Security Directory

NEŠKOVIĆ Group is a well-established company based in Bosnia and Herzegovina, specializing in the wholesale and retail of petroleum products, automotive sales and services, hospitality, and retail markets. The company operates multiple subsidiaries including insurance and auto centers, positioning itself as a regional leader with a broad service portfolio. The website reflects a professional digital presence built on WordPress with WooCommerce and other common plugins, offering a good user experience and clear business information. However, the technical infrastructure shows signs of aging with outdated WordPress versions and missing modern security headers. Security posture is moderate with HTTPS enforced but lacking comprehensive security policies or vulnerability disclosures. Privacy compliance is minimal, with no visible cookie consent or GDPR indicators. Overall, the website and business appear legitimate and trustworthy, but improvements in security and privacy compliance are recommended.

N

NESTRO PETROL a.d.

nestropetrol.com

0

NESTRO PETROL a.d. operates the largest network of petrol stations in Bosnia and Herzegovina, managing over 80 retail locations under the NESTRO brand. The company offers various loyalty card programs targeting both individual and corporate customers, enhancing customer retention and engagement. The website reflects a mature business with a clear market position supported by its parent company OPTIMA Grupa d.o.o. The digital presence includes interactive maps, promotions, and news updates, catering to a general audience primarily in the Serbian language with options for Russian and English. Technically, the website utilizes a traditional tech stack including jQuery 1.11.1, Bootstrap, and Google Analytics for tracking, alongside Raygun for error monitoring. While the site is mobile optimized and well-structured, some technical debt is evident due to the use of outdated libraries and lack of modern security headers. The absence of DNSSEC and security policies indicates room for improvement in security posture. Security-wise, the domain is well-established with a consistent WHOIS record and clientTransferProhibited status, indicating domain ownership protection. However, the lack of DNSSEC, security headers, and outdated JavaScript libraries present potential vulnerabilities. No explicit privacy or cookie policies were found, which may impact GDPR compliance. The site does not appear to be blocked or protected by a WAF, allowing full content access. Overall, the website is professional and functional with moderate security and privacy compliance. Strategic improvements in security headers, updated libraries, and explicit privacy documentation would enhance trust and compliance. The business is credible with a strong market presence but should address technical and compliance gaps to reduce risk and improve user trust.

S

Stadtentwässerungsbetriebe Köln, AöR

steb-koeln.de

0

Stadtentwässerungsbetriebe Köln, AöR is a municipal water management and wastewater service provider operating in Cologne, Germany. The organization focuses on wastewater treatment, flood protection, and environmental water body maintenance, serving a broad audience including residents, property owners, and job seekers. Their market position is that of a key public service entity with a medium-sized operational scale. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target groups. Technically, the website employs modern web technologies including React, jQuery, and Matomo analytics, complemented by a robust consent management platform (Usercentrics) ensuring GDPR compliance. Hosting appears stable with reputable nameservers. The site is mobile-optimized and uses HTTPS with good security practices, although some security headers could be improved. From a security perspective, the site demonstrates a solid posture with encrypted connections, privacy-focused analytics, and cookie consent mechanisms. However, it lacks explicit security policies and incident response contacts, which could enhance trust and preparedness. No vulnerabilities or suspicious elements were detected in the content or WHOIS data. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively supports the organization's mission and public service role, with recommendations to enhance security headers and publish formal security policies for further maturity.

I

Infrastruktur Akademie

infrastruktur-akademie.de

0

Infrastruktur Akademie is a German-based educational and networking platform focused on sustainable infrastructure development, particularly in the energy and transportation sectors. The organization offers seminars, events, and lectures tailored to practitioners and professionals in the infrastructure field, fostering a regional community for knowledge exchange and professional growth. The website is well-structured, professionally designed, and targets infrastructure experts, beginners, and experienced professionals from various organizations and municipalities. Technically, the website is built on WordPress using modern themes and plugins such as Astra and Beaver Builder, with Borlabs Cookie managing GDPR-compliant cookie consent. The site employs HTTPS with good SSL configuration and integrates Google Analytics and Google Tag Manager for analytics and marketing purposes. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly detected and could be improved. No vulnerabilities or exposed sensitive data were found. The domain registration data is consistent with the website content, indicating a legitimate and trustworthy entity. Overall, the website presents a low-risk profile with strong compliance to privacy regulations and a professional online presence. Strategic recommendations include enhancing security headers, adding explicit security policies, and providing clearer direct contact information to improve trust and incident response readiness.

U

Umwelt- und Energieagentur Landkreis Karlsruhe

energieagentur-kreiska.de

0

The Umwelt- und Energieagentur Landkreis Karlsruhe (UEA LK) operates as a regional government agency dedicated to implementing the climate goals of the zeozweifrei 2035 initiative for the Karlsruhe district. The website serves as an informational and engagement platform targeting residents and stakeholders interested in environmental and energy sustainability. The agency positions itself as a key regional player in energy and environmental policy implementation, offering consulting and public outreach services. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO and Google Analytics for optimization and analytics. Hosting is provided by PixelX, as indicated by the nameservers. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. Cookie consent mechanisms and a comprehensive privacy policy indicate compliance with GDPR requirements. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers and a published security or incident response policy. No vulnerabilities or suspicious content were detected. The domain registration data is limited but consistent with a government-related entity, hosted on professional infrastructure. Overall, the website presents a professional and trustworthy digital presence for a government environmental agency, with room for improvement in security policy transparency and technical security hardening.

