Security Directory

P

PRo Kansas Recycling

recyclewichita.org

47

PRo Kansas Recycling is a small nonprofit organization established in 2012, providing free recycling services to Wichita and surrounding communities. The organization focuses on environmental sustainability through community engagement, education, and support services. Their website reflects a community-oriented business model with donation capabilities and educational resources. Technically, the site is built on WordPress with a modern plugin stack including Yoast SEO, GiveWP for donations, and WPBakery for page building. The hosting is provided by Bluehost, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. However, DNSSEC is not enabled, which is a recommended security enhancement. The security posture is moderate with room for improvement in security headers and policies. Privacy compliance is lacking due to the absence of privacy and cookie policies, which is a significant compliance gap. Overall, the website is professional and functional but should address privacy and security best practices to improve trust and compliance.

W

Woodpecker

woodpecker.co

70

Woodpecker is a mature SaaS company specializing in cold email and sales outreach automation, targeting sales professionals, agencies, and individual cold emailers. The platform offers a comprehensive suite of tools including email sending, verification, warm-up, lead finding, and LinkedIn outreach automation. The company positions itself as a GDPR-compliant, trusted solution with a strong content marketing and educational resource presence. Technically, the website is built on WordPress with a modern tech stack including multiple analytics and marketing tools, optimized for performance, SEO, and mobile responsiveness. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in DNSSEC and incident response transparency. Overall, the domain registration is consistent with the business profile, showing legitimacy and stability. The website demonstrates high professionalism and trustworthiness, making it a reliable platform in its niche.

I

Integrum

integrum.se

55

Integrum is a healthcare company specializing in innovative bone-anchored prostheses using the osseointegration method. Established since 1990, it serves amputees and caregivers globally, offering the OPRA™ Implant System and related patient support services. The company maintains a professional web presence with detailed patient stories and investor relations information, reflecting transparency and market maturity. Technically, the website is built on WordPress with modern tracking and marketing tools integrated, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and no evident vulnerabilities, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is basic, with cookie consent mechanisms present but no explicit privacy policy or terms of service pages found. Overall, Integrum demonstrates a credible and trustworthy digital footprint aligned with its healthcare business focus.

Pakmarkas is a medium-sized manufacturing company established in 1994, specializing in packaging marking, industrial equipment supply, automation, and electromechanical components. The company serves a broad range of industries including food, beverage, chemical, pharmaceutical, furniture, and construction sectors, targeting B2B clients primarily in Latvia and neighboring European countries. Their business model focuses on providing integrated solutions including label production, packaging line design, industrial robots, and maintenance services. The website reflects a professional and consistent brand presence with multilingual support and clear contact channels. Technically, the website is built on WordPress with WooCommerce, leveraging modern libraries such as jQuery and Bootstrap. It integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, Leadfeeder, and Omnisend, with a GDPR-compliant cookie consent mechanism. The site is mobile-optimized and SEO-friendly, though minor backend PHP warnings and lack of explicit security headers indicate areas for improvement. From a security perspective, the site enforces HTTPS and manages user consent for tracking, but lacks visible security headers and public security policies. No WHOIS data was available due to query limits, limiting full domain trust assessment. Overall, the security posture is moderate with recommendations to enhance header policies, fix backend warnings, and publish incident response information. The overall risk is moderate; the company appears legitimate and professional but should address technical and security gaps to strengthen trust and compliance. Strategic improvements in security headers, backend code hygiene, and transparency will enhance resilience and customer confidence.

K

Kiwa Latvia

inspecta.lv

70

Kiwa Latvia is a professional service provider specializing in testing, inspection, certification, workplace safety, and professional training services primarily targeting businesses in Latvia. As part of the international Kiwa Group, it holds a strong market position supported by recognized certifications such as ISO 9001, ISO 14001, and ISO 45001. The website is well-structured, multilingual (Latvian and Russian), and provides comprehensive information about its services and industry sectors. Technically, the site employs modern analytics and consent management tools, ensuring GDPR compliance and accessibility standards. Security posture is robust with HTTPS and monitoring tools, though additional security headers and explicit incident response contacts could enhance it further. The absence of WHOIS data is a notable transparency gap but does not detract significantly from the overall legitimacy given the professional presentation and trust signals. Strategic recommendations include improving security header implementation, publishing a security.txt file, and providing clear data protection officer contact details to strengthen compliance and trust.

T

Thread Solutions

thread.solutions

71

Thread Solutions is an Italian IT consulting and digital innovation company founded in 2014. It specializes in supporting businesses through digital transformation by delivering innovative, functional, and creative solutions across various business domains. The company positions itself as a medium-sized player with a strong emphasis on quality partnerships and certifications such as ISO 9001:2015 and Great Place to Work. The website is professionally designed using Drupal 9, with good mobile optimization and clear navigation. The technical infrastructure includes modern tools like Google Tag Manager and Facebook Pixel, alongside a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced, security headers present, and no exposed sensitive data, although DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the domain registration is consistent with the business claims, using privacy protection justified for this business type. The website demonstrates a high level of professionalism and trustworthiness, making it a credible digital presence for the company.

O

Oberoi International School

oberoi-is.org

68

Oberoi International School is a leading private international school in Mumbai, India, offering the full International Baccalaureate continuum from Nursery through Grade 12. The school is highly ranked nationally and holds multiple prestigious accreditations, positioning itself as a top choice for families seeking world-class international education. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the site uses modern web technologies and integrates analytics via Google Tag Manager, though some security headers and privacy compliance features are missing. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, but improvements in privacy policy visibility and cookie consent are recommended. The domain WHOIS data is unavailable or protected, but the website's content and accreditations support its legitimacy. Overall, the site scores well for content quality, business credibility, and security, with room for enhancement in privacy compliance and explicit security policies.

