Security Directory

C

Centro de Administraciones Tributarias Subnacionales (CeATS)

ceats.org

44

Centro de Administraciones Tributarias Subnacionales (CeATS) is a well-established non-profit organization based in Argentina, focused on subnational tax administration collaboration, training, and research. The website reflects a professional presence with clear navigation, relevant content, and active engagement through events and educational programs. The organization partners with universities and government tax agencies, reinforcing its credibility and market position in the government and education sectors. Technically, the website uses a modern but standard technology stack including Bootstrap, jQuery, and various carousel and slider libraries. Hosting is stable with a reputable registrar, and the site is mobile optimized with moderate performance. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC, which are recommended to enhance protection. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, supporting business credibility. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening to align with best practices and regulatory requirements.

N

Nova Scotia Legislature

nslegislature.ca

67

The Nova Scotia Legislature website serves as the official online presence for the legislative branch of the Government of Nova Scotia. It provides comprehensive access to legislative business including debates, bills, statutes, committee information, and live legislative TV. The site targets residents, government officials, researchers, and the general public interested in provincial governance. It holds a strong market position as an authoritative government resource with consistent branding and trust indicators such as official domain and social media presence. Technically, the website is built on Drupal 7 with a moderate technology stack including jQuery 1.10, Slick Carousel, and Colorbox. The site is moderately performant with good mobile optimization and basic accessibility features. SEO is basic but sufficient for the target audience. Hosting details are not explicit but domain registration is consistent with a Canadian government entity. From a security perspective, the site uses HTTPS and has domain transfer protections enabled. However, DNSSEC is not enabled, and security headers are not detected. The use of an outdated jQuery version poses potential vulnerabilities. There is no published security policy or incident response contact, and no cookie consent mechanism despite use of Google Tag Manager for analytics. These gaps reduce privacy compliance and security posture scores. Overall, the website is trustworthy and professional, with high business credibility. The main risks relate to technical security improvements and privacy compliance enhancements. Strategic recommendations include enabling DNSSEC, updating JavaScript libraries, implementing security headers, publishing security policies, and adding cookie consent mechanisms to improve compliance and user trust.

I

Ilmor Engineering Inc.

ilmor.com

55

Ilmor Engineering Inc. is a specialized engineering company focused on racing and marine engine services with a presence in the USA and a partner entity in the UK. Their services include engine design, development, testing, manufacturing, and innovation in high-performance marine and racing engines. The website content is minimal but clearly targets professionals and enthusiasts in the marine and motorsport industries. Technically, the site uses a custom CMS with common web technologies such as jQuery, Bootstrap, and tracking tools like Google Analytics and Hotjar. However, the site lacks visible contact information, privacy policies, and security headers, which are critical for trust and compliance. The WHOIS data is missing or indicates the domain is unregistered or expired, which raises significant legitimacy concerns. Overall, the site demonstrates moderate technical maturity but requires improvements in security, privacy compliance, and business transparency.

S

Status d. o. o. Metlika

ardeo.si

52

Ardeo.si is an e-commerce website operated by Status d.o.o. Metlika, specializing in the sale of electronic memorial candles that simulate real flame appearance. The company positions itself as an eco-friendly alternative to traditional plastic candles, offering both battery-powered and solar-powered models with personalization options. The website targets Slovenian customers seeking durable and environmentally responsible memorial products. Technically, the site is built on WordPress with WooCommerce, leveraging modern JavaScript libraries and marketing pixels for analytics and advertising. Security posture is solid with HTTPS and secure payment methods, though explicit security policies and headers could be improved. Privacy compliance is addressed with cookie consent and a privacy policy. Overall, the site is professional, trustworthy, and well-optimized for its market niche.

A

AutoJobCentral

autojobcentral.com

58

AutoJobCentral is a specialized online job board platform focused exclusively on the automotive repair and maintenance industry. It connects job seekers with employers offering relevant positions in this niche market. The website is affiliated with Endeavor Business Media, a reputable media company, which enhances its credibility and market position. The platform offers job listings, registration for job seekers and employers, and career planning resources tailored to the automotive sector. The target audience includes automotive technicians, educators, and employers within the transportation industry.

Erfurt-Crowd is a localized crowdfunding platform operated by fairplaid GmbH, focusing on supporting projects in culture, art, social, education, environment, and sports sectors within the Erfurt community. The platform facilitates project fundraising by providing a digital space for project initiators and supporters to connect. The website demonstrates a clear market position as a regional crowdfunding facilitator with a business model centered on community engagement and project funding. Technically, the website employs modern JavaScript frameworks including React, integrates Google Analytics with IP anonymization, and uses Klaro for cookie consent management. Accessibility is enhanced through Eye-Able tools, and the site is mobile optimized with good SEO practices. The technical infrastructure is solid, leveraging Fairplaid's crowdfunding technology platform. From a security perspective, the site enforces HTTPS with good SSL configuration and includes privacy compliance mechanisms such as cookie consent and a privacy policy. However, explicit security headers and detailed security policies are absent, and no incident response or vulnerability disclosure information is provided. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. The absence of direct contact information and terms of service pages are minor gaps. The domain WHOIS data aligns well with the website's claims, supporting legitimacy. The site is safe for general audiences with no adult or questionable content detected.