B

Bundesgeschäftsstelle European Energy Award

klima-log.de

0

Klima-Log is a German-language platform managed by the Bundesgeschäftsstelle European Energy Award that showcases municipal climate protection projects. It serves as an informational and collaborative resource for municipalities to research, view, and submit climate-related initiatives. The website is built on TYPO3 CMS and uses modern frontend technologies such as Foundation CSS and jQuery. Hosting is provided by Goneo, a German hosting provider. The site is well-structured, mobile-optimized, and includes a GDPR-compliant cookie consent mechanism. Contact information is clearly presented, enhancing trust and credibility. Security posture is good with HTTPS enforced, though some security headers are missing and no explicit security or incident response policies are published. No tracking or analytics beyond cookie consent are detected, indicating a privacy-conscious approach.

E

EV Freaks GmbH

ev-freaks.com

0

EV Freaks GmbH operates a professional website focused on e-mobility solutions, primarily through their chargEV app that helps users find EV charging stations and provides backend services and datasets for e-mobility businesses. The company positions itself as a niche player in the energy and transportation sectors, targeting EV users and related businesses. The website is well-structured, professionally designed, and regularly updated, reflecting an active and credible business presence. Technically, the site is built using the Jekyll static site generator, hosted on AWS infrastructure, and employs modern web technologies including FontAwesome and Google Analytics. The site is mobile-optimized and SEO-friendly, with good accessibility features. Security-wise, HTTPS is enforced, and domain transfer protections are in place, but DNSSEC is not enabled and security headers are missing, indicating room for improvement. The security posture is solid but could be enhanced by adding explicit security policies, incident response contacts, and cookie consent mechanisms. Privacy compliance is partially addressed with a privacy policy present, but cookie policies and terms of service are absent. No critical vulnerabilities or suspicious patterns were detected, and the WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website presents a trustworthy and professional front for EV Freaks GmbH, with a good balance of content quality, technical implementation, and business credibility. Strategic improvements in security headers, privacy compliance, and transparency would further strengthen their posture and user trust.

B

Bundesgeschäftsstelle European Energy Award

european-energy-award.de

0

The European Energy Award website represents a well-established German program focused on supporting municipalities in achieving greenhouse gas neutrality through structured climate protection initiatives. The site is professionally designed using TYPO3 CMS and modern frontend frameworks, providing clear navigation and relevant content primarily in German. The program targets local governments and offers certification, consulting, and best practice sharing services. Technically, the website is hosted on German name servers, uses HTTPS, and implements a cookie consent mechanism limiting cookies to technically necessary ones, reflecting good privacy compliance. Security posture is solid with HTTPS and no exposed sensitive data, though security headers and incident response information are absent. Overall, the site is trustworthy, with strong government endorsements and no suspicious elements detected.

Süwag is a large regional energy company in Germany specializing in electricity, gas, green energy, and water services. The company operates through multiple subsidiaries including Süwag Vertrieb AG & Co. KG and Syna GmbH, focusing on sustainable energy solutions and regional partnerships. Their website demonstrates a mature digital presence with modern technologies such as Adobe Experience Manager and Usercentrics for consent management. The site is well-designed, mobile-optimized, and provides comprehensive information for customers, partners, and job seekers. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and incident response details are not publicly disclosed. WHOIS data is unavailable, which slightly reduces domain trustworthiness but the professional presentation and certifications support legitimacy. Overall, Süwag presents as a credible and established energy provider with a strong regional focus.

R

Rachuneo Sp. z o.o.

blue.pl

0

Rachuneo Sp. z o.o. operates an online comparison platform focused on helping Polish residential customers reduce their energy and home media bills by selecting optimal offers. The company positions itself as a niche player in the Polish energy sector, offering a user-friendly service to compare and lower household expenses. The website is professionally designed using Webflow CMS and integrates modern marketing and analytics tools such as Google Analytics, Hotjar, Facebook Pixel, and SalesManago, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent mechanisms in place, and no visible vulnerabilities or exposed sensitive data. However, the absence of public WHOIS data due to privacy protection limits domain registration transparency. Overall, the site is trustworthy, compliant with GDPR, and provides clear business and contact information, supporting its legitimacy and professional standing.

G

Gesellschaft für Wirtschaftliche Strukturforschung mbh

gws-os.com

0

Gesellschaft für Wirtschaftliche Strukturforschung mbh (GWS) is an independent, private economic research, corporate, and policy consulting firm based in Germany. Founded in 2008, GWS specializes in economic structure research, energy and climate economics, and global development modeling. Their services target public and private decision-makers, offering empirical analyses, scenario modeling, and policy advice. The company maintains a professional online presence with a well-structured website powered by TYPO3 CMS and hosted by Hetzner Online GmbH. The site features clear navigation, good mobile optimization, and comprehensive content relevant to their sector. Security-wise, the website uses HTTPS and implements cookie consent mechanisms but lacks explicit security policies or incident response contacts. No vulnerabilities or suspicious elements were detected. Overall, GWS demonstrates a solid business and technical foundation with room for enhanced security transparency.

