Security Directory

A

A.P. Møller Fonden

apmollerfonde.dk

70

A.P. Møller Fonden is a well-established Danish commercial foundation founded in 1953 by shipowner A.P. Møller. The foundation focuses on supporting projects in education, culture, and climate adaptation, providing significant grant funding to initiatives aligned with its charter. The website reflects a professional and reputable organization with clear branding and comprehensive content aimed at applicants and the general public interested in the foundation's activities. Technically, the site is built on WordPress with modern frameworks such as Bootstrap 5 and uses privacy-conscious analytics via Matomo. The cookie consent mechanism is robust, offering detailed categories and compliance with GDPR requirements. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS data reduces domain registration transparency.

I

International Labour Organisation and International Federation of Journalists

migrantnarratives.org

48

Migrant Narratives is a collaborative project by the International Labour Organisation (ILO) and the International Federation of Journalists (IFJ) aimed at promoting ethical journalism on labour migration. The website serves as a resource hub offering tools, best practices, forums, and showcases of exemplary media coverage to support journalists worldwide. It targets media professionals, labor representatives, and policymakers interested in fair and balanced reporting on migrant workers. The platform operates as a non-profit initiative with a clear focus on education and advocacy within the media sector. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including jQuery, Slick Carousel, and Google Analytics for tracking. The site is hosted under a GoDaddy registrar with privacy-protected WHOIS data, reflecting a standard setup for non-profit international projects. The website demonstrates good mobile optimization, clear navigation, and a professional design consistent with its mission. From a security perspective, the site employs HTTPS with a strong SSL configuration but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with accessible privacy and cookie policies and a consent mechanism, though GDPR compliance is not explicitly stated. Contact information is limited to email addresses affiliated with IFJ, with no phone numbers or physical addresses provided. Overall, Migrant Narratives presents a trustworthy, well-maintained platform with a clear business purpose and solid technical foundation. Strategic improvements in security headers, explicit security policies, and enhanced privacy compliance could further strengthen its posture and user trust.

Reaton is a medium-sized Latvian company operating in the food retail and distribution sector, targeting business customers such as retail stores and the HoReCa segment. The website serves as a B2B platform providing information about their services including logistics and product supply. The digital infrastructure is based on WordPress CMS with common front-end libraries such as Bootstrap, jQuery, and Mapbox for mapping. The site is moderately optimized for mobile and SEO but lacks advanced content richness and business contact details. Security posture is adequate with HTTPS enabled and secure AJAX form submissions, but lacks important security headers and explicit incident response or security policies. Privacy compliance is basic with a privacy policy and cookie consent banner present, though GDPR compliance indicators are minimal. WHOIS data could not be retrieved, limiting domain legitimacy assessment. Overall, the website is functional but could improve in content depth, security hardening, and transparency to enhance trust and compliance.

E

Enlit Asia

enlit-asia.com

70

Enlit Asia is a leading energy transition event focused on the ASEAN region, connecting utilities, IPPs, technology providers, and policymakers to drive sustainable energy solutions. The website demonstrates a mature digital presence with professional design, comprehensive event information, and strong social media engagement. Technically, the site employs modern web technologies, including asynchronous loading of analytics and marketing scripts, and enforces HTTPS for secure communications. However, the absence of WHOIS data introduces some uncertainty about domain registration legitimacy, though the professional nature of the site and its parent company association mitigate this risk. Privacy compliance is basic, with cookie consent implemented but privacy policies hosted on the parent domain. No explicit contact emails or phone numbers are provided, which may impact direct user trust. Overall, the site is well-positioned as a credible event platform with room for improvement in transparency and security policy disclosures.

F

FICSA

ficsa.org

49

FICSA is a well-established federation representing international civil servants, advocating for their rights and working conditions within interagency bodies and legislative organs of the common system. The organization operates primarily as a non-profit entity based in Switzerland, with a global membership and over 70 years of history. Their key services include advocacy, training, webinars, publications, and organizing meetings and councils. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at international civil servants and related stakeholders. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Slick Carousel, and Select2. It uses Google Fonts and integrates social media SDKs for Facebook and Twitter, alongside AddThis for sharing. The site is mobile-optimized with good SEO and accessibility basics, though there is room for improvement in accessibility compliance. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and there is no visible security policy or incident response information. The site includes a cookie consent mechanism and privacy policy, indicating basic GDPR compliance. No critical vulnerabilities or suspicious domains were found. WHOIS data confirms the domain's legitimacy and long-standing registration consistent with the organization's profile. Overall, the website presents a trustworthy and credible digital presence with good content quality and technical implementation. Strategic recommendations include enabling DNSSEC, publishing a security policy and incident response contacts, and enhancing accessibility features to improve compliance and user experience.

I

International Federation of Journalists

ifj.org

63

The International Federation of Journalists (IFJ) is a well-established global non-profit organization founded in 1926, representing over 600,000 media professionals worldwide. It serves as the global voice for journalists, advocating for press freedom, journalists' rights, and safety. The organization operates through various regional offices and campaigns, providing insurance schemes, safety funds, and resources to journalists, especially in conflict zones and challenging environments. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support, targeting journalists, media unions, and advocacy groups globally. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript libraries and analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate to fast performance profile. Security posture is strong with HTTPS enforced and secure form validation, though some security headers are not explicitly detected. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The WHOIS data is not publicly available due to privacy protection, which is common and justified for non-profit international organizations. No suspicious or malicious indicators were found. The website maintains a high level of trustworthiness and professionalism, supported by extensive social media presence and transparent contact information. Overall, IFJ's website demonstrates a robust digital infrastructure supporting its mission, with good security and privacy practices. Strategic improvements could include publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information to further enhance trust and compliance.

