Security Directory

F

Forestry Service Group

forestryservicegroup.com

0

Forestry Service Group is a small, specialized service provider in the agroforestry sector, established since 1990 and based in the Netherlands. The company offers professional agroforestry services and participates in EU projects, targeting professionals and organizations interested in sustainable forestry management. The website presents basic content focused on company introduction and navigation, with limited detailed business or contact information. Technically, the site uses HTTPS, Cloudflare DNS, and standard JavaScript libraries but lacks advanced security headers and DNSSEC. The site is moderately optimized for performance and mobile use but has room for improvement in accessibility and SEO. Security posture is adequate but could be enhanced by implementing security headers and privacy policies. Overall, the website is functional but basic, with limited privacy compliance and no visible contact or incident response information, which may impact user trust and regulatory compliance.

S

Samlerhuset Group B.V.

samlerhuset.com

0

Samlerhuset Group B.V. is a well-established European retail company specializing in coins, medals, and collectables, operating through subsidiaries in 14 European countries. Founded in 1994, the company has a strong market presence and targets collectors and enthusiasts across Europe. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with modern plugins and frameworks, hosted on AWS infrastructure, and optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is good with visible policies and consent banners. Overall, the domain registration data supports the legitimacy and long-term operation of the business.

The website brandtcorstius.eu is a personal/family heritage site focused on the Brandt Corstius family, presenting genealogical and historical information including images of family members, seals, and documents. It also references energy advising and educational roles, indicating some professional activities related to energy consultancy and education. The site is small-scale, non-commercial, and targets family members, genealogists, and historians interested in family heritage. Technically, the site is built using One.com Web Editor CMS and hosted by Hostnet bv. It uses standard HTML, CSS, and JavaScript with Google Fonts integration. The site is served over HTTPS with basic security headers but lacks advanced security configurations. Mobile optimization and accessibility are basic, with a fixed viewport width limiting responsiveness. From a security perspective, the site has no visible vulnerabilities or exposed sensitive data but lacks privacy, cookie, and security policies. There are no forms or data collection mechanisms, reducing risk but also limiting user engagement. No incident response or vulnerability disclosure information is provided, which is a gap for security maturity. Overall, the site is low risk but also low in privacy compliance and business credibility indicators. Strategic improvements in privacy policy implementation, security headers, and mobile responsiveness would enhance trust and compliance.

M

MN

werkenbijmn.nl

0

Werken bij MN is the official career website for MN, a large Dutch financial services company specializing in pension and asset management. The website targets job seekers interested in employment opportunities at MN, serving as a recruitment and employer branding platform. The site uses modern web technologies including Google Tag Manager, reCAPTCHA, and Bootstrap, indicating a moderate level of digital maturity. The presence of cookie consent mechanisms shows some attention to privacy compliance, although no explicit privacy policy or terms of service pages were detected in the provided content. Security posture is adequate with HTTPS usage and bot protection, but lacks visible security headers and incident response information. Overall, the website is professional and functional but could improve in privacy transparency and security best practices.

K

Kindergarden Nederland BV

kindergarden.nl

0

Kindergarden Nederland BV operates a professional childcare service in the Netherlands, offering kinderdagverblijf (daycare) and buitenschoolse opvang (after-school care) with a strong emphasis on personalized care, healthy nutrition, and child development. The company maintains a strong market position with multiple locations and a consistent brand presence. The website reflects a mature digital infrastructure with modern technologies such as Google Tag Manager, OneTrust for consent management, and Ahrefs analytics, hosted likely on Microsoft Azure. Security posture is robust with HTTPS enforced and privacy compliance well addressed through visible privacy and cookie policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and accessible online presence.

A

Acta Marine

actamarine.com

0

Acta Marine is a specialized marine services company focusing on providing Walk-to-Work vessels and hospitality solutions for offshore renewable energy projects. Established since 2015, the company positions itself as a leader in the offshore wind sector, offering construction support and operations & maintenance services. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting project developers and contractors in the energy transition market. Technically, the site runs on WordPress with modern plugins and integrates Google Tag Manager and reCAPTCHA for analytics and security. Security posture is good with HTTPS and consent mechanisms, though some security headers are not explicitly detected. The WHOIS data is missing or indicates the domain is unregistered or privacy protected, which raises concerns about domain legitimacy despite the professional web presence. Privacy and cookie policies are comprehensive and GDPR compliant. Contact information is clearly provided, including a physical address in the Netherlands and verified company email and phone number. Social media presence is active on major platforms. Overall, the site demonstrates a mature digital presence but domain registration inconsistencies warrant further verification.

