Security Directory

T

Tilde.ai

tilde.com

0

Tilde.ai is a European leader in AI-driven language technology, providing a comprehensive suite of services including neural machine translation, human translation, website translation, speech-to-text, text-to-speech, real-time transcription, and conversational AI solutions such as chatbots and internal knowledge assistants. The company targets businesses and enterprises requiring advanced language technology solutions, positioning itself strongly in the European technology market. The website reflects a mature digital presence with a professional design and consistent branding, supported by a domain registered since 2017 under Digital Privacy Corporation in the US. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies including React components, Google Tag Manager, Hotjar analytics, and Facebook SDK for marketing and tracking. Hosting appears to be supported by Azure DNS services. The site is mobile optimized, accessible, and SEO friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protection. However, DNSSEC is not enabled, and explicit security headers are not detected in the provided data. No security policy, incident response contacts, or vulnerability disclosure mechanisms are published, which are areas for improvement. The site employs cookie consent mechanisms and tracking pixels, indicating moderate user tracking. Overall, the website is trustworthy and professionally managed, with a solid business and technical foundation. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, adding security headers, and providing clear contact channels for security incidents to enhance compliance and trust.

P

Popupsmart

popupsmart.com

0

Popupsmart is a technology company specializing in no-code popup builder solutions aimed at increasing e-commerce sales and user engagement. Founded in 2018 and based in Miami, FL, the company offers a SaaS platform with AI-powered popup creation, extensive integrations, and advanced targeting features. The website demonstrates a mature digital presence with professional design, clear navigation, and comprehensive content tailored to marketing professionals and small to medium businesses. Technically, the site leverages modern web technologies including Webflow CMS, Google Analytics, PostHog, and Cloudflare DNS, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement and domain protection, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Overall, Popupsmart presents a trustworthy and credible business with a solid market position in the popup builder niche.

K

KurPirkt.lv - Visi interneta veikali. Uzzini, kur pirkt!

kurpirkt.lv

0

KurPirkt.lv is a Latvian e-commerce price comparison and online store catalog website designed to help users find products and compare prices across various Latvian internet stores. The platform targets Latvian online shoppers and offers services such as product search, price comparison, and listings of popular products. The website is primarily in Latvian with an option for a Russian version, indicating a regional focus. The business model centers on aggregating product data from multiple stores to facilitate informed purchasing decisions. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, Google Fonts, and Google Tag Manager for analytics. The design is responsive and user-friendly, providing a good user experience on mobile devices. However, the site lacks advanced technical frameworks or CMS indications and shows moderate performance and SEO optimization. Security-wise, the site uses HTTPS (assumed from URL), but no explicit security headers or advanced protections are detected. There is no visible cookie consent mechanism or comprehensive privacy compliance features, which may pose compliance risks. Contact information is limited to a single email address in the footer, with no phone numbers or physical addresses provided. Overall, the website is functional and serves its business purpose but would benefit from enhanced security measures, privacy compliance, and richer contact information to improve trust and regulatory adherence.

N

No-Q

no-q.info

0

No-Q is a German-based software company specializing in cloud-based, capacity- and resource-driven online appointment booking solutions tailored for healthcare institutions, businesses, and public administration. The company offers a comprehensive SaaS platform with additional PaaS reseller options, focusing on optimizing service delivery, resource management, and digital transformation. Their product suite includes online appointment coordination, resource and capacity management, course booking, rental management, personnel management, and add-ons such as locator solutions, video consultations, and online payments. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site runs on WordPress with Elementor and integrates modern libraries and consent management tools, ensuring compliance with GDPR and cookie regulations. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. WHOIS data is privacy-protected, common for SaaS providers, and does not raise immediate concerns. Overall, No-Q presents as a credible, professional business with a strong market position in appointment and resource management software.

S

Scribe

scribe.how

0

Scribe is a technology company specializing in automated process documentation and knowledge sharing solutions. Founded in 2020, it offers a SaaS platform that enables teams and enterprises to create step-by-step guides quickly using AI and visual tools. The company positions itself strongly in the enterprise market, boasting over 5 million users and adoption by 94% of Fortune 500 companies. Its key services include workflow capture, documentation, and integrations with other platforms to enhance team productivity. Technically, the website is built on Webflow, uses modern web technologies including Google Fonts, jQuery, Mixpanel, and Google Tag Manager, and is hosted with Cloudflare DNS and Squarespace as the domain registrar. The site is fast, mobile-optimized, and well-structured with good SEO practices. Analytics and marketing tools are extensively used for user tracking and engagement. From a security perspective, the site enforces HTTPS, has domain status protections, and holds certifications such as SOC 2 Type II, HIPAA, and CCPA compliance. However, DNSSEC is not enabled, and no explicit security headers or incident response contacts are published. Privacy and cookie policies are present but lack a consent mechanism. Overall, the security posture is good but can be improved with additional controls. The overall risk assessment is low with no critical vulnerabilities detected. Strategic recommendations include enabling DNSSEC, implementing cookie consent, publishing security headers, and providing incident response contacts to enhance trust and compliance. The website demonstrates a mature digital presence suitable for enterprise customers with a strong focus on usability and trust.

