Security Directory

Milwaukee Tools Germany operates a professional-grade website offering a comprehensive range of power tools, hand tools, accessories, and personal protective equipment targeted at professional users in Germany. The site is well-branded and consistent with Milwaukee's global identity, providing a strong market presence in the manufacturing and retail sectors. The website infrastructure leverages modern JavaScript frameworks and integrates multiple analytics and marketing tools, reflecting a mature digital strategy. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response information are not prominently available. The domain WHOIS data is privacy protected, which is typical for commercial entities in the EU, and the website content and structure strongly indicate legitimacy. Overall, the site presents a professional and trustworthy digital front for Milwaukee Tools in the German market.

W

WALTHER-WERKE Ferdinand Walther GmbH

walther-werke.de

58

WALTHER-WERKE Ferdinand Walther GmbH is a well-established German manufacturer specializing in low-voltage distribution systems, CEE connectors, industrial connectors, and electromobility charging solutions. With a history dating back to 1897 and a medium-sized workforce, the company operates internationally with subsidiaries and a broad partner network. Their product portfolio includes modular power distribution, intelligent charging infrastructure, and robust industrial electrical components, positioning them as a key player in the energy and transportation sectors. The website reflects a professional and consistent brand image, targeting industrial, construction, and electromobility markets. Technically, the site is built on TYPO3 CMS with Bootstrap and includes modern JavaScript libraries, offering a responsive and user-friendly experience. Security posture is solid with HTTPS, anonymized analytics, and spam-protected emails, though explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the site is trustworthy, compliant with GDPR, and provides comprehensive contact and product information.

M

Metrel GmbH

metrel.de

58

Metrel GmbH is a medium-sized German company specializing in the manufacture and distribution of electrical safety testing instruments and related software solutions. Their product portfolio covers electrical safety in installations, high-voltage insulation testing, PAT testing, power quality analysis, and software including cloud services. The company targets electrical engineers, safety inspectors, laboratories, and industrial customers primarily in the energy and electrical sectors. The website reflects a professional B2B business model with a clear market position in Europe. Technically, the website uses modern JavaScript libraries, Google Analytics, Facebook Pixel, and is hosted on Microsoft Azure DNS infrastructure. The site is mobile-optimized and SEO-friendly. Security posture is good with HTTPS, security headers, and secure forms, though no explicit security policy or incident response page is published. Privacy and cookie policies are comprehensive and GDPR compliant. Contact information is clearly provided with company domain emails and phone numbers. Overall, the website is trustworthy, professional, and well-maintained.

T

Thorn

thornlighting.de

54

Thorn Lighting is a well-established company specializing in integrated LED lighting solutions for both indoor and outdoor applications, primarily targeting business customers in Germany and Europe. Their website demonstrates a professional presence with comprehensive product offerings, case studies, and energy-saving tools. The technical infrastructure is built on the Plone CMS platform, enhanced with modern JavaScript libraries and third-party services such as Google Analytics and Usercentrics for consent management. Hosting and DNS services are provided via Cloudflare, ensuring reliable delivery and security. The security posture is solid with HTTPS enforced and cookie consent mechanisms blocking third-party content until user opt-in. However, explicit security headers and incident response policies are not publicly visible, representing an area for improvement. Overall, the website is trustworthy, compliant with GDPR, and provides a good user experience with clear navigation and relevant content.

H

homeway

homeway.de

54

homeway is a German-based company specializing in modular communication networks for homes, integrating fiber optics, internet, TV, and multimedia in-house networks. The company targets both private consumers and business sectors such as installers, electrical planners, prefab house manufacturers, and developers. Their offerings include innovative home network solutions and safe electrical power products. The website demonstrates a solid digital presence with modern WordPress infrastructure, SEO optimization, and GDPR-compliant cookie management. Social media engagement is active across major platforms. Security posture is good with HTTPS and privacy plugins, though explicit security policies and vulnerability disclosures are absent. Overall, homeway presents as a trustworthy small business with a clear market niche in telecommunications and energy solutions for residential and commercial clients.

E

Eesti Inimõiguste Keskus

humanrights.ee

45

Eesti Inimõiguste Keskus is an established independent non-profit organization focused on promoting and protecting human rights in Estonia. The organization provides comprehensive services including human rights reporting, advocacy, refugee counseling, events, and educational materials. Their website reflects a professional and consistent brand image, targeting Estonian residents, NGOs, policymakers, and human rights advocates. The domain has been active since 2010, supporting their credibility and long-term presence in the sector. Technically, the website is built on WordPress with WooCommerce and integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and CookieYes for consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience.