N

Novamedia B.V.

novamedia.com

0

Postcode Lottery Group is a large non-profit organization operating charity lotteries across multiple European countries, raising significant funds for social causes. The website reflects a mature digital presence with modern technologies such as Next.js and Storyblok CMS, and integrates multimedia content and analytics tools effectively. Security posture is strong with HTTPS and responsible disclosure mechanisms, though some security headers could be improved. The absence of WHOIS data is a notable anomaly but does not detract from the overall professionalism and trustworthiness of the site. Strategic recommendations include enhancing security headers, publishing a security.txt file, and clarifying data protection officer contact details to further strengthen compliance and trust.

M

Macaw

macaw.nl

0

Macaw is a well-established full-service digital partner specializing in AI and digital transformation with a strong market presence in the Netherlands and regional offices in Germany and Lithuania. The company offers a broad portfolio of services including AI, data analytics, employee experience, business applications, digital marketing, cloud services, and security compliancy. Their client base includes major enterprises such as Heineken and VGZ, underscoring their market credibility and expertise. Technically, the website is built on WordPress with modern frameworks and integrations such as Algolia search, HubSpot forms, and Microsoft Dynamics 365 marketing, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and coordinated vulnerability disclosure, though improvements can be made in cookie consent and explicit security policies. Overall, the website is professional, well-optimized for SEO, and provides comprehensive business and service information, supporting a high trust level.

D

Dopharma

dopharma.com

0

Dopharma is a well-established company dedicated to the livestock healthcare sector, providing veterinary pharmaceuticals, autogenous vaccines, diagnostics, and comprehensive service and support. The company positions itself as a contributor to healthy livestock and sustainable farming practices, targeting livestock farmers and veterinary professionals globally. The website reflects a mature digital presence with multilingual support and detailed product and service information. Technically, the site is built on WordPress with WooCommerce and uses modern libraries and plugins, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data for the domain is a notable gap, impacting trust verification. Overall, the site is professional and trustworthy, with room for enhanced transparency in security and incident response.

T

Travix

travix.com

0

Travix is a global online travel agency headquartered in Amsterdam, Netherlands, operating multiple brands across 17 countries with a focus on flight bookings and related travel products. The company is part of the Trip.com Group, enhancing its global capabilities. The website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and various plugins for enhanced user experience. The site is well-designed, mobile-optimized, and provides a professional user experience. Security posture is good with HTTPS enabled, but lacks visible security headers and explicit privacy or cookie policies. WHOIS data is missing, which raises concerns about domain registration transparency. Overall, the site is credible but would benefit from improved privacy compliance and security disclosures.

Metalface operates as a specialized online networking platform dedicated to the metal recycling industry, facilitating connections among over 20,000 companies. It offers verified company profiles, private networking capabilities, real-time market news, price tracking, and private messaging, positioning itself as a niche leader in this sector. The platform is free to use and targets metal recycling professionals and companies primarily in the Netherlands and Europe. The business has a long-standing presence since 2004, supported by consistent domain registration data and a professional web presence. Technically, Metalface employs a modern React and Redux-based tech stack, integrating third-party services such as Google Analytics, OneSignal for push notifications, and Google Maps API for location services. The site uses Bootstrap for responsive design and slick carousel for UI components, indicating a mature and well-maintained infrastructure. Hosting and domain registration are managed via Amazon Registrar and AWS DNS, ensuring reliable uptime and scalability. From a security perspective, the website enforces HTTPS and domain registration protections like clientDeleteProhibited status. However, DNSSEC is not enabled, and no advanced security headers were detected, which could be improved. The absence of a cookie consent mechanism and explicit GDPR compliance indicators suggests partial privacy compliance. No incident response or security policy information is publicly available, which could be a gap in transparency. Overall, Metalface presents a credible and professional platform with good technical implementation and business credibility. To enhance trust and compliance, it should address privacy consent, enable DNSSEC, and publish security policies. These improvements would strengthen its security posture and regulatory alignment, supporting its continued growth and market leadership.

