Security Directory

D

Dant Y Coed Dental Practice

dantycoeddentalpractice.co.uk

55

Dant Y Coed Dental Practice is a UK-based dental clinic offering a wide range of dental services including general dentistry, cosmetic treatments, dental implants, Invisalign, and facial rejuvenation. The practice emphasizes high-quality care and affordable payment plans, targeting patients seeking reliable dental services. The website is professionally designed using WordPress and Elementor, featuring detailed team profiles and service descriptions. Social media integration with Facebook and Instagram enhances their digital presence. Technically, the site uses modern web technologies and plugins, with SSL enabled ensuring secure connections. However, the absence of visible privacy and cookie policies and lack of security headers indicate areas for improvement in compliance and security posture. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site presents a credible and professional dental practice with moderate technical maturity and good business credibility.

M

MPA Accounting

mpaaccounting.co.uk

51

MPA Accounting is a small, island-based accounting firm specializing in accounting, bookkeeping, payroll, and tax-related services for sole traders, limited companies, partnerships, and individuals primarily in the Isle of Wight area. The company emphasizes personalized customer service and offers a range of specialized services including VAT returns, self-assessment, and construction industry scheme compliance. Their market position is that of a trusted local specialist with an AAT qualified team and positive client testimonials. Technically, the website is built on WordPress using popular plugins and themes, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though some security headers and incident response information are missing. Overall, the website is professional, trustworthy, and compliant with GDPR, but could improve in security best practices and transparency. The domain is long-standing and consistent with the business history, supporting legitimacy.

Cerberus Services Ltd is a UK-based company specializing in bespoke car parking and perimeter security solutions. Their offerings include barriers, car park counting systems, ANPR, gates, access control, and turnstiles, targeting businesses and organizations requiring physical security enhancements. The website presents a professional and consistent brand image with clear navigation and relevant content focused on their security engineering services. However, the domain www.cerberus-services.co.uk is not registered according to Nominet UK WHOIS data, indicating a potential discrepancy or misconfiguration in domain registration. Technically, the website uses standard web technologies such as Bootstrap and jQuery, with moderate performance and good mobile optimization. There is no evidence of advanced CMS or hosting provider details. Security posture is weak due to lack of HTTPS, absence of security headers, and no visible security policies or incident response information. Privacy compliance is minimal with no cookie consent mechanism detected, although privacy and terms pages exist. Overall, the website is functional and business-focused but suffers from critical security and legitimacy issues related to domain registration and lack of HTTPS. These issues pose risks to user trust and data protection. Strategic improvements in security infrastructure, domain registration validation, and privacy compliance are recommended to enhance credibility and reduce risk.

E

Euroflo Group Limited

euroflogroup.co.uk

47

Euroflo Group Limited is a specialist engineering contractor operating primarily within the UK construction industry, focusing on commissioning and water treatment services. Established in 2008, the company serves mechanical installation contractors, managing contractors, supervising engineers, and direct clients. Their service portfolio includes precommission cleaning, HVAC commissioning, water system disinfection, chemical and equipment supply, Legionella risk assessments, and system validation. The company has expanded into Europe with a subsidiary, Euroflo BV, reflecting growth in the data centre market. The website is professionally designed, mobile-optimized, and provides clear contact information and trust indicators such as industry certifications. Technically, the site runs on WordPress with standard libraries like jQuery and Bootstrap, delivering moderate performance and basic SEO and accessibility features. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and published security policies. No incident response or vulnerability disclosure information is available, indicating room for improvement in transparency and security maturity.

A

A & D Door Systems Ltd

addoorsystems.co.uk

43

A & D Door Systems Ltd is a well-established family-owned business specializing in the installation, repair, and maintenance of industrial and commercial doors, roller shutters, and security systems across the UK. With over 25 years of experience, the company offers a comprehensive range of products and services including emergency 24/7 repair, multi-site contracts, and tailored maintenance plans. Their market position is strengthened by strong customer loyalty, certifications, and a focus on quality and service. Technically, the website is built on WordPress using the Enfold theme and Avia framework, incorporating modern technologies such as Google Tag Manager, Google Analytics, and Hotjar for analytics and user behavior tracking. The site is mobile-optimized with good SEO practices, though some accessibility features could be improved. Performance is moderate with asynchronous loading of scripts. From a security perspective, the site uses HTTPS with good SSL configuration but lacks some security headers that could enhance protection. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a comprehensive privacy policy present but no visible cookie consent mechanism. Contact information is clear and comprehensive, supporting business credibility. Overall, the website presents a professional and trustworthy front for the business, though improvements in security headers and privacy compliance would enhance its posture. The WHOIS data is unavailable due to querying the 'www' subdomain, but the website content and business information indicate legitimacy. Strategic recommendations include implementing security headers, adding cookie consent, and enhancing incident response transparency.

