Security Directory

J

Jaycom

jaycom.se

0

Jaycom is a Swedish SaaS provider specializing in comprehensive software solutions for the insurance industry, offering products such as Leo (a CRM for insurance brokers) and Focus (an insurance system for life and property insurance). The company has been operating since 2001, targeting insurance brokers and companies with tailored digital tools. The website reflects a small but focused business with consistent branding and relevant content for its niche market. Technically, the site uses a custom CMS with standard web technologies like JavaScript and CSS, and it is served over HTTPS with a valid SSL certificate, indicating a secure connection. However, the site lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and enhanced security posture. The absence of WHOIS data for the queried domain raises some concerns about domain registration transparency, though the website content and business information appear legitimate. Overall, the site demonstrates moderate digital maturity with room for improvement in privacy compliance, security best practices, and richer business information disclosure.

S

Sharpfin

sharpfin.com

0

Sharpfin is a Swedish-based company offering an all-in-one SaaS wealth management platform designed to streamline operations for wealth managers, fund companies, and family offices. The platform emphasizes reducing operational costs, increasing revenue, and enhancing client onboarding and interactions. The company positions itself as a forward-thinking technology provider in the finance sector with a scalable and compliant solution. The website is professionally designed, mobile-optimized, and uses HubSpot CMS along with modern marketing and analytics tools. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not published. The absence of WHOIS data is a notable anomaly, but the website's professionalism and trust indicators mitigate some concerns. Overall, Sharpfin presents as a credible and modern SaaS provider in the wealth management industry.

M

Modular Finance

mfn.se

0

MFN.se is a Nordic-focused financial news feed platform operated by Modular Finance, established in 2015. It aggregates press releases and financial news primarily for investors and analysts interested in Nordic markets. The platform offers filtering by language, sector, and type, and supports user login via Twitter (X) OAuth and email verification. The website is professionally designed with consistent branding and good content relevance, targeting financial professionals and companies in the Nordic region. Technically, the site uses modern JavaScript, Google Analytics, and Cloudflare DNS, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and no exposed sensitive data, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is basic with a privacy policy and cookie consent banner present. No explicit security or incident response policies are found. Overall, the domain registration is consistent and trustworthy, matching the business profile and geographic focus.

T

Tydliga AB

tydliga.se

0

Tydliga AB is a Swedish intermediary organization specializing in providing clear and professional advice on insurance and investment products. Positioned as a leading entity in Sweden's financial advisory sector, Tydliga supports independent insurance and investment advisors with procurement, education, compliance, and administrative services. The company emphasizes customer-centric, tailored solutions for both private individuals and businesses. Technically, the website is built on a custom CMS with JavaScript and uses modern analytics tools like Plausible and Google Analytics. The site is well-structured, mobile-optimized, and secured with HTTPS, although it lacks some security headers and formal privacy and terms of service pages. Security posture is solid with no evident vulnerabilities, but improvements in compliance documentation and security headers are recommended. Overall, the website reflects a professional and trustworthy business with a moderate to high digital maturity level.

M

Millistream AB

millistream.com

0

Millistream AB is a Sweden-based financial market data provider established in 2008, specializing in delivering real-time and historical market data, news, and corporate information from major global exchanges such as Nasdaq, NYSE, Deutsche Börse, and London Stock Exchange. The company targets financial institutions including banks, brokers, asset managers, and media companies, primarily in the Nordic region but with growing international reach. Their offerings include APIs, widgets, and a web-based trading application called Millistream Trader, designed to provide efficient and intuitive market views. Technically, the website is built on WordPress with the Enfold theme and leverages modern web technologies including jQuery, Google Analytics, and custom streaming APIs. The infrastructure supports low-latency data delivery via dedicated leased lines and cloud presence on AWS, indicating a mature and scalable technical setup. The site is mobile optimized and SEO friendly, though performance is moderate. From a security perspective, the site uses HTTPS and implements GDPR-compliant cookie consent mechanisms. However, it lacks publicly available privacy policies, terms of service, security policies, and incident response contacts, which are important for compliance and trust. No critical vulnerabilities or exposed sensitive data were detected, but security headers are not explicitly present, and no vulnerability disclosure policy is found. Overall, Millistream presents a professional and credible online presence with solid business and technical foundations. To enhance trust and compliance, it is recommended to publish comprehensive privacy and security policies, provide clear contact channels for security incidents, and implement additional security headers and disclosure mechanisms.

