Security Directory

R

Relay42

relay42.com

0

Relay42 is a European-built real-time Customer Data Platform (CDP) provider focused on enabling marketers to unify customer data and personalize customer journeys across multiple channels. The company targets medium-sized to enterprise clients in sectors such as retail, telecommunications, energy, finance, and hospitality. Their platform offers key services including unified customer profiles, audience segmentation, predictive AI, journey orchestration, and compliance with data privacy regulations. Technically, the website is built on HubSpot CMS, uses Cloudflare for hosting and CDN, and integrates modern marketing and analytics tools like Google Analytics 4 and HubSpot tracking. The site is professionally designed with excellent content quality and navigation, optimized for mobile devices. However, a critical security issue is the lack of a valid SSL/TLS certificate, which undermines the security posture despite the presence of some security headers and compliance policies. Overall, the website demonstrates strong business credibility and privacy compliance but requires urgent improvements in SSL configuration to ensure secure communications.

W

Wijzer in geldzaken

wijzeringeldzaken.nl

0

Wijzer in geldzaken is a Dutch government-backed platform dedicated to providing reliable financial information and education to the public. It targets a broad audience including children, youth, families, workers, and retirees, offering tools, tips, and educational content to improve financial literacy. The platform is supported by the Ministry of Finance and partners from various sectors, establishing it as an authoritative source in the Netherlands for financial guidance. Technically, the website uses standard web technologies with integrations such as Google Tag Manager for analytics. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. Overall, while the content and business credibility are strong, the lack of HTTPS and slow performance are key risks that need urgent remediation.

C

Copernica BV

copernica.nl

0

Copernica BV operates a sophisticated online multichannel marketing automation platform targeting technical teams, marketing professionals, and agencies. Their product suite includes the Marketing Suite platform, MailerQ mail transfer agent, and SMTPeter cloud email system, positioning them as a versatile provider in the marketing technology sector. The company maintains a consistent brand presence with comprehensive product information and a partner program, serving primarily the Netherlands market. Technically, the website employs modern JavaScript libraries such as jQuery, Google Tag Manager, and Google reCAPTCHA, alongside a custom SDK. While the site is mobile-optimized and SEO-friendly, performance is hindered by a slow load time and large page size. The absence of a valid SSL certificate critically impacts the security posture, despite no detected vulnerabilities in protocols or libraries. Security-wise, the site lacks key security headers and a valid SSL certificate, which are fundamental for protecting user data and ensuring trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, no explicit security or incident response policies are publicly available, which could be a gap in transparency and readiness. Overall, Copernica BV presents a professional and trustworthy business with strong marketing technology offerings but must urgently address SSL certificate issues and enhance security policies to improve its security posture and user trust.

A

Achmea Reinsurance

achmeareinsurance.com

0

Achmea Reinsurance operates as the reinsurance competence centre within the Achmea Group, primarily serving group companies and selectively offering life reinsurance to third parties. The company is positioned as a key risk carrier and advisor within the finance sector, located in Tilburg, Netherlands. The website reflects a professional business presence with clear descriptions of its roles and services. Technically, the site is built on Sitecore CMS with React framework components, but suffers from slow load times and lacks a valid SSL certificate, which critically impacts security posture. The absence of HTTPS and modern TLS protocols exposes the site to potential risks and undermines user trust. Privacy and cookie policies are present but basic, and no explicit contact emails or phone numbers are published, relying instead on a contact form. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to align with best practices and regulatory compliance.

A

Achmea Real Estate

achmearealestate.nl

0

Achmea Real Estate is a well-established Dutch real estate investment manager with over 60 years of experience managing a large portfolio on behalf of institutional investors. The company focuses on sustainable investments with social impact and financial returns. The website reflects a professional business presence with good content quality and consistent branding. Technically, the site uses modern frameworks such as React and Sitecore CMS, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security flaw. Privacy and cookie policies are present and GDPR compliant, but no explicit contact information or security policies are found. Overall, the security posture is weak due to missing HTTPS and security headers, which poses risks to user trust and data protection. Strategic improvements in SSL deployment and security configurations are recommended to enhance trust and compliance.

A

Achmea Personenschade

achmeapersonenschade.nl

0

Achmea Personenschade is a Dutch insurance-related service specializing in personal injury claims and compensation for insured individuals under Achmea brands such as Interpolis, Centraal Beheer, FBTO, and Avéro Achmea. The website presents a professional and consistent brand image with clear service offerings focused on helping accident victims regain control and receive rightful compensation. Technically, the site uses modern JavaScript libraries and tracking tools but suffers from a critical security flaw due to the absence of a valid SSL certificate, resulting in no HTTPS support and weak security posture. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Overall, the business credibility is high given its affiliation with the reputable Achmea group, but the security shortcomings pose a risk to user trust and data protection.