UNESCO Latvijas Nacionālā komisija is the official national commission representing UNESCO in Latvia, focusing on education, science, culture, and information sectors. The organization facilitates UNESCO program implementation, promotes sustainable development goals, and engages various stakeholders including educational institutions, scientists, and the general public. The website reflects a strong institutional presence with comprehensive content, clear navigation, and consistent branding aligned with UNESCO standards. Technically, the site is built on Drupal CMS with modern web technologies, ensuring good performance, accessibility, and mobile optimization. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with GDPR-aligned cookie policies and clear privacy statements. Overall, the website demonstrates high professionalism and trustworthiness suitable for a governmental/non-profit entity.

Museu.ms is a well-established online platform founded in 2010 that serves as one of the largest global cultural heritage resources, providing extensive information on museums, galleries, exhibitions, events, educational programs, and collections worldwide. The platform targets museum visitors, cultural enthusiasts, and museum employees, offering a comprehensive and user-friendly experience with multiple search and filtering options. The website demonstrates consistent branding and regularly updated content, supported by active social media channels and a newsletter subscription service. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Leaflet.js for maps, Google Analytics, Facebook SDK, Twitter widgets, Hotjar, and Google Maps API. The site is mobile-optimized with good SEO practices and basic accessibility features. Hosting details are not explicitly identified, but the site uses a custom CMS inferred from the URL structure and login portals. From a security perspective, the site uses HTTPS with a good SSL configuration and secure login forms. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data, representing areas for improvement. The site uses multiple third-party analytics and tracking tools, with a cookie consent mechanism indicating GDPR compliance. No direct contact emails or phone numbers are publicly available, and no formal security policy or incident response information is found. Overall, Museu.ms presents a trustworthy and professional platform with a solid business model and technical foundation. Strategic recommendations include enabling DNSSEC, implementing security headers, enhancing transparency with contact and security policies, and regularly auditing third-party scripts to maintain security and compliance.

RT Radiologie Technik + IT-Systeme is a specialized German trade publication focused on healthcare technology, specifically radiology and medical imaging IT systems. It serves healthcare professionals and decision makers by providing product catalogs, news, and industry insights. The website is professionally designed, uses a modern CMS (Contao), and integrates standard web technologies including jQuery and Google Analytics with privacy controls. The business is part of medhochzwei Verlag GmbH, a recognized publishing house in the healthcare sector. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and offers clear contact information.

B

BOA arhitektid

boa.ee

47

BOA arhitektid is an established Estonian architecture firm specializing in architecture and main design services. Founded in 2011, the company presents a professional online presence showcasing a portfolio of architectural projects and competitions. The website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization. The technical infrastructure includes modern web technologies such as jQuery and Google Fonts, with hosting likely provided by Zone Media OÜ, an Estonian registrar and hosting provider. The site implements HTTPS and a cookie consent mechanism via CookieYes, reflecting a basic level of privacy compliance. However, explicit privacy policies and terms of service are not found, which could be improved for better compliance and user trust. Security posture is moderate with HTTPS enabled but lacks visible security headers and incident response contacts. Overall, the website is professional, well-structured, and suitable for its target audience of clients seeking architectural services.

H

HD Televizija – HDTV eZine – Osnove, vijesti, upute i testovi televizora

hdtelevizija.com

52

HD Televizija is a Croatian niche media website specializing in HDTV technology, television reviews, buying guides, and calibration tutorials. Established in 2007, it serves a dedicated audience of consumers and enthusiasts interested in high-definition television technology and related equipment. The site operates primarily in Croatian with an English section, monetizing through advertising and affiliate marketing. Technically, the website is built on WordPress using the Jannah theme, leveraging common web technologies such as jQuery and Google Fonts. It employs Google Analytics and Adsense for tracking and monetization. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks published privacy and cookie policies, security policies, and vulnerability disclosures, which are compliance and trust gaps. Overall, the site is professional and content-rich but would benefit from enhanced privacy compliance and security transparency.

E

Event-Regie Tim Nievelstein

tim-nievelstein.de

10

Tim Nievelstein operates a professional small business specializing in event direction, concept development, and consulting primarily targeting live event organizers in Germany. The website presents a clear business model focused on delivering tailored event solutions with a strong emphasis on communication and coordination. The market position is that of a specialized consultant with a focused service offering. Technically, the website is built on WordPress using the Avada theme and incorporates modern SEO practices via the Yoast SEO plugin. It integrates cookie consent management through Real Cookie Banner Pro and uses Google Analytics for visitor insights. Hosting is provided by agenturserver, as indicated by the nameservers. The site demonstrates good mobile optimization and moderate performance. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, reflecting compliance with GDPR requirements. However, additional security headers could enhance the security posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the website is trustworthy, professional, and compliant with relevant privacy regulations. It poses low risk from a security and compliance standpoint. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and considering the publication of a security policy or incident response contact to further build trust.

