Security Directory

A

Arendal Hotell AS

hotellarendal.no

71

Hotell Arendal is a hospitality business operating a modern hotel located centrally in Arendal, Norway. Established in 2020 and opened in 2021, it offers 91 hotel rooms and targets travelers and groups seeking accommodation in the city. The website is professionally designed using WordPress with the Divi theme, integrating booking services via Mews, and includes clear contact information and social media presence. The business positions itself as a smart, comfortable, and efficient hotel in the local market. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, and Google Analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is good with HTTPS enabled, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website reflects a legitimate, trustworthy hospitality business with good digital maturity.

A

Arendals Dampskibsselskab AS

ads.no

10

Arendals Dampskibsselskab AS (ADS) is a historic and privately owned shipping company based in Arendal, Norway, with operations dating back to 1857. The company focuses on shipping and offshore project management, investment activities, and outsourcing ship management to industry leaders. ADS manages subsidiaries such as ADS Maritime Holding Plc, a listed investment company, and AET Sea Shuttle AS, specializing in shuttle tankers. The website reflects a professional corporate presence with clear business information and contact details. Technically, the site is built on WordPress with the Divi theme and integrates Google Analytics and consent management tools, indicating a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The lack of WHOIS data limits domain trust verification, but the overall business credibility and website quality are high.

H

Headon Rekruttering

headonrekruttering.no

10

Headon Rekruttering is a newly established Norwegian recruitment agency specializing in headhunting and staffing for communication, marketing, design, and technology roles. The company targets businesses seeking specialists for permanent, freelance, or temporary positions. The website reflects a professional and modern digital presence built on WordPress with Elementor, integrating marketing and analytics tools such as HubSpot and Google Tag Manager. While the site is well-designed and optimized for SEO and mobile use, it lacks explicit privacy and terms of service policies, which are critical for compliance and user trust. Security posture is adequate with HTTPS enforced and cookie consent implemented, but the absence of security headers and incident response information suggests room for improvement. Overall, the domain registration aligns with the business founding date, supporting legitimacy. Strategic enhancements in privacy compliance and security practices would strengthen the company's digital trustworthiness.

V

Vitensenteret Sørlandet

vitensor.no

10

Vitensenteret Sørlandet is a regional science center in Norway offering educational and entertaining science activities for families and children. The website is built on WordPress using the Divi theme and includes common plugins for SEO and GDPR compliance. The technical infrastructure is modern with HTTPS enabled and reCAPTCHA implemented for form security. However, the site lacks visible privacy policy, terms of service, and explicit contact information in the provided HTML content. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, family-friendly, and safe, with a moderate risk profile due to missing compliance documentation.

S

Sitepartner AS

sitepartner.no

10

Sitepartner AS is a Norwegian consulting company specializing in site management, construction management, and project management primarily within the energy and transportation sectors. Founded in 2015, the company offers expert consultancy services to project owners, contractors, and suppliers involved in energy, rail, and network expansion projects. Their website reflects a professional and consistent brand presence with clear service offerings and client references. The company targets infrastructure and energy sector clients in Norway, positioning itself as a niche player with practical experience and high competence. Technically, the website is built on WordPress with modern JavaScript libraries such as Alpine.js and Splide.js, and integrates Google Tag Manager and GDPR-compliant cookie management via Complianz. The site is mobile-optimized, has good SEO practices, and loads with moderate performance. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear cookie and privacy policies. Contact information is comprehensive, including multiple emails, phone numbers, and social media links. The domain age and WHOIS data support the legitimacy of the business. No critical issues or blocking mechanisms were detected, allowing full content accessibility. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response contacts, and maintaining regular updates to plugins and themes to mitigate vulnerabilities. These steps will further strengthen trust and security culture while supporting compliance and operational resilience.

F

Flaggstangsfabrikken

flaggstangsfabrikken.no

10

Flaggstangsfabrikken is a Norwegian retail business specializing in the sale of flagpoles and flags at competitive prices. The company offers additional services including delivery and professional installation, supported by a 12-year warranty on their flagpoles. Their market positioning focuses on affordability and quality within the Norwegian market. The website is built on a WordPress WooCommerce platform, leveraging popular plugins such as Elementor for design and Woolentor for enhanced e-commerce features. Google Tag Manager is used for analytics and marketing, with GDPR consent mechanisms in place to restrict tracking in European regions. Security posture is solid with HTTPS and standard security headers implemented, though explicit privacy and terms of service policies are absent, which is a compliance gap. Overall, the site presents a professional and trustworthy e-commerce presence suitable for its target audience.

M

Modum Brannstiger

modumbrannstiger.no

51

Modum Brannstiger is a Norwegian company specializing in manufacturing and supplying fire escape ladders and related safety equipment for various building types across Norway. The company offers both traditional and custom solutions including foldable fire ladders with or without back protection, inspection ladders, escape stairs, and balconies. The website reflects a niche market position focused on safety and compliance with Norwegian building regulations. Technically, the website is built on WordPress using Elementor and integrates modern SEO and analytics tools such as Yoast SEO, Google Tag Manager, Google Analytics, and Plausible Analytics. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved and formal security policies published. Overall, the website presents a professional and trustworthy digital presence consistent with a newly founded small manufacturing business.

