Security Directory

S

Svensk Hypotekspension

hypotekspension.se

0

Svensk Hypotekspension is a Swedish financial services provider specializing in offering special loans to pensioners who own their homes. The website clearly targets elderly homeowners in Sweden, providing a niche financial product that leverages home equity. The company appears to be established with a professional online presence, including a well-structured website and comprehensive cookie and privacy policies, indicating compliance with GDPR and Swedish regulations. Technically, the website is built using modern web technologies such as React and Next.js, with integration of Cookiebot for consent management and Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics in place. Security posture is strong with HTTPS enforced and standard security headers present, although there is room for improvement in accessibility and explicit security policy disclosures. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data for the exact www subdomain was not found, which is typical as the registered domain is likely hypotekspension.se without the www prefix. The website uses extensive third-party marketing and analytics tools, but manages user consent appropriately. Overall, the website presents a trustworthy and professional image suitable for its target audience. Strategic recommendations include enhancing accessibility, publishing security and incident response policies, and providing clearer contact information for security matters.

B

Bank Norwegian – en filial av NOBA Bank Group

banknorwegian.no

0

Bank Norwegian is a Norwegian branch of the Swedish NOBA Bank Group, providing a range of financial products including credit cards, consumer loans, refinancing options, savings accounts, and insurance products. The company targets Norwegian consumers seeking accessible and competitive financial services. The website reflects a professional and consistent brand presence with clear product offerings and pricing transparency. Technically, the site leverages modern web technologies such as React and Material-UI, with media assets hosted on Cloudinary and analytics via Google Tag Manager and Google Analytics. The site is mobile-optimized and accessible, with good SEO practices in place. Security posture is strong with HTTPS enforced and cookie consent mechanisms implemented, though explicit security headers and incident response information are not publicly visible. WHOIS data is privacy protected, which is typical and justified for a financial institution. Overall, the website demonstrates a mature digital presence with solid business credibility and compliance.

N

Nordax Bank AB (publ)

nordax.se

0

Nordax Bank AB (publ) is a Swedish financial institution specializing in consumer loans, mortgages, and savings accounts, targeting customers who may have been denied loans by larger banks. The bank operates under the parent company NOBA Bank Group AB (publ) and offers competitive interest rates and deposit guarantees backed by the Swedish government. The website demonstrates a professional and modern digital presence using React and Next.js frameworks, with a focus on user experience and accessibility. Security measures such as HTTPS and security headers are properly implemented, and privacy policies indicate GDPR compliance. However, the WHOIS data for the exact domain www.nordax.se is missing, which introduces some uncertainty about domain registration details. Overall, the site is trustworthy and well-maintained, serving a niche market in Swedish retail banking.

AF Hausbau is a well-established regional construction company in Germany specializing in turnkey solid houses with a strong emphasis on customer collaboration and customized solutions. The company operates multiple subsidiaries covering residential, commercial, and engineering construction sectors, reflecting a diversified construction group. The website is built on the Contao CMS platform and uses modern JavaScript libraries to provide a responsive and user-friendly experience. While the site is well-structured and professionally designed, it lacks visible direct contact details such as phone numbers or emails on the main pages, relying primarily on contact forms. Security posture is solid with HTTPS and secure forms, but could be improved by adding security headers and explicit privacy consent mechanisms. No blocking or WAF challenges were detected, allowing full content access and analysis.

Albert Fischer Gewerbebau is a medium-sized German construction company specializing in commercial and industrial building projects, including hall construction and office buildings. With over 25 years of experience, the company offers turnkey solutions with fixed-price guarantees and timely delivery, targeting industrial and commercial clients primarily in Germany. The website is professionally designed using the Contao CMS platform and incorporates modern JavaScript libraries for enhanced user experience. While the site is mobile-optimized and SEO-friendly, it lacks some privacy compliance features such as cookie consent mechanisms. Security posture is solid with HTTPS enforced, but could be improved by adding security headers and explicit incident response policies. Overall, the company presents a credible and trustworthy digital presence consistent with its business claims.

M

Milchwerke Berchtesgadener Land Chiemgau eG

frischdienst-bgl.de

0

Frischdienst Berchtesgadener Land Chiemgau eG operates as a regional supplier specializing in fresh and local food products, offering delivery services and an online shop targeting customers in the Berchtesgadener Land and Chiemgau regions of Germany. The website presents a professional and consistent brand image with clear navigation and relevant content focused on their product offerings and services. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with moderate performance and good mobile optimization. Security measures include HTTPS enforcement and a comprehensive cookie consent mechanism, although some security headers and incident response information are not explicitly present. Privacy compliance is strong, with a detailed privacy policy linked from a related domain and GDPR-compliant cookie management. Overall, the domain registration data aligns well with the website content, indicating a legitimate and trustworthy business presence.