B

BVA Xsight

bva-group.com

55

BVA Xsight is a French consulting and research company specializing in behavioral analysis, recognized as an innovative leader in its sector. It operates under the Ipsos bva brand following a recent acquisition. The company offers services including market research, data science, customer experience, and behavioral nudging, targeting businesses seeking to understand and influence consumer behavior. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the website is built on WordPress with a modern tech stack including jQuery, Matomo analytics, and various marketing plugins. Hosting appears to be managed by SiteGround. The site demonstrates good SEO and performance characteristics, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks some advanced security headers and explicit incident response information. No WHOIS data was retrievable, which slightly reduces trust in domain registration transparency. However, the website's branding, external references, and social media presence strongly support its legitimacy. Privacy compliance is robust with GDPR-aligned policies and detailed cookie consent controls. Overall, the site presents a trustworthy and professional front for BVA Xsight's business operations.

L

Loxam

loxam-lahotec.com

69

Loxam Laho Tec is a specialized equipment rental company focusing on professional elevation systems, motorized access, and scaffolding solutions. With over 40 years of expertise, it serves primarily professional contractors and businesses in the construction and related sectors. The company operates as part of the larger Loxam group, a well-established entity in the equipment rental market in France and internationally. The website reflects a professional business model centered on equipment rental, technical support, and customer service excellence, as evidenced by multiple certifications and awards. Technically, the website is built on a modern stack including SAP Hybris e-commerce platform components, Google Fonts, Algolia search, and slick carousel for UI elements. The site is mobile-optimized with good accessibility and SEO practices, though some improvements in security headers and explicit incident response information are recommended. Performance is moderate with a clean, professional design and clear navigation. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks visible HTTP security headers and published security policies or vulnerability disclosure programs. No WHOIS data was found for the domain, which raises some concerns about domain registration legitimacy; however, the strong association with the Loxam group and consistent branding mitigate this risk. Overall, the website presents a trustworthy and professional front for Loxam Laho Tec, with room for improvement in security transparency and domain registration clarity. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to strengthen trust and compliance.

L

Loxam

loxam-tp.com

65

Loxam TP is a specialized subsidiary of Groupe LOXAM, focusing on the rental of heavy machinery for sectors such as demolition, earthworks, and road construction. The company targets professional clients including SMEs and large enterprises, offering a wide range of equipment and expert advice. The website reflects a mature digital presence with comprehensive content, strong branding, and clear navigation tailored to its professional audience in France. Technically, the site is built on a robust e-commerce platform (SAP Hybris Commerce), utilizing modern web technologies including Algolia for search and Google Fonts for typography. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. Security is well-handled with HTTPS and CSRF protections, though some advanced security headers are missing. From a security and compliance perspective, the site includes GDPR-compliant privacy and cookie policies with user consent mechanisms. However, no explicit security policy or incident response contacts are published, and the WHOIS data for the domain is missing, which raises some concerns about domain registration legitimacy. Despite this, the overall security posture is strong with no visible vulnerabilities or exposed sensitive data. Overall, Loxam TP presents a professional and trustworthy online presence aligned with its market position as a leader in heavy equipment rental in France. Strategic improvements in domain registration transparency and enhanced security disclosures would further strengthen trust and compliance.

L

Loxam

loxam-event.com

66

Loxam Event is a specialized division of Groupe Loxam, providing professional equipment rental and logistics services tailored for event management including sports, cultural, and corporate events. The company positions itself as a unique point of entry offering a broad range of equipment and services with international reach and 24/7 support. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding consistent with the parent company. Technically, the site leverages modern frameworks such as SAP Hybris and integrates third-party services like Algolia for search and Insider for marketing analytics. Security posture is adequate with HTTPS implied and cookie consent implemented, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but is mitigated by strong brand association and comprehensive legal documentation. Overall, the site is well-positioned to serve its target audience effectively while maintaining good privacy compliance.

L

Loxam

loxam-access.com

65

Loxam Access is a professional equipment rental subsidiary of Groupe LOXAM, serving sectors such as construction, industry, and services primarily in France. The website offers a comprehensive catalog of rental equipment including aerial platforms, handling machinery, and environmentally friendly options, supported by expert advice and local agency presence. The company holds certifications such as Qualiopi, reinforcing its professional standing. Technically, the website is built on SAP Hybris Commerce platform with modern JavaScript libraries and features like Algolia search and slick carousels. It is mobile optimized and includes accessibility features, though some improvements could be made. Security posture is strong with HTTPS and secure forms, but lacks explicit security headers and incident response information. The WHOIS data is missing or unavailable for the domain www.loxam-access.com, which is unusual for a commercial site and lowers trust slightly. However, the website content, branding, and external references strongly indicate legitimacy and association with Groupe LOXAM. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional, functional, and trustworthy with minor technical and transparency improvements recommended.

