Security Directory

P

Puratos

puratos.md

64

Puratos Moldova operates a professional B2B website dedicated to bakery, patisserie, and chocolate professionals, offering a wide range of ingredients and products to improve finished goods quality. The company is part of the international Puratos Group, with a strong market position in the food manufacturing sector. The website is built on Adobe Experience Manager, leveraging modern web technologies and providing localized content for the Moldovan market. While the site is well-designed and content-rich, it lacks explicit privacy and cookie policies, as well as visible contact information, which are important for compliance and user trust. Security posture is solid with HTTPS and no visible vulnerabilities, but could be improved with additional security headers and incident response information. Overall, the website is professional and trustworthy but should enhance privacy compliance and transparency to improve user confidence and regulatory adherence.

P

Puratos

puratos.pl

53

Puratos is a large international company specializing in manufacturing and supplying bakery, patisserie, and chocolate ingredients primarily targeting professional bakers, confectioners, and praline producers. The website is localized for Poland and offers a comprehensive product catalog, recipes, and an online ordering platform requiring user authentication. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, Google Tag Manager, and Visual Website Optimizer for marketing and analytics. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS usage implied but lacks visible security headers and explicit privacy or cookie policies. WHOIS data is unavailable due to registry policies, limiting domain trust verification. Overall, the website is professional and credible but would benefit from enhanced privacy compliance and security best practices.

P

Puratos

puratos.com.au

57

Puratos is a global enterprise specializing in manufacturing and supplying bakery, patisserie, and chocolate ingredients. The website targets professional bakers, pastry chefs, and chocolatiers, offering products, recipes, consumer insights, and services. The site demonstrates a consistent brand presence with a professional design and good content quality. Technically, it uses modern marketing and analytics tools such as Google Tag Manager and Visual Website Optimizer, hosted likely on Adobe Experience Manager CMS. Security posture is moderate with HTTPS usage but lacks visible security headers and explicit privacy or cookie policies. WHOIS data is unavailable due to privacy protection or query failure, which is common for commercial domains but limits domain trust verification. Overall, the site is functional and professional but could improve transparency and security disclosures.

P

Puratos

puratos.com.mx

58

Puratos is a large, established company specializing in supplying ingredients for bakery, patisserie, and chocolaterie sectors, targeting professional bakers, pastry chefs, and chocolatiers primarily in Mexico. The website is localized in Spanish (Mexico) and offers product catalogs, recipes, consumer insights, and an e-commerce platform via the My Puratos account system. Technically, the site is built on Adobe Experience Manager with modern JavaScript frameworks and integrates marketing and analytics tools such as Google Tag Manager and Visual Website Optimizer. Security posture is good with HTTPS and secure authentication via Microsoft Azure B2C, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the site is professional, trustworthy, and well-branded, but could improve transparency and compliance documentation.

P

Puratos

puratos.ke

71

Puratos is a global manufacturing company specializing in bakery, patisserie, and chocolate ingredients and products. The website targets professional bakers, patissiers, and chocolatiers, offering product information, recipes, and consumer insights. The site is well-structured, localized for Kenya, and uses modern web technologies including Adobe Experience Manager CMS and Google Tag Manager for analytics. The website is secured with HTTPS and shows good technical implementation and user experience. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy. Additionally, the lack of visible privacy, cookie, and contact information policies indicates gaps in compliance and user trust facilitation.

P

Puratos

puratos.nl

55

Puratos is a well-established international supplier specializing in high-quality ingredients for bakery, patisserie, and chocolate sectors. The website targets professional bakers, patissiers, and chocolatiers, offering a broad product catalog, recipes, and customer success stories, positioning itself as a trusted partner in the food manufacturing industry. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, Google Tag Manager, and Visual Website Optimizer for analytics and marketing optimization. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate; HTTPS is implied, but explicit security headers and policies are not visible. Privacy compliance is weak due to the absence of accessible privacy and cookie policies. WHOIS data confirms domain legitimacy and consistency with the brand's business claims. Overall, the website is professional and credible but would benefit from enhanced privacy and security disclosures.

P

Puratos

puratos.dk

57

Puratos Denmark operates as a regional branch of the global Puratos group, specializing in bakery, patisserie, and chocolate ingredients and products. The website targets professional bakers, patissiers, and chocolatiers, offering product catalogs, recipes, and consumer insights. The site is built on Adobe Experience Manager CMS, leveraging modern web technologies such as Google Tag Manager and FontAwesome for analytics and UI enhancements. The content is well-structured and professionally presented in Danish, with extensive multilingual support indicated by hreflang tags. However, the absence of WHOIS data limits domain trust verification. Security posture is moderate with HTTPS implied but lacking visible security headers and explicit privacy or cookie policies. Contact information is not directly visible, which may impact user trust and compliance. Overall, the site reflects a mature business with a strong market position but could improve transparency and security compliance.

P

Puratos

puratos.ca

55

Puratos is a large manufacturing company specializing in bakery, patisserie, and chocolate ingredients and products, targeting professional bakers, pastry chefs, and chocolatiers primarily in Canada. The website demonstrates a mature digital presence with a well-structured product catalog, recipes, and digital services such as MyLink and a webshop requiring secure login via Azure B2C. The technical infrastructure leverages modern web technologies including React, Google Tag Manager, and Adobe Experience Manager CMS, ensuring a good user experience and mobile optimization. Security posture is strong with HTTPS enforced and secure login mechanisms, though some security headers and explicit security policies are missing. Privacy and cookie policies are present and likely GDPR compliant, supporting privacy compliance. However, the absence of WHOIS data for the domain www.puratos.ca is a notable anomaly that slightly reduces trustworthiness. Overall, the website is professional, secure, and business credible, with room for improvement in transparency of security policies and direct contact information.