F

fit GmbH

mum-deo.de

0

fit GmbH operates the MUM brand, specializing in vegan deodorant products marketed primarily in Germany and several international markets. The company emphasizes sustainability with alcohol- and perfume-free deodorants packaged in glass bottles, targeting active individuals seeking effective personal care solutions. The website reflects a well-established brand with a history dating back to 1888, positioning itself as a niche player in the retail personal care sector. The business model combines e-commerce with physical retail availability, supported by a store locator feature and multilingual country-specific domains. Technically, the website uses a modern e-commerce CMS platform (likely Shopware), integrates Matomo analytics with cookie consent mechanisms, and employs responsive design for mobile optimization. While the site performs moderately well, there is room for improvement in SEO and accessibility. Security posture is solid with HTTPS enforced and privacy-aware tracking, but lacks explicit security headers and published security policies. The absence of a terms of service page and incident response contacts suggests areas for legal and security maturity enhancement. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and consistent branding. The security and privacy practices are adequate but could be strengthened by adding formal policies and technical security headers. No critical vulnerabilities or suspicious indicators were found, and the domain registration aligns with the business claims. Strategic improvements in security transparency and legal completeness would further enhance trust and compliance.

F

fenjal

fenjal.de

0

fenjal.de is the official website of fenjal, a well-established German personal care brand specializing in body and facial care products. The site showcases various product lines, including lotions, creams, shower products, and fragrances, targeting a general consumer audience interested in quality skincare. The brand emphasizes natural ingredients and wellness, supported by partnerships and social responsibility initiatives. Technically, the website is built on TYPO3 CMS, uses modern JavaScript libraries, and implements cookie consent with opt-out capabilities. Analytics are handled via Matomo with privacy considerations. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and formal policies are absent. WHOIS data is minimal but consistent with a legitimate German brand domain. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

G

GARD

gard.de

0

GARD is a German retail brand specializing in natural haircare and styling products, emphasizing formulations free from silicones, microplastics, and parabens. The company targets general consumers seeking uncomplicated, natural haircare solutions, leveraging ingredients like bamboo extract to promote healthy hair. The website serves as a brand presence and gateway to an online shop hosted on a partner domain. Technically, the site is built on TYPO3 CMS with a modern JavaScript stack including jQuery, Modernizr, and Slick Carousel, and integrates Matomo for analytics. The site is mobile-optimized with good SEO and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Privacy compliance is strong with GDPR-aligned policies and cookie management. Overall, the site is professional, trustworthy, and safe for general audiences.

A

Addleshaw Goddard LLP

addleshawgoddard.com

0

Addleshaw Goddard LLP is a well-established international law firm serving many of the world's best-known and remarkable clients. The firm provides imaginative legal solutions to pivotal business problems, positioning itself as a trusted advisor in the professional services sector. The website reflects a professional and consistent brand image, targeting corporate clients and businesses seeking legal advisory services. Technically, the website employs modern technologies including Bootstrap, jQuery, Google Tag Manager, and Cookiebot for cookie consent management. It integrates multiple third-party analytics and marketing tools such as Facebook Pixel, Hubspot, and CrazyEgg, indicating a mature digital marketing strategy. Security-wise, the site enforces HTTPS and uses cookies to enhance security such as CSRF protection tokens. However, explicit security headers are not detected, and no visible security or incident response policies are published on the site. The WHOIS data for the domain is missing or unavailable, which is unusual for a professional law firm and may warrant further verification. Overall, the website is professional, secure, and compliant with cookie consent regulations but could improve transparency by publishing privacy policies, contact information, and security disclosures.

The website fundview.media is currently inaccessible due to an Access Denied error, likely caused by a web application firewall or security mechanism. This prevents any meaningful extraction of business, technical, or security information from the site itself. The domain is registered through Amazon Registrar, Inc. with privacy protection enabled, and was created in early 2022. Without accessible content, it is not possible to assess the company's market position, services, or digital maturity. The lack of visible security headers, privacy policies, or contact information indicates a low security posture and poor compliance with privacy regulations. Overall, the site presents a high risk due to lack of transparency and accessibility.

D

DRESCHER & CIE Aktiengesellschaft

diefondsplattform.de

0

The website 'diefondsplattform.de' is an online multimedia platform operated by DRESCHER & CIE Aktiengesellschaft, targeting professional investors and financial service providers. It offers daily webinars, podcasts, and up-to-date news focused on the investment fund industry. The platform is well-positioned in the German finance sector with a broad partner network exceeding 130 partners, providing comprehensive coverage of products and providers. The business model centers on delivering educational and informational content to finance professionals, enhancing their market knowledge and engagement. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies such as Bootstrap 4, Font Awesome 6 Pro, and Swiper.js for interactive elements. The site demonstrates good mobile optimization and basic accessibility features, with a moderate performance profile. SEO is supported by proper meta tags and structured data using JSON-LD. The cookie consent mechanism is implemented, indicating awareness of privacy regulations. From a security perspective, the site enforces HTTPS and uses modern libraries, but lacks explicit security headers and visible security policies. No privacy policy or terms of service pages were found, which is a compliance gap. Contact information for security incidents or data protection officers is not provided. No vulnerabilities or suspicious content were detected in the accessible content. Overall, the website presents a professional and trustworthy front for its target audience, with room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and providing clear contact channels for incident response.