C

CC Real

cc-real.com

65

CC Real is a small Austrian real estate investment and asset management company with a well-established online presence since 2007. The website presents a professional image with clear business descriptions and contact information, targeting investors and clients interested in real estate assets. The technical infrastructure is based on WordPress with modern plugins such as Yoast SEO and Real Cookie Banner Pro, indicating a mature digital setup. Analytics and marketing tools are implemented with GDPR compliance in mind, including cookie consent mechanisms and privacy policies. Security posture is good with HTTPS enabled and domain registration protections, though some security headers could be improved. Overall, the site is trustworthy and professionally maintained, with no critical vulnerabilities or suspicious indicators detected.

P

Privacy service provided by Withheld for Privacy ehf

zakon.ai

46

Zakon.ai is a technology company offering an AI-powered legal search platform focused on Croatian and European law. The platform provides instant access to laws, regulations, court decisions, and EU directives, targeting legal professionals, entrepreneurs, and citizens. The business model is subscription-based with free trials and multiple pricing tiers. The website is professionally designed using WordPress and Elementor, integrating modern tools such as Google Analytics and cookie consent management. The technical infrastructure is solid, with HTTPS enabled and a secure domain status, although DNSSEC is not enabled. Security posture is good but could be improved by adding security headers and publishing security policies. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy policy found. Overall, the site is trustworthy and safe for general audiences.

C

Comp-On AG, HR Solutions

comp-on.ch

58

Comp-On AG is a Swiss-based company specializing in HR compensation solutions, targeting businesses seeking practical and understandable approaches to remuneration questions. The company operates a professional website built on WordPress with the Divi theme, integrating modern SEO and analytics tools such as Yoast SEO and Google Analytics. The website content is well-structured and relevant to its niche market, reflecting a small-sized enterprise with a clear business focus. Technically, the site demonstrates moderate performance and good mobile optimization, though some accessibility features could be enhanced. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but missing a formal privacy policy and terms of service. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the site is trustworthy and professional but would benefit from improved privacy and security documentation to enhance compliance and user trust.

C

CoolHotels.in

coolhotels.in

53

CoolHotels.in is a boutique online platform specializing in discovering and booking unique, luxurious, and curated hotels worldwide. Founded in 2021, the company targets travelers seeking distinctive hotel experiences through expert-curated guides and simple online booking links. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including Google Fonts, Leaflet for maps, and Google Analytics for tracking, with a custom CMS or framework. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and formal security policies are absent. Privacy compliance is well addressed with a clear privacy and cookie policy. Overall, the business appears legitimate and trustworthy with consistent WHOIS data and no suspicious indicators.

W

Where to Stay

wheretostay.in

9

Wheretostay.in is a niche travel guide website offering detailed neighborhood and area guides for travelers worldwide. The site integrates high-quality maps and hotel listings to assist users in selecting accommodation based on neighborhood characteristics. The business targets travelers seeking comprehensive and up-to-date local insights to enhance their travel experience. Technically, the website employs modern web technologies including JavaScript, CSS, and integrates Google Analytics and Google Ads for tracking and advertising. The site is mobile optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS but lacks security headers and published security policies, which are areas for improvement. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Overall, the website is functional and trustworthy but would benefit from enhanced privacy and security practices to improve compliance and user trust.

Jessica Stuart-Beck's website serves as a personal portfolio for an artist specializing in watercolor paintings, with a focus on showcasing artwork and providing exhibition information. The site targets art enthusiasts and potential visitors primarily in Sweden. The business model is centered on art promotion and sales through exhibitions and books authored by the artist. The website is hosted on Netlify and uses modern web technologies including Google Analytics and Tag Manager for visitor tracking. The technical infrastructure is moderate in performance and mobile optimized, though accessibility and SEO are basic. Security posture is limited due to lack of visible security headers and missing privacy and cookie policies. The WHOIS data is unavailable, raising concerns about domain registration legitimacy, although the website content appears genuine and professional. Overall, the site is functional but lacks critical compliance and security features.

O

OÜ Eesti Elektroonikaromu

elektroonikaromu.ee

41

OÜ Eesti Elektroonikaromu operates as a producer responsibility organization in Estonia, focusing on the collection and recycling of electronic waste, batteries, and accumulators. It is the largest network for electronic device collection in Estonia, providing free disposal services and compliance support for producers, importers, retailers, and online shops. The organization is well-established with a domain age since 2010 and recognized market presence, including partnerships such as the pilot electronic waste collection station in Ülemiste shopping center. Technically, the website is built on WordPress with modern themes and SEO tools, employing Google Analytics and Leadfeeder for visitor tracking. Security posture is adequate with HTTPS enforced but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and serves a clear environmental and regulatory function in Estonia.

