Security Directory

Asper Biogene is a specialized genetic testing company offering a broad range of DNA testing services including next-generation sequencing panels, whole exome sequencing, and whole genome sequencing. The company targets healthcare professionals, geneticists, and patients seeking advanced genetic diagnostics. Their market position is supported by multiple certifications such as ISO 15189:2012 and ISO 9001:2015, and a Health Board license, indicating compliance with healthcare standards. The website content is professionally presented with detailed service descriptions and a multilingual interface. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Google Analytics integrations. The site is mobile optimized and SEO friendly with structured data implemented. Performance is moderate with room for improvement in accessibility features. Security posture is good with HTTPS enforced and no visible sensitive data exposure, but lacks some security headers and cookie consent mechanisms. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy. However, the website's professional content and certifications mitigate some trust issues. No explicit incident response or vulnerability disclosure information is provided, which could be improved to enhance security transparency. Overall, Asper Biogene presents a credible and professional online presence for a healthcare genetic testing provider, but should address WHOIS transparency, cookie consent, and security header implementation to strengthen trust and compliance.

E

Elkdata OÜ

opera.ee

59

Rahvusooper Estonia is a well-established national opera house in Estonia, offering a wide range of cultural performances including operas, ballets, musicals, and concerts. The website reflects a professional cultural institution with a medium-sized operation, targeting the general public interested in performing arts. The business model centers on live event performances and ticket sales, supported by a consistent brand presence and official social media channels. Technically, the website uses modern JavaScript frameworks such as React, integrates Google reCAPTCHA for form security, and employs Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and error monitoring via Sentry, but lacks some security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the domain registration is consistent and legitimate, supporting the trustworthiness of the site.

P

Palmako AS

palmako.ee

53

Palmako AS is a well-established Estonian manufacturer specializing in high-quality wooden garden products, including playgrounds, garden houses, furniture, and saunas. As part of the Lemeks Group, it benefits from a strong supply chain and international presence with branches in multiple countries and exports to over 30 countries worldwide. The website reflects a mature digital presence with comprehensive product information, multilingual support, and clear contact channels. Technically, the site is built on Drupal 10 with modern JavaScript libraries and integrates Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

N

Nordkalk

nordkalk.com

56

Nordkalk is a leading limestone supplier in Northern Europe, providing essential raw materials and solutions for industries such as agriculture, environmental care, steel, pulp and paper, and construction. The company emphasizes sustainability and circular economy principles, aiming to reduce carbon footprint and maximize resource utilization. Owned by UK-based SigmaRoc PLC, Nordkalk operates multiple localized domains serving different European markets. The website is built on WordPress with modern technologies and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain www.nordkalk.com raises concerns about domain registration legitimacy, though the website content and branding appear professional and trustworthy. Contact information is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the site reflects a mature business with a strong sustainability focus but would benefit from enhanced transparency in domain registration and security policies.

T

Tavrida Electric

tavrida.com

46

Tavrida Electric is a globally recognized manufacturer specializing in medium voltage electrical equipment, including vacuum circuit breakers and automatic circuit reclosers. The company operates in over 22 countries with nearly 3000 employees, positioning itself among the top three suppliers worldwide in its industry. Their website reflects a professional and well-structured digital presence, targeting utility companies and industrial clients requiring reliable power system components. Technically, the site leverages Bitrix CMS, jQuery, and Google Tag Manager, indicating a mature but somewhat traditional technology stack. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks comprehensive security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of public WHOIS data slightly reduces trust but is not uncommon for large international companies employing privacy protection. Overall, the website is functional, professional, and credible, with moderate room for enhancement in privacy compliance and security posture.

H

Hoob OÜ

hoob.ee

43

Hoob OÜ is an Estonian company specializing in factory automation and machine building, serving industries such as automotive, electronics, telecom, and medical sectors. Established in 2015, it offers turnkey automation solutions and subcontracting services including engineering and manufacturing. The company maintains a strong market position with reputable clients like ABB and Ericsson, supported by ISO certifications and European funding. Technically, the website is built on WordPress with modern libraries and plugins, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and anti-spam measures, though lacking some advanced security headers and explicit privacy policies. Overall, the site is professional and trustworthy, but could improve privacy compliance and security transparency.

A

Access Partnership

accesspartnership.com

60

Access Partnership is a well-established public policy consultancy specializing in technology and innovation sectors, founded in 1999. The company provides comprehensive advisory services including policy analysis, regulatory strategy, compliance, advocacy campaigns, and government advisory. Their market position is strong as a leading global consultancy with a focus on helping businesses and governments navigate complex regulatory environments. Technically, the website is built on WordPress with modern plugins and integrations such as HubSpot forms, Google Tag Manager, and Cloudflare DNS, delivering fast performance and excellent mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is currently basic, lacking visible privacy and cookie policies or consent mechanisms. Overall, the website demonstrates high professionalism and business credibility, supported by trust signals such as awards and active social media presence.