S

Seacontractors

seacontractors.com

0

Seacontractors is a globally active maritime service provider specializing in anchor handling tugs and multi-purpose vessels with a focus on shallow draft operations. They serve key industries such as oil & gas, renewables, salvage, and maritime infrastructure, positioning themselves as a leading operator worldwide. The website demonstrates a professional digital presence with detailed vessel information, active social media links, and 24/7 contact availability. Technically, the site uses modern frameworks like Bootstrap and jQuery, integrates Google Analytics and Tag Manager for tracking, and employs Google reCAPTCHA v3 for form security. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS usage and form protections but lacks visible security headers and explicit privacy/cookie policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

B

Business School Netherlands

bsn.eu

0

Business School Netherlands is a well-established international educational institution specializing in Action Learning MBA programmes and leadership development courses. The school operates globally with multiple subsidiaries and offers a range of accredited programmes including blended and online MBAs, short courses, masterclasses, and executive education. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to professionals seeking advanced business education. Technically, the site is built on WordPress with modern analytics and marketing tools integrated, ensuring good performance and user experience. Security posture is solid with HTTPS enforced and consent management implemented, though some security headers could be improved. WHOIS data is unavailable due to EURid privacy policies but the website's content and accreditations support its legitimacy. Overall, the site scores highly on content quality, technical implementation, security, privacy compliance, and business credibility.

V

valantic

ism.nl

0

valantic is a large digital consultancy and technology services company specializing in customer experience and e-commerce solutions across multiple European countries including the Netherlands, Germany, Switzerland, and Austria. The website demonstrates a mature digital presence with professional design, multi-language support, and a comprehensive service offering focused on digital transformation and online marketing. The technical infrastructure is based on WordPress with modern tools such as Google Tag Manager and cookie consent mechanisms, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy and should be further investigated. Overall, the website is trustworthy and professional but would benefit from enhanced transparency in domain registration and security policies.

V

Vroon Offshore Services

vroonoffshore.com

0

Vroon Offshore Services is a well-established maritime offshore-services supplier headquartered in the Netherlands with operational presence in Aberdeen, UK. The company specializes in offshore-support vessels and offers a broad range of services including emergency response, subsea support, and cargo handling for the energy sector, particularly oil, gas, and renewables. Their market position is strong, especially in the UK continental shelf ERRV segment, supported by a professional and content-rich website. Technically, the website is built on modern frameworks and CMS (Craft CMS), employs Google Tag Manager and Cookiebot for analytics and cookie management, and demonstrates good mobile optimization and accessibility. Security posture is robust with HTTPS, security headers, and secure cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the website reflects a mature digital presence with good privacy compliance and business credibility. There are no detected blocking mechanisms or WAF challenges, allowing full content access and analysis. Recommendations include publishing terms of service, security policies, and incident response contacts to enhance transparency and trust.

S

Scriptum

scriptum.nl

0

Scriptum is a Dutch publishing company specializing in books across various categories including psychology, health, management, language, and culture. The website serves as both an informational platform and an e-commerce store, targeting Dutch-speaking readers interested in educational and cultural literature. The company maintains a consistent brand presence with active social media channels and clear contact information, positioning itself as a niche player in the Dutch book retail market. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, leveraging modern frameworks such as Bootstrap and jQuery. SEO is enhanced through the Yoast SEO plugin, and analytics are implemented via Google Analytics and Google Tag Manager. The site is mobile-optimized and performs moderately well, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses Wordfence security scripts, indicating a proactive approach to security. However, the absence of security headers and a cookie consent mechanism suggests room for improvement in compliance and defense-in-depth strategies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a solid business and technical foundation with good trust indicators. Strategic enhancements in privacy compliance and security policies would further strengthen its posture and user trust.

MOONZ! is a small technology company specializing in web and mobile application development, operating since 2008 in the Netherlands. The website currently displays an under construction page with minimal content, providing only basic contact information. The business model focuses on software development services targeting clients needing web and mobile apps. The market position appears to be local and small scale with no visible certifications or trust signals on the site. Technically, the website uses minimal technologies, including Font Awesome for icons, and is hosted by team.blue nl B.V. The site lacks modern frameworks, CMS, or analytics tools and shows basic mobile optimization and accessibility. Performance is moderate but limited by the minimal content and lack of SEO optimization. From a security perspective, the domain is well-registered with DNSSEC enabled and a long registration history, indicating legitimacy. However, the website lacks visible security headers, privacy and cookie policies, and incident response information. No forms or user input fields are present, reducing immediate attack surface but also limiting user engagement. The SSL configuration is assumed good but not explicitly confirmed in the content. Overall, the website presents a low-risk profile due to minimal exposure but suffers from poor content quality, lack of compliance documentation, and limited security best practices. Strategic improvements in privacy compliance, security headers, and content development are recommended to enhance trust and professionalism.