Ø

Økologisk Norge

okologisknorge.no

55

Økologisk Norge is a Norwegian non-profit organization dedicated to promoting organic agriculture, biodiversity, and sustainable food practices. The website serves as an educational and community platform offering resources for organic farmers, schools, and consumers interested in organic products. It has an established presence since 2010 and targets a Norwegian audience with content primarily in Norwegian. The organization encourages membership and supports various organic initiatives including school gardens and events like ØKOUKA. Technically, the website employs modern tracking and marketing tools such as Google Tag Manager, Facebook SDK, and Mailchimp, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and SEO practices, although no explicit CMS or hosting provider information is detected. Cookie consent is implemented via a third-party service, but explicit privacy and terms of service pages are missing. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is consistent with the organization's identity and domain age is appropriate, supporting legitimacy. Overall, the website is professional and trustworthy with good content quality and business credibility. However, it would benefit from enhanced privacy compliance, explicit security policies, and improved security headers to strengthen its security posture and regulatory adherence.

E

Eyde-klyngen

eydecluster.com

52

Eyde-klyngen is a Norwegian cluster organization focused on fostering growth and competitiveness in the green process industry sector. Established in 2007, it serves as a collaborative platform for core companies and competence providers to develop sustainable industrial solutions. The website presents a professional and well-structured digital presence, leveraging modern web technologies and CMS (Umbraco), with good mobile optimization and accessibility. Security posture is strong with HTTPS and security headers properly implemented. However, the absence of a publicly accessible privacy policy and terms of service pages, combined with missing WHOIS registration data, introduces concerns regarding compliance and domain legitimacy. Social media integration and event information enhance engagement with the target audience. Overall, the website reflects a credible and established business entity within the Norwegian energy and manufacturing sectors.

A

Arendal Næringsforening

arendalnaeringsforening.no

53

Arendal Næringsforening is a well-established regional business association founded in 2005, focused on promoting the interests of the business community in the Arendal region of Norway. The organization operates a membership model, offering networking events, business advocacy, and youth engagement through its ANF UNG initiative. The website reflects a professional and consistent brand presence with active content such as news updates and event listings, targeting local businesses and professionals. Technically, the site employs modern web technologies including Google Tag Manager and Facebook SDK for analytics and marketing, with a responsive design and basic accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not publicly disclosed. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

X

XENOMEDIA internetbureau

xenomedia.nl

56

XENOMEDIA internetbureau is a well-established Dutch digital services company specializing in web design, online marketing, hosting, and communication services. With over 25 years of experience, it targets small to medium businesses and multinationals, offering a comprehensive suite of services including website and webshop development, Microsoft 365 solutions, and marketing communications. The company maintains a professional online presence with clear branding and consistent messaging. Technically, the website is built primarily on Drupal 9 with WordPress components, leveraging modern web technologies and third-party services such as Google Tag Manager and WP Statistics for analytics. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and explicit incident response policies suggests room for improvement. Privacy compliance is adequate with clear privacy and cookie policies, but lacks an active cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

Total Bank

totalbank.com.br

64

Total Bank is a Brazilian financial technology company offering an integrated banking management system for businesses. Their platform consolidates multiple bank accounts, facilitates payment processing, billing, and financial reporting, targeting companies seeking streamlined banking operations. The website is built on WordPress and hosted on AWS, leveraging common web technologies and marketing tools such as Google Tag Manager and Hotjar. While the site is professionally designed and mobile-optimized, it lacks published privacy and cookie policies, which are important for compliance and user trust. Security posture is generally good with HTTPS enforced, but could be improved by adding security headers and incident response information. Overall, the site is safe, business-focused, and moderately trustworthy, with room for compliance and security enhancements.

W

Web Best Practice LTD

webbestpractice.co.uk

47

Web Best Practice LTD is a UK-based web development company with over 20 years of experience, specializing in web design, digital marketing, and branding services. The company targets businesses primarily in Manchester and across the UK, offering a full in-house team and a portfolio of over 1000 websites. The website is professionally designed, mobile optimized, and includes comprehensive customer reviews and contact options. Technically, the site uses modern web technologies and tracking tools such as Google Tag Manager, Facebook Pixel, and Mouseflow, with appropriate privacy and cookie consent mechanisms in place. Security posture is good with HTTPS and reCAPTCHA implemented, though explicit security headers are not detected and could be improved. WHOIS data is unavailable due to domain naming rules violation, which raises some legitimacy concerns, but the website content and business information appear consistent and trustworthy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

S

SiteCockpit

sitecockpit.com

55

SiteCockpit is a professional SaaS provider specializing in digital accessibility solutions, offering products such as accessibility widgets, monitoring tools, and statement generators. The company targets businesses and website owners aiming to comply with accessibility regulations and improve user experience. Their market position is that of a specialized technology provider with integrations across major CMS and e-commerce platforms. Technically, the website employs modern JavaScript frameworks like Alpine.js, integrates with HubSpot for marketing and analytics, and uses Usercentrics for consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the website is well-designed, mobile-optimized, and GDPR-compliant, supporting a high level of trust and professionalism. However, the absence of WHOIS data slightly reduces transparency and trustworthiness. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and incident response contacts to enhance security posture and trust.

