Security Directory

The British Council Latvia website serves as the official online presence of the British Council's Latvian branch, promoting cultural, educational, and artistic exchange between the UK and Latvia. The organization operates as a non-profit entity focused on fostering trust and understanding through arts, education, and creative skills development. The website reflects a medium-sized organization with consistent branding and professional content tailored to Latvian residents interested in British cultural programs. Technically, the website is built on the Drupal CMS platform, integrating modern technologies such as Google Tag Manager and OneTrust for cookie consent management. Hosting appears to leverage Akamai's CDN services, contributing to moderate performance and good mobile optimization. The site includes comprehensive privacy and cookie policies, demonstrating GDPR compliance and user consent mechanisms. From a security perspective, the site enforces HTTPS, employs security headers, and avoids exposing sensitive data. However, it lacks explicit security policies or incident response contacts, which could enhance transparency and trust. No vulnerabilities or suspicious activities were detected in the accessible content. Overall, the website presents a trustworthy and professional digital presence aligned with the British Council's global standards. The absence of WHOIS data limits domain registration analysis, but the site's content and branding strongly support its legitimacy. Strategic recommendations include publishing a formal security policy, adding vulnerability disclosure information, and providing incident response contacts to further strengthen security posture and user trust.

D

Durham University

dur.ac.uk

65

Durham University operates as a prestigious higher education institution in the United Kingdom, offering a wide range of undergraduate, postgraduate, and research programs. The website reflects a mature digital presence with comprehensive content targeting prospective students, current students, researchers, and alumni. The institution emphasizes global partnerships, student support, and research impact, positioning itself as a leading academic entity. The domain's long registration history and direct registration with Nominet reinforce its legitimacy and trustworthiness. Technically, the website employs modern JavaScript frameworks, integrates multiple analytics and tracking tools, and is optimized for mobile and accessibility standards. However, explicit privacy, cookie, and security policies are not evident in the provided content, which may impact compliance and user trust. Security posture is strong with HTTPS and best practices observed, but could be improved with clearer policy disclosures and security headers. Overall, the website is professional, content-rich, and credible, with room for enhanced privacy transparency and incident response readiness.

C

Collector

collector.lv

49

Collector.lv is an e-commerce retail website specializing in products for coin and banknote collectors. The site offers a wide range of numismatic supplies including coins, albums, coin boxes, capsules, magnifiers, and literature. The business targets collectors primarily in Latvia but offers international shipping, positioning itself as a niche market player in the numismatic retail sector. The website is professionally designed with clear navigation, multilingual support (English and Latvian), and a product-rich catalog. Technical infrastructure is based on Magento CMS with common frontend libraries such as jQuery and Prototype.js, and integrates Google Analytics and Tag Manager for tracking. Security posture is adequate with HTTPS enabled and cookie consent implemented, though lacks some advanced security headers. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site presents a legitimate and professional online retail presence with room for improvement in privacy policy transparency and security header implementation.

N

Neomājas

neomajas.lv

47

Neomājas is a Latvian company specializing in the sale and installation of wooden garden houses, saunas, garages, playgrounds, and related wooden constructions. The company targets customers in Latvia and surrounding regions seeking quality wooden leisure and garden products. Their business model combines e-commerce with direct sales and installation services, positioning them as a medium-sized regional supplier with a diverse product catalog. Technically, the website is built on the Magento platform, utilizing common JavaScript libraries such as jQuery and Prototype.js, and integrates marketing and analytics tools like Google Analytics, Google Tag Manager, and Facebook SDK. The site employs HTTPS and a cookie consent mechanism, indicating basic privacy compliance. However, explicit security policies and incident response information are not found, and WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the website demonstrates good content quality, technical implementation, and business credibility, with room for improvement in security headers and privacy transparency.

B

Bionorica SE

bionorica.com

51

Bionorica SE is a well-established German company specializing in the development and manufacture of herbal medicinal products using their proprietary Phytoneering process. The company positions itself as a global leader in evidence-based phytopharmaceuticals, targeting healthcare professionals and patients interested in natural remedies. Their website reflects a mature digital presence built on Drupal 9, featuring comprehensive content about their products, sustainability efforts, and corporate philosophy. Technically, the site uses modern libraries and frameworks, is mobile optimized, and includes cookie consent mechanisms compliant with GDPR. Security posture is strong with HTTPS enforced and no obvious vulnerabilities, though some security headers and explicit policies could be improved. WHOIS data confirms domain legitimacy with a long registration history consistent with the company's founding date. Overall, the website is professional, trustworthy, and well-aligned with the company's business model and market position.

S

Stena Line Freight

stenalinefreight.com

62

Stena Line Freight is a well-established European freight ferry and shipping logistics provider with a large route network connecting key ports across Europe. The company offers a range of services including shipping logistics, intermodal solutions, customer support systems, and customs services, positioning itself as a major player in the transportation sector. The website reflects a mature digital presence built on WordPress, leveraging modern tracking and marketing tools with appropriate privacy and cookie consent mechanisms. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though some improvements in security headers and vulnerability disclosure could be made. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the company’s credibility and market position.

