Security Directory

A

Autobedrijf de Pijper

autobedrijfdepijper.nl

0

Autobedrijf de Pijper is a well-established automotive dealership and service provider based in the Netherlands, founded in 2009. The company offers a broad range of used cars for sale and lease, vehicle maintenance services, and emphasizes customer trust through Bosch Car Service certification and positive customer reviews. Their digital presence is professional, with a modern website that supports online appointment scheduling and showcases their inventory effectively. Technically, the website uses modern web technologies, is mobile optimized, and employs HTTPS with DNSSEC for security. However, the absence of privacy and cookie policies indicates a compliance gap with GDPR requirements. Security posture is solid with HTTPS and reCAPTCHA integration, but lacks publicly available security policies or incident response information. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency.

R

Rebel Travel

rebeltravel.nl

0

Rebel Travel is a specialized Dutch travel agency focusing on self-drive tours across Europe, offering personalized and affordable travel experiences. With over 25 years of market presence and more than 15,000 tours sold, the company holds a reputable position in the niche travel market. Their website is professionally designed, providing clear navigation and comprehensive travel options tailored to active and adventurous travelers. Technically, the site employs modern web technologies including Google Analytics, Google Maps API, and jQuery, ensuring a functional and moderately performant user experience with good mobile optimization. Security posture is solid with HTTPS enforcement and standard security headers, though the absence of a visible cookie consent mechanism and published security policies indicates room for compliance and transparency improvements. Overall, the website reflects a trustworthy and credible business with a strong focus on customer service and travel expertise.

A

Autorijschool Frank Sakkers

franksakkers.nl

0

Autorijschool Frank Sakkers is a well-established driving school based in Utrecht, Netherlands, operating since 1988. The company offers driving lessons primarily for cars and trailer BE licenses, utilizing a stepwise driving education method known as 'Rijopleiding in Stappen'. The business targets learners in Utrecht and surrounding areas, boasting a high pass rate and a strong local reputation. Their website reflects a professional and consistent brand image with clear service offerings and active social media engagement. Technically, the site is built on WordPress with the Divi theme, incorporates modern web technologies, and includes SEO optimizations and cookie consent mechanisms. Security posture is good with HTTPS enforced, though some security headers are not explicitly detected and no formal security policy or incident response information is published. Overall, the website is trustworthy, compliant with GDPR, and provides sufficient contact information, though no phone number is explicitly listed. The domain registration details align well with the business claims, supporting legitimacy.

H

Haarlemmermeer Transport & Logistiek BV

haarlemmermeertransport.nl

0

Haarlemmermeer Transport & Logistiek BV is a well-established Dutch transport and logistics company specializing in refrigerated transport, urgent deliveries, warehousing, air freight, and ADR transport. With over 20 years of experience, the company serves clients nationally and internationally across Europe, positioning itself as a reliable and flexible service provider. The website reflects a professional business model focused on B2B and B2C customers requiring specialized transport and storage solutions. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO and user experience. The site is mobile optimized and performs moderately well, though some accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies or incident response information. Privacy compliance is addressed with a privacy policy and cookie consent banner, though terms of service and security disclosures are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

Green Business Bikes

greenbusinessbikes.nl

0

Green Business Bikes is a newly established Dutch company specializing in leasing and selling robust, affordable business e-bikes, targeting SMEs, staffing agencies, and rental companies. Their flagship product, the KARO Solid e-bike, emphasizes durability, low maintenance, and cost-effectiveness. The website is professionally designed with clear navigation and multiple contact points, including forms with GDPR-compliant privacy agreements. Technically, the site runs on WordPress with modern plugins and SEO optimizations, though some security enhancements are recommended. The security posture is moderate with HTTPS enabled but lacks security headers and DNSSEC. Overall, the business appears legitimate and well-positioned in the transportation sector with a focus on sustainable mobility solutions.

T

Transurban Limited

transurbanuscareers.com

0

Transurban Limited operates as a major global toll-road operator with a strong presence in Australia and North America. The careers subdomain provides detailed information about job opportunities, company culture, benefits, and recruitment processes, targeting potential employees and interns. The website is professionally designed, consistent with corporate branding, and integrates modern web technologies including Adobe Experience Manager, Google Analytics, and Microsoft Clarity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is partial with a clear privacy policy but lacking explicit cookie consent mechanisms. WHOIS data for the subdomain is unavailable, which is typical for subdomains, and does not detract from the legitimacy of the site. Overall, the site is trustworthy and well-maintained, supporting Transurban's business objectives in talent acquisition.

T

Transurban (USA) Operations Inc.

expresslanes.com

0

Express Lanes, operated by Transurban (USA) Operations Inc., is a well-established transportation service provider focused on express toll lanes in Northern Virginia. The website offers comprehensive services including toll payments, trip planning, and real-time traffic updates, supported by a mobile app to enhance user convenience. The company holds a strong market position as a key regional express lanes operator with a clear business model centered on transportation infrastructure and customer service. Technically, the website is built on Drupal 8, leveraging modern web technologies such as jQuery, Google Analytics, and Facebook Pixel for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Hosting and domain registration are stable and consistent with the business profile, with Amazon Registrar as the domain registrar and AWS DNS servers. From a security perspective, the site enforces HTTPS, employs domain status locks to prevent unauthorized changes, and implements a cookie consent mechanism aligned with GDPR requirements. However, DNSSEC is not enabled, and no explicit security or incident response policies are published, indicating areas for improvement. No vulnerabilities or suspicious content were detected. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable platform for its users. Strategic recommendations include enabling DNSSEC, publishing security policies, and implementing a vulnerability disclosure program to further enhance security posture and user trust.