A

Academic Day Nursery

twinkletotsdaynursery.co.uk

62

Academic Day Nursery is a small, well-established childcare provider located in Stoke Newington, London, serving families with children aged 6 months to 5 years. The nursery has a good reputation supported by an Ofsted 'Good' rating and offers a range of childcare services including baby, toddler, and preschool rooms, outdoor activities, and government funding options. The website is professionally designed with clear navigation and contact information, targeting local parents seeking quality childcare. Technically, the site uses modern JavaScript libraries and analytics tools, hosted likely via Yell.com's platform, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and CAPTCHA-protected forms, but lacks some advanced security headers and explicit security policies. WHOIS data is unavailable due to domain registration constraints, which slightly reduces trustworthiness from a domain perspective but does not detract from the business legitimacy evident on the site. Overall, the site is safe, professional, and trustworthy for its intended audience.

J

Jazzclub Moods

moods.club

62

Jazzclub Moods operates a well-established concert venue in Zurich, specializing in jazz, world, funk, soul, pop, and electro music. The venue hosts almost daily concerts and offers extensive video-on-demand content and live streaming services, positioning itself as a cultural hub in the region. The website reflects a mature digital presence with a modern tech stack including Next.js and React, integrated with analytics and booking widgets to support event management and user engagement. Security measures such as HTTPS, security headers, and reCAPTCHA are implemented, indicating a good security posture. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site is professional, trustworthy, and well-optimized for its audience.

S

Sanderson Decorators Ltd

casanderson.co.uk

47

Sanderson Decorators Ltd is a small, local painting contractor business based in Leicester, United Kingdom, specializing in residential, commercial, and industrial painting and decorating services. The website presents a professional and consistent brand image with a clear focus on its core services and target audience. The domain has been registered since 2001, indicating a well-established presence in the market. Technically, the website uses modern web fonts and iconography, including Google Fonts and Font Awesome, and integrates Google Tag Manager for analytics. However, there is no evidence of advanced frameworks or platforms beyond a proprietary CMS (GYOLCMS v3.8.11). Security posture is limited, with no detected security headers or explicit SSL/TLS configuration details in the provided data. Privacy and cookie policies are absent, which may impact compliance with GDPR and user trust. Overall, the website is functional and relevant but would benefit from enhanced security and privacy practices.

Cars Garage Limited operates as a local automotive repair and servicing business based in Drighlington, West Yorkshire, UK. The company offers a range of car repair and servicing solutions targeting local car owners. The website presents basic business information and services but lacks comprehensive contact details and formal policies. The market position appears focused on local clientele with a small business scale. Technically, the website uses a basic CMS (W4UCMS) and integrates common web technologies such as Google Fonts, Google Analytics, Google Tag Manager, and reCAPTCHA for bot protection. The site is mobile-optimized with moderate performance but lacks advanced frameworks or hosting details. Security posture is moderate with HTTPS enabled and reCAPTCHA implemented; however, no security headers were detected, and privacy compliance is minimal due to missing privacy and cookie policies. The domain WHOIS data indicates the domain is not registered or invalid under Nominet UK rules, raising legitimacy concerns. Overall, the website is functional but requires significant improvements in security, privacy compliance, and business transparency to enhance trust and professionalism.

T

Three Pears Brands | International Fragrance, Skin and Personal Care Supplier

threepears.co.uk

51

Three Pears Brands is a UK-based company specializing in international fragrance, skin, and personal care products. Established in 1973, the company has evolved from a distribution powerhouse into a leading brand partner, focusing on brand licensing, brand management, and manufacturing. They serve major retail partners such as Tesco, Morrisons, Superdrug, and B&M, bridging the gap between world-class intellectual property and retail shelves. The website reflects a mature digital presence with professional design, clear navigation, and modern technology stack including WordPress, WooCommerce, and Elementor. Technically, the website is well-structured, mobile-optimized, and uses secure HTTPS connections. However, it lacks explicit security headers and formal privacy and cookie policies, which are important for compliance and user trust. The WHOIS data for the domain is unavailable due to a domain registration error, which raises some concerns about domain legitimacy despite the professional business presence. Security posture is generally good with HTTPS and no visible vulnerabilities, but improvements are recommended in security headers and privacy compliance. Overall, the website presents a trustworthy and professional business front, but domain registration inconsistencies and missing compliance documents should be addressed to enhance credibility and reduce risk.

C. Brumpton Butchers Ltd is a longstanding family-run butcher business operating in Nottingham with physical stores in Cotgrave and West Bridgford. The company emphasizes quality, local sourcing, and traditional recipes, offering a wide range of meat products and home-baked goods. Their website serves primarily as an informational platform showcasing their offerings and contact details, supported by a professional design and embedded promotional video. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring a good user experience and mobile responsiveness. Security posture is solid with HTTPS and anti-spam measures, though it lacks advanced security headers and formal privacy policies, which are areas for improvement. The domain WHOIS data is unavailable due to a registration error, which raises some concerns about domain legitimacy from a technical standpoint but does not detract from the business's apparent authenticity. Overall, the website is functional, professional, and safe for general audiences.