V

Van Merksteijn Steel Group B.V.

van-merksteijn.com

0

Van Merksteijn Steel Group B.V. is a well-established family-owned manufacturing company specializing in steel reinforcement products and fencing panels, serving clients primarily in Europe. The company positions itself as a market leader with a focus on quality, sustainability, and service excellence. Their website reflects a professional digital presence with multilingual support and multimedia content to engage their target audience of business partners and customers in the construction and manufacturing sectors. Technically, the website is built on WordPress with modern plugins and tools such as Gravity Forms, Google Tag Manager, and CookieYes for consent management, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and consent mechanisms in place, but lacks some advanced security headers and explicit security policies. The absence of WHOIS registration data is a notable concern for domain legitimacy verification, although the website content and business information appear consistent and trustworthy. Overall, the site demonstrates a solid business and technical foundation with room for improvement in security transparency and domain registration clarity.

S

SeaMar

seamar.nl

0

SeaMar is a Netherlands-based maritime service provider specializing in shipping, agency, vessel management, and guard vessel services primarily for the offshore and shipping industries. The company operates multiple subsidiaries and maintains a portfolio of reputable clients, positioning itself as a reliable regional player. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the site is built on WordPress using the Salient theme, leveraging modern JavaScript libraries and Google analytics tools. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks explicit security headers and published security policies. Privacy compliance is partial with a basic privacy policy and cookie consent mechanism but no detailed cookie policy or GDPR compliance statements. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

AGMI Traffic & Lighting

agmi.nl

0

AGMI Traffic & Lighting is a well-established Dutch company specializing in traffic signage, support structures, and tunnel safety equipment, with a strong focus on sustainability and quality. Founded in 1997, it holds multiple certifications including ISO 9001 and Cradle to Cradle, positioning itself as a leading authority in its sector. The website reflects a professional and consistent brand image targeting municipalities and infrastructure sectors. Technically, the site employs modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the website is trustworthy and credible with no blocking or WAF interference detected.

M

Multisport

multisportbv.nl

0

Multisport is a Dutch sports and fitness service provider with a website primarily targeting Dutch-speaking customers interested in gym and multisport memberships. The company has been established since 2004, indicating a stable presence in the market. The website is built on WordPress, utilizing common plugins such as Yoast SEO and WP Rocket for optimization. The technical infrastructure is moderate in performance and mobile optimization, with a hosting provider identified as team.blue nl B.V. Security posture is basic, with no detected security headers or explicit security policies, and no privacy or cookie policies found, which indicates room for improvement in compliance and security best practices. No contact emails or phone numbers were explicitly found in the provided content, limiting direct communication channels. Overall, the website is accessible and functional but lacks comprehensive privacy and security documentation.

R

Rubicon

rubicon.nl

0

Rubicon is a well-established Dutch technology consultancy and managed services provider specializing in Microsoft cloud solutions, digital transformation, and AI implementations. With over 25 years of experience, Rubicon holds multiple Microsoft Solution Partner certifications and serves a diverse clientele including enterprises, government, and non-profit sectors. Their service portfolio covers managed cloud services, hyperautomation, AI, and agile project management, positioning them as a comprehensive cloud advisor in the Netherlands. The website reflects a mature digital presence with professional design, clear navigation, and rich content including case studies and customer testimonials. Technically, the site uses modern web technologies and integrates security features such as HTTPS, CSRF tokens, and Google reCAPTCHA. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Security posture is strong but could be enhanced by adding more HTTP security headers and publishing explicit security policies. Overall, Rubicon demonstrates a high level of business credibility and digital maturity, with a trustworthy online presence.