T

Transurban Limited

linkt.com.au

0

Linkt, operated by Transurban Limited, is a leading Australian toll payment service provider offering accounts, passes, and trip-by-trip payment options for toll roads in Sydney, Melbourne, and Brisbane. The website is professionally designed with a clear focus on user convenience and accessibility, providing tools such as toll calculators and live traffic updates. The technical infrastructure leverages modern web technologies including Adobe Experience Manager, React, and multiple analytics and tracking tools, indicating a mature digital presence. Security measures such as HTTPS and a strict Content-Security-Policy are implemented, though there is room for improvement in privacy compliance and explicit security policy disclosures. Overall, the website reflects a trustworthy and well-established business with a strong market position in transportation toll services.

I

INKAS Armored Vehicles, Bulletproof Cars, Special Purpose Vehicles

inkasarmored.com

0

INKAS Armored Vehicles is a well-established manufacturer specializing in armored and bulletproof vehicles including SUVs, sedans, trucks, limousines, and special purpose vehicles. With over 30 years of experience and a domain registered since 2005, the company holds a leading market position in North America and serves a global clientele. Their product offerings are supported by certifications such as CEN 1063, and they provide comprehensive services including maintenance, spare parts, and custom fabrication. The website reflects a professional and consistent brand image with clear navigation and extensive product information. Technically, the website is built on WordPress with modern frameworks like Bootstrap 5 and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity. The site is hosted with reputable providers and uses Cloudflare DNS, ensuring good performance and security. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs domain status protections to prevent unauthorized changes. However, there is room for improvement by enabling DNSSEC and implementing additional security headers. The absence of a published security policy or incident response contact is noted. Privacy compliance is addressed with visible privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, the website demonstrates a strong security posture, high business credibility, and excellent content quality. Strategic recommendations include enhancing DNS security, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

T

Transurban Group

transurban.com

0

Transurban Group operates as one of the world’s largest toll-road operators, focusing on designing, building, and managing toll roads primarily in Australia, the United States, and Canada. Their business model centers on infrastructure management and toll collection, supported by community engagement and sustainability initiatives. The website reflects a mature corporate presence with clear branding, investor relations, and customer support portals. Technically, the site leverages Adobe Experience Manager CMS, integrates multiple analytics and tracking tools, and employs modern security practices including a strict Content-Security-Policy and HTTPS enforcement. However, the absence of publicly available WHOIS data and explicit security incident response contacts introduces some transparency concerns. Overall, the site is professionally maintained, secure, and compliant with privacy regulations, serving a broad audience including road users, investors, and communities.

M

Marathon Tours USA

marathontours.com

0

Marathon Tours USA operates as the world’s largest running events tour operator, specializing in providing guaranteed entry and accommodation for major marathon events globally. Their market position is strong within the niche of marathon travel, targeting runners and enthusiasts seeking comprehensive travel packages for major running events. The website reflects a professional business model focused on event-based travel services with a medium-sized operational scale and a founding date consistent with their domain age (2002). Technically, the website is built on WordPress with integrations such as Cookiebot for cookie consent management and Google Tag Manager for analytics and marketing. The use of Cloudflare DNS and CDN services enhances performance and security, although DNSSEC is not enabled. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site employs HTTPS and some security best practices but lacks explicit security headers and published security policies or incident response contacts. The cookie consent mechanism is robust and GDPR compliant, reflecting good privacy compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enabling DNSSEC, enhancing security headers, and publishing security and incident response policies to further strengthen trust and security posture.

G

Gold Coast Airport

goldcoastairport.com.au

0

Gold Coast Airport operates as a regional airport serving the Gold Coast and Northern NSW regions in Australia, providing a range of services including flights, parking, car rentals, shopping, and dining. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence. The technical infrastructure incorporates modern web technologies and third-party marketing and analytics tools such as Google Tag Manager, Facebook Pixel, AdRoll, and Yieldify, indicating a focus on user engagement and marketing effectiveness. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and explicit privacy and cookie policies suggests room for improvement in compliance and security best practices. The WHOIS data is limited due to registrar privacy policies, but no suspicious indicators are present, supporting the legitimacy of the domain and business. Overall, the website is trustworthy and well-positioned to serve its target audience of travellers and corporate partners.

S

SIXT

sixt.com.au

0

SIXT Australia operates a large vehicle rental network with over 163 locations and a fleet exceeding 16,000 vehicles, offering a broad range of rental options including compact cars, luxury vehicles, electric cars, SUVs, trucks, and commercial vehicles. The company targets both consumer and business markets, providing premium mobility solutions and leveraging partnerships such as with Velocity and NRMA Rewards. The website is professionally designed, mobile-optimized, and provides clear navigation and booking functionality. Technically, the site uses modern frameworks like React and integrates consent management and analytics tools, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not publicly disclosed. WHOIS data is privacy protected but consistent with legitimate commercial use. Overall, the site demonstrates strong business credibility and digital maturity with room for enhanced transparency in security disclosures.