PROMISE Technology, Inc operates a professional website focused on high-performance storage solutions tailored for IT, cloud, surveillance, and rich media markets. The company positions itself as a leading developer offering scalable SAN, Thunderbolt, NAS, and cloud storage products. The website demonstrates a mature digital presence with comprehensive product catalogs, success stories, and promotional content targeting IT professionals and media production companies. Technically, the site employs modern web technologies including jQuery, Foundation CSS, and Google Analytics, delivering a responsive and user-friendly experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not evident. WHOIS data for the domain is unavailable, which introduces some uncertainty about domain registration legitimacy, but the overall branding and content quality support a credible business. Strategic recommendations include enhancing security headers, publishing detailed security and privacy policies, and providing clear contact information for security incidents.

V

VGROUP

vgroup.com

52

VGROUP is a professional brand strategy, design, and communications agency that helps businesses develop their brand identity and market presence. The company showcases a strong portfolio of projects and client testimonials, positioning itself as a trusted partner in brand development. The website is built on WordPress with modern technologies and includes comprehensive privacy and cookie consent mechanisms, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent, but lacks visible security headers and explicit incident response information. The absence of WHOIS data reduces domain trust slightly, but the professional website content and branding mitigate concerns. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations.

S

SubCtech - Ocean Power & Monitoring

subctech.com

65

SubCtech GmbH is a German-based company specializing in advanced ocean engineering technologies, focusing on high-performance Li-Ion batteries for subsea applications and autonomous ocean monitoring systems. With over 15 years of industry experience and a strong market position, SubCtech serves scientific and industrial clients globally, offering certified and customized solutions. The company is part of the Gabler Maschinenbau GmbH under the Possehl Group, enhancing its market credibility and resources. Technically, the website is built on a modern WordPress platform with robust SEO and user experience features, though some security enhancements like DNSSEC and CSP headers could be implemented. Security posture is solid with HTTPS and clientTransferProhibited domain status, but lacks explicit incident response contacts and vulnerability disclosure mechanisms. Overall, the website reflects a professional, trustworthy, and compliant business entity with clear contact channels and privacy practices.

C

COSORI MAGYARORSZÁG

cosori.hu

59

COSORI MAGYARORSZÁG operates a professional Hungarian e-commerce website specializing in the retail of Cosori brand kitchen appliances, primarily air fryers and multifunctional cooking pots. The site targets Hungarian consumers seeking healthy and efficient cooking solutions, offering a range of products, accessories, recipes, and customer support. The business is relatively young, founded around 2021, and positions itself as an official distributor with strong trust signals such as awards and customer testimonials. Technically, the website leverages a modern e-commerce platform (ShopRenter) with a robust tech stack including jQuery, Bootstrap, and multiple marketing and analytics integrations such as Google Tag Manager, Facebook Pixel, TikTok Pixel, and Klaviyo. The site is mobile-optimized with good SEO practices and moderate performance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policy pages and some recommended HTTP security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear policies and consent banners. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements could focus on enhancing security headers and publishing dedicated security and incident response information.

D

Darkmay s.r.o.

cestovnysystem.sk

53

Darkmay s.r.o. operates the CeSYS platform, a comprehensive system for travel agencies primarily in Slovakia, offering online tour sales and related services. The company holds a strong market position with over 100 active travel agencies using its data and services. The website is well-structured, professionally designed, and optimized for performance and mobile use. It integrates modern technologies such as jQuery, Bootstrap, Google Analytics, and Google Maps API, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and accessible platform. Overall, the website demonstrates good compliance with privacy regulations and provides clear business and partner information.

P

Pädagogische Forschungsstelle

waldorfbuch.de

64

Waldorfbuch is an online bookstore specializing in educational materials for Waldorf schools, offering books, DVDs, and resources across various subjects and school levels. The website targets educators, parents, and students interested in Waldorf pedagogy primarily in Germany. The business operates a niche e-commerce platform with a clear focus on Waldorf education materials. Technically, the site uses a custom CMS with common web technologies such as jQuery and FontAwesome, hosted on ipandmore.cloud. The website is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, but lacks explicit security headers and incident response information. Privacy compliance is good with GDPR-aligned policies and cookie management. Overall, the site is trustworthy and professionally maintained, with room for improvement in security policies and technical headers.

F

FOX

foxcareers.com

65

FOX Careers is a professional employment portal dedicated to job opportunities within FOX Corporation and its diverse portfolio of media brands including FOX News Media, FOX Sports, FOX Entertainment, and others. The website serves as a centralized platform for job seekers interested in sports, news, entertainment, and related fields, offering job listings, internship programs, and career development initiatives. The site reflects FOX's position as a leading media and entertainment company with a strong brand presence and extensive subsidiary network. Technically, the website employs modern JavaScript libraries such as jQuery, mediaelement.js, and slick carousel, alongside Google Analytics for user tracking. The site is mobile optimized with responsive design and includes accessibility considerations, though some improvements could be made. The presence of cookie consent mechanisms and comprehensive privacy and terms policies indicate a mature approach to privacy compliance. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible HTTP security headers in the provided data. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is noted but does not detract from the site's legitimacy given its strong branding and official links. Overall, the security posture is solid but could benefit from enhanced header policies and explicit security documentation. The overall risk assessment is low, with the site presenting a trustworthy, professional front for FOX Corporation's recruitment efforts. Strategic recommendations include implementing additional security headers, publishing security policies, and enhancing accessibility features to maintain compliance and user trust.

