Security Directory

D

Digital Catapult

digicatapult.org.uk

69

Digital Catapult is a UK-based organization positioned as the national authority on advanced digital technology. It focuses on accelerating the adoption of digital innovations across industries to drive economic growth and opportunity. The website reflects a mature and professional digital presence, targeting businesses, innovators, and government stakeholders within the UK technology sector. Key services include industry adoption acceleration and digital technology innovation support. Technically, the website is built on WordPress using modern block-based design with Kadence Blocks, enhanced by SEO tools like Yoast and multiple analytics platforms including Google Analytics, Microsoft Clarity, and Hotjar. The site is mobile-optimized, accessible, and performs moderately well. Security posture is good with HTTPS enforced and privacy mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy and professional, though the lack of WHOIS data due to domain lookup issues slightly reduces trust. Strategic recommendations include publishing a formal security policy, incident response contacts, and vulnerability disclosure information to enhance transparency and security maturity.

J

Jackrabbit Equipment Jackrabbit Equipment

jackrabbitequipment.com

52

Jackrabbit Equipment is a specialized manufacturer of durable and reliable nut harvesting equipment based in Ripon, California. The company focuses on providing high-quality agricultural machinery such as shuttles, carts, elevators, and conditioning solutions tailored for nut orchard operations. Their market position is that of an industry leader in nut harvesting equipment, targeting orchard owners and agricultural businesses. The website reflects a small-sized manufacturing business with a clear product catalog and contact information, supporting direct sales and service. Technically, the website is built on WordPress with WooCommerce integration, utilizing modern web technologies including jQuery, Google Maps API, and custom sliders. The site is hosted likely via GoDaddy, with moderate performance and good mobile optimization. SEO practices are adequately implemented with meta tags and structured data, though accessibility is basic. From a security perspective, the site uses HTTPS but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is provided, which could be improved to build trust. Overall, the website is professional and trustworthy with good business credibility but would benefit from enhanced privacy compliance and security hardening to improve its risk posture and regulatory adherence.

D

Dynamic Manufacturing Inc

dynamicmanufacturinginc.com

63

Dynamic Manufacturing Inc is a specialized company focusing on transmission remanufacturing, electrification, and motorsports components. The website presents a professional image targeting automotive industry professionals and motorsports enthusiasts. The business operates primarily as a B2B manufacturer and service provider within the manufacturing sector. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Tag Manager, and Microsoft Clarity, indicating a moderate level of digital maturity. The site is mobile-optimized and performs adequately, though there is room for improvement in accessibility and security configurations. Security posture is basic with HTTPS enabled but lacks comprehensive security headers and vulnerability disclosures. The absence of WHOIS data and domain registration details raises concerns about domain legitimacy and trustworthiness. Privacy and cookie policies are not clearly presented, which may impact compliance with regulations such as GDPR. Overall, the website is functional and professional but would benefit from enhanced security practices and clearer compliance documentation.

C

Curtiss-Wright Corporation

curtisswright.com

71

Curtiss-Wright Corporation is a well-established industrial and defense engineering company with a strong presence in the energy, commercial, and industrial sectors. The company offers specialized manufacturing and engineering solutions tailored to these markets, positioning itself as a reliable and efficient partner. The website reflects a professional and consistent brand image, targeting B2B clients in specialized sectors. Technically, the website is built on Drupal 10 with modern front-end technologies such as jQuery and Bootstrap, hosted behind Cloudflare DNS services. While the site is mobile-optimized and offers a good user experience, there is room for improvement in accessibility and performance optimization. Security posture is moderate; domain registration protections are strong, but the site lacks visible security headers and DNSSEC is not enabled. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy transparency.

B

Bufab Flos B.V.

flos.nl

44

Bufab Flos B.V. is a Dutch-based medium-sized manufacturing supplier specializing in technical components and comprehensive supply chain solutions. The company positions itself as a customer-focused total supplier offering services including assembly, quality control, and logistics to optimize production costs. The website reflects a professional and consistent brand image with clear service descriptions and multimedia content, supporting its market presence within the manufacturing sector. Technically, the site is built on WordPress with modern plugins and integrates multiple analytics and marketing tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks some security headers and cookie consent mechanisms, which are areas for improvement. The absence of WHOIS registration data is a notable concern for domain legitimacy, although the active and professional website presence suggests a legitimate business. Strategic recommendations include enhancing security headers, implementing GDPR-compliant cookie consent, and publishing clear privacy and security policies to strengthen trust and compliance.

A

ALOR.pro / Alor.lv

alor.lv

42

ALOR.pro / Alor.lv is a Latvian-based e-commerce platform specializing in professional and exclusive cosmetics for both home use and salon professionals. The website offers a wide range of beauty products including hair care, face care, body care, makeup, and vitamins, targeting both consumers and professional users. The business model focuses on online retail with special pricing and product access for registered professionals. The site is well-branded and consistent, with a clear focus on the Latvian market and some multilingual support.