Syna is a large German energy network operator specializing in electricity and gas distribution. The company provides a comprehensive range of services including network operation, connection management, redispatch, electromobility, and partner support. The website is professionally designed, well-structured, and targets energy consumers, businesses, municipalities, and partners. Technically, the site leverages modern web technologies such as Adobe Experience Manager, Cloudflare CDN, and Usercentrics for consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and consent mechanisms in place, though explicit security headers and policies could be improved. No blocking or WAF challenges were detected, allowing full content access and analysis. Overall, the site demonstrates a high level of professionalism and trustworthiness in the energy sector.

P

Pricewise

pricewise.nl

0

Pricewise is a leading independent price comparison platform based in the Netherlands, focusing on energy, insurance, telecom, and financial products. The website targets Dutch consumers seeking to optimize their expenses by comparing offers from various providers. The platform is well-established with a professional design and consistent branding, positioning itself as the largest independent comparison site in its market segment. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Tag Manager and Customer.io, indicating a mature digital infrastructure. However, there is room for improvement in security practices, particularly in implementing security headers and publishing comprehensive privacy and cookie policies. The absence of explicit contact information and incident response details suggests potential gaps in transparency and user trust. Overall, the site is secure with HTTPS and reputable domain registration but would benefit from enhanced privacy compliance and security posture to strengthen user confidence and regulatory adherence.

D

DiNatale Water Consultants

dinatalewater.com

0

DiNatale Water Consultants is a specialized small consulting firm based in Boulder, Colorado, focusing on water resources planning and engineering. Founded in 2009, the company offers expert services in water rights, reservoir management, permitting, and utility planning, targeting municipal and regional water stakeholders. Their market position is that of a niche expert with strong client endorsements and a pragmatic approach rooted in regional water challenges. The website reflects a professional and consistent brand image with clear contact channels and social media presence. Technically, the website is built on WordPress with common plugins like Yoast SEO and jQuery, hosted by Bluehost. The site is moderately performant, mobile-optimized, and SEO-friendly but lacks advanced accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but it lacks DNSSEC and important security headers. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Analytics tools are present but not actively configured. Security-wise, the site shows no signs of active vulnerabilities or malware but could improve by enabling DNSSEC, adding security headers, and implementing privacy policies to meet GDPR and other regulations. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the site is trustworthy and professional but has room for improvement in privacy and security compliance. The risk assessment is moderate with no critical issues detected but some compliance gaps. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and properly configuring analytics to enhance user privacy and security posture.

F

FRIEDRICH SCHARR KG

scharr.de

0

FRIEDRICH SCHARR KG operates a comprehensive energy and services business in Germany, focusing on supplying various energy carriers such as liquefied gas, heating oil, green electricity, pellets, and natural gas, complemented by technical solutions and maintenance services. The company serves a broad audience including private households, commercial enterprises, and industrial clients, positioning itself as a leading independent energy and service provider with a large customer base and workforce. Technically, the website is built on TYPO3 CMS, employs modern JavaScript libraries like Swiper.js, and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is well-structured, mobile-optimized, and SEO-friendly, with comprehensive cookie consent and privacy policies reflecting GDPR compliance. Security posture is moderate with HTTPS usage and cookie consent but lacks explicit security policies or vulnerability disclosures. Overall, the website demonstrates high professionalism, trustworthiness, and business credibility.

S

SCAPO GmbH

scapo.de

0

SCAPO GmbH is a German company specializing in electromobility and photovoltaic solutions, targeting both business and consumer markets interested in sustainable energy. The website currently is under reconstruction but maintains essential contact channels and a cookie consent mechanism compliant with GDPR. The company positions itself as a dedicated partner for sustainable future technologies. Technically, the website is built on WordPress with a modern theme and SEO plugin, hosted on kasserver.com, and includes standard analytics and cookie management tools. Security posture is solid with HTTPS and cookie consent but lacks explicit security policies and headers. Overall, the site is functional but basic in content and design, with room for improvement in security and business transparency.

G

Giritech GmbH

giritech.energy

0

Giritech GmbH is a German company specializing in sustainable e-mobility infrastructure solutions, including electric vehicle chargers, management platforms, and related services. Founded in 2022, the company targets businesses, municipalities, and fleet operators with innovative financing models such as Zero Invest and leasing options. Their market position is supported by partnerships with European market leaders and membership in relevant industry associations. Technically, the website employs common web technologies like jQuery and Bootstrap, with moderate performance and good mobile optimization. Security posture is moderate with HTTPS implied but lacking advanced security headers and DNSSEC. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve in security and privacy practices.

E

edelboxx

edelboxx.de

0

edelboxx is a German-based company specializing in the manufacturing and sale of energy distribution solutions, including power and water supply columns for camping sites, motorhome parking areas, marinas, and leisure sectors. The company positions itself as a professional provider with a focus on quality and digital connectivity solutions. The website reflects a small-sized business with a clear target audience in the camping and leisure market segments. Technically, the website is built on WordPress using modern plugins such as Elementor and Yoast SEO, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. Overall, the website is professional and trustworthy, though it would benefit from enhanced privacy compliance and security documentation.