S

SAMCO Aircraft Maintenance

samco.aero

0

SAMCO Aircraft Maintenance is a professional and leading independent MRO company in the global aviation industry, headquartered at Maastricht Airport, The Netherlands. The company offers a comprehensive range of aircraft maintenance services including base and line maintenance, continuing airworthiness, logistics support, and EASA Part 21 approved design changes. Their target audience includes airlines, lessors, and OEMs, positioning SAMCO as a preferred service provider in the aerospace sector. The website reflects a medium-sized enterprise with a consistent brand and good content quality. Technically, the site is built on WordPress using Elementor, with modern libraries and Google Tag Manager for analytics. The site is mobile optimized and SEO friendly, though accessibility could be improved. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is malformed, limiting domain trust verification, but the professional web presence supports legitimacy. Overall, the site scores well but should address compliance and security policy gaps to enhance trust and regulatory adherence.

M

Metos B.V.

metos.nl

0

Metos B.V. operates a professional B2B e-commerce platform specializing in commercial kitchen equipment and related services in the Netherlands. The company offers custom projects, innovative concepts, and service & maintenance, positioning itself as a one-stop-shop for large kitchen solutions. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party apps to facilitate customer interactions, including a detailed contact form and quote request features. The site demonstrates good digital maturity with responsive design, SEO optimization, and integrated marketing and analytics tools. Security measures include HTTPS enforcement, CAPTCHA on forms, and cookie consent management via Cookiebot, although explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and well-structured, supporting the company's enterprise-level operations.

Q

Qilo

nmanet.nl

0

Qilo is a Dutch financial and business information website offering services such as bank account and credit card comparisons, business banking advice, and a knowledge base for consumers and entrepreneurs. The site targets Dutch users seeking financial product guidance and business insights. Technically, the website is built on WordPress, hosted by Closte, and uses modern web technologies including jQuery and standard SEO practices with structured data. The site is mobile-optimized and performs moderately well. Security-wise, the site enforces HTTPS and includes important security headers, but lacks visible privacy and cookie policies, as well as incident response information. Overall, the site is professional and trustworthy but could improve privacy compliance and transparency.

The website muziekvoorstelling.nl is currently a parked domain hosted by VDX Internet Services B.V., a Dutch domain registrar and hosting provider. The site offers minimal content primarily advertising domain registration and hosting services by VDX. The business model focuses on domain parking and related web services targeting individuals and businesses in the Netherlands. The domain is well-established, created in 2007, and registered through a reputable registrar, indicating legitimacy. Technically, the site uses basic HTML and CSS with Google Analytics and Google Tag Manager for tracking. There is no detected CMS or advanced frameworks. The site performance is moderate with basic mobile optimization and accessibility. SEO optimization is poor due to minimal content and lack of meta descriptions or keywords. Hosting is provided by VDX, consistent with the domain parking service. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, which are recommended for improved security posture. No privacy or cookie policies are present, indicating poor privacy compliance. Contact information is available but limited to VDX support channels. No incident response or vulnerability disclosure information is provided. Overall, the website is low risk but offers limited business or security value in its current parked state. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and improving content quality to enhance trust and compliance.

F

Fugro

fugro.com

0

Fugro is a globally recognized leader in geo-data solutions, specializing in providing critical data and insights to support sustainable development and enhance safety across various industries. Founded in 1962 and headquartered in the Netherlands, the company offers advanced geo-data services that empower clients to make informed decisions for infrastructure, energy, and environmental projects. The website reflects a mature enterprise with a clear focus on technology and sustainability, targeting businesses and organizations requiring specialized geo-data expertise. The technical infrastructure of the website is modern and robust, leveraging Next.js for server-side rendering, Amazon Cloudfront for content delivery, and advanced analytics tools such as Visual Website Optimizer and Google Tag Manager. The site is well-optimized for performance, mobile responsiveness, and accessibility, indicating a high level of digital maturity. The use of structured data (JSON-LD) enhances SEO and content discoverability. From a security perspective, the website employs HTTPS with strong SSL configurations and implements security best practices such as Content Security Policy nonces and cookie consent mechanisms. However, there is a lack of publicly available security policies, incident response information, and vulnerability disclosure programs, which are important for transparency and trust in enterprise environments. The absence of WHOIS data for the domain is a notable gap that slightly reduces the overall trust score. Overall, Fugro's website presents a professional and trustworthy digital presence aligned with its market position as a leader in geo-data solutions. Strategic improvements in privacy transparency, security policy publication, and domain registration visibility would further enhance trust and compliance posture.