H

Hagemeister GmbH & Co. KG

hagemeister.de

62

Hagemeister GmbH & Co. KG is a German manufacturing company specializing in clinker bricks, including facade clinker, paving clinker, shaped clinker, and functional clinker bricks. The company targets architects, builders, and construction professionals, providing high-quality building materials that contribute to aesthetic and functional construction projects. Their website reflects a professional and consistent brand image with a clear focus on their product offerings and services. Technically, the website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager, HubSpot, and Cookiebot for analytics, marketing, and cookie consent management. The site is mobile-optimized with good SEO and accessibility features, providing a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security policies and incident response contacts are not found, which could be improved. The domain registration data is consistent with the business identity, indicating legitimacy and trustworthiness. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security policy transparency and technical performance could further enhance trust and resilience.

D

Domain-Offensive

do.de

77

Domain-Offensive is a German-based domain registration and web hosting provider offering affordable, secure, and climate-neutral services including domain hosting, webspace, DNS, SSL, and email solutions. The company operates under Greenmark IT GmbH and targets individuals and businesses seeking reliable web project partners. The website demonstrates a mature digital infrastructure built on WordPress with Elementor and Yoast SEO, optimized for performance and mobile responsiveness. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and a comprehensive cookie consent mechanism compliant with GDPR. While explicit security headers could be enhanced, the overall security posture is solid with no evident vulnerabilities. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

FRAMETRAXX UG (haftungsbeschränkt)

frametraxx.de

54

FRAMETRAXX UG operates a specialized e-commerce platform offering royalty-free (gemafreie) music for various applications including YouTube, advertising, film, and commercial use. The company targets content creators, agencies, and businesses seeking legally secure music licensing solutions. Their market position is that of a niche provider with a comprehensive catalog and clear licensing models, supported by a professional website and trusted client logos. Technically, the website is built on the Gambio e-commerce platform with modern JavaScript libraries and Google Tag Manager integration, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

B

Brangs + Heinrich

brangs-heinrich.de

55

Brangs + Heinrich is a German-based company specializing in packaging solutions, including stretch films and other protective packaging materials. The company targets business customers requiring packaging and securing products, positioning itself as a solutions provider in the manufacturing sector. The website is built on WordPress with a moderate technical infrastructure, including common plugins for multilingual support, forms, and search functionality. The use of Cookiebot for cookie consent demonstrates a commitment to privacy compliance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers are not detected and incident response information is absent. Overall, the website is professional and trustworthy, with room for improvement in explicit contact information and security policies.

I

Institut der deutschen Wirtschaft

iwd.de

45

The website www.iwd.de serves as the information service of the Institut der deutschen Wirtschaft, providing up-to-date economic analyses, research results, and background information on current economic topics primarily focused on Germany and Europe. It targets professionals, policymakers, academics, and the general public interested in economic affairs. The business model revolves around disseminating economic knowledge through articles, dossiers, newsletters, and interactive graphics, positioning itself as a reputable and authoritative source in the German economic research landscape. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript, CSS, and integrates analytics tools such as Matomo and Google Tag Manager. It employs Usercentrics for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine visibility. Hosting is managed via domaincontrol.com (GoDaddy), a common and reliable provider. From a security perspective, the website enforces HTTPS with a strong SSL configuration and uses consent management for cookies, reflecting good privacy practices. However, it lacks explicit security headers and published security policies or incident response contacts, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The site demonstrates a moderate to high security posture but could enhance transparency and technical security controls. Overall, www.iwd.de is a professional, trustworthy, and content-rich platform with strong compliance to privacy regulations and a solid technical foundation. Strategic recommendations include implementing security headers, publishing a security policy and incident response information, and adding a security.txt file to facilitate vulnerability disclosures. These steps would further strengthen the site's security posture and trustworthiness.

S

Superchat

superchat.de

66

Superchat is a German-based technology company specializing in AI-powered messaging solutions for businesses. Their platform integrates popular communication channels such as WhatsApp Business to streamline customer interactions, automate follow-ups, and enhance sales and support processes. The company targets a broad range of industries and team functions, positioning itself as a comprehensive B2B SaaS provider with a strong focus on GDPR compliance and customer experience. Technically, the website is built on modern frameworks like Next.js and React, hosted on AWS infrastructure, and employs consent management tools to comply with privacy regulations. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and policies are not publicly visible. Overall, the site demonstrates professional design, excellent content quality, and strong market positioning, but could improve transparency by publishing privacy policies and security disclosures.