V

visser-timmerwerk

visser-timmerwerk.nl

62

Visser Timmer- en Onderhoudswerken is a small Dutch construction and carpentry company established in 2016, specializing in new builds, renovations, and custom interior solutions. The company positions itself as a reliable and skilled partner for residential construction projects, emphasizing craftsmanship and customer-centric service. Their website is professionally designed using WordPress, featuring clear navigation, good SEO practices, and mobile optimization. Contact options include phone, email, and a contact form, with social media presence on Facebook. Security posture is adequate with HTTPS enabled and secure forms, but lacks advanced security headers and cookie consent mechanisms. The domain registration is consistent with the business profile, indicating legitimacy and stability.

S

Startup Wise Guys

startupwiseguys.com

58

Startup Wise Guys is a well-established startup accelerator and venture capital fund originating from Estonia, active since 2012. They specialize in supporting passionate B2B startup founders through mentorship, funding, and access to a global network. The company holds a strong market position in the CEE and CIS regions with over 45 programs and a community spanning more than 60 countries. Technically, the website is built on WordPress with Elementor and uses modern web technologies including jQuery and Google Tag Manager. SEO practices are well implemented, and the site is mobile optimized with good performance. Security posture is solid with HTTPS enforced and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers and vulnerability disclosures. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is professional and trustworthy, but should enhance privacy and security transparency to improve compliance and user trust.

C

camindu GmbH

aktion-barrierefrei.org

10

Aktion Barrierefrei, operated by camindu GmbH, is a specialized provider of digital accessibility solutions focused on helping organizations comply with legal standards such as WCAG, BITV, and EN301549. Their offerings include assistive widgets, automated audits, AI-powered language simplification, and certification services, targeting public authorities, companies, agencies, and associations. The website demonstrates a high level of professionalism, with clear navigation, comprehensive content, and strong branding consistency. Technically, the site uses modern frameworks like Bootstrap and integrates Matomo for analytics, ensuring good performance and accessibility. Security posture is solid with HTTPS and CSRF protections, though DNSSEC is not enabled and some security headers could be improved. The WHOIS data shows a domain creation date in the future, which is unusual and should be verified, but overall the domain and website content are consistent and trustworthy. No adult or questionable content is present, and the site is fully accessible without WAF or blocking mechanisms.

K

KurPirkt.lv - Visi interneta veikali. Uzzini, kur pirkt!

kurpirkt.lv

53

KurPirkt.lv is a Latvian e-commerce price comparison and online store catalog website designed to help users find products and compare prices across various Latvian internet stores. The platform targets Latvian online shoppers and offers services such as product search, price comparison, and listings of popular products. The website is primarily in Latvian with an option for a Russian version, indicating a regional focus. The business model centers on aggregating product data from multiple stores to facilitate informed purchasing decisions. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, Google Fonts, and Google Tag Manager for analytics. The design is responsive and user-friendly, providing a good user experience on mobile devices. However, the site lacks advanced technical frameworks or CMS indications and shows moderate performance and SEO optimization. Security-wise, the site uses HTTPS (assumed from URL), but no explicit security headers or advanced protections are detected. There is no visible cookie consent mechanism or comprehensive privacy compliance features, which may pose compliance risks. Contact information is limited to a single email address in the footer, with no phone numbers or physical addresses provided. Overall, the website is functional and serves its business purpose but would benefit from enhanced security measures, privacy compliance, and richer contact information to improve trust and regulatory adherence.

S

Scribe

scribe.how

71

Scribe is a technology company specializing in automated process documentation and knowledge sharing solutions. Founded in 2020, it offers a SaaS platform that enables teams and enterprises to create step-by-step guides quickly using AI and visual tools. The company positions itself strongly in the enterprise market, boasting over 5 million users and adoption by 94% of Fortune 500 companies. Its key services include workflow capture, documentation, and integrations with other platforms to enhance team productivity. Technically, the website is built on Webflow, uses modern web technologies including Google Fonts, jQuery, Mixpanel, and Google Tag Manager, and is hosted with Cloudflare DNS and Squarespace as the domain registrar. The site is fast, mobile-optimized, and well-structured with good SEO practices. Analytics and marketing tools are extensively used for user tracking and engagement. From a security perspective, the site enforces HTTPS, has domain status protections, and holds certifications such as SOC 2 Type II, HIPAA, and CCPA compliance. However, DNSSEC is not enabled, and no explicit security headers or incident response contacts are published. Privacy and cookie policies are present but lack a consent mechanism. Overall, the security posture is good but can be improved with additional controls. The overall risk assessment is low with no critical vulnerabilities detected. Strategic recommendations include enabling DNSSEC, implementing cookie consent, publishing security headers, and providing incident response contacts to enhance trust and compliance. The website demonstrates a mature digital presence suitable for enterprise customers with a strong focus on usability and trust.

T

Tập đoàn SCG tại Việt Nam

scgvietnam.vn

68

SCG Vietnam is a major enterprise operating in multiple sectors including cement and building materials, petrochemicals, packaging solutions, logistics, and renewable energy. The company holds a strong market position as a top foreign direct investment (FDI) enterprise recognized for sustainable development. Their website demonstrates a mature digital presence built on WordPress with modern technologies and good SEO practices. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with data protection regulations. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response contacts are absent. Overall, SCG Vietnam presents a professional, trustworthy, and well-branded corporate website with comprehensive business information and active social media engagement.