M

Morningstar, Inc.

morningstar.se

0

Morningstar Sverige is a localized Swedish website of Morningstar, Inc., a global financial services company specializing in investment research, fund data, and portfolio management tools. The website offers comprehensive financial content including fund prices, market news, and investment analysis targeted at both private investors and financial professionals in Sweden. The business model is primarily based on subscription services and advertising revenue, supported by a strong brand presence and consistent content quality. The site is well-established with a domain age dating back to 2000, reflecting a mature market position. Technically, the website employs a modern technology stack including jQuery, Bootstrap, New Relic monitoring, and OneTrust for cookie consent management. It integrates multiple third-party analytics and marketing tools such as Google Analytics, Google Tag Manager, and Qualtrics feedback modules. The site is hosted under a reputable registrar with DNS services from UltraDNS and NS1, though DNSSEC is not enabled. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements several security headers, though some headers like Content-Security-Policy could be more explicitly defined. The cookie consent mechanism is robust and GDPR compliant, providing users with granular control over cookie categories. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, indicating a legitimate and trustworthy online presence. Overall, Morningstar Sverige demonstrates a strong security posture, good privacy compliance, and a professional digital presence. Recommendations include enabling DNSSEC, enhancing security headers, and maintaining regular audits of third-party scripts to mitigate potential risks. The site provides a reliable and user-friendly platform for investment research and financial data in the Swedish market.

Saltisdata IT-Support is a small Swedish IT service provider specializing in home and business IT support primarily in Stockholm. With over 10 years of experience, they offer a broad range of services including Apple and Windows support, networking, smart home installations, and general IT consultation. Their business model focuses on on-site visits and remote assistance, targeting private individuals and companies. The website is professionally designed using WordPress and includes SEO optimizations and structured data, but lacks privacy and cookie policies, which may affect compliance. Technically, the site uses common WordPress plugins and themes, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and anti-spam measures but lacks DNSSEC and security headers, indicating room for improvement. Overall, the domain registration data supports legitimacy and trustworthiness. Strategic recommendations include adding privacy and cookie policies, enabling DNSSEC, and implementing security headers to enhance security and compliance.

F

Fondo Solutions AB

fondo.se

0

Fondo Solutions AB is a Swedish fintech company specializing in providing a cloud-native investment platform and API that enables financial and non-financial partners to integrate mutual fund investments seamlessly into their products and user journeys. The company positions itself as a market leader in Sweden with strategic partnerships such as Sharpfin, offering a modern, scalable, and compliant infrastructure for investment services. Their business model focuses on API-first solutions, digital onboarding, automated order execution, and regulatory compliance, targeting wealth managers, banks, fund companies, and other financial service providers. Technically, Fondo employs modern web technologies including htmx.org, Alpine.js, and Flowbite, hosted on Google Cloud infrastructure as indicated by DNS records. The website is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital presence. SEO practices are solid with comprehensive meta tags and Open Graph data. From a security perspective, the site uses HTTPS and modern libraries without visible vulnerabilities. However, it lacks DNSSEC, security headers, and explicit security or incident response policies, which are areas for improvement. Privacy compliance is good with a clear privacy policy and terms of service, but the absence of a cookie consent mechanism is a notable gap. Overall, Fondo demonstrates a strong business credibility and technical maturity with a high trustworthiness level. Strategic recommendations include enhancing DNS security, implementing security headers, adding cookie consent, and publishing vulnerability disclosure information to further strengthen security posture and compliance.

X

Xcent Asset Management AB

xcent.se

0

Xcent Asset Management AB operates the Xcent Multi-Strategy fund, a fund of hedge funds focused on delivering stable absolute returns with low correlation to the stock market. The company targets investors seeking diversified hedge fund exposure primarily within Europe. The website is built on WordPress using Elementor and Gravity Forms, featuring modern web technologies and a responsive design. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, though some security headers are missing. Privacy and cookie policies are present, indicating GDPR awareness, but cookie consent mechanisms could be improved. Contact information is clearly provided, enhancing business credibility.

B

Brobacke Global Allokering

brobacke.se

0

Brobacke Global Allokering is a Swedish asset management entity specializing in a quantitative global macro investment strategy. Their fund integrates data from global and sector-based equity indices with macroeconomic data to deliver absolute returns with low correlation to traditional equity markets. The company targets both institutional and retail investors through multiple Swedish fund distribution platforms such as Alpcot, SAVR, Nordnet, Avanza, and Fondo. The website is built on WordPress using Elementor and Yoast SEO, reflecting a modern and professional digital presence with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. No blocking or WAF challenges were detected, and domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, though improvements in security transparency and contact information availability are recommended.

Nordic Bridge Fund is a specialized real estate direct lending fund focusing on the Nordic SME market, managed by Alfakraft Luxembourg S.A. SICAV. The fund aims to provide investors with stable returns by offering collateral-backed financing solutions, addressing a financing gap in the Nordic real estate sector. The website presents a professional image with clear business information and investment details, targeting investors interested in alternative real estate financing. Technically, the site is built on WordPress using modern page builder tools, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies, representing compliance and security improvement opportunities. Overall, the website is credible and functional but would benefit from enhanced privacy compliance and security best practices.