S

SOL Group

solgroup.com

72

The SOL Group is a large Italian company specializing in the production, applied research, and marketing of technical and medical gases, home care services, biotechnologies, and renewable energy production. The company targets industrial clients, healthcare facilities, patients at home, and the biotechnology sector, positioning itself as a diversified and established player in the energy and healthcare industries. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website is built on the Plone CMS platform, utilizing modern web technologies including Bootstrap, FontAwesome, and Cookiebot for privacy management. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. From a security perspective, the site enforces HTTPS, implements standard security headers, and provides a robust cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which should be investigated further. Overall, the SOL Group website demonstrates strong digital maturity and compliance with privacy regulations, but the domain registration inconsistency slightly impacts trustworthiness. Strategic recommendations include publishing explicit security policies, incident response contacts, and a security.txt file to enhance transparency and security posture.

A

Anvol

anvol.eu

58

Anvol is a well-established international company specializing in the distribution and retail of toys, games, and trending products primarily in the Baltic Sea region and neighboring markets. With over 30 years of experience, it operates a large network of clients and retail stores branded as XS Toys. The company emphasizes quality partnerships and sustainable business practices. Technically, the website is built on WordPress with modern libraries and supports multiple languages, indicating a mature digital presence. Security posture is good with HTTPS and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business appears credible and professional, but should improve privacy and security transparency to enhance trust and compliance.

shineyourcareer.com is a small Italian technology news website founded in 2023, focusing on consumer electronics news and reviews. The site targets Italian-speaking technology enthusiasts and consumers, providing timely articles on smartphones, tablets, and related tech topics. The business model is advertising-supported online media, with a consistent brand presence and good content quality. Technically, the site is built on WordPress using the Morenews theme and child theme Newslight, leveraging common web technologies like jQuery and Bootstrap. Performance and mobile optimization are good, though accessibility is basic. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. Privacy compliance is adequate with a privacy policy and cookie consent banner in Italian, aligned with GDPR requirements. Contact information is clearly provided with a physical address, phone number, and company email. No terms of service or incident response policies are found. Overall, the website is professional and trustworthy but could improve security hardening and transparency on security policies.

Arras OÜ operates the website arrascf.eu, representing Arras Construction Furniture, a medium-sized Estonian manufacturing company specializing in high-quality innovative construction fastening products. Established in 1999, the company has a strong market position with over 20 years of experience, offering manufacturing, wholesale distribution, subcontracting, and private label services primarily targeting construction industry partners and wholesalers. The website is professionally designed with good content quality and clear navigation, supporting Estonian and English languages. The technical infrastructure is based on WordPress with WooCommerce, enhanced by modern JavaScript libraries and SEO plugins, reflecting a moderate to good digital maturity level. Security posture is adequate with HTTPS enforced and reCAPTCHA protection on forms, but lacks some advanced security headers and public incident response information. Privacy compliance is basic, with a privacy policy present and GDPR consent on contact forms, but no cookie consent mechanism is detected. Overall, the website demonstrates high business credibility with clear contact information, certifications, and trust indicators. Strategic improvements in security headers, cookie consent, and vulnerability disclosure would enhance the security and compliance posture.

F

Fujitsu Limited

fujitsu.ee

65

Fujitsu Limited operates a comprehensive and professionally designed website focused on sustainability transformation and digital innovation, targeting businesses in Estonia and globally. The company offers a broad range of services including consulting, business applications, and IT infrastructure solutions, positioning itself as a leader in technology-driven sustainability. The technical infrastructure leverages modern JavaScript libraries, Bootstrap framework, and Azure DNS hosting, ensuring good performance, accessibility, and SEO optimization. Security posture is strong with HTTPS enforcement, clientTransferProhibited domain status, and cookie consent mechanisms, though DNSSEC is not enabled and explicit security policies are not published. Overall, the website reflects a mature digital presence consistent with Fujitsu's global brand and business model.

U

Unique Hotels Group

uhotelsgroup.com

47

Unique Hotels Group operates a small portfolio of lifestyle hotels in Estonia, focusing on boutique hospitality experiences with historical ambiance and modern amenities. Their services include hotel accommodations, dining, spa treatments, seminars, and gift cards, targeting tourists and business travelers. The website is professionally designed using WordPress with modern technologies and supports multiple languages. Privacy and cookie policies are implemented, and contact information is clearly provided. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, though the website content and business information appear authentic. Security posture is generally good with HTTPS enforced, but security headers are missing, and no incident response or vulnerability disclosure information is provided. Overall, the website is functional, trustworthy, and well-positioned in the hospitality market in Estonia.