A

Achmea Pensioenservices

achmeapensioenservices.nl

0

Achmea Pensioenservices is a Dutch pension services provider specializing in pension administration, actuarial, legal advice, and communication services. The company supports pension funds and employers in transitioning to the new Dutch pension system, emphasizing practical and transparent solutions. The website is professionally designed with consistent branding aligned with the Achmea group, targeting pension stakeholders in the Netherlands. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Microsoft Application Insights for analytics. However, the site suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Additionally, no security headers or advanced TLS protocols are configured, and the site performance is slow with a load time exceeding 21 seconds. Privacy and cookie policies are present and appear comprehensive, supporting GDPR compliance. Contact information is available via contact pages but lacks explicit emails or phone numbers in the HTML content. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

A

Achmea

achmeamortgages.nl

0

Achmea Mortgages operates as a specialized financial services provider focusing on mortgage investments within the Dutch market. The company offers investment funds, market insights, and ESG-related reporting, targeting investors and financial professionals interested in mortgage-backed assets. The website reflects a mature business presence with consistent branding and professional content, although direct contact information is not prominently displayed. Technically, the website is built on a modern stack including React and Sitecore CMS, with integrations for consent management and analytics. However, performance is suboptimal with a slow page load time exceeding 12 seconds, which could affect user engagement. Mobile optimization and SEO appear adequate, but accessibility is basic. From a security perspective, the absence of a valid SSL certificate and HTTPS support is a critical vulnerability, severely impacting the site's security posture. Additionally, the lack of security headers and modern TLS protocols further exposes the site to risks. Privacy compliance is strong, with clear cookie and privacy policies and a consent mechanism in place. Overall, while the business credibility and content quality are good, the security deficiencies significantly reduce the trustworthiness and safety of the website. Immediate remediation of SSL and HTTPS issues is recommended to protect users and improve the site's security rating.

A

Achmea Investment Management

achmeainvestmentmanagement.nl

0

Achmea Investment Management is a prominent Dutch asset management firm specializing in fiduciary management and impact investing for institutional and private clients. The company operates under the Achmea brand, one of the largest financial services groups in the Netherlands, and offers portfolio construction, risk management, and asset management solutions. The website reflects a professional presence with clear business focus and relevant content targeted at institutional investors and private individuals. Technically, the website is hosted on Amazon AWS infrastructure and uses standard web technologies such as JavaScript, CSS, and HTML5. However, the site suffers from slow load times and lacks modern performance optimizations. Mobile optimization and accessibility are basic but functional. SEO practices are present but could be improved. From a security perspective, the website has critical shortcomings. It lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts user trust and security posture. No security headers or advanced TLS protocols are enabled, and DNS records show malformed CAA entries and missing domain protection locks. Cookie and privacy policies are present and GDPR compliant, but incident response and vulnerability disclosure mechanisms are absent. Overall, the website is functional and professional but requires urgent security improvements, especially enabling HTTPS and correcting DNS configurations, to enhance trustworthiness and compliance.

A

Achmea

achmeainnovationfund.nl

0

Achmea Innovation Fund is a corporate investment initiative focused on supporting startups and scale-ups with proven product-market fit and innovative business models in strategic sectors such as health, mobility, sustainability, and income security. The fund provides capital, access to Achmea's extensive network, and knowledge sharing to accelerate growth and innovation. The website presents a professional and consistent brand image aligned with Achmea, a major Dutch insurance and financial services group. Technically, the website uses modern front-end technologies including Bootstrap and integrates Google Analytics and Tag Manager for tracking. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a significant security and trust concern. The DNS configuration shows some misconfigurations, particularly in CAA and MX records, which could affect email delivery and certificate issuance. From a security perspective, while some security headers like Content-Security-Policy and Permissions-Policy are implemented, the absence of HTTPS and modern TLS protocols severely weakens the security posture. No incident response or security policy pages were found, though a responsible disclosure page is linked. Privacy and cookie policies are present on the parent Achmea domain, indicating GDPR compliance. Contact information is limited to an email address and physical address, with no phone numbers or social media links provided. Overall, the website is functional and professional but requires urgent improvements in SSL/TLS deployment and DNS configuration to enhance security and trustworthiness. Strategic recommendations include obtaining and maintaining a valid SSL certificate, enabling HTTPS, fixing DNS records, and enhancing security headers and incident response information.

A

Achmea

achmeaglobalneth.nl

0

Achmea GlobalNeth is a service provider specializing in claims and risk management for insurers and risk managers, primarily operating in the Netherlands and internationally. The website presents a professional image with clear service offerings and a strong partner network. Technically, the site uses modern frameworks such as React and Sitecore CMS but suffers from significant security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture. Performance is also a concern due to slow load times. Privacy compliance is well addressed with clear cookie and privacy policies. Overall, the site is credible but requires urgent security improvements to protect user data and enhance trust.

A

Achmea Foundation

achmeafoundation.nl

0

Achmea Foundation is a non-profit organization focused on sustainable social impact in the Netherlands and Sub-Sahara Africa, operating under the parent company Achmea. The foundation delivers impact through funding, volunteering, and community programs. The website is professionally designed and content-rich, targeting stakeholders interested in social projects and collaborations. Technically, the site uses modern frameworks like React and Sitecore CMS, hosted likely on Microsoft Azure infrastructure. However, the website suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. Privacy policies are present and linked to the parent company, indicating good privacy compliance. Overall, the site is trustworthy but requires urgent security improvements to protect users and data.

A

Achmea Bank

achmeabank.nl

0

Achmea Bank is a significant financial institution in the Netherlands, operating as part of the larger Achmea group. It offers a range of financial products including savings, mortgages, and investment services through its brands Centraal Beheer, Acier, and Attens Hypotheken. The website reflects a professional and consistent brand presence targeting Dutch consumers interested in financial products. Technically, the site is built on modern frameworks such as React and managed via Sitecore CMS, hosted likely on Microsoft Azure infrastructure. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts the site's security posture. Security headers are present but insufficient without HTTPS. Privacy policies and cookie policies are well documented and GDPR compliant, but no explicit incident response or vulnerability disclosure mechanisms are publicly available. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and maintain compliance.