F

FORT Legal

fortlegal.com

52

FORT Legal is a reputable Lithuanian law firm established in 2013, specializing in a broad range of legal services including corporate advisory, finance, real estate, and dispute resolution. The firm emphasizes client-centric service, practical solutions, and long-term partnerships. Their website reflects a professional and modern digital presence using contemporary frontend technologies such as Alpine.js and Tailwind CSS, hosted on a provider indicated by their nameservers. While the site is well-designed and content-rich, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is moderate with no visible advanced security headers or DNSSEC enabled, suggesting room for improvement in technical security measures. The domain registration is consistent with the firm's history, enhancing credibility. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

M

Meriton Property Services Pty Ltd

meritonsuites.com.au

53

Meriton Suites is a leading Australian hospitality company specializing in serviced apartment-style hotel accommodation. Founded in 2003 and owned by Meriton Property Services Pty Ltd, it operates over 6,200 suites across 23 prime locations in Australia, positioning itself as the largest operator in this niche. The company targets business travelers, families, and extended stay guests, offering spacious suites with home-like amenities and a loyalty program called Eminence. The website reflects a mature digital presence with comprehensive content, clear navigation, and a professional design that supports direct bookings and customer engagement. Technically, the website is built on WordPress and leverages modern JavaScript libraries and frameworks such as UIkit, Owl Carousel, and Slick Carousel. It integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, Hotjar, Klaviyo, and Campaign Monitor, indicating a sophisticated approach to user tracking and marketing automation. Hosting and DNS are managed through Cloudflare, ensuring robust performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS with strong SSL configuration and employs Cloudflare DNS, but lacks explicit security headers and visible incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial; while a comprehensive privacy policy and terms of service are present, there is no cookie consent mechanism, which may affect GDPR compliance. Contact information is available, but no dedicated security or incident response contacts were found. Overall, Meriton Suites' website demonstrates a high level of professionalism and business credibility with a strong market position in the Australian hospitality sector. Security posture is good but could be improved with enhanced privacy compliance and security policies. Strategic recommendations include implementing cookie consent, adding security headers, and publishing incident response information to strengthen trust and compliance.

E

Eesti Maanteemuuseum

maanteemuuseum.ee

53

Eesti Maanteemuuseum is a specialized museum dedicated to the history and culture of roads and transportation in Estonia. It operates as a cultural and educational institution affiliated with the Estonian Transport Administration, offering exhibitions, educational programs, and events targeted at the general public, families, and students. The website is built on Drupal 9 and incorporates modern web technologies, providing a good user experience with accessibility features and multilingual support. Social media integration and active content updates enhance engagement. Security posture is solid with HTTPS and privacy-conscious analytics, though the site lacks explicit privacy and security policies. Overall, the site is professional and trustworthy, reflecting the museum's established presence and public service role.

T

Thron

thron.com

52

Thron is an Italian technology company specializing in an integrated platform that combines Digital Asset Management (DAM) and Product Information Management (PIM). Their platform enables businesses to centralize, govern, and distribute digital assets and product data efficiently across multiple communication channels. The company targets medium to large enterprises seeking to optimize digital content workflows and product data management. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site is built on WordPress with modern tools such as Google Tag Manager, reCAPTCHA, and Iubenda for privacy compliance, indicating a robust and well-maintained infrastructure. Security posture is strong with HTTPS enforced and security headers present, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data suggests privacy protection, which is common for technology companies. Overall, the site demonstrates high professionalism and trustworthiness with moderate user tracking balanced by GDPR-compliant consent mechanisms.

D

Domain Protection Services, Inc.

videoly.co

65

Videoly is a technology company founded in 2014 that offers a SaaS platform designed to automatically connect product videos to online stores, targeting online retailers and brands. Positioned as a leading product video platform, Videoly aims to increase sales and streamline video distribution for e-commerce businesses. The website reflects a modern digital presence built on Webflow CMS, leveraging Cloudflare for hosting and DNS services, and integrates advanced marketing and analytics tools such as HubSpot, Google Analytics, and Cookiebot for privacy compliance and user tracking. From a technical perspective, the website demonstrates good implementation with responsive design, moderate performance, and adherence to SEO best practices. The use of Cookiebot ensures GDPR-compliant cookie consent management, reflecting a strong commitment to privacy. Security posture is solid with HTTPS enforced and domain transfer protections in place, although there is room for improvement in DNSSEC adoption and explicit security headers. Security-wise, the site shows no critical vulnerabilities or exposed sensitive data. However, the absence of a public security policy, incident response contacts, or vulnerability disclosure mechanisms suggests opportunities to enhance transparency and readiness. The domain's WHOIS data indicates privacy protection typical for SaaS businesses, with a well-aged registration supporting legitimacy. Overall, Videoly presents a professional and trustworthy online presence with good privacy and security foundations. Strategic enhancements in security policy publication, DNS security, and contact information transparency would further strengthen its risk posture and stakeholder confidence.