S

SCS Software s.r.o.

scssoft.com

0

SCS Software s.r.o. is a Czech Republic-based medium-sized company specializing in simulation game development since 1997, with a strong focus on truck simulators and related projects. The company emphasizes unique in-house technology, a passionate and creative team, and a highly engaged community. Their business model revolves around game development, community engagement, and technology innovation, positioning them as a niche leader in the transportation simulation gaming market. Technically, the website employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and hCaptcha for bot protection. The site is well-optimized for mobile devices, has good accessibility features, and includes a comprehensive cookie consent mechanism that aligns with GDPR requirements. The use of their proprietary Prism3D engine highlights their technical maturity and commitment to innovation. From a security perspective, the website enforces HTTPS and uses hCaptcha for form protection, demonstrating good security practices. However, the absence of explicit security headers and a published security or incident response policy indicates room for improvement. The missing WHOIS data for the domain raises concerns about domain registration transparency, although the website content and contact details appear professional and trustworthy. Overall, the site presents a low-risk profile with strong business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to improve trust and compliance.

S

SCS Software

worldoftrucks.com

0

World of Trucks is an online community platform operated by SCS Software that complements their popular truck simulation games, Euro Truck Simulator 2 and American Truck Simulator. The website serves as a hub for players to engage in community events, share content such as screenshots and videos, and stay updated with news and DLC releases. The platform targets simulation gaming enthusiasts and supports community-driven activities enhancing player engagement. Technically, the website is well-structured with modern web technologies, uses HTTPS exclusively, and integrates Google Analytics with privacy considerations such as IP anonymization. Media assets are hosted on Amazon S3, ensuring reliable content delivery. Security posture is solid with session protection and cookie consent mechanisms, though some security headers and explicit incident response policies are not publicly documented. The absence of WHOIS data is notable but does not detract from the site's legitimacy given the professional presentation and strong brand association with SCS Software. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

N

Nike Melbourne Marathon Festival

melbournemarathon.com.au

0

The Nike Melbourne Marathon Festival website serves as the official platform for Australia's largest marathon event held annually at the Melbourne Cricket Ground (MCG). It provides comprehensive event information, registration capabilities, and training resources targeting runners and sports enthusiasts. The site is well-positioned in the sports event market with a strong brand presence and active social media engagement. Technically, the website is built on WordPress with a modern tech stack including jQuery, Gravity Forms, and various analytics and marketing tools such as Google Tag Manager, TikTok Pixel, and Microsoft Clarity. The site is hosted behind Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service pages in the provided content. Overall, the website is professional, trustworthy, and suitable for a general audience.

G

Gold Coast Marathon

goldcoastmarathon.com.au

0

The Gold Coast Marathon website represents a well-established annual sporting event held in Queensland, Australia. It caters to a broad audience including runners, spectators, charities, and community groups. The site provides comprehensive event information, race details, community engagement opportunities, and multimedia content such as live streams and event guides. The business model revolves around event management, sponsorships, merchandise, and partnerships with local and international organizations. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates multiple third-party analytics and advertising tools. The site is mobile-optimized and SEO-friendly, offering a good user experience. Security posture is solid with HTTPS enforced, but lacks some advanced security headers and formal security policies. Privacy compliance is limited, with no visible privacy or cookie policies and no consent mechanisms, which is a notable gap. Overall, the domain registration is consistent with the business location and purpose, indicating legitimacy. Strategic improvements in privacy compliance and security policy transparency would enhance trust and compliance.

A

Arrive AI Inc.

arriveai.com

0

Arrive AI Inc. is a technology company specializing in autonomous delivery solutions, leveraging artificial intelligence to optimize last-mile logistics. Their flagship product, Arrive Points™, integrates hardware and AI software to enable smart, secure, and asynchronous delivery networks using robots and drones. The company positions itself as an innovator in the transportation and healthcare logistics sectors, with a Nasdaq listing under ticker ARAI, indicating a significant market presence and investor confidence. Technically, the website is built on modern web technologies including Webflow CMS, JavaScript libraries such as GSAP and SplitType for animations, and integrates marketing and analytics tools like HubSpot, Facebook Pixel, and LeadLander. The site is well-optimized for performance, mobile responsiveness, and SEO, providing a professional user experience. Security-wise, HTTPS is enforced and secure forms are used, but there is a lack of published security policies and headers, which could be improved. The security posture is solid but could benefit from enhanced transparency around incident response and vulnerability disclosure. Privacy compliance is basic, with privacy and cookie policies present but limited GDPR-specific details. The absence of WHOIS registration data is a notable concern, potentially impacting trust and legitimacy perceptions. Overall, Arrive AI presents a credible and professional digital presence with strong business and technical foundations. Addressing WHOIS transparency and enhancing security and privacy disclosures would further strengthen their trustworthiness and compliance standing.