É

Élection du Service Client de l'Année

escda.fr

53

Élection du Service Client de l'Année is a French organization that independently evaluates and awards companies and public services for excellence in customer service. Established in 2013, it operates a recognized label and organizes annual events to promote quality in customer relations. The website serves as an information portal for candidates, consumers, and partners, offering news, laureate listings, and international links. Technically, the site uses a modern stack including jQuery, Bootstrap, and Google Analytics, hosted by OVH, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and reCAPTCHA, though lacking advanced security headers and explicit incident response policies. Privacy compliance is basic but includes cookie consent and a privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

Mitsubishi Heavy Industries operates a dedicated career website providing job search and talent acquisition services globally. The company is a large multinational enterprise with over 130 years of history, offering products and services in sectors including commercial aviation, energy, transportation, machinery, defense, and space systems. The website leverages the SAP SuccessFactors platform for career management, ensuring a professional and functional user experience. The site is well-branded, mobile-optimized, and includes cookie consent mechanisms and links to comprehensive privacy and terms policies. Security posture is solid with HTTPS enforced and anti-clickjacking measures, though some security headers and explicit security policies are absent. Overall, the site is trustworthy and professionally maintained, supporting MHI's global recruitment efforts.

M

Mitsubishi Heavy Industries, Ltd.

mhi.com

74

Mitsubishi Heavy Industries, Ltd. is a large multinational manufacturing and engineering conglomerate headquartered in Japan, with a global presence and diversified business sectors including energy, transportation, aerospace, and defense. The company provides a wide range of industrial products and solutions targeting global industrial customers, investors, and partners. The website reflects a mature digital presence built on Drupal 10, featuring comprehensive navigation, social media integration, and consent management mechanisms. Security posture is strong with HTTPS and consent tools, though explicit security policies and vulnerability disclosure programs are not evident. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional website and branding. Strategic recommendations include enhancing transparency with published privacy and security policies and adding security headers to improve defense-in-depth.

W

Web Bay

webbaysolutions.com

48

Web Bay is a specialized digital agency founded in 2012, focusing on providing web design, branding, digital transformation, and communication support services primarily to associations, non-profit organizations, and EU-funded projects. The company positions itself as a niche expert with a strong portfolio and client testimonials that emphasize reliability, remote collaboration, and continuous support. Their market presence is centered in Brussels and Belgrade, serving international clients with a tailored approach to digital challenges in the EU projects and NGO sectors. Technically, the website is built on TYPO3 CMS with a modern tech stack including jQuery and various UI libraries, delivering a professional and responsive user experience. Security posture is solid with HTTPS and domain protection statuses, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a cookie consent mechanism present but lacking a formal privacy policy or terms of service. Overall, the website reflects a credible and professional digital agency with room for enhanced security and compliance documentation.

L

Latvijas Banka

e-monetas.lv

69

The website www.e-monetas.lv serves as the official e-commerce platform for Latvijas Banka, offering commemorative and collection coins to collectors and the general public. It positions itself as the authoritative source for Latvian coin collections, providing detailed product information, news updates, and purchasing capabilities. The site targets coin enthusiasts and investors interested in Latvian numismatics, operating under a retail e-commerce business model with a medium-sized organizational footprint. Technically, the site employs a modern JavaScript stack including jQuery, Bootstrap, Google reCAPTCHA v3, and various UI libraries such as Slick Carousel and Fancybox. The platform appears custom-built or uses a proprietary CMS, with moderate performance and good mobile optimization. SEO and accessibility are basic but functional. Security measures include HTTPS enforcement and bot protection via reCAPTCHA, though HTTP security headers are not explicitly detected. Security posture is solid with no critical vulnerabilities observed, but improvements are recommended in publishing security policies, incident response information, and security.txt files. Privacy compliance is basic with a clear privacy policy and cookie consent mechanism, but lacks detailed GDPR compliance disclosures. Business credibility is high due to official branding, clear contact information, and trust signals. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS data limits domain registration verification. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and continuous monitoring of third-party libraries for vulnerabilities.

E

EXL Service

exlservice.com

73

EXL Service is a global enterprise specializing in analytics, AI, and digital transformation solutions across multiple industries including finance, healthcare, and energy. The company positions itself as a leader in AI innovation and data modernization, supported by industry recognitions and a comprehensive service portfolio. Technically, the website is built on Drupal 11 and integrates modern analytics and marketing technologies, providing a professional and accessible user experience. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are absent. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust despite the professional presentation. Strategic recommendations include publishing security policies, incident response contacts, and improving transparency around domain registration.

A

Arkbauer

arkbauer.com

69

Arkbauer is a Latvia-based full-cycle custom software development company established in 2015, specializing in building custom software applications and web solutions for enterprises. The company positions itself as a reliable partner delivering projects on time and budget, with a portfolio showcasing diverse industry projects and strong client testimonials. Their target audience includes enterprises seeking tailored software solutions to gain competitive advantage. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, optimized for performance and mobile responsiveness. Security measures include HTTPS, Google reCAPTCHA v3 on contact forms, and domain transfer protection, though DNSSEC is not enabled and security headers are absent. Privacy compliance is good with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website demonstrates a professional and trustworthy digital presence with room for security and privacy enhancements.