D

De christelijke zorgverzekeraar

dechristelijkezorgverzekeraar.nl

0

De christelijke zorgverzekeraar is a Dutch health insurance provider focused on integrating Christian values with healthcare services. It operates as part of the larger Zilveren Kruis group, offering basic and supplementary insurance products tailored to its target audience. The website is professionally designed, well-structured, and provides comprehensive information about insurance options, Christian care, and customer services. Technically, the site uses modern technologies including Sitecore CMS, Vue.js, and Coveo search integration, ensuring a good user experience and SEO optimization. However, the security posture is weakened by the absence of a valid SSL/TLS certificate and disabled TLS protocols, which is a critical issue that must be addressed to protect user data and maintain trust. Privacy policies and cookie statements are present and GDPR compliance is indicated, though no explicit consent mechanism was detected. Overall, the site is credible and trustworthy but requires urgent security improvements.

D

De Friesland

defriesland.nl

0

De Friesland is a well-established Dutch health insurance provider offering a range of insurance products including basic, supplementary, dental, and collective insurances. The company targets consumers, employers, and healthcare providers, positioning itself as a large regional insurer under the Achmea group umbrella. The website provides comprehensive information about insurance products, claims, and customer services, supported by a professional design and clear navigation. Technically, the site uses modern technologies such as Vue.js, jQuery, and Coveo Search integrated with Sitecore CMS, hosted likely on Microsoft Azure. However, the website suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. While email authentication mechanisms like SPF and DMARC are properly configured, the lack of HTTPS exposes users to potential risks. The site includes privacy and cookie policies, and a responsible disclosure page hosted on the parent company’s domain, indicating some security awareness. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to ensure secure user interactions.

I

InShared

inshared.nl

0

InShared is a Dutch insurance company specializing in online insurance products such as auto, home, travel, and personal insurances. The company emphasizes transparency, low premiums, and customer-centric digital services. It operates under the parent company Achmea and has a mature market presence since 2009. The website is professionally designed with excellent content quality and clear navigation, targeting Dutch consumers seeking convenient insurance solutions. Technically, the site uses modern web components and tracking tools but suffers from a critical lack of SSL/TLS security, exposing users to potential risks. Privacy compliance is well addressed with comprehensive cookie consent and privacy policies. However, the absence of a valid HTTPS certificate significantly undermines the security posture. Overall, the business credibility is high, supported by certifications and positive customer testimonials.

A

Avéro Achmea

averoachmea.nl

0

Avéro Achmea is a well-established Dutch insurance provider specializing in offering insurance solutions through independent advisors to entrepreneurs, employers, and self-employed individuals. As a subsidiary of Achmea, it holds a strong market position in the finance sector, providing a broad range of insurance products including damage, income, and agricultural insurances, complemented by prevention services and direct customer support portals. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience in the Netherlands. Technically, the site employs a modern technology stack with extensive use of third-party analytics and marketing tools, though it lacks a valid SSL certificate which is a critical security concern. Security headers and policies are well implemented, but the absence of proper HTTPS undermines the overall security posture. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. Overall, the site is functional and credible but requires urgent remediation of SSL issues to improve security and user confidence.

F

FBTO

fbto.nl

0

FBTO is a Dutch insurance provider offering a wide range of customizable insurance products including auto, health, travel, home, and legal assistance insurance. The company operates under the Achmea group umbrella, which strengthens its market position and trustworthiness. The website is professionally designed with clear navigation and good content quality, targeting Dutch consumers seeking flexible insurance solutions. Technically, the site uses a modern tech stack including Sitecore CMS, Azure hosting, and integrates multiple marketing and analytics tools. However, the security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which are critical issues that must be addressed immediately to protect user data and maintain trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is functional and credible but requires urgent security improvements.

Z

Zilveren Kruis

zilverenkruis.nl

0

Zilveren Kruis is a leading Dutch health insurance provider, part of the Achmea group, offering a wide range of insurance products including basic health insurance, supplementary insurance, dental, travel, car, and home insurance. The website targets consumers primarily in the Netherlands and provides comprehensive information and services related to health insurance. Technically, the site is built on Sitecore CMS with modern JavaScript frameworks like Vue.js and jQuery, and integrates Coveo for search functionality. While the site is well-designed, mobile-optimized, and rich in content, it suffers from critical SSL certificate issues that severely impact its security posture. The presence of strong security headers and extensive privacy policies indicates a mature approach to compliance, but the lack of valid HTTPS and modern TLS protocols is a significant risk. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the site. Strategic improvements in SSL configuration and security practices are recommended to enhance trust and security.

I

Interpolis

interpolis.nl

0

Interpolis is a large Dutch insurance company offering a wide range of insurance products and damage prevention solutions targeted at private individuals, businesses, and agricultural customers. The company operates under the parent company Achmea and collaborates with partners such as Rabobank. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. It leverages a modern technology stack including Sitecore CMS, Microsoft Azure hosting, and multiple analytics and marketing tools. However, the security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which are critical issues for an insurance provider handling sensitive customer data. Privacy and cookie policies are present and GDPR compliant, but no explicit terms of service or security policies are found. Overall, the website is trustworthy and credible but requires urgent improvements in SSL/TLS configuration to enhance security.