The website www.lelundin.org is a specialized content platform managed by Lundin & Bäcklund AB, focusing on EU and NATO security policy, crisis management, and multilateral defense issues. It leverages the expertise of a former EU ambassador and provides a variety of content including blog posts, podcasts, reports, and educational materials targeting individuals interested in European security and defense topics. The site integrates multimedia content and links to authoritative external sources, enhancing its informational value. Technically, the site is built on the Weebly CMS platform, utilizing common web technologies such as jQuery, Google Analytics, and Font Awesome. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS and includes Google Analytics tracking. However, no explicit security headers or privacy/cookie policies were found, indicating room for improvement in compliance and security posture. WHOIS data is unavailable due to privacy protection, which is reasonable for this type of expert personal site but reduces transparency. No critical vulnerabilities or malicious content were detected. Overall, the site is a credible and professional resource within its niche, but it would benefit from enhanced privacy compliance, clearer contact information, and improved security headers to strengthen trust and user protection.

R

Raiffeisen banka

raiffeisen.sk

50

Raiffeisen banka is a well-established Slovak financial institution with over 130 years of tradition, operating as a branch of Tatra banka. The website presents a professional and customer-centric banking service offering personal accounts, loans, savings, and pension products. The digital infrastructure leverages modern web technologies including jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement, CSRF protection, and privacy compliance, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site reflects a mature digital presence aligned with industry standards and regulatory requirements.

S

Syona Roots

syonaroots.com

60

Syona Roots is a commercial chair and furniture manufacturer based in India, specializing in executive chairs, cafeteria chairs and tables, visitor chairs, and gang chairs for institutions, hospitals, and business organizations. The company positions itself as a leading manufacturer offering affordable pricing. The website is built on WordPress with WooCommerce and Elementor, leveraging modern JavaScript libraries and plugins to provide a functional e-commerce experience. The technical infrastructure is moderately optimized with good mobile responsiveness and SEO practices. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS data and contact information introduces some risk in trustworthiness assessment. Overall, the site is professional and business-focused but would benefit from enhanced privacy compliance and clearer business contact details.

F

Fox Corporation

foxcorporation.com

62

Fox Corporation is a major media company producing and distributing content through leading brands such as FOX News, FOX Sports, FOX Network, FOX Television Stations, and Tubi Media Group. The company targets a broad general audience with a focus on news, sports, and entertainment content. The website reflects a strong market position with comprehensive corporate governance and investor relations information. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and a responsible vulnerability disclosure policy, though explicit security headers and incident response contacts are not evident. WHOIS data is missing, which slightly reduces trust but the overall legitimacy is supported by the professional site content and branding.

I

ISISPACE

isispace.nl

54

ISISPACE is a medium-sized technology company based in the Netherlands, specializing in end-to-end space mission solutions including satellite platforms, power systems, communication systems, and launch equipment. The company has a strong market position with over 19 years of experience, serving more than 50 countries and maintaining a solid customer base. Their website reflects a professional and modern digital presence built on WordPress with Bootstrap and other contemporary web technologies. The site is well-structured, mobile-optimized, and SEO-friendly, supporting their B2B business model targeting aerospace and space mission professionals. Security posture is good with HTTPS and DNSSEC enabled, but lacks explicit security policies and incident response contacts. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy or terms of service pages. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is trustworthy and professional, though improvements in privacy and security transparency are recommended.

W

Waldorf-Stiftung im Bund der Freien Waldorfschulen e.V.

waldorf-stiftung.de

43

The Waldorf-Stiftung im Bund der Freien Waldorfschulen e.V. is a German non-profit foundation dedicated to supporting and funding initiatives related to Waldorf education and pedagogy founded by Rudolf Steiner. The foundation targets Waldorf schools, educators, and supporters of Waldorf pedagogy, providing financial resources and promoting educational projects. The website reflects a well-established position within the Waldorf education community in Germany, emphasizing transparency and community engagement through detailed project disclosures and news updates. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, Parsley.js, and Magnific Popup. The site is mobile-optimized with good SEO practices and moderate performance. Hosting appears to be managed via domaincontrol.com name servers, likely GoDaddy, though exact hosting details are not disclosed. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism with an opt-out for Google Analytics tracking. However, explicit security headers are not detected, and no formal security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the analysis. The WHOIS data is minimal but consistent with the website's purpose and domain name. Overall, the website presents a professional, trustworthy, and compliant digital presence for the foundation. Strategic improvements could include enhancing security headers, publishing security policies, and adding a vulnerability disclosure mechanism to strengthen the security posture further.

W

Wietmarscher Ambulanz- und Sonderfahrzeug GmbH

was-vehicles.com

52

Wietmarscher Ambulanz- und Sonderfahrzeug GmbH (WAS) is a German-based market leader specializing in the manufacturing and customization of ambulance and special purpose vehicles. Their website showcases a comprehensive portfolio of tailored vehicle solutions designed for emergency services including rescue, police, and disaster management. The company emphasizes innovation, safety, and quality, supported by certifications such as DIN EN ISO 14001. The site is professionally designed, mobile-optimized, and provides clear contact channels and social media presence, reflecting a mature digital footprint. Technically, the website is built on TYPO3 CMS with modern frameworks and includes consent management for privacy compliance. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security headers and incident response information are absent. WHOIS data is missing, which slightly impacts trust but the overall business credibility remains high due to detailed content and transparency. Strategic recommendations include enhancing security headers, publishing a security policy, and improving WHOIS transparency.

