Security Directory

I

International Fiscal Association

ifa.nl

0

The International Fiscal Association (IFA) is a well-established non-governmental and non-sectoral international organization focused on the study and advancement of international and comparative fiscal law. Founded in 1938 and based in the Netherlands, IFA serves a global audience of tax professionals, academics, government officials, and judiciary members. The website reflects a professional and authoritative presence with comprehensive content about its congresses, research, awards, and membership services. Technically, the site employs modern web technologies including Bootstrap, jQuery, and Google Analytics, and it is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though it lacks explicit security policy and incident response information. Overall, the site is trustworthy, well-branded, and compliant with privacy regulations.

W

Werken bij Belsimpel

werkenbijbelsimpel.nl

0

Werken bij Belsimpel is a professionally maintained recruitment and employer branding website for Belsimpel, a well-established Dutch telecom e-commerce platform. The site offers comprehensive information about career opportunities, company culture, and featured vacancies, targeting job seekers interested in telecom and technology sectors. The business is positioned as a large player in the Dutch market with a focus on simplifying telecom product access and services. Technically, the website is built on WordPress with Elementor and several Jet plugins, optimized for performance, mobile responsiveness, and SEO. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms in place, though explicit security policies and incident response details are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

F

Fresh Food Ventures Group BV

crisp.nl

0

Crisp.nl is an established online supermarket based in the Netherlands, founded in 2018 and operated by Fresh Food Ventures Group BV. The company offers a digital grocery shopping platform with a focus on fresh, quality products sourced directly from producers, providing next-day delivery across the country. Their market position is strong, having been recognized as the best online supermarket for three consecutive years, supported by a well-rated mobile app and a clear value proposition targeting consumers seeking convenience and quality. Technically, the website is modern, mobile-optimized, and uses Google Tag Manager for analytics and marketing, with a clean and professional design. Security posture is good with HTTPS enforced and a robust cookie consent mechanism, though no explicit security policy or incident response contacts are published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR, supported by B Corporation certification. Recommendations include publishing a security policy, incident response contacts, and enhancing security headers to further strengthen security posture.

A

AJ Producten

ajproducten.nl

0

AJ Producten is a specialized supplier of business furniture and workplace equipment, serving primarily the Dutch market and neighboring countries through multiple localized websites. The company offers a broad range of products including office furniture, warehouse shelving, ergonomic accessories, and workplace solutions. Their market position is that of an established medium-sized B2B e-commerce retailer with a strong focus on quality and customer service, including a 7-year warranty and fast delivery options. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, and Cookiebot for consent management. The site is well-optimized for mobile devices and accessibility, with good SEO practices and performance. Security measures include HTTPS enforcement, Content Security Policy headers, and error monitoring via Raygun, indicating a mature digital infrastructure. From a security perspective, the site demonstrates good practices with no detected vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. However, explicit security policy and incident response information are not publicly available, representing an area for improvement. Overall, AJ Producten presents a low-risk profile with a professional online presence, strong privacy compliance, and solid technical implementation. Strategic recommendations include publishing a dedicated security policy, establishing a vulnerability disclosure process, and enhancing incident response transparency to further strengthen trust and security posture.

SuperSaaS is a well-established Dutch SaaS company founded in 2007, offering a flexible and reliable online reservation and appointment scheduling system. The platform targets small to medium-sized businesses and organizations worldwide, providing extensive customization, integration with popular services like Google Calendar, PayPal, and Zoom, and a free tier without expiration. The website is professionally designed, mobile-optimized, and rich in content, including detailed FAQs, customer testimonials, and multiple trust signals from review platforms. Technically, the site employs modern JavaScript technologies, Google Tag Manager, and various analytics and marketing tools, with a strong focus on user privacy and cookie consent. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR, making it a credible and mature online service provider.

E

Esso

esso.nl

0

Esso Netherlands operates as a major fuel retail brand under the ExxonMobil umbrella, providing fuel stations, motor oils, payment cards, and loyalty programs targeted at consumers and businesses in the Netherlands. The website reflects a mature digital presence with a professional design, clear navigation, and mobile optimization. The technical infrastructure leverages Sitecore CMS, AWS hosting, and integrates multiple third-party services including OneTrust for cookie consent, Google Analytics, and various mapping and video platforms. Security posture is strong with HTTPS enforcement, comprehensive Content Security Policy, and cookie consent mechanisms. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website is trustworthy, compliant with GDPR, and well-positioned in the energy retail market.

T

The A11Y Collective

a11y-collective.com

0

The A11Y Collective is a specialized e-learning platform founded in 2020, focused on providing comprehensive web accessibility training and courses. It serves a diverse audience including designers, developers, content creators, and businesses aiming to comply with accessibility laws such as the European Accessibility Act and ADA. The company positions itself as a trusted partner to governments, NGOs, and Fortune 500 companies, offering a range of courses, masterclasses, and accessibility audit services. The platform is supported by a parent company, Level Level, and partners with Accredible for certification issuance. Technically, the website is built on WordPress with WooCommerce and Learndash LMS, integrating modern analytics and marketing tools such as Matomo, Google Tag Manager, and Omnisend. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, with a professional and consistent design. Security posture is strong with HTTPS enforced and responsible disclosure policies in place, although explicit security headers could be improved. Despite the strong web presence and business credibility, the WHOIS lookup for the domain www.a11y-collective.com returned no data, indicating either a privacy-protected registration or a potential inconsistency. This reduces trust from a domain registration perspective but does not detract from the overall professionalism and legitimacy of the business as evidenced by its content, client logos, and certifications. Overall, the website is a high-quality, trustworthy educational platform with solid technical and security foundations. It is recommended to verify domain registration details for completeness and to enhance security headers for improved protection.