D

DFDS A/S

dfdsseaways.com

78

DFDS A/S operates a comprehensive European ferry and cruise service network, positioning itself as a leading ferry operator with multiple routes connecting the UK, Scandinavia, the Baltics, and other European destinations. The website offers detailed information on passenger and freight ferry services, mini cruises, package holidays, and onboard amenities, targeting travelers and logistics customers. The company demonstrates strong market presence and brand consistency, supported by industry recognition such as the World’s Leading Ferry Operator nomination for 2025. Technically, the website is built on modern frameworks including React and Gatsby, leveraging Contentful CMS and integrating Google Tag Manager for analytics. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Security posture is solid with HTTPS enforced and secure form handling, though explicit security policies and incident response information are not publicly available. The absence of WHOIS registration data limits domain trust analysis; however, the professional site content, comprehensive privacy and cookie policies, and active social media presence strongly indicate a legitimate and credible business. Overall, the site reflects a mature digital infrastructure aligned with business goals and compliance requirements.

V

Viking Line

vikingline.ee

58

Viking Line is a well-established transportation company specializing in ferry and cruise services across the Baltic Sea region, including routes to Helsinki, Stockholm, and Åland. The website reflects a mature digital presence with multi-language support targeting Nordic and Baltic markets. Key services include line ferry trips, cruises, hotel packages, and group travel, positioning Viking Line as a major regional player in maritime passenger transport. The website content is professionally structured and relevant to its target audience of travelers and business clients. Technically, the site uses modern web technologies such as Cookiebot for cookie consent management and Google Tag Manager for analytics, with a custom or proprietary CMS. Performance and mobile optimization are good, though accessibility could be improved. Security posture is strong with HTTPS enforced, proper security headers, and no visible vulnerabilities or exposed sensitive data. However, the site lacks a dedicated security policy and incident response contact information, which are recommended for enhanced trust and compliance. WHOIS data confirms the domain's legitimacy and consistency with the business's long history. Overall, Viking Line's website is professional, secure, and compliant, supporting its business credibility and customer trust.

S

Sarjak Container Lines

sarjak.com

54

Sarjak Container Lines is a well-established project logistics company founded in 2003 in India, specializing in oversized and out-of-gauge cargo transport, freight forwarding, and global shipping solutions. The company has grown to become a leader in end-to-end project logistics with a specialized fleet and a global footprint. Their website reflects a mature digital presence built on WordPress with Elementor, incorporating SEO best practices and modern tracking tools. Security posture is good with HTTPS and client transfer protection on the domain, though improvements such as DNSSEC and CSP headers are recommended. Privacy compliance is strong with clear cookie and privacy policies and consent mechanisms. Contact information is primarily via web forms, with social media presence on LinkedIn. Overall, the website and domain data indicate a legitimate, professional business with moderate to good technical and security maturity.

O

Ocean Network Express Pte. Ltd.

one-line.com

70

Ocean Network Express Pte. Ltd. (ONE) operates as a leading global container liner shipping company, providing comprehensive ocean and intermodal freight services. The company maintains a large fleet and extensive port network, targeting businesses requiring reliable global logistics solutions. The website demonstrates a mature digital presence built on Drupal 10, integrating modern analytics and marketing tools such as Google Analytics, Heap Analytics, and Salesforce Live Chat. The site is well-structured, mobile-optimized, and professionally designed, reflecting the company's market position and service offerings. Security posture is solid with HTTPS enforced and secure forms, though explicit security policies and vulnerability disclosures are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for enterprises. Overall, the website is trustworthy, professional, and compliant with privacy regulations, supporting ONE's business credibility and customer engagement.

J

JANDL

jandlagency.com

44

JANDL is an independent advertising agency specializing in marketing and communication services, including strategy, storytelling, social media, development, and visual arts. Originating from Bratislava, it has expanded internationally with offices in Prague and Vienna. The website reflects a professional digital presence with modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and TikTok Pixel. The technical infrastructure is moderately optimized with good mobile responsiveness and basic accessibility features. Security posture is solid with HTTPS enforced and CSRF tokens implemented, though security headers are lacking. Privacy compliance is minimal, with no privacy policy or terms of service pages detected, but a cookie consent mechanism is present. The absence of WHOIS registration data is a significant concern, impacting the trustworthiness and legitimacy of the domain. Overall, the website is functional and professional but requires improvements in transparency and compliance to enhance credibility.

360 Cities Holding B.V. operates a specialized media platform focused on high-resolution panoramic and gigapixel photography, serving a global audience of photography enthusiasts, businesses, and tourists. The platform offers a marketplace for licensing panoramic images, commissioning custom gigapixel photos, and supports a community of professional photographers. The website demonstrates a consistent brand presence and professional content quality, positioning itself as a leading provider in the panoramic photography niche. Technically, the website employs modern frontend technologies including Bootstrap and jQuery, integrates Google Analytics and Tag Manager for user tracking, and uses Disqus for community comments. Hosting and domain management are stable with DreamHost as registrar and Cloudflare DNS services, though DNSSEC is not enabled. The site is mobile responsive and SEO optimized, providing a good user experience. From a security perspective, HTTPS is enforced and domain transfer is protected, but the absence of DNSSEC and security headers indicates room for improvement. No explicit security policies or incident response information are published, and no vulnerability disclosure mechanisms are evident. Privacy compliance is addressed with a clear privacy policy and cookie consent banner, though GDPR-specific details are limited. Overall, the website is trustworthy and professionally managed, with moderate tracking and advertising practices. Strategic improvements in security hardening and transparency would enhance the platform's risk posture and user trust.