L

LaunchNotes

launchnotes.io

0

LaunchNotes is a technology company offering a SaaS product communication platform designed for enterprise teams to centralize product updates, align internal teams, and engage customers effectively. The platform includes tools for release notes, changelogs, roadmaps, feedback collection, widgets, and integrations, positioning itself as a comprehensive solution in the product communication space. The website demonstrates a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, it leverages modern web technologies including Webflow CMS, Google Tag Manager, Segment Analytics, PostHog, and Rewardful for marketing and analytics, indicating a well-integrated infrastructure. Security posture is strong with HTTPS enforcement, security headers, and a dedicated security page, though it lacks a public vulnerability disclosure or security.txt file. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS data raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy, but monitoring domain registration status and enhancing security transparency are recommended.

D

Draugiem.lv

draugiem.lv

0

Draugiem.lv is a leading Latvian social networking platform, offering users the ability to connect, share media, and participate in community activities. The website is well-branded and localized for the Latvian market, positioning itself as the primary domestic social network. Technically, the site uses modern JavaScript and CSS assets served from a dedicated hosting domain, with HTTPS enforced and basic security measures like Content-Security-Policy in place. However, the absence of visible privacy, cookie, and security policies indicates gaps in compliance and transparency. Security posture is moderate, with room for improvement in headers and vulnerability disclosures. Overall, the site is safe for general audiences and maintains a moderate trust level based on WHOIS and technical observations.

S

SIA TVNET Grupa

apollo.lv

0

Apollo.lv is a prominent Latvian news and entertainment website operated by SIA TVNET Grupa. It offers a wide range of content including news, horoscopes, sports, technology, and entertainment, targeting a general audience in Latvia. The site is well-established with a professional editorial team and strong market presence as part of a larger media group. Technically, the website employs modern web technologies such as Vue.js, Google Analytics, Chartbeat, and a subscription/paywall system via Piano.io, indicating a mature digital infrastructure. The site is mobile-optimized and follows good SEO and accessibility practices. Security-wise, Apollo.lv enforces HTTPS, uses multiple security headers, and integrates a consent management platform for GDPR compliance. No critical vulnerabilities or blocking mechanisms were detected, and the WHOIS data aligns well with the business information, supporting legitimacy. Overall, Apollo.lv demonstrates a strong security posture, good privacy compliance, and high business credibility.

The website pmo.ee currently presents an empty HTML page with no visible content, metadata, or interactive elements. The domain is registered since 2011 with Zone Media OÜ, a known Estonian registrar and hosting provider. Due to the lack of content, no business description, services, or contact information can be derived from the site. The technical infrastructure appears minimal, with no detectable CMS, scripts, or security headers. The absence of HTTPS or security best practices indicates a low security posture. No privacy, cookie, or terms of service policies are present, which raises compliance concerns. Overall, the site is accessible but non-functional, limiting any meaningful analysis or user engagement.

The website at itvnet.lv currently presents no accessible content, with an empty HTML body and no metadata or visible elements. The domain is active and uses Cloudflare nameservers, suggesting the presence of a Web Application Firewall or security protection that blocks content access. Due to the lack of content, no business information, contact details, or policies are available for analysis. The technical infrastructure appears to rely on Cloudflare for hosting or protection, but no further technology stack details can be determined. Security posture cannot be properly evaluated given the absence of accessible content, and no privacy or compliance indicators are present. Overall, the site appears either under maintenance, protected by a security challenge, or inactive, resulting in a low trust and credibility rating.

S

Setupad

stpd.cloud

0

Setupad Cloud is a technology-focused landing page associated with Setupad, a company likely operating in the advertising technology and cloud services sector. The page serves primarily as an informational gateway directing visitors to the main Setupad website. The business appears to be a small, technology-oriented entity founded around 2020, with a consistent domain registration and hosting setup via Cloudflare. The website demonstrates a moderate level of digital maturity with basic mobile optimization and use of Google Analytics for tracking. However, it lacks critical privacy and cookie policies, contact information, and advanced security headers, which limits its compliance and security posture. Overall, the site is professional and safe but could benefit from enhanced transparency and security features.

M

Matterport

matterport.com

0

Matterport is a leading technology company specializing in 3D digital twin creation and virtual tour software, serving primarily the real estate, corporate real estate, facilities management, and construction sectors. Recently acquired by CoStar Group, Matterport offers a comprehensive SaaS platform combined with proprietary 3D capture hardware and professional capture services. The company targets enterprise and professional users seeking to digitize physical spaces for enhanced visualization, collaboration, and operational efficiency. Technically, the website is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and integrates advanced analytics and marketing tools, reflecting a mature digital presence. Security posture is strong with HTTPS enforcement, SOC 2 certification, and secure cloud storage, though DNSSEC is not enabled and explicit security policies are not publicly detailed. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and technical sophistication, supporting Matterport's market leadership in immersive 3D technology.