E

Ehrenamt der Evangelischen Kirche in Mitteldeutschland (EKM)

ehrenamt-ekm.de

46

The Ehrenamt der Evangelischen Kirche in Mitteldeutschland (EKM) website serves as a comprehensive platform to support and engage volunteers within the Evangelical Church in Central Germany. It provides practical resources, news, and contact information to facilitate volunteer activities across various church-related fields. The site targets church members and community volunteers, positioning itself as a trusted regional non-profit resource with a significant volunteer base. Technically, the website employs a modern and common technology stack including jQuery, Bootstrap, and Slick Carousel, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and some security headers present, though improvements are recommended to enhance protection. Privacy compliance is good with a GDPR-compliant privacy policy, but lacks a cookie consent mechanism despite using analytics tracking. Overall, the site is professional, trustworthy, and well-aligned with its mission, with minor technical and compliance enhancements suggested.

E

Evangelischer Kirchenkreis Bad Salzungen Dermbach

dein-tauftag.de

44

Dein-Tauftag.de is a small, non-profit web platform operated under the Evangelischer Kirchenkreis Bad Salzungen Dermbach, affiliated with the Evangelische Kirche in Mitteldeutschland (EKM). The website provides a service to remind users of their baptism day and offers informational content and community engagement tools targeted at parents, godparents, and baptized individuals. It holds a niche position within the religious community in Germany, focusing on spiritual and family-oriented content. Technically, the website employs a modern and common technology stack including Bootstrap, jQuery, and Piwik/Matomo for analytics. It is hosted on Eastlink servers, uses HTTPS with good SSL configuration, and is mobile-optimized with a clear navigation structure. However, some improvements could be made in accessibility and security headers. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. There is no evidence of security policy publication or incident response contacts, and no cookie consent mechanism was detected, which could be improved for GDPR compliance. The WHOIS data is consistent with the website's organizational claims, supporting legitimacy. Overall, Dein-Tauftag.de is a trustworthy, well-maintained religious community website with good content quality and technical implementation. Strategic improvements in privacy compliance and security transparency would enhance its posture and user trust.

M

Medical Design Sourcing

medicaldesignsourcing.com

59

Medical Design Sourcing operates as a specialized online directory and news platform focused on the medical manufacturing and medtech industry. It provides categorized listings of manufacturers, products, services, and equipment, targeting industry professionals and companies seeking sourcing and industry updates. The site is part of the WTWH Media Life Science Network, indicating a niche market position with a focus on healthcare manufacturing. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Maps API, and SEO plugins, delivering a professional and responsive user experience. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit privacy/cookie policies, which are areas for improvement. The absence of WHOIS registration data reduces domain trustworthiness, though the website content and structure suggest a legitimate business presence. Overall, the site is well-positioned as a trusted industry resource but should enhance transparency and security practices to improve compliance and trust.

E

eMOTION fitness

emotionfitness.cz

42

Emotion fitness is a modern fitness center located in Plzeň, Czech Republic, established in 2020. The business offers a variety of fitness services including state-of-the-art TECHNOGYM equipment, group classes such as yoga, pilates, TRX, and specialized children's exercise programs. Additional wellness services include physiotherapy, cosmetics, massages, maderotherapy, solarium, and a café bar, targeting local residents and families. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes. Hosting is provided by WEDOS, a Czech hosting provider, consistent with the business location. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit cookie consent mechanisms are lacking, representing areas for improvement. Overall, the website is trustworthy and well-positioned in its local market segment.

B

BVG Holding a.s.

bvgroup.cz

38

BVG Holding a.s. is a Czech-based holding company specializing in industrial and residential flooring, steel constructions, and related construction services. The company operates through several subsidiaries, each focusing on specific areas such as flooring installation, floor repairs, steel structure manufacturing, real estate management, and marketing services. The website presents a professional image with detailed service descriptions and a portfolio of completed projects, targeting industrial and residential construction clients in the Czech Republic region. Technically, the website uses a legacy jQuery version along with common front-end libraries such as Lightbox and Slick Carousel. The site is mobile-optimized with a responsive design and clear navigation. However, it lacks modern security headers and uses outdated JavaScript libraries, which may pose security risks. No CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site uses HTTPS but does not implement additional security headers or provide privacy and cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is available. The absence of WHOIS data limits the ability to fully verify domain legitimacy, although the website content and contact information appear legitimate. Overall, the site is functional and professional but would benefit from improved security practices, updated technology, and enhanced privacy compliance to reduce risk and increase trustworthiness.

L

Lead Gear

leadgear.com

61

Lead Gear is a Dallas-based B2B digital marketing and web design agency specializing in services for manufacturers, service providers, and distributors. With over 20 years of experience, they focus on generating qualified leads through SEO, digital ads, content marketing, and custom website development. The company positions itself as a results-driven partner for accelerating business growth in the B2B and local service sectors. Their website reflects a professional and modern digital presence, leveraging WordPress CMS, Gravity Forms, and various marketing and analytics tools to deliver a user-friendly experience. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers are missing. The absence of WHOIS registration data raises questions about domain registration legitimacy, but the overall site content, certifications, and contact information support a credible business identity. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks explicit cookie consent mechanisms. Strategic improvements in security headers, incident response transparency, and cookie consent would enhance trust and compliance.