A

Abicart.se

abicart.se

57

Abicart.se is a Swedish e-commerce platform operated by Textalk AB, offering a comprehensive SaaS solution for businesses to start and manage online shops. The platform provides modern payment integrations, logistics support, multilingual capabilities, and AI-powered features such as automatic product description generation and translations. Positioned as one of Sweden's leading e-commerce platforms, Abicart targets entrepreneurs and businesses seeking affordable and scalable online store solutions. Technically, the website employs modern web technologies including React and Bootstrap, with good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and a public security policy are absent. WHOIS data for the www subdomain is unavailable, but the main domain and business legitimacy are supported by consistent branding and contact information. Overall, the site demonstrates a professional, trustworthy, and user-friendly e-commerce service with strong market positioning in Sweden and the Nordic region.

S

SOGO

pluginsmarket.com

60

Sogo WordPress Plugins Market is a small technology business specializing in the development and sale of WordPress plugins. The website offers a range of plugins including calendar widgets, author recent posts, accessibility tools, and premium support services. The target audience primarily consists of WordPress site owners and developers seeking specialized plugin solutions. The business operates an e-commerce model leveraging the Easy Digital Downloads platform for sales and distribution. The domain age and registration details align well with the business history, supporting legitimacy and trustworthiness. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several third-party integrations such as Google Analytics, Google reCAPTCHA, and Tawk.to live chat. The site demonstrates good mobile optimization and accessibility features, including a dedicated accessibility plugin and UI controls. Performance is moderate with room for improvement in SEO and technical optimization. From a security perspective, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks explicit security headers and DNSSEC. There is no published security policy or incident response information, and no vulnerability disclosure mechanism is present. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information is limited to contact forms without direct emails or phone numbers. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact and policy disclosures to strengthen trust and security posture.

H

Vozni red vlakova | Udaljenosti.com

hznet.hr

44

Udaljenosti.com is a Croatian travel information website specializing in train schedules and travel planning for Croatian Railways. It targets travelers and commuters in Croatia, providing distance calculations and schedule lookups. The site operates primarily on an advertising revenue model and has been active since at least 2012. Technically, it uses a mix of legacy and modern web technologies including Google Fonts, Leaflet maps, Google Maps API, and Google Analytics. The site implements a cookie consent mechanism and integrates multiple advertising and tracking services. Security posture is moderate but could be improved by updating outdated libraries and adding security headers. WHOIS data is unavailable, which raises some concerns about domain legitimacy despite the active and functional website. Overall, the site is functional and provides relevant content but should address security and legitimacy concerns for improved trust.

H

Hrvatski Telekom d.d.

akz.hr

52

The website www.akz.hr serves as the official online platform for the Zagreb Bus Station, providing extensive bus ticketing services across Croatia and neighboring countries. It offers users the ability to search for bus schedules, purchase tickets online up to 15 minutes before departure, and access real-time status updates for arrivals and departures. The platform supports mobile app integration, enhancing accessibility for travelers. The business is positioned as a key transportation service provider in the region, backed by Hrvatski Telekom d.d., a reputable Croatian telecommunications company. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Tag Manager and Google Analytics for marketing and analytics purposes. Hosting is managed by Hrvatski Telekom with Cloudflare DNS services, ensuring reliable domain resolution. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers such as Content Security Policy and HSTS, which are recommended for enhanced protection. Privacy compliance is limited due to the absence of a visible privacy policy and terms of service, representing a compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. Strategic improvements in privacy policy publication, security header implementation, and comprehensive compliance documentation would elevate its security posture and user trust.

Cheap Motels Near Me is a niche affiliate website focused on providing users with listings of budget motels near their current location. The site leverages a partnership with Booking.com to offer a best price guarantee, positioning itself as a price comparison and booking facilitator in the hospitality sector. The target audience primarily consists of travelers seeking affordable lodging options. The business model is based on affiliate commissions through Booking.com, with no direct booking or payment processing handled on the site itself. Technically, the website employs modern web technologies including Vue.js for frontend interactivity, Google Analytics and Tag Manager for tracking, and Google Maps API for location services. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile optimized and presents a clean, user-friendly interface with good navigation and relevant content. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, no explicit security headers such as Content-Security-Policy or HSTS were detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance and user trust. No contact information or incident response details are provided, limiting transparency. The WHOIS data shows a legitimate domain registration with a reputable registrar and no privacy protection, consistent with the business type. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

Motels Near Me is a niche hospitality website operated by Heylab AB, a Swedish company founded in 2017. The site provides a location-based motel search service, helping travelers find motels with available rooms near their current location, emphasizing best price guarantees. The business model centers on facilitating motel discovery and potentially bookings, targeting travelers seeking convenient and affordable lodging options. The website is professionally designed with a clear user interface and good mobile optimization, leveraging modern web technologies including Vue.js, Google Analytics, and Google Maps API. Hosting and DNS services are provided via Cloudflare, ensuring reliable performance and security at the infrastructure level. Security posture is moderate with HTTPS enforced and domain transfer protections in place; however, the absence of DNSSEC and security headers like CSP and HSTS represent areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms, which could expose the business to regulatory risks. Contact information is minimal, limited to personal links in the about section, with no direct company emails or phone numbers disclosed. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy practices to improve compliance and user trust.