P

Podravka d.d.

podravka.com

53

Podravka d.d. is a well-established Croatian food processing and pharmaceutical company with a strong international presence in over 60 markets and a portfolio of more than 1000 products. The company emphasizes sustainable development and social responsibility, targeting consumers seeking high-quality food and pharmaceutical products. The website reflects a mature digital presence with multiple language options and comprehensive content about products, corporate responsibility, and investor relations. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. The WHOIS data for the domain is missing or unavailable, which is unusual but does not detract from the overall legitimacy indicated by the website content and branding. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to improve trust and compliance.

P

Playtex US

playtextampons.com

70

Playtex US operates a professional e-commerce website focused on retailing Playtex Sport Tampons, targeting athletic women seeking reliable feminine hygiene products. The site is built on the Shopify platform, leveraging modern web technologies and CDN hosting to deliver a performant and mobile-optimized user experience. The brand maintains a consistent and professional online presence with integrated social media channels and marketing tools. Security posture is solid with HTTPS enforced and domain registration protections in place, though explicit security headers and incident response policies are absent. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy and terms of service documentation. Overall, the website reflects a mature retail operation with room for improvement in privacy and security transparency.

L

LEBSA and SELECTCHEMIE

ccureapi.com

48

CCURE API® is a European-focused pharmaceutical API provider specializing in Venetoclax and Letermovir, leveraging the combined expertise of LEBSA and SELECTCHEMIE. The company positions itself as a secure, sustainable, and quality-driven supplier with a strong emphasis on client relationships and supply chain control. The website reflects a medium-sized business with a professional digital presence, though lacking explicit privacy and security policy disclosures. Technically, the site uses established but somewhat dated technologies and integrates Google Analytics and Tag Manager for tracking. Security posture is moderate with room for improvement, especially regarding HTTPS enforcement on all resources and security headers. Overall, the domain registration and business information align well, supporting legitimacy.

J

Jackrabbit Design

jumpingjackrabbit.com

69

Jackrabbit Design is a Boston-based full-service branding agency specializing in graphic design, marketing, web design, web development, and strategic marketing communications. The company targets businesses and organizations seeking comprehensive branding and marketing solutions. Their market position is that of an established regional agency with a diverse portfolio of notable clients and a broad range of creative services. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress and uses modern technologies such as jQuery, Google Tag Manager, and Cookiebot for analytics and compliance. The site is mobile optimized with good SEO practices implemented via the Rank Math plugin. Performance is moderate, and accessibility is basic but functional. The presence of a cookie consent banner and privacy policy indicates attention to privacy compliance. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and professional presentation suggest a legitimate business. Overall, the security posture is moderate with room for improvement in security headers and transparency. The overall risk assessment is moderate. The main concern is the missing WHOIS data which should be verified externally. Strategic recommendations include implementing security headers, publishing security policies, adding a security.txt file, enhancing accessibility, and auditing third-party scripts regularly to maintain security and trust.

A

American Academy of Otolaryngology-Head and Neck Surgery

entnet.org

64

The American Academy of Otolaryngology-Head and Neck Surgery (AAO-HNS) operates a comprehensive and professionally designed website serving as the primary digital presence for the world's largest organization representing specialists in ear, nose, throat, and related head and neck care. The site offers extensive educational resources, advocacy information, clinical guidelines, and member engagement tools, positioning the Academy as a leader in its healthcare specialty. The business model focuses on professional development, research, and public education, targeting otolaryngologists, healthcare professionals, and patients seeking ENT care. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Algolia search, HubSpot analytics, and multiple third-party integrations for marketing and user engagement. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, secure login mechanisms, and cookie consent compliance, though some security headers could be enhanced for improved protection. Overall, the security posture is robust with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear policies and consent mechanisms. The WHOIS data is unavailable or privacy-protected, which is typical for professional organizations and does not detract from the site's legitimacy. The site maintains high trustworthiness through consistent branding, professional content, and transparent contact information. Strategically, the Academy should consider enhancing security headers, increasing incident response visibility, and continuing to monitor third-party scripts for vulnerabilities to maintain and improve its security and compliance posture. The website effectively supports the Academy's mission and market position, providing a trustworthy and authoritative resource for its community.

C

Congress of Neurological Surgeons

cns.org

59

The Congress of Neurological Surgeons (CNS) operates as a leading professional society dedicated to advancing the field of neurosurgery through education, scientific exchange, advocacy, and professional development. The organization serves a global audience of neurosurgeons, residents, fellows, and medical students, providing a comprehensive suite of services including annual meetings, online education, publications, clinical guidelines, and leadership programs. CNS maintains a strong market position as a preeminent neurosurgical society with extensive corporate partnerships and a robust digital presence. Technically, the CNS website is built on a mature ASP.NET WebForms platform, leveraging modern web technologies such as Google Tag Manager, Google Analytics, and Microsoft Clarity for analytics and marketing. The site is mobile responsive, well-structured, and optimized for SEO and accessibility at a basic level. Hosting utilizes Amazon Cloudfront CDN for asset delivery, contributing to moderate performance. From a security perspective, the site enforces HTTPS and employs standard best practices such as cookie consent mechanisms and secure form handling. While some security headers are not explicitly detected, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive policies and GDPR indicators. Overall, CNS presents a trustworthy and professional online presence with high-quality content and strong business credibility. The lack of WHOIS data is mitigated by the organization's transparency and extensive contact information. Strategic recommendations include enhancing security headers, improving accessibility features, and maintaining vigilance on third-party scripts to sustain security and compliance.