F

Fastighetsräntefonden

fastighetsrantefonden.se

0

Fastighetsräntefonden is a Swedish alternative investment fund specializing in secured real estate loans across Sweden. The fund targets medium and smaller real estate actors by providing financing solutions where traditional bank financing has become restrictive due to regulatory changes such as Basel III. The website is professionally designed using WordPress with modern plugins and frameworks, offering a good user experience and mobile optimization. However, the site lacks critical privacy and cookie policies, which impacts GDPR compliance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but missing security headers and incident response information reduce the overall security maturity. Tracking technologies like Google Tag Manager and Facebook Pixel are used without visible consent mechanisms, indicating privacy compliance gaps. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is functional and credible but requires improvements in privacy compliance and security best practices.

S

Serious Fun

serious-fun.se

0

SeriousFun AB is a Swedish innovation consultancy specializing in open innovation and IoT-enabled product development. Founded in 2012 by Martin Fridh and Jim Myrick, the company operates with a unique model combining startup agility and corporate experience, serving medium to large enterprises globally. Their services include innovation seminars, ideation workshops, innovation tours, and external R&D teams, supported by a global partner network. The website reflects a professional and consistent brand with good content quality and clear business focus. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, incorporating modern SEO practices and Google Analytics for tracking. Security measures include HTTPS and Google reCAPTCHA v3 on forms, though additional HTTP security headers could enhance protection. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. The domain registration details align well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security headers are recommended to strengthen trust and regulatory adherence.

S

Spotify AB

lifeatspotify.com

0

Spotify AB operates a globally recognized audio streaming platform and maintains a dedicated careers website to attract talent worldwide. The site emphasizes company culture, diversity, and inclusion, showcasing job opportunities across multiple locations. The technical infrastructure leverages modern web technologies including React and Next.js, ensuring a fast, responsive, and accessible user experience. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a mature, professional digital presence aligned with Spotify's market leadership in technology and media.

A

ASSA ABLOY

cardo.com

0

ASSA ABLOY is a leading global supplier of intelligent access solutions, with a strong market position and a comprehensive portfolio of security and access products. The company targets investors, customers, and media with detailed financial reports, press releases, and corporate communications. The website demonstrates a mature digital infrastructure using modern technologies such as React and Adobe Experience Manager, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security and incident response policies are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a professional and trustworthy corporate presence with consistent branding and comprehensive content.

I

Iptor Sweden AB

iptor.com

0

Iptor Sweden AB operates the website iptor.com, offering the Iptor Unified Platform, an ERP solution tailored for distribution, manufacturing, and warehousing industries. The company positions itself as a trusted provider with over 4,300 installations, delivering flexible deployment options and advanced functionalities to streamline business operations. The website is professionally designed, content-rich, and optimized for SEO and user experience. Technically, the site leverages WordPress with Elementor, WP Rocket, and Borlabs Cookie for performance and compliance. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, though explicit incident response contacts and vulnerability disclosure policies are absent. Overall, the domain registration aligns with the business claims, supporting legitimacy and trustworthiness.

D

Diaverum

diaverum.com

0

Diaverum is a global healthcare provider specializing in renal care, operating a large network of clinics across multiple continents. Their website reflects a mature and professional organization with a strong focus on patient-centric care and digital innovation. The company offers key services such as haemodialysis, peritoneal dialysis, kidney transplant support, and patient mobility programs like d.HOLIDAY. Technically, the website employs modern web technologies including jQuery, DataTables, Google Tag Manager, and Microsoft Application Insights, ensuring good performance and analytics capabilities. Privacy and cookie consent are managed comprehensively using Cookiebot with TCFv2.2 compliance, indicating a strong commitment to GDPR and user privacy. Security posture is good with HTTPS, Content Security Policy, and no visible vulnerabilities, though some additional security headers and explicit incident response policies could enhance trust further. Overall, the website is well-designed, accessible, and trustworthy, supporting Diaverum's position as a leading renal care provider.

A

Alfakraft Fonder AB

alfakraft.se

0

Alfakraft Fonder AB is a Swedish financial services company specializing in capital and fund management, targeting institutions, companies, and private individuals. Their business model centers on offering high-quality portfolio management and trading strategies across multiple asset classes, aiming for good risk-adjusted returns. The website presents a professional image with clear descriptions of their funds and services, supported by links to fund fact sheets and prospectuses, indicating transparency and regulatory compliance. Technically, the site is built on WordPress using the Uncode theme and several plugins, including privacy management and analytics tools. The infrastructure supports HTTPS with good SSL configuration and moderate performance. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though security headers and explicit security policies are absent. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information is clearly provided, enhancing business credibility. Overall, Alfakraft demonstrates a mature digital presence suitable for its niche in financial services, though improvements in privacy and security disclosures are recommended.