D

Duckyard BV

edit.photo

0

Edit.photo is a free online photo editing web application operated by Duckyard BV, a Netherlands-based company founded in 2017. The website offers a fast, privacy-focused photo editor with no ads, popups, cookies, or account requirements, targeting general users seeking simple image manipulation in-browser. The service is powered by Pintura Labs, a commercial product provider, which finances the free offering indirectly. The website is well-structured with clear navigation, privacy, and terms pages, and uses modern web technologies including service workers and Cloudflare DNS for hosting and performance optimization. Security posture is strong with HTTPS enforced, no tracking cookies, and minimal data collection, although some security headers could be improved. WHOIS data is consistent with the business claims, showing a legitimate and transparent registration. Overall, the site demonstrates a good balance of usability, privacy, and security for its niche.

V

VPInstruments

vpinstruments.com

0

VPInstruments is a well-established company specializing in industrial energy management solutions, focusing on compressed air monitoring, leakage management, and efficiency optimization. With a domain age dating back to 1998 and a consistent brand presence, the company targets industrial clients seeking to improve energy efficiency through advanced metering and software solutions. The website reflects a mature digital infrastructure built on WordPress with WooCommerce and incorporates multilingual support via Weglot, indicating a global outreach strategy. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements such as enabling DNSSEC and implementing Content-Security-Policy headers are recommended. The site integrates marketing and analytics tools like Zoho SalesIQ and Google Optimize, supporting moderate user tracking aligned with business goals. Overall, the website is professional, trustworthy, and business-focused, with clear contact channels and good SEO practices.

P

PQINA

pqina.nl

0

PQINA is a small technology company based in the Netherlands, specializing in designing and building high-performance, responsive web components primarily for image and video editing and file uploading. Their product suite includes JavaScript libraries such as Pintura Image Editor, FilePond uploader, and Flip counter plugin, alongside online services like CropGuide and Edit • Photo/Video editors. The company maintains an active blog with technical articles, indicating ongoing development and engagement with the developer community. The website is professionally designed with excellent content quality and clear navigation, targeting web developers and businesses needing advanced web components and editing tools. Technically, the website employs modern web standards including JavaScript, CSS, and HTML5, with good mobile optimization and accessibility. The site uses HTTPS and includes SEO-friendly meta tags and social media integration. Analytics are handled via Simple Analytics, reflecting a privacy-conscious approach with minimal user tracking. However, some security best practices such as DNSSEC and security headers are not implemented, and there is no cookie consent mechanism, which may impact compliance with privacy regulations. From a security perspective, the site shows a basic but solid posture with no detected vulnerabilities or exposed sensitive data. The WHOIS data confirms a consistent and legitimate domain registration dating back to 2015, aligning with the business maturity. No security policies or incident response contacts are published, which could be improved to enhance trust and readiness. Overall, the site is trustworthy, professional, and technically sound, with room for improvement in privacy compliance and security hardening. The overall risk is low, but strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, publishing security policies, and enhancing GDPR compliance to strengthen the security and privacy posture further.

O

Opklopper B.V.

judgeme.io

0

Opklopper B.V. is a specialized Shopify bureau based in Amsterdam, Netherlands, providing comprehensive e-commerce solutions including webshop design, migration, and marketing services primarily targeting entrepreneurs and businesses in the Netherlands and Belgium. The company positions itself as a trusted Shopify partner with a strong portfolio and expertise in email marketing strategies to boost online sales. Technically, the website leverages modern frameworks such as Nuxt.js and Vue.js, integrates Google Tag Manager and Analytics for tracking, and demonstrates good performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies, which are recommended for improvement. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, potentially impacting GDPR adherence. Overall, the website is professional, trustworthy, and well-structured, supporting a positive business credibility profile.

E

Essimo B.V.

essimo-judo.com

0

Essimo B.V. operates the website essimo-judo.com, an e-commerce platform specializing in judo and martial arts equipment. The company offers a range of IJF approved products, uniforms, mats, and accessories targeting martial arts practitioners and clubs primarily in the Netherlands. The website is built on Magento Open Source, leveraging modern web technologies such as RequireJS, jQuery, and Knockout.js, providing a responsive and user-friendly shopping experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration on forms, although additional security headers could enhance protection. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy, suggesting the domain may be newly registered or privacy protected. Overall, the website presents a professional and trustworthy front for its niche retail market.