K

Kvikworks

kvikworks.lv

53

Kvikworks is a Latvian visual advertising production company established in 2012, specializing in signage, interiors, and related manufacturing services such as CNC, laser cutting, and metalworks. The website presents a clear navigation structure with multilingual support but lacks detailed company contact information and privacy-related policies. Technically, the site uses modern tracking tools like Google Analytics and Google Tag Manager and serves content over HTTPS, but it lacks security headers and comprehensive privacy compliance features. The absence of WHOIS data due to query limits limits full domain legitimacy verification, though the website's branding and content suggest a legitimate small business. Overall, the site demonstrates moderate technical maturity but requires improvements in security posture and privacy compliance to enhance trust and regulatory adherence.

R

Runas Kursi

runaskursi.lv

53

Runas Kursi is a Latvian-based education provider specializing in public speaking and presentation skills training. The company offers group courses, VIP training, individual consultations, and event moderation services. The website demonstrates a professional presence with client testimonials and logos from reputable companies, indicating a solid market position within the education sector. Technically, the site is built on WordPress with a modern tech stack including jQuery, Google Analytics, Facebook SDK, and marketing tools like Mailchimp and AddThis. The site is HTTPS secured with reCAPTCHA protecting forms, but lacks explicit security headers and privacy/cookie policies, which are areas for improvement. Overall, the security posture is moderate with no visible vulnerabilities, but privacy compliance is weak due to missing policies. The domain WHOIS data is unavailable due to query limits, but the website content suggests legitimacy and consistent operation since 2015. Strategic recommendations include adding privacy and cookie policies, enhancing security headers, and publishing incident response contacts to improve trust and compliance.

C

CGI Inc.

acando.se

87

CGI Inc. is a global leader in IT and business consulting services, established in 1976, with a strong presence in Sweden and worldwide. The company offers a broad portfolio of services including business consulting, system integration, managed IT services, cybersecurity, cloud solutions, and sustainability initiatives. Their market position is solid, supported by recognition such as TIME Magazine's 2024 best companies list. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding consistency. Technically, the website is built on Drupal 9, leveraging modern technologies such as Google Tag Manager, New Relic for performance monitoring, and Akamai CDN for hosting and delivery. The site is optimized for mobile devices, has good SEO and accessibility features, and employs a robust cookie consent mechanism compliant with GDPR. From a security perspective, the site enforces HTTPS, implements security headers, and uses consent management tools. However, explicit security policies and incident response contacts are not published, which could be improved. The WHOIS data for the domain is unavailable, which slightly reduces trust but does not detract significantly given the strong corporate branding and content. Overall, CGI's website demonstrates a high level of professionalism, technical maturity, and compliance with privacy regulations, making it a trustworthy and authoritative source for their services.

O

OneMagnify

marketingassociates.com

76

OneMagnify is a performance marketing and technology agency specializing in creating optimal customer experiences through digital transformation. The company offers a broad range of services including customer experience optimization, brand strategy, digital marketing, business intelligence, and eCommerce capabilities. Backed by Crestview Partners and having acquired Guidance, OneMagnify positions itself as a growing player in the digital marketing and technology sector, targeting businesses seeking to enhance their digital presence and operational impact. Technically, the website is built on the Webflow platform, leveraging modern web technologies and multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, Segment, Mouseflow, and HubSpot forms. The site demonstrates excellent mobile optimization, fast performance, and good SEO and accessibility practices, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs standard security headers, and uses secure forms via HubSpot. However, there is no publicly available security policy, incident response information, or vulnerability disclosure program, which are areas for improvement. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and branding appear professional and trustworthy. Overall, OneMagnify presents a strong digital and business presence with minor gaps in security transparency and domain registration information. Strategic recommendations include publishing security and incident response policies, establishing a vulnerability disclosure program, and improving domain registration transparency to enhance trust and compliance.

S

Sabiedrība ar ierobežotu atbildību "Rock Distribution"

rock-distribution.com

57

Rock Distribution is a specialized distribution company operating primarily in the Baltic States, focusing on musical instruments and professional audio, video, and lighting equipment. The company also provides stage machinery integration and installation services, positioning itself as a comprehensive solutions provider in the entertainment technology sector. Their market position is strong within their regional niche, supported by partnerships with numerous reputable brands. The website reflects a medium-sized enterprise with a professional digital presence, leveraging modern web technologies and tracking tools with appropriate privacy mechanisms. Technically, the website is built on the Webflow platform, utilizing modern JavaScript libraries and analytics tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security practices include HTTPS enforcement, cookie consent, and bot protection via reCAPTCHA, though some security headers are missing and no explicit security policies are published. From a security perspective, the site demonstrates a solid baseline with no critical vulnerabilities detected. However, the absence of WHOIS data and domain registration details raises concerns about domain legitimacy and ownership transparency. The company provides clear contact information and privacy policies, supporting GDPR compliance. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust. Overall, the website is professional and trustworthy in appearance but would benefit from improved transparency regarding domain registration and enhanced security policy disclosures. Strategic recommendations include implementing security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to strengthen legitimacy and trust.