S

SCGJWD Logistics

scgjwd.com

71

SCGJWD Logistics is a leading logistics and supply chain company operating primarily in the ASEAN region, with a strong presence in Thailand. The company offers a comprehensive range of services including integrated logistics for B2B and B2C clients, international logistics, logistics infrastructure, and industry-specific solutions. Their website reflects a mature business with detailed service offerings, sustainability initiatives, and investor relations information, positioning them as a major player in the transportation sector. Technically, the website is built on modern frameworks such as Vue.js, incorporates performance optimizations like lazy loading, and uses trusted third-party services including OneTrust for privacy compliance and Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and business transparency. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining regular audits of third-party scripts to further strengthen security and compliance.

K

Krankenpflege Hilde Ubben

hildeubben.de

47

Krankenpflege Hilde Ubben is a small, established healthcare provider in Germany specializing in home nursing and related services since 1996. The company offers comprehensive patient care including medical and housework support, focusing on compassionate end-of-life care. Their website reflects a professional and consistent brand presence with clear service descriptions and contact information. Technically, the site is built on WordPress with popular plugins and themes, hosted on rzone.de, and employs HTTPS with a cookie consent mechanism, indicating basic GDPR compliance. However, the WordPress version and plugins appear outdated, and no privacy policy or terms of service pages are present, which are compliance gaps. Security headers are missing, representing an area for improvement. Overall, the site is safe, trustworthy, and well-positioned for its target audience but would benefit from enhanced security and compliance measures.

M

Martens

martens-gartencenter.info

49

Martens is a small local German business specializing in gardening center services, landscaping, and tree nursery. The website presents a professional and consistent brand image targeting local customers interested in gardening and landscaping solutions. The business offers consultation and retail services with clear contact details and social media presence. Technically, the website is built on WordPress using common libraries such as jQuery and Google Fonts, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacking security headers and cookie consent mechanisms. WHOIS data is unavailable due to TLD restrictions, but no suspicious indicators are present on the site. Overall, the website is functional and trustworthy for its business scope.

T

Truesix

truesix.co

52

Truesix is a specialized PR and content marketing agency focused on elevating local brands to international prominence through strategic PR campaigns and high-quality online content. Their service offerings include SEO blogging, international PR, content writing workshops, thought leadership, event PR, and creative brainstorming. The company targets brands with ambitious growth plans seeking global exposure. Technically, the website is built on Webflow with modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and published privacy or cookie policies indicates room for improvement. The WHOIS data is privacy protected, which is typical for agencies, and no suspicious domain registration patterns were found. Overall, the website presents a professional and trustworthy image with strong client testimonials and media mentions, but could enhance compliance and security transparency.

A

ALOR.pro | ALOR.lv

alor.pro

46

ALOR.pro is an e-commerce platform specializing in professional and exclusive cosmetics for both home use and salon professionals. The website offers a wide range of beauty products including skincare, haircare, makeup, and vitamins, targeting both consumers and professional users. The site supports multiple languages (Latvian, English, Russian) and provides user registration for professional pricing and discounts. Technically, the site uses modern web technologies including HTTPS, Google Analytics, and Google Tag Manager, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and secure login forms, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is privacy protected, which is common for commercial sites, but limits transparency. Overall, the site is professional and trustworthy with room for improvement in privacy compliance and security best practices.

G

German Agricultural Society (DLG Asia Pacific)

agrifutureconference.com

60

AGRIFUTURE Conference 2025 is a well-established regional event organized by the German Agricultural Society (DLG Asia Pacific), focusing on sustainable agricultural innovation and entrepreneurship in Southeast Asia. The conference serves as a platform for agri-tech pioneers, development organizations, and stakeholders to network, share knowledge, and promote green agricultural practices. The website reflects a professional and consistent brand image with clear business objectives and a targeted audience of agriculture professionals and innovators. Technically, the site is built on WordPress with modern web technologies, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible but would benefit from enhanced compliance and security measures.

D

Digitial Maestro

digitalmaestro.com

50

Digital Maestro is a small technology-focused service provider specializing in website strategy, security, and optimization for small to medium businesses. Founded in 2013, the company offers coaching, website setup, maintenance, and security services aimed at improving online marketing effectiveness and profitability. The website is built on WordPress using modern frameworks and plugins, demonstrating a moderate to good level of technical maturity. Security posture is adequate with HTTPS enabled and anti-spam measures in place, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-branded, with clear business information and contact options.

N

Nadácia Petit Academy

petitacademy.sk

61

Nadácia Petit Academy is a Slovak non-profit foundation focused on bridging education with practical experience, supporting cultural values, and fostering multicultural dialogue. The website serves as an informational portal highlighting lectures, regional knowledge, and knowledge transfer activities. It is positioned as a niche educational and cultural foundation within Slovakia, leveraging the SME media group infrastructure for hosting and content delivery. The technical infrastructure is modern with use of Google Fonts, consent management, and analytics tools such as Gemius and Google Tag Manager. The website is mobile optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit privacy and security policies are not found in the provided content. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy entity. Recommendations include publishing comprehensive privacy and terms of service pages, adding a security.txt file, and enhancing accessibility features.