Churchgate Partners is a specialized international investor relations advisory firm based in India, established in 2009. The company provides tailored investor relations programs and digital platforms to corporate clients, focusing on global equity market engagement. Their services include communication materials, research analyst access, investor targeting, market perception studies, corporate planning, transaction support, and ESG disclosure facilitation. The website reflects a professional and consistent brand presence with clear contact information and a LinkedIn presence, supporting their market position as a trusted advisor in the finance sector. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Microsoft Azure DNS infrastructure. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Performance is moderate with no major technical issues detected. However, no CMS or advanced frameworks are identified, indicating a custom or static site approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks DNSSEC, security headers, and formal privacy or cookie policies. The contact form uses EmailJS for email sending but lacks CAPTCHA or bot mitigation. No incident response or vulnerability disclosure information is provided. These gaps suggest moderate security maturity with room for improvement in compliance and protection measures. Overall, the website is trustworthy and professionally presented, with a strong business credibility score. The absence of privacy and cookie policies and limited security headers reduce privacy compliance and security posture scores. Strategic improvements in these areas would enhance the site's security and regulatory compliance, supporting long-term business trust and resilience.

SCG NEWS CHANNEL is a corporate media platform operated by SCG, providing news, updates, and video content focused on business, sustainability, innovation, and products & services related to SCG. The website targets a general audience interested in corporate news and operates bilingually in Thai and English. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses multiple analytics tools including Google Analytics, Hotjar, and Matomo. The site is mobile optimized and has good SEO practices but lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Recommendations include adding privacy and cookie policies, enabling DNSSEC, and improving security headers to enhance security and compliance.

ม

มูลนิธิเอสซีจี SCG Foundation

scgfoundation.org

0

The SCG Foundation website represents a well-established non-profit organization focused on educational scholarships, youth development, and public benefit projects in Thailand. The foundation is closely associated with SCG, a major Thai conglomerate, which enhances its market position and trustworthiness. The website is professionally designed, mobile-optimized, and provides clear navigation to various programs and donation options. Technically, the site is built on WordPress with modern plugins and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data limits full domain trust verification, but the website content and branding strongly indicate legitimacy. Privacy policy and terms of service are not explicitly found, which is a gap in compliance. Overall, the site is a credible digital presence for a large non-profit foundation with room for enhanced security and privacy transparency.

S

SCG

scgsustainability.com

0

SCG Sustainability website serves as a comprehensive platform showcasing SCG's commitment to sustainability, ESG principles, and net-zero goals. The site is content-rich with detailed performance metrics, feature stories, and strategic sustainability initiatives. Technically, it is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. The absence of WHOIS data for the domain introduces some uncertainty regarding domain registration transparency, though the website content and branding strongly indicate a legitimate enterprise presence.

A

AlphaInvest Holdings Pte Ltd

listedcompany.com

0

The website www.listedcompany.com operates as a financial newsletter platform branded as 'FOCUS - By AlphaInvest', providing weekly updates and performance reviews of listed companies primarily in Singapore, Malaysia, and Thailand. It targets investors and market watchers interested in Southeast Asian stock markets. The business model revolves around subscription-based newsletter distribution, with a long archive of newsletters dating back to 2005, indicating sustained operations. The parent company is AlphaInvest Holdings Pte Ltd, a Singapore-based entity. Technically, the website employs standard web technologies including jQuery, Fancybox, Google Fonts, and Google Analytics for tracking. The site is mobile responsive and well-structured, offering a good user experience and clear navigation. However, the absence of a cookie policy and consent mechanism is a privacy compliance gap. Security posture is moderate; HTTPS is assumed but no explicit security headers were detected, and no incident response or security policies are published. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and registration status. Overall, the website is professional and content-rich but would benefit from enhanced security and privacy compliance measures.

T

Tập đoàn SCG tại Việt Nam

scgvietnam.vn

0

SCG Vietnam is a major enterprise operating in multiple sectors including cement and building materials, petrochemicals, packaging solutions, logistics, and renewable energy. The company holds a strong market position as a top foreign direct investment (FDI) enterprise recognized for sustainable development. Their website demonstrates a mature digital presence built on WordPress with modern technologies and good SEO practices. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with data protection regulations. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response contacts are absent. Overall, SCG Vietnam presents a professional, trustworthy, and well-branded corporate website with comprehensive business information and active social media engagement.

I

Ionic

ionicframework.com

0

Ionic is a leading open source mobile UI toolkit that empowers web developers to build high-quality cross-platform mobile apps and Progressive Web Apps using popular JavaScript frameworks such as React, Angular, and Vue. The company has established a strong market position with a mature product offering, a vibrant community, and adoption by major enterprises. Technically, the website demonstrates modern infrastructure with a fast, mobile-optimized, and accessible design leveraging contemporary web technologies and Cloudflare for DNS and CDN services. Security posture is solid with HTTPS enforcement and domain management best practices, though there is room for improvement in DNSSEC and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks explicit privacy and terms of service documentation. Overall, the website and business present a professional, trustworthy, and technically sound presence in the cross-platform app development market.