A

Anschütz GmbH

anschuetz.com

69

Anschütz GmbH is a well-established German company specializing in maritime navigation systems, including gyro compasses, integrated bridge systems, autopilots, and radar systems. With over 100 years of expertise, it serves a global maritime audience including commercial shipping, naval forces, and specialized vessels. The company operates multiple subsidiaries internationally, reflecting a medium-sized enterprise with a strong market position in the transportation sector. The website is professionally designed, content-rich, and optimized for user experience and SEO, leveraging TYPO3 CMS and modern web technologies. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and GDPR adherence. Security posture is good with HTTPS and privacy-respecting analytics, though some security headers and explicit policies could be improved. The absence of WHOIS registration data is a notable concern, suggesting a need for further verification of domain legitimacy. Overall, the site reflects a credible and professional business presence with minor gaps in transparency and security documentation.

P

PMG Holding

holdingpmg.com

52

PMG Holding operates as a physical supplier of marine bunker fuels in the Black Sea region, offering products such as Marine Bunker Fuel Oil and Marine Gasoil. Additionally, the company engages in global cargo trading, positioning itself as a niche player in the energy and transportation sectors. The website is professionally designed using the Wix platform, featuring structured data for local business identification and basic SEO metadata. Technical infrastructure relies on Wix's hosting and content management services, with Google Tag Manager integrated for analytics. Security posture is moderate, with HTTPS implied but lacking explicit security headers and policies. Privacy and cookie policies are absent, indicating compliance gaps. Contact information is minimal, limited to a phone number in structured data. The domain WHOIS data is unavailable, raising concerns about domain registration legitimacy. Overall, the website presents a professional front but requires improvements in compliance, security transparency, and domain legitimacy verification.

A

Alpha Group

alphagroup.com

74

Alpha Group is a UK-based financial services company specializing in providing comprehensive financial solutions to corporates and institutions operating internationally. The company combines fintech innovation with consultancy expertise to deliver services such as FX risk management, currency management, interest rate hedging, and multi-bank connectivity. Listed on the FTSE 250 and backed by institutional investors, Alpha Group holds a strong market position with a global reach through multiple international offices. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the website is built on WordPress with modern libraries and tools including Google Tag Manager and OneTrust for cookie consent, indicating a commitment to privacy compliance and user experience. The site is mobile optimized and SEO friendly, with comprehensive metadata and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, implements key security headers, and provides regulatory and security information transparently. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data is a concern that slightly impacts trustworthiness, though the overall security posture is strong. Overall, Alpha Group's website demonstrates a professional, secure, and compliant digital platform suitable for its target audience of corporate and institutional clients. Strategic recommendations include improving WHOIS transparency, enhancing incident response visibility, and maintaining up-to-date security practices.

Z

Zukunftsindustrie.de

zukunftsindustrie.de

53

Zukunftsindustrie.de is a German career portal focused on the metal and electrical industries, emphasizing opportunities in the energy transition and high-tech sectors. The website serves as an information hub and job portal targeting professionals and job seekers interested in these industries. The platform is positioned as a niche resource supporting industry growth and workforce development in Germany. Technically, the site is built on ASP.NET Web Forms, uses Cookiebot for GDPR-compliant cookie management, and integrates Google Tag Manager and Google Analytics for tracking and marketing purposes. Hosting is managed via internet1.de, with proper SSL and security headers implemented, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement, CSRF protections, and cookie consent mechanisms, though the site lacks a publicly available security policy or incident response contacts. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with moderate tracking and advertising transparency. Recommendations include publishing explicit security and incident response policies, improving accessibility, and maintaining regular audits of third-party scripts to enhance security further.

D

Domain-Offensive

domainoffensive.de

77

Domain-Offensive is a German-based domain registration and web hosting provider offering affordable, secure, and climate-neutral services including domain hosting, webspace, DNS, SSL certificates, and email solutions. The company operates under Greenmark IT GmbH and targets individuals and businesses seeking reliable web project support. The website is built on WordPress with modern plugins such as Elementor and Yoast SEO, optimized for performance and mobile responsiveness. Security measures include HTTPS enforcement, GDPR-compliant cookie consent, and Google reCAPTCHA integration for form protection. While no explicit security policy or incident response contacts are published, the overall security posture is strong with good SSL configuration and security headers. The domain registration data aligns well with the business claims, indicating legitimacy and transparency.

G

Gute Botschafter GmbH

gute-botschafter.de

47

Gute Botschafter GmbH is a German-based medium-sized company specializing in brand positioning and marketing communication services. Their website presents a professional and comprehensive overview of their offerings, targeting primarily medium-sized enterprises and non-profit organizations. The company emphasizes authentic and sustainable brand communication, supported by a multidisciplinary team. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and Lottie animations, with Google Tag Manager integrated for analytics and marketing purposes. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security-wise, the site uses HTTPS and includes a consent mechanism for tracking but lacks explicit privacy and terms of service pages, as well as some security headers, which are areas for improvement. WHOIS data aligns well with the business claims, indicating a legitimate and consistent domain registration. Overall, the website scores well on content quality, business credibility, and technical implementation, with moderate scores on security posture and privacy compliance.