C

CityBee

citybee.lv

73

CityBee is a Latvian car-sharing service offering vehicle rental solutions primarily targeting local residents and visitors. The website presents a professional and consistent brand image with a clear focus on transportation services. The business operates in the transportation sector with a medium market presence and was founded around 2021. The website is built on WordPress and integrates common marketing and analytics tools such as Google Tag Manager and Facebook Pixel, alongside a cookie consent mechanism via Cookiebot, indicating a moderate level of digital maturity. From a security perspective, the website uses HTTPS, which is mandatory for secure communications. However, no explicit security headers were detected in the HTML content, and there is a lack of visible contact information for incident response or security policies. The absence of a published privacy policy and terms of service reduces the privacy compliance score, although the cookie consent banner suggests some GDPR awareness. No WHOIS data was available due to query limits, limiting the ability to fully verify domain legitimacy and registration details. Overall, the website is functional, well-designed, and provides relevant content for its target audience. The security posture is moderate but could be improved by implementing additional security headers, publishing privacy and terms documents, and providing clear contact information. The risk assessment indicates a generally trustworthy site with room for compliance and security enhancements.

F

Ferrus

ferrus.lv

68

Ferrus is a Latvian e-commerce retailer specializing in tractors, agricultural machinery, garden equipment, and related accessories. The company positions itself as the official dealer for prominent brands such as KIOTI and TORO in Latvia, targeting agricultural professionals and municipal customers. Their website is built on the Shopify platform, leveraging modern e-commerce technologies and integrating multiple marketing and analytics tools to enhance customer engagement and sales performance. The site features clear navigation, product categorization, and customer testimonials, reflecting a professional and trustworthy business presence. Technically, the website demonstrates good mobile optimization, moderate performance, and basic accessibility features. Security measures include HTTPS enforcement, hCaptcha integration for form protection, and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data due to query limits limits domain registration verification, but the overall digital footprint suggests legitimacy. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility compliance to further strengthen the security posture and customer trust.

P

Patchworks

wearepatchworks.com

70

Patchworks is a UK-based technology company specializing in ecommerce integration platforms (iPaaS) designed for fast-growing retail businesses. Their platform offers a comprehensive suite of integration services including embedded iPaaS, blueprints, connector marketplaces, and custom scripting capabilities. Positioned as a leading integration provider in the retail sector, Patchworks targets ecommerce businesses seeking to automate and streamline operations. The website demonstrates a mature digital presence with professional design, clear navigation, and extensive service descriptions. Technically, the site is built on Shopify, leveraging modern JavaScript frameworks, SEO optimizations, and analytics tools such as Google Tag Manager and HubSpot. Security posture is strong with HTTPS enforcement, security headers, and form protection via hCaptcha. However, the absence of WHOIS domain registration data introduces some uncertainty regarding domain legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant, but explicit security policies and incident response contacts are not publicly available. Overall, Patchworks presents a credible and professional business platform with minor gaps in transparency around domain registration and security disclosures.

C

Codex

codex.lv

54

Codex is a technology company specializing in full potential software engineering (P3) and innovative IT solutions targeted at businesses in the Baltic region. Their offerings include information system development, maintenance, integrations, audits, and DevOps services. The company positions itself as a leading IT solutions provider in the Baltics with a strong focus on efficiency, growth, and digital transformation. The website is professionally designed, multilingual, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins for performance and multilingual support, and it uses Google Tag Manager for analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not published. The company holds multiple ISO certifications, enhancing trust and credibility. Overall, Codex presents a strong business and technical profile with room for improvement in transparency around security policies and incident response.

(

(주)인덱스코리아 / Maximus Korea

maximusess.co.kr

58

Maximus Korea, operated by (주)인덱스코리아, is a government-recognized partner providing comprehensive employment support services under the 국민취업지원제도 (National Employment Support System) in South Korea. The company leverages its global presence and local expertise to assist job seekers with counseling, training, and financial support. The website reflects a professional and consistent brand image targeting Korean job seekers aged 15 to 69, emphasizing government-backed employment assistance. Technically, the website employs modern JavaScript libraries such as jQuery, FontAwesome, and Google services including reCAPTCHA and Tag Manager, indicating a mature digital infrastructure. The site is hosted via Gabia, a reputable Korean registrar and hosting provider, and uses HTTPS with good SSL configuration. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism, which may pose GDPR compliance risks. Overall, the website is trustworthy and professionally maintained with transparent WHOIS data matching the business claims. Strategic improvements in privacy compliance and security policy transparency would enhance trust and regulatory adherence.

T

Tesco PLC

tesco.com

57

Tesco PLC operates a large-scale retail and e-commerce platform primarily focused on groceries, clothing, recipes, banking, and mobile services. The website serves a broad consumer base in the United Kingdom and selected European countries, positioning itself as a leading supermarket and retail brand with a history dating back to 1919. The site features comprehensive content, clear navigation, and consistent branding, reflecting a mature and professional digital presence. Technically, the site employs modern web technologies including micro frontends, React-based components, and advanced monitoring tools such as New Relic and Google Tag Manager, ensuring robust performance and user experience. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security headers and vulnerability disclosure policies are not evident. The absence of WHOIS data is unusual but does not detract from the site's legitimacy given the strong brand presence and structured data. Overall, Tesco.com demonstrates a high level of digital maturity and business credibility.