The National Customs Brokers & Forwarders Association of America, Inc. (NCBFAA) is a well-established trade association headquartered in the Washington DC metro area, representing over 1,300 member companies and 110,000 employees in the international trade and logistics sector. The association serves a broad audience including customs brokers, freight forwarders, ocean transportation intermediaries, and air cargo agents, providing advocacy, professional training through its Educational Institute (NEI), industry news, conferences, and member benefits. The website reflects a mature organization with a strong market position and comprehensive service offerings tailored to the logistics industry. Technically, the website is built on the Sitefinity CMS platform with modern front-end technologies including Bootstrap, jQuery, and FontAwesome. It integrates third-party analytics and tracking tools such as Google Analytics and Crazy Egg. The site is mobile-optimized and features a clear navigation structure, although accessibility features are basic. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and employs secure login mechanisms. However, it lacks visible security headers and does not publish a security policy or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. Overall, the site demonstrates a good security posture but could improve transparency and compliance. The overall risk assessment is low, with no signs of malicious activity or suspicious domains. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security and incident response policies, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

The Norfolk Southern MediaLink website serves as an e-commerce platform for Norfolk Southern branded merchandise, targeting employees, affiliates, and fans of the Norfolk Southern Railway. The site offers categories such as apparel, caps, collectibles, office supplies, gifts, and holiday items. The business model is a niche retail store supporting brand engagement and merchandise sales. The website is professionally designed with good navigation and mobile responsiveness, leveraging modern frontend technologies like Bootstrap and jQuery. Accessibility is enhanced through integration of the UserWay widget. However, the site lacks visible contact information, cookie consent mechanisms, and comprehensive privacy compliance features. Security posture is moderate with HTTPS enabled but missing key security headers and policies. The absence of WHOIS data for the domain raises concerns about transparency and trustworthiness, although the site content and branding appear legitimate. Overall, the site is functional and serves its business purpose but would benefit from improved security and compliance measures.

N

Norfolk Southern

nscorp.com

0

Norfolk Southern is a longstanding enterprise in the transportation sector, specializing in rail freight services across 22 U.S. states with global connections. The website reflects a mature business with comprehensive service offerings including shipping by rail, rail development, and sustainability initiatives. The digital infrastructure is built on Adobe Experience Manager with modern analytics and tracking tools, indicating a high level of digital maturity. Security posture is generally strong with HTTPS and no visible vulnerabilities, though explicit security headers and privacy policies are not clearly presented. The absence of WHOIS data for the domain raises some concerns about domain registration transparency but does not detract from the overall legitimacy suggested by the website content and linked investor relations platforms.

G

Gordian Software

gordiansoftware.com

0

Gordian Software operates a specialized API platform designed to simplify and accelerate ancillary merchandising for airlines and travel platforms. Positioned as an industry leader, Gordian offers a single integration point to access a broad range of airline connections, ancillary products, and traveler insights, enhancing customer experience and revenue generation. The website reflects a mature digital presence with professional design, clear messaging, and targeted content for travel industry stakeholders. Technically, the site leverages modern web technologies including Webflow CMS, GSAP animations, and third-party integrations such as Vimeo for video content. The platform is mobile-optimized and demonstrates good performance and accessibility standards. However, some security best practices such as implementation of security headers and cookie consent mechanisms are missing. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain raises some concerns about domain age and registration transparency, though the professional website and external trust signals mitigate these concerns. No explicit contact or incident response information is provided, which could be improved to enhance trust and compliance. Overall, Gordian Software presents a credible and professional business with a strong technical foundation but would benefit from enhanced security policies, transparency in domain registration, and improved privacy compliance features.

C

Coco Robotics

cocodelivery.com

0

Coco Robotics presents itself as a company focused on developing autonomous delivery vehicles designed for urban environments. The website content highlights their vision of a future with affordable, reliable, clean, quiet, and fast autonomous delivery solutions. The company appears to be a small player innovating in the transportation sector with a technology-driven business model. The website is built using Framer, indicating a modern but simple technical infrastructure. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is weak due to lack of HTTPS verification, security headers, and privacy policies. Overall, while the business concept is promising, the digital maturity and security compliance require significant improvement to build trust and ensure regulatory adherence.

N

Norfolk Southern

norfolksouthern.com

0

Norfolk Southern is a long-established enterprise in the transportation sector, specializing in rail freight services across 22 U.S. states with global connections. The company emphasizes safety, sustainability, and technological innovation as core pillars of its business. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding that supports its market position as a leading freight railroad operator. The technical infrastructure is robust, leveraging Adobe Experience Manager CMS and multiple analytics and marketing tools, indicating a high level of digital maturity. Security posture is generally strong with HTTPS enforcement and domain transfer protections, though there are opportunities to enhance DNS security and HTTP security headers. Privacy compliance is an area for improvement, as no explicit privacy or cookie policies or consent mechanisms were detected. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives.