S

Senq

senq-cyber.com

0

Senq is an enterprise-focused cybersecurity company specializing in advanced threat intelligence and breach detection services. Their offerings include dark web monitoring, takedown services, vendor breach monitoring, strategic threat reports, disinformation monitoring, and bespoke threat content. The company targets financial institutions and large enterprises globally, with a presence in the United States, UAE, and Europe. The website demonstrates a professional and consistent brand image with modern design and clear navigation. Technically, the site uses modern front-end technologies such as Tailwind CSS and Font Awesome, ensuring good mobile responsiveness and accessibility. However, there is no evidence of CMS or hosting provider details. Performance is moderate, and SEO practices are adequately implemented. Security-wise, HTTPS is implied but no explicit security headers were detected, and no incident response or vulnerability disclosure policies are published. The absence of WHOIS data for the domain raises concerns about domain legitimacy. Overall, Senq presents a strong security posture with recognized certifications (SOC 2 Type II, GDPR, NIC2, ISO 27001) and a comprehensive service portfolio. The lack of privacy and cookie policies and missing WHOIS data are notable gaps. The site is safe for general audiences and does not contain any adult or questionable content.

A

Survy QR

alaloush.com

0

The website www.alaloush.com hosts a portal named 'Survy QR', which appears to be a login interface for a survey or event management platform leveraging QR codes. The site targets users who require authenticated access to surveys or event-related data. The business model is web-based service delivery with user authentication but lacks publicly available business or contact information, limiting transparency. Technically, the site employs a variety of common frontend libraries including jQuery, Bootstrap 4, FontAwesome, and several plugins for UI enhancements. The performance is moderate with basic mobile optimization and accessibility features. However, SEO optimization is minimal, and no CMS or hosting provider details are evident. The site uses HTTP in the base URL, but HTTPS usage is not confirmed, which is a concern. From a security perspective, the site lacks visible security headers such as CSP or HSTS, and no anti-CSRF tokens are evident in the login form. The absence of WHOIS data for the domain raises legitimacy concerns, as the domain appears unregistered or privacy-protected without clear justification. No privacy, cookie, or terms of service policies are present, indicating poor privacy compliance. No contact or incident response information is provided. Overall, the site presents a low trust profile with basic content and technical implementation. The lack of transparency in domain registration and absence of security best practices suggest a need for significant improvements to enhance security posture and business credibility.

The website at www.lsp.com is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content. This indicates that access is blocked or restricted, preventing any meaningful content or business information from being retrieved. The domain WHOIS data is unavailable, suggesting the domain is either unregistered, reserved, or otherwise not publicly registered. Consequently, no information about the registrar, registrant, or domain age can be confirmed. The lack of accessible content and registration data severely limits the ability to assess the company's business operations, market position, or services. Technically, the site lacks any detectable technologies, scripts, or metadata, and no security headers or HTTPS information is available. This results in a very low security posture and poor technical implementation. Overall, the site appears non-functional or intentionally blocked, which raises significant concerns about legitimacy and trustworthiness.

S

SCGJWD Logistics

scgjwd.com

0

SCGJWD Logistics is a leading logistics and supply chain company operating primarily in the ASEAN region, with a strong presence in Thailand. The company offers a comprehensive range of services including integrated logistics for B2B and B2C clients, international logistics, logistics infrastructure, and industry-specific solutions. Their website reflects a mature business with detailed service offerings, sustainability initiatives, and investor relations information, positioning them as a major player in the transportation sector. Technically, the website is built on modern frameworks such as Vue.js, incorporates performance optimizations like lazy loading, and uses trusted third-party services including OneTrust for privacy compliance and Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and business transparency. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining regular audits of third-party scripts to further strengthen security and compliance.

บ

บริษัท ปูนซิเมนต์ไทย จำกัด (มหาชน) (SCG)

scg.com

0

SCG (Siam Cement Group) is a leading Thai conglomerate operating primarily in manufacturing sectors such as cement, chemicals, packaging, and energy. The company emphasizes sustainable growth aligned with ESG principles and inclusive green growth, targeting both domestic and ASEAN markets. Their website reflects a mature digital presence with comprehensive business, sustainability, and investor relations content. Technically, the site uses modern frameworks like Next.js and React, with good mobile optimization and performance. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though no public vulnerability disclosure or incident response contacts are found. Overall, SCG's website demonstrates high professionalism and trustworthiness, supporting its enterprise status and market leadership.

P

Publuu

publuu.com

0

Publuu is a technology company specializing in converting PDF files into interactive digital flipbooks with advanced features such as custom branding, interactive elements, sharing options, and reader analytics. The company operates a SaaS business model targeting businesses and individuals who want to create engaging digital publications like catalogs, brochures, magazines, and ebooks. Publuu holds a strong market position with positive customer reviews and industry recognition. Technically, the website is built on WordPress, uses modern JavaScript libraries like GSAP and Swiper, and is hosted on Amazon AWS with Cloudfront CDN, ensuring fast performance and mobile optimization. Security posture is good with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting a positive user experience and business credibility.