C

CEITEC Inh. Carsten Eikmeier e.K.

ceitec.de

0

CEITEC Inh. Carsten Eikmeier e.K. is a small German company specializing in consulting, sales, and installation of quality equipment for leisure facilities, particularly in camping and water sports tourism. Established since 1993, the company emphasizes personalized service, reliability, and sustainable product offerings to enhance the attractiveness and value of client facilities. Their target audience includes operators of campgrounds, marinas, and recreational sites within Germany. The website is built on WordPress with common plugins and technologies, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent banner but no privacy policy page found. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

E

Energie aanbiedingen + Cadeau of cashback tot € 545,00

energie-aanbiedingen.com

0

The website energie-aanbiedingen.com operates as a Dutch energy offer comparison and cashback platform targeting consumers interested in energy deals and promotional gifts such as Nintendo Switch or Apple iPad. The site is positioned as a consumer-focused affiliate or comparison service within the energy sector in the Netherlands. Technically, the site uses modern web technologies including JavaScript, CSS, and integrates Google Analytics 4 and Google Tag Manager for analytics and marketing. The site is well-structured with good SEO meta tags and mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforced and multiple security headers present, but lacks explicit privacy and cookie policies, which impacts compliance. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Social media presence is established on YouTube, Facebook, and Twitter, enhancing brand visibility. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and clearer contact information.

K

Keuze.nl

keuze.nl

0

Keuze.nl is a Dutch independent energy comparison platform that helps consumers find the cheapest energy tariffs without sponsored listings. The website is well-designed with modern frontend technologies, optimized for mobile, and provides a good user experience. It integrates Google Analytics 4 and uses a cookie consent mechanism to comply with privacy regulations. However, explicit privacy policies and terms of service are not found, which is a compliance gap. Security posture is strong with HTTPS and some security headers, but lacks published incident response or vulnerability disclosure information. Overall, the site is legitimate, trustworthy, and focused on the Dutch energy market.

I

iNSnet

insnet.org

0

iNSnet is a specialized online media platform focused on delivering sustainability news, climate change information, and insights into sustainable business practices. The website targets a general audience interested in environmental and social issues, providing well-structured and professionally presented content. The platform is built on WordPress with modern SEO and analytics tools integrated, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enabled and no obvious vulnerabilities detected, though the absence of security headers and explicit privacy policies suggests room for improvement. The lack of WHOIS transparency slightly reduces trust but does not detract significantly from the overall legitimacy of the site. Strategic recommendations include enhancing privacy compliance, adding security policies, and improving WHOIS transparency to bolster trust and compliance.

K

Kassa Kool llc

kassa-kool.com

0

Kassa Kool LLC is a small, local HVAC service provider based in Austin, Texas, specializing in residential HVAC system repair and maintenance including heat pumps, gas furnaces, and mini-splits. The company positions itself as a competitively priced service provider with quick response times and customer satisfaction guarantees. The website is built on WordPress using the Astra theme and Elementor page builder, hosted on HostGator, and incorporates common plugins such as Rank Math SEO and Chaty for marketing and communication. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no explicit security or privacy policies are published. The site uses Google Analytics for tracking but does not provide cookie or privacy consent mechanisms, indicating gaps in privacy compliance. Overall, the website is professional and trustworthy for its business scope but would benefit from enhanced security and privacy practices.

G

GroeneZaken

groenezaken.com

0

GroeneZaken is a Dutch online platform dedicated to sustainable businesses and the green economy. It serves as a network hub providing daily news, blogs, event promotions, partner listings, and services aimed at companies and individuals interested in sustainability. The platform targets sustainable enterprises and stakeholders within the Netherlands, positioning itself as a niche but important player in the sustainability sector. Key services include news dissemination, event marketing, and business networking with a focus on environmental topics.

P

Pure Benefit

purebenefit.eu

0

Pure Benefit is a small environmental consultancy specializing in the hospitality sector, offering services such as energy audits, CO2 footprint analysis, and compliance with European energy directives. The website is professionally designed using the Squarespace platform, with good mobile optimization and moderate performance. Security posture is strong with HTTPS and HSTS enabled, but lacks some security headers and privacy compliance features. The absence of privacy and cookie policies, as well as contact information, limits trust and compliance. WHOIS data is privacy protected, typical for small businesses using third-party registrars. Overall, the website presents a legitimate business with room for improvement in privacy and security transparency.

H

High Value Biorenewables Network

highvaluebiorenewables.net

0

The High Value Biorenewables Network (HVB) is a UK-based academic and industry collaboration network focused on industrial biotechnology and bioenergy, supported by the BBSRC. The website serves as a hub for promoting bio-based chemical development, facilitating partnerships, and providing leadership within the UK biotechnology community. The site is professionally designed, mobile-optimized, and uses modern web technologies including SeeCMS, jQuery, and Google Analytics for user tracking. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the website's affiliations with reputable institutions like the University of York and BBSRC lend credibility. Privacy and cookie policies are present but basic, and no direct contact emails or phone numbers are provided on the site, limiting direct communication channels. Security posture is moderate with no visible security headers or incident response information, suggesting room for improvement in security transparency and best practices.