C

Centraal Beheer

centraalbeheer.nl

0

Centraal Beheer is a well-established Dutch insurance and financial services provider with over 115 years of history, operating under the parent company Achmea. The website offers a comprehensive range of services including insurance products, investment options, savings accounts, pensions, and mortgages, targeting both private individuals and businesses. The site is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, the website uses a modern tech stack including Sitecore CMS, Azure hosting, and various marketing and analytics tools, though performance metrics are not available. Security posture is moderate; while several security headers are implemented, the SSL certificate is invalid or missing, and no modern TLS protocols are enabled, which poses a significant risk. Privacy compliance is good with clear privacy and cookie policies and GDPR adherence. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

C

Copernica BV

mailerq.com

0

MailerQ is a specialized high-performance Mail Transfer Agent (MTA) developed by Copernica BV, a technology company based in the Netherlands. The product targets organizations requiring fast, reliable, and scalable email delivery solutions, including Email Service Providers, e-commerce platforms, banks, and government institutions. The website presents detailed product features, customer testimonials, and industry memberships, positioning MailerQ as a trusted and professional solution in the email delivery market. The business model focuses on software licensing and support services for high-volume email senders. Technically, the website employs modern JavaScript libraries such as jQuery and D3.js, alongside a proprietary PxFramework. The hosting infrastructure appears stable with Apache servers and DNS managed by Proxi.nl. However, the absence of a valid SSL certificate and HTTPS support is a critical shortfall, impacting security and user trust. The site includes Google Analytics and Leadinfo tracking scripts, but lacks a cookie consent mechanism, which may raise privacy compliance concerns. From a security perspective, the site implements several HTTP security headers but fails to provide a valid SSL/TLS configuration, leaving communications unencrypted. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are publicly available. These gaps represent significant risks, especially given the nature of the business handling email delivery and potentially sensitive customer data. Overall, while the business and website demonstrate professionalism and market relevance, urgent improvements in security posture and privacy compliance are recommended to mitigate risks and enhance trustworthiness.

O

Obvion N.V.

obvion.nl

0

Obvion N.V. is a well-established Dutch mortgage provider offering a range of mortgage products and advisory services primarily targeting Dutch consumers seeking home financing solutions. The website presents comprehensive content including mortgage advice, calculation tools, sustainability financing options, and a network of independent advisors. The company maintains a strong market position in the Netherlands with a mature domain and consistent branding. Technically, the website uses a professional CMS (GX WebManager) and modern JavaScript libraries, but suffers from slow load times and lacks a valid SSL certificate, which significantly impacts security posture. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. However, no explicit security or incident response policies are found on the site. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS configuration and performance optimization to enhance security and user experience.

A

Achmea

achmea.nl

0

Achmea is a mature and large Dutch insurance and financial services company serving approximately 10 million customers. The company emphasizes societal responsibility and sustainability in its business model, offering a broad range of insurance products and financial services through multiple subsidiary brands. The website reflects a professional corporate presence with good content quality and consistent branding. Technically, the site uses modern technologies such as React and Sitecore CMS, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security issue. The security posture is weak due to missing HTTPS, lack of security headers, and incomplete DNS security configurations. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The business credibility is strong, supported by extensive subsidiary networks and transparent corporate information. Overall, the site is functional but requires urgent security improvements to protect user data and maintain trust.

SMTPeter is a cloud-based SMTP email delivery service operated by Copernica BV, a technology company based in Amsterdam, Netherlands. The service enables businesses and developers to send, receive, and track emails via SMTP or REST API, offering features such as DKIM signing, link modification, bounce tracking, and detailed analytics. The website is professionally designed with clear navigation, customer testimonials, and a comprehensive pricing model targeting medium-sized businesses and developers. Technically, the site uses modern web technologies including jQuery, highlight.js, and Google reCAPTCHA, and is hosted with a reputable DNS provider. Security posture is solid with HTTPS, SPF, and DMARC policies properly configured, though improvements like HSTS and additional security headers are recommended. Privacy compliance is well addressed with visible cookie consent and privacy policy pages. Overall, SMTPeter presents a credible and mature business with strong domain registration consistency and trustworthy branding.

F

Fietsvoordeelshop.nl

fietsvoordeelshop.nl

0

Fietsvoordeelshop.nl is a mature and well-established Dutch bicycle retailer offering a wide range of bicycles including electric, city, cargo, and sports bikes, supported by 33 physical stores across the Netherlands. The business model combines e-commerce with brick-and-mortar retail, targeting consumers seeking quality bicycles and accessories. The website demonstrates excellent content quality, professional design, and clear navigation, supported by strong trust signals such as customer testimonials and Trustpilot integration. Technically, the site uses a modern tech stack including Laravel, nginx, Google Tag Manager, and various JavaScript libraries. Hosting is provided by Amazon AWS, and the site is mobile-optimized with good SEO practices. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, severely impacting the security posture. Security headers are properly configured, and security best practices like CSRF tokens and reCAPTCHA are implemented, but the lack of HTTPS and TLS protocols is a major vulnerability. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Contact information is available, though no explicit security or incident response policies are published. Overall, the website is trustworthy and professional but requires urgent remediation of SSL/TLS issues to protect user data and improve security compliance.