C

Combell

combell.nl

0

Combell is a well-established hosting specialist operating primarily in the Netherlands, offering a comprehensive suite of services including professional webhosting, cloud hosting, dedicated servers, domain registration, SSL certificates, email hosting, and website building tools. The company targets a broad audience ranging from starters and small to medium enterprises (KMO) to large enterprises, positioning itself as a premium hosting provider with a strong emphasis on security and customer support. The website reflects a mature digital presence with consistent branding and high-quality content, supporting its market position effectively. Technically, the website leverages modern web technologies such as Font Awesome, Google Fonts, Google Analytics, Google Tag Manager, Visual Website Optimizer, Hotjar, and Iubenda for cookie compliance. The site is hosted by Combell itself, indicating control over infrastructure. Performance is moderate with excellent mobile optimization and good accessibility and SEO practices. The presence of security headers, HTTPS enforcement, and CSRF tokens indicates a strong security posture, although there is room for improvement in publishing explicit security policies and incident response information. Security-wise, the site demonstrates good practices including HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy or vulnerability disclosure program suggests an opportunity to enhance transparency and incident readiness. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Overall, Combell presents a low-risk profile with a professional and trustworthy online presence. Strategic recommendations include publishing dedicated security and incident response policies, establishing a vulnerability disclosure program, and continuing to enhance privacy and security transparency to maintain and strengthen customer trust.

Mobirise Ltd operates the Mobirise AI Website Generator, a technology platform that enables users to create professional websites easily using AI and drag-and-drop tools. The company targets a broad audience including small businesses, freelancers, bloggers, and e-commerce startups, positioning itself as a flexible and user-friendly alternative to other AI website builders. Technically, the website is built on modern frameworks like Bootstrap 5 and integrates analytics and advertising tools such as Google Tag Manager and Facebook Pixel. The security posture is solid with HTTPS and domain protections, though some headers and explicit security policies could be improved. Privacy compliance is adequate with clear privacy and terms pages, but lacks cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for SEO and mobile use.

F

Flexmail

flexmail.nl

0

Flexmail is a well-established email marketing platform founded in 1998, offering a comprehensive suite of services including campaign management, marketing automation, and CRM segmentation. The company targets small business owners and marketing professionals primarily in the Netherlands and Belgium. The website demonstrates a mature technical infrastructure leveraging modern frameworks such as React and Gatsby, with integrations for analytics and marketing tools like Google Analytics, Hotjar, and Zapier. Security posture is strong with HTTPS and a strict Content-Security-Policy, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is limited due to the absence of explicit privacy and cookie policies in the provided content. Overall, the website is professional, trustworthy, and technically sound, but could enhance transparency and compliance documentation.

C

Conscribo

conscribo.nl

0

Conscribo is a Dutch company specializing in online administrative software tailored for associations and their boards. Their platform integrates bookkeeping, membership management, mailing, and other administrative functions into a single SaaS solution. The company targets small to medium-sized associations in the Netherlands, positioning itself as a niche provider with a focus on ease of collaboration among multiple users. Technically, the website is built on WordPress with Elementor and employs modern tracking and marketing tools, including Facebook Pixel and Google Tag Manager, alongside a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. The domain registration aligns well with the business profile, enhancing trustworthiness. Overall, the website presents a professional, well-structured, and user-friendly experience with good SEO and mobile optimization.

W

WeTransfer

wetransfer.com

0

WeTransfer is a well-established technology company specializing in online file transfer services, enabling users worldwide to send large files quickly and efficiently. Founded in 2007 and headquartered in the Netherlands, it holds a leading market position with a freemium business model offering both free and paid subscription plans. The website reflects a professional and modern digital presence with excellent content quality and user experience, targeting both general users and business customers. The technical infrastructure is robust, leveraging modern web technologies such as React and Next.js, hosted on Amazon AWS, and integrating secure payment processing via Stripe. The site demonstrates good performance, mobile optimization, and accessibility, supported by comprehensive SEO and metadata implementation. Security posture is strong with HTTPS enforced, appropriate security headers, and no detected vulnerabilities or exposed sensitive data. However, DNSSEC is not enabled, and no explicit security policy or vulnerability disclosure page was found, representing areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, WeTransfer presents a low-risk profile with a high trustworthiness rating, suitable for professional and personal use. Strategic recommendations include enabling DNSSEC, publishing a security policy, and adding a security.txt file to enhance transparency and security readiness.

I

International Confederation of Midwives (ICM)

millionmore.org

0

The website millionmore.org represents the 'One Million More Midwives' campaign led by the International Confederation of Midwives (ICM), a global non-profit advocacy organization focused on improving maternal health by increasing investment in midwifery. The site serves as a platform to build public pressure through petitions, advocacy toolkits, and event promotion, targeting governments, health leaders, and the global public. The content is professionally presented, multilingual, and consistent with the organization's mission and branding. Technically, the site is built on WordPress, hosted and registered via Cloudflare, and uses modern web technologies including Google Analytics and Tag Manager for tracking. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is adequate with HTTPS enforced but lacks advanced security headers and DNSSEC. Privacy and cookie policies are not explicitly found, indicating a compliance gap. Security-wise, no critical vulnerabilities or exposed sensitive data were detected. However, the WHOIS data shows an anomalous domain creation date in the future, which reduces trustworthiness and should be investigated. The absence of a security.txt file and incident response contacts also limits transparency. Overall, the site is trustworthy and professional but could improve in privacy compliance and security best practices. Strategically, the site effectively supports the campaign's goals but should address privacy policy publication, enhance security headers, enable DNSSEC, and clarify domain registration details to strengthen trust and compliance.