The Finchley Vet is a small veterinary clinic based in Finchley, London, providing pet healthcare services to the local community. The website is built on WordPress using the Divi Builder theme and incorporates common web technologies such as Google Fonts, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. The domain is registered with a reputable UK registrar since 2015, consistent with the business's operational timeline. The website design and user experience are good, with basic mobile optimization and clear navigation. However, the content quality is basic, lacking comprehensive business and compliance information such as privacy and cookie policies. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but lacks security headers and incident response details. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

G

Garnetts Gardens

garnettsgardens.co.uk

49

Garnetts Gardens is a well-established, family-run retail plant nursery located in Hacheston, United Kingdom. Founded in 1994, the business has expanded from a small shed to a comprehensive garden centre offering a farm shop, café, gift area, and caravan site. The website reflects a local community focus with services tailored to gardening enthusiasts and local customers. The business model centers on retail and hospitality services with a strong emphasis on homegrown plants and knowledgeable customer support. Technically, the website is built using the Site.pro website builder platform, incorporating standard JavaScript libraries and Google Fonts. The site is moderately optimized for performance and mobile use, with basic SEO and accessibility features. Hosting is provided by 123-Reg Limited, a reputable UK registrar and hosting provider. The website is accessible without any WAF or security challenges, indicating good availability. From a security perspective, the site uses HTTPS but lacks important security headers and policies such as privacy, cookie, and terms of service documents. There is no evidence of advanced security frameworks or incident response mechanisms. The site collects minimal user data via a simple Google Maps directions form but does not implement consent mechanisms or privacy compliance features. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk assessment suggests a legitimate small business website with moderate technical maturity and some compliance gaps. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and enhancing data protection practices to improve trust and compliance.

Boward is a small treesurgery business operating a WordPress-based website focused on gardening and tree care content. The site features a blog authored by 'Jack Boomer' with posts dating from 2022. The business appears to be a local or small-scale service provider with no evident parent company or subsidiaries. Technically, the website uses standard WordPress technologies including jQuery and several JavaScript libraries for UI enhancements. Hosting is provided by OVH, a reputable provider. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. No privacy, cookie, or terms of service policies are present, indicating compliance gaps. No contact emails, phone numbers, or social media links are provided, which limits business credibility and user trust. WHOIS data is consistent with the business profile, showing domain registration in 2022 with OVH. Overall, the website is functional and content-rich but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and compliance.

The website www.lunson-mitchenall.co.uk is currently inaccessible, serving a 403 Forbidden error page that blocks access to any meaningful content. The WHOIS lookup failed with an error indicating the domain cannot be registered due to naming rules violations, suggesting the domain may be invalid or misconfigured. No business information, contact details, or policies are available on the site. Technically, the site uses basic HTML and CSS with Google Fonts but lacks modern security headers, HTTPS information, or analytics. The overall security posture is poor due to lack of accessible content and missing security best practices. This results in a very low trust and legitimacy score for the domain and website.

Owens & Minor is a well-established healthcare logistics and supply chain company providing distribution and supply chain management services primarily to healthcare providers such as hospitals and clinics. The company operates at an enterprise scale with a strong market position in the United States. Their website reflects a professional and consistent brand image, targeting healthcare supply chain professionals and organizations. Technically, the website is built on WordPress with modern frameworks like Bootstrap and optimized for performance and mobile devices. Security posture is strong with HTTPS enforcement and appropriate security headers, although there is room for improvement in public vulnerability disclosure and incident response transparency. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website and business appear credible and trustworthy, though the absence of WHOIS data is a notable anomaly that warrants further verification.

The website www.georgeshairdressing.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any business or service content. The WHOIS lookup failed to find any registration data for the domain, indicating it may be unregistered or the data is not publicly available. The site contains no metadata, no forms, no contact information, and no privacy or cookie policies, which severely limits any meaningful analysis of the business or its digital presence. Technically, the site only loads Google Fonts and lacks HTTPS confirmation or security headers, indicating a poor security posture. Overall, the site appears inactive or improperly configured, posing a high risk for trust and credibility.

W

Wembley Mini Cabs

wembleycab.com

55

Wembley Mini Cabs is a small transportation service provider based in the United Kingdom, specializing in minicab, minibus, and airport transfer services in the Wembley area. The company positions itself as a reliable alternative to traditional taxi services, emphasizing safety, professionalism, and customer convenience. The website supports online booking through a partner platform and offers mobile apps for Android and iPhone users, enhancing digital accessibility. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, Google Fonts, and Font Awesome icons. The site is mobile optimized with a responsive design and clear navigation, though no advanced CMS or frameworks are detected. Performance is moderate with no visible analytics or tracking scripts, indicating a privacy-conscious approach or minimal digital marketing. From a security perspective, the site uses HTTPS as indicated by canonical URLs but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. The absence of WHOIS data for the domain is a notable concern, suggesting possible domain registration issues or privacy protection that is not publicly disclosed. No incident response or security policies are published, and no vulnerability disclosures or certifications are evident. Overall, the website is professional and trustworthy in content and presentation but would benefit from improved transparency in domain registration, enhanced security headers, and privacy compliance features. Strategic recommendations include implementing cookie consent, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

W

Wilkes-Green + Hill Ltd

wilkesgreenhill.co.uk

59

Wilkes-Green + Hill Ltd is an independent, award-winning estate agency based in Penrith, Cumbria, established in 1996. The company specializes in property sales, lettings, valuations, and landlord/tenant services, targeting local property buyers, sellers, landlords, and tenants. The website reflects a professional and trustworthy business with clear branding, comprehensive service descriptions, and multiple trust indicators including certifications and customer testimonials. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Swiper.js, and Google reCAPTCHA v3, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website presents a credible and professional digital presence for a small real estate business.