Q

Quadoro Investment GmbH

sustainableenergy.de

0

Quadoro Investment GmbH operates the QEEE fund, an open infrastructure fund focused on renewable energy projects across Europe, targeting private investors interested in sustainable and impact investing. The website clearly communicates the fund's ESG compliance, investment goals, and partnership with EB-SIM, positioning itself as a specialist in the renewable energy investment sector. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with a GDPR-compliant cookie consent mechanism, and is well-structured with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no exposed sensitive data, though formal security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting a positive business credibility and user experience.

F

Future Growth Capital

futuregrowthcapital.com

0

Future Growth Capital is a joint venture between Phoenix Group and Schroders, focused on providing private markets investment solutions primarily for UK pension funds and international investors interested in UK private markets. The company aims to unlock private markets to generate higher returns for pension savers and invest in UK businesses and infrastructure to drive economic growth. The website is professionally designed using modern web technologies such as React and Next.js, with good SEO, accessibility, and mobile optimization. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response information are not published. The absence of WHOIS registration data is a notable anomaly but the website's branding and content strongly indicate legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant. Contact is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the site presents a trustworthy and professional digital presence for a financial services joint venture.

B

BlueOrchard Finance Ltd

blueorchard.com

0

BlueOrchard Finance Ltd is a leading impact investment manager with over 20 years of experience, operating globally with a strong focus on combining social and environmental impact with financial returns. As a member of the Schroders Group, it manages the largest commercial microfinance fund worldwide and serves sophisticated institutional and private investors. The company maintains multiple offices across Switzerland, Latin America, Africa, Asia, and Europe, reflecting its broad international presence. The website is professionally designed, mobile-optimized, and rich in content, including impact reports, guides, and legal documents, supporting transparency and investor education. Technically, the website is built on WordPress using modern plugins such as Gravity Forms for data collection and Borlabs Cookie for privacy compliance. It employs SEO best practices and lazy loading for performance optimization. While HTTPS is enforced and cookie consent mechanisms are in place, the site lacks explicit security headers and published security policies, which are areas for improvement. Analytics are implemented via Google Analytics with moderate user tracking. From a security perspective, the site shows good baseline practices but could enhance its posture by publishing incident response information, adding security headers, and implementing a vulnerability disclosure policy. The WHOIS data is unavailable, possibly due to privacy protection, which slightly reduces domain trustworthiness but is common in financial services. Overall, the site is trustworthy, professional, and compliant with privacy regulations, serving its target audience effectively.

E

ECOFIS GmbH

ecofis.de

0

ECOFIS GmbH is a specialized IT service provider focused on delivering IT network, hosting, and security solutions primarily for the Creditreform Unternehmensgruppe. The company leverages its affiliation with the Creditreform group to provide robust IT infrastructure and services, including data center operations and web hosting for group entities. The website reflects a professional corporate presence with clear service offerings and contact information. Technically, the site is built on TYPO3 CMS with modern frontend components and includes a comprehensive cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS and cookie management, though there is room for improvement in security headers and incident response transparency. Overall, the domain and website present a trustworthy and credible business entity with strong group backing.

Tief- und Rohrleitungsbau Wilhelm Wähler GmbH & Co. KG is a well-established infrastructure and civil engineering company based in Germany, with a history dating back to 1919. It operates as a subsidiary of the Seier Gruppe and is recognized as a leading player in northern Germany's infrastructure construction sector. The company offers a broad range of services including district heating, pipeline construction, geotechnical engineering, and telecommunications infrastructure. The website reflects a professional and consistent brand image, emphasizing employee development and corporate values. Technically, the site is built on WordPress with modern frameworks like UIkit and integrates SEO and cookie consent tools, indicating a mature digital presence. Security posture is good with HTTPS and cookie consent implemented, though some security headers and policies could be improved. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements.

M

Mudcon GmbH

mudcon.de

0

Mudcon GmbH is a certified environmental service provider specializing in the professional disposal and recycling of drilling sludge, primarily serving construction and industrial clients in Northern Germany. The company operates under the parent organization Seier Gruppe and emphasizes sustainability, compliance, and efficiency in its service offerings. The website reflects a strong market position with clear communication of certifications and services. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring good SEO, mobile optimization, and user experience. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the digital presence supports a trustworthy and professional business image.