D

DewiKu

dewiku.com

51

DewiKu.com is a prominent Indonesian online media portal focused on women's lifestyle, fashion, beauty, and relationships. It operates under the umbrella of Arkadia Digital Media, a known media group with multiple partner sites. The website offers a rich content experience with regularly updated articles and community engagement features, targeting Indonesian female audiences. Technically, the site employs a modern tech stack including jQuery, Materialize CSS, Slick Carousel, and integrates Google Tag Manager and Analytics for tracking and performance monitoring. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic, lacking explicit cookie consent mechanisms and GDPR indicators. WHOIS data is missing or unavailable, which is unusual but the site’s association with a reputable media group supports legitimacy. Overall, the site is professional, content-rich, and technically sound with room for privacy and security enhancements.

S

Semetron Ltd

mmh.ee

32

Golden Hour MMH is a specialized provider of rapid deployment mobile modular hospitals, offering a range of modular units transportable by air, sea, or land. The company targets healthcare providers, emergency responders, and government agencies, positioning itself as a niche manufacturer of modular medical solutions. The website reflects a professional and consistent brand presence with good content quality and clear navigation. Technically, the site is built on WordPress with Elementor and uses modern web technologies, providing a moderate performance and good mobile optimization. Security posture is strong with HTTPS and no obvious vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is credible but could improve transparency and compliance aspects.

A

Aspo Plc

aspo.com

62

Aspo Plc is a Finnish conglomerate specializing in demanding B2B customers, operating primarily in Northern Europe and selected growing markets. The company owns and develops businesses in sectors including shipping (ESL Shipping), food industry solutions (Leipurin), and industrial supplies and logistics (Telko). Aspo positions its subsidiaries as market leaders, focusing on sustainable and long-term value creation. The website reflects a professional corporate presence with comprehensive investor relations, governance, and sustainability information. Technically, the website is built on the HubSpot CMS platform, utilizing modern JavaScript libraries such as jQuery, Highcharts, and Slick Carousel. It integrates Google Analytics and Google Analytics 4 for visitor tracking and employs a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and published incident response contacts or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, despite the professional and consistent website content. Overall, Aspo Plc's website presents a credible and professional business front with room for improvement in security best practices and transparency regarding domain registration and incident response.

A

AS Latvijas Maiznieks

maiznieks.com

63

AS Latvijas Maiznieks is a well-established Latvian bakery company founded in 2003, specializing in a wide range of bakery and confectionery products including breads, cakes, frozen bakery goods, and snacks. The company targets retail consumers as well as institutional clients such as schools and kindergartens. Their website reflects a mature digital presence with detailed product catalogs, news updates, and social media integration, supporting their market position as a leading bakery brand in Latvia. Technically, the website uses standard web technologies including jQuery and Slick Carousel, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and basic security headers, though improvements such as DNSSEC and advanced security headers are recommended. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, indicating awareness of GDPR requirements. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

A

Andevis

virosoft.ee

42

Andevis is an Estonian software development company specializing in integrated HR and payroll management solutions, including their flagship Virosoft HR system. The company targets businesses seeking tailored personnel accounting, work time tracking, payroll, training, and self-service portals. The website is professionally designed using WordPress and includes multiple contact forms secured with Google reCAPTCHA v2. The technical infrastructure is modern but lacks some advanced security headers. The domain is well-established since 2010 and registered with an Estonian registrar consistent with the business location. However, the site lacks visible privacy and cookie policies, which impacts compliance scores. Overall, the website presents a credible and professional business presence with room for improvement in privacy and security practices.

S

Star Cloud OÜ

opiq.ee

66

Opiq is a well-established Estonian cloud-based educational platform operated by Star Cloud OÜ, offering a comprehensive digital learning environment aligned with the national curriculum. It serves a broad audience including schools, teachers, students, parents, and private users, providing interactive textbooks and learning materials from leading Estonian publishers. The platform supports multiple user roles and integrates with popular school management systems, enhancing its utility and market position. Technically, the website leverages modern JavaScript frameworks, Microsoft Azure cloud hosting, and Application Insights for telemetry and analytics. The platform is accessible via web browsers and dedicated mobile apps for iOS and Android, ensuring good mobile optimization and user experience. The site demonstrates good SEO and accessibility practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS, uses anti-forgery tokens in forms, and implements cookie consent mechanisms. However, it lacks a publicly available security policy and incident response contact information, which are recommended for enhanced trust and compliance. No critical vulnerabilities or suspicious patterns were detected, and the domain registration details align well with the business claims, indicating high legitimacy. Overall, Opiq presents a professional, secure, and user-friendly digital education platform with strong business credibility and compliance posture. Strategic improvements in security transparency and incident response readiness would further strengthen its position.

P

Peaasi.ee

peaasi.ee

48

Peaasi.ee is a well-established Estonian non-profit organization dedicated to supporting youth mental health through a comprehensive online portal. The website offers extensive mental health information, e-counseling services, first aid tools, and training programs aimed at improving mental wellbeing among Estonian youth and those working with them. The organization maintains a strong market position as a leading mental health resource in Estonia, supported by multiple partnerships and funding sources. Technically, the site is built on WordPress with a modern tech stack including WooCommerce, Bootstrap, and various analytics and marketing tools, demonstrating a mature digital infrastructure. The website is multilingual and optimized for mobile devices, providing a good user experience and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit cookie consent mechanisms are missing, representing areas for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR, though enhancing privacy compliance and security policies would strengthen its risk profile.