Save Polesia is a focused environmental advocacy campaign dedicated to protecting Europe's largest wetland wilderness from the ecological and social threats posed by the proposed E40 waterway construction. The campaign leverages petitions, expert testimonials, and detailed informational content to raise awareness and influence policy. Technically, the website is built on WordPress using modern themes and plugins, with good SEO and mobile optimization, though some security enhancements like DNSSEC and security headers could be improved. The security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks advanced headers and DNS security. Privacy compliance is strong with clear cookie consent and a privacy policy. Overall, the website is trustworthy, professional, and serves its non-profit advocacy purpose effectively.

C

Cassini

cassini.eu

63

Cassini is an official European Commission initiative aimed at fostering entrepreneurship in the space sector across the EU from 2021 to 2027. It supports startups, SMEs, and entrepreneurs with funding, hackathons, mentoring, business acceleration, and matchmaking services. The initiative is positioned as a key enabler for the EU space economy, leveraging a €1 billion fund and various programs to stimulate innovation and market uptake of space technologies and services. The website reflects a professional and consistent brand aligned with EU standards and space industry stakeholders. Technically, the website is built on Drupal 10, employing modern web technologies and analytics tools such as Matomo and Google Tag Manager. The site is mobile optimized, accessible, and SEO friendly, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and explicit incident response information. From a security and compliance perspective, the site respects GDPR principles with a comprehensive privacy policy and cookie policy, though it lacks a cookie consent mechanism. No direct contact emails or phone numbers are published, relying on contact forms. WHOIS data is privacy protected by EURid, typical for .eu domains, and consistent with the official nature of the initiative. No suspicious or malicious indicators were found. Overall, Cassini's website is a trustworthy, well-maintained platform supporting EU space entrepreneurship. Strategic recommendations include enhancing security headers, publishing incident response contacts, implementing cookie consent, and providing more direct contact information to improve transparency and user trust.

W

Webedia Group

weblogssl.com

65

Webedia Spain operates as a regional branch of the global Webedia Group, a prominent media and technology company specializing in digital entertainment content distribution and partnerships. The website presents a professional and modern digital presence, leveraging WordPress with the Divi theme and integrating advanced SEO and analytics tools such as Yoast SEO and Google Tag Manager. Despite the polished front-end and clear business focus, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy or privacy protection usage. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy compliance documentation. Overall, the site is functional and targets a general audience interested in digital media content and partnerships.

J

Jakub Cigler Architekti, a.s.

jakubcigler.archi

50

Jakub Cigler Architekti, a.s. is a well-established Czech architectural firm founded in 2001, specializing in progressive and sustainable architecture. The company holds a strong market position in the Czech Republic with multiple awards and is a founding member of the Czech Green Building Council. Their website reflects a professional portfolio showcasing projects and news relevant to their industry. Technically, the site is built on Drupal 7 with legacy jQuery libraries and uses modern UI components like Slick Carousel and FitVids for media responsiveness. Security posture is moderate but could be improved by implementing security headers and updating legacy libraries. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the website is trustworthy and professional, supporting the company's credibility in the real estate and architectural sector.

B

Bundesministerium für Bildung und Forschung

digitalpaktschule.de

56

The website digitalpaktschule.de is an official German government platform managed by the Bundesministerium für Bildung und Forschung (Federal Ministry of Education and Research). It serves as the authoritative source for the DigitalPakt Schule initiative, which aims to enhance digital infrastructure and competencies in German schools. The site provides comprehensive information, resources, and updates targeted at schools, educators, students, parents, and related stakeholders. It holds a strong market position as a government-backed educational resource with clear branding and trust signals. Technically, the website employs modern JavaScript libraries such as jQuery and Modernizr, uses the Slick Carousel for UI elements, and integrates Matomo analytics with a privacy-conscious opt-in mechanism. The site is mobile-optimized, accessible, and SEO-friendly, though it appears to use a custom or proprietary CMS. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to comply with GDPR. However, it lacks explicit security policy pages, incident response contacts, and advanced security headers. No vulnerabilities or exposed sensitive data were found. Overall, the security posture is solid but could be improved with additional transparency and security best practices. The website is safe for general audiences, contains no adult or questionable content, and maintains high trustworthiness. The domain registration data aligns well with the website content, confirming legitimacy and consistency with a government entity. Strategic recommendations include publishing security policies, incident response information, and implementing additional security headers to enhance trust and compliance.

G

Gemeindedienst der EKM

gemeindedienst-ekm.de

46

The Gemeindedienst der EKM is a non-profit church service organization affiliated with the Evangelische Kirche in Mitteldeutschland (EKM). It provides a broad range of services including consulting, education, event organization, fundraising, and material provision primarily targeted at church communities and church districts. The website reflects a well-structured and professional presence with clear contact channels and relevant content for its audience. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and slick carousel, hosted on Eastlink infrastructure, and is mobile optimized with moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and explicit incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and aligns well with its church affiliation.