R

RIPO

ripo.lv

48

RIPO.LV is a Latvian company specializing in interior solutions and construction materials, operating since 1993. The website presents a professional and consistent brand image targeting Latvian-speaking customers interested in furniture, railings, gates, and building materials. The business model focuses on manufacturing and retail within the local market. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and Slick Carousel, with integration of Google Tag Manager and Facebook Pixel for marketing and analytics. The site is mobile optimized and has a cookie consent mechanism indicating GDPR awareness. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and formal security policies. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website is functional, moderately secure, and compliant with basic privacy requirements.

L

Linearis

linearistranslations.com

71

Linearis is a well-established language solutions provider specializing in translation, interpreting, and language technology services, with a strong market position in the Baltic region and global reach. The company offers a comprehensive portfolio of services including translation, editing, simultaneous and consecutive interpreting, multimedia translation, and advanced technology integrations such as machine translation post-editing and WordPress localization. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, indicating a high level of digital maturity. Technically, the website is built on WordPress with modern plugins like WPBakery, Yoast SEO, and WPML, supported by Cloudflare DNS and integrated with marketing and analytics tools such as Google Analytics, Hotjar, and MailerLite. Performance and mobile optimization are good, with SEO and accessibility features well implemented. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is good, with clear privacy and cookie policies and GDPR compliance indicators. Contact information is readily available, enhancing business credibility. The domain uses privacy protection but aligns with the business profile, and the domain age is reasonable given possible rebranding. Overall, Linearis.io presents a trustworthy, professional, and secure online presence suitable for its business model. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and continuing to monitor privacy compliance to sustain trust and security.

C

Contesto

contesto.no

66

Contesto is a Norwegian technology company specializing in intelligent information management and digital transformation services. The company offers a range of products and consulting services focused on improving information flow, document management, and enterprise content management, leveraging partnerships with Microsoft and OpenText. Their market position is supported by certifications and a portfolio of medium to large enterprise clients. Technically, the website is built on HubSpot CMS with modern marketing and analytics tools, providing a good user experience and mobile optimization. Security posture is strong with HTTPS, cookie consent, and secure forms, though explicit security policies and incident response information are not published. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a mature digital presence for a relatively new domain.

B

Biznesa vadības koledža

bvk.lv

51

Biznesa vadības koledža is a Latvian educational institution specializing in distance learning and short cycle higher education. It positions itself as the largest distance learning college in Latvia, targeting students who prefer flexible study options. The website is professionally designed, with clear navigation and good SEO practices, supporting a moderate to good technical infrastructure based on WordPress and associated LMS plugins. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit privacy policies are recommended. Overall, the site reflects a credible and established educational entity with room for enhanced compliance and security maturity.

K

Kaleris

navis.com

75

Kaleris is an enterprise-level supply chain execution software provider offering a comprehensive suite of solutions including terminal operating systems, transportation management, yard management, and visibility platforms. The company targets shippers and logistics professionals seeking real-time insights and operational efficiency. The website demonstrates a mature digital presence built on WordPress with Elementor, integrating advanced marketing and analytics tools such as HubSpot and 6sense. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though some security headers and explicit policies could be improved. Overall, the site is professional, well-branded, and trustworthy, supporting Kaleris's market position as a key player in transportation technology.

W

WinMagic

winmagic.com

80

WinMagic is a well-established technology company specializing in enterprise data security solutions, including passwordless authentication, endpoint encryption, and key management. Founded in 1997, the company targets enterprises requiring robust cybersecurity measures to protect sensitive data. Their market position is supported by certifications such as ISO 27001 and SOC 2, and they emphasize seamless user experience combined with strong security. The website reflects a mature digital presence with comprehensive content, structured data, and modern marketing tools. Technically, the site is built on WordPress with popular plugins and demonstrates good performance and mobile optimization. Security posture is strong, with HTTPS enforced, security headers present, and no visible vulnerabilities. However, the site could improve by publishing a security.txt file and providing explicit incident response contacts. Overall, WinMagic presents a trustworthy and professional online presence aligned with its business objectives.

D

Datadog

sqreen.io

79

Datadog is a leading technology company specializing in cloud monitoring and security solutions. Their App and API Protection product offers comprehensive security features for web applications and APIs, targeting security and DevOps teams. The website reflects a mature, enterprise-grade SaaS platform with strong branding and professional content. Technically, the site uses modern frameworks like Tailwind CSS and Alpine.js, integrates multiple analytics and marketing tools, and is optimized for performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though privacy compliance could be improved by adding explicit privacy and terms of service pages. The absence of WHOIS data limits domain trust analysis but given the brand recognition, the domain is likely legitimate. Overall, the website is professional, secure, and well-positioned in the market.

Иностудио is a well-established Russian IT company specializing in the development and integration of complex digital solutions for corporate clients. With a domain age dating back to 2004 and a strong portfolio of long-term client collaborations, the company positions itself as a leading digital integrator in the Russian market. Their services span IT outsourcing, QA testing, web and mobile development, DevOps, analytics, and design, supported by ISO 9001 certification and multiple industry awards. The website reflects a professional and consistent brand image, targeting businesses seeking robust IT solutions with high integration complexity. Technically, the website is built on the Bitrix CMS platform, hosted on Yandex Cloud infrastructure, and employs modern web technologies including JavaScript frameworks, Yandex SmartCaptcha for spam protection, and analytics tools like Google Analytics and Roistat. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers could be enhanced. Privacy compliance is well addressed with clear policies and consent mechanisms. From a security perspective, the site enforces HTTPS, uses spam protection, and maintains quality management standards via ISO 9001. However, it lacks explicit incident response contact information and a vulnerability disclosure policy, which are recommended for improved security posture. No critical vulnerabilities or suspicious indicators were found. Overall, Иностудио presents a trustworthy and mature digital presence with strong business credibility and a solid technical foundation. Strategic improvements in DNS security and security headers, along with formalizing incident response and vulnerability disclosure, would further enhance their security and compliance stature.