N

Nanox

nanox.vision

56

Nanox is a healthcare technology company specializing in advanced medical imaging solutions and AI-powered diagnostic tools. Their flagship products include the FDA-cleared Nanox.ARC 3D tomosynthesis imaging system and Nanox.AI suite of diagnostic solutions targeting chronic diseases. The company operates a cloud-based platform (Nanox.MARKETPLACE) to connect imaging providers globally and offers OEM components and radiology services. The website demonstrates a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, it is built on WordPress with modern libraries and integrates Google Tag Manager and reCAPTCHA for security and analytics. Security posture is strong with HTTPS and spam protection, though security headers and explicit incident response policies are absent. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, Nanox presents a credible and trustworthy business with a focus on innovation in healthcare imaging technology.

Tady Chutná is a hospitality business operating four distinct restaurants in the heart of Prague, specializing in traditional Czech and Austro-Hungarian cuisine. The brand emphasizes quality food, regional wines, and a rich historical ambiance, targeting both locals and tourists seeking authentic dining experiences. The parent company, Husičky s.r.o., manages these establishments with a focus on culinary heritage and customer satisfaction. The website serves as a central hub linking to each restaurant's dedicated site and provides daily menu offerings and contact information. Technically, the website is built on WordPress 6.8.1, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for interactive elements. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing, alongside Cookiebot for GDPR-compliant cookie consent management. Hosting is provided by Webglobe, consistent with the domain's WHOIS data. The site is mobile-optimized and SEO-friendly, with structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies. No forms are present for direct data collection, reducing attack surface, but the absence of privacy and terms of service documents represents a compliance gap. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and preparedness. Overall, the website presents a professional and trustworthy front for a medium-sized hospitality business, with good technical implementation and moderate privacy compliance. Strategic improvements in policy transparency and security posture would further strengthen its risk profile and customer confidence.

The website awaunipa.org operates as a niche content platform focused on Indonesian online gambling, specifically togel (lottery) and slot games. It provides informational articles, tips, and predictions aimed at Indonesian players interested in these gambling activities. The business model appears to be content-driven with potential affiliate marketing links to gambling sites. The domain is registered in the US with Dynadot since 2020, which aligns with the site's operational timeline but shows some mismatch with the target Indonesian audience. Technically, the site is built on WordPress with common plugins like Yoast SEO and jQuery, hosted behind Cloudflare DNS but without advanced security headers or DNSSEC enabled. The site is accessible with no WAF or blocking detected, and it shows moderate SEO optimization and mobile responsiveness. However, it lacks critical privacy, cookie, and terms of service policies, as well as contact or incident response information, which impacts its trustworthiness and compliance posture. The external links include many IP-based domains related to gambling, some of which may be suspicious. Overall, the site scores moderately on content quality and technical implementation but poorly on privacy compliance and business credibility.

A

admin

ajkerbarta.com

51

Ajkerbarta.com is a small Indonesian media website focused on delivering news and tips related to online gambling, specifically togel and slot games. The site uses WordPress CMS with common plugins such as Yoast SEO and jQuery libraries, hosted behind Cloudflare DNS and registered via GoDaddy. The content is primarily in Indonesian and targets the local gambling community. The website lacks critical compliance documents such as privacy and cookie policies, and no contact information is provided, which impacts its trustworthiness and compliance posture. Technically, the site is moderately optimized with basic mobile responsiveness and SEO but lacks advanced security headers and DNSSEC, which are recommended for improved security. The site links to multiple external domains, some of which appear suspicious or unrelated, raising concerns about advertising and affiliate practices. Overall, the security posture is basic with room for improvement in policy transparency and technical safeguards.

A

admin

dumbo-dna.org

53

The website dumbo-dna.org is a small-scale Indonesian online gambling information blog focused primarily on togel and slot games. It provides articles, promotions, and links related to online gambling, targeting Indonesian players interested in these games. The site is built on WordPress with common plugins like Yoast SEO and uses Cloudflare DNS services. The technical infrastructure is basic but functional, with HTTPS enabled and moderate performance. However, the site lacks critical privacy and security policies, contact information, and security headers, which lowers its trustworthiness and compliance posture. The domain is privacy protected, which is common in gambling-related sites, but no direct registrant information is available to verify legitimacy fully. Overall, the site is functional but has significant gaps in privacy, security, and business transparency.

S

SecurityNet.cz s.r.o.

securitynet.cz

65

SecurityNet.cz s.r.o. is a Czech Republic-based small IT service company specializing in comprehensive internet services including custom website and e-shop development, SEO optimization, custom software development, and hosting solutions. The company targets businesses and individuals requiring tailored IT and hosting services, positioning itself as a reliable provider with a portfolio of reputable clients such as KIKA, Gorenje, and T-Mobile. Their business model focuses on service delivery with an emphasis on quality and client satisfaction. Technically, the website employs modern frontend technologies including Bootstrap 5, jQuery, and Font Awesome, ensuring a responsive and user-friendly experience. The site is mobile optimized and demonstrates good SEO practices. However, there is room for improvement in accessibility and performance optimization. Hosting details are not explicitly disclosed, but the presence of a partner hosting domain (hukot.net) suggests collaboration with a specialized hosting provider. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and a visible privacy policy, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided, which could be a gap in their security posture. The absence of WHOIS data reduces transparency and trustworthiness, although the website content and business information appear professional and consistent. Overall, the website is functional, professional, and trustworthy from a business perspective but would benefit from enhanced privacy compliance, security header implementation, and improved transparency regarding domain registration and security policies.