D

Dream Days Bridal Wear Ltd.

dreamdaysbridalwear.co.uk

62

Dream Days Bridal Wear Ltd. is a small retail bridal boutique located in Dudley, UK, specializing in wedding dresses, plus size bridal wear, and mother of the bride outfits. The business operates primarily on an appointment-only model, offering personalized and in-house alteration services. The website reflects a professional and customer-focused approach with clear communication about COVID-19 policies and appointment scheduling. Technically, the site is built on the Webflow platform, leveraging modern web technologies and integrating Google Analytics and Tag Manager for marketing insights. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and secure forms, but lacks advanced security headers and published security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. The WHOIS lookup failed due to domain naming rules issues, which raises some concerns about domain registration legitimacy, though the website content and business information appear trustworthy. Overall, the site scores well in business credibility and content quality but should improve security and privacy compliance to enhance trust and regulatory adherence.

T

The Doughnut (W)Hole

thedoughnutwhole.com

45

The Doughnut (W)Hole website represents a creative or artistic project launched in 2025, as indicated by the domain registration date and content references. The site features multimedia content including embedded Vimeo videos and uses Google Tag Manager for analytics tracking. The technical infrastructure is based on the Cargo CMS platform, with Google Fonts for typography. The website design is basic with moderate branding consistency and limited textual content, targeting a general audience interested in art or culture. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, indicating a gap in compliance. No contact information or incident response details are provided, limiting business credibility and transparency. Overall, the site is safe and accessible without WAF or blocking mechanisms.

Clan & Plant Tools Ltd, part of the Emergency One Group, is a UK-based company specializing in the supply of equipment and manufacturing of emergency vehicles, including fire engines and rescue vehicles. The company targets a broad audience ranging from large organizations to private individuals, positioning itself as a reputable supplier in the transportation and emergency services sector. The website reflects a professional business presence with detailed product offerings and a clear brand identity aligned with its parent group. Technically, the site is built on WordPress using modern plugins such as Elementor and WooCommerce, ensuring a flexible and scalable platform. SEO and structured data implementations are well executed, enhancing search visibility and content clarity. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though it lacks some advanced security headers and explicit privacy and cookie policies, which are important for compliance and user trust. Overall, the website is functional, professional, and trustworthy, but could benefit from enhanced privacy compliance and security hardening to meet best practices and regulatory requirements.

Sycamore Park is a UK-based hospitality business specializing in providing an adult-only site for touring caravans and motor homes. Established in 2013, it caters to a niche market of adult caravan and motor home users seeking a dedicated and peaceful environment. The website is built on WordPress using Elementor, indicating a moderate level of digital maturity with a focus on user-friendly design and mobile responsiveness. However, the site lacks critical privacy and cookie policies, which are essential for GDPR compliance and user trust. Security posture is moderate with no evident security headers or incident response information, suggesting room for improvement in protecting user data and enhancing trust. Overall, the business appears legitimate with a consistent domain registration history, but the website would benefit from enhanced security and privacy measures to align with best practices and regulatory requirements.

C

Claridge Interiors

claridgeinteriors.co.uk

65

Claridge Interiors is a UK-based small business specializing in interior design and home renovation services, including kitchens, bathrooms, bedrooms, and offices. The company emphasizes a collaborative design-to-build process and leverages over 30 years of experience to deliver high-quality workmanship and customer satisfaction. Their website reflects a professional and consistent brand image with clear contact information and customer testimonials that enhance trust. Technically, the website is built on WordPress using modern technologies such as Bootstrap 4, jQuery, and FontAwesome. It is mobile-optimized and includes SEO best practices. Google Analytics is implemented for user tracking and external link event monitoring. However, some security best practices like security headers and cookie consent mechanisms are missing. From a security perspective, the site uses HTTPS with a good SSL configuration and secure forms. There are no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are present, indicating some level of GDPR compliance, though the absence of a cookie consent banner is a gap. No incident response or security policy information is publicly available. Overall, the website is trustworthy and professionally maintained with a good security posture for a small business. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance compliance and user trust.

The website www.pelc.nhs.uk currently serves a 403 Forbidden error page, indicating that access to the content is restricted or blocked. The domain itself is invalid according to the WHOIS data, as it contravenes Nominet UK's naming rules due to having too many parts, and thus cannot be registered. This suggests that the domain is likely a subdomain or alias rather than a standalone registered domain. Consequently, no registrant or registration details are available. The website lacks any visible business information, contact details, privacy or cookie policies, or terms of service. Technically, the site uses Google Fonts but no other detectable technologies or scripts. Security headers and SSL configuration details are not provided, and no analytics or tracking services are detected. Overall, the site is inaccessible for meaningful content or business analysis beyond the error page.