J

Julianus Inkasso

julianus.ee

44

Julianus Inkasso is a well-established Estonian debt collection company founded in 1995, operating as a leading provider in Estonia and the Baltic region. The company offers comprehensive credit management services including debt collection, legal proceedings, and purchase of debt portfolios. It is part of the Aktiva Finance Group, which enhances its market position and operational scale. The website reflects a professional and consistent brand image, targeting both debtors and creditors with multilingual support and self-service portals. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and credible business presence.

A

AS LHV Pank

lhv.ee

60

AS LHV Pank is a leading Estonian financial institution offering a broad range of services including banking, loans, investments, insurance, and pension management. The company targets both individual and business customers within Estonia, positioning itself as a trusted and comprehensive financial services provider. The website reflects this with professional design, clear navigation, and extensive service information. Technically, the site employs modern frameworks such as Bootstrap and uses analytics tools like Google Analytics and PostHog, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure login mechanisms, although there is room for improvement in publishing dedicated security policies and incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

K

Krediidiregister

krediidiregister.ee

40

Krediidiregister is an established Estonian company providing comprehensive data solutions for credit and business risk management. With over 11 years in the market, it operates the largest payment default and business information database in Estonia, offering services such as credit scoring, account statement analysis, and business monitoring. The company targets businesses and financial institutions seeking to make informed credit decisions and manage financial risks effectively. Technically, the website is built on WordPress with WooCommerce and optimized for performance using WP Rocket. It integrates modern analytics and marketing tools including Google Analytics, Facebook Pixel, and GetResponse Analytics, while implementing GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and partial security headers, though there is room for improvement in explicit security policies and incident response disclosures. Overall, the website presents a professional, trustworthy, and well-structured digital presence aligned with its business objectives.

Z

Zone Media OÜ

taust.ee

47

Taust.ee is a well-established Estonian credit information platform operated by Zone Media OÜ, founded in 2014. It provides comprehensive credit and background data services including payment defaults, tax debts, court rulings, and financial reports to banks, credit providers, and businesses. The website demonstrates a strong market position with partnerships from major Estonian banks and telecom companies. Technically, the site is built on WordPress with modern front-end technologies and integrates multiple analytics and tracking tools. Security posture is good with HTTPS and no exposed sensitive data, though security headers could be enhanced. Privacy compliance is robust with clear cookie consent and privacy policies. Overall, the site is professional, trustworthy, and serves a critical role in the Estonian financial ecosystem.

Mailman3.com is a specialized SaaS provider offering hosted Mailman 3 mailing list management services. The company provides multiple subscription plans including shared, dedicated, reseller, and enterprise options, targeting organizations requiring robust email list management and delivery. The business operates with a clear focus on Mailman 3 technology but is unaffiliated with the official Mailman 3 developers. The website presents a professional image with clear service descriptions and pricing, supported by modern web technologies including Google Analytics and Stripe for payments. However, it lacks formal privacy and terms of service documentation, which may impact user trust and compliance. Security posture is moderate with HTTPS enabled and no visible sensitive data exposure, but improvements such as DNSSEC and security headers are recommended. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

C

Find postal codes in Canada

canadapostalcode.net

9

The website canadapostalcode.net is a niche utility platform providing Canadian postal code lookup services. It allows users to search postal codes by address and also displays the user's current postal code based on GPS location if supported by the browser. The site is small-scale, founded in 2013, and primarily serves a general Canadian audience with free access supported by advertising. The business model is informational with no direct e-commerce or subscription services. Technically, the site uses a basic frontend stack including jQuery 1.8.3, Mapbox GL, Leaflet CSS, and Google Fonts. It integrates third-party services such as Google Analytics, Facebook SDK, Twitter widgets, and Google Adsense for advertising and tracking. Hosting and DNS are managed via Cloudflare, providing HTTPS and DNS-level protections, though DNSSEC is not enabled. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks important security headers like CSP and HSTS. No privacy, cookie, or terms of service policies are published, indicating low privacy compliance. No contact or incident response information is available, which limits transparency and trust. Advertising scripts introduce moderate user tracking, but no critical vulnerabilities or malware indicators were found. Overall, the site is functional and safe for general users but would benefit from improved privacy compliance, enhanced security headers, and clearer business and contact information to increase trust and professionalism.