F

Fintelum

fintelum.com

69

Fintelum operates a compliant crypto crowdfunding platform specializing in the issuance and trading of tokenised assets, including security and utility tokens. The company targets businesses seeking compliant fundraising solutions and investors interested in high-growth tokenised projects. Their platform offers services such as KYC/AML compliance, token transfer agency, and secondary peer-to-peer trading, positioning them as a niche player in the intersection of finance and blockchain technology. The website demonstrates a professional and consistent brand presence with comprehensive legal and privacy documentation, supporting their market credibility. Technically, Fintelum's website is built on WordPress with modern web technologies including jQuery, Google Analytics, Facebook Pixel, and CookieYes for consent management. The site is mobile-optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and bot management via Cloudflare, although some security headers are not explicitly detected, suggesting room for improvement. From a security standpoint, the platform shows good practices such as cookie consent and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies and incident response information is a gap. The missing WHOIS data for the domain raises concerns about domain registration transparency, although the active and professional website presence mitigates some risk. Overall, Fintelum presents a credible and functional platform with solid technical and privacy compliance foundations. Strategic recommendations include enhancing security header implementation, publishing explicit security policies, and verifying domain registration details to improve trustworthiness and compliance posture.

E

Eric Rahmqvist AB

rahmqvist.se

48

Eric Rahmqvist AB is a well-established Swedish company specializing in workplace solutions and office materials, with over 70 years of experience. The company operates multiple subsidiary brands and offers tailored services to improve workplace efficiency, sustainability, and employee wellbeing. Their market position is strong within Sweden, supported by a broad national presence and ISO certifications. Technically, the website employs modern web technologies including Ruby on Rails, Google Analytics, reCAPTCHA, and CDN hosting via AWS Cloudfront, delivering a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS, secure forms, and GDPR compliance, though DNSSEC is not enabled and some security headers could be improved. Overall, the website is professional, trustworthy, and compliant with relevant data protection regulations.

Golden Properties Consulting is a Latvian real estate consulting company specializing in property sales, rentals, and management services. The company targets buyers, sellers, and investors within Latvia, offering a range of residential and commercial properties. Their website provides property listings, search functionality, and multiple contact forms to facilitate client engagement. The company maintains an active social media presence and provides clear contact information, enhancing customer accessibility. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google reCAPTCHA v3, and Facebook Pixel for analytics and marketing. The site is mobile-optimized and features a cookie consent mechanism, indicating awareness of privacy compliance. However, no structured data or advanced SEO features were detected, and some accessibility features are basic. From a security perspective, the site uses HTTPS and protects forms with reCAPTCHA, but lacks visible security headers such as CSP or HSTS. The absence of explicit security or incident response policies and missing WHOIS data limit the ability to fully assess domain legitimacy and security posture. Overall, the site demonstrates moderate security maturity with room for improvement. The overall risk is moderate; the site is functional and professional but would benefit from enhanced security headers, clearer compliance documentation, and verified domain registration data. Strategic recommendations include implementing security headers, publishing detailed security and incident response policies, and ensuring WHOIS data availability to improve trust and compliance.

S

SIA “Agile & Co”

agile.lv

38

Agile & Co is a Latvian technology consultancy firm specializing in agile ICT project management, security research, and capital services. The company targets businesses requiring agile and security-focused solutions, positioning itself as a niche provider with ISO 9001 certification indicating quality management. The website is built on WordPress with common plugins and libraries, including Google Analytics and reCAPTCHA for analytics and spam protection. However, the site currently displays a 404 error page, limiting content availability and user experience. Security posture is moderate with HTTPS enabled and reCAPTCHA in use, but lacks important security headers and visible privacy policies, which impacts compliance and trust. WHOIS data is unavailable due to query limits, reducing domain trust assessment capabilities. Overall, the site shows basic professionalism but requires improvements in content availability, security policies, and transparency to enhance trust and compliance.

R

RTC

rtc.com

65

RTC is a retail-focused company specializing in improving shopping experiences and retail productivity through custom fixtures and operational solutions. The company has a global presence with over 900 associates and 75+ years of experience, positioning itself as a significant player in the retail sector. Their website is professionally designed using Drupal 10, featuring comprehensive content about their services, global reach, and corporate social responsibility initiatives. Technically, the site employs modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. The WHOIS data is unavailable, raising concerns about domain registration legitimacy, which impacts trustworthiness despite the professional web presence.

CD Solutions Inc. operates a professional e-commerce website specializing in CD, DVD, Blu-Ray, USB, and SD card duplication hardware and services. With over 25 years of experience, the company positions itself as a trusted provider offering a broad inventory of duplication equipment, media, and custom duplication services. The website is well-structured, providing clear navigation, detailed product categories, and comprehensive business information. The company targets businesses and individuals requiring duplication solutions, emphasizing quality and professional service. Technically, the website leverages the Volusion e-commerce platform with modern JavaScript libraries such as jQuery and Slick Carousel. It employs HTTPS with a valid SSL certificate and integrates analytics tools including Google Analytics, Statcounter, and Dynatrace. The site demonstrates good mobile optimization and SEO practices but lacks some advanced security headers and cookie consent mechanisms. From a security perspective, the site benefits from strong SSL encryption and secure form handling. However, the absence of security headers and a formal security policy or incident response information indicates room for improvement. The WHOIS data is notably missing, raising concerns about domain registration legitimacy, which impacts overall trustworthiness despite the professional presentation. Overall, CD Solutions Inc. presents a credible and functional online presence with solid technical infrastructure but should address domain registration transparency and enhance privacy compliance to strengthen trust and security posture.