S

SCS Software s.r.o.

eurotrucksimulator2.com

0

Euro Truck Simulator 2 is a well-established truck driving simulation game developed and published by SCS Software s.r.o., a medium-sized company based in the Czech Republic. The website serves as a comprehensive portal for the game, offering information about the game features, expansions, and community engagement. The company holds a strong market position in the niche of truck simulation games, supported by licensed truck brands and a dedicated fan base. The business model revolves around game sales, expansions, and community-driven modding support. Technically, the website is built on a custom stack using standard web technologies such as HTML5, CSS3, and JavaScript, with integrations for Google Analytics, YouTube embeds, and Steam widgets. The site is hosted via GoDaddy.com, LLC, and employs HTTPS with a good SSL configuration. The site is mobile optimized and accessible, with a well-implemented cookie consent mechanism that complies with GDPR requirements. From a security perspective, the website demonstrates good practices including HTTPS enforcement and cookie consent management. However, there is room for improvement by enabling DNSSEC, adding security headers, and publishing formal security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively supports the business goals of SCS Software and provides a positive user experience for its target audience.

W

Wing

wing.com

0

Wing is a pioneering company in the drone delivery sector, offering innovative technology to provide fast and convenient delivery services directly to customers' doorsteps. The website reflects a modern and professional digital presence built using Framer, hosted on Google infrastructure, indicating a mature technical setup. However, the site lacks critical privacy and cookie policies, as well as explicit contact information, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal security policies. Overall, Wing presents as a credible and established business with room for improvement in privacy compliance and security transparency.

Z

Zipline

zipline.com

0

Zipline operates as the world's largest autonomous drone delivery system, specializing in rapid, on-demand delivery and logistics services. The company targets both businesses and consumers, offering innovative drone technology to deliver goods quickly and precisely. Their market position is strong, supported by partnerships with major brands and a clear focus on sustainable, efficient delivery solutions. The website reflects a professional and modern digital presence, leveraging advanced web technologies and multimedia content to engage users effectively. Security posture is solid with HTTPS enforced and a published vulnerability disclosure policy, though some security headers are missing and no WHOIS data is available, which warrants further investigation. Overall, Zipline presents a credible and trustworthy business with a high-quality online presence.

Stfalcon LLC is a well-established software development company specializing in custom solutions for the transportation and logistics sector. With over 15 years of experience, the company offers a broad range of services including mobile and web app development, AI-powered workflows, blockchain, IoT, and cybersecurity. Their market position is strong, supported by a portfolio of major clients such as Ecolines and Nova Poshta, and an ISO 9001:2015 certification that underscores their commitment to quality. The company targets transportation and logistics businesses globally, providing scalable and tailored technology solutions. Technically, the website demonstrates a mature digital infrastructure with modern JavaScript libraries, multiple analytics and marketing integrations, and hosting on AWS infrastructure. The site is fast, mobile-optimized, and SEO-friendly, reflecting a high level of digital maturity. However, there is room for improvement in security headers and DNSSEC implementation. From a security perspective, the company shows good practices including HTTPS enforcement, ISO certification, and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of a security.txt file and explicit incident response contacts suggests an opportunity to enhance transparency and readiness. Overall, the security posture is solid but could be strengthened with additional headers and formal vulnerability disclosure policies. The overall risk assessment is low, with a trustworthy domain registration history and consistent business information. Strategic recommendations include implementing security headers, publishing a security.txt file, and enhancing incident response communication to further improve trust and compliance.

P

Private by Design, LLC

itsastrid.me

0

The website itsastrid.me is a personal site belonging to Astrid, a transfem individual residing in Catalunya. The site serves as a personal blog and portfolio showcasing interests in EDM music, Rubik's cubes, origami, trains, and photography, particularly train photography. It includes a gallery of images, links to social media on the Fediverse, and Wikimedia Commons contributions. The website is built using modern web technologies, specifically Astro framework, and is optimized for mobile and accessibility. The domain is recently registered with privacy protection, consistent with the personal nature of the site. From a technical perspective, the site demonstrates good performance, responsive design, and SEO optimization. However, it lacks some security best practices such as DNSSEC, security headers, and privacy/cookie policies. HTTPS is enabled, and domain registration includes protective status flags. No forms or sensitive data collection mechanisms are present, reducing attack surface. Security posture is moderate with room for improvement in headers and privacy compliance. No vulnerabilities or suspicious activities were detected. The site does not collect user data extensively and has minimal tracking, aligning with privacy expectations for a personal site. Overall, the site is low risk, well-maintained for its purpose, but would benefit from adding privacy and cookie policies, enabling DNSSEC, and implementing security headers to enhance trust and compliance.

C

Canadian Football League

cfl.ca

0

The Canadian Football League's official website, CFL.ca, serves as the primary digital platform for delivering news, opinions, video highlights, schedules, scores, and statistics related to Canadian football. Positioned as the authoritative source for CFL content, the site targets sports fans and media consumers interested in Canadian football. The business model centers on media content delivery and fan engagement, leveraging digital channels to maintain and grow its audience. Technically, the website is built on WordPress CMS and incorporates a modern technology stack including jQuery, Materialize CSS, Google Tag Manager, and various analytics and advertising scripts. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, employs standard security headers, and integrates a cookie consent mechanism compliant with privacy regulations. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of an explicit privacy policy and terms of service pages, as well as lack of visible contact information for security or business inquiries, represent areas for improvement. Overall, the website is trustworthy and professional, with strong branding consistency and relevant content. The missing WHOIS data suggests privacy protection, which is reasonable for a high-profile sports league domain. Strategic recommendations include publishing clear privacy and terms policies, enhancing accessibility, and providing explicit contact channels to strengthen compliance and user trust.