B

BHK Tief- und Rohrbau GmbH & Co. KG

bhk-rohrbau.de

0

BHK Tief- und Rohrbau GmbH & Co. KG is a well-established German company specializing in pipeline construction, civil engineering, and cable laying services. Founded in 1990 and operating under the parent company SEIER Gruppe, BHK serves regional clients with a focus on quality, reliability, and sustainable infrastructure development. The company offers a broad range of services including house connections, vacuum excavation, horizontal drilling, and network planning, positioning itself as a trusted partner in the energy and transportation sectors. Technically, the website is built on WordPress with modern frameworks such as UIkit and enhanced by SEO tools like Yoast. It employs Google Tag Manager and Cookiebot for analytics and privacy compliance, respectively. The site is mobile-optimized, accessible, and demonstrates good performance and SEO practices. Multiple office locations are clearly presented with comprehensive contact information, supporting strong business credibility. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, showing consistency and legitimacy. Overall, the website reflects a professional, trustworthy, and compliant digital presence suitable for its industry and audience. Strategic improvements in security headers and transparency around security policies could further enhance trust and resilience.

E

eKonferencije.com

ekonferencije.com

0

eKonferencije.com is a specialized platform focused on providing IT solutions for organizing scientific and professional conferences, seminars, and congresses. The platform offers services such as electronic paper submission, reviewer management, reporting, mass notifications, multimedia content, and participant feedback. It targets academic institutions, conference organizers, researchers, and authors primarily in the Serbian-speaking region. The business operates as a small-sized entity founded in 2012, with a niche market position in academic event management. Technically, the website employs a modern but somewhat dated technology stack including jQuery, Bootstrap, AngularJS, and FontAwesome. Hosting is provided by Bitlab Hosting as inferred from the nameservers. The site is mobile optimized and has a moderate performance profile. SEO and accessibility are basic but functional. The site uses HTTPS but lacks advanced security headers and DNSSEC, indicating room for security enhancements. From a security perspective, the site enforces HTTPS but does not implement DNSSEC or security headers such as CSP or HSTS. There is no visible privacy or cookie policy, nor incident response or vulnerability disclosure information, which are compliance gaps especially under GDPR. Contact information is present but limited. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website is functional and professional with good business credibility but requires improvements in privacy compliance and security posture to enhance trust and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing incident response contacts.

S

SCHIG mbH

schig.at

0

SCHIG mbH is a government-owned Austrian company specializing in railway and infrastructure services, operating under the auspices of the Federal Ministry for Climate Protection, Environment, Energy, Mobility, Innovation and Technology. Founded in 1996, it has evolved into a forward-looking service organization offering sustainable mobility solutions. The company holds a strong market position as Austria's competence center for railway matters, providing services such as traffic services, infrastructure control, funding programs, and registry management. The website reflects a professional and comprehensive digital presence, built on TYPO3 CMS with modern web technologies, ensuring good performance and accessibility.

P

PORR Bau GmbH

porr.at

0

PORR Bau GmbH is a large, well-established Austrian construction company with over 150 years of experience, offering comprehensive construction and engineering services across Austria. The company operates under the parent entity PORR AG and maintains a professional digital presence with a well-structured website powered by TYPO3 CMS. The site features extensive service descriptions, project references, and multiple language options, targeting construction industry clients, investors, and job seekers. Technically, the website employs modern web technologies, including Google Analytics and embedded YouTube videos, with good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some advanced security headers could be added. Privacy compliance is robust, with clear GDPR-aligned policies and cookie management. Overall, the website reflects a high level of professionalism, trustworthiness, and business credibility.

V

Vereinigung der Österreichischen Industrie (Industriellenvereinigung)

iv.at

0

The Vereinigung der Österreichischen Industrie (Industriellenvereinigung) is Austria's largest voluntary and politically independent industrial interest association representing industry and industry-related service providers across the entire value chain. The website serves as a comprehensive platform for industry advocacy, policy positions, research publications, and member services, targeting Austrian industrial companies and policymakers. The organization holds a strong market position as a key industry voice in Austria. Technically, the website is built on a modern stack including JavaScript, jQuery, Bootstrap, and Owl Carousel, managed via Gentics CMS. It employs Matomo Analytics with privacy-respecting configurations and features a cookie consent mechanism. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and respects user privacy with cookie consent and Do Not Track settings. However, it lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or suspicious elements were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. It demonstrates good privacy compliance and technical maturity, with room for improvement in security transparency and contact information availability.

G

Győr–Sopron–Ebenfurti Vasút Zártkörűen Működő Részvénytársaság

gysev.hu

0

Győr–Sopron–Ebenfurti Vasút Zártkörűen Működő Részvénytársaság (GYSEV) is a well-established regional railway company operating in Western Hungary and Eastern Austria. The company provides a broad range of services including passenger transport, rail infrastructure maintenance, vehicle maintenance, and cargo logistics through its subsidiaries GYSEV CARGO Zrt. and RAABERBAHN CARGO GmbH. The website reflects a professional and consistent brand presence with multilingual support and links to related business units and partners. Technically, the website uses a simple technology stack with jQuery 3.5.1 and standard CSS. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility and SEO features. No CMS or hosting provider details are evident from the HTML content. The site does not include analytics or tracking scripts in the provided content, indicating minimal user tracking. From a security perspective, the site uses HTTPS and sets cookies with domain scope but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. There are no forms or data collection points on the main page, reducing attack surface. However, the absence of privacy and cookie policies, as well as contact information for security or data protection, represents compliance and transparency gaps. Overall, the website is safe, professional, and trustworthy with no adult or questionable content. The domain uses privacy protection in WHOIS, which is justified for this type of business. Recommendations include adding explicit privacy and cookie policies, improving security headers, and providing clear contact information to enhance compliance and user trust.