U

United4Rescue – Gemeinsam Retten e.V.

united4rescue.org

58

United4Rescue is a German non-profit alliance dedicated to supporting civilian sea rescue operations in the Mediterranean. The organization connects various societal groups and NGOs to raise awareness and funds to prevent loss of life at sea. Their business model relies on donations, memberships, and fundraising campaigns, supported by an online shop selling branded merchandise. The website is professionally designed, multilingual, and provides clear navigation and relevant content for its humanitarian mission. Technically, the site uses modern tracking and consent tools, hosted by a German provider, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent, though some security headers and DNSSEC could be improved. No direct contact emails or phone numbers are publicly listed, but contact forms and social media channels are available. WHOIS data aligns well with the organization's profile, indicating legitimacy and consistency. Overall, the website is trustworthy, compliant with GDPR, and effectively supports the organization's mission.

S

Schwing Stetter (UK) Ltd

schwing-stetter.co.uk

51

Schwing Stetter (UK) Ltd is a well-established manufacturer and supplier specializing in concrete production and placement equipment, including concrete pumps, batching plants, truck mixers, and concrete recyclers. The company positions itself as a global leader in the concrete equipment industry, serving primarily construction professionals and contractors in the UK. Their business model focuses on manufacturing, distribution, and after-sales services, supported by a professional and content-rich website that reflects their market position. Technically, the website employs modern web technologies such as Google Tag Manager, reCAPTCHA, and service workers, ensuring a secure and user-friendly experience. The site is mobile-optimized with good SEO practices and clear navigation, although some improvements in accessibility and security headers could enhance the overall technical posture. From a security perspective, the site uses HTTPS and implements reCAPTCHA on its contact forms, indicating a baseline security awareness. However, the absence of explicit security policies, incident response contacts, and security headers suggests room for improvement in security maturity. The WHOIS lookup failed due to querying a subdomain rather than the registered domain, but this does not detract from the legitimacy of the business as evidenced by the professional website and consistent branding. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to further strengthen the security posture.

Schwing Stetter Brasil is a well-established manufacturer and provider of concrete and industrial pumping equipment, serving sectors such as construction, mining, sanitation, oil & gas, industry, and agriculture. With over 80 years of history, the company maintains a strong market position in Latin America, supported by a dealer network and technical training programs. The website reflects a mature digital presence with detailed product information, multilingual support, and active marketing efforts. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Analytics, hosted by RedeHost in Brazil. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is evident with a comprehensive privacy policy and cookie banner. Overall, the domain registration and hosting details align well with the business profile, indicating legitimacy and trustworthiness.

興

興隨興展覽股份有限公司

thetw.com

57

興隨興展覽股份有限公司是一家專注於國際大型及海外國際展覽代理與組展服務的公司，涵蓋安全器材、消費性電子、汽車零配件、專業機械、船舶及農機等多個領域。公司在美國CES及歐洲IFA Berlin等重要國際展覽中擔任主要組展單位，具備良好的市場地位和專業服務能力。網站內容豐富，針對企業及展覽參展商提供多元展覽服務與設計方案，並有深圳子公司支持中國大陸市場。技術基礎穩健，採用多種現代前端技術與分析工具，網站設計專業且具良好用戶體驗，支持多語言切換，並符合基本的隱私與GDPR要求。安全方面，網站使用HTTPS，實施Cookie同意機制，但缺乏明確的安全政策與事件響應資訊，且WHOIS資料缺失，對域名註冊狀態造成信任疑慮。整體風險中等，建議加強安全政策透明度及域名註冊資訊核實。

I

Intermundio

intermundio.com

46

Intermundio is a small Dutch company specializing in trade fairs, industry publications advertising, and export consultancy services aimed at helping businesses open new markets. The company has a well-established online presence with a domain registered since 2000, reflecting its longevity and market experience. The website is professionally designed with good navigation and mobile optimization, targeting businesses seeking market expansion. Technically, the site uses Drupal 9 CMS with integrations of WordPress plugins, jQuery, Bootstrap, Google reCAPTCHA, and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is basic with HTTPS enabled and reCAPTCHA protecting forms, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy but could improve in security and compliance aspects.

S

SuprNation

suprnation.io

49

SuprNation is a Malta-based technology company specializing in the iGaming sector, founded in 2015. It operates multiple casino brands and positions itself as an innovator aiming to improve user and gaming experiences. The website is professionally designed using WordPress and integrates modern tools like Google Tag Manager and Visual Composer. Contact information and social media presence are clearly provided, enhancing business credibility. However, the absence of privacy and cookie policies indicates compliance gaps that should be addressed. Security posture is adequate with HTTPS enabled but could be improved by enabling DNSSEC and adding security headers. Overall, the website reflects a medium-sized, credible business with a focus on innovation in iGaming.