P

Petit Press, a.s.

petitpress.sk

61

Petit Press, a.s. is a leading Slovak media company operating a comprehensive news portal at www.petitpress.sk. The company publishes news content across digital and print platforms targeting the general Slovak public. The website demonstrates a mature technical infrastructure with modern web technologies, including asynchronous script loading, Google Fonts, and a consent management platform ensuring GDPR compliance. Security posture is strong with HTTPS enforced and appropriate security headers present, though no explicit security policy or incident response information is published. Advertising and analytics rely on Google services with user consent mechanisms in place. Overall, the website is professional, trustworthy, and well-aligned with the company's business profile. Recommendations include publishing a dedicated security policy and vulnerability disclosure to enhance transparency and security maturity.

S

Sevio

adx.ws

61

The website adx.ws serves as an informational landing page for an ad serving domain owned by Sevio, a technology company specializing in digital advertising services. The site is minimalistic, providing basic information about the domain ownership and directing users to the parent company's main website for further contact and support. The business model centers on ad serving, targeting advertisers and digital marketing professionals. The domain has been registered since 2014, indicating an established presence in the market. From a technical perspective, the site employs standard HTML5 and CSS3 technologies with Google Fonts integration. It lacks complex frameworks or CMS platforms, reflecting a lightweight and straightforward infrastructure. The site is mobile-optimized with good design quality and navigation clarity, although SEO and accessibility features are basic. No analytics or tracking scripts were detected, suggesting minimal user data collection on this domain. Security posture is moderate but could be improved. There is no evidence of security headers or explicit security policies published on the site. HTTPS usage and SSL configuration details are not provided in the data but should be verified. The absence of incident response information and vulnerability disclosure mechanisms indicates room for enhancement in security transparency and readiness. Overall, the website is safe, professional, and consistent with its stated purpose. It does not contain adult or questionable content and maintains a moderate level of trustworthiness. Strategic recommendations include implementing security headers, publishing security policies, and enhancing privacy compliance measures to strengthen the site's security and compliance posture.

I

Intergenerika

biosimilar.ch

55

Intergenerika is a Swiss healthcare association dedicated to promoting biosimilars and generics to reduce healthcare costs and ensure sustainable medication supply. The website provides comprehensive information, expert opinions, market data, and educational videos targeting healthcare professionals, policymakers, and patients in Switzerland. The digital infrastructure is built on the Ibexa CMS platform, utilizing modern web technologies and integrating third-party services like Vimeo, YouTube, and Google Tag Manager. The site is well-optimized for mobile and accessibility, with a clear navigation structure and professional design. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving as a credible resource in the Swiss healthcare sector.

M

Macmillan Learning

macmillanlearning.com

76

Macmillan Learning is a prominent educational publisher and digital learning solutions provider focused on higher education in the United States. Their website offers a comprehensive range of digital tools, textbooks, and instructor resources designed to enhance teaching and learning outcomes. The company targets educators and students, providing platforms such as Achieve and a student store to support academic success. The brand is well-established with consistent and professional digital presence. Technically, the website employs modern analytics and marketing technologies including Google Tag Manager, Amplitude, Hotjar, and Marketo, alongside a robust cookie consent mechanism powered by OneTrust. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. The CMS appears to be SAP Hybris, indicating enterprise-grade content management. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers. However, it lacks publicly available security policies, incident response information, and a vulnerability disclosure program, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, the website is trustworthy, professional, and compliant with privacy regulations such as GDPR. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy. Strategic recommendations include publishing detailed security and incident response policies, establishing a vulnerability disclosure program, and enhancing transparency around data protection officer contacts and data retention policies.

W

Wildfire Today

wildfiretoday.com

47

Wildfire Today is a specialized media website focused on providing news, opinions, and research related to wildland firefighting and wildfire safety. Established in 2008, it serves a niche audience including wildfire professionals, researchers, and the general public interested in wildfire topics. The website offers regularly updated content, including news articles, reports, and event information, supported by advertising and subscription models. Technically, the site is built on WordPress using the Elementor page builder and JupiterX theme, hosted likely via GoDaddy services. It employs modern web technologies and is mobile optimized with good SEO practices. Security-wise, the site uses HTTPS and Google Tag Manager with IP anonymization but lacks DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is limited, with no visible privacy or cookie policies on the main pages. Overall, the website is trustworthy and professional but could enhance its privacy and security posture.

F

Fire Product Search

fireproductsearch.com

44

Fire Product Search is an online informational platform serving as a leading guide for professional firefighting and rescue equipment. The website targets professionals and enthusiasts in the firefighting and rescue sectors, offering product search capabilities, industry news, and updates. It positions itself as a niche leader with a focused business model centered on providing valuable information and resources related to fire and rescue products. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Yoast SEO for search engine optimization and MonsterInsights for Google Analytics integration. The site is served over HTTPS, ensuring secure communication, and employs modern web fonts and iconography. Performance and mobile optimization are moderate to good, with a clean and professional design that supports user experience. From a security perspective, the site enforces HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. No contact information or incident response channels are clearly provided, limiting transparency. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content itself appears professional and trustworthy. Overall, the site presents a moderate risk profile with room for improvement in privacy compliance, security best practices, and business credibility. Strategic recommendations include implementing security headers, publishing comprehensive privacy and cookie policies, providing clear contact and incident response information, and verifying domain registration details to enhance trustworthiness.