V

Vendo

vendoservices.com

71

Vendo is a specialized payment processing company focusing on merchants in high risk industries such as e-commerce, content platforms, and fan sites. The company offers an intelligent payment gateway platform enhanced with AI-driven fraud detection, revenue optimization, and subscription management tools. Their market position is strengthened by strong banking relationships and compliance with PCI Level 1 standards. The website demonstrates a mature digital presence built on WordPress with Elementor, optimized for performance and SEO, and includes comprehensive privacy and cookie policies with consent mechanisms. Security posture is solid with HTTPS, domain locking, and no visible vulnerabilities, though DNSSEC is not enabled and some security headers could be improved. Contact is primarily via web forms, with no explicit emails or phone numbers found. Overall, Vendo presents a trustworthy and professional business with a focus on secure, seamless payment solutions for challenging market segments.

UZ Brussel Foundation is a Belgian non-profit organization affiliated with the University Hospital Brussels, dedicated to supporting innovative healthcare, scientific research, and patient-centered projects through fundraising and community engagement. The website is professionally designed with clear navigation, multilingual support (Dutch and French), and comprehensive content targeting donors, patients, healthcare professionals, and volunteers. The technical infrastructure leverages modern web technologies including Bootstrap, jQuery, AMP components, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though improvements could be made by adding security headers like Content-Security-Policy and publishing a security.txt for vulnerability disclosures. WHOIS data is restricted, which is common for privacy reasons in non-profit sectors, but the website content and external references support legitimacy. Overall, the site demonstrates good digital maturity, compliance with privacy regulations, and a trustworthy online presence.

U

Universitair Ziekenhuis Brussel

uzbrusselwerkt.be

60

UZ Brussel is a large university hospital based in Brussels, Belgium, employing nearly 5000 staff across medical and support roles. The website serves primarily as a recruitment portal, offering job vacancies and information about working at the hospital. It targets healthcare professionals and support staff seeking employment opportunities. The site is professionally designed using Drupal 10 CMS and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and LinkedIn Insight Tag. Cookie consent is implemented with an opt-in mechanism, reflecting good privacy compliance practices. Contact information is clearly provided, including an official HR email and physical address. However, no explicit security policy or incident response information is published.

S

Shondaland

shondaland.com

62

Shondaland.com is a professionally designed media website focused on providing editorial content related to Shondaland's popular TV series such as Bridgerton and The Residence. The site targets fans and viewers interested in immersive content and behind-the-scenes insights. The business model centers on content publishing and brand engagement, supplemented by e-commerce through a linked shop. Technically, the site uses modern web technologies including React and Next.js, with Google Tag Manager for analytics. The website is mobile optimized and offers a good user experience with clear navigation and high-quality content. Security posture is moderate due to lack of visible security headers and missing privacy and cookie policies. WHOIS data is unavailable, which slightly reduces domain trustworthiness. Overall, the site is a credible media property with room for improvement in privacy compliance and security best practices.

F

Filmmaker Magazine

filmmakermagazine.com

65

Filmmaker Magazine is a well-established media publication focused on independent film, providing industry news, interviews, columns, festival coverage, and video content. It targets independent filmmakers, film students, and enthusiasts, positioning itself as a niche leader in the independent film media space. The website is professionally designed, mobile-optimized, and uses a modern technology stack based on WordPress, Foundation framework, and various ad and analytics services. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. Security posture is strong with HTTPS enforced, domain locking, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were found. The domain age and WHOIS data confirm legitimacy and consistency with the business history. Overall, the website demonstrates a mature digital presence with good privacy compliance and business credibility.

D

Doc Society

docsociety.org

62

Doc Society is a well-established non-profit organization founded in 2005, dedicated to supporting independent documentary filmmakers and media makers worldwide. Their mission centers on backing independent storytelling and building a resilient global ecosystem for media in the public interest. The website reflects a professional and consistent brand with clear messaging and a focus on social impact through media. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and CookieHub for consent management, hosted on AWS infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and DNSSEC is not enabled. Privacy compliance is strong with accessible privacy and cookie policies and GDPR-aligned consent mechanisms. Business credibility is supported by transparency, partner listings, and professional content, though no phone or physical address is provided. Overall, the site is trustworthy and well-maintained with room for improvement in security headers and incident response disclosures.

B

Blackmagic Design

blackmagicdesign.com

64

Blackmagic Design is a prominent technology company specializing in high-quality products for the film, post-production, and broadcast industries. Their offerings include digital film cameras, video routers, live production switchers, and professional editing software such as DaVinci Resolve. The company targets professional filmmakers, broadcasters, and content creators, positioning itself as a leader in the media technology sector with a strong product portfolio and global reach. The website reflects a mature digital presence with rich multimedia content and clear product information, supporting their market position effectively. Technically, the website employs modern JavaScript libraries, font services, and tracking tools, ensuring a responsive and engaging user experience across devices. However, some technical details such as CMS and hosting provider are not explicitly identifiable from the provided data. Security-wise, the site uses HTTPS and includes tracking scripts but lacks visible security headers and formal security or privacy policies in the analyzed content. The WHOIS data is notably missing or inaccessible, which raises questions about domain registration transparency despite the professional appearance of the site. Overall, the website is well-designed and functional but would benefit from enhanced transparency and security best practices to strengthen trust and compliance.