S

SolarAid

solar-aid.org

0

SolarAid is a well-established UK-based international charity founded in 2006, focused on combating poverty and climate change through the distribution of solar lights and supporting local solar enterprises in sub-Saharan Africa. The organization operates a social enterprise model, SunnyMoney, and targets donors, supporters, and communities in Africa. The website reflects a professional and consistent brand with excellent content quality and clear navigation, emphasizing impact and sustainability. Technically, the website is built on WordPress with modern integrations including Gravity Forms, Google Tag Manager, Facebook Pixel, and Hotjar for analytics and user engagement. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site is mobile-optimized and accessible, with good SEO practices implemented. From a security perspective, the site enforces HTTPS, uses domain locking statuses, and implements CAPTCHA on forms. However, DNSSEC is not enabled, and no explicit security or incident response policies are published. Privacy compliance is strong with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. No vulnerabilities or exposed sensitive data were detected. Overall, SolarAid's website demonstrates a mature digital presence with strong business credibility and privacy compliance. Strategic improvements include enabling DNSSEC, publishing security policies, and adding a vulnerability disclosure mechanism to enhance trust and security posture.

T

Team for the Planet

team-planet.com

0

Team for the Planet is a not-for-profit organization dedicated to combating climate change by creating and financing innovative businesses globally. The website positions the company as a citizen-driven movement with a strong community of shareholders and innovators. Their business model focuses on crowdfunding and direct investment in climate solutions, emphasizing transparency and open-source principles. Technically, the website employs modern frameworks such as Turbo and StimulusJS, integrates analytics tools like Matomo and Plausible, and demonstrates excellent design and mobile optimization. Security posture is solid with HTTPS and CSRF protections, though improvements like DNSSEC and security headers are recommended. Overall, the site is professional, trustworthy, and well-aligned with its mission.

C

C-energy s.r.o.

c-energy.cz

0

C-energy s.r.o. is a Czech energy company specializing in sustainable and modern energy production, including electricity and heat supply with advanced technologies such as battery storage and cogeneration. The company serves the Tábor region and supports the national transmission system operator, positioning itself as a key regional energy provider within the C-Energy Group holding. The website reflects a professional and modern digital presence with clear business information and user-friendly navigation. Technically, the site uses standard web technologies and includes a cookie consent mechanism, but lacks some advanced security headers and explicit incident response information. The absence of WHOIS data is a notable concern for domain legitimacy, though the website content and contact details appear credible. Overall, the site demonstrates a good security posture with room for improvement in transparency and technical security controls.

F

Find My Electric

findmyelectric.com

0

Find My Electric operates as a specialized online marketplace focused on the buying and selling of used electric vehicles, including popular brands such as Tesla, Rivian, and others. The platform offers a comprehensive inventory of over 4000 EV listings, targeting consumers interested in affordable pre-owned electric vehicles. The website is built on a WordPress CMS with WooCommerce integration, leveraging modern web technologies and third-party analytics and marketing tools to enhance user experience and business insights. Despite a professional design and good technical implementation, the absence of WHOIS registration data raises concerns about domain legitimacy. Additionally, the lack of visible privacy and cookie policies indicates potential compliance gaps. Security posture is generally good with HTTPS and some best practices in place, but could be improved with enhanced security headers and published security policies. Overall, the site presents a moderate risk profile with recommendations to improve transparency, compliance, and security to strengthen trust and credibility.

T

TOMEGAS s.r.o.

tomegas.cz

0

TOMEGAS s.r.o. is a Czech company specializing in the supply of liquefied gases, ecological heating solutions, and propane-butane gas bottles, serving both businesses and households. The company positions itself as a traditional and established player in the Czech energy market with over 25 years of history. Their key services include turnkey solutions for propane gas tanks, ecological heating installations, and a network of LPG autogas stations. The website reflects a mature digital presence with comprehensive content, certifications, and multiple contact channels. Technically, the site is built on WordPress with common industry-standard plugins and tracking tools, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks some advanced security headers and published incident response policies. Privacy compliance is strong with GDPR-aligned cookie consent mechanisms. The absence of WHOIS data is a notable gap, reducing domain registration trustworthiness, but the overall business credibility remains high based on website content and certifications.

Z

ZVVZ GROUP, a.s.

zvvz.cz

0

ZVVZ GROUP, a.s. is a leading Czech industrial company specializing in the development, manufacturing, delivery, installation, and servicing of equipment primarily for environmental protection, including flue gas cleaning, filtration, ventilation, nuclear energy, HVAC, and pneumatic transport. The company has a long history dating back to 1948 and operates a group of subsidiaries and partner companies, positioning itself as a major player in the energy and manufacturing sectors. The website reflects a professional B2B business model targeting industrial clients and investors. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Google Tag Manager, and Facebook Pixel, and is built on the VOX.AREA CMS platform. It is mobile optimized with good SEO and accessibility basics, though some improvements in accessibility and security headers could be made. The site uses HTTPS with a strong SSL configuration and implements cookie consent mechanisms, demonstrating compliance with GDPR and related privacy regulations. From a security perspective, the site shows good practices including HTTPS enforcement, privacy policies, and ISO 27001 certification. However, the absence of explicit security headers and public vulnerability disclosure policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data reduces transparency and trust slightly but does not negate the legitimacy indicated by the website content and business presence. Overall, the website is professional, secure, and compliant with privacy standards, serving its industrial audience effectively. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure and incident response contacts, and improving accessibility features to further strengthen the security posture and user trust.