S

SecureOps

secureops.com

68

SecureOps is a Canadian-based boutique cybersecurity service provider with over 25 years of industry experience, offering managed security services including 24/7 SOC monitoring, security infrastructure management, vulnerability management, and professional services. The company emphasizes personalized, collaborative, and scalable cybersecurity solutions tailored to enterprise clients across multiple sectors globally. Their market position is strengthened by a SOC 2 Type 2 certification and a strong reputation for quality service delivery. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, HubSpot, and multiple marketing and tracking tools. The site is well-optimized for SEO and mobile devices, with good performance and accessibility features. Hosting and domain registration are consistent with the business claims, with Amazon Registrar as the registrar and a domain age of over 20 years. Security posture is strong with HTTPS enforced, use of reCAPTCHA on forms, and no visible sensitive data exposure. However, DNSSEC is not enabled and security headers are not explicitly detected, indicating room for improvement. Privacy compliance is good with a clear privacy policy and cookie consent mechanism, though no explicit GDPR statement or data retention policies were found. Overall, SecureOps presents a professional and trustworthy online presence with comprehensive service offerings and solid technical infrastructure. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would further enhance their security posture and trustworthiness.

C

CCP Games

ccpgames.com

75

CCP Games is a well-established interactive entertainment company founded in 1997 in Reykjavik, Iceland, best known for its flagship product EVE Online. The company positions itself as an innovative leader in the gaming industry with a focus on immersive online experiences. The website reflects a professional digital presence with modern technologies such as Google Tag Manager, Cookiebot for privacy compliance, and Bootstrap for responsive design. The site is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security or incident response policies are published. The absence of WHOIS data for the domain is a notable concern, as it raises questions about domain registration legitimacy despite the professional appearance of the site. Overall, CCP Games demonstrates a mature digital infrastructure but should address transparency in domain registration and enhance security disclosures to improve trust and compliance.

R

Riigi Kinnisvara AS

rkas.ee

60

Riigi Kinnisvara AS is a state-owned enterprise responsible for managing and developing Estonia's public real estate portfolio. The company focuses on efficient property management, environmental sustainability, and supporting public sector clients through various services including leasing, sales, and technical requirements for buildings. The website reflects a professional government entity with clear communication and comprehensive service offerings. Technically, the site is built on Drupal 10 with modern libraries ensuring good performance and accessibility. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate online presence.

B

Bellcom Estonia

bellcom.ee

44

Bellcom Estonia is a small but established technology service provider specializing in custom website development, hosting, and technical support. Founded in 2013, the company serves businesses and organizations seeking agile and innovative digital solutions. Their market position is supported by a portfolio of case studies and client testimonials, emphasizing their expertise in Drupal and other web technologies. Technically, the website is built on Drupal 8 with modern frontend libraries such as Bootstrap and jQuery, and integrates Google Analytics with IP anonymization for user tracking. The site is mobile optimized and presents a professional user experience. Security posture is moderate; while HTTPS usage is assumed but not confirmed, no security headers or explicit security policies are published, representing an area for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is credible and trustworthy but would benefit from enhanced security and privacy disclosures.

B

Brightway.ro

brightway.ro

46

Brightway.ro is a Romanian company specializing in professional and personal development training, coaching, consulting, recruitment, and team building services. Established since 2004, it offers a broad portfolio of courses and programs aimed at individuals and organizations seeking to enhance leadership, sales, technical skills, and organizational culture. The company leverages expert trainers and innovative methodologies to deliver value and growth opportunities to its clients. The website reflects a mature digital presence with comprehensive content, client testimonials, and multiple service offerings.

S

Sihtasutus Tartu Ülikooli Kliinikum

kliinikum.ee

53

Tartu Ülikooli Kliinikum is a leading university hospital in Estonia providing comprehensive healthcare services including emergency care, specialist consultations, and patient digital services. The institution is well-positioned in the Estonian healthcare sector with recognized clinical quality, evidenced by awards such as the ESO Angels diamond status. The website targets patients, healthcare partners, and medical professionals, offering extensive information and digital tools for patient engagement. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement and CAPTCHA integration, though additional security headers and formal security policies could enhance protection. Privacy compliance is evident with clear privacy and cookie policies, though consent mechanisms could be improved. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's public identity. Overall, the website is professional, trustworthy, and functional, supporting the institution's mission effectively.

E

experimenta gGmbH

experimenta.science

72

experimenta gGmbH operates Germany's largest science center located in Heilbronn, offering interactive science exhibitions, educational programs, and unique experiences such as the Science Dome and Maker Space. The organization targets a broad audience from children to adults interested in science and technology, positioning itself as a leading educational and experiential institution in the region. The website reflects a professional and modern digital presence built on WordPress with the Divi theme, integrating various JavaScript libraries and a consent management platform to comply with privacy regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data limits domain trust analysis but the overall business credibility is supported by consistent branding and social media presence.