O

Opinion Box

opinionbox.com

64

Opinion Box is a Brazilian online market research platform offering businesses and professionals tools to conduct market surveys without monthly fees. The website is built on WordPress and integrates multiple modern analytics and marketing technologies such as Google Analytics, Microsoft Clarity, and Visual Website Optimizer, indicating a mature digital infrastructure. The site is well-designed, mobile-optimized, and provides a professional user experience with clear navigation and relevant content. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. Privacy compliance is limited due to the absence of explicit privacy and cookie policies or consent mechanisms. WHOIS data is unavailable from the provided raw output, which reduces domain trust verification but does not necessarily indicate illegitimacy. Overall, the website is a credible and professional platform in the market research sector targeting Brazilian businesses.

K

KS Digital

ks-digital.no

66

KS Digital is a Norwegian government-related entity providing sustainable shared digital services tailored to the needs of the municipal sector in Norway. The website positions KS Digital as an important digital service provider for Kommune-Norge, focusing on delivering common digital solutions. The business is relatively new, with domain registration in mid-2024, aligning with a recent launch or rebranding effort. The company targets Norwegian municipalities and public sector entities, emphasizing sustainability and sector-specific digital needs. Technically, the website is built on WordPress CMS, enhanced with modern technologies such as React and jQuery, and optimized for SEO with the Yoast SEO plugin. The site demonstrates moderate performance and good mobile optimization, with structured data implemented for improved search engine visibility. The presence of Plausible Analytics indicates a privacy-conscious approach to user tracking. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and explicit security or incident response policies. No vulnerability disclosure or security.txt files are present, and no certifications or compliance badges are displayed. Privacy and cookie policies are not explicitly found, which may impact GDPR compliance and user trust. Overall, KS Digital's website reflects a professional and trustworthy digital presence suitable for its government sector audience. The site is well-structured and technically sound but would benefit from enhanced privacy disclosures, security policies, and contact information to improve compliance and user confidence.

K

Inbound marketing - Síla příběhu, který prodává

kodo.cz

63

The website kodo.cz is a Czech inbound marketing service provider focused on helping small and medium honest businesses, farms, and local producers leverage internet marketing to grow their operations. The company appears to have been established since 2006, indicating a mature presence in the local market. The website uses modern frontend technologies such as React and service workers, hosted behind Cloudflare DNS, suggesting a reasonable level of technical maturity. However, the site lacks visible privacy and cookie policies, security headers, and explicit contact information, which are important for compliance and trust. The security posture is moderate with HTTPS implied but missing advanced security headers and vulnerability disclosures. Overall, the website is professional and well-designed but could improve in privacy compliance and security transparency to enhance trust and regulatory adherence.

Kiely Bros Ltd is a UK-based company specializing in carriageway and footpath surfacing and surface treatments, with a strong nationwide reputation for innovative and sustainable solutions. Their services include design and planning, preparation, carriageway solutions, road marking and lining, recycling and waste management, and aftercare. The company emphasizes sustainability and patented technologies, targeting local authorities and maintenance contractors. Technically, the website is built on WordPress using Oxygen Builder, hosted on SiteGround, and incorporates modern web technologies such as jQuery and Google Analytics. The site is mobile-optimized with moderate performance and good SEO practices. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a professional and credible business presence with strong trust indicators including certifications and testimonials.

C

CiTTi Awards by Akabo Media (Publisher of CiTTi Magazine)

cittiawards.co.uk

59

The CiTTi Awards website represents a professional event platform celebrating urban mobility and transport innovation in the UK. The event is scheduled for November 25, 2025, and targets industry professionals and stakeholders. The site offers detailed information about the awards, judges, categories, sponsors, and event logistics, supported by a modern technical infrastructure including the SHOWOFF CMS and popular JavaScript libraries. Social media integration and Google Analytics are used for marketing and user engagement. Security posture is solid with HTTPS enforced and secure form handling, though some security headers and cookie consent mechanisms are missing. The absence of WHOIS data due to domain registration issues slightly impacts trust but does not detract from the website's professional presentation and content quality.

F

For Best Clients, s.r.o.

nextech.sk

40

Nextech.sk is a Slovak technology news and media website operated by For Best Clients, s.r.o. It provides a wide range of technology-related content including news, reviews, research articles, and special projects targeting Slovak-speaking technology enthusiasts and professionals. The website features a modern design with responsive elements and integrates multiple third-party analytics and advertising services to support its business model. Hosting is provided by WebSupport, a reputable Slovak hosting provider. From a technical perspective, the site uses a combination of jQuery, Bootstrap, Slick Carousel, and Google services such as Analytics and Tag Manager. The site is served over HTTPS with good SSL configuration, but lacks explicit security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No security incident response or vulnerability disclosure information is provided, which is a gap in the security posture. Security-wise, the site demonstrates basic best practices such as HTTPS and reCAPTCHA usage but could improve by publishing clear privacy and cookie policies, implementing cookie consent mechanisms, and adding security headers. There is no evidence of WAF or blocking mechanisms, and the site content is fully accessible. Overall, Nextech.sk is a professionally managed technology media site with moderate security and privacy compliance maturity. Strategic improvements in privacy transparency and security disclosures would enhance trust and compliance.