S

Social Finance

startersrenteregeling.nl

0

Startersrenteregeling.nl is a niche financial services website managed by Social Finance N.V., focused on servicing existing mortgage products under the Starters Renteregeling scheme which was discontinued in 2016. The website provides informational content and FAQs for consumers and notaries related to these mortgages. Technically, the site is built on WordPress using the Avada theme and common web libraries such as jQuery and FontAwesome. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Other security measures such as HSTS, DNSSEC, and strict DMARC policies are also missing. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. Business credibility is moderate with consistent WHOIS data and a mature domain age. Overall, the site is functional but requires urgent security improvements to protect user data and improve trust.

A

Adobe XD Elements

adobexdelements.com

0

Adobe XD Elements is a niche online platform providing free Adobe XD design resources such as UI kits, templates, mockups, icons, and illustrations. The website targets designers and UI/UX professionals seeking high-quality, ready-to-use design assets to enhance their projects. The business operates primarily as a free resource aggregator with monetization through advertising partnerships. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS infrastructure but suffers from performance issues with a slow load time. The site is mobile optimized and SEO friendly but lacks advanced accessibility features. Security posture is weak due to the absence of a valid SSL certificate, no HTTPS enforcement, and missing security headers, exposing users to potential risks. Privacy compliance is poor with no visible privacy or cookie policies, which is a significant compliance gap. Overall, the domain is mature and consistent with the business history, but critical security and privacy improvements are necessary to enhance trust and protect users.

S

Sketch Elements

sketchelements.com

0

Sketch Elements is a niche online platform providing free Sketch design resources including UI kits, templates, icons, mockups, style guides, and illustrations targeted at UI/UX designers and digital product creators. The website leverages WordPress with Elementor and related plugins to deliver curated content and collections, positioning itself as a valuable resource within the Sketch design community. The technical infrastructure is moderately mature, hosted on DigitalOcean, but suffers from slow page load times and lacks a valid SSL certificate, which is a critical security concern. The absence of HTTPS and security headers exposes users to risks and reduces trustworthiness. Privacy compliance is weak, with no visible privacy or cookie policies, and no explicit contact emails or phone numbers are provided, limiting business credibility. Social media presence is established, and advertising partnerships are evident. Overall, the site is functional and content-rich but requires urgent security and compliance improvements to enhance user trust and protect data.

S

Sky Internet Marketing

skyinternetmarketing.nl

0

Sky Internet Marketing is a mature and established internet marketing agency based in the Netherlands, specializing in SEO, SEA (Google Ads), and website development services. The company targets businesses seeking to improve their online presence and customer acquisition through digital marketing strategies. Their market position is strong with claims of top Google rankings and a client base exceeding 250 customers. Technically, the website is built on WordPress using modern plugins and frameworks, but suffers from slow load times and lacks some advanced security configurations such as HSTS and OCSP stapling. Security posture is adequate with HTTPS and SPF/DMARC policies in place, though improvements are recommended to enhance trust and protection. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and content-rich, but could benefit from performance optimizations and enhanced security headers.

W

WebBuilds B.V.

filapanel.com

0

Filapanel is a specialized SaaS platform designed to accelerate Laravel and Filament project development by automating code generation and admin panel creation. The company, WebBuilds B.V., operates primarily in the technology sector with a focus on developer tools and SaaS solutions. The website presents a professional and well-branded interface targeting Laravel developers and SaaS builders, supported by partner endorsements and testimonials. Technically, the platform leverages modern frontend technologies such as Alpine.js and Tailwind CSS, and is hosted behind Cloudflare DNS services. However, the absence of a valid SSL certificate critically undermines the security posture, despite the presence of strong HSTS policies and DMARC email protections. Privacy compliance is partial, with terms of service present but no explicit cookie policy or consent mechanism. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements to ensure trust and compliance.

W

WebBuilds B.V.

webbuilds.nl

0

WebBuilds B.V. is a small Dutch technology company specializing in custom web application development and SaaS products. Their offerings include CRM, e-commerce, API integrations, and proprietary SaaS tools such as ploi.io and Documentator. The company targets businesses seeking tailored web solutions and emphasizes quality and precision in development. Technically, the website uses modern frameworks like Laravel and TailwindCSS and is hosted behind Cloudflare. However, the site lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security concern. Security headers are present but insufficient without HTTPS. Privacy compliance is minimal, with no visible privacy or cookie policies. The company uses Matomo analytics, indicating some privacy awareness. Overall, the website is professional and well-branded but requires urgent security improvements to protect users and enhance trust.

C

Chief Tools

chief.tools

0

Chief Tools provides a comprehensive suite of web-based utilities aimed primarily at developers and IT professionals. The website offers tools such as JSON formatting, DNS lookups, IP address retrieval, encoding and hashing utilities, and certificate chain resolution. The business operates from the Netherlands and positions itself as a niche provider of free and partner-linked technical tools. The website is well structured with clear navigation and a consistent brand presence, targeting a technical audience seeking quick and reliable utility tools. The business model appears to be primarily free tools supplemented by partner services and related applications.