I

Internet Vikings

internetvikings.se

0

Internet Vikings is a specialized hosting provider focusing on iGaming and sportsbook operators, with a strong presence in 24 U.S. states and multiple international markets including Europe, Canada, and Latin America. Founded in 2008 and headquartered in Sweden, the company offers a comprehensive suite of hosting services including cloud hosting, bare metal servers, colocation, and disaster recovery. Their business model emphasizes licensed in-state hosting solutions tailored to the regulatory requirements of the gaming industry, supported by 24/7 customer service and scalable infrastructure. Technically, the website is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and security measures such as HTTPS, Cloudflare DDoS protection, and Google reCAPTCHA v3. The company demonstrates digital maturity with good performance, mobile optimization, and accessibility features. Their infrastructure includes VMware partnerships and multiple global data centers, ensuring high availability and compliance. From a security perspective, Internet Vikings maintains a strong posture with ISO 27001 certification, advanced DDoS protection, and secure form implementations. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear privacy and cookie policies including consent mechanisms. However, no explicit incident response or vulnerability disclosure information was found. Overall, Internet Vikings presents a trustworthy, professional, and well-secured online presence suitable for regulated iGaming and sportsbook operators. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing incident response contact visibility, and adding terms of service to further strengthen compliance and user trust.

T

Time Care Ltd (An RLDatix Company)

timecare.se

0

Time Care Ltd, operating under the RLDatix brand, provides cloud-based workforce management and staffing optimization solutions primarily targeting Swedish municipalities, regions, and commercial welfare organizations. The company is positioned as a market leader in staffing optimization with over 30 years of experience, offering products such as Time Care Planering, Pool, and Cloud, alongside professional services. The website reflects a mature digital presence with professional design, clear navigation, and integration with marketing and analytics platforms like HubSpot and Marketo. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. The domain uses privacy protection in WHOIS, which is common and justified for this business type. Overall, the website demonstrates good business credibility and technical implementation, with room for improvement in privacy transparency and accessibility.

S

Svenska Spel

svenskaspel.se

0

Svenska Spel is Sweden's state-owned gambling operator offering a wide range of gaming products including sports betting, casino games, and lottery products. The website is professionally designed, targeting Swedish users with clear segmentation between sports/casino and lottery games. The company maintains a strong market position as the leading national gambling operator with a large user base. Technically, the site uses modern web technologies, including JavaScript libraries, analytics tools, and cookie consent mechanisms, ensuring good performance and compliance with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly available. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

The website ilac.se currently serves as a parked domain page managed by Websupport, a major European web hosting and domain registration provider. The page contains no active business content and primarily promotes Websupport's domain registration services. The target audience appears to be individuals or businesses interested in registering or managing domains within Europe. The business model is focused on domain registration and web hosting services, with Websupport positioned as a leading provider in this sector. From a technical perspective, the site uses standard HTML, CSS, and JavaScript with assets served from Websupport's CDN infrastructure. The page is mobile responsive and loads efficiently, but lacks advanced SEO and accessibility features. There is no detected CMS or complex frameworks, indicating a simple static page setup. Security posture is minimal; no HTTPS status or security headers were detected in the provided data, and no privacy or cookie policies are present. The site does not collect user data beyond a domain search form that does not submit sensitive information. No incident response or security contact information is provided. Overall, the security maturity is low, with recommendations to implement HTTPS, security headers, and privacy compliance measures. The domain is privacy protected in WHOIS, which is typical for parked domains. No suspicious patterns were found, but the lack of active content and contact details limits trustworthiness. The overall risk is low for visitors but the site offers no business or security assurances. Strategic improvements should focus on transparency, security, and compliance to enhance credibility.

S

Scout Gaming Group AB

scoutgaminggroup.com

0

Scout Gaming Group AB is a well-established B2B provider specializing in daily fantasy sports and betting solutions, holding a leading market position in Europe with a unique liquidity network. The company serves major online operators and is licensed by reputable authorities including the Malta Gaming Authority and the UK Gambling Commission. Their website reflects a professional business model targeting B2B clients in the gaming and betting industry. Technically, the site uses modern frontend technologies such as Bootstrap and jQuery, with good mobile optimization and clear navigation, though some accessibility features could be improved. Security posture is solid with ISO 27001 certification and cookie consent mechanisms, but lacks explicit incident response contacts and vulnerability disclosure pages. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

A

Authority

authority.se

0

Authority is a Swedish digital full-service agency specializing in digitalization and accessibility solutions. They serve a diverse clientele including government agencies and non-profit organizations, positioning themselves as experts in delivering digital business value through strategy, design, development, and optimization services. Their website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site leverages modern cloud infrastructure on Microsoft Azure, privacy-focused analytics via Matomo, and robust cookie consent management through CookieTractor, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and secure cookie practices, although explicit security headers and a public security policy are absent. Overall, the site is trustworthy, compliant with GDPR, and well-optimized for accessibility and SEO.