R

Retail TouchPoints

retailinnovationconference.com

66

Retail TouchPoints is a media and information service provider focused on delivering retail news, industry trends, and business insights to retail executives and professionals. The website offers comprehensive coverage on customer experience, store operations, machine learning, and digital commerce, positioning itself as a valuable resource within the retail sector. The business model centers on content delivery and industry reporting, targeting retail decision-makers and stakeholders. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, supported by modern marketing and analytics tools such as HubSpot, Google Analytics, and Amazon Polly for accessibility. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, including Google reCAPTCHA for form protection. However, explicit security headers are not detected, and no privacy or terms of service pages were found in the provided content, indicating room for improvement in compliance and security best practices. The absence of WHOIS data raises concerns about domain registration legitimacy, warranting further investigation. Overall, Retail TouchPoints presents a professional and trustworthy online presence with solid content and technical foundations. Strategic improvements in privacy policy transparency, security headers, and domain registration verification would enhance its security posture and compliance standing.

V

Visibility

visibility.sk

68

Visibility is a Slovak digital marketing agency established in 2009, specializing in online marketing services and digital education. The company positions itself as an expert in the online marketing domain, targeting businesses seeking to enhance their digital presence. The website reflects a mature digital infrastructure with a WordPress CMS, WooCommerce integration, and multiple analytics and marketing tools such as Matomo, Microsoft Clarity, Google Analytics, Hotjar, and OneSignal for push notifications. Cookie consent is managed comprehensively via Cookiebot, ensuring GDPR compliance in cookie usage. Security posture is solid with HTTPS, DNSSEC, and asynchronous loading of scripts, although additional HTTP security headers could enhance protection. No explicit privacy policy or terms of service were detected in the provided content, which is a gap in compliance and transparency. The domain registration data is consistent with the business claims, showing a long-standing presence and legitimacy. Overall, the website is professional, well-branded, and technically sound, with room for improvement in privacy documentation and security headers.

N

Naša mreža

nasamreza.rs

53

Naša mreža is a Serbian media platform founded in 2018, dedicated to providing free informational and educational content for entrepreneurs and small business owners. The website offers a variety of content types including news, interviews, knowledge base articles, business topics, documents, and video tutorials. It targets entrepreneurs in Serbia, aiming to support their business growth and education through accessible and regularly updated content. The platform maintains a consistent brand presence and leverages social media channels to extend its reach. Technically, the website is built on WordPress CMS, utilizing modern JavaScript libraries such as Alpine.js and Glide.js for UI components. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing, and uses Google reCAPTCHA v3 to protect forms from spam. The site is mobile optimized and demonstrates good SEO practices with proper meta tags and structured data. Performance is moderate, with room for improvement in hosting and caching. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for forms, but lacks DNSSEC for domain security and does not publish a security policy or incident response contacts. Security headers are not fully implemented, and there is no visible cookie consent mechanism or comprehensive privacy policy addressing GDPR compliance. These gaps present moderate risks in privacy compliance and security posture. Overall, Naša mreža is a credible and professional platform with good content quality and business credibility. Strategic improvements in privacy compliance, security headers, and DNS security would enhance its trustworthiness and regulatory adherence.

Y

Yodel Delivery Network Limited

yodeldriver.co.uk

66

Yodel Delivery Network Limited operates a UK-focused platform recruiting self-employed delivery drivers offering flexible work and competitive pay. The website presents a professional and well-structured digital presence with clear calls to action and detailed driver role descriptions. The technical infrastructure leverages modern web technologies including Bootstrap, jQuery, and October CMS, with embedded analytics and marketing tools such as Google Analytics and Trustpilot widgets. Security posture is strong with HTTPS and Content Security Policy in place, complemented by GDPR-compliant cookie consent mechanisms. However, the domain WHOIS data is unavailable due to domain naming rules violations, which introduces some uncertainty about domain registration legitimacy. Overall, the site reflects a mature business with a solid market position in parcel delivery services.

E

EcomBaltic, SIA

webdev.lv

51

Webdev.lv is a Latvian-based IT service provider specializing in e-commerce and website development solutions. The company offers a broad range of services including custom online store development, website creation, rental e-commerce platforms, wholesale integration, SEO optimization, and technical support. With over 10 years of experience and a portfolio of notable clients, Webdev.lv positions itself as a trusted partner for small to medium and larger enterprises seeking to automate and optimize their online business processes. Technically, the website is built on WordPress CMS with a modern tech stack including Bootstrap, jQuery, Google Maps API, and various marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and reCAPTCHA v3. The site is mobile responsive, well-structured, and optimized for SEO, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic with a cookie policy and GDPR indicators present, though a dedicated privacy policy page is not clearly linked. Contact information is comprehensive, including a named project manager with email and phone contact. Overall, Webdev.lv demonstrates a solid business and technical foundation with good security hygiene, though improvements in security policy transparency and WHOIS data availability would enhance trust. The absence of WHOIS data limits full domain legitimacy verification but the website content and business details appear consistent and professional.