H

Hard Rock

hardrock.com

71

Hard Rock is a globally recognized brand specializing in hospitality, entertainment, gaming, and retail services. Their website showcases offerings including hotels, casinos, cafes, and live entertainment venues, positioning them as a leader in the hospitality industry. The site is professionally designed with consistent branding and targets a general audience interested in entertainment and hospitality experiences. Technically, the website employs modern technologies such as YouTube and Vimeo APIs, Microsoft Clarity for analytics, Google Tag Manager, and Tealium for tag management, indicating a mature digital infrastructure. The site uses HTTPS with SSL enforced, ensuring secure communications. However, the absence of explicit privacy and cookie policies, as well as missing contact information, indicates gaps in privacy compliance and user trust facilitation. The WHOIS data is unavailable or protected, which limits domain registration transparency but does not detract significantly from the site's legitimacy given the brand's global presence. Overall, the website demonstrates a good security posture but would benefit from enhanced privacy disclosures and clearer contact channels.

W

We Level Up Addiction & Mental Health Treatment

welevelup.com

60

We Level Up Treatment Centers is a well-established healthcare provider specializing in addiction treatment and mental health support across the United States. Founded in 2014, the company operates a national network of treatment centers offering comprehensive and compassionate care tailored to individual needs. Their market position is strong, supported by multiple trust indicators such as accreditation logos and extensive video testimonials. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses reputable services such as Cloudflare for DNS and Google Analytics for tracking. The site is well-optimized for performance, mobile responsiveness, and SEO. Security posture is good with HTTPS enforced and domain locks in place, though improvements are recommended in DNSSEC and security headers. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the website presents a professional and trustworthy front for its healthcare services.

C

Cornerstone OnDemand

saba.com

74

Cornerstone OnDemand is a leading enterprise software company specializing in Human Capital Management (HCM) solutions. Their platform offers comprehensive talent management services including learning and development, performance management, recruiting, and onboarding, enhanced by AI capabilities. The company targets HR professionals and large organizations seeking scalable, skills-forward workforce solutions. Their market position is strong as an established leader in the HCM SaaS space with a global presence and recognized certifications such as ISO 27001. Technically, the website leverages modern web technologies including React and Next.js, with integrations for analytics and marketing tools like Google Tag Manager, Visual Website Optimizer, and Vidyard. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security best practices are observed with HTTPS enforcement and appropriate security headers, although explicit security and incident response policies are not prominently published. The security posture is robust with no evident vulnerabilities or exposed sensitive data. Privacy compliance is supported by comprehensive privacy and cookie policies with consent mechanisms, aligning with GDPR requirements. However, the absence of WHOIS data limits domain registration trust verification, which is a minor concern given the professional nature of the site and business. Overall, Cornerstone OnDemand presents a trustworthy and professional online presence with strong business credibility and technical maturity. Strategic recommendations include publishing detailed security policies, incident response contacts, and a vulnerability disclosure program to enhance transparency and trust further.

M

Mainostoimisto Puisto Oy

puistonpenkki.fi

56

Mainostoimisto Puisto Oy is a Finnish creative agency based in Rovaniemi, specializing in branding, digital marketing, graphic design, content creation, and concept development. The company has a well-established market presence since 2008, serving a diverse clientele with a focus on sustainable and creative communication solutions. Their website reflects a professional and consistent brand image, targeting businesses and organizations seeking comprehensive marketing services. Technically, the website is built on the concrete5 CMS platform, leveraging modern JavaScript libraries and marketing tools such as Google Analytics, Google Tag Manager, Hotjar, and CookieYes for cookie consent management. The site is mobile-optimized and accessible, with good SEO practices implemented. Security-wise, the website enforces HTTPS and uses cookie consent mechanisms, though it lacks explicit security headers and documented incident response policies. Overall, the domain registration details align well with the business claims, indicating a legitimate and trustworthy online presence.

C

CPR Certification Institute

cprcertification.com

48

CPR Certification Institute operates a professional online platform offering CPR, First Aid, Bloodborne Pathogens, Infant CPR, and Babysitting certification and recertification courses. The business targets individuals and groups seeking convenient, accredited training based on American Heart Association guidelines. Their market position is that of a trusted online education provider with nationwide acceptance and medical professional endorsement. Technically, the website uses a concrete5 CMS with modern JavaScript libraries and Google Analytics for tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and secure payment gateways, though improvements could be made by adding security headers and cookie consent mechanisms. The absence of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and professional. Overall, the site is well designed and functional, serving its educational purpose effectively.