H

Hotel Jūrmala SPA

hoteljurmala.com

61

Hotel Jūrmala SPA is a well-established hospitality business located in Jūrmala, Latvia, offering a comprehensive range of services including accommodation, spa and wellness treatments, dining options, and event hosting facilities. The website reflects a professional and consistent brand image targeting tourists, business travelers, and wellness seekers. The business has been operating since 2004, with a domain registration consistent with this timeline, indicating stability and legitimacy. Technically, the website is built on Drupal 8 and incorporates modern web technologies such as Google Analytics, Google Tag Manager, Facebook Pixel, and Cookiebot for consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Hosting details are not explicitly disclosed but DNS records suggest standard hosting providers. From a security perspective, the site uses HTTPS and enforces domain transfer protection. Cookie consent is managed comprehensively via Cookiebot, supporting GDPR compliance. However, DNSSEC is not enabled, and no explicit security policies or incident response contacts are published, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to enhance trust and security posture.

R

ROKA

rokarestaurant.com

69

ROKA is a premium hospitality business specializing in Japanese Robatayaki cuisine with multiple international locations including London, Dubai, and Istanbul. The website presents a professional and consistent brand image targeting customers seeking high-end dining experiences. The technical infrastructure leverages modern web technologies including JavaScript frameworks, Google Tag Manager, Microsoft Clarity, and Cookiebot for privacy compliance. Embedded third-party forms and payment processing via Stripe and reservation management via Sevenrooms indicate a mature digital ecosystem. Security posture is strong with HTTPS, CSRF protection, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The lack of WHOIS data introduces some uncertainty about domain legitimacy, but the overall website quality and business presentation are trustworthy. Strategic recommendations include improving transparency around security policies and contact information to enhance trust and compliance.

V

Van Genechten Packaging

vangenechten.com

67

Van Genechten Packaging is a well-established packaging company specializing in innovative and sustainable folding carton packaging solutions for diverse markets such as food, pet care, beverages, and more. The company positions itself as a creative and business-impact-driven partner for brands seeking to differentiate their products. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on Drupal 10, hosted with Azure DNS, and employs modern web technologies including Google Tag Manager for analytics and cookie consent management. The site is mobile-optimized and accessible, with good SEO practices and structured data implementation. From a security perspective, the website enforces HTTPS with a strong SSL configuration and domain transfer protection. Cookie consent mechanisms are in place, supporting GDPR compliance. However, DNSSEC is not enabled, and no explicit security policy or incident response contacts are published. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a mature digital presence with solid security and privacy practices, supporting the credibility of the business. Strategic improvements could include enabling DNSSEC, publishing a security.txt file, and providing explicit security contact information to enhance trust and incident response readiness.

A

AerCap Holdings N.V.

aercap.com

71

AerCap Holdings N.V. is a global leader in aviation leasing, recognized as the world's largest owner of commercial aircraft. The company provides airlines worldwide with access to a broad portfolio of aircraft, engines, and helicopters, offering comprehensive fleet solutions. With a strong market position and a presence on the New York Stock Exchange, AerCap serves approximately 300 customers globally, operating from its headquarters in Dublin and multiple international offices. Technically, the website demonstrates a mature digital infrastructure utilizing modern analytics tools such as Google Analytics 4 and Google Tag Manager, alongside a cookie consent mechanism ensuring privacy compliance. The site is well-designed, mobile-optimized, and accessible, reflecting a professional corporate image. However, some technical security enhancements, such as security headers, could be improved. From a security perspective, the site enforces HTTPS and employs consent-based tracking, but lacks visible security policies or incident response contacts. The absence of WHOIS data is a notable anomaly, though the website's content and corporate legitimacy mitigate concerns. Overall, the security posture is solid but could benefit from enhanced transparency and technical hardening. Strategically, AerCap is well-positioned in the aviation leasing sector with a large asset base and diversified customer portfolio. The website supports investor relations and corporate communications effectively, though contact information is not prominently displayed. Recommendations include improving security header implementation, publishing security and incident response policies, and addressing WHOIS data transparency to enhance trust and compliance.

A

Access Digital

accesssoftek.com

51

Access Digital is a mature digital banking platform provider offering a comprehensive ecosystem that includes consumer and business banking, cryptocurrency trading, robo-advisory investing, biometric security, fraud detection, and conversational banking in multiple languages. The company targets financial institutions and businesses seeking advanced digital banking solutions, positioning itself as a robust and elegant financial ecosystem with over 160 integrations and award-winning security features. The website reflects a medium-sized enterprise with a professional online presence and a business history dating back to 1999. Technically, the website is built on WordPress using Elementor and JetEngine plugins, integrated with HubSpot marketing and analytics tools, and served via Cloudflare DNS. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and domain locks in place, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with a cookie consent banner but no visible privacy policy or terms of service pages. Overall, the security posture is adequate but could be improved by enabling DNSSEC, publishing security and privacy policies, and adding vulnerability disclosure information. The website is accessible without WAF blocking, indicating no content restrictions. The domain WHOIS data is consistent with the business claims, showing a long-established domain registered via GoDaddy with Cloudflare DNS. Strategic recommendations include enhancing privacy and security transparency, implementing security headers, and providing clear incident response contacts to strengthen trust and compliance.