K

Karavela SIA

karavela.lv

63

Karavela SIA is a Latvian-based medium-sized company specializing in fish processing and canned fish production, including private label manufacturing. The company positions itself as a leading fish processing and canned goods manufacturer in the Baltic region, offering a wide product range and private label services. The website is professionally designed with clear navigation and good content quality, targeting retail and wholesale customers interested in fish products. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery and UIkit, integrates Google Analytics and Tag Manager for marketing and analytics, and employs a cookie consent mechanism compliant with GDPR. Security posture is moderate with HTTPS usage and cookie consent but lacks visible security headers and explicit security policies. WHOIS data was unavailable due to query limits, limiting domain legitimacy verification, but the website content and contact information appear consistent and trustworthy. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

S

SITE123

site123.com

61

SITE123 is a technology company providing a user-friendly, no-code website builder platform targeting individuals and small businesses. The platform offers free hosting, SEO tools, custom domains, and e-commerce capabilities, positioning itself as an easy and fast solution for website creation. The website is professionally designed with excellent content quality and strong branding consistency. Technically, SITE123 employs a modern tech stack including multiple analytics and advertising platforms, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some improvements in security headers and explicit policies are recommended. Privacy compliance is partially met with a comprehensive privacy policy but lacks visible cookie consent mechanisms. WHOIS data is not publicly available, which reduces transparency but does not necessarily indicate illegitimacy. Overall, SITE123 presents a trustworthy and professional online presence with room for enhanced privacy and security disclosures.

U

un-dark

un-dark.io

58

un-dark is a niche Web3 platform focused on pioneering digital mission work in hidden online spaces, particularly targeting Japan for its first launch. The platform leverages NFT technology to create access cards that grant community membership and participation in mission challenges. The website is professionally designed using Webflow, with interactive terminal-style content that engages users. The technical infrastructure is modern and integrates analytics and marketing tools such as Google Tag Manager and SumoMe. Security posture is good with HTTPS and no visible vulnerabilities, but lacks some security headers and formal policies. WHOIS data is unavailable, indicating privacy protection which is common in Web3 projects but reduces transparency. Overall, the platform presents a credible and innovative approach to digital mission work with room for improvement in privacy compliance and security documentation.

H

HostGator Chile

hostgator.cl

71

HostGator Chile is a prominent web hosting and domain registration provider targeting the Latin American market, particularly Chile. The company offers a broad range of hosting solutions including shared web hosting, WordPress optimized hosting, VPS, dedicated servers, and professional email services. With over 7 million customers globally and more than 22 years in the hosting industry, HostGator Chile positions itself as a reliable and customer-focused technology provider. The website reflects a mature digital presence with comprehensive service offerings and strong branding consistency. Technically, the website leverages modern web technologies such as React and Next.js, ensuring a responsive and performant user experience across devices. Integration with Google Tag Manager and Datadog indicates a focus on analytics and monitoring. The site is well optimized for SEO and accessibility, with clear navigation and professional design. From a security perspective, the site enforces HTTPS and displays trust badges like SiteLock, indicating a secure environment for users. However, explicit security headers and incident response policies are not prominently disclosed, suggesting room for improvement in transparency and security governance. No vulnerabilities or exposed sensitive data were detected in the content. Overall, HostGator Chile presents a trustworthy and professional online presence with strong business credibility. The lack of WHOIS data limits domain registration verification, but the brand's global reputation and consistent digital footprint mitigate concerns. Strategic recommendations include enhancing security header implementation, publishing incident response contacts, and establishing a vulnerability disclosure program to further strengthen security posture.

Z

Zanotta S.p.A.

zanotta.it

63

Zanotta S.p.A. is a well-established Italian company specializing in modern and contemporary Italian design furniture. The company offers a wide range of high-quality furniture products made in Italy, targeting consumers and businesses interested in premium design furniture. Zanotta holds a strong market position supported by its heritage, craftsmanship, and multiple Compasso d'Oro awards, reflecting its excellence in Italian design. The company operates both physical stores worldwide and an online presence, supported by a professional and content-rich website. From a technical perspective, the website employs modern technologies including Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, and Cookiebot for consent management. The site is well-optimized for mobile devices, has good accessibility features, and demonstrates solid SEO practices. Performance is moderate, with no critical technical issues detected. Security posture is strong with HTTPS enforced, presence of key security headers, and privacy compliance mechanisms such as cookie consent and IP anonymization. No vulnerabilities or exposed sensitive data were found. However, the absence of WHOIS data reduces transparency and slightly impacts trustworthiness. No explicit incident response or vulnerability disclosure information is provided. Overall, Zanotta presents a professional and trustworthy digital presence with good security and privacy practices. Strategic recommendations include publishing a security.txt file, providing incident response contacts, and clarifying Data Protection Officer details to enhance transparency and compliance.

W

We Do Spaces S.r.l.

sitland.com

62

Sitland, operated by We Do Spaces S.r.l., is a well-established Italian manufacturer specializing in ergonomic office and contract furniture. Founded in 1998, the company has a strong market presence with a focus on innovative seating solutions and workspace design. Their website reflects a professional and consistent brand image, targeting businesses and organizations seeking quality office furniture. The company maintains active social media channels and showcases numerous international projects, reinforcing its market position. Technically, the website is built on the ProcessWire CMS and utilizes modern frontend technologies including UIkit, Typekit fonts, and integrates tracking and marketing tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Cookie consent is managed through Iubenda, indicating attention to privacy compliance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, it lacks visible security headers which could enhance protection against common web threats. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-term registration, consistent with the company's history. Overall, Sitland's digital presence is solid with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and explicit security policies could further strengthen their security posture and trustworthiness.