I

Innovation Academy

innovationacademy.kr

59

Innovation Academy is a South Korean government-established educational institution focused on cultivating competitive software talent. The website highlights key software education programs such as 42 SEOUL and Codyssey, alongside AI and software ecosystem support initiatives. The organization positions itself as a leading innovator in software education with government backing and partnerships with notable entities like 42 SEOUL and various government agencies. Technically, the website uses a custom CMS with a modern but somewhat dated JavaScript stack, including jQuery and Slick Carousel, hosted by Megazone with Cloudflare DNS. The site is mobile-optimized and well-structured with good SEO practices. Security posture is solid with HTTPS and domain transfer protection, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a clear privacy policy but no cookie consent mechanism. Overall, the domain registration is transparent and consistent with the business claims, supporting high legitimacy and trustworthiness.

F

Fundación Telefónica Movistar | México

fundaciontelefonica.com.mx

67

Fundación Telefónica Movistar | México is a well-established non-profit organization focused on promoting digital inclusion, education, cultural development, and employability in Mexico. Affiliated with Telefónica, it leverages digital programs and social initiatives to empower communities and individuals through technology. The website reflects a mature digital presence with comprehensive content, including educational resources, publications, podcasts, and volunteer programs. Technically, the site is built on WordPress with modern JavaScript libraries and accessibility tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy policies are comprehensive and GDPR compliant, supporting trust and transparency. Overall, the site demonstrates a high level of professionalism and business credibility, aligned with its mission and audience.

C

CLdN

cldn.com

61

CLdN is a well-established logistics company specializing in integrated maritime and multimodal transport solutions across Europe. Founded in 1929, it operates a large fleet of RoRo ships and maintains a network of terminals and transport units, serving major economic regions including the UK, Ireland, Iberia, and Scandinavia. The company emphasizes sustainability with a low CO2 footprint and employs around 3,000 staff. The website reflects a professional and comprehensive digital presence built on Drupal 10, featuring modern web technologies and good mobile optimization. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. However, the absence of WHOIS registration data for the domain www.cldn.com is a notable anomaly that slightly impacts trust. Security posture is generally good with HTTPS enforced, but lacks visible security headers and explicit incident response or vulnerability disclosure information. Overall, the website is functional, professional, and trustworthy, but could improve transparency and security documentation to enhance confidence further.

D

Diputación de Málaga

malaga.es

67

Diputación de Málaga is the official provincial government entity for Málaga, Spain, providing a comprehensive digital portal with news, services, cultural events, and administrative information for residents and visitors. The website serves as a central hub for government transparency, social programs, tourism, employment, and local development initiatives. It maintains a strong market position as an authoritative source for provincial information and services. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, Hotjar, and responsive design frameworks, hosted on regional infrastructure. The site demonstrates good performance and mobile optimization, though accessibility features could be enhanced. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not published. Overall, the site is trustworthy, professional, and compliant with GDPR and cookie regulations, reflecting a mature digital presence for a government institution.

4

42 Singapore

42singapore.sg

66

42 Singapore operates as a tuition-free ICT education institution leveraging a peer-to-peer, project-based learning model derived from the 42 Paris pedagogy. It targets learners seeking innovative, hands-on coding education without traditional teachers or lectures. The institution is part of the globally recognized 42 Network and offers an EU-recognized diploma equivalent to a Bachelor's degree. Technically, the website is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing pixels, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and explicit security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and external references support legitimacy. Overall, the site is professional and user-friendly but would benefit from enhanced transparency in privacy, security policies, and domain registration details.

W

WocaBee, s.r.o.

wocabee.app

49

WocaBee, s.r.o. operates an innovative online vocabulary learning application targeting schools and students primarily in Europe. Founded in 2018, the company offers a subscription-based SaaS platform with gamified learning, pronunciation assessment, and teacher-student management features. The website is well-designed, mobile-optimized, and provides comprehensive content including user testimonials and detailed business information. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and ResponsiveVoice.js, ensuring a responsive and interactive user experience. Security posture is moderate with HTTPS implied and CAPTCHA on forms, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no dedicated privacy policy page found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

TVAR, výrobní družstvo Klatovy

tvar-kt.cz

50

TVAR, výrobní družstvo Klatovy, is a Czech manufacturing company specializing in furniture production primarily for educational institutions such as kindergartens and primary schools, as well as offices, hotels, and other commercial spaces. Established in 1951, the company has a long-standing market presence and offers a wide range of products including wooden chairs, tables, storage units, and specialized items like changing tables and plastic drawers from the English brand Gratnells. Their products are certified and regularly tested to meet safety and health standards. The company operates two manufacturing plants and employs nearly 60 skilled workers, providing both standard and custom furniture solutions.