B

Bergwaldprojekt e.V.

bergwaldprojekt.de

57

Bergwaldprojekt e.V. is a well-established German non-profit organization dedicated to environmental conservation, specifically focusing on forest, moor, and open land ecosystem protection and restoration. With over 35 years of experience, it mobilizes thousands of volunteers annually for ecological projects and environmental education. The organization also engages corporate partners and donors to support its mission. The website reflects a mature digital presence built on Drupal 11, featuring privacy-conscious analytics and comprehensive cookie consent mechanisms. Contact information and social media channels are clearly presented, enhancing trust and engagement. Security posture is solid with HTTPS and cookie management, though some security headers could be improved. Overall, the site is professional, accessible, and well-optimized for mobile and SEO.

G

Gábor Szilvia

aszodiuzletek.hu

48

Aszodiuzletek.hu is a Hungarian e-commerce price comparison and product recommendation platform launched in 2023. It aggregates product offers from multiple partner webshops, providing users with a centralized place to find competitive prices and product information. The website targets general consumers interested in shopping across various categories including electronics, fashion, home goods, and adult products. The platform emphasizes ease of use, quick price comparison, and access to special offers. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google reCAPTCHA v3 for bot protection. The site is mobile optimized and features a structured navigation system with extensive product categories and partner listings. Security posture is moderate with HTTPS enforced and reCAPTCHA implemented, but lacks explicit security headers and published security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. The domain registration is recent and consistent with the business profile, indicating legitimacy. Overall, the site presents a professional and functional e-commerce aggregator with room for improvement in security and privacy compliance.

The website www.welterbe-bernau.de serves as the official online presence for the UNESCO World Heritage Bauhaus site in Bernau, Germany. It provides comprehensive visitor information including guided tours, workshops, exhibitions, podcasts, and a merchandise shop. The business operates under BeSt Bernauer Stadtmarketing GmbH, focusing on cultural heritage promotion and tourism services. The site targets tourists, educators, and cultural enthusiasts with a clear and professional presentation. Technically, the website is built on the Contao CMS platform using Bootstrap for responsive design and jQuery for interactivity. It employs Matomo analytics for user tracking, indicating a privacy-conscious approach. The site is mobile-optimized with lazy loading images and structured navigation, though accessibility features are basic. Hosting appears stable with multiple authoritative nameservers. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks security headers and a cookie consent mechanism, which are recommended for enhanced protection and GDPR compliance. No incident response or vulnerability disclosure policies are published, representing an area for improvement. Overall, the website is trustworthy, professionally maintained, and serves its cultural mission well. Strategic enhancements in security policies and privacy compliance would further strengthen its posture and user trust.

F

Fleetback

fleetback.com

65

Fleetback is a Luxembourg-based company founded in 2015 that provides a comprehensive digital platform for automotive dealerships to streamline and digitalize their sales, after-sales, self-service, audits, and parking processes. The company serves over 2,000 customers across 26 countries, positioning itself as a key player in the automotive digital solutions market. The website reflects a professional and consistent brand image, targeting automotive professionals such as technicians, salespeople, and service advisors. Technically, the website is built on WordPress with modern libraries and frameworks including jQuery, Bootstrap, and various analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted with Amazon Registrar and uses AWS DNS services. It features a cookie consent mechanism compliant with GDPR and employs Google reCAPTCHA v3 for bot protection. The site is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS with good SSL configuration and implements best practices like bot protection and cookie consent. However, it lacks explicit security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, Fleetback's website demonstrates a mature digital presence with strong business credibility and privacy compliance. Recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

M

MAXIMETAL

maximetal.com

61

MAXIMETAL is a Canadian manufacturing company specializing in custom fire apparatus and utility trucks with over 40 years of industry experience. The company serves major fire departments and utility companies across Canada and the United States, leveraging partnerships with industry leaders such as Oshkosh Corporation and Pierce Manufacturing. Their website reflects a mature business with a clear market position and professional branding. Technically, the website is built on WordPress with modern plugins and technologies including Google Analytics, reCAPTCHA, and SEO optimizations. The site is mobile-friendly and provides a good user experience with clear navigation and relevant content. Security practices include HTTPS enforcement and CAPTCHA on forms, though some security headers are missing. The security posture is generally strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. However, the absence of WHOIS registration data introduces some uncertainty about domain registration legitimacy, which slightly impacts trust. Overall, MAXIMETAL presents a credible and professional online presence with solid business and technical foundations. Strategic recommendations include enhancing security headers, verifying domain registration details, and adding explicit security policies to further strengthen trust and compliance.

K

Kewaunee

kewauneefabrications.com

62

Kewaunee Fabrications is a specialized heavy fabrication company operating under the parent company Oshkosh Corporation. The company offers a comprehensive range of manufacturing services including welding, finishing, assembly, machining, fabrication, and quality inspection, supported by ISO 9001 certification and certified weld inspectors. Their market position is that of a trusted industrial fabricator serving B2B clients in manufacturing sectors. The website is professionally designed using WordPress, with good SEO and mobile optimization, hosted on AWS infrastructure. Security posture is solid with HTTPS and domain EPP protections, though DNSSEC is not enabled and security headers are missing. Privacy compliance is basic but includes a cookie consent mechanism and a privacy policy hosted on the parent company domain. Overall, the site is trustworthy and professionally maintained, reflecting a mature business presence.