The website at i3f2.net is currently inaccessible beyond a minimal placeholder page titled 'Dead End' with a message indicating a malformed link. There is no meaningful content, metadata, or business information available on the site. The lack of privacy, cookie, or terms of service policies, as well as absence of contact details, suggests the site is either inactive or not intended for public business use. The WHOIS data indicates privacy protection, which further obscures registrant legitimacy and business claims. Technically, the site does not present any detectable technologies, scripts, or security headers, indicating a very basic or placeholder setup. Security posture is weak due to lack of HTTPS confirmation and no visible security best practices. Overall, the site poses low trustworthiness and minimal business credibility.

M

Meco: The #1 newsletter reader | Declutter your inbox

meco.app

0

Meco.app is a technology-focused website offering a newsletter reading application designed to help users declutter their inboxes by reading newsletters outside of traditional email inboxes. The site positions itself as the leading newsletter reader app, targeting users who subscribe to multiple newsletters and seek a streamlined reading experience. The business model appears to be SaaS-based, focusing on user convenience and email management. Technically, the website is built using Framer, with integrations of Google Tag Manager, Google Analytics, and Hotjar for analytics and user behavior tracking. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility features are basic. Security posture is moderate; HTTPS is implied but no explicit security headers or policies are visible. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. No contact or incident response information is provided, which limits transparency and user trust. WHOIS data is consistent and transparent, supporting the legitimacy of the domain. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

S

Scrimba

scrimba.com

0

Scrimba is an established online education platform specializing in interactive coding courses and tutorials. Founded in 2016, it offers a wide range of programming topics including JavaScript, React, Node.js, AI engineering, and more. The platform targets beginner to intermediate learners seeking practical, hands-on coding education. Scrimba positions itself as a fast and engaging way to learn coding by merging video and IDE experiences. Technically, the website employs modern web technologies, custom web components, and is hosted and registered via Cloudflare, ensuring good performance and security. However, the site lacks visible privacy and cookie policies, which impacts compliance. Security posture is solid with HTTPS and domain protections, but DNSSEC is not enabled. Overall, Scrimba presents a professional, trustworthy platform with excellent content quality and user experience, though it should improve privacy compliance and explicit security disclosures.

D

DATAFRETE

datafrete.com.br

0

DATAFRETE is a Brazilian company specializing in digital logistics solutions, offering a Transport Management System (TMS), Business Process Outsourcing (BPO) for freight management, and route optimization services. The company positions itself as a mature player in the transportation sector with over 12 years of experience and a client base exceeding 230 companies. Their platform integrates multiple sales channels and logistics operations to optimize freight costs, improve operational efficiency, and enhance customer experience. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a high level of digital maturity. However, the absence of WHOIS data raises questions about domain registration legitimacy, which should be further investigated. Security posture is generally good with HTTPS and modern technologies in use, but lacks some security headers and explicit privacy and incident response policies. Overall, the business appears credible and established, but improvements in transparency and security documentation are recommended.

N

Nestro

cng.ba

0

The website cng.ba represents Nestro, a company promoting compressed natural gas (CNG) as an alternative fuel in Bosnia and Herzegovina. The site provides detailed information about CNG technology, its economic and environmental benefits, and locations of CNG fueling stations. The business targets vehicle owners and operators interested in cleaner and cost-effective fuel options, positioning itself as a regional energy provider with a focus on sustainable transportation solutions. Technically, the website uses modern frontend technologies including Tailwind CSS and AOS for animations, with responsive design optimized for mobile devices. The site is served over HTTPS, ensuring secure communication, but lacks advanced security headers and privacy compliance documentation. Security posture is moderate with no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, as well as limited contact information, indicates compliance gaps. Overall, the website is professional and informative but would benefit from enhanced security and privacy measures to improve trust and regulatory adherence.

T

TruPhysics GmbH

truphysics.com

0

TruPhysics GmbH operates a specialized platform focused on general purpose robotics, offering a configurator that integrates over 100 hardware, electronics, and software modules. The company targets businesses and developers in the robotics and automation sectors, positioning itself as a niche technology provider with a professional and consistent online presence. The website is built on WordPress with modern plugins and includes essential privacy and cookie policies, indicating a mature approach to compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy and age, which should be further investigated. Technically, the site employs standard technologies and tracking tools like Google Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent but lacks advanced security headers and explicit incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced transparency regarding domain registration and security policies.