N

NetDirect

shopcentrik.cz

69

NetDirect is a Czech Republic-based technology company specializing in custom e-commerce solutions, with over 23 years of experience. The company has established itself as a leader in the Czech market, having developed major e-shops such as Alza.cz and Notino.cz. Their business model focuses on B2B services including custom e-shop development, B2B portals, IT outsourcing, and online marketing. The website reflects a mature digital presence with professional design and clear service offerings. Technically, the website leverages modern web technologies including Angular framework, Google Fonts, Google Tag Manager, and Facebook SDK. The site is mobile optimized and performs moderately well, though accessibility features could be improved. Security posture is generally good with HTTPS enforced and secure form implementations, but lacks some security headers and explicit security policies. From a security perspective, the absence of WHOIS data and lack of explicit privacy and security policies are notable gaps. The site uses multiple third-party analytics and marketing tools, indicating moderate user tracking. Cookie consent mechanisms are implemented, supporting GDPR compliance to some extent. Overall, the site is trustworthy but would benefit from enhanced transparency and security disclosures. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, publishing incident response contacts, and improving accessibility. These steps will enhance trust, compliance, and security posture, supporting NetDirect's market leadership and digital maturity.

F

Footshop a.s.

footshop.hu

67

Footshop a.s. operates a professional e-commerce platform specializing in sneakers, apparel, and accessories, targeting sneaker enthusiasts primarily in Hungary and Central Europe. The company maintains a strong market position with multiple country-specific websites and physical stores, offering a broad selection of popular brands such as Nike, Adidas, Vans, and Converse. Their business model focuses on direct online retail complemented by a loyalty program and physical retail presence. The website content is well-structured, professionally designed, and optimized for both desktop and mobile users, providing a good user experience and clear navigation.

F

Footshop a.s.

footshop.pl

68

Footshop a.s. operates a large-scale e-commerce platform specializing in sneakers, apparel, and accessories, targeting sneaker enthusiasts and general consumers primarily in Poland and across Europe. The website offers a broad selection of popular brands such as adidas, Nike, Converse, and Vans, positioning itself as a leading retailer in the sneaker market. The business model focuses on direct online sales complemented by a loyalty program and multi-country presence. Technically, the website employs modern web technologies including Google Tag Manager, Cookiebot for consent management, Typekit fonts, and a Bootstrap-based responsive design. The platform demonstrates good digital maturity with mobile optimization, SEO best practices, and moderate performance. The use of multiple analytics and marketing tools indicates a data-driven approach to customer engagement. Security-wise, the site enforces HTTPS with a strong SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. While explicit security headers like CSP and X-Frame-Options are not clearly detected, no exposed sensitive data or vulnerabilities are apparent. The absence of WHOIS data limits domain registration insights, but the overall professional presentation and compliance suggest a legitimate and trustworthy operation. Overall, Footshop presents a secure, well-maintained, and user-friendly e-commerce platform with strong privacy compliance and marketing transparency. Strategic improvements in security headers and accessibility could further enhance its security posture and user experience.

Sopro Bauchemie GmbH is a German manufacturer specializing in tile adhesives, grouts, surface fillers, primers, bonding agents, screeds, renders, and waterproofing products. The company targets construction professionals and distributors across multiple European markets, supported by a multilingual website infrastructure. Their market position is that of an established medium-sized manufacturer with a consistent brand presence and professional digital assets. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes a consent management platform (Usercentrics) ensuring GDPR compliance. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced and secure form handling, though some HTTP security headers are missing. The absence of WHOIS data for the domain www.sopro.com is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly reduces overall trust. Contact information and privacy policies are clearly presented, supporting compliance and user trust.

B

BeCommerce

safeshops.be

59

Becom is a Belgian e-commerce federation established in 2023, dedicated to supporting and certifying webshops and online businesses in Belgium. The organization offers a range of services including the Becom Trustmark certification, security scans, educational events, research labs, and advocacy to help members grow and comply with regulations. The website is professionally designed, multilingual, and integrates modern web technologies such as WordPress, WPBakery, and Google Tag Manager. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements like DNSSEC and security headers are recommended. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, Becom presents a trustworthy and authoritative presence in the Belgian e-commerce sector.

A

Architektenkammer Berlin

ak-berlin.de

45

Architektenkammer Berlin is a professional self-governing chamber representing architects, urban planners, landscape architects, and interior architects in Berlin. The organization provides membership services, continuing education, legal advice, event management, and publishes relevant industry content. It holds a key position as the official chamber for architectural professions in Berlin, targeting professionals and stakeholders in the built environment sector. The website reflects a medium-sized government-related entity with a clear focus on professional development and community engagement. Technically, the website is built on TYPO3 CMS and leverages modern frontend technologies including jQuery, Bootstrap, Flexslider, and Leaflet.js for interactive maps. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured navigation. Analytics are handled via Matomo with user consent, reflecting a privacy-conscious approach. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, the site lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-maintained, supporting the organization's mission effectively. Strategic improvements in security transparency and formal policies would further strengthen its posture.