S

Scribe

scribehow.com

0

Scribe is a technology company specializing in automated process documentation and knowledge sharing solutions. Founded in 2020, it offers a SaaS platform that enables teams and enterprises to create step-by-step guides quickly using AI and workflow automation. The company has established a strong market position, trusted by 94% of Fortune 500 companies and boasting over 5 million users across 600,000 organizations. Its key services include automated guide creation, workflow AI, and integrations to enhance team productivity and onboarding. Technically, Scribe leverages modern web technologies including Webflow CMS, Google Tag Manager, Mixpanel analytics, and ProfitWell for subscription analytics. The site is hosted with Squarespace Domains and uses Cloudflare for DNS services. The website is well optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, Scribe demonstrates a solid posture with HTTPS enforcement, compliance with SOC 2 Type II, HIPAA, and CCPA standards, and a publicly accessible trust center. However, DNSSEC is not enabled, and there is no visible security.txt or explicit incident response contact, which are areas for improvement. The website does not show any signs of vulnerabilities or malicious activity. Overall, Scribe presents a professional, trustworthy, and secure online presence with comprehensive privacy and cookie policies. The extensive use of analytics and marketing tools indicates a data-driven approach to growth. The risk profile is low, with recommendations focusing on enhancing DNS security and incident response transparency.

The website jekabpils.jak.lv serves as a security validation gateway powered by BitNinja, designed to block IP addresses suspected of violating server security policies and to prevent automated bot access. Visitors are required to complete a CAPTCHA challenge to proceed, indicating the site functions primarily as a protective layer rather than a traditional business or content site. The page includes multilingual support and integrates Google reCAPTCHA and Google Analytics for bot mitigation and visitor tracking. Technically, the site uses legacy CMS meta tags referencing Joomla 1.5 and WordPress 2.5, though the actual content is minimal and focused on security validation. The presence of Google Analytics and Tag Manager scripts indicates moderate tracking capabilities. However, the site lacks modern security headers and explicit privacy or cookie policies, which limits its compliance posture. From a security perspective, the site demonstrates basic bot mitigation practices but shows potential risks due to outdated CMS references and absence of advanced security headers. The domain WHOIS data is privacy protected, which is typical for security-related services but limits transparency. Overall, the site is a security checkpoint rather than a business-facing website, with limited content and no direct business or contact information. Strategically, the site should enhance its security posture by updating CMS components, implementing modern security headers, and publishing clear privacy and cookie policies to improve trust and compliance. Given its role as a security gateway, maintaining robust bot mitigation and clear user guidance is critical.

K

Krankenpflege Hilde Ubben

hildeubben.de

0

Krankenpflege Hilde Ubben is a small, established healthcare provider in Germany specializing in home nursing and related services since 1996. The company offers comprehensive patient care including medical and housework support, focusing on compassionate end-of-life care. Their website reflects a professional and consistent brand presence with clear service descriptions and contact information. Technically, the site is built on WordPress with popular plugins and themes, hosted on rzone.de, and employs HTTPS with a cookie consent mechanism, indicating basic GDPR compliance. However, the WordPress version and plugins appear outdated, and no privacy policy or terms of service pages are present, which are compliance gaps. Security headers are missing, representing an area for improvement. Overall, the site is safe, trustworthy, and well-positioned for its target audience but would benefit from enhanced security and compliance measures.

V

VILKS Group

vilksgroup.com

0

VILKS Group is a Latvia-based transportation company specializing in international road freight services with a focus on temperature-controlled cargo across Europe. Established in 2007 as a successor to MULTILOG, VILKS leverages over 14 years of industry experience and a dedicated team to provide groupage, full cargo transportation, warehousing, local deliveries, and express freight services. Their market position is that of a reliable and specialized logistics partner serving businesses requiring temperature-sensitive transport solutions, particularly in the Baltic region and Finland. Technically, the website is built on WordPress with standard plugins such as Contact Form 7 and integrates modern tracking and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and content quality, reflecting a mature digital presence. Hosting and domain registration are consistent with professional standards, though DNSSEC is not enabled. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA on forms, along with a cookie consent mechanism, indicating compliance with GDPR. However, there is room for improvement in security headers and explicit security policies. No incident response or vulnerability disclosure information is provided, which could be enhanced to improve trust and readiness. Overall, the website and business demonstrate a solid risk posture with no critical vulnerabilities detected. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security policies, and enhancing incident response transparency to further strengthen security and compliance.