Mobilly is a Latvian-based mobile payment platform specializing in convenient and user-friendly payment solutions primarily for transportation services such as bus and train tickets, parking payments, and other related services. The company holds a strong market position in Latvia with a medium-sized business footprint and a well-established digital presence including mobile applications for iOS, Android, and Huawei devices. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience of private users and businesses. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes. Security posture is generally good with HTTPS enforced and secure form inputs, though some security headers are missing and no vulnerability disclosure mechanism is present. Privacy compliance is well addressed with visible privacy and cookie policies and GDPR adherence. Overall, Mobilly demonstrates a mature digital infrastructure and credible business operations with room for improvement in security best practices and transparency.

J

Jets® Group

jetsgroup.com

76

Jets® Group is a company focused on reducing global water and energy consumption through innovative solutions and sustainability initiatives. Their website positions them as an established player in the energy sector, targeting businesses and organizations interested in environmental efficiency. The site features a professional design with good content quality and clear navigation, optimized for mobile devices. Technically, the website leverages modern tools including Craft CMS, Google Tag Manager, Piwik Pro analytics, and a comprehensive cookie consent management system, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR, but lacks explicit security headers and published security policies, which are recommended for enhanced trust and compliance. The absence of WHOIS data for the domain raises concerns about domain registration transparency, though the website content and compliance features suggest legitimate operations. Overall, the site scores well in security posture and privacy compliance but could improve business credibility by providing clearer contact and legal information.

H

HSO

hso.com

78

HSO is a global business transformation partner specializing in Microsoft technology solutions, including Dynamics 365 ERP and CRM, cloud services, and AI-driven data analytics. The company holds a strong market position as a top Microsoft Business Applications partner, recognized with prestigious awards such as the Microsoft Inner Circle and Partner of the Year for Supply Chain Management. Their service offerings span multiple industries including manufacturing, financial services, professional services, retail, public sector, and non-profit organizations. The website reflects a mature digital presence with excellent content quality, clear navigation, and mobile optimization. Technically, the site leverages modern frameworks and integrates multiple analytics and marketing tools, including Google Tag Manager, Bing Ads, and uMarketingSuite, hosted on a CMS platform identified as Umbraco. The site enforces HTTPS with strong security headers, indicating a good security posture. However, there is a lack of explicit published security policies or incident response information, which could be improved to enhance transparency and trust. The WHOIS data for the domain is unavailable or not publicly disclosed, which raises some concerns about domain registration transparency. Despite this, the professional website, Microsoft partnership, and comprehensive service descriptions support the legitimacy of the business. Overall, the site scores well on content, technical implementation, and security, with moderate privacy compliance and business credibility scores due to missing direct contact details and WHOIS information. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and improving direct contact availability to strengthen trust and compliance.

K

Kaskipuu Oy

kaskipuu.fi

58

Kaskipuu Oy is a well-established Finnish manufacturing company specializing in high-quality windows and doors. Founded in 1978, it is the largest domestic family-owned business in its sector, employing hundreds of professionals and operating internationally. The website reflects a professional and consistent brand image, targeting both professional customers and consumers seeking premium products. The business model focuses on manufacturing and direct sales, supported by an e-commerce platform powered by WooCommerce. Technically, the website is built on WordPress with modern technologies including jQuery, FontAwesome, and integrated marketing and analytics tools such as Cookiebot, Google Tag Manager, and Tawk.to for live chat support. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security posture is strong with HTTPS enforced, cookie consent implemented, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response information, and vulnerability disclosure mechanisms are absent, representing areas for improvement. Overall, the domain registration data is consistent with the business claims, enhancing trustworthiness. Strategic recommendations include publishing security and incident response policies, adding a security.txt file, and enhancing HTTP security headers to further strengthen security and compliance.

A

ACB Co-op

acbcoop.com

68

ACB Co-op is a business-to-business service provider specializing in turnkey channel marketing solutions. Their offerings include rebate and loyalty programs, incentive and reward programs, co-op advertising/MDF, brand compliance, and channel marketing technology. The company positions itself as an expert in optimizing channel marketing strategies for businesses. The website is professionally designed using modern technologies such as Gatsby and React, with integration of major analytics and marketing tracking tools including Google Analytics, Bing Ads, LinkedIn Insight Tag, and ZoomInfo Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the active and professional online presence. No explicit privacy, cookie, or terms of service policies are found, and no direct contact information is provided on the site, which impacts trust and compliance. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but security headers and incident response information are lacking.

H

Humentum

lingos.org

61

Humentum is a well-established non-profit organization founded in 2008, specializing in providing training, consulting, and operational support services to international development and humanitarian organizations. The website reflects a professional and consistent brand presence targeting this niche audience. Technically, the site uses modern frameworks such as Bootstrap 4 and integrates marketing and analytics tools like Marketo, Hotjar, and Google Tag Manager, hosted on Amazon AWS infrastructure. The website is accessible and mobile-optimized with a moderate performance profile. Security posture is moderate; while HTTPS is implied, no advanced security headers or vulnerability disclosures are present, and DNSSEC is not enabled. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. WHOIS data shows privacy protection typical for non-profits, with domain age supporting legitimacy. Overall, the site is credible but would benefit from enhanced privacy and security practices.