W

Winnipeg Blue Bombers

bluebombers.com

0

The Winnipeg Blue Bombers website serves as the official digital presence for the professional Canadian Football League team. It provides comprehensive ticketing options, fan engagement content, and game day information targeting sports fans and community members. The site is built on WordPress with a modern tech stack including Materialize and various analytics and advertising tools. The technical infrastructure supports good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly that warrants further investigation. Overall, the site is professional and trustworthy but could enhance privacy transparency and contact information visibility.

C

Coaliția pentru Siguranță Rutieră

pentrusigurantarutiera.ro

0

Pentru Siguranța Rutieră is a Romanian national coalition dedicated to improving road safety through advocacy, public policy development, awareness campaigns, and annual studies. The organization aims to reduce road accidents and fatalities by 2030 and collaborates with government authorities, professional associations, NGOs, and companies. The website serves as an informational and engagement platform, providing statistics, strategic documents, and partner information. Technically, the site is built on WordPress with modern plugins like Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and standard WordPress security practices, but lacks explicit privacy and cookie policies, which are important for GDPR compliance. Overall, the site is professional, trustworthy, and well-positioned in its niche, but could improve privacy compliance and security header implementation.

S

SpaceX

spacex.com

0

SpaceX is a leading aerospace company specializing in the design, manufacture, and launch of advanced rockets and spacecraft. Founded in 2002, the company aims to revolutionize space technology and enable human life on other planets. The website reflects a mature and professional digital presence with clear branding and comprehensive information about its services including launches, human spaceflight, rideshare, Starlink satellite internet, and Starshield defense services. The target audience includes aerospace industry stakeholders, enthusiasts, customers, and investors. Technically, the website is built using modern frameworks such as Angular 13, with a clean and responsive design optimized for mobile devices. The site loads quickly and provides a good user experience with clear navigation and relevant metadata for SEO. However, some security best practices such as explicit security headers and cookie consent mechanisms are not evident in the provided data. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the HTML content. The absence of visible security policies, incident response contacts, or vulnerability disclosure pages suggests room for improvement in transparency and security communication. The WHOIS data is unavailable or protected, which is common for high-profile companies but limits domain registration verification. Overall, the website is professional, trustworthy, and well-maintained with minor gaps in privacy compliance and security transparency. Strategic recommendations include adding explicit cookie consent, publishing security policies, and implementing security headers to enhance trust and compliance.

B

Blue Origin

blueorigin.com

0

Blue Origin is a prominent aerospace company founded by Jeff Bezos, focused on developing reusable rocket technologies and enabling space tourism and exploration. The company offers key services including the New Shepard suborbital vehicle, New Glenn orbital rocket, Blue Moon lunar lander, and advanced rocket engines. Their market position is strong as a leading private spaceflight company with significant technological achievements and a large-scale operational footprint. Technically, the website is built on modern frameworks such as Next.js and React, hosted on performant platforms like Vercel and AWS Cloudfront. The site demonstrates excellent design quality, mobile optimization, and accessibility features. It integrates standard analytics and cookie consent tools, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs security headers, and uses secure consent mechanisms. However, it lacks explicit public security policies, incident response information, and vulnerability disclosure channels, which are recommended for transparency and trust. The absence of WHOIS data reduces domain registration transparency but does not detract from the overall legitimacy indicated by the website content. Overall, Blue Origin's website is professional, secure, and compliant with privacy standards, serving its audience effectively. Strategic improvements in public security disclosures and enhanced contact information would further strengthen trust and compliance.

K

Kakao Mobility Corp.

kakaomobility.com

0

Kakao Mobility Corp. operates a comprehensive smart mobility platform in South Korea, offering services such as taxi hailing, business transportation, navigation, autonomous driving, and robotics. The company positions itself as a leader in the mobility technology sector, targeting both passengers and drivers with a focus on safety and innovation. The website reflects a mature digital presence with rich multimedia content and clear navigation, supporting its business objectives effectively. Technically, the site leverages modern frameworks like Next.js and React, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and no visible vulnerabilities, though some security headers could be improved. Privacy policies are comprehensive and GDPR compliant, but cookie consent mechanisms are absent. Overall, the site demonstrates high professionalism and trustworthiness, though the lack of WHOIS data introduces some uncertainty about domain registration details.

C

CLEVER SERVICES S.A.

cleverpoint.gr

0

Clever Point operates as a smart parcel delivery and logistics network in Greece, providing customers with flexible options to receive, send, and return parcels through a widespread network of local points. The company positions itself as a convenient alternative to traditional courier services by offering extended hours and neighborhood accessibility. Technically, the website leverages modern web technologies including React, Google Tag Manager, and multiple analytics and tracking tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and error monitoring, though improvements are needed in privacy compliance such as cookie consent and security policy transparency. Overall, the site is professional, trustworthy, and well-branded, serving a medium-sized business in the transportation sector.

S

SPEEDEX A.E. Ταχυμεταφορών

speedex.gr

0

Speedex is a well-established Greek courier and parcel delivery company offering a broad range of domestic and international shipping services, including same-day delivery and franchise opportunities. The company holds ISO 9001:2015 certification, reflecting its commitment to quality management. The website targets both general consumers and business clients within Greece, providing multiple customer interaction points such as shipment tracking, pickup requests, and cooperation forms. The business model focuses on logistics and transportation services with an emphasis on franchise expansion.