Miele Nederland is a premium household appliance provider with a strong market presence in the Netherlands. The company offers a wide range of products including kitchen appliances, washing and drying machines, vacuum cleaners, and cleaning products. Their website reflects a mature digital infrastructure using modern frameworks like Nuxt.js and integrates with platforms such as SAP Commerce Cloud and Contentstack CMS. The site is well-optimized for performance, mobile responsiveness, and accessibility, providing an excellent user experience. Security posture is strong with HTTPS enforcement and appropriate security headers, though a dedicated security policy and incident response contact could enhance trust further. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and aligns well with the brand's premium positioning.

V

Veolia Nederland

veolia.nl

0

Veolia Nederland is a prominent enterprise-level company specializing in sustainable solutions in energy, water, and circular economy sectors. The company operates as part of the global Veolia Group, offering services that help businesses achieve their sustainability goals. The website reflects a mature digital presence with a Drupal CMS infrastructure, modern consent management via Didomi, and integration of analytics tools such as Google Tag Manager and Beyable Analytics. The site is well-structured, mobile-optimized, and professionally designed, targeting corporate clients and stakeholders interested in ecological transformation. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is supported by a cookie consent mechanism but lacks a clearly linked privacy policy in the provided content. Overall, the website demonstrates high trustworthiness and professionalism consistent with a large multinational corporation.

D

Drukzo

drukzo.nl

0

Drukzo is a prominent online printing service based in the Netherlands, offering a wide range of affordable and quality printing products including flyers, folders, posters, business cards, stickers, banners, and corporate identity materials. The website is well-branded and targets both individual consumers and businesses seeking cost-effective printing solutions. Drukzo operates under the parent company Helloprint, which supports its market position and international reach. The technical infrastructure leverages modern web technologies such as Contentful CMS, Vue.js components, and integrates multiple analytics and marketing tools including Google Analytics, Segment, and Trustpilot, indicating a mature digital presence. Security posture is strong with HTTPS enforced, appropriate security headers, and a comprehensive cookie consent mechanism, although explicit security policies and incident response information are not publicly disclosed. Overall, the website is professional, user-friendly, and compliant with GDPR requirements, with room for improvement in transparency around security and vulnerability disclosures.

H

HelloPrint

helloprint.com

0

HelloPrint is a large, well-established e-commerce marketplace specializing in customized print products and merchandise, serving a global audience including SMBs, creative entrepreneurs, non-profits, and corporates. The company operates a sophisticated platform connecting customers with a network of over 300 manufacturers across 31 countries, emphasizing local production to reduce costs and carbon footprint. Their market position is strong, supported by certifications such as B Corp and FSC, and a large customer base exceeding 650,000 users. Technically, HelloPrint leverages modern web technologies including Webflow CMS, Snipcart for e-commerce, and multiple analytics and tracking tools such as Google Analytics, Facebook Pixel, and TikTok Pixel. The website is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Hosting appears to be via Cloudflare, enhancing delivery speed and security. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data, but lacks explicit security headers and published security policies. The absence of privacy and cookie policies on the analyzed page is a compliance gap, especially under GDPR. WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency, though the business legitimacy is supported by strong branding and certifications. Overall, HelloPrint presents a professional and trustworthy online presence with a mature technical infrastructure. Strategic improvements in privacy compliance, security policy transparency, and domain registration clarity would enhance their security posture and trustworthiness further.

B

Baxter

baxter.nl

0

Baxter is a leading global healthcare company with a strong focus on lifesaving and life-extending innovations. The company offers a broad portfolio of products and services targeting patients and healthcare professionals, including hospital care, nutritional care, surgical care, and kidney care. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, primarily targeting Dutch-speaking audiences in the Netherlands. Technically, the site is built on Drupal 10, uses modern video streaming technologies, and implements cookie consent mechanisms, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained, supporting Baxter's market position as a reputable healthcare provider.

H

Hillrom

hillrom.nl

0

Hillrom is a leading enterprise in the healthcare technology sector, specializing in medical equipment and connected care solutions for hospitals and healthcare providers. The company operates globally with a strong presence in the Netherlands and is a subsidiary of Hill-Rom Holdings, Inc. Their website reflects a professional and comprehensive digital presence, targeting healthcare professionals and institutions with a broad portfolio of products and services aimed at improving patient outcomes and clinical efficiency. Technically, the website leverages modern technologies including Adobe Experience Manager, React.js, and robust analytics tools such as Matomo and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement, security headers, and form validation, although explicit security policies and incident response details are not publicly disclosed. Overall, the website demonstrates high trustworthiness and compliance with GDPR, supported by clear privacy and cookie policies with consent mechanisms.