E

Emergo by UL

emergogroup.com

75

Emergo by UL is a globally recognized consulting firm specializing in medical device regulatory compliance and human factors engineering. The company offers a comprehensive suite of services and software tools designed to assist medical device manufacturers and healthcare technology companies in navigating complex regulatory landscapes and improving product usability. With a strong brand association to UL and a presence in over 20 countries, Emergo by UL positions itself as a leader in the healthcare compliance consulting market. Technically, the website is built on Drupal 10, leveraging modern web technologies and marketing platforms such as Marketo and Google Tag Manager, providing a responsive and accessible user experience. Security practices are solid with HTTPS enforcement and use of security headers, although some headers could be explicitly added or improved. The absence of WHOIS domain registration data is a notable anomaly that slightly impacts the trust assessment but does not detract significantly from the overall professionalism and legitimacy of the site. Strategic recommendations include enhancing transparency around domain registration, adding explicit security policies, and providing direct contact information to improve business credibility and user trust.

R

Radware Ltd.

radware.com

75

Radware Ltd. is a well-established global cybersecurity and application delivery solutions provider founded in 1996. The company offers a comprehensive portfolio of services including DDoS protection, cloud-based Web Application Firewall (WAF), bot management, and AI-powered security solutions. Positioned as a leader in the technology sector, Radware targets enterprise customers and IT security professionals worldwide, with a strong presence in the US and multiple international locations. The website reflects a mature digital presence with professional branding, clear navigation, and extensive business information.

M

Medical Supply Company

medical-supply.ie

59

Medical Supply Company LTD is a well-established Irish supplier specializing in laboratory equipment, reagents, antibodies, and IT solutions targeting clinical diagnostics, life sciences, pharmaceutical, and academic sectors. The company operates a professional and content-rich website that effectively communicates its broad product range and services, positioning itself as a key player in the healthcare supply market in Ireland. The website demonstrates a mature digital presence with comprehensive structured data, social media integration, and clear navigation tailored for B2B customers. Technically, the site is built on WordPress with WooCommerce, leveraging modern themes and scripts, and includes GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and standard security headers present, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and well-optimized for search engines and user experience, though the absence of WHOIS data limits domain registration trust verification.

A

Altus Intelligence

altusintelligence.lv

46

Altus Intelligence is a Latvian technology consulting company specializing in ERP and CRM system implementation, business process optimization, and IT project management, primarily leveraging SAP Business One and SAP Business ByDesign solutions. The company targets small and medium-sized enterprises seeking to improve operational efficiency and business performance through structured processes and software automation. Their website reflects a professional and consistent brand presence with clear service offerings and contact information. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome, and Video.js, with integration of Google Analytics and Tag Manager for user tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements are recommended, such as adding security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the website uses HTTPS and does not expose sensitive data in its HTML content. No explicit security policies or incident response contacts are published, which could be improved to strengthen trust and compliance. The absence of WHOIS data due to query limits limits the ability to fully verify domain legitimacy, but the professional presentation and consistent branding suggest a legitimate business. Overall, the website scores moderately well in content quality, technical implementation, security posture, privacy compliance, and business credibility. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and conducting regular security audits to maintain and improve the security posture.

C

Culligan

edensprings.lv

53

Culligan Latvia, operating under the Eden Springs brand, is a medium-sized business specializing in providing innovative water solutions for both corporate and residential customers. Their offerings include water delivery, water coolers, filtration systems, and related accessories. The company is positioned as a leading water service provider in Latvia and is part of the larger Culligan group, which enhances its market credibility and reach. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to its target audience in Latvia. Technically, the website is built on the Drupal CMS platform and leverages modern JavaScript libraries such as jQuery and AOS for enhanced user experience. It integrates advanced analytics tools like Piwik PRO and Google Tag Manager, indicating a mature digital infrastructure. The site employs HTTPS with good SSL configuration, though security headers could be improved. Cookie consent mechanisms and privacy policies are well implemented, reflecting compliance with GDPR requirements. From a security perspective, the site demonstrates good practices such as encrypted connections and no visible sensitive data exposure. However, the absence of explicit security policies, incident response information, and vulnerability disclosure mechanisms suggests room for improvement in transparency and preparedness. The lack of WHOIS data due to query limits restricts full domain legitimacy verification, slightly impacting trust scores. Overall, Culligan Latvia’s website reflects a solid business presence with good technical and privacy compliance standards. Strategic enhancements in security transparency and WHOIS data availability would further strengthen its trustworthiness and security posture.

M

Mental Disability Advocacy Center

mdac.org

47

Mental Disability Advocacy Center (MDAC) is a well-established non-profit organization founded in 1998, focused on advocating for the human rights of persons with mental disabilities. The organization operates internationally with a clear mission to influence policy, provide legal advocacy, and raise awareness. Their website reflects a professional and consistent brand presence with relevant content targeted at stakeholders including persons with disabilities, NGOs, and donors. The business model is donor-funded advocacy, positioning MDAC as a specialized entity in the human rights non-profit sector. Technically, the website runs on Drupal 7 with common web technologies such as jQuery and Google Analytics for tracking. The site is moderately optimized for performance and mobile use but shows signs of aging technology. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security (DNSSEC) and security headers. No explicit privacy or cookie policies were found, indicating gaps in compliance with modern privacy regulations. Security-wise, the site does not expose sensitive data and uses secure forms, but the absence of security headers and incident response information suggests room for improvement. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and organization. Overall, the website is functional and credible but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include implementing DNSSEC, publishing privacy and cookie policies, adding security headers, and establishing a vulnerability disclosure process to improve trust and compliance.