T

Thunderkick

thunderkick.com

0

Thunderkick is an independent casino game supplier founded in 2012 and headquartered in Stockholm, Sweden. The company specializes in developing innovative and creative casino games, targeting online casino operators and players. Their market position is that of a dynamic and growing player in the gaming technology sector, supported by multiple gambling licenses from reputable authorities. The website reflects a professional and modern digital presence with strong branding and clear business messaging. Technically, the site is built on WordPress with modern libraries and integrations such as Cookiebot for consent management, Google Tag Manager, and reCAPTCHA for form security. The security posture is solid with HTTPS enforced, consent mechanisms in place, and no visible vulnerabilities, although some security headers could be improved. Overall, the site demonstrates good compliance with GDPR and other privacy regulations, with detailed cookie declarations and privacy policies. The domain registration data aligns well with the company's claims, supporting legitimacy and trustworthiness.

I

ID24

id24.com

0

ID24 is a Sweden-based company specializing in second display software solutions that integrate with CRM systems to enhance onboarding, data collection, and customer engagement primarily in retail and hospitality sectors. Established in 2009, the company has a solid international presence with over 3000 installations across 20 countries. Their offerings include software for second displays, onboarding solutions for shoppers and employees, and tools to promote mobile app downloads and gather customer feedback. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress using modern themes and plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy and cookie policies, indicating room for improvement in compliance and security transparency. Contact information is limited to phone numbers and Twitter social media links, with no emails or physical addresses explicitly provided. Overall, the website and business appear legitimate and established, but privacy compliance and security best practices should be enhanced to improve trust and regulatory adherence.

G

Gaming Corps

gamingcorps.com

0

Gaming Corps is a technology-focused company specializing in the development and supply of niche video games and premium casino games for the iGaming industry. Founded in 2019 and headquartered in Sweden with a licensed subsidiary in Malta, the company positions itself as a rapidly growing leader in the gaming sector, targeting experienced gamers and iGaming operators. Their business model centers on B2B content creation and distribution, supported by regulatory compliance evidenced by their Malta Gaming Authority license. The website infrastructure is built on WordPress with modern plugins such as Yoast SEO, Elementor, and WPBakery, indicating a mature digital presence. Performance and mobile optimization are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and age verification implemented, but could be improved with additional security headers and explicit incident response documentation. Overall, the site demonstrates high professionalism and trustworthiness, with clear business information, active social media channels, and regulatory transparency. No critical security or privacy issues were detected, though cookie consent mechanisms are absent. Strategic recommendations include enhancing security headers, adding cookie consent, and publishing security policies to further strengthen compliance and trust.

LeoVegas Mobile Gaming Group is a prominent GameTech company specializing in mobile casino gaming and related services. The company operates multiple well-known gaming brands and aims to be the global leader in mobile casino gaming. Their website reflects a mature digital presence with comprehensive content, clear branding, and a focus on responsible gaming. Technically, the site is built on WordPress and leverages modern JavaScript libraries and third-party services such as Vimeo and Google Tag Manager, indicating a robust and modern infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Betsson AB

betssonab.com

0

Betsson AB is a leading Swedish online gaming investment company listed on Nasdaq Stockholm. The company focuses on owning and growing fast-growing online gaming businesses with a strong emphasis on profitable and sustainable growth. Their website is professionally designed, mobile-optimized, and rich in investor-related content including financial reports, governance, and sustainability information. Technically, the site uses Drupal CMS, integrates Google Tag Manager for analytics, and employs Cloudflare for hosting and security. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the website reflects a mature, credible business with a high level of digital maturity and trustworthiness.

H

HAUD Systems AB

haud.com

0

HAUD Systems AB is a specialized provider of SMS messaging security and A2P monetisation solutions targeted at Mobile Network Operators. Established in 2012 and based in Sweden, HAUD offers a suite of services including messaging monetisation, messaging security, and managed monetisation services, leveraging AI-powered tools to protect networks from fraud and maximize revenue. Their market position is that of an independent, trusted partner with a strong focus on telecom operators' needs. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as Google Fonts, Typekit, Google Analytics, Hotjar, and Mailchimp for marketing and analytics. The site is well-optimized for performance and mobile devices, with a good SEO foundation and accessibility features, although some improvements could be made in accessibility compliance. From a security perspective, the site enforces HTTPS, uses CSRF protection cookies, and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, explicit security policies and incident response contact information are not publicly available, which could be improved to enhance trust and compliance. Overall, the website presents a professional and credible digital presence with a strong focus on privacy compliance and user experience. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include publishing detailed security and incident response policies, adding terms of service, and enhancing accessibility to further strengthen the security posture and user trust.