A

Apodi

apodi.co.uk

60

Apodi is a UK-based healthcare services provider specializing in facilitating access to medicines and healthcare services, primarily serving pharmaceutical companies, healthcare professionals, and patients. Their offerings include market insight services, specialist healthcare professional (HCP) services, homecare, recruitment, HR and development, and a patient portal. The company positions itself as a trusted partner with strong industry certifications and a focus on improving patient outcomes through innovative healthcare solutions. The website reflects a professional and consistent brand image with clear navigation and comprehensive service descriptions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI/UX enhancement libraries. It is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Analytics tools such as Google Analytics and planned LinkedIn analytics are integrated with user consent. However, some security best practices like security headers are not visibly implemented, representing an area for improvement. From a security perspective, the site uses HTTPS with a strong SSL configuration and does not expose sensitive data. The cookie consent mechanism and privacy policy indicate good privacy compliance. The absence of a dedicated security policy or incident response contact reduces transparency. WHOIS data for the domain is unavailable or indicates the domain queried is not registered, which slightly impacts trust from a domain legitimacy standpoint but does not detract from the professional presentation and certifications. Overall, Apodi's website demonstrates a solid business and technical foundation with good security and privacy practices. Strategic improvements in security headers, incident response transparency, and domain registration clarity would enhance trust and security posture further.

C

CDS Co operatives

cds.coop

59

CDS Co-operatives is a charitable community benefit society based in the UK, established in 2001, focused on supporting co-operative and community enterprises. The website uses WordPress with the Divi theme and includes cookie consent mechanisms via CookieYes, indicating a basic level of digital maturity. However, the site lacks explicit privacy and terms of service policies, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. The website content is safe and targeted at a general audience interested in co-operative development.

Coe Fabrications is a small manufacturing business specializing in bespoke steel fabrication services including metal gates, railings, balconies, handrails, and staircases primarily serving the Essex and London areas. The company emphasizes over 45 years of experience in the industry, targeting residential and commercial property owners seeking custom metalwork solutions. The website is built on WordPress with a modern theme and includes Google Tag Manager for analytics. While the site is well-structured and mobile-optimized, it lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing key security headers and vulnerability disclosures. The WHOIS data is unavailable and inconsistent, which raises concerns about domain legitimacy despite the professional appearance of the website.

G

Google

google.com

69

Google is a leading global technology company primarily known for its search engine and extensive portfolio of internet-related services and products. It operates at an enterprise scale with a strong market position in online advertising, cloud computing, and software solutions. The website reflects a mature digital presence with excellent design, user experience, and mobile optimization. Technically, the site employs modern web standards, optimized performance, and secure HTTPS connections, ensuring a robust infrastructure. Security measures are well implemented, with no visible vulnerabilities or exposed sensitive data. However, explicit privacy and cookie policies were not detected in the provided content, which may be located elsewhere on the site. Overall, Google’s website demonstrates high professionalism, trustworthiness, and technical maturity, consistent with its global brand reputation.

P

PT. NARAYA TEKNOLOGI INDONESIA

naraya.ai

55

Naraya AI is a technology company focused on providing AI-powered tools tailored specifically for Indonesian MSMEs (UMKM). Their platform offers a suite of 11 tools designed to assist with content creation, customer communication, sales analysis, tax reporting, and promotional design, all localized in Bahasa Indonesia and integrated with popular Indonesian marketplaces and communication channels. The business model is subscription-based with affordable pricing starting at Rp 49,000 per month, targeting small businesses across Indonesia. The website demonstrates a high level of professionalism, excellent design quality, and clear navigation, optimized for mobile users. Technically, the site uses modern web standards, Google Fonts, Google Analytics 4, and Cloudflare Web Analytics, indicating a mature digital infrastructure. Security posture is good with HTTPS, anonymized analytics, and ISO 27001 certification, though improvements are recommended in DNSSEC and security headers. The WHOIS data shows privacy protection with a registrant in the US and a suspicious future domain creation date, which slightly reduces trustworthiness. Overall, the site is safe, business-focused, and well-positioned in the Indonesian MSME market.

O

OldCourtHouseArtsCenter

oldcourthouseartscenter.org

53

OldCourtHouseArtsCenter operates an adult escort directory website focused on Dubai, offering verified independent escort profiles with real photos and direct contact options. The platform targets adult clients seeking companionship services, emphasizing privacy and direct communication without intermediaries. The website is built on WordPress, uses jQuery and caching plugins, and is moderately optimized for mobile and SEO. Security posture is basic with HTTPS enabled but lacking important security headers. Privacy and cookie policies exist but lack explicit GDPR compliance mechanisms. WHOIS data is unavailable, reducing trustworthiness and raising concerns about domain registration transparency. No company contact emails or phone numbers are provided, limiting business credibility. Overall, the site serves a niche adult market with moderate technical maturity but needs improvements in security and transparency.

S

SIA MJD

mjd.lv

58

SIA MJD is a Latvian-based small technology company specializing in tailored Microsoft 365 solutions aimed at improving productivity, automation, and business process transparency. Their services include Microsoft 365 environment setup, custom Microsoft Teams applications, Power Platform low-code business apps, automation with Power Automate and AI, SharePoint customization, data migration, integration, and UX/UI design. The company positions itself as a niche provider focused on modern cloud collaboration and business automation solutions for teams and organizations leveraging Microsoft 365. Technically, the website is built using modern web technologies including React and Material-UI, hosted on Azure DNS infrastructure, and integrates Google Tag Manager for analytics. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks advanced security headers and formal security or incident response policies. Privacy compliance is partially addressed with privacy and cookie policies present but no explicit cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy front for a specialized Microsoft 365 development company. The risk profile is low with no signs of malicious activity or content safety concerns. Strategic improvements in security headers, incident response transparency, and cookie consent would further strengthen their security posture and compliance.