S

SIA "Skaistumpasaule"

shopbeauty.lv

0

Shopbeauty.lv is an established Latvian online cosmetics retailer operating since 2009 under the company SIA "Skaistumpasaule". The website offers a wide range of beauty and cosmetic products from numerous brands, targeting Latvian consumers interested in personal care and beauty products. The business model is focused on e-commerce retail with additional customer engagement through promotions, brand filtering, and social media presence. The company provides clear contact information and physical pickup options, reinforcing its local market presence. Technically, the website uses a custom CMS platform with common web technologies including jQuery, Google Analytics, Google Tag Manager, Facebook Pixel, and Tawk.to for live chat support. The site is served over HTTPS, ensuring secure communication. However, the site lacks advanced security headers and a cookie consent mechanism, indicating room for improvement in privacy compliance and security hardening. The website performance and mobile optimization are basic but functional. From a security perspective, the site demonstrates a moderate security posture with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contacts is a gap in transparency and preparedness. The use of third-party tracking and marketing tools is standard but requires ongoing monitoring for privacy compliance. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, shopbeauty.lv is a legitimate and moderately mature e-commerce site with good business credibility and a consistent brand presence. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance trust and regulatory adherence. The site is safe for general audiences with no adult or questionable content detected.

F

FN-Serviss

fnserviss.lv

0

FN-Serviss is a Latvian company specializing in fire safety, occupational safety, environmental protection products, and related training services. Established around 2017, it holds a leading position in the Baltic region for safety expertise. The company operates an e-commerce platform alongside offering professional training and consulting services. Their website is well-structured, professionally designed, and targets businesses and individuals seeking safety solutions and education. The presence of certifications and a comprehensive privacy policy enhances their credibility. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and various plugins for analytics, marketing, and user engagement. Hosting is provided by abchost.lv, and the site uses HTTPS with good SSL configuration. The site is mobile-optimized and SEO-friendly, though some technical debt is noted with the use of an outdated jQuery version. Security posture is generally good with HTTPS and cookie consent mechanisms in place, but improvements are recommended in updating libraries and implementing explicit security headers. Privacy compliance is strong, with GDPR-aligned policies and cookie consent banners. Contact information is clearly presented, supporting business credibility. Overall, FN-Serviss presents a trustworthy and professional online presence with moderate technical maturity and good compliance. Strategic improvements in security and technical modernization would further enhance their posture and user trust.

U

uBlock Origin

ublockorigin.com

0

uBlock Origin is a well-established open-source browser extension focused on ad and content blocking with an emphasis on CPU and memory efficiency. It enjoys a strong market position with millions of active users across major browsers including Chrome, Firefox, Edge, Opera, and Safari (prior to version 13). The project is led by founder Raymond Hill and maintained actively with a transparent development process hosted on GitHub. The website reflects a professional, clean, and user-friendly design with multilingual support and clear calls to action for downloading the extension. Technically, the website uses modern web standards including HTML5, CSS3, JavaScript, and jQuery, hosted behind Cloudflare DNS services. It is optimized for performance and mobile responsiveness, with good SEO and accessibility features. However, some security best practices such as DNSSEC and security headers are not implemented, and no explicit privacy or cookie policies are published, which could be improved to enhance compliance and user trust. From a security perspective, the site enforces HTTPS and has domain registration protections in place, but lacks formal incident response or vulnerability disclosure mechanisms. No tracking or advertising scripts are present, aligning with the privacy-centric nature of the product. Overall, the security posture is solid but could benefit from additional transparency and technical enhancements. The overall risk assessment is low given the open-source nature, transparent domain registration, and absence of suspicious indicators. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing clear vulnerability reporting channels to further strengthen trust and compliance.

A

AOK

aok.de

0

AOK is a leading statutory health insurance provider in Germany, offering comprehensive health coverage, services, and health advice to a broad audience. The website reflects a mature digital presence with a modern tech stack based on React and Gatsby, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, DNSSEC, and modern security headers, although explicit security policies and incident response information are not prominently published. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Overall, the domain and website present a trustworthy and professional image consistent with a large enterprise healthcare provider.

Mehanik LV SIA is a Latvian small business specializing in automotive repair, maintenance, detailing, and car sales, with a strong focus on BMW vehicles. The company offers a comprehensive range of services including diagnostics, engine repair, body and wheels painting, detailing with ceramic coating, carbon parts production, and car sales with ordering and delivery from Germany. Their market position is that of a niche specialist serving car enthusiasts and owners in Latvia and nearby regions. The website is built on WordPress with WooCommerce, indicating a mature digital infrastructure supporting e-commerce and service presentation. The technical stack includes modern libraries and plugins, with Cloudflare DNS providing reliable hosting and security infrastructure. Security posture is moderate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information and company registration details are clearly presented, enhancing business credibility. Overall, the website is professional and functional but would benefit from improved privacy compliance and security best practices.

S

Schüt-Duis Fenster & Türentechnik GmbH & Co.KG

schuet-duis.de

0

Schüt-Duis Fenster & Türentechnik GmbH & Co.KG is a well-established family-owned business specializing in window and door technology, based in Aurich, Ostfriesland, Germany. With over 185 years of history, the company serves primarily the craft sector with a broad portfolio including insulating glass, winter gardens, roller shutters, terrace roofs, insect protection systems, and smart home-ready products. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive product and company information. Technically, the site is built on WordPress with Elementor and uses modern plugins such as Yoast SEO Premium and Slider Revolution, indicating a commitment to SEO and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be enhanced. Overall, the site is compliant with GDPR and provides clear contact and legal information, supporting trustworthiness and business credibility.