P

Primär

primar.se

0

Primär is a large Swedish facility management company specializing in property services, workplace services, and cleaning. They serve a broad customer base across Sweden including property owners, housing associations, and industries. The company emphasizes a balance between comprehensive service offerings and personalized customer relations. Their website reflects a mature digital presence with modern technologies such as Umbraco CMS, Alpine.js, and integration with Google Tag Manager and Cookiebot for analytics and GDPR compliance. Security posture is solid with HTTPS, CSRF protections, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the website is professional, well-structured, and compliant with privacy regulations, supporting a high trust level for visitors and customers.

LeoVegas Mobile Gaming Group is a prominent player in the mobile casino and iGaming industry, with a strong European footprint and a workforce exceeding 900 employees. The company emphasizes innovation, diversity, and a collaborative culture to maintain its market leadership. Their careers page highlights multiple departments and locations, reflecting a broad operational scope. Technically, the website is built on WordPress and leverages modern JavaScript libraries and Google Tag Manager for analytics and marketing. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, though it lacks explicit security policies and incident response contacts. Overall, the site is professional, well-branded, and trustworthy, with room for improvement in security transparency and accessibility.

K

Kogi Försäljnings AB

kogi.se

0

Kogi Försäljnings AB is a well-established Swedish company specializing in professional kitchen equipment for restaurants and large kitchens, with a history dating back to the 1940s. The company operates primarily in the hospitality sector, offering a range of services including project coordination, interior design, visualization, graphic design, inventory management, delivery, financing, and service support. It holds a strong market position as a leading Nordic player and is part of the Hospitio group, which enhances its credibility and reach. Technically, the website is built on WordPress using the Avada theme and WooCommerce for e-commerce capabilities. It employs common web technologies such as jQuery and integrates Google Analytics and Jetpack Stats for tracking and analytics. The site is moderately optimized for performance and mobile devices, with a good user experience and clear navigation. However, accessibility features are basic, and SEO optimization is at a basic level. From a security perspective, the site uses HTTPS but lacks important security headers and does not provide a security.txt or vulnerability disclosure policy. Privacy and cookie policies are missing, which is a compliance gap, especially under GDPR. Contact information is clearly provided, but no incident response or security policy details are available. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk assessment indicates a legitimate and professional business with a solid digital presence but with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, publishing a security.txt file, and enhancing accessibility and SEO practices.

G

G5 Entertainment AB

g5e.com

0

G5 Entertainment AB operates a comprehensive online platform offering a wide range of free-to-play casual games across multiple platforms including web, mobile (iOS, Android), Windows, Mac, and Kindle Fire. The company is well-established with a domain age consistent with its founding year (2001) and maintains a strong market position as a developer and publisher of casual games such as hidden object, match-3, and mahjong. The website demonstrates a high level of technical maturity, utilizing modern web technologies, analytics, and advertising tools to optimize user experience and marketing effectiveness. Security posture is strong with HTTPS enforced, secure forms, and privacy compliance including GDPR adherence. However, explicit security policies and vulnerability disclosure mechanisms are not publicly available, representing an area for improvement. Overall, the site is professional, trustworthy, and well-optimized for both desktop and mobile users.

Implantica is a healthcare technology company specializing in advanced implantable medical devices, notably the CE marked RefluxStop™ device for acid reflux treatment. The company targets patients, healthcare professionals, and investors, positioning itself as an innovator in implantable medical technologies with a growing product pipeline including implantable eHealth platforms. The website reflects a medium-sized enterprise based in Sweden with a professional and consistent brand presence. Technically, the website uses standard web technologies (HTML5, CSS3, JavaScript) with good mobile optimization and SEO practices. While no specific CMS or hosting provider is identified, the site performs moderately well and includes accessibility basics. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security policies, incident response contacts, and security.txt files, which are recommended for enhanced transparency and vulnerability management. No WAF or blocking mechanisms are detected, allowing full content access. Overall, Implantica's website is trustworthy and professional, supporting its business credibility. Strategic improvements in security policy publication and accessibility would further strengthen its digital maturity and compliance posture.