Q

Quadrifoglio Sistemi d’Arredo S.P.A

quadrifoglio.com

52

Quadrifoglio Sistemi d’Arredo S.P.A is an established Italian manufacturer specializing in office, living, and lighting furniture, founded in 1991. The company targets professional and hospitality sectors with a diversified product portfolio and global sales network. Their website reflects a mature digital presence with multi-language support, comprehensive product catalogs, and a focus on design and comfort. Technically, the site is built on WordPress with modern frameworks like Bootstrap 5 and integrates SEO and marketing tools such as Yoast SEO and Google Tag Manager. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though no explicit security policy or incident response contacts are published. Privacy compliance is well addressed with a detailed privacy and cookie policy and consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts trust. Overall, the site is professional, secure, and user-friendly, supporting the company's market position as a reputable furniture manufacturer.

O

Opera Contemporary

operacontemporary.com

76

Opera Contemporary is a luxury contemporary furniture company based in Italy, specializing in high-end bedroom furniture and contract projects for residential, public, and yacht spaces. The company positions itself in the luxury design market, targeting affluent customers and businesses seeking elegant and contemporary furniture solutions. The website reflects a professional digital presence built on WordPress, utilizing modern plugins and tools such as Yoast SEO, LayerSlider, and Cookiebot for cookie consent management. The technical infrastructure is hosted on AWS-related services, ensuring reliable performance and availability. Security posture is adequate with HTTPS enabled and cookie consent implemented; however, the absence of security headers and explicit privacy and terms policies indicates room for improvement. No contact emails or phone numbers are explicitly provided, which may affect user trust and compliance. Overall, the website is well-designed and optimized for SEO and mobile devices but lacks some critical compliance and security documentation.

M

Moroso s.p.a.

moroso.it

62

Moroso s.p.a. is an established Italian manufacturer specializing in contemporary furniture for both home and contract markets. With a domain registered since 1997 and a strong international presence, the company offers a wide range of products including sofas, chairs, tables, and accessories. The website reflects a mature digital presence with multilingual support, rich content, and clear navigation aimed at consumers and business clients interested in design furniture. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WPML, optimized for performance and SEO. Security posture is strong with HTTPS, DNSSEC, and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, supported by a consent mechanism. Overall, the website demonstrates high professionalism and trustworthiness.

B

Bontempi Casa

bontempi.it

61

Bontempi Casa is a well-established Italian furniture manufacturer specializing in high-end design furniture for residential, contract, and hospitality markets. The company emphasizes Italian craftsmanship and contemporary aesthetics, supported by a strong brand presence and multiple international design awards. Their digital infrastructure is built on WordPress with modern front-end technologies, ensuring a responsive and user-friendly experience. The website demonstrates good SEO and privacy compliance, including GDPR adherence and cookie consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA, and no evident vulnerabilities, though some security headers could be improved. Overall, the company presents a professional and trustworthy online presence aligned with its market position.

A

Amini Carpets

amini.it

53

Amini Carpets is a small Italian company specializing in the design and sale of artisanal handcrafted carpets. The company targets luxury consumers, interior designers, and retailers seeking unique, high-quality carpet products. Their market position is niche, focusing on craftsmanship and exclusivity. The website is built on WordPress and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Cookiebot for privacy compliance. The technical infrastructure is standard for small to medium e-commerce sites, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though additional security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Contact is primarily via a web form, with no direct emails or phone numbers publicly listed. Overall, the site is professional and trustworthy, supporting the company’s artisanal brand image.

A

A1 Srbija doo

a1.rs

72

A1 Srbija is a well-established telecommunications company operating in Serbia since 2012, offering mobile telephony, internet services, and device sales targeting private consumers. The website reflects a mature digital presence with professional design, good mobile optimization, and clear navigation. The company leverages multiple modern technologies including JavaScript frameworks, translation services, and marketing/tracking tools to enhance user experience and marketing reach. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in DNS security and security headers. Privacy compliance is addressed primarily through a comprehensive cookie policy, but explicit privacy and security policies are not prominently available. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

E

Participating teams

estlatbl.com

41

The website www.estlatbl.com appears to be a sports-related site focused on basketball, specifically listing participating teams. The site has a professional design with good mobile optimization and uses Google Tag Manager for analytics. However, there is a lack of publicly available business information, contact details, and privacy or cookie policies, which limits trust and compliance assessment. The WHOIS data is unavailable, indicating the domain may not be registered or WHOIS information is withheld, raising legitimacy concerns. Security posture is weak with no detected security headers or incident response information. Overall, the site functions well for content delivery but lacks critical compliance and security transparency.

L

Lega Basket Serie A

legabasket.it

66

Lega Basket Serie A operates as the official governing body and organizer of Italy's premier professional basketball league. The website serves as a comprehensive portal offering news, statistics, schedules, ticketing links, and multimedia content to basketball fans and stakeholders. It maintains a strong market position as the authoritative source for Italian basketball league information. Technically, the site leverages modern web technologies including Next.js and Chakra UI, ensuring a responsive and accessible user experience. The infrastructure appears to be hosted on AWS with integration of third-party services for analytics, advertising, and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are not fully visible. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service pages. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in transparency and security documentation.