P

Puukattila Maga-Finland

maga-finland.fi

58

Puukattila Maga-Finland operates as the official reseller of Maga wood boilers in Finland, providing durable and efficient heating solutions tailored for Finnish consumers. The website presents a clear business focus on energy sector products, specifically heating systems, and targets a local Finnish audience. The company positions itself as a trusted distributor with a focus on quality and reliability. Technically, the website is built on the Wix platform, leveraging standard Wix scripts and Google Tag Manager for analytics and marketing. The site is mobile-optimized and uses HTTPS, indicating a baseline level of digital maturity. However, the absence of privacy and cookie policies, as well as lack of explicit security incident response information, suggests gaps in compliance and security transparency. Overall, the security posture is moderate with room for improvement in security headers and compliance documentation. The website is safe for general audiences and does not contain any adult or questionable content.

S

Objev svůj potenciál | SIT Port

sitport.cz

43

SIT Port is a Czech-based platform focused on enabling individuals to discover, create, and advance their projects. The website presents a modern and professional design built on the Framer platform, utilizing contemporary fonts and tracking technologies such as Google Analytics and Microsoft Clarity. The domain is registered since 2019 with consistent WHOIS data and Cloudflare DNS, indicating legitimate and stable hosting. However, the site lacks critical compliance documents such as privacy and cookie policies, and no contact information is provided, which limits trust and transparency. Security posture is moderate with HTTPS implied but no visible security headers or incident response information. Overall, the site serves its business purpose well but requires improvements in privacy, security, and contact transparency to enhance user trust and compliance.

A

AMCS

amcsgroup.de

69

AMCS is a large international technology company specializing in performance sustainability software and intelligence solutions primarily for sectors such as waste management, recycling, transport, chemical, manufacturing, and utilities. The company offers B2B software solutions aimed at improving operational efficiency, compliance, and sustainability. The website demonstrates a mature digital presence with multiple regional contact points and active social media channels, indicating a well-established market position. Technically, the website uses modern web technologies including JavaScript, Google Tag Manager, Cookiebot for consent management, and Pardot for marketing automation. The CMS detected is Umbraco, a professional content management system. The site is mobile optimized and SEO friendly with appropriate meta tags and structured data, although some accessibility features are basic. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS registration data is a concern but may be due to privacy protection or data source limitations. Overall, AMCS presents a professional and trustworthy online presence with good privacy compliance and security posture, though improvements in transparency around privacy policies, terms of service, and security disclosures are recommended to enhance trust and compliance.

T

Terberg HS GmbH

terberg-hs.de

69

Terberg HS GmbH is a well-established German company specializing in the manufacture and service of advanced waste disposal vehicles, with over 150 years of industry experience. The company operates globally, targeting municipalities and private waste management firms, and is part of the Royal Terberg Group. Their product portfolio includes side loaders, rear loaders, and front loaders, supported by service and rental offerings. The website reflects a mature business with a professional digital presence, leveraging modern web technologies and multiple analytics tools with GDPR-compliant consent management. Security posture is solid with HTTPS and anonymized tracking, though some improvements in security headers and incident response transparency are recommended. Overall, the domain and business information align well, supporting a high legitimacy score.

A

ASUP Online-Shop

asup.info

61

ASUP Online-Shop is a German B2B e-commerce platform specializing in professional work safety equipment and disposal products, including Big Bags and technical equipment. The company claims over 20 years of experience and targets business customers exclusively, offering a broad product range and services such as free shipping over a threshold and a 30-day money-back guarantee. The website is well-branded and professionally designed, with clear navigation and mobile optimization. Technically, it uses the Shopware CMS platform, integrates multiple analytics and marketing tools including Matomo, Google Tag Manager, and Pardot, and supports live chat via Tawk.to. Security posture is good with HTTPS enforced and secure forms, though some security headers are missing and privacy policies are not explicitly found in the provided content. WHOIS data is privacy protected by Identity Digital, which is typical for commercial domains, and no suspicious patterns were detected. Overall, the site is trustworthy and professionally maintained.

P

PAULY Rechtsanwälte Köln

pauly-rechtsanwaelte-koeln.de

58

PAULY Rechtsanwälte Köln is a small law firm specializing in environmental and energy law based in Cologne, Germany. The website presents a professional appearance using WordPress with the Avada theme and includes SEO optimization via Rank Math PRO. The technical infrastructure includes Google Tag Manager for analytics and Borlabs Cookie for cookie consent management. However, the site lacks explicit privacy policy and terms of service pages, and no direct contact information such as emails or phone numbers were found in the provided content. Security posture is moderate with no detected security headers and unknown SSL configuration. WHOIS data is minimal with generic hosting name servers and no detailed registrant information, which slightly reduces trustworthiness. Overall, the website is functional and professionally designed but would benefit from enhanced transparency and security practices.

E

EarthRanger

earthranger.com

66

EarthRanger is a technology company specializing in real-time wildlife and ecosystem monitoring software designed to support protected area managers, ecologists, and wildlife biologists globally. The platform integrates diverse data sources such as GPS collars, IoT sensors, camera traps, and satellite imagery to provide actionable insights for conservation efforts. With over 750 conservation sites supported and 23,000 animals tracked, EarthRanger holds a strong position in the conservation technology market. The website reflects a professional and modern digital presence, emphasizing data-driven conservation impact and collaboration.