SPWeb s.r.o. is a well-established Czech technology company specializing in custom web development, e-commerce solutions, SEO, PPC marketing, and IT infrastructure services primarily serving the Brno region. The company has a strong market position supported by over a decade of experience, positive client testimonials, and Google Partner certification. Their website reflects a professional and modern digital presence with comprehensive service offerings and clear contact information. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Fonts, and multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Smartlook. The site is mobile-optimized, fast-loading, and SEO-friendly, demonstrating a mature digital infrastructure. Hosting and DNS services are managed via Cloudflare, enhancing performance and security. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and security headers, which are recommended to enhance its security posture. No vulnerabilities or exposed sensitive data were detected, indicating a generally secure environment. Overall, SPWeb s.r.o. presents a credible, trustworthy, and professional business with a strong online presence. The website scores highly on content quality, technical implementation, security, privacy compliance, and business credibility, making it a reliable partner for clients seeking web and IT services.

Run Japan is an online platform dedicated to providing international runners with comprehensive information and registration services for marathons and running events across Japan. The website positions itself as a gateway to Japan's best running events, offering race listings, travel planning assistance, and event registration. The target audience primarily consists of international and domestic runners interested in participating in Japanese marathons. The business operates in the niche sports and events sector, with a small company size and a recent founding date in 2024. Technically, the website employs a modern JavaScript stack including jQuery, Modernizr, and Slick Carousel, hosted on Amazon AWS infrastructure. It uses Google Tag Manager for analytics and tracking. The site is mobile optimized with good SEO practices and a consistent branding approach. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks several important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible privacy policy or cookie consent mechanism, which impacts privacy compliance. No vulnerability disclosure or incident response information is provided. The WHOIS data shows privacy protection but is consistent with the business location in Japan, and the domain age aligns with the business launch. Overall, Run Japan presents a professional and functional platform with moderate security and privacy compliance. Strategic improvements in privacy disclosures, security headers, and user data protection would enhance trust and compliance, supporting its growth in the international running community.

S

Supernova

supernova.io

73

Supernova is a technology company providing a SaaS design system platform that integrates design and engineering data to accelerate product development. The platform targets design and engineering teams in medium to large enterprises, offering services such as design system management, code automation, and design tokens. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern web technologies including Webflow CMS, Google Tag Manager, and Hotjar for analytics and user behavior tracking. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the inability to extract WHOIS data limits domain trust verification, slightly reducing overall business credibility. Overall, the website demonstrates a high level of professionalism and technical maturity with room for improvement in transparency of security and contact information.

S

SPHosting s.r.o.

sphosting.cz

46

SPHosting s.r.o. is a Czech Republic-based hosting service provider established in 2014, specializing in virtual private servers, dedicated servers, managed servers, and cloud/network services. The company targets small to medium businesses requiring tailored hosting solutions with professional management and 24/7 support. Their market position is supported by positive client testimonials and a perfect aggregate rating, indicating strong customer satisfaction and trust. Technically, the website employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and slick carousel for UI, alongside Google Tag Manager, Facebook Pixel, and Yandex Metrika for analytics and marketing. The site is hosted behind Cloudflare DNS and uses HTTPS with excellent SSL configuration. The cookie consent mechanism is comprehensive and GDPR compliant, reflecting good digital maturity. From a security perspective, the site enforces HTTPS, uses reCAPTCHA v2 for form protection, and provides granular cookie consent options. However, it lacks explicit security policies, incident response information, and a security.txt file, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected, and security headers could be enhanced. Overall, the website presents a professional, trustworthy, and well-maintained digital presence with moderate to good security posture. Strategic improvements in security transparency and header implementation would further strengthen their risk profile and compliance stance.

A

Abalon s.r.o.

novorocenky-elektronicky.cz

34

The website www.novorocenky-elektronicky.cz represents a small Czech company, Abalon s.r.o., specializing in electronic New Year greeting cards primarily targeting business customers. The site offers original and customizable electronic PF cards created by multiple artists. The business model is B2B e-commerce with a niche focus on seasonal greeting cards. The website content is minimal and currently displays a placeholder message about the next offer release in August 2025. Technically, the site is built on WordPress with common JavaScript libraries and Google Analytics for tracking. HTTPS is enforced, but no advanced security headers or explicit privacy/cookie policies are present on the main domain. Contact information is limited to a phone number, with no emails or social media links visible. WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness.

N

Novoročenky 2024 - Adam Grant

adamgrant.cz

39

The website www.adamgrant.cz represents a small Czech business specializing in luxury New Year greeting cards with a focus on high-quality graphic design and printing. The site is built on WordPress and uses common web technologies such as jQuery and Slick Carousel. The business targets customers seeking premium holiday cards and operates primarily in the retail sector within the Czech Republic. The website content is professionally presented with clear navigation and good mobile optimization, although some modern accessibility features are limited. Technically, the site enforces HTTPS and uses Google Analytics for visitor tracking. However, it lacks important security headers and uses an outdated version of jQuery, which could expose it to vulnerabilities. No privacy or cookie policies are present, indicating a gap in compliance with GDPR and other privacy regulations. Contact information is limited to a phone number and a contact page link, with no email addresses or social media profiles found. From a security perspective, the absence of WHOIS data is concerning and reduces the domain's trustworthiness. No signs of WAF or blocking mechanisms were detected, and the site content is fully accessible. The security posture is moderate but could be significantly improved by adding security headers, updating libraries, and implementing privacy policies. Overall, the site is functional and professional but requires enhancements in security and compliance to reduce risk and improve trust. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, updating outdated libraries, and verifying domain registration details to improve legitimacy. Enhancing incident response readiness and publishing security contact information would also strengthen the security culture and trustworthiness of the business.