D

DESIGNSTUUV® Werbeagentur GmbH & Co. KG

designstuuv.de

0

DESIGNSTUUV® Werbeagentur GmbH & Co. KG is a well-established advertising agency operating primarily in Germany with offices in Aurich, Leer, and Konstanz. The company specializes in strategic communication, consulting, design, online marketing, website development, social media management, and public relations. Their market position is reinforced by multiple awards and certifications, including a Creditreform certificate, indicating financial reliability and trustworthiness. The website reflects a professional and consistent brand image targeting businesses seeking comprehensive marketing solutions.

S

Schuhhaus + Orthopädieschuhtechnik Gembler GmbH

gembler-schuhe.de

0

Schuhhaus + Orthopädieschuhtechnik Gembler GmbH is a small, well-established regional retailer in Aurich, Germany, specializing in footwear and orthopaedic shoe technology since 1958. The company offers a broad range of products including fashion shoes, orthopaedic services, running analyses, and a master workshop for shoe adjustments. Their website reflects a professional and customer-focused business with clear contact information and social media engagement. Technically, the site is built on WordPress with Elementor and uses modern web technologies, SEO tools, and cookie consent mechanisms, indicating a mature digital presence. Security posture is good with HTTPS and hCaptcha integration, though some security headers could be improved. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements.

E

Enginsight GmbH

enginsight.com

0

Enginsight GmbH operates a cybersecurity platform tailored for the German SMB market, focusing on IT security automation, monitoring, pentesting, and ISMS solutions. Founded in 2016, the company positions itself as a niche provider leveraging AI and automation to enhance IT security for mid-sized businesses. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. The technical infrastructure includes modern technologies and is hosted with Amazon Registrar DNS services, ensuring reliable performance and security. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is evident through Cookiebot integration, but explicit privacy policy and terms of service pages were not found in the provided content. Overall, the site is trustworthy, professional, and well-aligned with its business goals.

S

SYMPLASSON Informationstechnik GmbH

symplasson.de

0

SYMPLASSON Informationstechnik GmbH is a well-established IT service provider based in Hamburg, Germany, with over 30 years of experience. The company specializes in comprehensive IT services including system administration, IT security, cloud computing, managed services, software development, and training seminars. Their target audience primarily consists of small and medium-sized enterprises (SMEs) in the Hamburg region. The website reflects a professional and consistent brand image, supported by customer testimonials and partnerships with recognized technology vendors.

L

Landkreis Aurich

landkreis-aurich.de

0

Landkreis Aurich operates as a local government authority in Germany, providing a wide range of public services including social welfare, health, environmental management, and administrative support to residents. The website serves as an official portal for information dissemination, citizen engagement, and access to government services. It targets local residents, businesses, and stakeholders within the district. The business model is that of a public sector entity focused on governance and community services. Technically, the website is built on TYPO3 CMS, leveraging Bootstrap for responsive design and various JavaScript libraries such as jQuery, Swiper.js, and DataTables to enhance user experience. The site demonstrates moderate performance and good mobile optimization, with a clear navigation structure and professional design. Cookie consent is implemented with user choice, reflecting GDPR compliance. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is minimal but consistent with the domain's purpose, supporting legitimacy. Social media presence and external partnerships further reinforce trust. Overall, the website is a well-maintained government portal with good content quality and technical implementation. Strategic improvements in security headers and transparency around security policies would enhance its security posture and trustworthiness.

The domain www.papa-carlucci.de is currently a parked domain with no active website content or business presence. The placeholder page indicates the domain is parked by GlobalFood and hosted on Oracle Cloud infrastructure. There are no privacy policies, cookie banners, contact information, or business details available on the site. The technical footprint is minimal, consisting mainly of font loading and a performance monitoring script. No security headers or HTTPS status information is provided, and no forms or user data collection mechanisms are present. Overall, the site lacks any substantive content or security posture, resulting in a low trust and credibility score.

M

Martens

martens-gartencenter.info

0

Martens is a small local German business specializing in gardening center services, landscaping, and tree nursery. The website presents a professional and consistent brand image targeting local customers interested in gardening and landscaping solutions. The business offers consultation and retail services with clear contact details and social media presence. Technically, the website is built on WordPress using common libraries such as jQuery and Google Fonts, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacking security headers and cookie consent mechanisms. WHOIS data is unavailable due to TLD restrictions, but no suspicious indicators are present on the site. Overall, the website is functional and trustworthy for its business scope.

O

Omegapoint

omegapoint.se

0

Omegapoint is a leading Nordic cybersecurity and digitalization company specializing in building resilient digital businesses by integrating cybersecurity into strategy, technology, and culture. Their market position as a Nordic leader is supported by a large expert workforce and extensive client base across sectors such as banking, energy, and public sector. The company offers a broad range of services including security consulting, cloud services, secure application development, and offensive and defensive security operations. Technically, the website is built on WordPress with modern JavaScript libraries and demonstrates good SEO, accessibility, and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and dedicated security contact information could be improved. WHOIS data for the exact www subdomain is missing, which slightly impacts trust but the overall business credibility remains high. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving direct contact information for security incidents.