I

igus

igus.com

0

igus GmbH is a global leader in the manufacturing and distribution of motion plastics, including cable carriers, polymer bearings, flexible cables, and linear slides. The company targets industrial manufacturers, automation engineers, and robotics integrators with a comprehensive product portfolio and global presence. The website reflects a mature digital infrastructure leveraging modern web technologies such as React and Next.js, integrated with advanced analytics and marketing tools. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user consent mechanisms. However, the absence of public WHOIS data reduces transparency but does not detract from the overall legitimacy given the brand's global footprint and consistent online presence. Strategic recommendations include publishing explicit security policies and vulnerability disclosure information to enhance trust further.

A

All About Automation

allaboutautomation.de

0

All About Automation is a professional event organizer specializing in trade fairs for automation, robotics, and digitalization across 10 locations in the D-A-CH region. The platform connects automation users with solution partners to promote flexible automation and smart production. The website demonstrates a mature digital infrastructure built on WordPress with Elementor, integrating multiple analytics and marketing tools managed via Google Tag Manager and Iubenda for privacy compliance. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is well-positioned as a regional leader in automation trade fairs with consistent branding and good user experience.

D

Dr. Aichhorn GmbH

aichhorn-group.at

0

Dr. Aichhorn GmbH operates as a group focused on developing and optimizing companies within the investment goods industry, particularly in manufacturing high-pressure technology and sustainable forestry. The group includes subsidiaries specializing in high-pressure equipment for chemical and petrochemical industries, high-pressure pumps, and thermal separation apparatus. Their market position is strong in Europe with global operations in their niche sectors. The website presents a professional image with clear business descriptions and contact information, targeting industrial clients and partners. Technically, the website uses Bootstrap for responsive design and Typekit for fonts, with a cookie consent mechanism implemented to comply with GDPR. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No CMS or hosting provider details are evident, and no analytics or tracking beyond cookie consent is detected. From a security perspective, the site uses HTTPS (assumed from URL), but no explicit security headers or policies are visible. The cookie consent banner is a positive privacy compliance indicator. No incident response or vulnerability disclosure information is provided, which could be improved. The WHOIS data aligns well with the business claims, indicating legitimacy. Overall, the website is safe, professional, and compliant with basic privacy requirements but could enhance its security posture and technical sophistication to improve trust and resilience.

The website 'Meldestelle Neuenhauser' serves as an internal whistleblowing and compliance reporting portal for the Neuenhauser Gruppe Holding SE & Co. KGaA, a medium-sized German corporate group. It provides channels for employees and stakeholders to report legal and compliance violations, particularly related to human rights and environmental obligations in the supply chain. The site emphasizes confidentiality, protection of whistleblowers, and legal compliance, reflecting a mature compliance culture. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including Bootstrap and Font Awesome for UI, and integrates Google Analytics with IP anonymization for visitor statistics. The site is mobile-optimized and includes a comprehensive cookie consent mechanism in German, supporting GDPR compliance. Hosting is via domaincontrol.com nameservers, indicating a commercial hosting provider. From a security perspective, HTTPS is enforced and cookie consent is implemented properly. However, no advanced security headers or explicit security policies are published, and no incident response or vulnerability disclosure information is available. The site does not expose sensitive data and appears free of vulnerabilities in the visible content. Overall, the security posture is good but could be enhanced with additional headers and transparency. The overall risk profile is low with a trustworthy business presence and professional content. Strategic recommendations include adding explicit security policies, incident response contacts, and a security.txt file to improve transparency and readiness. The site is suitable for its compliance-focused audience and maintains good privacy standards.

Neuenhauser Maschinenbau GmbH is a medium-sized manufacturing company based in Germany, focusing on providing career opportunities across various segments including apprenticeships, direct employment, internships, and support for career changers. The website serves as a professional career portal emphasizing a family-like work environment, modern workplaces, and employee development. The company holds recognized certifications such as the IHK AusbildungsSiegel, enhancing its credibility in vocational training. Technically, the website is built on TYPO3 CMS, employs modern front-end libraries like Font Awesome and Slick Slider, and integrates Google Analytics with IP anonymization to balance analytics needs with privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the website is well-designed, mobile-optimized, and provides clear navigation and contact information, supporting a high level of trustworthiness and professionalism.

T

Thomas Schartlmüller Medienagentur

tsme-one.at

0

Thomas Schartlmüller Medienagentur operates the website www.tsme-one.at, offering a unique mobile entertainment product called TZPZ | one, a 4K SmartTV integrated into a portable device. The company positions itself in the technology sector with a niche focus on mobile entertainment solutions. The website is well-structured, with clear navigation, professional design, and comprehensive business contact information including email, phone, and physical address in Austria. The business model revolves around product sales supported by an online configurator and customer support services. Technically, the site uses modern web technologies including JavaScript, Ecwid for e-commerce, and ElfSight widgets, hosted on Amazon CloudFront CDN, ensuring moderate performance and good mobile optimization.