D

DigitalGroot

digitalgroot.com

46

DigitalGroot is a Dubai-based freelance SEO and digital marketing consultancy led by Ibadul Rahman, offering comprehensive SEO services including keyword research, technical SEO, content optimization, local SEO, and digital marketing campaigns. The website demonstrates a strong local market presence with detailed service descriptions and client-focused content. Technically, the site is built on WordPress with modern plugins and Google tracking integrations, delivering good performance and mobile optimization. Security posture is solid with HTTPS enabled, though lacking some security headers and formal privacy policies. The WHOIS data for the domain is missing, indicating either a new or private registration, which slightly impacts trust but is mitigated by professional site content and contact transparency.

A

AdHiveStudio

adhivestudio.com

50

AdHiveStudio is a newly established digital marketing agency based in Dubai, UAE, specializing in services such as Google Ads, SEO, social media marketing, graphic design, and web design including WordPress development. The company positions itself as an AI-driven and automation-enabled marketing solution provider targeting businesses seeking professional digital marketing services in the UAE region. The website is built on WordPress CMS, leveraging popular plugins like Yoast SEO for search engine optimization and WP Rocket for performance enhancements. Hosting is provided by HOSTINGER operations, UAB, with a domain created in mid-2025, consistent with the business's founding year. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is professional, well-branded, and provides clear contact channels including a phone number and contact form. Social media presence on Facebook, Instagram, and LinkedIn supports trust and engagement.

D

Diena

diena.lv

51

Diena.lv is the largest national newspaper and news portal in Latvia, providing comprehensive news coverage across various sectors including local, international, sports, culture, and lifestyle. The website supports subscription services and integrates multiple advertising and analytics platforms to monetize and analyze user engagement. The technical infrastructure is modern with HTTPS enforcement, use of popular web fonts, social media SDKs, video players, and ad networks. Security posture is solid with appropriate headers and no visible vulnerabilities, though explicit privacy and terms of service documents are not found, indicating room for compliance improvement. Overall, the site is professional, content-rich, and trustworthy, serving a broad general audience with safe content.

S

SIA Izdevniecība Dienas Bizness

db.lv

53

Dienas Bizness is a well-established Latvian business news media company providing comprehensive coverage of business, finance, real estate, technology, and lifestyle topics. The website serves a professional audience including investors and business professionals in Latvia. It offers digital and print publications, subscription services, and advertising opportunities, positioning itself as a leading business news portal in the Latvian market. Technically, the site uses modern web technologies such as jQuery, Google Tag Manager, and Revive Adserver for advertising, with a cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized and features a professional design with clear navigation. Security-wise, the site enforces HTTPS and uses cookie consent scripts but lacks explicit security headers and published security policies. Overall, the site is trustworthy, professional, and compliant with privacy regulations, though it could improve by publishing security policies and enhancing security headers.

N

Nano Banana AI

ai-banana.app

75

Banana AI, operated by Nano Banana AI, is a specialized technology company offering advanced AI-powered image editing services. Their platform enables users to upload images and apply complex edits using natural language commands, positioning them as a niche player in the AI creative tools market. The business model is credit-based with subscription options, targeting creative professionals and enthusiasts seeking efficient and intelligent image manipulation solutions. The website demonstrates a modern technical infrastructure built on Next.js and React, integrating Google Fonts, Google Adsense for monetization, and Microsoft Clarity for analytics. The design is professional, mobile-optimized, and user-friendly, supporting a positive user experience. Security posture is strong with HTTPS enforcement and comprehensive security headers, though explicit privacy and terms of service documents are missing, which impacts compliance confidence. Overall, the site is trustworthy and well-positioned but would benefit from enhanced transparency and formalized policies.

L

LSC

lscgroup.lv

58

LSC is a Latvian maritime transportation and ship management company with a significant fleet and workforce, delivering cargoes globally. Their website reflects a mature business with clear service offerings in technical management, crew management, safety, and legal/accounting services. The company targets maritime professionals and clients seeking reliable shipping services. Technically, the website is built on WordPress with modern SEO and security features like HTTPS and hCaptcha, though it lacks some advanced security headers and explicit incident response information. Overall, the security posture is solid but could be improved with better header implementation and transparency on security policies. The site is professional, well-branded, and trustworthy, with clear contact details and social media presence. No blocking or WAF interference was detected, allowing full content access and analysis.