I

Intergenerika

intergenerika.ch

53

Intergenerika is a Swiss healthcare association dedicated to promoting generic medicines and biosimilars to reduce healthcare costs and ensure sustainable medication supply. The website positions the organization as a key player in the Swiss generics market, highlighting significant cost savings and market share. Technically, the site is built on the Ibexa CMS platform with modern web technologies, offering good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving healthcare professionals and stakeholders effectively.

B

Better Book Titles

betterbooktitles.com

56

Better Book Titles is a niche humor website focused on creating funny alternate titles for popular novels. Established in 2010, it has built a loyal audience interested in literary parody and humor. The site also operates an e-commerce shop selling book-themed merchandise such as t-shirts, mugs, and stationery. Technically, the website is built on WordPress with WooCommerce, leveraging common web technologies like jQuery and Slider Revolution. It uses Google Fonts, Google Adsense for advertising, and Facebook Pixel for tracking. The site is hosted likely via GoDaddy, with domain registration consistent with the business age and content. Security posture is moderate with HTTPS enabled and bot protection via reCAPTCHA, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional, professionally branded, and serves a general audience with safe content.

R

Roy Rosenzweig Center for History and New Media

rrchnm.org

57

The Roy Rosenzweig Center for History and New Media is an established academic non-profit organization affiliated with George Mason University, focused on democratizing history through digital media. Their offerings include free K-12 educational materials, narrative podcasts, historical data visualizations, and graduate education in digital history. The website reflects a professional and consistent brand presence targeting educators, students, and historians. Technically, the site is built on WordPress using Elementor and Slider Revolution, with Matomo analytics for user tracking. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and explicit security policies. Privacy compliance is limited; no privacy or cookie policies were found, and no consent mechanism is implemented, which is a compliance risk especially under GDPR. Contact information is primarily via a contact form, with no direct emails or phone numbers publicly listed. The domain registration is privacy-protected but consistent with the organization's profile and age. Overall, the site is trustworthy and professional but should enhance privacy compliance and security practices to reduce risk and improve user trust.

C

Centrum | Eventos

centrumeventos.com

42

The website centrumeventos.com appears to be a Spanish-language site focused on event-related services, likely targeting a general audience interested in events. The site uses WordPress with the Divi theme and is hosted on HostGator servers. The technical infrastructure is standard for small to medium websites, with moderate performance and basic mobile optimization. However, the site lacks critical privacy and cookie policies, contact information, and security headers, which impacts its security posture and privacy compliance. The domain is registered with GoDaddy since 2020 and is locked against unauthorized changes, indicating a legitimate registration but with limited public registrant information. Overall, the site shows basic digital maturity but requires improvements in security and compliance to enhance trust and user confidence.

Vipharm Slovakia s.r.o. is a Slovak branch of a Polish pharmaceutical company specializing in the research, production, and sale of high-quality specialized medicines primarily in neurology, psychiatry, and oncology. The company emphasizes compliance with EU standards and quality assurance throughout its manufacturing processes. Their website serves both healthcare professionals and patients, offering educational content and support services including adverse effect reporting. The company maintains a medium-sized market presence with a focus on specialized pharmaceutical products and patient education initiatives. Technically, the website is built on WordPress 4.1.41 with common plugins such as LayerSlider and Contact Form 7. The technology stack includes older versions of jQuery and lacks modern security headers, indicating moderate digital maturity. The site is moderately optimized for performance and mobile use but could benefit from updates and enhanced accessibility features. From a security perspective, the site uses HTTPS but runs outdated software versions that may expose it to vulnerabilities. No advanced security headers are present, and there is no cookie consent mechanism, which may impact GDPR compliance. Contact information is clearly provided, enhancing business credibility. No signs of malware or phishing were detected. Overall, the website is functional and professional but requires technical and security improvements to enhance its posture and compliance. Strategic updates to software, implementation of security headers, and privacy enhancements are recommended to reduce risk and improve trust.

D

Downtown Houston

downtownhouston.org

69

Downtown Houston is a community-focused organization promoting Houston's original neighborhood, Downtown. The website serves as a hub for local events, business promotion, and community engagement, targeting residents, visitors, and businesses interested in the area. The domain is well-established since 1997, indicating a mature presence in the local market. Technically, the site uses modern web fonts and icon libraries, with moderate performance and good mobile optimization. However, there is a lack of visible privacy and cookie policies, and no explicit contact information was found in the provided content. Security posture is adequate with HTTPS enabled and domain transfer protection, but could be improved by implementing DNSSEC and security headers. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

The Museum of Fine Arts, Houston (MFAH) operates as a prominent non-profit cultural institution providing extensive art exhibitions, educational programs, film screenings, and community engagement activities. The website reflects a well-established entity with a strong regional presence, targeting a broad audience including art enthusiasts, families, educators, and students. The business model relies on memberships, donations, ticket sales, and grants, positioning MFAH as a leading museum in Houston with a comprehensive offering of services and events. Technically, the website employs modern technologies such as Blazor Server, Bootstrap 4, and integrates multiple third-party libraries and services including Google Analytics, Facebook Pixel, and Microsoft Application Insights. The infrastructure suggests hosting on Microsoft Azure or similar cloud platforms, ensuring good performance, mobile optimization, and accessibility. The site demonstrates strong digital maturity with fast loading times, responsive design, and clear navigation. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and leverages Application Insights for monitoring. While explicit security headers are not fully confirmed, best practices appear to be followed with no exposed sensitive data or vulnerable libraries detected. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the site could improve by publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information. Overall, the risk assessment is low with a high trustworthiness rating. The domain WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of non-profit organization. The website is professional, secure, and compliant, making it a reliable digital presence for MFAH.