A

Abalon s.r.o.

pf.cz

37

The website www.pf.cz represents Abalon s.r.o., a small Czech company specializing in the design and sale of original, artistically crafted New Year and Christmas greeting cards. The business targets corporate clients and organizations looking for unique and charitable greeting card options. The site offers customization services, free proofreading, and sample cards, positioning itself as a niche provider in the Czech market. Technically, the website is built on WordPress and employs modern JavaScript libraries such as jQuery, Slick Carousel, and Video.js, with SEO optimization via Yoast and analytics through Google Analytics. HTTPS is enforced, ensuring secure connections, but the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. The lack of WHOIS data reduces domain trustworthiness, though the website content and business information appear professional and consistent. Overall, the site demonstrates good digital maturity with moderate performance and mobile optimization.

3

3E PROJEKT, a.s.

3eprojekt.cz

50

3E PROJEKT, a.s. is a Czech Republic-based medium-sized company founded in 1998, operating primarily in hospitality, craft brewing, and real estate sectors. The company emphasizes a blend of tradition and innovation, maintaining a family-oriented culture while expanding its business portfolio. Their key services include managing gastronomy venues, operating a craft brewery, and providing real estate services. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website uses a modern technology stack including jQuery, Slick Carousel, Lightbox, Remodal, Google Maps API, and Google Tag Manager. It is built on the Ibis CMS platform and shows good mobile optimization and SEO practices. The site implements GDPR-compliant cookie consent mechanisms and uses tracking tools such as Microsoft Clarity and Facebook Pixel with consent management. From a security perspective, the site enforces HTTPS and uses consent-based analytics but lacks visible security headers and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain is a notable concern, reducing trust in domain registration transparency. Overall, the website is professional and trustworthy with moderate technical and security maturity. Strategic improvements in security headers, incident response documentation, and WHOIS transparency are recommended to enhance trust and compliance.

L

Landia Management s.r.o.

landia.cz

52

Landia Management s.r.o. is a Czech engineering and investment company specializing in residential, development, and leisure real estate projects primarily in Prague. The company targets investors and residents interested in quality living spaces and community-oriented developments. Their portfolio includes cooperative housing, senior care homes, and sports and leisure facilities. The website is professionally designed with clear navigation and good content quality, supporting their market position as a reputable local developer. Technically, the website uses a traditional tech stack including jQuery 1.11.0, Fancybox, and Slick Carousel. While functional and moderately optimized for mobile, the use of an outdated jQuery version and lack of visible security headers indicate areas for improvement. The site includes a cookie consent mechanism and uses Google Analytics for tracking, reflecting moderate digital maturity. From a security perspective, the site lacks explicit privacy policies and terms of service, and no WHOIS data is available for the domain, which reduces trustworthiness. No critical vulnerabilities or exposed sensitive data were detected, but security headers and modern best practices should be implemented to enhance protection. The cookie consent banner and contact transparency are positive indicators. Overall, the website presents a credible business with good professionalism and user experience but requires improvements in security posture, privacy compliance, and domain registration transparency to strengthen trust and compliance.

MAXPROGRES, s.r.o. is a Czech Republic based company founded in 1996 specializing in technical security systems and system integration services. The company holds multiple ISO certifications and a national security certification (NBÚ T-level), positioning itself as a leader in the Czech security technology market. Their services include comprehensive security system design, installation, proactive monitoring, and 24/7 maintenance support. The website reflects a professional and consistent brand image with clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Leaflet for mapping, and integrates Google Analytics and reCAPTCHA for analytics and security respectively. Security posture is moderate with HTTPS and CAPTCHA implemented, but lacks advanced security headers and a formal incident response or vulnerability disclosure mechanism. Overall, the site is accessible, well-structured, and trustworthy, supporting the company's market position and business credibility.

N

Nadace Naše dítě

nasedite.cz

44

Nadace Naše dítě is a well-established Czech non-profit foundation dedicated to supporting handicapped, abused, and socially disadvantaged children. With over 31 years of operation, it provides financial aid, legal assistance, and runs awareness campaigns to improve children's lives. The website reflects a professional and consistent brand image, targeting donors and beneficiaries alike. Technically, the site uses modern JavaScript libraries and Google services, ensuring good mobile responsiveness and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data limits domain trust analysis but does not detract from the site's apparent legitimacy. Overall, the foundation demonstrates a strong commitment to transparency and user privacy.

F

Futurn nv

futurn.com

54

Futurn nv is a Belgian real estate company specializing in the sustainable redevelopment and transformation of commercial properties in Flanders. The company focuses on converting outdated or underutilized sites into modern, versatile, and environmentally responsible workplaces. Their market position is that of a specialist in sustainable business property development, offering tailored solutions such as KMO units, office buildings, and reconversion projects. The website reflects a professional and consistent brand image targeting business owners and property stakeholders in the region. Technically, the website is built on the Concrete5 CMS platform, utilizing modern frontend technologies including Bootstrap, jQuery, and FontAwesome. It features responsive design, SEO-friendly metadata, and integrates marketing and analytics tools such as Google Tag Manager and social media pixels. The site includes a cookie consent mechanism aligned with GDPR requirements and provides multiple contact channels including phone, email, and a chat widget. From a security perspective, the site enforces HTTPS with a valid SSL certificate and employs secure form practices. However, it lacks explicit security headers and does not provide a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, though the website content and contact information appear authentic and consistent with a legitimate business. Overall, the website demonstrates a good level of digital maturity and security hygiene, with room for improvement in security policy transparency and domain registration verification. The risk profile is moderate, with recommendations to enhance security headers, publish incident response contacts, and verify domain registration details to strengthen trust and compliance.