R

Rosenthal

rosenthal.lv

48

Rosenthal Law Firm is a boutique legal practice based in Riga, Latvia, specializing in a broad range of legal services including business transactions, litigation, commercial law, real estate, immigration, labor law, banking, IT, international trade, tax planning, and contract drafting. The firm emphasizes confidentiality and trust, reflected in its slogan “Sub rosa”. The website is professionally designed using WordPress with SEO optimization and multilingual support, targeting individuals and businesses requiring legal assistance in Latvia and internationally. Contact information is clearly provided with company domain emails and phone numbers, enhancing business credibility. Technical infrastructure includes WordPress CMS, Yoast SEO, Slick Carousel, and Matomo analytics, indicating a modern digital presence with moderate performance and good mobile optimization. Security posture is strong with HTTPS and security headers, though privacy compliance could be improved by implementing cookie consent mechanisms and detailed GDPR statements. WHOIS data is unavailable due to query limits, limiting domain trust verification, but website content and presentation suggest legitimacy. Strategic recommendations include enhancing privacy compliance, publishing terms of service, and adding incident response contacts to strengthen security and trust.

M

Memoriālo muzeju apvienība

memorialiemuzeji.lv

56

Memoriālo muzeju apvienība is a Latvian cultural organization managing multiple memorial museums dedicated to historically and culturally significant personalities. The website serves as a portal for museum exhibitions, educational programs, digital exhibitions, and cultural events, targeting visitors interested in Latvian heritage. The organization maintains a professional online presence with multilingual support and active social media channels. Technically, the site is built on WordPress with common plugins and uses Google Analytics with privacy-conscious settings. Security posture is good with HTTPS and cookie consent mechanisms, though security headers and incident response policies are absent. Overall, the site is well-designed, accessible, and trustworthy, supporting the organization's cultural mission effectively.

T

TAV Airports

tavairports.com

71

TAV Airports is a global airport operator managing a portfolio of 15 airports across eight countries and three continents, serving millions of passengers annually. The company positions itself as a leader in airport operations with a strong focus on sustainability and service quality. The website reflects a mature enterprise with comprehensive business information, investor relations, and sustainability initiatives. Technically, the website employs modern frameworks such as Bootstrap and Slick Carousel, hosted on Amazon AWS infrastructure, and integrates Google Analytics for traffic monitoring. Accessibility is enhanced through a third-party widget, demonstrating commitment to inclusivity. Security posture is solid with HTTPS enabled and domain transfer protections in place, though improvements like DNSSEC and explicit security policies could enhance trust further. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy or terms of service. Overall, the site is professional, trustworthy, and well-aligned with the company's business stature.

R

Raj Diamonds

rajdiamonds.com

46

Raj Diamonds is a medium-sized retail jewellery business based in India, specializing in diamond and gold jewellery with a strong emphasis on certified and hallmark products. The company operates both online and through multiple physical stores in Bengaluru and Mysuru, targeting consumers seeking elegant, trustworthy jewellery options. The website is a modern Angular-based single-page application that provides a good user experience with mobile optimization and clear navigation. The technical infrastructure includes Google Tag Manager for analytics and Cashfree SDK for payment processing, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, but lacks advanced security headers and DNSSEC, which are recommended for improvement. The domain registration is transparent and consistent with the business claims, enhancing trustworthiness. Overall, the website and business demonstrate a solid foundation with room for security and compliance enhancements.

L'Atelier Rouge is a small, creative floral and event design business established since 2009. The company offers customized floral designs for various occasions including weddings, parties, and business events, alongside full-service event design and editorial styling. The website reflects a niche market position with a focus on artistic and bespoke services targeting individuals and businesses seeking high-quality floral and event design solutions. Technically, the website is built on WordPress 4.9.9 with common libraries such as jQuery and Bootstrap, hosted behind Cloudflare DNS but lacks modern security enhancements like DNSSEC and security headers. The site is moderately optimized for mobile and performance but shows some outdated practices such as loading scripts over HTTP, which could lead to mixed content issues. Security posture is basic with no visible advanced protections or policies, and privacy compliance is lacking due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility, but the presence of unrelated gambling links in the menu raises concerns about content integrity. Overall, the site is functional and professional but requires improvements in security, privacy compliance, and content integrity to enhance trust and user safety.

N

New Horizons Worldwide, LLC

newhorizons.com

79

New Horizons Worldwide, LLC is a well-established enterprise providing modern IT training solutions with a strong market position supported by over 40 years of experience. The company offers a broad catalog of IT and professional development courses, including certifications from major industry players such as Microsoft, AWS, and CompTIA. Their target audience includes IT professionals, corporate teams, and government personnel seeking upskilling and certification. The business operates under the parent company Educate 360, with multiple subsidiaries enhancing its service portfolio. Technically, the website is built on the DNN CMS platform and leverages a mature technology stack including jQuery, HubSpot, Google Tag Manager, and analytics tools like Hotjar and Microsoft Clarity. The site is mobile-optimized, well-structured, and SEO-friendly, providing a professional user experience. Security posture is good with HTTPS enforced and secure form handling, though some security headers could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place. However, explicit security policies and incident response contacts are not found, which could be enhanced. Overall, the website demonstrates high professionalism, trustworthiness, and business credibility. The missing WHOIS data is a notable gap but likely due to privacy protection. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining vigilance on third-party scripts to sustain security and compliance.