D

d.vinci

dvinci.de

0

d.vinci is a German-based technology company specializing in recruiting and onboarding software solutions designed to optimize HR processes. Their offerings include applicant management, onboarding software, career pages, and multiposting services, targeting HR departments and recruiters. The company positions itself as an expert in seamless and efficient HR workflows, supported by a professional and well-structured website with strong SEO and digital presence. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and Borlabs Cookie for privacy compliance. Hosting is provided by SchlundTech, a reputable German hosting provider. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a mature digital infrastructure and a trustworthy business presence in the HR technology sector.

W

Waelzholz GmbH & Co. KG

waelzholz.com

0

Waelzholz GmbH & Co. KG is a global technology leader specializing in cold rolled steel products, serving industrial and manufacturing clients worldwide. The company positions itself as a high-quality steel solutions provider with a strong emphasis on technology and innovation. The website reflects a mature digital presence built on TYPO3 CMS with modern frontend technologies such as Bootstrap and Swiper.js, indicating a well-maintained technical infrastructure. Security posture is strong with HTTPS enforced and multiple security headers present, though no public vulnerability disclosure or incident response policies are published. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. The absence of WHOIS data introduces some uncertainty about domain registration transparency, but the overall professional presentation and certifications support legitimacy.

V

Villares Metals S.A.

villaresmetals.com.br

0

Villares Metals S.A. is a well-established Brazilian steel manufacturing company with a history spanning approximately 80 years. The company specializes in producing various types of steel including engineering, tool, stainless, high speed, valve steels, and specialty alloys. Their business model focuses on full-service steel production, from raw material selection to delivery, serving diverse industrial sectors such as aerospace, automotive, energy, and medical. The website reflects a mature digital presence with multilingual support, customer portals, and comprehensive corporate information. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is strong with HTTPS enforcement, cookie consent management, and CAPTCHA integration, though there is room for improvement in incident response transparency and security headers. Overall, the site is professional, trustworthy, and compliant with GDPR regulations, supporting Villares Metals' market position as a reliable industrial steel producer.

Vesuvius is a well-established global leader in metal flow engineering, primarily serving the steel and foundry industries. The company offers a comprehensive range of engineering services and solutions aimed at improving operational efficiency for industrial customers worldwide. The website reflects a mature enterprise with a strong emphasis on investor relations, sustainability, and corporate governance. Technically, the site is built on Adobe Experience Manager with modern JavaScript libraries and tracking tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and some security best practices, though there is room for improvement in explicit security headers and incident response transparency. Overall, the domain registration and WHOIS data align well with the company's identity, supporting high legitimacy and trustworthiness.

T

Ternium

ternium.com

0

Ternium is a leading steel manufacturer in the Americas, providing a wide range of steel products and innovative solutions to various industries including energy, transportation, and manufacturing. The company emphasizes sustainability and technological advancement, supported by a comprehensive digital presence with multiple regional sites and language options. The website demonstrates a mature technical infrastructure utilizing modern analytics and monitoring tools such as Google Tag Manager and Microsoft Application Insights. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are not publicly disclosed. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site reflects a large enterprise with consistent branding and high professionalism.

S

SunCoke Energy, Inc.

suncoke.com

0

SunCoke Energy, Inc. is a leading independent producer of high-quality coke primarily serving the steel production industry in the Americas. With over 60 years of experience, the company holds the highest annual coke production capacity in the United States, positioning itself as a market leader. The website targets investors, industry professionals, and potential employees, providing comprehensive corporate governance, investor relations, and sustainability information. The business model focuses on coke production, logistics, and long-term contracts, emphasizing innovation and environmental standards. Technically, the website is built on the Sitecore CMS platform and leverages modern JavaScript libraries such as jQuery, Slick Slider, and Magnific Popup. It integrates Google Tag Manager for analytics and uses Investis Digital's cookie management tools. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate with potential for improvement. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, reflecting a mature digital presence. Strategic recommendations include enhancing security headers, publishing a security policy and incident response information, and considering a vulnerability disclosure program to further strengthen security posture and stakeholder trust.

Shinagawa Refratários do Brasil is a well-established global leader in refractory manufacturing, leveraging Japanese technology to provide high-performance solutions for industrial clients in manufacturing and energy sectors. The website reflects a mature digital presence built on WordPress, featuring modern design, responsive layouts, and compliance with privacy regulations such as GDPR. Security posture is solid with HTTPS and cookie consent mechanisms, though some minor media issues and lack of explicit security policies were noted. Overall, the site projects professionalism and trustworthiness aligned with the company's long history and market position.

S

Samarco

samarco.com

0

Samarco is a Brazilian mining company specializing in the production of iron ore pellets with integrated operations in Minas Gerais and Espírito Santo. The company has an established market presence since its founding in 1977 and targets industrial and energy sectors. The website is professionally designed using WordPress with modern SEO and accessibility features, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and standard marketing/tracking tools implemented, though there is room for improvement in security headers and privacy compliance. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the website content and social media presence support the company's authenticity. Overall, the risk is moderate with recommendations to enhance transparency and security practices.