T

Technische Hochschule Nürnberg Georg Simon Ohm

th-nuernberg.de

61

Technische Hochschule Nürnberg Georg Simon Ohm is a large public university in Germany, serving over 13,000 students with a broad range of academic programs, research initiatives, and continuing education offerings. The website reflects a mature digital presence built on TYPO3 CMS with modern web technologies and a clear focus on accessibility and internationalization. The institution maintains a strong market position as the largest university in Nuremberg and third largest in Northern Bavaria, with key services spanning education, research, and career support. Social media integration and comprehensive navigation enhance user engagement. Security posture is solid with HTTPS and asynchronous script loading, though improvements are recommended in security headers and explicit privacy consent mechanisms. The WHOIS data aligns with the institution's German educational identity, supporting legitimacy. Overall, the website is professional, trustworthy, and well-structured, supporting the university's mission and stakeholder needs.

F

FJC

fjc.org

72

FJC is a well-established non-profit organization based in New York, specializing in philanthropic fund management including donor advised funds, fiscal sponsorships, and innovative investment solutions. The organization targets donors, nonprofits, and wealth advisors, providing flexible and personalized philanthropic services. The website reflects a mature digital presence with a professional design, clear navigation, and rich content that supports its mission and services. Technically, the site is built on WordPress with modern libraries and tools, ensuring good performance and accessibility. Security posture is solid with HTTPS and domain transfer protections, though improvements are needed in DNSSEC and security headers. Privacy compliance is a notable gap, with no visible privacy or cookie policies or consent mechanisms. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

V

VTDigger Jobs

vtdiggerjobs.org

62

VTDigger Jobs is a specialized online job board serving Vermont and nearby regions, operated by Vermont Journalism Trust, Ltd. The platform offers job seekers and employers a focused marketplace for remote, hybrid, and on-site employment opportunities. It leverages a modern WordPress-based infrastructure with WooCommerce and HivePress plugins to manage listings and transactions. The site is well-branded, professionally designed, and provides relevant content including company profiles and testimonials, positioning itself as a trusted regional employment resource. Technically, the site uses standard web technologies and integrates Google services for analytics and spam protection. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some advanced security headers and DNSSEC, which are recommended for enhanced protection. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism detected. Overall, the site is credible and functional with room for security and privacy improvements.

A

Akademie der Kulturellen Bildung des Bundes und des Landes NRW e.V.

kulturellebildung.de

55

The Akademie der Kulturellen Bildung des Bundes und des Landes NRW e.V. is a prominent German non-profit educational institution specializing in cultural youth education. It serves as a federal and state central institute offering a broad range of courses, workshops, research projects, and events aimed at professionals and stakeholders in cultural education. The website reflects a strong market position with comprehensive program offerings and active engagement through newsletters and social media channels. Technically, the site is built on a modern WordPress platform with advanced plugins for SEO, user management, and analytics, demonstrating a mature digital infrastructure. Security measures include HTTPS enforcement, security monitoring via WP Sentry, and GDPR-compliant cookie consent mechanisms, although some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, with clear contact information and privacy policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and secure online presence.

S

solemedia GbR Peter und Agathe Rösch

solemedia.de

43

solemedia GbR Peter und Agathe Rösch operates a full-service marketing and communication agency based in Germany, focusing on services such as marketing, design, print, and internet solutions. The website presents a professional design with a clear focus on their service offerings, targeting businesses seeking comprehensive marketing support. Technically, the site uses modern front-end frameworks like Bootstrap and integrates self-hosted Matomo analytics alongside a Usercentrics consent manager, indicating a moderate level of digital maturity and privacy awareness. Security posture is adequate with HTTPS usage and consent management, but lacks visible security headers and published security policies, which are areas for improvement. Overall, the website is accessible and functional but would benefit from enhanced transparency in privacy and security documentation to improve trust and compliance.

B

BlueLena

bluelena.io

60

BlueLena is a specialized technology company providing audience and fundraising management solutions tailored for independent news organizations and publishers. Founded in 2020, it has established a strong market presence with over 250 clients across North America, offering a SaaS platform integrated with strategic consulting services. The website reflects a mature digital presence built on WordPress with modern marketing and analytics integrations, demonstrating good technical infrastructure and user experience. Security posture is solid with HTTPS and domain protections, though improvements are recommended in DNS security and formal security disclosures. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, BlueLena presents as a credible and professional business with a focused niche in media technology.