T

T-Tape Company B.V.

turbocast.eu

0

T-Tape Company B.V. is a specialized manufacturer and developer of low-temperature thermoplastics for medical and veterinary applications, serving a global market for nearly 30 years. Their product focus includes solutions for nuclear medicine and orthopedics, positioning them as experts in medical thermoplastics with a strong European presence. The company maintains ISO 13485:2016 certification, underscoring their commitment to quality and regulatory compliance in healthcare manufacturing. Technically, the website employs a traditional web stack including jQuery, Bootstrap, and Google Analytics, with moderate performance and basic mobile optimization. While the site is professionally designed with clear navigation and relevant content, it lacks modern security headers and explicit privacy and cookie policies, which are important for compliance and user trust. Analytics usage is moderate, relying on Google services without visible advanced privacy controls. From a security perspective, the site uses HTTPS (implied by URLs) but does not demonstrate advanced security best practices such as CSP or HSTS headers. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns with the business claims, showing consistency and legitimacy. However, the absence of privacy and cookie policies and security headers suggests room for improvement in compliance and security posture. Overall, the website is professional and trustworthy with a solid business foundation but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

Push Braces is a specialized orthopaedic company focused on the development and distribution of braces designed to support joint injuries and chronic disorders. Established in 1986, the company leverages its expertise in orthopaedics to provide innovative products that enhance mobility and reduce pain. The website reflects a mature business with a clear market position in healthcare, targeting both patients and healthcare professionals. The product range is well-categorized and supported by educational content and research insights. Technically, the website is built on a modern CMS platform (Telerik Sitefinity) and uses contemporary web technologies including Bootstrap and Font Awesome, ensuring a responsive and user-friendly experience. The presence of multiple analytics and marketing tools indicates a data-driven approach to customer engagement. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and explicit cookie consent mechanisms, which are recommended for enhanced compliance and protection. Overall, the domain WHOIS data is privacy-protected, which is common for .eu domains, but the website's professional presentation and consistent contact information support its legitimacy. Strategic recommendations include improving privacy compliance, publishing security policies, and implementing security headers to strengthen the security posture.

K

Koninklijke Nederlandse Organisatie van Verloskundigen

knov.nl

0

The Koninklijke Nederlandse Organisatie van Verloskundigen (KNOV) operates as the professional association for midwives in the Netherlands, providing comprehensive support including professional development, advocacy, education, and quality assurance in maternity care. The website reflects a well-established organization with a clear focus on serving its members and the broader healthcare community. The content is relevant, professionally presented, and targeted primarily at midwives and healthcare professionals. The organization maintains a strong market position as the leading body for midwives in the country. Technically, the website employs a moderate technology stack including jQuery, Bootstrap, Google Tag Manager, and a chat widget for user engagement. The site is mobile-optimized with good navigation and SEO practices, although some technical debt is noted with the use of an outdated jQuery version. Performance is moderate, and accessibility features are basic but present. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms, reflecting compliance with GDPR. However, the absence of explicit security policies, incident response contacts, and security.txt files indicates room for improvement in transparency and readiness. The use of an older JavaScript library introduces a minor vulnerability risk. No critical security issues were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations. Strategic recommendations include updating third-party libraries, publishing detailed security and incident response policies, and enhancing security headers to strengthen the security posture and user trust.

H

Hanze Hogeschool Groningen

hanze.nl

0

Hanze Hogeschool Groningen is a well-established higher education institution in the Netherlands, offering a broad portfolio of academic programs, research initiatives, and professional collaborations. The website reflects a mature digital presence with comprehensive content targeting students, professionals, and organizations. Technically, the site employs modern web technologies including Google Tag Manager and image optimization services, with good mobile responsiveness and accessibility. Security posture is solid with HTTPS and CSRF protections, though explicit security headers and formal security policies are not evident. Privacy compliance is partial, lacking visible privacy and cookie policies or consent mechanisms. Overall, the site demonstrates high business credibility and professionalism but could improve transparency on privacy and security disclosures.

W

Wendt & Kühn KG

wendt-kuehn.nl

0

Wendt & Kühn KG is a well-established German company specializing in handcrafted wooden figures and music boxes, with a heritage dating back to 1915. The company targets collectors and enthusiasts of traditional craftsmanship, offering a broad assortment of collectible figures, seasonal decorations, and gifts. Their website, localized for the Netherlands, is professionally designed using TYPO3 CMS and incorporates modern web technologies and cookie consent mechanisms. The site is accessible, mobile-optimized, and provides multilingual support through alternate hreflang links. Security posture is solid with HTTPS and cookie consent, though it lacks explicit published security policies or incident response contacts. Overall, the website reflects a trustworthy and credible business with a strong brand presence in the niche market of handcrafted collectibles.

G

GMP+ International

gmpplus.org

0

GMP+ International is a globally recognized non-profit organization providing the world’s largest certification scheme for safe and sustainable animal feed. With over 19,000 certified companies across 90 countries, it plays a pivotal role in ensuring feed safety through its comprehensive certification standards, risk management tools, and training programs. The organization targets companies in the feed chain, certification bodies, and partners, fostering a collaborative approach to feed safety and sustainability. Technically, the website is built on the Umbraco CMS platform, leveraging modern web technologies such as Bootstrap for responsive design, Google Tag Manager for analytics, and Hotjar for user behavior insights. The site demonstrates good performance, excellent mobile optimization, and solid SEO practices, supported by clear navigation and rich content. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, indicating a commitment to privacy compliance. However, there is room for improvement in implementing security headers and publishing explicit security policies or incident response contacts. No vulnerabilities or suspicious content were detected, and the WHOIS data, while limited, does not raise concerns. Overall, GMP+ International’s website reflects a mature digital presence aligned with its mission and market position. Strategic recommendations include enhancing security headers, publishing a formal security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