F

Forbes Councils

forbestechcouncil.com

71

Forbes Technology Council is a prestigious, vetted professional networking community targeting senior-level technology executives such as CIOs, CTOs, and VPs of technology teams. The platform offers members opportunities to increase visibility and credibility through expert panels, bylined articles on Forbes.com, executive profiles, and access to a private member portal and mobile app. The business model is membership-based with a rigorous vetting process and paid membership packages, positioning Forbes Technology Council as a leader in professional technology executive communities. Technically, the website is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools including Google Analytics 4, Google Tag Manager, and Google reCAPTCHA Enterprise for security. The site is mobile-optimized, accessible, and SEO-friendly with a professional design and clear navigation. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced, secure form handling, and anti-bot protections. However, explicit privacy and terms of service pages are not found, which is a compliance gap. No direct contact emails or phone numbers are published, relying on contact forms instead. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the overall trustworthiness is high due to Forbes branding and professional content. Overall, the website demonstrates a mature digital presence with strong business credibility and security practices, though improvements in privacy transparency and updating legacy libraries would enhance compliance and security.

L

Local Initiatives Support Corporation

lisc.org

50

Local Initiatives Support Corporation (LISC) is a well-established non-profit organization focused on community development across the United States. It connects local groups with capital and technical expertise to foster inclusive, resilient communities. The organization operates in multiple sectors including affordable housing, economic development, education, health, and sustainability. LISC has a strong market position as a national leader with a history dating back to 1979 and operates several affiliate investment companies to bridge funding gaps in under-resourced communities. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and Facebook Pixel, with evidence of a Python-based CMS platform. The site is well-optimized for mobile and accessibility, with good SEO practices. Performance is moderate, and the site uses HTTPS with secure forms, though some security headers are not explicitly detected. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CSRF protection on forms. However, it lacks visible security headers and an explicit cookie consent mechanism, which are recommended for enhanced security and privacy compliance. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection, but the domain and website content align with a legitimate, large non-profit entity. Overall, LISC's website is professional, trustworthy, and content-rich, supporting its mission and business model effectively. Strategic recommendations include implementing cookie consent, enhancing security headers, and publishing explicit security and incident response policies to further strengthen trust and compliance.

F

FoodUnion

foodunion.nl

43

FoodUnion is a Dutch company specializing in professional kitchen space rental, flexible office spaces, and event venues primarily serving food entrepreneurs, caterers, and start-ups in Rotterdam and Haarlem. The company operates a niche business model focused on providing shared and private kitchen units alongside community engagement. Their website is built on WordPress with modern plugins and includes SEO optimization and basic security measures such as Google reCAPTCHA on forms. However, there is room for improvement in security headers and cookie consent compliance. The domain is well-established since 2013, supporting the company's credibility. Overall, FoodUnion presents a professional online presence with moderate technical maturity and a solid business foundation.

S

Shattuck-St. Mary’s School

s-sm.org

72

Shattuck-St. Mary’s School is a well-established college preparatory boarding and day school located in Faribault, Minnesota, serving grades 6-12 and post-graduate students. The institution offers a comprehensive academic program complemented by specialized centers of excellence in athletics and arts, alongside a vibrant student life and summer programs. The website reflects a strong market position as a premier educational institution with a consistent brand and professional presentation. Technically, the site is built on the Finalsite CMS platform and integrates multiple modern analytics and marketing technologies, including Google Analytics, TikTok Pixel, Hotjar, and Weglot for multilingual support. The site is mobile-optimized and accessible, with good SEO practices implemented. Security posture is strong with HTTPS enforced and security headers present, though there is room for improvement in explicit security policies and incident response information. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the WHOIS data is incomplete or inaccessible, which slightly impacts domain trustworthiness. Overall, the website demonstrates a mature digital presence suitable for its educational mission.

E

Ezugi

ezugi.com

66

Ezugi is a global B2B provider specializing in live dealer gaming and live lottery solutions for online casinos and retail betting shops. Founded in 2012 and now part of Evolution, it offers a broad portfolio of localized live casino games streamed from multiple studios worldwide. The company targets licensed operators in regulated markets and supports over 1000 brands. Technically, the website employs modern web technologies including jQuery, Bootstrap, and advanced animation libraries, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and dedicated security policies are absent. WHOIS data is unavailable, which raises some concerns about domain registration transparency, but the overall digital footprint and partner ecosystem support legitimacy. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. The site demonstrates good professionalism and trustworthiness, with room for improvement in security disclosures and WHOIS transparency.

M

Morrison Freight

morrison.com

54

Morrison Freight Ltd is a well-established, independently-owned freight forwarding company specializing in European logistics and road freight solutions. The company offers daily freight services across 25 European countries and emphasizes a professional, personal approach with over 30 years of industry experience. Their key services include road freight, intermodal transport, warehousing, and seafreight. The website reflects a strong market position with multi-award recognition and AEO certification, targeting businesses requiring reliable European freight services. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and UIkit, leveraging jQuery and FontAwesome for UI components. It integrates Google Analytics and Tag Manager for tracking, and uses Google reCAPTCHA v3 to secure forms. The site is mobile-optimized with good SEO practices and moderate performance. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site enforces HTTPS and uses anti-spam measures on forms, but lacks visible security headers and vulnerability disclosure mechanisms. The absence of WHOIS registration data for the domain is a notable concern, as it conflicts with the company's claimed long history, potentially impacting trustworthiness. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in domain registration and enhanced security policies. Strategic improvements in security headers, incident response documentation, and WHOIS data clarity are recommended to strengthen trust and compliance.