S

System Logistics

systemlogistics.com

72

System Logistics is a globally recognized supplier specializing in intralogistics and material handling solutions aimed at optimizing supply chains for warehouses, distribution centers, and manufacturing operations. The company positions itself as a leader in its sector, offering innovative solutions to improve operational efficiency. The website reflects a professional and consistent brand image, targeting B2B clients in the transportation and manufacturing sectors worldwide. Technically, the website employs modern technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance, ensuring a good level of digital maturity and user experience across devices. Security-wise, the site enforces HTTPS and provides a comprehensive cookie consent mechanism, but lacks some advanced security headers and explicit security policies, which could be improved to enhance trust and compliance. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and structure suggest a legitimate business operation. Overall, the site scores well in content quality and business credibility but should address domain registration transparency and enhance security and privacy disclosures to strengthen its risk posture.

E

Ente Ospedaliero Cantonale

eoc.ch

69

Ente Ospedaliero Cantonale (EOC) is a public healthcare organization managing a network of hospitals and medical institutes in the Canton of Ticino, Switzerland. The website serves as a comprehensive portal for patients, healthcare professionals, and researchers, providing detailed information on specialties, hospital locations, services, and ongoing research activities. The organization positions itself as a key regional healthcare provider with a strong emphasis on quality care and clinical research. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and integrates Google Tag Manager and Hotjar for analytics and user behavior tracking. The site is mobile-optimized, accessible, and SEO-friendly with clear navigation and professional design. Security posture is good with HTTPS enforced and consent mechanisms for cookies and analytics, though it lacks explicit security policies or incident response information. Overall, the domain registration aligns well with the organization's identity, supporting legitimacy and trustworthiness.

Felm is a well-established Finnish non-profit organization dedicated to promoting human dignity and justice globally through church cooperation, development projects, peacebuilding, advocacy, and humanitarian aid. With over 160 years of history and operations in 24 countries, Felm maintains a strong market position within the international development and faith-based NGO sector. The website reflects a professional and consistent brand image, targeting donors, partner churches, NGOs, and stakeholders interested in humanitarian and development work. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential tools such as Google Tag Manager, reCAPTCHA, and social media SDKs. The site is mobile-optimized, accessible, and SEO-friendly, with multilingual support for Finnish, Swedish, and English audiences. Hosting and domain registration are stable and consistent with the organization's profile. From a security perspective, the site uses HTTPS with good SSL configuration and implements standard best practices like cookie consent and form protection via reCAPTCHA. However, it lacks explicit security headers, a published security policy, and a vulnerability disclosure mechanism. Incident response is partially addressed through a whistleblowing policy link, but dedicated security contact channels are absent. Overall, Felm's website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. The security posture is adequate but could be improved with formal policies and enhanced headers. The risk level is low, and the site is trustworthy for users and partners.

S

Selectchemie AG

selectchemie.ch

50

Selectchemie AG is a well-established Swiss company founded in 1969, specializing in supplying high-quality pharmaceutical and nutrition ingredients as well as generic finished dosage forms. The company operates globally with locations in 17 countries and offers comprehensive technical, scientific, regulatory, and commercial support along the entire value chain. Their business model focuses on being a full-service provider to pharmaceutical and nutrition industries, emphasizing quality, regulatory compliance, and supply chain reliability. Technically, the website is built on WordPress using the Elementor framework, incorporating modern web technologies such as Google Tag Manager and Plausible Analytics for tracking. The site is mobile-optimized, well-structured, and includes SEO best practices. Performance is moderate, with good accessibility and user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, with obfuscated contact emails to reduce spam. However, explicit security headers like Content-Security-Policy are not detected, and no incident response or vulnerability disclosure pages are present. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly reduces trustworthiness. Overall, the website presents a professional and trustworthy front for Selectchemie AG, but domain registration transparency should be improved to enhance legitimacy and trust. Strategic recommendations include adding explicit security headers, publishing incident response contacts, and verifying domain WHOIS information.

F

Freesports Marketing, S.L.U.

free-motion.com

63

Free Motion Gran Canaria, operated by Freesports Marketing, S.L.U., is a specialized bike rental and guided tour service focused on the Gran Canaria region. The company offers high-end bike rentals, guided cycling tours, and sales of used Cannondale bikes, targeting cycling enthusiasts and tourists. The website is professionally designed with consistent branding and good content quality, reflecting a small but established local business. Technically, the site uses modern frontend technologies such as Tailwind CSS, Glide.js, and Turbo framework, with integrated Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and SEO-friendly, providing a good user experience.

A

asketic

asketic.com

67

Asketic is a specialized branding agency focused on delivering brand design services to high-stakes businesses. Their offerings include brand strategy, naming, design direction, visual identity, and a broad range of creative services tailored to elevate or create new brands. The company targets businesses seeking professional branding solutions and positions itself as a niche player in the branding and creative services market. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Webflow CMS, Google Tag Manager, and Stripe for payment processing. From a technical perspective, the website demonstrates a mature digital infrastructure with good performance and SEO optimization. The use of cookie consent mechanisms and privacy policies indicates attention to privacy compliance, particularly GDPR. However, the absence of explicit security headers and incident response policies suggests room for improvement in security posture. The WHOIS data is notably missing, which raises concerns about domain legitimacy and registration transparency. Security-wise, the site uses HTTPS and implements cookie consent, but lacks published security policies and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site presents a moderate to good security posture but would benefit from enhanced transparency and security best practices. The overall risk is moderate due to the missing WHOIS data and lack of explicit security policies. Strategic recommendations include improving domain registration transparency, adding security headers, publishing security and incident response policies, and maintaining strong privacy compliance to enhance trust and security culture.