The GSA Platform, operated by GAZ-SYSTEM S.A., is a specialized online platform facilitating auctions and secondary market transactions for gas transmission capacity and LNG terminal services across Europe. It serves gas transmission operators, market participants, and LNG terminal operators, providing tools for booking long-term capacity and managing incremental capacity. The platform is positioned as a key player in the European energy sector, offering transparent and regulated capacity allocation services. Technically, the website employs a modern but moderate tech stack including Bootstrap, jQuery, and Font Awesome, hosted by OVH SAS. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Security practices include CSRF tokens and cookie consent mechanisms, but there are notable weaknesses such as password input fields not using secure input types and lack of visible security headers. From a security perspective, the platform demonstrates a reasonable posture with encrypted communications (assumed HTTPS), but improvements are needed in input handling and security header implementation. Privacy compliance is supported by accessible privacy and cookie policies, with GDPR considerations evident. Contact information is comprehensive, enhancing business credibility. Overall, the platform is a professional, trustworthy service with a solid business model and clear market focus. Security and privacy practices are adequate but could be enhanced to meet higher standards. No critical vulnerabilities or blocking mechanisms were detected, allowing full content analysis.

G

Gas Inside Information Platform (GIIP)

gasinsideinformationplatform.pl

0

Gas Inside Information Platform (GIIP) operates as a specialized platform dedicated to wholesale energy market participants, facilitating compliance with the REMIT regulation (EU) No 1227/2011 by providing a channel for disclosure of inside information. The platform is recognized and listed by the Agency for the Cooperation of Energy Regulators (ACER), positioning it as a trusted service provider within the European energy regulatory ecosystem. The website content clearly targets energy market participants requiring regulatory compliance services, offering key services such as publishing Urgent Market Messages and client onboarding. Technically, the website employs a standard modern web stack including HTML5, CSS, JavaScript, jQuery, and Bootstrap 3.3.7. It integrates Google Analytics for visitor tracking and implements a cookie consent mechanism compliant with EU regulations. Hosting is provided by OVH SAS, a reputable registrar and hosting provider. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are present but could be enhanced. From a security perspective, the site enforces HTTPS and uses CSRF tokens in meta tags, indicating attention to secure form handling. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting room for improvement in hardening the site against common web threats. No explicit security or incident response policies are published, and no vulnerability disclosure mechanisms are evident. Privacy compliance is basic but present, with clear privacy and cookie policies and a consent banner. Overall, the website is legitimate, professional, and trustworthy with no signs of malicious or adult content. The domain registration data aligns well with the business timeline and sector. Recommendations include enabling DNSSEC, adding security headers, publishing security policies, and enhancing accessibility and SEO for improved user experience and security posture.

M

Meinhart Kabel Österreich GmbH

meinhart.at

0

Meinhart Kabel Österreich GmbH is a well-established European leader in cable distribution and logistics, specializing in energy and data cables. With over 40 years of experience, the company serves a broad industrial clientele across multiple sectors including energy, automotive, and construction. The website is professionally designed using TYPO3 CMS and incorporates modern technologies such as Bootstrap and Usercentrics for consent management. Google Analytics 4 is used for user tracking with moderate privacy compliance. Security posture is good with HTTPS enforced and basic security headers present, though additional headers and explicit security policies could enhance protection. The absence of WHOIS data limits domain trust analysis but the company's extensive business presence and multiple European subsidiaries support legitimacy. Overall, the website is high quality, user-friendly, and business credible.

G

GAZ-SYSTEM S.A.

gaz-system.pl

0

GAZ-SYSTEM S.A. is a strategic Polish company operating in the energy sector, specifically as a gas transmission system operator. The company manages the transmission of natural gas, maintenance and development of gas pipeline infrastructure, and operates LNG and FSRU terminals. It serves a broad audience including business clients, suppliers, media, and stakeholders in the energy market. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding. Technically, the site uses modern JavaScript libraries, Google Analytics, and Google Tag Manager for tracking, and is built on a custom CMS platform. Mobile optimization and accessibility features are well implemented. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response information are missing. WHOIS data is not publicly available, indicating privacy protection which is justified given the company's strategic role. Overall, the site is trustworthy, professional, and compliant with GDPR and cookie regulations.

P

Polarstern Energie

polarstern-energie.de

0

Polarstern Energie operates as a renewable energy provider in Germany, offering 100% clean electricity and gas sourced sustainably. The company positions itself as a committed player in the global energy transition, targeting environmentally conscious consumers. Their website reflects a professional and consistent brand image with clear messaging about their services and mission. Technically, the site is built using modern frameworks such as Nuxt.js, hosted on Azure DNS infrastructure, and integrates third-party tools like Cookiebot for consent management and Zoho SalesIQ for customer engagement. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and active consent mechanisms. Overall, the website demonstrates a mature digital presence suitable for a medium-sized energy company.