WhatAltitude.com is a small, niche website created by Jonatan Heyman in 2013 that provides users with altitude information based on their GPS location. The site is a single-purpose informational tool supported by advertising revenue and uses multiple ad networks and tracking services. Technically, the site employs standard web technologies including jQuery, Google Fonts, Google Analytics, and social media SDKs, hosted behind Cloudflare DNS. Security posture is adequate with HTTPS enforced and domain transfer lock enabled, though DNSSEC is not active and security headers are not explicitly detected. Privacy compliance is addressed via an embedded consent management platform, ensuring GDPR adherence. The site lacks formal contact emails or phone numbers and does not provide terms of service or explicit security policies. Overall, the website is safe, professional, and trustworthy for general audiences.

W

What is my address?

whatismyaddress.net

9

The website 'What is my address?' is a small personal project created in 2020 that provides users with their current physical address based on GPS location. It offers an interactive map interface allowing users to fine-tune their location. The site targets general internet users needing quick geolocation services and operates on a free, ad-supported model. The technical infrastructure is built on Flask with Leaflet for mapping, supplemented by common web technologies and third-party analytics and social media integrations. Hosting and DNS are managed via Cloudflare, ensuring basic performance and security. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Business credibility is moderate given the personal nature of the project and limited contact information. Overall, the site is functional and trustworthy for its purpose but would benefit from enhanced security and privacy practices.

WhatIsMyZip.com is a small personal project created by Jonatan Heyman in 2012 to provide users with a simple utility to find their current ZIP code based on GPS location or address input. The website is straightforward, free to use, and monetized through Google Adsense advertising. It targets general internet users who need quick postal code information. Technically, the site uses a Flask backend with Leaflet for mapping and JavaScript Geolocation API for location detection. It integrates social media widgets and analytics for user engagement and tracking. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism. Overall, the site is functional, safe, and trustworthy for general audiences but could improve in security and privacy practices.

Hotels-near-me.today is a small hospitality-focused website designed to help users find hotels with available rooms near their current location. The site emphasizes ease of use and best price guarantees, targeting general travelers seeking immediate accommodation options. The business model revolves around location-based hotel search and availability display, leveraging Google Maps and third-party hotel data. The site is developed using modern web technologies including Vue.js, jQuery, and Google APIs, indicating a moderate level of digital maturity. However, the absence of a CMS or hosting details limits deeper infrastructure insights. Security posture is moderate; HTTPS usage is implied but no security headers are detected, and no privacy or cookie policies are present, which reduces compliance maturity. The WHOIS data is privacy protected, common for small websites, with no suspicious indicators. Overall, the site is functional and safe but would benefit from enhanced security and privacy compliance measures.

B

bedandbreakfast.guide

bedandbreakfast.guide

52

Bedandbreakfast.guide is a specialized online travel guide and booking platform focused on bed and breakfast accommodations worldwide. Established in 2014, it offers curated listings of unique and locally owned B&Bs, along with recommendations for nearby attractions such as coffee shops, restaurants, and museums. The website targets travelers seeking authentic and charming lodging experiences. Technically, the site employs modern web technologies including Google Fonts, Leaflet maps, and Google Analytics, ensuring a responsive and user-friendly experience. The presence of a cookie consent banner and privacy policy indicates attention to privacy compliance. Security-wise, the site uses HTTPS and avoids exposing sensitive data, though it lacks explicit security headers and formal security policies. The WHOIS data is unavailable due to TLD restrictions and privacy protections, but the domain appears legitimate and consistent with the business profile. Overall, the website presents a professional and trustworthy platform for travelers interested in bed and breakfast accommodations.

L

LuxuryHotel.world

luxuryhotel.world

53

LuxuryHotel.world is a specialized online platform dedicated to providing comprehensive and independent guides to luxury hotels worldwide. Established in 2018, the company focuses on curating high-end five-star hotels and nearby amenities such as restaurants and bars, targeting discerning luxury travelers. The website offers detailed hotel listings with booking links, emphasizing trust and independence by not accepting payments for inclusion or preferential placement. Technically, the site employs modern web technologies including Google Fonts, SVG icons, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR, though it lacks some advanced security headers and formal incident response disclosures. Overall, the domain WHOIS data is privacy protected, which is typical for small businesses, and no suspicious patterns are detected. The website presents a professional and trustworthy front with moderate to good technical and security posture.