G

Guidebook Inc.

guidebook.com

61

Guidebook Inc. operates a sophisticated SaaS platform that enables event organizers, educational institutions, and enterprises to build customized mobile and web apps for events. The company positions itself as a leader in the event app market with over 100,000 events supported and 25+ million app downloads globally. Their platform offers a no-code drag-and-drop builder, branded apps, event registration, and integrations with popular CRM and marketing tools, targeting a broad audience from small events to large enterprises. Technically, the website is built on modern web technologies including Webflow CMS, Google Fonts, Google Tag Manager, and various analytics and marketing tools such as Bing Ads, LinkedIn Insight, and VWO. The site is well-optimized for mobile, fast loading, and accessible, reflecting a mature digital infrastructure. Security is robust with HTTPS enforced and use of reCAPTCHA, though explicit security headers and vulnerability disclosure policies could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is supported by professional content, customer testimonials, and strong trust signals from third-party review platforms. However, the WHOIS data is missing or unavailable, which slightly reduces transparency and trust. Overall, Guidebook presents a low-risk profile with a professional and secure online presence. Strategic recommendations include enhancing WHOIS transparency, publishing a vulnerability disclosure policy, and explicitly implementing security headers to further strengthen security and trust.

E

Entegy PTY LTD

entegy.com.au

68

Entegy PTY LTD operates a sophisticated SaaS platform specializing in event management, communication, and engagement tailored for professional business events. The company positions itself as a hassle-free, intuitive solution with a comprehensive suite of features including registration, website building, audience participation, and session tracking. Their market presence is supported by strong community partnerships and real-time data capabilities, targeting event organizers and attendees globally. Technically, the website leverages modern web technologies such as Next.js and React, with integrations of HubSpot for marketing and analytics. The site is well-optimized for mobile and desktop, featuring professional design and clear navigation. Performance is moderate with good accessibility and SEO practices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. WHOIS data is privacy protected, which is common for commercial SaaS businesses, but limits transparency. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website demonstrates a strong digital maturity and business credibility with room for improvement in security best practices and privacy policy transparency. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and establishing vulnerability disclosure channels.

I

Indian Pharmaceutical Alliance

ipa-india.org

56

The Indian Pharmaceutical Alliance (IPA) is a prominent industry alliance representing 23 leading Indian pharmaceutical companies. Established in 1999, IPA focuses on policy advocacy, innovation promotion, quality standards, and expanding the global reach of Indian pharmaceuticals. The website reflects a mature digital presence built on Drupal 11, featuring rich content including reports, articles, and multimedia resources. The organization maintains a strong social media footprint and positions itself as a key influencer in pharmaceutical policy and industry standards in India and globally. Technically, the website employs modern web technologies including jQuery, Bootstrap, and slick carousel for enhanced user experience. It is mobile-optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and secure form validation, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or detailed GDPR compliance statements. Overall, the IPA website demonstrates a high level of professionalism and trustworthiness, consistent with its role as a leading pharmaceutical industry alliance. The lack of WHOIS registrant details is mitigated by the domain's age and alignment with the organization's identity. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing incident response and vulnerability disclosure policies to further strengthen trust and security.

G

Generics and Biosimilars Initiative

gabionline.net

56

The Generics and Biosimilars Initiative (GaBI) operates a well-established online platform providing comprehensive news, research, and policy information focused on generic and biosimilar medicines. Founded in 2008, the website serves healthcare professionals, pharmaceutical industry stakeholders, and policy makers with up-to-date editorial content and specialized resources. The platform maintains a strong market position as a niche media provider in the healthcare sector, emphasizing cost-effective treatment options. Technically, the website leverages a mature technology stack including IBEXA CMS, Bootstrap, YUI, and jQuery, supported by Google Fonts and Font Awesome for design consistency. Hosting is provided by Hosting Concepts B.V., with domain registration dating back to 2008, indicating a stable digital presence. The site is mobile-optimized and demonstrates good SEO practices, although some modernization opportunities exist, such as updating jQuery and enabling DNSSEC. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and explicit security headers, and no published security or incident response policies were found. Cookie consent is implemented, and privacy policies are comprehensive and GDPR compliant. No critical vulnerabilities or suspicious content were detected, and the site maintains a high trustworthiness rating. Overall, GaBI presents a professional, secure, and privacy-conscious web presence suitable for its target audience. Strategic improvements in security headers, DNSSEC, and incident response transparency could further enhance its security posture and trustworthiness.