E

EuropaCable

europacable.eu

0

EuropaCable is a prominent European industry association representing leading wire, cable, and cable accessories manufacturers. The organization advocates for sustainable electrification and digitalization across Europe, serving as a key voice for both large and specialized small- to medium-sized businesses in the cable manufacturing sector. Their website reflects a professional and well-structured digital presence, targeting industry stakeholders and policymakers. The business model centers on policy advocacy, industry representation, and promoting sustainability within the energy and telecommunications sectors. Technically, the website is built on WordPress using Elementor, with integrations such as Matomo for analytics and Rapidmail for newsletter management. The site is hosted by OVH SAS, a reputable European hosting provider. Performance and mobile optimization are good, with modern web technologies employed. Privacy and cookie policies are comprehensive and GDPR compliant, supported by a consent mechanism. However, no explicit security policy or incident response information is publicly available. From a security perspective, the site enforces HTTPS, employs security headers, and uses cookie consent tools, indicating a solid security posture. No vulnerabilities or exposed sensitive data were detected. The absence of a vulnerability disclosure policy or security.txt file is noted as an area for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, with minor recommendations to enhance security transparency and accessibility.

N

NKT A/S

nkt.cz

0

NKT A/S is a well-established company specializing in the manufacturing and supply of cables and cable accessories primarily for the energy sector. With a history dating back to 1891, NKT positions itself as a leading European supplier offering a comprehensive range of products including low, medium, and high voltage cables, as well as related services such as 24-hour cable service and cable laying via specialized vessels. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support targeting energy sector professionals and partners. Technically, the website is built on modern frameworks such as Next.js and React, incorporating advanced features like consent management via Usercentrics and analytics through Google Tag Manager. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers could be enhanced. The absence of WHOIS data due to privacy protection is noted but does not detract significantly from the site's legitimacy given the professional content and certifications displayed. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance, aligning with GDPR requirements. However, explicit incident response contacts and vulnerability disclosure mechanisms are not present, representing areas for improvement. Overall, the site maintains a strong security posture with no evident vulnerabilities or malicious content. The risk assessment indicates a low risk profile with recommendations to enhance security headers and publish incident response information to further bolster trust and compliance. The company’s digital maturity and business credibility are high, supporting its market position as a trusted energy sector partner.

I

ICS INDUSTRIAL CABLES SLOVAKIA, spol. s r.o.

ics-cables.sk

0

ICS INDUSTRIAL CABLES SLOVAKIA, spol. s r.o. is a medium-sized manufacturing company specializing in highly flexible energy cables and customized cable solutions. As part of the SKB-GROUP family business, ICS benefits from a long-standing market presence and a strong reputation for quality and innovation. Their website reflects a professional and modern digital presence, leveraging Vue.js and Inertia.js technologies, hosted likely on DigitalOcean with Cloudflare DNS for performance and security. The company demonstrates commitment to sustainability, evidenced by their EcoVadis Bronze Medal certification. Security posture is strong with HTTPS, security headers, and CSRF protections, although incident response and vulnerability disclosure information are not publicly available. Overall, ICS presents a trustworthy and credible business with a well-structured online presence.

P

PRAKAB Pražská Kabelovna s.r.o.

prakab.cz

0

PRAKAB Pražská Kabelovna s.r.o. is a well-established Czech manufacturer specializing in energy cables, including halogen-free and fire-retardant cables. The company operates as part of the SKB Group, a family-run business with roots dating back to 1891 in Austria, positioning PRAKAB as a reputable player in the energy cable manufacturing sector. Their website reflects a professional and modern digital presence, featuring a comprehensive product catalog, configurator tools, and multilingual support targeting industrial and energy sector clients. Technically, the site leverages modern JavaScript frameworks such as Vue.js and Inertia.js, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, CSRF protections, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high business credibility and digital maturity, supporting PRAKAB's market position as a trusted cable manufacturer.

E

EGE Power System, s.r.o.

egepowersystem.cz

0

EGE Power System, s.r.o. is a Czech-based company specializing in sustainable energy solutions including solar carports, heat pumps, photovoltaics, and industrial lighting. Founded in 2023, the company targets businesses and individuals seeking tailored turnkey energy systems. Their market position is that of a niche regional provider emphasizing customized and sustainable energy solutions. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on their core services. Technically, the website employs modern web technologies such as Google Fonts, jQuery, and Slick Carousel, hosted by Webglobe. It uses Google Analytics with privacy-conscious default settings denying ad and analytics storage until consent is given. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. No CMS other than Pagebuilder is detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR. However, no explicit security headers or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. The WHOIS data is consistent with the business information, supporting legitimacy. Overall, the security posture is good but could be enhanced with additional headers and published policies. The overall risk assessment is low with no critical issues detected. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, and auditing third-party scripts regularly to maintain security and compliance. The website is trustworthy, professional, and compliant with privacy regulations, making it suitable for its target audience.

V

VINCI Energies

vinci-energies.ch

0

VINCI Energies Switzerland is a prominent corporate entity specializing in accelerating the energy transition and digital transformation. As part of the global VINCI S.A. group, it offers a broad range of services including consulting, engineering, project management, and operation of electrical and telecommunication infrastructures. The company targets business and industrial clients seeking sustainable and innovative energy and digital solutions. The website reflects a mature digital presence with comprehensive content, consistent branding, and clear navigation tailored to professional audiences. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and GDPR cookie consent tools, leveraging Matomo for privacy-conscious analytics. The infrastructure supports good performance, mobile optimization, and accessibility. Security best practices are observed with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear policies and consent mechanisms. The domain registration aligns with the corporate identity, reinforcing legitimacy. The site maintains high professionalism and trustworthiness, suitable for its enterprise audience. Strategic recommendations include publishing explicit security and incident response policies, adding vulnerability disclosure information, and enhancing direct contact details for security and support to further strengthen trust and compliance.