J

James Hardie Europe

jameshardie.nl

0

James Hardie Europe is a leading manufacturer and distributor of fiber cement facade products, serving construction professionals and homeowners in the Netherlands. The company offers a range of products including Hardie® Panel, Hardie® Plank, and Hardie® Shield, emphasizing sustainability, durability, and aesthetic appeal. The website reflects a mature business with a strong market position and a comprehensive product offering. Technically, the site is built on Kentico CMS using ASP.NET WebForms, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, though dedicated security and incident response policies are not publicly visible. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

I

ING

ing.com

0

ING is a large, established global financial institution of Dutch origin, providing a broad range of banking and financial services with a strong emphasis on sustainability and corporate governance. The website serves multiple audiences including customers, investors, and the general public, offering comprehensive information on corporate strategy, compliance, and sustainability initiatives. The digital infrastructure employs modern web technologies and analytics tools, supporting a professional and accessible user experience. Security posture is strong with HTTPS enforced and CSRF protections, though explicit security headers and incident response contacts could be improved. Overall, the website reflects a mature and credible financial services brand with a high level of professionalism and trustworthiness.

E

Een initiatief van samenwerkende banken

voorkomfraude.nl

0

Voorkomfraude.nl is a Dutch fraud awareness and prevention platform initiated by collaborating banks, aimed at educating the general public about recognizing and preventing various types of fraud. The website offers comprehensive information, including fraud types, educational videos, podcasts, and tools to report fraud. It holds a trusted position in the financial sector within the Netherlands, supported by its consistent branding and professional content. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and EWWW Image Optimizer, ensuring good SEO, accessibility, and performance. The site uses HTTPS with DNSSEC enabled, indicating a strong security foundation. Cookie consent mechanisms and privacy policies demonstrate GDPR compliance, although explicit security and incident response policies are not published. Security posture is solid with no detected vulnerabilities or exposed sensitive data. The site uses Clearsite Security plugin and Google Tag Manager for analytics and tracking, maintaining a balance between user experience and privacy compliance. No WAF or blocking mechanisms interfere with content accessibility. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a reliable resource for fraud prevention education. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure mechanisms to further enhance trust and compliance.

F

FOAMGLAS®

foamglas.nl

0

FOAMGLAS® is a company specializing in cellular glass thermal insulation products, targeting construction professionals and building owners seeking long-term, efficient insulation solutions. The website presents a professional image with consistent branding and multilingual support, indicating an international market presence. The technical infrastructure includes modern web technologies such as Bootstrap CSS, Google Tag Manager, Google Ads, and Visual Website Optimizer for marketing and analytics purposes. The site is mobile-optimized and provides a cookie consent mechanism, reflecting attention to privacy compliance. Security posture is moderate with HTTPS implied but lacking visible advanced security headers or explicit security policies. WHOIS data is unavailable, which slightly reduces trust but does not negate the professional presentation. Overall, the site is functional, secure enough for its purpose, and compliant with basic privacy regulations.

H

Hoefnagels Fire Safety

hoefnagels.com

0

Hoefnagels Fire Safety is a specialized Dutch company focused on fire safety solutions, providing advice, products, and services to protect buildings and people from fire, smoke, and intrusion damage. The company targets architects, contractors, and building owners with a comprehensive approach including proprietary products and certified staff. Their market position is that of a niche expert with a strong brand presence in the Netherlands. Technically, the website uses modern web technologies such as Bootstrap, jQuery, Google Analytics, and Hotjar, indicating a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is moderate; HTTPS is implied but no explicit security headers or privacy policies are present, which are areas for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency but does not negate the professional appearance and business legitimacy of the site. Overall, the website is professional, content-rich, and trustworthy but would benefit from enhanced security and privacy compliance measures.

M

MHB B.V.

mhb.nl

0

MHB B.V. is a well-established Dutch manufacturer specializing in handcrafted steel windows, doors, and facade systems with a heritage dating back to 1667. The company positions itself as a premium provider of thermally broken steel profile systems, targeting architects, builders, and developers seeking high-quality, sustainable steel solutions. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive business information. Technically, the site leverages WordPress CMS with modern libraries such as jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and SEO-optimized experience. Security posture is strong with HTTPS, DNSSEC, and reCAPTCHA integration, though some security headers could be improved. Overall, the site demonstrates good privacy compliance with clear policies and consent mechanisms. The business credibility is reinforced by certifications and transparent contact details.

Multifire International BV is a specialized company based in the Netherlands focusing on fire protection solutions for professional clients in the construction and building safety sectors. Their offerings include fire-resistant coatings for various construction materials, fire sealing products, and fire engineering consultancy services. The website reflects a niche B2B business model targeting professionals requiring fire safety solutions. Technically, the website is built on WordPress using popular page builders and plugins, indicating a moderate level of digital maturity with room for modernization and security enhancements. Security posture is adequate with HTTPS enforced but lacks advanced security headers and public security policies, which could be improved to enhance trust and compliance. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security transparency.