B

Bill.DO

bill.do

0

Bill.DO is a specialized SaaS platform offering billing insights and alerting services for DigitalOcean users. It targets DigitalOcean account holders who want to monitor and control their cloud spending effectively. The business operates under the Chief Tools brand, hosted in Europe with a focus on privacy and compliance. The website presents clear pricing tiers and service descriptions, catering to a range of user needs from free to enterprise levels. Technically, the site uses modern JavaScript frameworks such as Alpine.js and Laravel Livewire, with integrations for error tracking (Sentry) and privacy-focused analytics (Fathom). However, the website suffers from an invalid SSL certificate, which undermines its security posture and user trust. Performance is also suboptimal with a slow load time and many resources, though mobile optimization and SEO are handled well. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact options are primarily via web forms and external links, with no explicit phone or email contacts on the main site. Overall, the site is functional and professional but requires improvements in security and privacy compliance to enhance trust and user confidence.

C

Chief Tools

tny.app

0

Tny.app is a technology-driven URL shortening service operated by Chief Tools, a Dutch company. The platform offers a range of subscription plans and add-ons targeting individuals and businesses who require fast, secure, and customizable link shortening solutions. The service integrates with popular automation platforms such as Make, Zapier, and IFTTT, enhancing its appeal to tech-savvy users and enterprises seeking workflow automation. The website is professionally designed with clear navigation and good content relevance, supporting a positive user experience. The business model is subscription-based with tiered offerings and additional paid features, positioning Tny.app as a competitive player in the niche URL management market. Technically, the website employs modern JavaScript frameworks like Alpine.js and uses Cloudflare for DNS and hosting infrastructure. While the SSL certificate is valid and HTTPS is enforced, the site lacks some advanced security headers and HSTS enforcement, which could improve its security posture. Performance is suboptimal with a relatively slow load time, likely due to a high number of resources. Accessibility and SEO are adequately addressed, though cookie consent mechanisms are missing despite GDPR compliance claims. From a security perspective, Tny.app demonstrates good baseline practices including SPF and DMARC email protections, valid SSL, and no detected vulnerabilities or subdomain takeover risks. However, the absence of a published security policy, vulnerability disclosure program, and data protection officer contact information indicates room for maturity improvement. Incident response contact is available via an abuse page with a dedicated email address. Overall, the security posture is solid but could benefit from enhanced transparency and additional security controls. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include enabling HSTS, implementing cookie consent, publishing security policies, and improving performance. These steps will enhance trust, compliance, and resilience, supporting Tny.app's growth and reputation in the competitive URL shortening market.

W

WebBuilds B.V.

ploi.io

0

Ploi.io is a technology company specializing in server management tools designed to simplify server provisioning, site deployments, and server management for developers and businesses. Positioned as a competitive alternative to popular platforms like Laravel Forge and ServerPilot, Ploi offers a subscription-based SaaS model with tiered pricing plans targeting developers and small to medium-sized businesses. The platform provides key services such as server installation, site management, load balancing, team collaboration, and API access, supported by partnerships with major cloud providers like UpCloud, DigitalOcean, Linode, and Hetzner. Technically, the website employs modern web technologies including JavaScript ES modules, Tailwind CSS, and privacy-focused Matomo analytics. The site is hosted behind Cloudflare DNS and CDN services, ensuring global availability. While the site is mobile-optimized and accessible with good SEO practices, performance is hindered by slow load times. The backend likely uses Laravel, inferred from feature references. Security posture reveals a critical issue with an invalid or missing SSL certificate despite strong HSTS policies and no detected vulnerable libraries. Other TLS features like OCSP stapling and session resumption are missing, and DNS CAA records are malformed. Privacy compliance is strong with comprehensive policies and GDPR adherence, and user tracking is minimal and privacy-conscious. Overall, Ploi.io presents a professional, trustworthy, and feature-rich platform with room for improvement in SSL configuration and site performance. Addressing these security and technical issues will enhance user trust and operational reliability.

A

Alboweb B.V.

chief.app

0

Chief Tools, operated by Alboweb B.V., is a technology-focused company providing a suite of developer and application management tools. Their offerings include domain registration and monitoring, certificate monitoring, zero-downtime deployment solutions, URL shortening services, and DigitalOcean billing insights. The company targets developers and IT professionals seeking integrated tools to build, deploy, and monitor applications efficiently. Hosting and DNS services are managed via Cloudflare with a European hosting focus, emphasizing privacy and performance. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience.

K

KaasHosting

kaashosting.nl

0

KaasHosting is a specialized Dutch hosting provider primarily focused on Minecraft server hosting, supplemented by VPS, web hosting, and domain registration services. Established in 2013, it has positioned itself as a trusted provider with a strong emphasis on fast delivery, excellent customer support, and a user-friendly control panel. The website is professionally designed, content-rich, and targets gamers and hosting customers in the Netherlands. Technically, the site uses modern frontend technologies including Laravel Livewire and Tailwind CSS, with assets served via DigitalOcean Spaces CDN. Performance is moderate with room for optimization. Security posture is adequate with valid SSL and SPF records, but lacks advanced security headers and HSTS. Privacy compliance is partially met with clear privacy and terms documents but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve security and privacy features to enhance compliance and user trust.

