a clear focus on quality education and lifelong learning.

P

Proton Group

proton.se

43

Proton Group is a Swedish family-owned industrial holding company focused on long-term investments in people, companies, and sectors with growth potential. The company operates multiple subsidiaries across manufacturing and engineering sectors, positioning itself as a growing industrial group in Sweden. The website is professionally designed with clear navigation, good content quality, and a consistent brand presence. Technically, the site uses WordPress with modern JavaScript frameworks and SEO plugins, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence with moderate user tracking and good privacy compliance.