C

ChatGPT

chatgpt.com

0

ChatGPT.com is a professionally designed and well-maintained website offering a conversational AI platform that assists users with writing, learning, brainstorming, and productivity. The site is closely aligned with OpenAI branding and policies, indicating a strong market position as a leading AI service provider. The technical infrastructure leverages modern web technologies including React, Cloudflare DNS, and advanced JavaScript modules, ensuring fast performance and excellent mobile optimization. Security posture is robust with HTTPS enforcement and domain registration protections, although DNSSEC is not enabled and explicit security policies are not publicly detailed. Privacy compliance is strong, with clear links to comprehensive privacy and terms of service documents hosted on openai.com. Overall, the site demonstrates high professionalism, trustworthiness, and technical maturity, suitable for a large technology enterprise.

Carsten Röpkes | Straßen- und Tiefbau is a small local construction business specializing in road and civil engineering services in the Ostfriesland region of Germany. The company offers a range of services including street and deep construction, paving with natural and concrete stones, driveway and terrace construction, and pipeline construction. The website serves as an informational portal targeting local customers and businesses seeking specialized construction and landscaping services. Technically, the website is built with basic HTML, CSS, and JavaScript, incorporating Google Analytics for visitor tracking. The site is hosted on servers associated with kasserver.com, consistent with the domain's WHOIS data. The website lacks modern CMS frameworks and shows basic mobile and accessibility optimization. SEO is reasonably addressed through meta tags and structured navigation. From a security perspective, the website lacks HTTPS, which is a critical vulnerability for user data protection and trust. No security headers are present, and there are no visible privacy or cookie policies, indicating non-compliance with GDPR requirements. The use of Google Analytics without a consent mechanism further highlights privacy compliance gaps. Contact information is clearly provided, but no incident response or security policies are disclosed. Overall, the website is functional and informative but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and protect user data. Strategic implementation of HTTPS, security headers, privacy policies, and consent mechanisms is recommended to align with best practices and regulatory requirements.

I

IEL GmbH

iel-gmbh.de

0

IEL GmbH is a small German company specializing in environmental noise measurement and consulting services, including noise emission and immission assessments and wind energy consulting. The company holds accreditation from the DAkkS, indicating recognized competence in measurement services. Their website is professionally designed using Fork CMS and Bootstrap, providing clear navigation and relevant content targeted at businesses and organizations requiring noise and environmental consulting services. The technical infrastructure is moderate with standard web technologies and hosting through kasserver.com. Security posture is basic with no advanced security headers detected and no explicit incident response or security policies published. Privacy compliance is adequate with a privacy policy and cookie consent mechanism in place. Overall, the website is trustworthy and professional, though improvements in security practices and transparency could enhance their digital maturity and risk posture.

M

MTV Aurich von 1862 e.V.

mtv-aurich.de

0

MTV Aurich von 1862 e.V. is a medium-sized local sports club based in Germany offering a wide range of sports activities across 50 disciplines. The website serves as an informational and community portal for members and prospective members, highlighting courses, events, and membership options. The technical infrastructure is built on WordPress with the Divi theme, incorporating modern UI elements such as image carousels and responsive design, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, which are critical for compliance and trust. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

T

Truesix

truesix.co

0

Truesix is a specialized PR and content marketing agency focused on elevating local brands to international prominence through strategic PR campaigns and high-quality online content. Their service offerings include SEO blogging, international PR, content writing workshops, thought leadership, event PR, and creative brainstorming. The company targets brands with ambitious growth plans seeking global exposure. Technically, the website is built on Webflow with modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and published privacy or cookie policies indicates room for improvement. The WHOIS data is privacy protected, which is typical for agencies, and no suspicious domain registration patterns were found. Overall, the website presents a professional and trustworthy image with strong client testimonials and media mentions, but could enhance compliance and security transparency.

H

Helve AI

helve.eu

0

Helve AI is a technology-oriented website hosted on the Wix platform, likely offering AI-related services or products. The site is minimalistic with limited business information and no explicit contact or policy pages. Technically, it uses modern web technologies and polyfills to ensure compatibility and performance. Security posture is moderate with HTTPS enabled but lacks explicit security headers and privacy compliance documentation. The absence of WHOIS registrant data is due to EURid privacy policies for .eu domains, which is common but reduces transparency. Overall, the site appears legitimate but would benefit from enhanced business and compliance disclosures.

G

GS data business OHG

gsdb.de

0

GS data business OHG is a small IT system house based in Aurich, Ostfriesland, Germany, offering comprehensive IT services including IT service, telecommunication, IT security, ERP solutions, time tracking, and document management systems. The company targets businesses and organizations seeking reliable IT system house solutions. The website is professionally designed using WordPress with Astra theme and includes SEO optimizations and structured data for enhanced search engine visibility. The technical infrastructure is modern, leveraging popular plugins and Matomo analytics with privacy-conscious settings. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though the absence of security headers and incident response information suggests room for improvement. Overall, the website is trustworthy and well-positioned in its local market segment.