F

FAUN Group

faun.com

56

FAUN Group operates as a manufacturer specializing in waste collection vehicles and sweepers, serving a global market with a strong presence in Germany. The company offers a range of products including VARIOPRESS, ROTOPRESS, POWERPRESS, and CITY series vehicles, alongside specialized lifters and sweeping machines. Their business model focuses on manufacturing, sales, service, and training, supported by digital vehicle management solutions. The website reflects a professional and consistent brand image with good content quality and clear navigation, targeting municipalities and waste management companies. Technically, the website is built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, TikTok Pixel, and LinkedIn Insight Tag. The site is mobile optimized and uses HTTPS, though some security headers are not explicitly detected. Cookie consent mechanisms are implemented, but privacy and terms of service documents are not clearly found, indicating room for compliance improvement. Security posture is generally good with HTTPS and no visible vulnerabilities, but the absence of WHOIS data and lack of explicit security policies or incident response contacts reduce trust slightly. The extensive use of tracking pixels suggests moderate to extensive user tracking, which should be balanced with stronger privacy disclosures. Overall, the website is professional and functional, but improvements in transparency, privacy policy publication, and security header implementation are recommended to enhance trust and compliance.

A

ams Umweltschutz GmbH

amsberlin.de

60

ams Umweltschutz GmbH is a medium-sized German company specializing in asbestos disposal, protective clothing, respiratory protection, and environmental remediation products. Established in 1983, it serves primarily B2B customers in the construction and environmental sectors. The website is professionally designed using WordPress with modern SEO and privacy compliance tools, including GDPR-compliant cookie consent and contact forms protected by CAPTCHA. The company maintains a clear and accessible contact structure with multiple communication channels and social media presence. Technically, the site uses a solid tech stack with WordPress plugins and Google Analytics for tracking, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, secure forms, and cookie management, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, compliant, and well-positioned in its niche.

PALFINGER is a globally recognized enterprise specializing in innovative and reliable cranes, aerial work platforms, and lifting solutions for commercial vehicles and maritime applications. The company holds a strong market position as a leading manufacturer in the transportation and manufacturing sectors, targeting industrial clients and maritime businesses primarily in German-speaking regions. The website reflects a mature digital presence with comprehensive product information, service offerings, and corporate communications tailored to its audience. Technically, the website employs modern web technologies including Bootstrap, Pimcore CMS, and integrates Google Tag Manager and OneTrust for analytics and privacy compliance. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Security measures such as HTTPS enforcement and security headers are properly implemented, although explicit public security policies and vulnerability disclosure mechanisms are not prominently available. From a security perspective, the site shows a solid posture with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data is likely due to privacy protection services, which is common for large enterprises. Overall, the risk profile is low, with recommendations to enhance transparency around security incident response and vulnerability disclosures. Strategically, PALFINGER should continue to strengthen its security communication and consider publishing a vulnerability disclosure policy to build further trust. Maintaining and updating privacy and security practices will support compliance and customer confidence in an increasingly regulated environment.

C

Craemer GmbH

craemer.com

46

Craemer GmbH is a German manufacturing company specializing in metal forming, plastic processing, and tool making. Their website highlights key products such as plastic pallets and boxes, targeting industrial and commercial customers. The site is professionally designed with multi-language support and modern marketing and analytics tools, indicating a mature digital presence. However, the absence of publicly available WHOIS data raises questions about domain registration transparency. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks comprehensive security headers and explicit privacy policies. Contact information is not clearly provided, which may affect user trust and compliance. Overall, the website presents a credible business front but would benefit from enhanced transparency and security documentation.

RECYCLING magazin is a German media publication specializing in news, analysis, and information related to the recycling and circular economy sectors. The website serves professionals and stakeholders interested in sustainability and environmental topics, offering industry news, event information, advertorials, and newsletters. It holds a solid market position as a niche media outlet in Germany. Technically, the site is built on WordPress using Elementor and Yoast SEO, with integrations for Google Tag Manager and Borlabs Cookie for privacy compliance. The site is well-optimized for SEO and mobile devices, with moderate performance and basic accessibility features. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

S

Stiftung Creative Kirche

chormusicals.de

57

The website www.chormusicals.de represents the Stiftung Creative Kirche, a well-established non-profit organization focused on producing and promoting choir musicals across Germany. With over 30 years of experience, the organization offers cultural musical events, choir participation opportunities, and ticket sales. The site is professionally designed, content-rich, and targets choir enthusiasts and audiences interested in musical theater. Technically, the site is built on TYPO3 CMS and integrates modern JavaScript libraries and privacy-respecting analytics tools such as Matomo. The presence of a cookie consent mechanism via Klaro demonstrates a commitment to privacy compliance. Security posture is solid with HTTPS enforced, though some HTTP security headers are not visibly implemented. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.