T

TADA

tadastudio.org

0

TADA is a small creative studio focused on artistic projects such as carvings, lighting designs, candelabra, and goblets. The website serves as a portfolio and showcase platform for these artistic endeavors, targeting art enthusiasts and potential customers interested in handcrafted design pieces. The business operates primarily through an online presence with a niche market focus. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Typekit fonts and a native video player. The site is mobile-optimized and uses HTTPS with HSTS enabled, indicating a good baseline security posture. However, the site lacks explicit privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security-wise, the site benefits from HTTPS and HSTS but does not provide incident response contacts or vulnerability disclosure mechanisms. No security vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies reduces the privacy compliance score. Overall, the website is professionally designed and functional but would benefit from enhanced privacy compliance and clearer business contact information to improve trust and legal standing.

Quickspin AB is a Swedish-based technology company specializing in the development of video slot games and live casino products for the online gambling industry. The company holds reputable licenses from the Malta Gaming Authority and the UK Gambling Commission, positioning itself as a trusted and compliant game provider. Their website reflects a professional and modern digital presence, leveraging WordPress CMS with SEO optimization and integrated analytics tools. The company targets online casino operators and players, offering a portfolio of games with frequent releases and a growing live casino vertical. Security practices include HTTPS enforcement and age verification mechanisms, supporting regulatory compliance and user safety. Overall, Quickspin demonstrates a mature business with strong market positioning and digital infrastructure.

H

Hero Gaming Sweden AB

herogaming.com

0

Hero Gaming is a Swedish-based online casino operator founded in 2013, known for pioneering gamified casino experiences with its flagship brand Casino Heroes. The company operates a multi-brand portfolio targeting online casino players seeking immersive and engaging gaming experiences. The website reflects a mature business with professional design, clear branding, and employee testimonials that enhance trust. Technically, the site is built on WordPress using common libraries such as jQuery, Bootstrap, and Slick Carousel, delivering moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks important security headers and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the domain registration aligns well with the business claims, supporting legitimacy.

B

Betsson Group

betssongroup.com

0

Betsson Group is a leading European iGaming company operating over 20 brands offering casino, sportsbook, and other gaming products across multiple countries. The company is a subsidiary of Betsson AB, a publicly listed entity on Nasdaq Stockholm, reflecting a strong market position and extensive industry experience spanning over six decades. The website targets job seekers and industry professionals, emphasizing career opportunities and responsible gaming initiatives. Technically, the site is built on WordPress with modern SEO and analytics integrations, including Yoast SEO Premium, Google Tag Manager, and Facebook Pixel, ensuring good digital maturity and performance. Security posture is robust, with HTTPS enforced, ISO 27001 certification, and appropriate security headers, though incident response and vulnerability disclosure policies are not explicitly published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, making it a credible and authoritative source in the iGaming sector.

N

NGO Online

ngoonline.net

0

NGO Online is a specialized cloud-based software solution designed for NGOs operating in the international development and humanitarian sectors. The platform offers comprehensive program, project, and grant management capabilities, enabling nonprofits to streamline operations, improve collaboration, and ensure compliance. The company positions itself as a trusted partner for NGOs, supported by client testimonials and case studies from reputable organizations. Technically, the website is built on a modern WordPress CMS with Elementor and Slider Revolution, leveraging popular web technologies and fonts for a professional user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and cookie consent mechanisms are absent. Overall, the website reflects a mature digital presence with good business credibility and technical implementation.

P

Precio Fishbone

preciofishbone.com

0

Precio Fishbone is a Swedish technology company specializing in tailored IT solutions including software development, system integration, and cloud services. The company positions itself as a key partner for digital transformation and innovation, serving businesses seeking modern IT solutions. The website demonstrates a mature digital presence with comprehensive content, including a knowledge hub, case studies, and blog posts, reflecting active engagement and expertise. Technically, the site uses modern frameworks such as Next.js and integrates with Microsoft Azure, Google Tag Manager, and Cookiebot for analytics and compliance. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a professional, trustworthy, and compliant business entity with a solid market position in the technology sector.

H

Hexagon AB

hexagonlive.com

0

Hexagon AB operates a professional and content-rich website promoting its Hexagon LIVE Global Digital Experience 2025 event, showcasing its leadership in precision measurement, autonomy, and innovation technologies. The company targets industry professionals and global business leaders across manufacturing, energy, and transportation sectors. The website is built on modern technologies including React, Next.js, and Sitecore CMS, with strong mobile optimization and accessibility features. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not found. Overall, the site reflects a mature digital presence aligned with Hexagon's enterprise stature and global market position.