T

Trust Krediet Beheer

tkb.nl

61

Trust Krediet Beheer (TKB) is a well-established Dutch credit management specialist offering a suite of services including credit management software (TRUST IT), debt collection (incasso), outsourcing, and staffing solutions. The company targets businesses seeking to optimize their receivables and improve cash flow. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content including client case studies and testimonials, positioning them as a trusted partner in the finance sector. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and performance optimizations such as LiteSpeed Cache. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing, demonstrating a moderate level of digital maturity. Mobile optimization and SEO practices are well implemented, though accessibility could be further enhanced. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes key security headers. Forms use secure POST methods, and no sensitive data exposure or vulnerable libraries were detected. However, the absence of a dedicated security policy or incident response information suggests room for improvement in transparency and preparedness. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, reflecting a reliable and professional online presence. Strategic enhancements in security policy disclosure and accessibility would further strengthen their position.

I

Interim HealthCare

interimhealthcare.com

65

Interim HealthCare is a well-established home healthcare agency operating since 1966, providing personalized home health care, hospice, personal care, and medical staffing services across the United States. The company operates a franchise model with over 300 locations in 44 states, emphasizing patient-centered and holistic care. Their website reflects a mature digital presence with comprehensive service descriptions, career opportunities, and resources for clients and healthcare partners. Technically, the website employs modern JavaScript libraries such as jQuery and Modernizr, integrates Google Tag Manager and Microsoft Clarity for analytics, and uses HTTPS with good SSL configuration. The site is mobile-optimized, accessible, and SEO-friendly, offering a positive user experience. However, no explicit CMS or hosting provider information is discernible. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data is a notable anomaly but does not undermine the site's legitimacy given the professional branding and business information. Overall, the website demonstrates a strong business credibility and technical maturity with room for improvement in security transparency and WHOIS data availability. Strategic recommendations include implementing security headers, publishing a security policy, and clarifying domain registration details to enhance trust and compliance.

B

Bellissimo Foods Company

bellissimofoods.com

57

Bellissimo Foods Company is a US-based food service provider specializing in Italian and Mediterranean products, servicing over 30,000 independent pizzerias and Italian restaurants weekly. The company operates a national distributor network and offers a proprietary Bellissimo brand. The website is professionally designed using Squarespace, with moderate technical maturity including HTTPS, Google Analytics, and reCAPTCHA Enterprise for form security. However, the absence of privacy and cookie policies and missing WHOIS registration data present compliance and legitimacy concerns. Security posture is moderate with room for improvement in security headers and compliance documentation. Overall, the site reflects a legitimate business presence but requires enhanced transparency and security practices.

M

MTX Connect

mtxc.eu

50

MTX Connect is a telecommunications provider specializing in global mobile internet connectivity for travelers through 4G/5G eSIM and SIM card offerings. The company positions itself as a private mobile operator with flat rate pricing worldwide and additional features such as free chat. The website is professionally designed with clear navigation and multiple data package options tailored for different regions and durations. The presence of Trustpilot customer reviews enhances trustworthiness. Technically, the site uses modern frameworks like UIkit and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, Mixpanel, and Yandex Metrika, indicating a mature digital marketing approach. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit security policies. Privacy compliance is partial with cookie consent implemented but no visible privacy policy in the provided content. WHOIS data is privacy protected, which is common for telecom businesses, but limits full trust assessment. Overall, the site is functional and credible but could improve transparency and security documentation.

C

CatchSmart

catchsmartsolution.com

58

CatchSmart is an IT solutions and system development company established in 2011, offering a range of services including digital IT solutions, system integration, mobile app development, e-commerce solutions, outsourcing, and business process analysis. The company targets businesses seeking to improve productivity and manage expenses through digital transformation and automation. The website is built on WordPress with Elementor and integrates modern analytics and marketing tools such as Google Analytics and Facebook Pixel. The technical infrastructure is solid with HTTPS enabled and reCAPTCHA implemented for form security. However, the site lacks explicit privacy and terms of service pages, and no direct contact information is readily available, which could impact user trust and compliance. The domain registration is consistent and stable, supporting the legitimacy of the business.

1-800-GOT-JUNK? operates as a leading full-service junk removal company in the United States, providing residential and commercial junk pickup with a strong emphasis on customer convenience, sustainability, and professional service. The company leverages a franchise business model under the parent company O2E Brands, with subsidiaries including WOW 1 DAY PAINTING and Shack Shine. Their market position is reinforced by extensive verified customer reviews and a high average rating, indicating strong brand trust and customer satisfaction. The website reflects a mature digital presence with modern technologies such as Next.js and Drupal headless CMS, ensuring fast performance and excellent mobile optimization. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms in place. Security posture is strong with HTTPS enforcement and security headers, though no explicit incident response or vulnerability disclosure policies are publicly available. Overall, the business demonstrates a professional and trustworthy online presence with room for improvement in transparency of domain registration and security policy documentation.

E

ESPA

espaskincare.com

70

ESPA is a luxury natural skincare and wellness brand offering a wide range of products and spa treatments primarily targeting consumers seeking high-quality, natural beauty solutions. The website is professionally designed, mobile-optimized, and integrates modern e-commerce features including loyalty programs and promotional offers. Technically, the site leverages modern frameworks such as Astro, integrates Google Tag Manager, and employs strong security headers and HTTPS encryption, reflecting a mature digital infrastructure. However, the absence of WHOIS domain registration data introduces a transparency concern, although the website content and branding strongly suggest legitimacy and affiliation with The Hut Group (THG). Privacy compliance is well addressed with cookie consent and a comprehensive privacy policy. Overall, the site presents a strong business and technical posture with minor gaps in domain registration transparency and explicit contact information.