R

REPPEL

reppel.nl

0

REPPEL is a specialist building solutions company based in the Netherlands, focusing on steel plate concrete floor systems, fireproof cladding, and insulation materials such as perlite and vermiculite. The company targets construction professionals and stakeholders, emphasizing service and quality. The website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. Technically, the site uses WordPress with modern plugins and performance optimizations, ensuring good speed and mobile responsiveness. Security posture is solid with HTTPS and reCAPTCHA integration, though explicit security headers and cookie consent mechanisms could be improved. Overall, REPPEL demonstrates a trustworthy and professional online presence aligned with its business domain.

F

Fire Proof BV

fireproof.nl

0

Fire Proof BV is a medium-sized Dutch wholesaler specializing in passive fire prevention products and related training services. The company offers a comprehensive product catalog, technical support, and digital tools including mobile applications, positioning itself as a regional leader in fire safety solutions. The website reflects a professional business model targeting construction and fire safety professionals with a strong focus on product quality and customer support. Technically, the site uses modern web technologies such as jQuery, Bootstrap, and OpenCart CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is well addressed through a comprehensive cookie consent mechanism powered by Cookiebot, aligning with GDPR requirements. Overall, the website is trustworthy, well-branded, and provides clear contact information, although explicit security and incident response policies are not found. Recommendations include adding dedicated security and incident response pages and enhancing accessibility features.

I

ISOPARTNER Nederland

isopartner.nl

0

ISOPARTNER Nederland is a specialized distributor and producer of innovative technical insulation solutions, serving professional clients primarily in the manufacturing, construction, and energy sectors within the Netherlands. The company operates under the parent group IPCOM-Groep and offers a comprehensive range of services including custom and standard insulation products, professional advice, and logistics support. The website is well-structured, professionally designed, and provides clear navigation and multilingual support, reflecting a mature digital presence. Technically, the site is built on Drupal 10 with modern integrations such as Google Tag Manager, Usercentrics CMP for cookie consent, and Google reCAPTCHA for form security. Security posture is solid with HTTPS enforced and anti-bot measures, though explicit security headers and incident response policies are absent. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR. Overall, the website projects high business credibility and trustworthiness.

R

RED Profs

redprofs.com

0

RED Profs is a specialized Dutch e-commerce company founded in 2013, focusing on selling fire-resistant products for installation, construction, and facility professionals. Their website offers a well-structured online shop with clear product categories and emphasizes fast shipping and expert advice. The company maintains a moderate market position within its niche, leveraging WooCommerce on WordPress with modern web technologies and SEO practices. The site is mobile-optimized and uses cookie consent mechanisms to comply with GDPR requirements, although explicit privacy and terms of service pages are missing. Technically, the website is built on a solid WordPress and WooCommerce infrastructure with Elementor for design. It integrates Google Tag Manager for analytics and uses reputable hosting and domain registration services. The site employs HTTPS with a good SSL configuration and some security best practices, but lacks DNSSEC and advanced security headers. No critical vulnerabilities or suspicious content were detected. From a security perspective, the site shows a good baseline with HTTPS and cookie consent but lacks published security policies and incident response contacts, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the business claims, showing a mature domain with consistent registration details. Overall, RED Profs presents a professional and trustworthy e-commerce platform with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen their market credibility and reduce potential compliance risks.

F

Fassawall BV

fassawall.com

0

Fassawall BV is a Netherlands-based company specializing in manufacturing and supplying innovative fire-resistant facade films and related firestop products. Established in 2004, the company holds a strong market position as a trusted provider of certified fire safety solutions for the construction industry, targeting architects, builders, and safety professionals. Their product portfolio includes various firestop membranes, tapes, and barriers certified to high fire safety standards such as Brandklasse A2. Technically, the website is built on a modern WordPress platform with WooCommerce and Elementor, integrating Google Analytics and Tag Manager for marketing insights. The site is well-structured, mobile-optimized, and uses HTTPS with reCAPTCHA for form security. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is solid with no visible vulnerabilities, but could be improved by adding security headers and a vulnerability disclosure policy. Overall, Fassawall demonstrates a professional online presence with good business credibility but should enhance privacy compliance and security transparency.

A

Alprokon

alprokon.com

0

Alprokon is a Dutch manufacturing company specializing in safety door hardware solutions, including fire, smoke, panic, and escape route door components. With over 55 years of experience, it holds a strong market position as a norm in the Netherlands for safe door solutions. The company offers a range of products and services including a webshop, project consultancy, and training academy, targeting professionals in construction and building safety sectors. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the site is built on WordPress with WooCommerce and integrates modern tools like Gravity Forms, Google Analytics, Hotjar, and CleanTalk for spam protection and analytics. Security posture is good with HTTPS enforced and anti-spam measures, though explicit security headers and incident response information are lacking. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is trustworthy and professional but should address domain registration transparency and enhance security disclosures.