EscrowDomains.com is a specialized online escrow service focused on secure domain name transactions, backed by the intellectual property law firm Greenberg & Lieberman LLC. The company leverages over 30 years of legal expertise to provide attorney-backed escrow services including domain purchases, rentals, and lease-to-buy arrangements. Their market position is strong within the niche of domain escrow, supported by a track record of over 40,000 successful transactions and billions in escrowed value. The website targets domain buyers, sellers, and businesses seeking secure and legally compliant domain transactions. Technically, the website employs a modern technology stack including React, Bootstrap, jQuery, and Font Awesome, hosted on Amazon AWS infrastructure. It is well-optimized for mobile devices and SEO, with good performance and accessibility features. Analytics and marketing tools such as Google Analytics and Google Tag Manager are used for user tracking and remarketing, though privacy compliance could be improved with a cookie consent mechanism. From a security perspective, the site uses HTTPS with a secure domain status and attorney oversight for transactions, enhancing trust and security. However, DNSSEC is not enabled, and no explicit security headers or incident response information are publicly available. The domain WHOIS data is consistent with the business claims, showing a long-established domain registered since 2002, reinforcing legitimacy. Overall, EscrowDomains.com presents a professional, trustworthy, and legally sound platform for domain escrow services. Strategic improvements in security headers, DNSSEC, and privacy compliance would further strengthen their security posture and user trust.

E

ESTYLINIQUE

estylinique.com

53

ESTYLINIQUE is a newly established French-language e-commerce retailer specializing in high-quality stainless steel jewelry, targeting customers in Morocco. The business model focuses on online sales with fast delivery (24-48 hours) and payment on delivery, positioning itself as a convenient and trendy jewelry provider in the local market. The website demonstrates consistent branding and a clear product focus, supported by active social media channels on Facebook, Instagram, and TikTok. Technically, the website is built on the YouCan.shop platform, leveraging modern JavaScript libraries and responsive design techniques to ensure good mobile optimization and user experience. Performance is moderate, with standard SEO and accessibility features implemented. However, the site lacks advanced security headers and cookie consent mechanisms, which are important for compliance and user trust. From a security perspective, the site uses HTTPS with a valid SSL configuration and includes CSRF tokens for form security. The domain is newly registered in 2024, consistent with the business launch, and has a clientTransferProhibited status to prevent unauthorized transfers. However, DNSSEC is not enabled, and no explicit security or incident response policies are published, indicating room for improvement in security posture. Overall, ESTYLINIQUE presents a professional and trustworthy online retail presence with good business credibility but requires enhancements in privacy compliance and security best practices to strengthen user trust and regulatory adherence.

F

FCPO

fcpo.ma

42

FCPO is a Moroccan digital agency based in Oujda specializing in web development, mobile applications, SEO, e-commerce, and digital marketing services. The agency positions itself as a creative and expert partner for businesses seeking to enhance their online presence and digital strategy. It serves a diverse clientele nationally and internationally, leveraging a multidisciplinary team to deliver approximately 150 digital projects annually. Technically, the website is built on WordPress, utilizing modern web technologies such as Bootstrap, Font Awesome, Google Fonts, and popular marketing analytics tools like Google Analytics and Facebook Pixel. The site is mobile-optimized with good navigation and professional design, although some accessibility features are basic. From a security perspective, the site uses HTTPS but lacks explicit security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy, although the website content and activity suggest operational status. Overall, FCPO demonstrates a solid digital presence and business credibility but should address privacy compliance and security best practices to enhance trust and reduce risk.

A

Andele Mandele

andelemandele.lv

64

Andele Mandele is a Latvian e-commerce marketplace specializing in a wide range of retail products, including clothing for women, men, and children, as well as home goods and transport-related items. The platform serves as a popular local portal with a large catalog exceeding 300,000 items, targeting Latvian-speaking consumers. The website employs modern web technologies such as Vue.js, Bootstrap, and integrates Google services like reCAPTCHA and Tag Manager to enhance user experience and security. While the site is well-structured and mobile-optimized, it lacks explicit privacy policy and terms of service pages, which are critical for compliance and user trust. Security posture is generally good with HTTPS and bot protection in place, but could be improved with clearer security policies and incident response information. Overall, the site presents a professional and trustworthy retail platform with room for enhanced privacy and security transparency.

K

KOLS Travel

kolstravel.lv

34

KOLS Travel is a small independent B2B tour operator based in Riga, Latvia, specializing in tailor-made group and FIT travel itineraries across Riga, the Baltic region, Scandinavia, and globally. The company offers a broad range of travel services including flights, hotels, visa assistance, excursions, SPA holidays, exclusive tours, transportation, and MICE services such as meet and greet, transfers, team building, and conference arrangements. The website is built on WordPress and uses standard web technologies like jQuery and Google Fonts. While the site provides basic information and social media links, it lacks critical privacy, cookie, and terms of service policies, as well as explicit contact details. No security headers or HTTPS enforcement were detected, indicating a need for improved security posture.

The website taize.cloudfly.lv represents a small-scale spiritual travel organizer focused on trips to the Taizé community in France. It offers a structured summer trip including visits to multiple European cities, accommodation, meals, and spiritual activities. The site is built on WordPress using the Divi theme, indicating a standard but effective technical infrastructure suitable for small organizations. The website is accessible, mobile-optimized, and provides clear contact phone numbers and physical address, enhancing business credibility. However, it lacks privacy and cookie policies, security headers, and incident response information, which are critical for compliance and security posture. Overall, the site is safe and professional but requires improvements in privacy compliance and security best practices.