J

Jumis.co

jumis.co

56

Jumis.co is a Latvian small business specializing in the installation, repair, and reconstruction of wooden roof structures and various roofing materials. The company targets private homeowners and commercial clients seeking quality roofing solutions. The website presents a professional portfolio of completed projects and partnerships, indicating a stable market presence since its founding in 2017. Technically, the website employs common web technologies such as jQuery, Bootstrap, and Google services, hosted behind Cloudflare DNS with GoDaddy as the registrar. While the site is mobile-optimized and well-structured, it lacks explicit privacy and cookie policies, and uses an outdated jQuery version, which poses potential security risks. Security headers are not detected, and DNSSEC is not enabled, suggesting room for security improvements. Overall, the site is accessible and functional with moderate security posture and good business credibility.

C1 is a global technology solutions provider specializing in AI-powered communications, infrastructure, and security services. The company serves a broad range of sectors including education, government, healthcare, and financial services, supporting over 6,000 customers worldwide. Their offerings include unified communications, contact center solutions, enterprise networking, cybersecurity, and managed services, supported by partnerships with leading technology vendors such as Cisco, Microsoft, and AWS. Technically, the website is built on the HubSpot CMS platform, utilizing modern web technologies including Bootstrap, Google Tag Manager, and Vidyard for video content. The site demonstrates good mobile optimization, clear navigation, and professional design. Analytics and marketing tools are integrated, with a cookie consent mechanism in place, though explicit privacy and terms of service pages were not detected in the provided content. From a security perspective, the site enforces HTTPS and employs cookie consent management, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS data for the domain is unusual and slightly reduces trust, though the website content and partner ecosystem indicate a legitimate business. Overall, the website presents a professional and credible front with room for improvement in privacy transparency and security disclosures. Strategic recommendations include publishing comprehensive privacy and security policies, adding vulnerability disclosure information, and enhancing security headers to strengthen trust and compliance.

G

Gebwell Oy

gebwell.com

61

Gebwell Oy is a Finnish company specializing in environmentally friendly heating and cooling solutions, including heat pumps, district heating substations, and energy accumulators. Established in 2005, the company positions itself as a trusted expert in the energy sector, serving homeowners, commercial, industrial, and public building markets. Their website reflects a mature digital presence with comprehensive product information, customer references, and multilingual support. Technically, the site is built on WordPress with modern frameworks like React and integrates advanced analytics and marketing tools, ensuring good performance and SEO. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well managed with a cookie consent platform and a comprehensive privacy policy. Overall, the site and domain data indicate a legitimate, professional business with a solid market position.

C

Centrs Dardedze

centrsdardedze.lv

43

Centrs Dardedze is a Latvian non-profit organization dedicated to ensuring a safe childhood for every child through psychological support, education, and prevention of violence and abuse. The organization targets children, parents, and specialists, offering services such as psychological counseling, mediation, educational programs, and webinars. The website reflects a professional presence with multilingual support and active social media engagement. Technically, the site is built on WordPress with modern tracking and analytics tools, including Google Analytics and Facebook Pixel, and employs HTTPS for secure communications. However, the absence of security headers and explicit security policies indicates room for improvement in security posture. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site presents a trustworthy and functional platform for its non-profit mission, though WHOIS data is unavailable for full legitimacy verification.

L

Latvijas Pašvaldību Mācību Centrs

lpmc.lv

43

Latvijas Pašvaldību Mācību Centrs (LPMC) is an established accredited educational institution in Latvia, providing a broad range of educational programs and seminars primarily targeting municipal employees, social workers, legal professionals, and educators. The organization offers over 400 programs, ranging from short seminars to extended courses, aiming to improve societal knowledge and skills through education. The website is professionally designed using WordPress with modern plugins and technologies, ensuring a good user experience and mobile responsiveness. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers are missing. Privacy and cookie policies are present and indicate GDPR compliance. Contact information is clearly provided, enhancing business credibility. However, WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website demonstrates a solid digital presence with room for security improvements.

R

restorators.lv

restorators.lv

52

Restorators.lv is a Latvian language media website focused on poker, casino, blackjack, and sports betting content. The site provides informational articles targeting gambling enthusiasts in Latvia. The business model centers on content publishing with a niche focus on gambling-related topics. The website uses WordPress CMS with common plugins such as All in One SEO and jQuery libraries, indicating a standard modern web infrastructure. The site is mobile optimized and has good SEO metadata and structured data, enhancing its discoverability and user experience. Security posture is moderate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No WHOIS data was available due to query limits, limiting domain legitimacy verification. Overall, the site appears legitimate and professionally maintained but could improve privacy compliance and security best practices.

A

Akciju sabiedrība "AGROLATS HOLDING"

agrolats.lv

44

Agrolats Holding is a Latvian group of companies operating primarily in agriculture, manufacturing, trade, and related services. The group unites approximately 40 companies with a shared vision of sustainable business development and mutual support within the Latvian economy. With over 25 years of experience, the group manages more than 15,000 hectares of agricultural land and employs over 500 people, positioning itself as a significant player in its sectors. The website reflects a professional and consistent brand presence, targeting Latvian businesses and partners in the agricultural and manufacturing industries. Technically, the website is built on WordPress using the Oxygen Builder framework, leveraging modern JavaScript libraries such as Swiper.js and Slick Carousel for UI components. The site is mobile-optimized and includes standard SEO and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with external dependencies on common CDNs and Google services. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no advanced security headers were detected, and there is no public security policy or incident response information. The absence of WHOIS data due to query limits limits the ability to fully verify domain registration legitimacy, though the website content and business information appear consistent and trustworthy. Overall, the website presents a credible and professional digital presence for Agrolats Holding, with room for improvement in security transparency and WHOIS data availability. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding vulnerability disclosure information to strengthen trust and compliance.