R

Reframax

reframax.com.br

0

Reframax is a Brazilian company specializing in refractory solutions and industrial services including thermal insulation, electromechanics, and industrial painting. With over 25 years of experience and a client base exceeding 500 customers domestically and internationally, it holds a strong market position in the manufacturing and industrial sectors. The website reflects a professional and well-established business with comprehensive service offerings and a clear focus on quality and compliance. Technically, the site is built on WordPress with modern frameworks and plugins ensuring good performance, mobile optimization, and SEO. Security posture is solid with HTTPS, reCAPTCHA on forms, and no exposed sensitive data, although explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, compliant with privacy regulations, and provides clear contact channels.

G

GERDAU AÇOS LONGOS S.A.

gerdau.com.br

0

Gerdau Brasil is a well-established steel manufacturing company operating primarily in Brazil, specializing in long steel products. The company has a strong market presence as indicated by its long domain registration since 1995 and consistent corporate branding. The website reflects a professional and industrial focus, targeting business clients in construction and manufacturing sectors. The digital infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar, integrated with a consent management platform to ensure privacy compliance. Security posture is solid with HTTPS enforced and no evident vulnerabilities, although some security headers could be improved. Overall, the website demonstrates a mature digital presence aligned with corporate standards and regulatory compliance.

C

CBMM

cbmm.com

0

CBMM is a leading supplier and technology partner specializing in niobium products, primarily serving the energy and structural sectors. Established in 2004, the company has a strong market position supported by a professionally designed website that highlights its expertise and product offerings. The website targets industrial and technology sectors interested in leveraging niobium's benefits. Technically, the site uses a modern tech stack including Google Tag Manager, OneTrust for cookie consent, and analytics tools such as Hotjar and LinkedIn Insight, hosted on Azure DNS with Sitecore CMS. Security posture is solid with HTTPS enabled and domain transfer protections, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is partially addressed via cookie consent but lacks a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and safe for general audiences.

H

Helmholtz Information & Data Science Academy (HIDA)

helmholtz-hida.de

0

The Helmholtz Information & Data Science Academy (HIDA) is a specialized educational platform within the Helmholtz Association, focusing on data science training and research education for doctoral candidates and postdoctoral researchers. The website serves as a central hub for training offerings, graduate schools, mobility programs, job listings, and events related to data science within the Helmholtz research community. The organization positions itself as a key player in preparing the next generation of data scientists for diverse scientific domains including energy, environment, health, and transportation. Technically, the website is built on TYPO3 CMS, hosted by hosting.de, and employs modern web technologies including responsive design, video content, and Matomo analytics for user tracking. The site demonstrates good digital maturity with comprehensive privacy and cookie consent mechanisms, multilingual support, and integration with social media platforms such as LinkedIn and Twitter. From a security perspective, the site enforces HTTPS and uses cookie consent to comply with GDPR. However, it lacks explicit published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's academic and institutional nature, indicating a legitimate and consistent domain registration. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for HIDA, supporting its mission as an educational and research institution within the Helmholtz Association.

D

Deutsches Krebsforschungszentrum (DKFZ)

dkfz.de

0

The Deutsches Krebsforschungszentrum (DKFZ) is Germany's largest biomedical cancer research institution, employing over 3,000 staff and focusing on understanding cancer development, risk factors, prevention, diagnostics, and treatment. The website reflects a mature, well-funded public research entity with strong collaborations and translational research centers. Technically, the site is built on TYPO3 CMS with modern web technologies, optimized for performance, accessibility, and SEO. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site projects high professionalism and trustworthiness, supporting DKFZ's mission and public engagement.

E

event lab. GmbH

haicon.cc

0

The website haicon.cc represents the Helmholtz AI Conference 2025, a well-established scientific event focused on artificial intelligence applications in science. The conference is organized by event lab. GmbH in association with the Helmholtz Artificial Intelligence Cooperation Unit and multiple Helmholtz research centers. The site targets researchers, AI professionals, and industry partners, offering conference programs, workshops, poster sessions, and networking opportunities. The business model centers on event organization and community building within the AI research domain. The website demonstrates strong branding consistency and professional content quality, reflecting its reputable market position within the scientific community. Technically, the site is built on WordPress using the Avada theme and several plugins including LayerSlider and Borlabs Cookie for cookie management. Accessibility is a key focus, with the OneTap Pro accessibility plugin providing multiple modes for users with disabilities. The site is mobile-optimized and performs moderately well, with good SEO and meta tag implementation. External links to partner institutions and social media channels are properly integrated. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes standard security headers. Cookie consent mechanisms are in place, and privacy policies are comprehensive and GDPR compliant. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not found, representing areas for improvement. No vulnerabilities or suspicious content were detected. Overall, haicon.cc is a trustworthy, professional, and secure platform for hosting a major AI scientific conference. Strategic recommendations include publishing dedicated security and incident response pages, enhancing direct contact information for security matters, and considering a formal vulnerability disclosure policy to further strengthen trust and compliance.