R

Roni

ronigame.com

50

Roni is a small technology business focused on delivering a multiplayer and single-player word game available on iOS and Android platforms. The website serves as a promotional portal providing game descriptions, screenshots, and download links to app stores. The business targets casual and word game enthusiasts, offering features such as multiplayer challenges, daily games, and chat functionality. The domain has been registered since 2013, indicating a stable presence in the market. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with Google Analytics for user tracking and Cloudflare for DNS services. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, it lacks advanced security headers and cookie consent mechanisms, which are important for privacy compliance and security hardening. From a security perspective, the site enforces HTTPS and has domain transfer protections, but does not enable DNSSEC or publish security policies or incident response contacts. No WAF or blocking mechanisms are detected, and no vulnerabilities or suspicious content were found. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Overall, the website is professional and trustworthy for its purpose but could improve its security posture and privacy compliance to better protect users and enhance trust. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response information.

Longitude.me is a small technology service operated by Heylab AB, based in Sweden, offering a simple and privacy-conscious real-time location sharing platform. The website is authored by Jonatan Heyman and is part of a portfolio of related travel and location-based projects. The service targets general internet users who want to share their location easily and temporarily. Technically, the site uses modern JavaScript libraries, integrates social media widgets, and is hosted with Cloudflare DNS services. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No direct contact information or incident response details are provided, limiting transparency. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

HeyWeb was a technology-focused SaaS platform designed to enable small business owners to rapidly create websites by converting their Facebook pages into fully functional websites. The service automated content updates from social media and provided features such as custom domains and newsletter signups. The website is currently closed, indicating the service is no longer active. The domain is well-established, registered since 2007, and uses reputable registrar and DNS providers, supporting its legitimacy. Technically, the website uses a modest tech stack including jQuery, typed.js, and Google Analytics for tracking. It is hosted with Cloudflare DNS and uses Gandi SAS as the registrar. The site is mobile optimized and has a good design and user experience, but lacks advanced accessibility features and comprehensive SEO optimization. No CMS or major frameworks were detected. From a security perspective, the site lacks DNSSEC, security headers, and visible privacy or cookie policies, which are critical for compliance and user trust. The domain is protected against unauthorized transfers but could improve DNS security. No WAF or blocking mechanisms were detected, and no sensitive data exposure was found. Overall, the security posture is moderate but requires improvements to meet modern standards. The overall risk is moderate with no critical vulnerabilities detected. Strategic recommendations include implementing DNSSEC, publishing privacy and cookie policies, adding security headers, and providing clear contact and incident response information to enhance trust and compliance.

H

Heylab AB

locust.io

51

Locust.io is an established open source load testing framework developed and maintained by Heylab AB, a Swedish company founded in 2011. The platform enables developers and performance testers to define user behavior in Python code and simulate millions of simultaneous users for scalable load testing. The website demonstrates a strong community presence with numerous contributors and endorsements from reputable companies such as Riot Games, Mozilla, Microsoft, and Google. Commercial support is offered via the related domain locust.cloud, indicating a hybrid open source and service business model. Technically, the website employs modern web technologies including Python-based backend, JavaScript, Google Fonts, Twitter widgets, and GitHub integration. Hosting and DNS services are managed through Cloudflare, ensuring reliable performance and security. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with fast loading times and clear navigation. However, some security best practices such as DNSSEC and security headers are not enabled, and privacy compliance documentation is absent. From a security perspective, the site uses HTTPS and has domain transfer protections in place. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is transparent and consistent with the business identity, enhancing trustworthiness. Nonetheless, the absence of privacy and cookie policies, security incident contacts, and vulnerability disclosure mechanisms represent compliance and security posture gaps. Overall, Locust.io presents a professional, trustworthy, and technically mature platform with room for improvement in privacy compliance and security policy transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

8

83bar

83bar.com

60

83bar is a healthcare technology company specializing in patient recruitment, engagement, and journey management for clinical trials and commercialization. Positioned as an innovative player in the healthcare sector, 83bar offers a Patient Activation Platform that integrates software to locate, educate, and navigate high-intent patients. The company targets pharmaceutical firms, clinical research organizations, and healthcare providers, aiming to optimize patient recruitment and improve clinical study outcomes. Their market position is reinforced by multiple industry awards and recognitions, reflecting a strong reputation in their niche. Technically, the website is built on WordPress using the Avada theme, leveraging a modern tech stack including jQuery, Google Analytics, Hotjar, HubSpot, and Calendly. The site demonstrates good mobile optimization, SEO practices, and a moderate performance profile. The integration of marketing and analytics tools indicates a mature digital marketing strategy, supporting lead generation and user engagement. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts, but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanism, aligned with GDPR requirements. Overall, the website presents a professional and trustworthy digital presence with strong business credibility. The absence of WHOIS registration data is a concern but does not detract significantly from the site's legitimacy given the quality of content and contact information. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party integrations to strengthen security posture and trust.