P

Web Performance Leaderboard - perf.report

perf.report

55

perf.report is a niche technology platform focused on ranking and analyzing website performance globally, emphasizing Core Web Vitals metrics. The site targets web developers, SEO professionals, and digital marketers seeking insights into website speed and user experience. It positions itself as a leaderboard for the fastest websites, providing valuable benchmarking data. The platform is powered in partnership with speedvitals.com, indicating a collaborative ecosystem for performance analytics. Technically, the site is built using modern web technologies including SvelteKit and integrates Microsoft Clarity for user behavior analytics. The website demonstrates fast loading times, good mobile optimization, and a professional design, contributing to a positive user experience. However, the absence of privacy and cookie policies, as well as lack of explicit contact information, limits its compliance posture and business transparency. Security-wise, the site uses HTTPS but lacks visible security headers, which could be improved to enhance protection against common web threats. Overall, the domain appears legitimate but lacks WHOIS transparency due to unsupported TLD WHOIS data. Strategic improvements in privacy compliance and security best practices would strengthen trust and regulatory adherence.

N

National Library of Australia

library.gov.au

64

The National Library of Australia operates a comprehensive government website providing access to extensive collections, research tools, and visitor information. The site is well-structured, professionally designed, and targets researchers, educators, and the general public interested in Australian heritage. Technically, the site leverages Drupal 10 CMS with modern JavaScript libraries and tracking tools such as Google Tag Manager and Hotjar, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security and incident response policies are not prominently found. Overall, the domain and website exhibit high legitimacy consistent with a national government institution.

C

Campaigner

campaigner.com

64

Campaigner is a technology company specializing in email marketing automation software designed to help businesses automate workflows, personalize campaigns, and track marketing results effectively. Positioned as a medium-sized SaaS provider, Campaigner offers a comprehensive suite of services including SMS marketing, API integrations, and advanced segmentation, targeting businesses seeking to enhance their digital marketing efforts. The website demonstrates a mature digital presence with professional design, good SEO, and mobile optimization, leveraging WordPress and Elementor technologies. Security posture is strong with HTTPS enforcement, consent management, and modern security headers, although the absence of a public security policy and incident response information suggests room for improvement. The missing WHOIS data for the domain is a notable anomaly but does not detract significantly from the overall legitimacy given the professional website and SSL presence. Overall, Campaigner presents as a credible and trustworthy business with a solid technical foundation and compliance awareness.

B

BroadwayWorld.com

broadwayworld.com

69

BroadwayWorld.com is a prominent media platform dedicated to theatre news, reviews, ticket sales, and entertainment content focused on Broadway and theatre worldwide. The site offers extensive coverage including industry news, interviews, videos, and community forums, positioning itself as a leading source for theatre enthusiasts and professionals. The business model includes affiliate ticket sales, advertising, and content-driven engagement targeting theatre audiences globally. Technically, the website employs modern web technologies such as Bootstrap, Google Tag Manager, and advanced ad platforms like Ezoic and Mediavine, delivering a responsive and content-rich user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and privacy compliance are recommended. The absence of WHOIS registrant data reduces transparency but the professional content and branding support legitimacy. Overall, BroadwayWorld.com demonstrates a mature digital presence with good security and business credibility, though privacy policy and cookie consent mechanisms should be enhanced to meet compliance standards.

S

Society of Chemical Manufacturers & Affiliates

socma.org

63

The Society of Chemical Manufacturers & Affiliates (SOCMA) is a well-established industry association dedicated to advancing the specialty and batch chemical manufacturing sector. The organization provides a comprehensive suite of services including commercial networking, compliance and stewardship programs, regulatory advocacy, training, and career resources. SOCMA positions itself as a key industry advocate and resource hub, targeting specialty chemical manufacturers and related professionals. The website reflects a professional and consistent brand image, supporting its role as a trusted industry body. Technically, the website is built on WordPress with a modern tech stack including UIkit, jQuery, and various analytics and marketing tools such as Google Tag Manager and Feathr. The site demonstrates good mobile optimization and moderate performance, with standard SEO and accessibility features. Security is well-managed with HTTPS, reCAPTCHA integration, and cookie consent mechanisms, although some advanced security headers and policies could be improved. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies, incident response information, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. The WHOIS data is unavailable or protected, which is common for organizations of this type and does not detract from the site's legitimacy given the professional presentation and consistent business information. Overall, SOCMA's website is a credible, secure, and well-maintained platform that effectively serves its industry audience. Strategic improvements in security transparency and accessibility could further strengthen its position and trustworthiness.

U

University of Ottawa Students’ Union (UOSU)

seuo-uosu.com

64

The University of Ottawa Students’ Union (UOSU) website serves as the digital presence for the non-profit student union representing undergraduate students at the University of Ottawa. The organization focuses on advocacy, student services, and fostering an inclusive campus community. The website provides comprehensive information about services, programs, governance, and student life, targeting the university's undergraduate population. The site is bilingual-ready and includes contact details and social media links to engage its audience. Technically, the website is built on the Webflow platform, leveraging modern web technologies including Google Fonts and Google Tag Manager for analytics. The site demonstrates good design quality, mobile optimization, and clear navigation, although some accessibility features could be enhanced. Performance is moderate, with no blocking or WAF detected, allowing full content access. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal privacy or cookie policies, which are important for compliance and trust. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional and consistent branding. Overall, the site is trustworthy but would benefit from improved transparency and security best practices.