R

Rockwool A/S

rockwool.nl

0

ROCKWOOL Group is a globally recognized leader in manufacturing stone wool insulation products, serving the construction and building sectors with thermal, fire-safe, acoustic, and sustainable insulation solutions. The company targets professionals in construction, architecture, and building maintenance, emphasizing energy efficiency and sustainability. The website reflects a mature digital presence with comprehensive content, structured data, and a consistent brand image. Technically, the site employs modern JavaScript frameworks, integrates marketing and analytics tools such as Marketo, Google Tag Manager, and Cookiebot, and provides a robust cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers are not detected in the provided data. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and extensive business information. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving transparency around incident response. Overall, ROCKWOOL's website demonstrates strong business credibility, technical maturity, and privacy compliance, positioning it well in its industry.

R

Royal Boskalis Westminster NV

boskalis.com

0

Royal Boskalis Westminster NV is a leading global services provider specializing in dredging, maritime infrastructure, and maritime services. The company targets global maritime and coastal infrastructure markets, offering innovative solutions to complex infrastructural challenges. The website reflects a mature enterprise with consistent branding and a clear business focus in the energy and transportation sectors. Technically, the website employs modern technologies including Matomo analytics for privacy-conscious tracking and Cookiebot for consent management, hosted on Azure DNS infrastructure. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced, CSRF protection in forms, and bot mitigation via Google reCAPTCHA, though some security headers are not explicitly detected. Privacy compliance is well addressed with a comprehensive cookie policy and consent mechanism, but explicit privacy and security policies are limited. No vulnerability disclosure or incident response contacts are found. The domain WHOIS data is consistent, public, and aligns with the company's history, supporting legitimacy. Overall, the website is professional, secure, and compliant with minor areas for improvement.

T

tripadvisor.nl

tripadvisor.nl

0

The website tripadvisor.nl is a localized domain for Tripadvisor, a globally recognized travel and hospitality platform offering user-generated reviews and booking services. The domain is mature, registered since 2004, consistent with the company's history. However, the provided HTML content is blocked by a security mechanism involving a CAPTCHA challenge, preventing access to actual site content and limiting analysis. The technical infrastructure shows use of JavaScript and bot mitigation services but lacks visible metadata, structured data, or contact information in the accessible content. Security posture cannot be fully assessed due to blocked content, but WHOIS data indicates a legitimate and consistent registration. Overall, the site appears to be a major enterprise-level travel service, but the current content access is restricted by security controls.

K

Kansspelautoriteit

koaportaal.nl

0

The Kansspelautoriteit portal is an official Dutch government website serving as a login gateway for regulated gambling activities. It is operated by the Rijksoverheid and provides access to services related to gambling regulation and compliance. The website is primarily targeted at Dutch citizens and businesses involved in gambling, offering key services such as licensing, supervision, and public information. The domain is relatively new, created in 2021, consistent with the establishment of the portal. Technically, the site is built on ASP.NET Web Forms with jQuery 3.4.1, indicating a somewhat dated technology stack. The site is accessible, uses HTTPS with DNSSEC enabled, but lacks modern security headers and uses an outdated JavaScript library version. Mobile optimization and accessibility are basic, and no advanced SEO or analytics tools are detected. From a security perspective, the portal enforces HTTPS and DNSSEC, which are strong indicators of secure communication. However, the absence of security headers like Content Security Policy and the use of an outdated jQuery version present potential vulnerabilities. There is no visible privacy or cookie policy, nor incident response contact information, which are gaps in compliance and security transparency. Overall, the site is legitimate and trustworthy as a government portal but would benefit from enhanced security practices, updated technology, and improved privacy compliance to better protect users and meet regulatory standards.

K

Kansspelautoriteit

kansspelautoriteit.nl

0

The Kansspelautoriteit website serves as the official online presence of the Dutch government’s gambling regulatory authority. It provides comprehensive information on gambling safety, licensing, enforcement, and public guidance. The site targets Dutch citizens and businesses involved in gambling, offering key services such as licensing applications, monitoring illegal gambling, and providing resources for safe gambling practices. The organization is well-established, with a domain registered since 2007 under the Rijksoverheid registrar, confirming its legitimacy and government affiliation. Technically, the website is built on the IPROX.NET 4 CMS platform, leveraging modern web technologies including JavaScript, CSS, and HTML5. It integrates Google Analytics 4 and Piwik PRO for analytics and tag management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. From a security perspective, the site enforces HTTPS with DNSSEC enabled, uses secure forms with CSRF protection, and implements cookie consent mechanisms. However, it lacks explicit security policy documentation and incident response contact channels. No critical vulnerabilities or exposed sensitive data were detected. Overall, the security posture is strong but could be enhanced with additional security headers and published policies. The overall risk assessment is low, with the site demonstrating high trustworthiness, professional content, and compliance with privacy regulations such as GDPR. Strategic recommendations include publishing a dedicated security policy, enhancing incident response transparency, and adding security headers to further harden the site against potential threats.