N

National Car Rental

emeraldaisle.ca

65

The website emeraldaisle.ca serves as a marketing and informational platform for the Emerald Club membership program under National Car Rental, a large and established transportation company. It offers users a virtual tour of the Emerald Aisle vehicle selection experience, emphasizing convenience and choice for frequent renters. The site is professionally designed with consistent branding and targets business and leisure travelers in the US and Canada. Technically, the site employs a mature JavaScript stack including jQuery, Modernizr, and various UI libraries, with Adobe Launch and Google Tag Manager for analytics and marketing. Privacy compliance is well addressed through OneTrust cookie consent and a comprehensive privacy policy hosted on a partner domain. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The lack of WHOIS data suggests privacy protection, which is justified for this business type. Overall, the site is credible, secure, and user-friendly, supporting National Car Rental's premium membership offering.

N

National Car Rental

emeraldaisle.com

57

The website emeraldaisle.com serves as a branded promotional platform for National Car Rental's Emerald Club loyalty program, emphasizing speed, choice, and convenience in vehicle rental. It targets business travelers and frequent renters primarily in the U.S. and Canada, offering various vehicle options and membership benefits. The site is professionally designed with multimedia content and clear navigation, reflecting a mature digital presence. Technically, it employs modern JavaScript libraries and tracking tools such as jQuery, Adobe Launch, and Google Tag Manager, with cookie consent managed by OneTrust, indicating compliance with privacy regulations. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks explicit security headers and a published security policy, which are areas for improvement. The absence of WHOIS registration data is a notable anomaly; however, the website's branding and external links strongly associate it with the legitimate National Car Rental brand. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance, with recommendations to enhance security posture and transparency.

T

Ticketpoint

ticketpoint.nl

62

Ticketpoint is a well-established Dutch ticket sales platform operating since 2003 under the legal entity Superior B.V. The company specializes in selling tickets for concerts, sports events, festivals, and theater performances, targeting event attendees primarily in the Netherlands. The website is multilingual, supporting Dutch, English, and German, and offers a comprehensive event catalog with direct ticket purchasing options. Technically, the site is built on WordPress with modern plugins and libraries, including Yoast SEO, WPML for multilingual support, and various JavaScript libraries for UI and calendar functionalities. The site employs HTTPS with good SSL configuration and integrates privacy compliance tools such as Cookiebot and reCAPTCHA for form security. Security badges and trust signals are prominently displayed, enhancing user confidence. However, explicit security policies and incident response contacts are not found, representing an area for improvement. Overall, the website demonstrates a solid security posture, good privacy compliance, and a professional digital presence.

AUTOUNIT Ν. ΠΟΥΛΑΚΗΣ ΑΕΒΕ is a well-established Greek automotive company specializing in the sale of new and used cars, automotive parts, and comprehensive vehicle services including maintenance, bodywork, and painting. With over 30 years of experience and an authorized Renault-Dacia dealership, the company holds a strong market position in Greece's transportation sector. Their business model combines retail and service offerings targeting automotive customers seeking quality vehicles and parts. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and slick carousel, ensuring a responsive and user-friendly experience. Integration of Google Tag Manager and Facebook Pixel indicates moderate user tracking for marketing purposes. The site is well-optimized for SEO and mobile devices, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with good SSL configuration and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit published security policies or incident response contacts, and security headers are not detected. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the security posture is solid but could be improved by adding formal security documentation and enhancing HTTP security headers. The overall risk assessment is low, with the website demonstrating good business credibility, privacy compliance, and technical implementation. Strategic recommendations include publishing security policies, adding incident response contacts, and implementing additional security headers to further strengthen the security posture and trustworthiness.

U

UAB Šilputa

silputa.lt

43

UAB Šilputa is a Lithuanian manufacturing company specializing in polystyrene foam insulation products and decorative elements for buildings. Operating since 1999, it holds a solid market position in the Baltic region with modern production facilities. The website reflects a medium-sized business with a focus on construction materials, targeting builders, architects, and individual customers. Technically, the site is built on WordPress with common plugins and uses HTTPS with moderate performance and good mobile optimization. However, exposed PHP errors in meta tags indicate a need for improved backend error handling and security hardening. The security posture is moderate with no visible security headers or incident response policies, though cookie consent is implemented. Overall, the site is functional and professional but would benefit from enhanced security practices and clearer privacy compliance documentation.