W

Welsh Parliament

senedd.wales

71

The Senedd Cymru website serves as the official online presence of the Welsh Parliament, providing comprehensive information about its legislative functions, members, committees, and public engagement activities. It targets citizens of Wales, government officials, researchers, and the general public interested in Welsh governance. The site offers key services such as legislative updates, petitions, news, and educational resources, positioning itself as a trusted government institution. Technically, the website employs modern web standards including Google Fonts and Material Icons, with good mobile optimization and accessibility features. The site is well-structured with clear navigation and professional design, supporting a positive user experience. Security-wise, the site enforces HTTPS, implements security headers, and provides a cookie consent mechanism, reflecting a strong security posture. However, it lacks a dedicated security policy and incident response contact information, which are recommended for enhanced transparency and readiness. Overall, the website demonstrates high trustworthiness and compliance with privacy regulations, making it a reliable source for Welsh parliamentary information.

K

KTWAB

keepingthewolvesatbay.co.uk

57

The website 'keepingthewolvesatbay.co.uk' represents a small creative design portfolio branded as KTWAB. The site showcases various design projects and clients, indicating a focus on creative design services. The business appears to be a small entity or individual designer based in the UK, targeting a general audience interested in design. The website is hosted on Squarespace, leveraging modern web technologies including Vimeo for video backgrounds and Google Fonts for typography. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate with HTTPS enabled and a cookie consent banner present; however, no advanced security headers or privacy policies are implemented. The WHOIS data for the domain is unavailable and shows an error indicating the domain name cannot be registered due to naming rules, which raises concerns about domain registration legitimacy. Overall, the website is functional and professional but lacks key compliance and security documentation.

O

Open Library of Humanities

comicsgrid.com

56

The Comics Grid is a specialized academic journal dedicated to comics scholarship, published as a diamond open-access journal by the reputable Open Library of Humanities. It serves a niche audience of researchers, academics, and enthusiasts in the humanities and comics studies fields. The website offers peer-reviewed articles, special collections, and editorial content with a clear and professional presentation. The business model focuses on open-access academic publishing, emphasizing accessibility and scholarly rigor. Technically, the website employs modern front-end technologies including Materialize CSS, jQuery, and Font Awesome, with a likely Open Journal Systems CMS backend. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security practices include HTTPS usage and CSRF protection, but lack visible security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the absence of WHOIS data for the domain raises minor concerns about domain registration transparency. The site maintains high trustworthiness through its affiliation with Open Library of Humanities and clear editorial policies. Overall, the risk is low, but improvements in privacy compliance and security headers would strengthen the posture. Strategic recommendations include implementing cookie consent for GDPR compliance, publishing a security policy and incident response contacts, adding security headers, and clarifying domain registration information to enhance trust and transparency.

Omeka.org is the official website for Omeka, an established open-source web-publishing platform designed for libraries, museums, archives, and scholarly collections. The project is managed by Digital Scholar and offers multiple products including Omeka S, Omeka Classic, and a hosted service Omeka.net. The platform targets institutions and educators seeking to create and share digital exhibits with ease. The website presents a professional and consistent brand image with clear navigation and product information. Technically, the site uses standard web technologies such as jQuery and Google Fonts, hosted under Amazon Registrar with DNS on AWS Route53. While the site is accessible and well-structured, it lacks published privacy, cookie, and security policies, which impacts compliance and trust scores. Security posture is moderate with domain registration protections in place but missing DNSSEC and security headers. Overall, the site is trustworthy and safe for general audiences, with no adult or questionable content detected.

N

Nederlandse Organisatie voor Wetenschappelijk Onderzoek (NWO)

werkenbijnwo.nl

70

The Nederlandse Organisatie voor Wetenschappelijk Onderzoek (NWO) is the primary science funding organization in the Netherlands, investing approximately 1 billion euros annually in scientific research. The website 'Werken bij NWO' serves as a recruitment and informational platform targeting professionals interested in contributing to scientific advancement. The site is well-branded, professionally designed, and provides comprehensive content about the organization, its mission, and career opportunities. Technically, the site is built on Drupal 10, employs modern web standards, and includes accessibility and mobile optimization features. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the website demonstrates a mature digital presence consistent with a large government/non-profit entity.

The Dutkansearvi website represents the Sámi Language and Culture Research Association, a small non-profit academic organization founded in 2014 in Finland. The association focuses on promoting research and publications related to Sámi language and culture, serving a niche audience of researchers and cultural scholars. The website is built on WordPress with a moderate technical infrastructure including common plugins and Google Analytics for visitor tracking. While the site is functional and well-branded with consistent content quality, it lacks critical privacy and cookie policies, which impacts compliance with GDPR and related regulations. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but the absence of security headers and incident response information suggests room for improvement. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

A

Arctic Stories

arcticstories.se

56

Arctic Stories is a small cultural tourism business based in Sweden, specializing in Sámi storytelling and joiking experiences in Jokkmokk. The company offers unique cultural activities including traditional joik singing, storytelling sessions, and contemporary dance performances, targeting tourists and cultural enthusiasts interested in indigenous Sámi culture. The website is professionally designed using Squarespace, featuring multimedia content such as images and embedded videos, and integrates social media links to Instagram. Technical infrastructure is modern and secure, with HTTPS and HSTS enabled, but lacks some advanced security headers and explicit privacy and terms of service documentation. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Contact information is clearly provided, including email, phone, and physical address, enhancing business credibility. Cookie consent mechanisms are implemented, indicating some privacy compliance awareness.