Z

Zedmar

zedmar.com

0

Zedmar is a specialized supplier of OEM specification spare parts for the shipping industry, focusing on marine separators, air compressors, and fresh water generators. The company targets marine and shipping professionals, providing high-quality parts to support marine equipment maintenance and operations. The website is professionally designed using WordPress and the Kadence theme, indicating a moderate level of digital maturity with good mobile optimization and SEO practices. However, the absence of WHOIS data raises concerns about domain legitimacy, although the active and professional website presence mitigates some risk. Security posture is moderate, with HTTPS likely enabled but lacking advanced security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site presents a functional business presence but requires improvements in security and compliance documentation.

Z

Zum

ridezum.com

0

Zum is a leading provider of student transportation services in the United States, specializing in safe, reliable, and efficient school transportation solutions powered by advanced technology platforms and modern fleets including electric vehicles. The company targets schools, districts, parents, and drivers, positioning itself as an industry leader with a strong market presence supported by multiple prestigious awards and customer testimonials. The website reflects a mature digital infrastructure built on WordPress with modern analytics and marketing tools integrated for performance and user engagement. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response information are not published. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-optimized for SEO and mobile use, supporting Zum's business credibility and market leadership.

S

Saronic Technologies

saronic.com

0

Saronic Technologies is a specialized technology company focused on providing naval and maritime forces with advanced Autonomous Surface Vessels. Their market position is that of a niche innovator delivering intelligent maritime solutions that enhance awareness, extend operational reach, and improve survivability in naval contexts. The company targets defense and maritime sectors with a business model centered on technology development and integration of autonomous systems for maritime superiority. Technically, the website is built using modern frameworks such as Next.js and React, incorporating Google Analytics and reCAPTCHA for analytics and security respectively. The site demonstrates excellent mobile optimization, fast performance, and good SEO practices. However, some security best practices like security headers and cookie consent mechanisms are missing. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to mitigate bot activity, but lacks visible security headers and explicit incident response or vulnerability disclosure information. The absence of WHOIS data for the domain raises concerns about domain legitimacy, although the professional web presence and active social media profiles support the company's credibility. Overall, the website presents a professional and trustworthy front with room for improvement in privacy compliance and security posture. Strategic recommendations include implementing security headers, publishing comprehensive privacy and cookie policies, adding terms of service, and clarifying contact information to enhance trust and compliance.

O

OIA TRANS GmbH / OIA TRANS S.R.L.

oiatrans.com

0

Oia Trans is a European logistics company specializing in container and road transport services, with branches in Germany, Romania, and Bulgaria. The company emphasizes over 20 years of experience and holds ISO 9001 certification, positioning itself as a reliable and efficient transport provider in the European market. Their services include maritime container transport and road transport with a modern fleet adhering to EURO 6 standards. The website is professionally designed using WordPress and Elementor, optimized for SEO with Yoast, and supports multiple languages including English, Romanian, and German. Social media presence on Facebook, LinkedIn, YouTube, and Google Maps enhances their digital footprint. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and visible incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website reflects a credible and professional business with room for improvement in security and privacy transparency.

B

BMC TRUCK & BUS SA.

bmcromania.ro

0

BMC Romania is a well-established company specializing in the manufacturing and sales of buses and trucks, with over 20 years of presence in the Romanian market. The company offers a range of vehicle models tailored to public transport and specialized applications, supported by service, aftersales, and financing options. Their market position is strong as a leader in public transport vehicles in Romania. Technically, the website is built on WordPress with Elementor, providing a professional and responsive user experience, though some SEO and accessibility improvements are possible. Security posture is adequate with HTTPS and a valid SSL certificate, but lacks security headers and formal privacy and cookie policies, indicating compliance gaps. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the website and company.

N

Nereus Shipping S.A.

nereuship.gr

0

Nereus Shipping S.A. is a well-established Greek shipping company with a century-long history specializing in ship management services for tanker and bulker markets. The company emphasizes safety, environmental protection, and continuous employee development. The website reflects a professional digital presence built on WordPress, utilizing modern web technologies and analytics tools. While the site is well-designed and mobile-optimized, it lacks explicit privacy and terms of service policies, as well as clear contact information, which are areas for improvement. Security posture is generally good with HTTPS enabled and no obvious vulnerabilities, but could benefit from enhanced security headers and published security policies. Overall, the domain registration data aligns well with the company's claims, supporting its legitimacy.

B

Bitros Cars

bitros.com

0

Bitros Cars is a well-established Greek company specializing in the sale of used and new cars, operating since 1989. The website serves as a digital platform to showcase a large inventory of vehicles, providing detailed search and filtering options for customers. The company emphasizes quality, reliability, and customer service, positioning itself as a trusted player in the Greek automotive retail market. Technically, the website uses a combination of classic and modern web technologies including jQuery, Swiper.js, and Google Analytics, hosted behind Cloudflare DNS. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced DNS security and HTTP security headers. Privacy compliance is limited, with no visible cookie consent or comprehensive privacy policy. Contact information is clearly presented, supporting business credibility.