P

Picture Ideas

pictureideas.agency

51

Picture Ideas is a Lithuanian digital solutions agency specializing in corporate websites, e-commerce platforms, cloud-based web systems, and visual identity services. Established in 2013, the company serves a diverse clientele including manufacturing firms, service providers, and public institutions, positioning itself as a trusted partner for professional digital transformation. The website reflects a mature business with a clear focus on delivering strategic and aesthetic digital products to business customers. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools, ensuring a functional and engaging user experience. Security posture is solid with HTTPS enforcement and reCAPTCHA integration, though there is room for improvement in HTTP security headers and DNSSEC implementation. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, the website demonstrates a professional and trustworthy digital presence with moderate technical sophistication and good business credibility.

U

Universal Rent LLC

alamo.ge

50

The website alamo.ge represents Universal Rent LLC, a small transportation business specializing in car rental services in Georgia under the Alamo brand. The site offers competitive rental options, including one-way rentals between Georgia and Armenia, supported by multilingual and multi-currency features to serve international travelers. The business appears to be well-established since 2017 with a clear focus on customer service and travel-related content. Technically, the site is built on the Yii framework with modern JavaScript libraries and CSS frameworks, hosted on Bluehost, and includes analytics integrations such as Google Analytics and Yandex Metrika. The website is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Security posture shows some strengths like CSRF protection and HTTPS usage but lacks visible HTTP security headers and explicit incident response or security policies. Privacy compliance is basic, with privacy and cookie policies present but no active consent mechanism. WHOIS data confirms domain legitimacy and consistency with the business timeline. Overall, the site is functional and professional but could improve in security and privacy transparency.

U

UAB "Skulas"

skulas.lt

44

UAB "Skulas" operates a network of gas stations and car washes primarily in Lithuania, offering fuel and vehicle cleaning services including self-service and tunnel washes. The company targets vehicle owners seeking convenient and quality fuel and car wash services. The website reflects a medium-sized regional business with a focus on retail energy and transportation services. Technically, the website uses modern web technologies such as jQuery, Bulma CSS, Leaflet.js for maps, and integrates tracking tools like Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and multimedia content. Security posture is adequate with HTTPS and reCAPTCHA, but lacks explicit security headers, which is a recommended improvement. Privacy and cookie policies are present and GDPR compliance is indicated. WHOIS data is unavailable, which limits domain trust verification, but the website content and business information appear consistent and professional. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for security enhancements.

E

elPetit - festival internacional d'arts per a la primera infància

elpetit.cat

63

elPetit is an international arts festival focused on early childhood, operating primarily in Catalonia, Spain. The festival emphasizes live artistic experiences for young children and runs events across multiple cities. The website reflects a niche cultural organization with a clear target audience of families and early childhood educators. The digital infrastructure is built on modern web technologies including jQuery, Foundation, and Matomo analytics, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though security headers could be improved. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional web presence and active social media channels. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving direct contact information visibility.

T

Théâtre La montagne magique

lamontagnemagique.be

48

Théâtre La montagne magique is a small cultural theatre based in Brussels, Belgium, offering a variety of artistic and educational services including performances, workshops, training, and residencies. The website targets a broad audience including families, children, educators, and artists, emphasizing imaginative and creative experiences. The business operates primarily in the cultural and educational sector with a niche market position focused on artistic theatre experiences. Technically, the website is built on WordPress, leveraging common libraries such as jQuery and Slick Carousel, and uses Mailchimp for newsletter management. Hosting is provided by OVH, a reputable provider, and the site uses HTTPS with good SSL configuration. Security posture is adequate but could be improved by adding security headers and explicit security policies. Privacy compliance is addressed with a cookie consent banner and a basic privacy policy mention. Contact information is clearly provided, enhancing business credibility. Overall, the website is professionally designed, user-friendly, and trustworthy, with moderate technical sophistication and good privacy practices.

V

Viešoji įstaiga „Šilutės sportas“

silutessportas.lt

39

The website represents Viešoji įstaiga „Šilutės sportas“, a public institution focused on coordinating and promoting sports activities in the Šilutė region of Lithuania. It primarily supports basketball and football teams, youth sports training, and organizes local sports events. The site targets local community members, youth, and sports enthusiasts, positioning itself as a regional sports coordinator with a clear mission to enhance sports accessibility and development. Technically, the website uses a modern but straightforward tech stack including jQuery, Bootstrap, and popular UI libraries. It is mobile-optimized with good navigation and content structure, though some accessibility features could be improved. The site includes a cookie consent mechanism aligned with GDPR requirements and uses Google Analytics for minimal user tracking. From a security perspective, the site lacks visible HTTP security headers and explicit security or incident response policies. The SSL configuration could not be verified from the provided data. The cookie consent implementation is a positive privacy feature, but the absence of vulnerability disclosure and security.txt pages indicates room for improvement in security transparency. Overall, the site is professional and trustworthy in content and design but is hindered by missing WHOIS domain registration data, which raises questions about domain legitimacy. Strategic improvements in security headers, incident response information, and domain registration verification are recommended to enhance trust and compliance.