H

Hammerite Nederland

hammerite.nl

0

Hammerite Nederland is a medium-sized manufacturing and retail company specializing in metal protection coatings and paints, operating primarily in the Netherlands. The website serves as a product showcase and e-commerce platform, supported by WooCommerce and WordPress, with a focus on consumer and professional markets seeking metal protection solutions. The site is branded under the parent company AkzoNobel, indicating a strong market position in the coatings industry. Technically, the website employs common web technologies including jQuery, Google Tag Manager, Facebook Pixel, and OneTrust for cookie consent, but suffers from slow load times and lacks a valid SSL certificate, impacting security and user trust. Security posture is weak due to missing HTTPS and security headers, although privacy compliance is supported by clear privacy and cookie policies with consent mechanisms. Overall, the site is professional and trustworthy but requires urgent improvements in security infrastructure to protect user data and enhance credibility.

Arvato is an enterprise-level company specializing in innovative supply chain management, logistics, transport management, and digital solutions primarily targeting B2B clients in the transportation sector. The website presents a professional and comprehensive digital presence with multilingual support and detailed service offerings. Technically, the site is built on TYPO3 CMS with modern frontend tooling but suffers from slow load times and lacks a valid SSL certificate, impacting security posture. The security configuration is basic, with no HTTPS enabled and missing security headers, although privacy compliance is well managed through Cookiebot consent mechanisms. Overall, the site is trustworthy and professional but requires urgent improvements in security infrastructure to protect user data and enhance trust.

K

Koongo

koongo.nl

0

Koongo is a medium-sized e-commerce technology company based in the Netherlands, owned by NoStress Commerce s.r.o. It provides a SaaS platform for product feed management and order synchronization across over 500 online marketplaces including Amazon, eBay, and Google Shopping. The website is professionally designed, content-rich, and targets online sellers seeking to expand multi-channel sales efficiently. Technically, the site runs on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the business demonstrates strong market positioning and trust signals but must urgently address security shortcomings to protect user data and maintain credibility.

S

SIDN fonds : een sterk internet voor iedereen

sidnfonds.nl

0

SIDN fonds is a Dutch non-profit organization dedicated to supporting innovative internet projects that contribute to a safer and more inclusive internet. With over 400 projects funded since 2015, it holds a strong position within the Dutch internet community, focusing on themes such as cybersecurity, digital accessibility, and public values. The website provides comprehensive information about its mission, funding opportunities, and supported projects, targeting innovators and organizations involved in internet initiatives. Technically, the website is hosted on Google Cloud infrastructure using OpenResty as the web server. It employs a robust Content Security Policy and integrates multiple analytics and marketing tools including Piwik PRO and Google Analytics. The site is mobile-optimized with good accessibility and SEO practices. However, a critical security gap is the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the security posture. Security-wise, while several security headers are implemented, the lack of HTTPS and disabled TLS protocols expose the site to risks such as data interception and man-in-the-middle attacks. No explicit security or incident response policies are published, and no vulnerability disclosure mechanisms are evident. Privacy and cookie policies are present and appear comprehensive, supporting GDPR compliance. Overall, the site is professionally designed and content-rich but requires urgent improvements in SSL/TLS deployment to enhance security and trustworthiness. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and enhancing security headers to protect users and data effectively.

S

Spotler

flowmailer.net

0

Spotler is a technology company specializing in data driven marketing software with a strong emphasis on transactional email delivery through its SendPro platform. The company holds a reputable market position in the Netherlands, supported by ISO 27001 certification and trusted by a range of clients from small to large enterprises. The website content is professionally presented, targeting businesses requiring reliable and fast transactional email services integrated with marketing automation capabilities. Technically, the site is built on WordPress with multilingual support and uses modern tools like Google Tag Manager and Cloudflare for performance and security. However, the absence of a valid SSL certificate significantly weakens the security posture, exposing the site to risks and reducing trust in secure communications. Privacy compliance is well addressed with clear privacy and cookie policies, though no explicit consent mechanism was detected. Overall, the site demonstrates good business credibility and technical maturity but requires urgent remediation of SSL/TLS issues to enhance security and user trust.

A

Akzo Nobel N.V.

akzonobel.com

0

Akzo Nobel N.V. is a global leader in the manufacturing and distribution of paints and coatings, with a rich history dating back to 1792. The company operates in over 150 countries and manages a portfolio of well-known brands such as Dulux, International, Sikkens, and Interpon. Their business model focuses on providing innovative and sustainable surface solutions to a wide range of industries including manufacturing, energy, and transportation. The website reflects a mature digital presence with comprehensive content aimed at customers, investors, and partners worldwide. Technically, the website is built on Adobe Experience Manager (AEM) and leverages modern web technologies including HTML5, CSS3, JavaScript, and various marketing and analytics tools such as Google Tag Manager and Adobe DTM. Hosting is provided via Amazon AWS infrastructure. While the site is mobile-optimized and accessible, performance is somewhat slow with a load time exceeding 8 seconds, indicating room for optimization. From a security perspective, the site employs HTTPS with a valid SSL certificate, SPF and DMARC email authentication records, and no detected vulnerabilities or subdomain takeover risks. However, security headers like HSTS and OCSP stapling are not enabled, and TLS 1.3 is not supported, suggesting moderate security posture. Privacy compliance is strong with clear privacy and cookie policies and an active consent mechanism, aligning with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and business credibility. The main risks relate to technical performance and some security hardening opportunities. Strategic recommendations include enhancing SSL configurations, enabling advanced security headers, improving page load times, and maintaining rigorous privacy compliance to sustain trust and regulatory adherence.