M

Mann Lines

mannlines.com

47

Mann Lines is a privately owned shipping and logistics company specializing in liner ro-ro and container vessel services, ships agency, warehousing, forwarding, and distribution primarily in the North Sea and Baltic regions. The website presents a professional image with clear descriptions of their services and subsidiaries, targeting a broad audience involved in transportation and logistics. Technically, the site uses a range of established JavaScript libraries and Google Maps API to enhance user experience, though some libraries are outdated. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Security posture is moderate with no HTTPS or security headers information available from the data, and no explicit privacy or cookie policies are present, indicating compliance gaps. The absence of WHOIS data raises concerns about domain legitimacy and ownership transparency. Overall, the site is functional and informative but requires improvements in security, privacy compliance, and domain registration transparency to enhance trust and reduce risk.

R

RIPO

ripo.lv

48

RIPO.LV is a Latvian company specializing in interior solutions and construction materials, operating since 1993. The website presents a professional and consistent brand image targeting Latvian-speaking customers interested in furniture, railings, gates, and building materials. The business model focuses on manufacturing and retail within the local market. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and Slick Carousel, with integration of Google Tag Manager and Facebook Pixel for marketing and analytics. The site is mobile optimized and has a cookie consent mechanism indicating GDPR awareness. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and formal security policies. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website is functional, moderately secure, and compliant with basic privacy requirements.

Mobilly is a Latvian-based mobile payment platform specializing in convenient and user-friendly payment solutions primarily for transportation services such as bus and train tickets, parking payments, and other related services. The company holds a strong market position in Latvia with a medium-sized business footprint and a well-established digital presence including mobile applications for iOS, Android, and Huawei devices. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience of private users and businesses. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes. Security posture is generally good with HTTPS enforced and secure form inputs, though some security headers are missing and no vulnerability disclosure mechanism is present. Privacy compliance is well addressed with visible privacy and cookie policies and GDPR adherence. Overall, Mobilly demonstrates a mature digital infrastructure and credible business operations with room for improvement in security best practices and transparency.

S

SUEZ

safege.com

67

SUEZ is a global enterprise specializing in water and waste management, providing circular economy solutions to local authorities and businesses. The company positions itself as a leader in environmental services, focusing on sustainability and resource management. The website reflects a mature digital presence with multilingual support and comprehensive content tailored to a professional audience. Technically, the site employs modern web standards and frameworks, ensuring good performance and accessibility. Security posture is strong with HTTPS enforcement and standard security headers, though explicit incident response contacts and vulnerability disclosure mechanisms are not prominently published. Overall, the site demonstrates a high level of professionalism and compliance with privacy regulations, supporting trustworthiness and business credibility. However, the absence of WHOIS data for the domain is unusual and warrants further verification to confirm domain registration legitimacy.

C

Culligan

edensprings.lv

53

Culligan Latvia, operating under the Eden Springs brand, is a medium-sized business specializing in providing innovative water solutions for both corporate and residential customers. Their offerings include water delivery, water coolers, filtration systems, and related accessories. The company is positioned as a leading water service provider in Latvia and is part of the larger Culligan group, which enhances its market credibility and reach. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to its target audience in Latvia. Technically, the website is built on the Drupal CMS platform and leverages modern JavaScript libraries such as jQuery and AOS for enhanced user experience. It integrates advanced analytics tools like Piwik PRO and Google Tag Manager, indicating a mature digital infrastructure. The site employs HTTPS with good SSL configuration, though security headers could be improved. Cookie consent mechanisms and privacy policies are well implemented, reflecting compliance with GDPR requirements. From a security perspective, the site demonstrates good practices such as encrypted connections and no visible sensitive data exposure. However, the absence of explicit security policies, incident response information, and vulnerability disclosure mechanisms suggests room for improvement in transparency and preparedness. The lack of WHOIS data due to query limits restricts full domain legitimacy verification, slightly impacting trust scores. Overall, Culligan Latvia’s website reflects a solid business presence with good technical and privacy compliance standards. Strategic enhancements in security transparency and WHOIS data availability would further strengthen its trustworthiness and security posture.

B

BEGA Gantenbrink-Leuchten KG

bega.de

62

BEGA Gantenbrink-Leuchten KG is a specialized company focused on lighting and illumination technology, primarily serving outdoor and architectural sectors. The company presents itself as an established player in the energy-related lighting industry with a professional and well-structured website targeting architects and lighting professionals. The website employs modern web technologies such as Vue.js and Nuxt.js, ensuring a responsive and user-friendly experience. However, the absence of WHOIS data and lack of visible privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate but could be improved by implementing standard security headers and clearer data protection measures. Overall, the website is functional and professional but would benefit from enhanced compliance and security disclosures.

C

CJSC «Eurosib SPb-TS»

eurosib.biz

45

CJSC «Eurosib SPb-TS» is a well-established Russian transport and logistics company founded in 2006, managing a large fleet of rolling stock and operating a modern logistics terminal in Novosibirsk. The company serves major industrial enterprises and trade networks across Russia, CIS countries, and international markets including Finland and China. Their key services include railway transportation, freight forwarding, and integrated logistics solutions. The website reflects a professional business with clear service offerings and multiple contact channels. Technically, the site is built on Bitrix CMS with common JavaScript libraries and analytics tools, showing moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain is legitimate with a long registration history and privacy protection consistent with business norms.