R

RedRhino Inc.

red-rhino.com

54

RedRhino Inc. is a well-established marketing and advertising agency based in London, Ontario, with nearly three decades of experience. The company specializes in integrated marketing, branding, and digital services including mobile-first website development. Their client portfolio spans multiple sectors such as consumer goods, healthcare, manufacturing, and professional services, positioning them as a reputable mid-sized agency in their market. The website reflects a professional and consistent brand image with strong content quality and user experience. Technically, the site is built on WordPress using modern frameworks and includes multiple analytics and marketing tools, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security transparency.

U

UC Affärsinformation

allabolag.se

60

Allabolag.se is a comprehensive Swedish business information platform operated by UC Affärsinformation, a subsidiary of Enento Group Plc. The website offers detailed financial data, official company roles, and business insights for all Swedish companies that file annual reports with the Swedish Companies Registration Office. It targets business professionals, researchers, and companies seeking reliable corporate data. The platform provides both free and premium services, including segmentation tools and network searches, positioning itself as a leading source for Swedish corporate information. Technically, the website is built on modern web technologies including React and Next.js, with Material-UI for design. It integrates multiple third-party advertising and analytics services, managed through a consent platform ensuring GDPR compliance. The site is well-optimized for mobile and accessibility, with good SEO practices and fast loading times. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses a consent management platform for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy or incident response information, which could be improved to enhance trust. Overall, Allabolag.se presents a professional, trustworthy, and well-maintained digital presence with strong business credibility. The missing WHOIS data for the www subdomain is not a concern given the known parent domain and business entity. Strategic recommendations include enhancing security transparency, maintaining third-party script audits, and publishing vulnerability disclosure policies.

S

Solheminredning.se/Nordiska designkollektivet AB

solheminredning.se

52

Solheminredning.se is a Swedish retailer specializing in Scandinavian and Danish design furniture, including children's furniture and home decor. The company operates both online and through a physical presence in Stockholm, offering a curated selection of design brands such as Sika-Design, Fritz Hansen, and Oliver Furniture. Their business model focuses on quality design furniture with home delivery and personalized customer service, targeting consumers interested in Nordic minimalism and design aesthetics. Technically, the website is built on the Abicart e-commerce platform, utilizing modern web technologies including jQuery, React components, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. Security-wise, the site enforces HTTPS and uses standard tracking and advertising scripts but lacks some advanced security headers. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data for the exact www subdomain was not found, which slightly impacts trust but the overall business presence and content quality support legitimacy. Privacy and cookie policies are present with consent mechanisms, indicating basic GDPR compliance. Overall, the website is professional, secure, and well-positioned in its niche market.

Webkozar is a small Czech company specializing in web design, e-commerce solutions, and graphic design services primarily targeting businesses in the Nový Jičín region. Established in 2011, the company offers comprehensive web development services including SEO optimization, hosting, and ongoing site maintenance. The website is built on WordPress with professional design and SEO plugins, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business presents as credible and professional with a clear service offering and client references.

Valga Kultuurikeskus is a local cultural center based in Valga, Estonia, established in 2010. It serves as a community hub offering a variety of cultural experiences including theater, concerts, exhibitions, cinema, and room rental services. The website effectively communicates event information and provides contact details, positioning itself as a trusted local institution. Technically, the site uses a modern CMS (Greativ) and integrates popular JavaScript libraries and marketing tools such as Facebook Pixel and Google Analytics. However, it lacks published privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing key security headers and vulnerability disclosure mechanisms. Overall, the site is accessible, professionally designed, and serves its target audience well but should improve privacy compliance and security transparency.

V

Valga and Valka Municipalitys

visitvalgavalka.com

55

Visit Valga Valka is a regional tourism website promoting the twin towns of Valga (Estonia) and Valka (Latvia). It provides information on tourism destinations, food and drink, accommodation, and local news and events. The website targets tourists and visitors interested in exploring this unique cross-border region. The business model focuses on tourism promotion supported by local municipalities. The site is relatively small in scale, founded in 2019, and maintains consistent branding and good content quality.

G

Grad Bjelovar

bjelovar.hr

42

Grad Bjelovar operates an official municipal government website serving the city of Bjelovar, Croatia. The site provides residents and visitors with information on local government administration, public calls, events, documents, and services. It maintains a consistent brand presence and leverages social media platforms to engage its audience. The website is built on WordPress with popular plugins for SEO, caching, and analytics, hosted on Totohost servers. The technical infrastructure supports good mobile optimization and accessibility, with moderate performance characteristics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional, suitable for its government function.

P

Pixelibris

pixelibris.com

43

Pixelibris is a small educational technology entity focused on creating interactive multimedia presentations and learning resources in astronomy, mathematics, statistics, and computer graphics. The website is built on WordPress using modern plugins such as Elementor and Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure supports good SEO and mobile responsiveness, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS data raises some concerns about domain legitimacy, but the professional content and partner affiliations suggest a legitimate educational project. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and clarifying domain registration details to improve trust and compliance.