Α.Λ.Α - Αγωνιστική Λέσχη Αυτοκινήτου is a Greek automobile racing club with a long-standing history of approximately 55 years. The website serves as an informational portal for members and motorsport enthusiasts, providing details about club history, membership registration, events such as rallies and karting, and athlete licensing procedures. The target audience is primarily Greek-speaking individuals interested in motorsport activities. The club operates as a non-profit entity within the transportation sector. Technically, the website is built on Joomla! CMS, utilizing common web technologies such as jQuery, MooTools, Bootstrap, and the Gantry framework. The site is moderately optimized for mobile devices and offers basic accessibility and SEO features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms such as cookie consent or privacy policies. Contact information is clearly presented, including phone, email, and physical address, enhancing business credibility. No forms or advanced tracking technologies were detected, indicating minimal data collection and user tracking. Overall, the website is functional and moderately professional but would benefit from enhanced security and privacy compliance measures.

W

WESP – We Support Performance

mywesp.com

0

WESP – We Support Performance is a specialized B2B company focused on providing data-driven decision-making tools and software add-ons for the automotive aftermarket sector. Their offerings include retail support dashboards, data solutions for market insights, and API integrations for GMS/DMS platforms. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and user experience. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response contacts are absent. The domain WHOIS data is missing, which raises concerns about registration transparency and trustworthiness. Overall, the site is credible and professional but would benefit from improved domain registration transparency and published security policies.

L

Lexus Slovensko

lexus.sk

0

Lexus Slovensko operates as the official luxury automotive brand presence in Slovakia, specializing in hybrid and fully electric vehicles. The website reflects a strong brand identity consistent with Lexus Europe and Toyota Motor Corporation, targeting consumers interested in premium automotive products. The digital infrastructure leverages modern technologies including Adobe Experience Manager, cloud-based CDNs, and advanced analytics tools such as Datadog and Google Tag Manager, indicating a mature technical setup. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit privacy and terms of service documentation are absent, representing an area for improvement. Overall, the site is professional, trustworthy, and aligned with the brand's market positioning.

T

Toyota Central Europe Sp. z o.o.

klubrekordowtoyoty.pl

0

The website klubrekordowtoyoty.pl serves as the official online presence for the Toyota Rekordowych Przebiegów Club, a community initiative by Toyota Central Europe Sp. z o.o. targeting Toyota vehicle owners in Poland who have achieved exceptionally high mileage. The platform promotes Toyota's brand values of reliability and durability by recognizing and rewarding owners of high-mileage Toyota cars with special attributes and sharing their stories. The site is well-branded, professionally designed, and provides clear navigation and content relevant to its audience. Technically, the website employs modern JavaScript frameworks and Google Tag Manager for analytics, ensuring a responsive and engaging user experience across devices. While performance is moderate and mobile optimization is good, there is room for improvement in accessibility and security headers implementation. The site lacks explicit privacy and cookie policies, which impacts its privacy compliance rating. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but it does not publish security policies or incident response contacts. The absence of WHOIS data reduces domain registration transparency, although the website's content and external references strongly support its legitimacy. Overall, the site presents a moderate security posture with recommendations for enhanced compliance and security best practices. Strategically, the website effectively supports Toyota's brand loyalty and community engagement efforts in Poland, but should address privacy and security policy gaps to strengthen trust and regulatory compliance.

T

Toyota Central Europe Sp. z o.o.

toyotajuniors.pl

0

Toyota Juniors is a youth-focused educational platform operated by Toyota Central Europe Sp. z o.o., designed to engage children and young people with automotive technology, corporate social responsibility, and creative contests. The website serves as a branded CSR initiative promoting Toyota's values and community involvement in Poland. The platform offers educational content, multimedia galleries, and a membership club for youth engagement. Technically, the site uses a traditional jQuery-based stack with Google Analytics and reCAPTCHA integration, providing moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and spam protection, but lacks advanced security headers and explicit incident response policies. Privacy compliance is strong, with a comprehensive GDPR-aligned privacy policy and cookie consent mechanisms. However, the absence of WHOIS data reduces transparency and slightly impacts trust. Overall, the site is professional, trustworthy, and safe for its target audience.

T

Toyota

toyotakids.pl

0

The website www.toyotakids.pl is a branded digital platform targeting children, created by Toyota Poland to engage young audiences through interactive games and educational content. It serves as a marketing and brand engagement tool within the transportation sector, leveraging Toyota's brand recognition. The site offers user registration, ranking systems, and various interactive features designed to stimulate imagination and learning in a child-friendly environment. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Google Analytics, and Google reCAPTCHA for security and analytics purposes. The site is mobile-optimized with good design quality and navigation clarity, though accessibility features are basic. The site uses HTTPS with a valid SSL configuration, but lacks some recommended security headers. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, CSRF token usage in forms, and integration of Google reCAPTCHA to prevent abuse. However, the absence of visible privacy policies, security headers, and direct contact information for security or data protection concerns indicates areas for improvement. No vulnerabilities or suspicious content were detected, and the site is safe for its intended child audience. Overall, the website is legitimate and professionally maintained as an official Toyota brand engagement platform. Recommendations include publishing a comprehensive privacy policy, adding standard security headers, and providing clear contact information to enhance trust and compliance.