F

FlexiSystems s.r.o.

edituj.cz

33

FlexiSystems s.r.o. operates the website flexisite.cz, specializing in delivering modern, custom web solutions including complex web projects, e-commerce platforms, and visual editing content management systems. The company targets businesses requiring tailored web development services primarily within the Czech Republic. The website demonstrates a professional design with clear navigation and relevant content, supporting its position as a specialized technology provider. Technically, the site employs common JavaScript libraries such as jQuery and Slick Carousel, integrates Google Tag Manager for analytics, and uses a custom CMS with visual editing capabilities. Mobile optimization and SEO practices are adequately addressed, though accessibility features are basic. Security posture is moderate with HTTPS implied but lacking explicit security headers and documented policies. The absence of WHOIS data limits domain trust verification, but the presence of clear company contact details and client logos supports business credibility. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security practices.

I

Itera BI

bi365.ee

42

BCS Itera, operating under the brand Itera BI, is a specialized provider of business intelligence and data analytics solutions primarily leveraging Microsoft technologies such as Power BI, BI4Dynamics, and Azure. Founded in 2019 and based in Estonia, the company offers a comprehensive portfolio of services including BI strategy development, data warehouse architecture, BI implementation, cloud BI solutions, version upgrades, and advanced forecasting models. The website demonstrates a mature digital presence with rich content, client case studies, and educational resources, positioning the company as a trusted expert in the BI domain within its regional market. Technically, the site is built on WordPress with modern plugins and analytics integrations, delivering a good user experience and mobile optimization. Security posture is solid with HTTPS and secure form handling, though improvements in security headers and privacy compliance are recommended. Overall, the company presents a credible and professional image with clear contact channels and certifications, though it should enhance its privacy and cookie policies to meet compliance standards.

L

Levstal Group

levstal.com

48

Levstal Group is a well-established Estonian company specializing in steel structures, metal engineering, and marine infrastructure services. With over three decades of experience, the company serves a broad European industrial client base, delivering high-quality fabrication and engineering solutions. Their business model focuses on B2B project-based contracts with a strong emphasis on quality and compliance, supported by multiple industry certifications. Technically, the website is built on WordPress with modern JavaScript libraries and analytics tools, demonstrating a mature digital presence with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, Levstal Group presents a professional, trustworthy, and technically sound online presence aligned with their business operations.

A

Andevis

andevis.ee

34

Andevis is an Estonian software development company specializing in integrated HR, payroll, and personnel management solutions, notably the Virosoft HR system and self-service portals. The company targets Estonian businesses seeking comprehensive personnel management software tailored to their organizational rules and accounting needs. The website reflects a professional and consistent brand presence with clear contact information and multiple service offerings. Technically, the site is built on WordPress using modern libraries such as jQuery, Bootstrap, and Google reCAPTCHA v2 for form security. Performance and mobile optimization are adequate, though accessibility and SEO could be enhanced. Security posture is moderate with HTTPS enforced and anti-spam measures in place, but lacks important security headers and explicit privacy or cookie policies, indicating compliance gaps. The domain is well-established since 2010 with consistent WHOIS data, supporting business legitimacy. Overall, the site is functional and professional but would benefit from improved privacy compliance and security hardening.

R

RangeForce

rangeforce.com

72

RangeForce is a cybersecurity training platform specializing in cloud-based cyber ranges and solo labs designed to empower security operations centers (SOCs) and threat hunters. The company positions itself as a provider of realistic, team-focused training environments that use real tools and networks to close technical and soft skills gaps. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting enterprise security teams. Technically, the site leverages HubSpot CMS, Google Analytics, and modern JavaScript libraries to deliver a responsive and engaging user experience. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent mechanisms and detailed privacy policies. However, the absence of WHOIS data and explicit security headers slightly reduces trustworthiness. Overall, RangeForce presents as a credible and professional cybersecurity training provider with room for improvement in transparency and security best practices.

P

PZU Kindlustus

pzu.ee

67

PZU Kindlustus operates as an established insurance provider in Estonia, offering a range of personal insurance products including vehicle, travel, home, and accident insurance. The website reflects a professional presence with consistent branding and a focus on serving private individuals. The business is supported by a domain registered since 2012 under ALMIC OÜ, an Estonian registrar, indicating a stable and legitimate operation. Technically, the site is built on WordPress, leveraging modern tools such as Google Tag Manager, Cookiebot for cookie consent, and Cloudflare for DNS and security, demonstrating a mature digital infrastructure. Security measures include HTTPS enforcement and reCAPTCHA integration, though explicit security policies and headers could be enhanced. Privacy compliance is partially addressed via cookie consent, but the absence of a clear privacy policy and terms of service pages represents a compliance gap. Overall, the site is functional and trustworthy but would benefit from improved transparency and security documentation.

S

Small Business Association of Michigan

sbam.org

59

The Small Business Association of Michigan (SBAM) is a well-established membership organization dedicated to supporting small business owners in Michigan. With a membership base exceeding 33,000, SBAM offers a comprehensive suite of services including business certifications, insurance products, advocacy, networking opportunities, and compliance resources. The website reflects a professional and consistent brand image, targeting small business owners seeking growth, compliance, and employee retention solutions. The organization positions itself as a premier resource and advocate for Michigan's small business community. Technically, the website is built on WordPress and leverages modern web technologies and plugins such as Yoast SEO Premium, Events Calendar Pro, and various analytics and marketing tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile optimized, accessible, and SEO-friendly, indicating a mature digital presence. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and employs secure forms. However, there is a lack of explicit security headers and no visible privacy or cookie policies with consent mechanisms, which are areas for improvement. The WHOIS data is unavailable due to a malformed request, but the website's content and social media presence strongly indicate legitimacy and trustworthiness. Overall, SBAM's website demonstrates a strong business and technical foundation with minor gaps in privacy compliance and security best practices. Addressing these gaps will enhance user trust and regulatory compliance.