N

Netzwerk Kleinkunst der Evangelischen Kirche in Mitteldeutschland

kleinkunst-ekm.de

45

The website www.kleinkunst-ekm.de serves as a cultural networking platform for the Evangelische Kirche in Mitteldeutschland, connecting artists and church communities across the region. It offers a curated portal for artists and venues, supporting cultural events such as Kirchenkino and providing resources like documents and workshops. The site is positioned as a small, non-profit entity with a clear regional focus and strong church affiliation. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and popular carousel and slider libraries. Hosting is provided by Eastlink, a German hosting provider, with HTTPS enabled ensuring secure communication. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Analytics are handled via Matomo, indicating some privacy consideration. From a security perspective, the site uses HTTPS but lacks visible security headers and published security or incident response policies. No cookie consent mechanism is present, which is a GDPR compliance gap. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with a small non-profit organization, with no suspicious patterns. Overall, the website is professional, trustworthy, and serves its community well, but could improve privacy compliance and security posture by adding cookie consent, security headers, and formal policies.

E

Evangelische Kirche in Mitteldeutschland (EKM)

kirchenlandkarte.de

10

The website www.kirchenlandkarte.de is an official online project of the Evangelische Kirche in Mitteldeutschland (EKM), providing a comprehensive interactive map and detailed information about over 4000 churches, monasteries, and chapels in Central Germany. It serves as a cultural and religious tourism portal targeting visitors interested in church architecture, history, and spiritual sites. The platform offers detailed descriptions, opening hours, and contact information, enhancing visitor engagement and community outreach. Technically, the site employs a modern tech stack including Bootstrap, jQuery, Leaflet for mapping, and Matomo for analytics, hosted on Eastlink servers. The site is mobile-optimized with good SEO practices and a professional design, ensuring a positive user experience. The content is rich, well-structured, and consistent with the church's branding. From a security perspective, the site uses HTTPS and implements secure form handling with CSRF tokens. However, it lacks explicit security headers and a published security policy or incident response contacts. Privacy compliance is strong, with a comprehensive privacy policy aligned with GDPR and DSG-EKD standards, though no explicit cookie consent mechanism is present. Overall, the website is trustworthy, professionally maintained, and fulfills its mission effectively. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and user trust.

F

Förderverein Moritzkirche Naumburg (Saale) e.V.

moritzkirche-naumburg.de

49

The website represents the Förderverein Moritzkirche Naumburg (Saale) e.V., a non-profit organization dedicated to preserving and promoting the cultural and religious heritage of the St. Moritz church in Naumburg, Germany. It offers information about church services, exhibitions, concerts, and historical lectures, targeting local visitors and cultural enthusiasts. The site is well-branded and provides clear contact and donation information, reflecting a trustworthy community institution. Technically, the website uses modern front-end technologies such as Bootstrap, jQuery, and slick carousel, delivering a good user experience with mobile optimization and clear navigation. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security-wise, HTTPS is used, but no security headers or vulnerability disclosures are present, indicating room for improvement in security posture. Overall, the site is safe, professional, and credible but would benefit from enhanced privacy and security measures.

K

KS Digital

ksdigital.no

66

KS Digital is a Norwegian government-affiliated digital service provider delivering sustainable shared digital services tailored to the needs of the municipal sector. The company is relatively new, founded in 2024, and targets Norwegian municipalities with digital solutions that align with sector requirements. The website reflects a professional and consistent brand presence with clear messaging about its mission and services. Technically, the site is built on WordPress with modern plugins and frameworks such as React, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, leveraging Yoast SEO and structured data for enhanced search visibility. Security posture is adequate with HTTPS implied, but lacks explicit security headers and detailed security or privacy policies. No forms or direct contact information are present on the homepage, which may impact user engagement and trust. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency.

C

Cloud Security Alliance Norway Chapter

cloudsecurityalliance.no

61

The Cloud Security Alliance Norway Chapter website serves as the local representation of the global Cloud Security Alliance organization, focusing on cloud security education, networking, and community engagement within Norway. Founded in 2015, the chapter provides members with access to events, research, and professional development opportunities in cloud security. The website is hosted on the Higher Logic platform, leveraging ASP.NET WebForms and common web technologies such as jQuery and Bootstrap for its frontend implementation. From a technical perspective, the site employs a moderate technology stack with CDN hosting via Amazon CloudFront, ensuring reasonable performance and availability. While the site is functional and professionally designed, mobile optimization and accessibility are basic, and SEO practices are modest. The site uses HTTPS with good SSL configuration but lacks several recommended security headers, which could enhance its security posture. Security-wise, the website enforces HTTPS and uses Google Tag Manager for analytics and tracking but does not provide explicit security policies, incident response contacts, or vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism or GDPR compliance indicators. The absence of direct contact emails or phone numbers on the homepage limits immediate user engagement but aligns with the community-focused nature of the chapter. Overall, the website is trustworthy and legitimate, consistent with the Cloud Security Alliance brand and its Norway chapter mission. Strategic improvements in security headers, privacy compliance, and mobile accessibility would enhance the site's security posture and user experience.

Lunamag.de is a German online media platform operated by Luna family media GmbH, focusing on family-oriented fashion and lifestyle content. The website targets families, parents, and children with curated articles, trends, and lifestyle advice. It maintains a niche position in the German media market with a small company size and a business model centered on content publishing, advertising, and magazine subscriptions. The company was founded in 2021 and maintains a consistent brand presence across multiple social media platforms.