I

Independent Trustee Company Limited

itcgroup.ie

64

Independent Trustee Company Limited is a well-established Irish-owned pension trustee company founded in 1994, specializing in self-administered pensions and related financial products. The company positions itself as a leading provider in Ireland, offering flexible, transparent pension solutions tailored to individual client needs. Their services include Approved Retirement Funds, Buy Out Bonds, Personal Retirement Savings Accounts, Pension Property investments, and trustee services through their subsidiary ITL. The website reflects a professional and trustworthy business with regulatory oversight by the Central Bank of Ireland. Technically, the website is built on modern frameworks such as Next.js and React, utilizing Storyblok CMS, and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security best practices are observed, including HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly listed. The security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR consent mechanisms. However, WHOIS data is unavailable, likely due to privacy protection, which slightly reduces domain trustworthiness but is justified given the business nature. Overall, the website and business demonstrate a high level of professionalism, security, and compliance, suitable for their target audience of pension investors and financial advisors in Ireland.

R

Reclaim.ai, Inc.

reclaim.ai

80

Reclaim.ai, Inc. operates reclaim.ai, a technology company specializing in AI-powered calendar productivity solutions. Their platform integrates with Google Calendar and Outlook Calendar to help teams and professionals optimize their schedules by auto-scheduling tasks, habits, meetings, and breaks. Positioned as a SaaS provider, Reclaim targets teams seeking to improve time management and work-life balance through intelligent automation. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content supporting their business model. Technically, the website is built on Webflow CMS and leverages modern web technologies including Google Tag Manager, HubSpot, Intellimize, and Osano for cookie consent management. Hosting and DNS are managed via Cloudflare, ensuring fast performance and security. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. From a security perspective, the site enforces HTTPS and employs clientTransferProhibited domain status to prevent unauthorized domain transfers. Cookie consent mechanisms comply with GDPR, and privacy policies are comprehensive. However, DNSSEC is not enabled, and explicit security headers like X-Frame-Options are not visibly configured, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, reclaim.ai demonstrates a strong security posture and privacy compliance aligned with industry standards. The domain registration details corroborate the legitimacy of the business. The site’s content is safe for general audiences, with no adult or questionable material. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security headers to further strengthen trust and compliance.

E

Elektryk

wawaelektryk.pl

44

The website www.wawaelektryk.pl represents a small local electrical services business operating in Warsaw and surrounding areas in Poland. The company offers a range of electrical services including installation, modernization, fault repair, and mounting of electrical components. The site is professionally designed using WordPress with a modern theme and block editor, providing a good user experience and clear navigation. Contact information including phone number and physical address is prominently displayed, enhancing business credibility. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Technically, the site uses HTTPS and Google Tag Manager for analytics, but lacks advanced security headers and incident response information. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for small businesses. Overall, the site is secure, professional, and trustworthy with room for improvement in privacy compliance and security best practices.

3

3PIĘTRO

3pietro.eu

42

3PIĘTRO is a small real estate agency based in Poland, specializing in property sales, rental management, and home staging services primarily in Sosnowiec and nearby cities. The website presents a professional and content-rich platform with detailed property listings and team member contacts, supported by active social media channels. Technically, the site uses a custom real estate CMS with common web technologies such as jQuery, Bootstrap, and Google Fonts, delivering a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks important security headers and explicit privacy or cookie policies, which are compliance gaps. WHOIS data is unavailable due to registry privacy, limiting domain trust assessment, but the website content and structure indicate a legitimate local business. Overall, the site scores moderately well in content quality and business credibility but should improve privacy compliance and security best practices.

S

SPÓŁKA HANDLU TOWARAMI ŻELAZNYMI KRZYSZTOF BRUN I SYN” SPÓŁKA JAWNA

przestrzeniebruna.pl

40

Przestrzenie Bruna is a small hospitality and real estate business based in Warsaw, Poland, specializing in event space rental and comprehensive event management services including weddings, corporate events, and private parties. The company operates from a unique historic loft-style venue located in the Praga district, offering a blend of vintage charm and modern amenities. The website is professionally designed, well-branded, and provides clear information about services and contact details, targeting individuals and businesses seeking event venues in Warsaw. Technically, the website is built on WordPress with modern plugins such as WPBakery Page Builder and Rank Math SEO, hosted by cyber_Folks S.A. It features good mobile optimization and SEO practices, though performance is moderate. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks some advanced security headers and DNSSEC is not enabled. Analytics are implemented via Google Analytics with moderate user tracking. The security posture is solid for a small business, with no critical vulnerabilities detected. Privacy compliance is strong with comprehensive privacy and cookie policies and active consent mechanisms. However, the absence of terms of service and incident response information is noted. The domain registration data aligns well with the business profile, indicating legitimacy. Overall, Przestrzenie Bruna presents a trustworthy and professional online presence suitable for its market niche. Strategic improvements in security headers and transparency around incident response could further enhance trust and compliance.

D

DUE Consulting

dueconsulting.pl

53

DUE Consulting is a Polish consulting firm specializing in helping businesses secure financing through grants, loans, and tax reliefs, primarily targeting industrial and modern service sectors. Founded in 2023, the company positions itself as a strategic partner for business growth, offering comprehensive services from funding acquisition to project settlement and promotion. The website reflects a professional and modern digital presence, leveraging advanced analytics and consent management tools to ensure privacy compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site is trustworthy, well-branded, and user-friendly, supporting the company's market positioning as a reliable financial consulting partner.