A

Advokaadibüroo Nordx Legal OÜ

nordxlegal.com

62

Advokaadibüroo Nordx Legal OÜ is a specialized law firm founded in 2014, focusing on technology-driven and digital businesses. Their core services include corporate transactions, data protection, privacy, cybersecurity, technology law, and intellectual property. The firm targets startups and multinational corporations within the technology sector, positioning itself as a niche legal service provider with a strong emphasis on emerging technologies. The website reflects a professional and consistent brand image with clear service offerings and active social media engagement. Technically, the website is built on WordPress using modern frameworks such as Foundation and libraries like jQuery and Slick Carousel. SEO is enhanced via the Yoast SEO plugin. The site demonstrates good mobile optimization and moderate performance. Security is well addressed through strict Content-Security-Policy headers and HTTPS enforcement, although DNSSEC is not enabled. No cookie consent mechanism or explicit security policies are published, which are areas for improvement. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of incident response contact details and vulnerability disclosure policies indicates room for maturity. The domain registration is consistent and legitimate, supporting the business credibility. Overall, the website scores well in professionalism, technical implementation, and security, but privacy compliance could be enhanced. Strategic recommendations include implementing a cookie consent mechanism, publishing comprehensive security and incident response policies, enabling DNSSEC, and adding terms of service to improve legal completeness and user trust.

Z

Z6·尊龙凯时集团有限公司

edge-asia.com

52

Z6·尊龙凯时集团有限公司 is a large, established Chinese conglomerate with diversified interests in retail, hospitality, real estate, and investment sectors. Founded in 1999 and headquartered in Nantong, Jiangsu, the company operates numerous subsidiaries and has a significant employee base and asset portfolio. The website presents detailed business information and sector descriptions, targeting business partners and customers primarily in China. Technically, the website uses modern JavaScript libraries and CSS frameworks, is mobile optimized, and includes a contact form with captcha for user interaction. However, the absence of WHOIS registration data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with HTTPS usage but lacks explicit security headers and has an external iframe to an IP address that may pose risks. Overall, the site is professional but would benefit from enhanced security and compliance measures.

C

Chudovo

chudovo.com

60

Chudovo is a well-established software development company founded in 2004, offering a broad range of IT services including custom software development, dedicated development teams, application maintenance, and cloud development. The company targets businesses seeking scalable and innovative software solutions, leveraging AI and machine learning technologies to enhance delivery speed and quality. With multiple international offices and a strong portfolio of over 160 projects, Chudovo positions itself as a reliable partner in the technology sector. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, optimized for mobile and SEO. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site uses standard plugins for forms and code highlighting, and implements lazy loading for images to improve load times. From a security perspective, the site enforces HTTPS and employs clientTransferProhibited domain status, but lacks DNSSEC and advanced security headers. Contact forms include CAPTCHA and an NDA option, enhancing data protection. However, no explicit security policy or incident response contacts are published, and no vulnerability disclosure mechanism is present. Overall, the website demonstrates a solid business and technical foundation with good content quality and user experience. Security posture is adequate but could be improved with additional headers and policies. Privacy compliance is basic, with cookie consent present but no dedicated privacy policy page detected. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

Frictape Net

frictape.com

67

Frictape Net is a specialized company providing helideck safety solutions primarily targeting the offshore energy and transportation sectors. Established in 2005, the company positions itself as a market leader offering innovative safety products designed to optimize safety and lifetime costs. Their business model focuses on B2B sales and support, catering to clients requiring certified and reliable helideck safety equipment. The website reflects a professional and consistent brand image with good content quality and clear messaging tailored to their niche audience. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies such as jQuery and Slick Carousel for enhanced user experience. The site is hosted with DNS managed via Cloudflare, ensuring reliable performance and security. Mobile optimization and SEO practices are well implemented, although accessibility features are basic. The site uses Cookiebot for comprehensive cookie consent management, indicating a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS with a good SSL configuration and employs standard security headers, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Overall, Frictape Net demonstrates a solid digital presence with good business credibility and privacy compliance. Strategic enhancements in security documentation and DNS security could further strengthen their trustworthiness and resilience against emerging threats.

J

JOT Automation Ltd.

jotautomation.com

67

JOT Automation Ltd. is a specialized provider of advanced automation solutions focused on manufacturing industries including automotive, consumer electronics, renewable energy, telecom, and EV battery sectors. The company offers a broad portfolio of services such as assembly, testing, battery assembly and testing, custom automation, and material handling solutions. Their market position is strong, supported by over 30 years of experience and large-scale turnkey projects, serving a global manufacturing audience. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to B2B customers. Technically, the website is built on the HubSpot CMS platform, leveraging modern JavaScript libraries and marketing tools such as Google Tag Manager, Cookiebot, and social media pixels. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness despite the professional website content. No direct company contact emails or phone numbers are publicly listed, with contact primarily via web forms. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website presents a credible and professional business front with room for improvement in transparency around security policies and domain registration details. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and clarifying domain registration to improve trust.