D

Deciso

opnsense.org

0

OPNsense.org is the official website for OPNsense®, an open source firewall and routing platform developed by Deciso. The platform targets enterprises, professionals, and the open source community, offering a free core product alongside a commercial Business Edition with enhanced features. The website demonstrates a mature digital presence with comprehensive content, community engagement, and commercial offerings including official hardware and training. Technically, the site is built on WordPress with modern frontend frameworks and integrates Google Analytics and custom search capabilities. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate and HTTPS support, exposing users to potential risks. Privacy policies and terms of service are present and comprehensive, but cookie consent mechanisms are not implemented. Overall, the site is professional and trustworthy but requires urgent security improvements to protect visitors and maintain credibility.

E

Engatta

engatta.io

0

Engatta is a technology company providing a SaaS content operations platform designed to help content teams plan, create, organize, and collaborate on content across multiple channels. The company targets organizations seeking to optimize their content workflows and improve team alignment with real-time performance metrics. The website is built on HubSpot CMS and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. However, the technical infrastructure shows weaknesses including an invalid SSL certificate and disabled TLS protocols, which pose significant security risks. Additionally, multiple subdomains are vulnerable to takeover due to dangling DNS records. Privacy and cookie policies are present with consent mechanisms, but GDPR compliance indicators are basic. Overall, the website presents a professional business front but requires urgent security improvements to protect user data and maintain trust.

G

GX Software B.V.

xperiencentral.com

0

XperienCentral, operated by GX Software B.V., is a Netherlands-based enterprise software company specializing in content management systems designed to deliver personalized digital experiences. The company positions itself as a market leader with award-winning CMS solutions that cater to organizations seeking advanced content personalization and delivery capabilities. Their platform supports multiple configurations including Headful, Headless, and Hybrid CMS models, targeting enterprise clients across various sectors. The website reflects a professional and consistent brand image, showcasing notable clients and emphasizing their technological strengths. Technically, the website employs a modern technology stack including Java-based backend, Bootstrap for frontend styling, and integrates HubSpot for marketing and form management. It uses Google reCAPTCHA Enterprise for bot protection and Google Tag Manager for analytics. Hosting is on Amazon AWS infrastructure. While the site is mobile-optimized and SEO-friendly, performance is somewhat slow with a page load time exceeding 6 seconds, indicating room for optimization. From a security perspective, the site enforces HTTPS with TLS 1.2 and uses strong cipher suites. However, it lacks advanced security features such as HSTS, OCSP stapling, TLS 1.3 support, and DMARC email policies. No critical vulnerabilities were detected, but improvements are recommended to enhance security posture. Privacy compliance is well addressed with clear privacy and cookie policies and a functional consent mechanism. Overall, XperienCentral's website demonstrates a solid business and technical foundation with good privacy practices and moderate security maturity. Strategic enhancements in security configurations and performance optimization would further strengthen their digital presence and trustworthiness.

G

GX Software

gxcloud.net

0

GX Software is a technology company specializing in digital communication software and services, offering proprietary products such as XperienCentral and Engatta, alongside partnerships with leading Customer Data Platforms like BlueConic and mParticle. The company positions itself as a Platinum BlueConic Partner in EMEA, focusing on privacy-conscious, data-driven customer engagement solutions. Their website reflects a professional and consistent brand image targeting businesses seeking integrated digital communication and customer data management solutions. Technically, the site is built on HubSpot CMS with modern JavaScript libraries and integrates multiple marketing and analytics tools, providing a good user experience with moderate performance. However, the security posture is weak due to the absence of a valid SSL certificate, lack of HTTPS, missing DMARC, and no security headers, which significantly lowers the overall security score. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Contact information is comprehensive and easily accessible. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

P

PMHinvestments

pmhinvestments.com

0

PMH Investments is a Dutch investment company focused on small and medium-sized enterprises with strong growth potential (scale-ups). The company positions itself as an active investor providing not only capital but also strategic, financial, and coaching support to entrepreneurs. Their market niche is well-defined within the Dutch finance sector, targeting growing businesses. The website is built on WordPress with a solid SEO foundation and multilingual support, indicating a moderate level of digital maturity. However, the technical infrastructure shows weaknesses in security, notably the absence of a valid SSL certificate and lack of modern TLS protocols, which undermines user trust and data protection. Tracking and analytics are implemented via Google Tag Manager and WPMU DEV Analytics, but no cookie consent mechanism is present, which may raise compliance concerns. Overall, the security posture is basic with significant room for improvement, especially in SSL/TLS configuration and email security policies. Strategic recommendations include securing the website with a valid SSL certificate, implementing DMARC, and enhancing transparency around privacy and security policies.

F

Finch Capital

finchcapital.com

0

Finch Capital is a European growth investor specializing in Business and Financial Technology sectors, supporting entrepreneurs with capital and strategic guidance to scale their businesses. The firm manages €450 million in assets and has a portfolio of over 45 companies. Their services include growth capital investment, active portfolio management, and support in areas such as hiring, M&A, go-to-market strategies, capital raising, regulation, and international expansion. Technically, the website is built on modern frameworks like React and Next.js, hosted on DigitalOcean, but suffers from an invalid SSL certificate and lacks several security headers, indicating room for improvement in security posture. The firm uses Google Tag Manager for analytics and tracking, but lacks a visible cookie consent mechanism. Overall, Finch Capital presents a professional and trustworthy image with strong domain expertise and a commitment to sustainable investment.