A

Atrium Ljungberg

nobelberget.se

0

Nobelberget is a real estate development project by Atrium Ljungberg, focusing on sustainable urban living in the Stockholm area. The website presents detailed information about residential offerings, community features, and ongoing projects, targeting prospective residents and investors. The company holds a strong market position as a leading sustainable urban developer in Sweden. Technically, the website employs modern technologies including Google Tag Manager, Facebook Pixel, HubSpot, and Microsoft Azure services, ensuring robust analytics and marketing capabilities. The site is hosted on Microsoft Azure and uses Episerver CMS, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, CSRF protections, and cookie consent management via Cookiebot, although some security headers could be more explicitly implemented. Privacy compliance is well addressed through Cookiebot and linked privacy policies, supporting GDPR adherence. Overall, the website is professional, trustworthy, and well-structured, with clear contact information and active social media presence.

A

Atrium Ljungberg

al.se

0

Atrium Ljungberg is a leading Swedish real estate company specializing in the development and management of vibrant urban environments across major cities such as Stockholm, Göteborg, Malmö, and Uppsala. The company focuses on creating mixed-use districts that combine office spaces, residential units, retail, and cultural offerings, emphasizing sustainability and innovation. Their market position as one of Sweden's largest publicly listed real estate firms is supported by comprehensive investor relations and a strong brand presence. Technically, the website employs a modern technology stack including jQuery, Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, Cookiebot for consent management, HubSpot for forms and analytics, Microsoft Application Insights for telemetry, and Google reCAPTCHA for form security. Hosting is provided by Microsoft Azure, ensuring robust infrastructure and performance. The site demonstrates good mobile optimization, accessibility, and SEO practices. From a security perspective, the website enforces HTTPS, uses security tokens in forms, and manages cookie consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, suggesting areas for improvement. Overall, the website presents a professional, trustworthy, and compliant digital presence aligned with the company's business objectives. Strategic recommendations include enhancing security transparency, maintaining up-to-date third-party scripts, and expanding privacy disclosures to further strengthen user trust and regulatory compliance.

Long Stay Östersund is a regional information platform focused on promoting extended stays in Östersund, Sweden, targeting remote workers, students, and new residents. The website offers curated information on coworking spaces, housing options, local lifestyle, and guest testimonials to facilitate long-term visits. It partners with regional tourism and government entities to provide comprehensive local insights. Technically, the site is built on WordPress using the Salient theme and WPBakery page builder, with standard web technologies like jQuery and Google Tag Manager for analytics. The site is mobile-optimized with good design and navigation but lacks advanced accessibility features. Security posture is moderate with HTTPS enabled but missing key security headers and policies. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanism. Overall, the site is legitimate and professionally presented but requires improvements in privacy and security practices to meet modern standards.

L

Leva i Östersund

levaiostersund.se

0

Leva i Östersund is a regional informational website focused on promoting living, working, and moving to Östersund, Sweden. It serves as a portal providing job listings, local event information, and resources for new residents. The site is supported by local government entities and partners, positioning itself as a trusted source for regional information. The content is primarily in Swedish with translation options, targeting individuals interested in relocating or engaging with the Östersund community. Technically, the website is built on WordPress using popular plugins such as Yoast SEO for search optimization, WPBakery Page Builder for layout management, and Complianz for GDPR cookie compliance. It integrates Google reCAPTCHA for form security and uses Vizzit Analytics for visitor tracking. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, the website enforces HTTPS and employs reCAPTCHA to protect forms. However, it lacks some recommended security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy linked to an official municipal domain. Overall, the website presents a low-risk profile with a good balance of content quality, technical implementation, and privacy compliance. Strategic improvements could include enhancing security headers, adding explicit security policies, and improving accessibility to further strengthen trust and compliance.

O

Office&Print

officeandprint.se

0

Office&Print is a Swedish e-commerce retailer specializing in office products and supplies, serving both businesses and private customers. The website offers a broad product range with a focus on customer service, fast delivery, and price guarantees. The company emphasizes a personalized approach with dedicated contact persons for clients. Technically, the website is built on WordPress with WooCommerce and uses modern tools like WPBakery, Font Awesome, and integrates marketing and analytics services such as Klaviyo and Clerk.io. Security is well-managed with HTTPS, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. The site is accessible, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Overall, the risk profile is low with recommendations to enhance security headers and maintain regular updates.

A

Attendo AB

unika.se

0

Unika, a brand under Attendo AB, specializes in providing personalized support services within the LSS framework in Sweden. The website presents a comprehensive portfolio of services including group homes, short-term housing, service housing, daily activities, and assistance services tailored to individuals with disabilities. The company positions itself as a trusted and expert provider in the healthcare sector, emphasizing individualized care and quality. The site targets individuals needing support, their families, caseworkers, and potential employees. Technically, the website is built on a modern stack including jQuery, Cookiebot for consent management, Google Tag Manager, and Microsoft Application Insights for telemetry. It is hosted on a CMS platform likely Episerver, optimized for mobile and accessibility, and employs structured data for SEO. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and transparent cookie usage.