A

Azerion

gamedistribution.com

0

GameDistribution, operated by Azerion, is a well-established B2B platform specializing in the distribution of HTML5 and WebGL games to digital publishers. Founded in 2004, the company offers a wide range of high-quality games for free, targeting digital publishers and web developers who seek engaging content to enhance their platforms. The website demonstrates a strong market position with exclusive game collections and a developer panel, supported by a consistent and professional brand presence. Technically, the site leverages modern frameworks such as React and Next.js, ensuring fast performance, mobile optimization, and good SEO practices. The use of Google Tag Manager and cookie consent scripts indicates attention to analytics and privacy compliance. Security-wise, the site enforces HTTPS and has domain transfer protections, but could improve by enabling DNSSEC and publishing explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, though it lacks explicit contact emails or phone numbers on the main page. Strategic recommendations include enhancing security headers, publishing incident response contacts, and expanding transparency around data protection.

N

Najram

najram.nl

0

Najram is a small web and graphic design company based in the Netherlands, established in 2004. The website showcases their services in web design and graphic design, targeting businesses and individuals seeking such creative services. The company uses a WordPress platform with the Divi theme, leveraging common web technologies such as jQuery, Google Fonts, and FontAwesome icons. The website is moderately optimized for mobile devices and has a professional design, though content depth and business information are limited. Security-wise, the site employs HTTPS and DNSSEC, indicating a good baseline security posture, but lacks advanced security headers and formal policies such as privacy or cookie policies. No contact emails, phone numbers, or social media links are explicitly provided, which limits direct communication and trust signals. Overall, the site is functional and moderately secure but would benefit from enhanced privacy compliance and clearer business contact information.

H

Hy-Lok Europe B.V.

hy-lok.eu

0

Hy-Lok Europe B.V. is a medium-sized manufacturing company specializing in instrumentation valves, fittings, and components, serving industrial sectors such as energy, transportation, and manufacturing. The company operates a professional and well-structured website built on WordPress, featuring modern technologies and SEO optimizations. The digital infrastructure supports good performance and mobile responsiveness, with active social media integration. Security posture is strong with HTTPS enforcement and security headers, though privacy compliance could be improved by adding cookie consent and detailed GDPR policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy online presence.

U

Ugly Mugs NL

uglymugs.nl

0

Ugly Mugs NL operates as a non-profit platform dedicated to enhancing the safety of sex workers in the Netherlands by providing tools to report aggressive clients, check warnings, and access safety advice. The website is well-structured, professionally designed, and uses Drupal CMS with integrated Matomo analytics for user tracking. The platform demonstrates a strong commitment to privacy and security, employing HTTPS and relevant security headers, although explicit security policies and incident response contacts are not publicly available. Overall, the site is trustworthy and serves a niche community with relevant, well-maintained content.

S

Soa Aids Nederland

sekswerk.info

0

Sekswerk.info is a well-established non-profit informational website operated by Soa Aids Nederland, dedicated to improving the position and health of sex workers in the Netherlands. The site provides comprehensive resources on safe sex work, free STI testing, hepatitis B vaccination, workplace advice, and legal rights. It also offers a complaint and advice point to support users with organizational issues. The website is professionally designed with clear navigation and is mobile optimized, targeting sex workers and related stakeholders in the Dutch healthcare and social support sectors. Technically, the site runs on Drupal 10, uses Matomo for analytics with privacy considerations, and integrates accessibility features such as ReadSpeaker. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy and cookie policies are present and GDPR compliant, though explicit security policies and incident response contacts are not found. WHOIS data is privacy protected, consistent with the non-profit nature of the site. Overall, Sekswerk.info demonstrates a mature digital presence with a focus on trust, user safety, and compliance.