H

HEAD DRINKS | water, sport and energy drinks

head-drinks.com

0

HEAD DRINKS is a small beverage company specializing in water, sport, and energy drinks, targeting active and health-conscious consumers. The website is built on WordPress using the Divi theme, reflecting a standard CMS infrastructure with moderate digital maturity. The site design is professional and mobile-optimized, though navigation clarity and SEO could be improved. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC, indicating room for improvement in security hardening. Privacy compliance is weak due to absence of privacy and cookie policies, and no contact or incident response information is provided, which may impact user trust and regulatory compliance. Overall, the website is functional and relevant to its industry but requires enhancements in security and compliance to strengthen its risk profile.

D

DIAMO, státní podnik

diamo.cz

0

DIAMO, státní podnik is a Czech state enterprise specializing in remediation and management of mining legacy sites, particularly uranium, other ores, and coal mining impacts. The organization operates multiple regional branches and focuses on environmental protection and revitalization of industrially affected regions. The website presents a professional and consistent brand image with certifications such as ISO 9001 and Zelená firma, indicating quality and environmental standards compliance. Technically, the site uses modern JavaScript libraries, a CMS platform (OctoberCMS), and integrates map APIs, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. No WHOIS data was found, which reduces domain registration trust but the website content and state enterprise status support legitimacy. Overall, the site is well-maintained, informative, and trustworthy for its intended audience.

M

Moravskoslezské energetické centrum, příspěvková organizace

mskec.cz

0

Moravskoslezské energetické centrum, p. o., is a Czech regional public organization founded in 2014, specializing in energy consulting, management, and clean mobility development for the Moravskoslezský kraj region. The organization provides expert advisory services to regional public institutions and municipalities, focusing on energy savings, renewable sources, and strategic regional development. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response details. Overall, the site is trustworthy, compliant with GDPR, and well-positioned as a regional energy consultancy.

E

EGE, spol. s r.o.

ege.cz

0

EGE, spol. s r.o. is a Czech-based medium-sized company specializing in the development, manufacturing, installation, and servicing of energy-related equipment, including encapsulated conductors, arc suppression reactors, and steel constructions. With over 30 years of experience, the company serves industrial and energy sectors, offering full-service solutions and maintaining a strong market presence supported by certifications and EU-funded projects. The website reflects a professional business model targeting B2B clients in energy and manufacturing industries. Technically, the website employs modern web technologies such as Google Tag Manager and Google Analytics, with responsive design and basic accessibility features. The site uses HTTPS with a valid SSL certificate, ensuring secure communications. Cookie consent mechanisms and privacy policies demonstrate GDPR compliance, although some SEO and accessibility improvements are possible. From a security perspective, the site shows good practices like HTTPS enforcement and cookie consent but lacks some security headers and explicit incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is a concern for domain trustworthiness, but the website content and business information appear legitimate. Overall, the website is safe, professional, and compliant with privacy regulations, though domain registration transparency should be improved to enhance trust. Strategic recommendations include adding security headers, publishing incident response details, and enhancing SEO and accessibility.

S

St.Galler Stadtwerke

sgsw.ch

0

St.Galler Stadtwerke is a regional utility provider based in St.Gallen, Switzerland, offering a comprehensive range of services including electricity, water, gas, district heating, fiber optic connectivity, and e-mobility solutions. The company positions itself as a reliable partner for the city's energy and infrastructure needs, targeting both residential and business customers. Their website reflects a professional and customer-focused approach with clear service offerings and accessible contact information. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome Pro, and the ArcGIS JavaScript API for interactive mapping. It integrates multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Siteimprove Analytics. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. From a security perspective, the site uses HTTPS and includes CSRF protection scripts, but lacks visible security headers and explicit security or incident response policies. Tracking scripts are present without a clear cookie consent mechanism, which may pose privacy compliance risks. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy, well-maintained, and professionally presented, with minor recommendations to enhance privacy compliance and security transparency.

E

ETAVIS

etavis.ch

0

ETAVIS is a leading Swiss and Liechtenstein-based company specializing in high-quality electrical engineering and automation solutions. The company serves both business and private customers with tailored services including electrical installations, communication, building automation, energy efficiency, and renewable energy solutions such as solar systems and e-mobility infrastructure. ETAVIS is part of the VINCI Energies group, reinforcing its market position and operational scale. The website reflects a professional and regionally focused business model with strong branding and comprehensive service offerings.

Wellenberg Wind AG operates a regional wind energy project in the canton of Thurgau, Switzerland, focusing on the development and operation of wind turbines to generate renewable energy for local households. The website provides detailed project timelines, community engagement updates, and contact information for key personnel, reflecting a transparent and community-oriented business approach. Technically, the site uses modern web technologies with responsive design and includes a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response details are absent. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, presenting a low-risk profile with room for improvement in security policy transparency and terms of service availability.