W

WEBO

webo.nl

0

WEBO is a medium-sized Dutch company specializing in innovative timber construction products including window frames (kozijnen), timber frame elements (HSB-elementen), and scaffold-free facade elements (Steigerloos®). The company targets professionals in construction such as contractors, housing corporations, advisors, and architects. Their business model focuses on B2B manufacturing and supply with a strong emphasis on innovation and BIM integration. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress with modern plugins and tools such as Yoast SEO, WPML for multilingual support, and LiteSpeed Cache for performance. It uses various marketing and analytics tools including HubSpot, Google Tag Manager, Visual Website Optimizer, and Leadinfo. The site is mobile-optimized and performs well with fast loading times. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks explicit security headers and published security or incident response policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. The domain registration is consistent with the business profile, indicating legitimacy. Overall, WEBO's digital presence is strong with room for improvement in security best practices and privacy compliance. Strategic recommendations include implementing security headers, adding a cookie consent banner, publishing security policies, and maintaining regular audits of third-party scripts.

S

Stichting Register Montage Expert Brandveiligheid (MEB)

meb-register.nl

0

The Stichting Register Montage Expert Brandveiligheid (MEB) operates as an independent non-profit organization focused on enhancing and certifying the quality and expertise in the installation of fire safety products in the Netherlands. Their market position is well-established within the Dutch construction and fire safety sector, supported by industry partnerships and certifications. The website serves as an informational and certification portal targeting professionals such as installers, installation companies, building owners, and educational institutions. Technically, the website is built on the Jimdo Creator CMS platform, utilizing standard web technologies including jQuery and third-party widgets from POWr.io. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are lacking. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, improvements could be made by adding explicit security headers and publishing a security policy or incident response contacts. Privacy compliance is well addressed with a clear privacy policy and cookie management. Overall, the website is professional, trustworthy, and aligned with its business mission. The risk level is low, but strategic enhancements in security transparency and technical hardening would further strengthen its posture.

W

Witlox Brandveiligheid

witlox-brandveiligheid.nl

0

Witlox Brandveiligheid is a specialized Dutch consultancy firm focusing on fire safety and prevention, offering expert advice, building inspections, project guidance, and advanced fire detection systems. Established in 2014, the company leverages over 30 years of expertise and a broad network to serve building owners, VvEs, contractors, and installation companies. The website reflects a professional and trustworthy business with comprehensive service descriptions and client testimonials. Technically, the site is built on WordPress with the Avada theme, optimized for performance and SEO, and uses modern technologies including Google Analytics and Tag Manager. Security posture is strong with HTTPS and DNSSEC enabled, though improvements can be made in cookie consent and security policy transparency. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

Caspar de Haan

caspardehaan.nl

0

Caspar de Haan is a well-established Dutch company specializing in real estate maintenance and renovation, with a heritage spanning nine generations since 1749. The company focuses on sustainable property management and offers services tailored to property owners and real estate managers. Their market position is strong within the Netherlands, supported by a professional website and active social media presence. Technically, the website is built on WordPress, leveraging common SEO and analytics tools such as Yoast SEO, Google Tag Manager, and Facebook Pixel. The site is hosted by Hostnet B.V., a reputable Dutch hosting provider, and employs HTTPS with DNSSEC for secure communications. Security posture is good with no critical vulnerabilities detected, but there is room for improvement in implementing additional security headers and publishing formal security policies. Privacy compliance is currently weak, lacking explicit privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency.

G

GND Garantiedeuren

gnd.nl

0

GND Garantiedeuren is a well-established Dutch umbrella organization representing leading wooden door manufacturers, focusing on guaranteeing quality and optimal door performance in areas such as fire resistance, smoke protection, insulation, soundproofing, and burglary resistance. The website reflects a professional presence with clear business focus and a medium-sized organizational footprint founded in 1998. Technically, the site is built on WordPress with modern plugins for SEO, performance, and user experience, including Google Analytics and Hotjar for analytics and user behavior tracking. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is a notable gap, with no visible privacy or cookie policies or consent mechanisms, which could pose regulatory risks. Overall, the domain registration data supports the legitimacy and trustworthiness of the business. Strategic improvements in privacy compliance and security policy transparency are recommended to enhance trust and regulatory adherence.

BDC Enschede is a specialized small business based in the Netherlands focusing on the design, manufacturing, installation, and maintenance of fire-resistant doors and related fire safety products. The company targets organizations and businesses requiring fire safety solutions, positioning itself as a niche specialist in this sector. The website reflects this focus with detailed product categories and service offerings. Technically, the site is built on WordPress with common plugins such as Yoast SEO and uses Google Analytics for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is adequate with HTTPS enabled but lacks important security headers and visible privacy or cookie policies, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

Berkvens is a Dutch company specializing in the manufacturing and supply of doors, frames, and related hardware products, targeting contractors, architects, project developers, trade partners, and private individuals. The company emphasizes sustainable and high-quality interior doors and frames with comprehensive service concepts for residential and utility construction. The website reflects a mature business with a domain registered since 1997 and a consistent brand presence. Technically, the website uses modern tools such as Google Tag Manager, Cookiebot for consent management, Microsoft Clarity for analytics, and Vimeo for video content. The site is built on Symfony framework and hosted under a reputable registrar. Security posture is generally good with HTTPS enabled and no exposed sensitive data, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is basic with cookie consent but no explicit privacy policy or terms of service found in the provided content. Overall, the website is professional, well-structured, and trustworthy, though it would benefit from enhanced privacy and security disclosures.