Security Directory

A

Aittakoodi Oy

tilaataksi.fi

0

Tilaataksi.fi is a Finnish online taxi booking platform operated by Aittakoodi Oy, providing customers with a convenient way to pre-book taxis and receive competitive offers from taxi operators across Finland. The service targets both private individuals and organizations, offering a streamlined multi-step form for detailed ride requests. The platform is supported by Rideer Nordic Oy and integrates with various third-party services for analytics, customer support, and hosting. Technically, the website uses modern frameworks like Bootstrap and jQuery, with performance and mobile optimization rated as good. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms in place. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business information presented on the site.

F

Finnair

finnair.fi

0

Finnair is a well-established Finnish airline providing passenger flights and travel services to over 80 destinations worldwide. The company holds a strong market position in Northern Europe and operates with a large-scale business model supported by subsidiaries such as Norra and Finnair Cargo. The website reflects a mature digital presence with professional design, comprehensive content, and clear navigation tailored to a general audience of travelers. The technical infrastructure leverages modern web technologies including Angular, Google Tag Manager, and Akamai CDN, ensuring fast performance and mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although public incident response and vulnerability disclosure information are limited. Privacy compliance is well addressed with detailed policies and consent mechanisms aligned with GDPR requirements. Overall, the website and business demonstrate high professionalism and trustworthiness, despite the absence of WHOIS domain registration details which may be due to registry restrictions.

Savonlinja Oy is a well-established Finnish transportation company operating since 1924, providing scheduled bus routes, charter services, and travel packages primarily within Finland. The company targets general travelers and regional commuters, maintaining a strong market position with multiple subsidiaries and a recognized brand. The website reflects this with clear service offerings, travel booking forms, and active social media presence. Technically, the website uses a mix of legacy and modern technologies including AngularJS, jQuery, Bootstrap, and Google Fonts, with some outdated elements such as the legacy Google Analytics script. Security posture is moderate; HTTPS is used but no advanced security headers are detected, and privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security best practices.

P

PoriExpress

poriexpress.fi

0

PoriExpress is a Finnish regional transportation company specializing in affordable bus travel primarily between Pori and Helsinki, as well as seasonal travel packages to Lapland (Ylläs). The company targets general consumers seeking economical and convenient bus travel options and related accommodation services through partnerships. The website is professionally designed using WordPress with modern SEO and content management plugins, providing a good user experience and clear navigation. Technical infrastructure is solid with HTTPS and standard WordPress technologies, though some security headers are missing. Contact information is clearly provided, but privacy compliance could be improved with cookie consent mechanisms and more detailed security policies. Overall, the site is trustworthy and well-positioned in its niche.

OnniBus operates as a leading Finnish bus ticket sales platform, offering affordable and reliable bus travel across Finland and to international destinations such as the Baltics and Poland. The company positions itself as a well-known and cheerful brand in the Finnish transportation market, providing various ticketing options including season passes and reward programs. The website is professionally designed with good mobile optimization and clear navigation, supporting a positive user experience. Technically, the site employs modern analytics and consent management tools such as Google Analytics, Microsoft Clarity, and Cookiebot, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response contacts. The absence of WHOIS data is a notable anomaly, potentially due to privacy protection or recent domain registration, but the website content and business presence support legitimacy. Overall, the site demonstrates a strong business and technical foundation with moderate risk due to incomplete WHOIS transparency.

M

Trusted Magento 2 Extensions‎ by Magezon

magezon.com

0

Magezon is a specialized provider of Magento 2 extensions and related e-commerce services, targeting Magento store owners and developers. The company offers a wide range of products including page builders, form builders, mega menus, and other Magento 2 enhancements, supported by installation and custom development services. Their market position is that of a trusted Magento extension vendor emphasizing quality, support, and continuous updates. Technically, the website is built on Magento 2 platform with modern JavaScript libraries and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is good with HTTPS enforced and secure form handling, though some security headers are not explicitly detected. Privacy compliance is basic with a refund policy present but no explicit cookie consent or privacy policy page found. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy, though the website content and business information appear professional and consistent. Overall, Magezon presents a credible e-commerce software business with room for improvement in privacy and security transparency.

M

Magefan

magefan.com

0

Magefan is a Ukraine-based e-commerce agency specializing in Magento 2 and Shopify solutions since 2015. They offer a broad portfolio of Magento 2 extensions and Shopify apps, alongside customization services aimed at improving store performance, security, and user experience. The company has a strong market presence with over 120,000 customers and more than 50 Magento extensions, positioning itself as a reputable provider in the e-commerce technology sector. Technically, the website is built on Magento 2 with modern JavaScript libraries such as jQuery and Owl Carousel, and leverages Cloudflare for DNS services. The site demonstrates good performance, mobile optimization, and SEO practices. Security is well addressed with HTTPS, multiple security headers, and domain status protections, although DNSSEC is not enabled. The site integrates marketing and analytics tools like Facebook Pixel, Google Tag Manager, and Hotjar, indicating moderate user tracking. From a security posture perspective, Magefan shows maturity with enforced HTTPS, domain lock statuses, and no visible vulnerabilities. However, the absence of explicit privacy, cookie, and security policies, as well as incident response contacts, represents compliance gaps, especially under GDPR and related regulations. No suspicious or malicious content is detected, and the site is safe for general audiences. Overall, Magefan presents a professional and trustworthy e-commerce solutions provider with solid technical infrastructure and business credibility. Strategic improvements in privacy compliance and security transparency would further enhance their risk profile and customer trust.

H

Hartman Videoproducties

hartmanvideo.nl

0

Hartman Videoproducties is a small media production company based in the Netherlands, specializing in video production, photography, livestreaming, and videopodcasts. The company presents a professional online presence with a well-structured WordPress website built using Elementor, showcasing their services and portfolio. The domain is relatively new, registered in 2022, consistent with the business's founding date, and secured with DNSSEC and HTTPS. However, the website lacks critical compliance elements such as privacy and cookie policies, which are essential for GDPR adherence. No incident response or security policies are published, and no analytics or tracking tools are detected, indicating a minimal data collection approach. Contact information is clearly provided, enhancing business credibility.

P

POST Luxembourg

eboo.lu

0

The website www.eboo.lu is a digital banking platform operated by POST Luxembourg, offering eBanking services accessible via smartphones, tablets, and computers. It targets customers of POST Luxembourg's financial services, providing a seamless and intuitive banking experience without the need to visit physical branches. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages including English and French. The business is well-established in Luxembourg's finance and telecommunications sectors, leveraging POST Luxembourg's strong market position.

D

DEEP

deep.eu

0

DEEP is a professional IT services company specializing in cloud computing, data management, artificial intelligence, and cybersecurity, primarily serving clients in Luxembourg and France. The company positions itself as a trusted partner for digital transformation challenges, targeting a broad range of business sectors including SMEs, large enterprises, public institutions, and banking. The website is well-structured, multilingual, and provides comprehensive information about their services and business focus. Technically, the site is built on the Liferay CMS platform, utilizing modern web technologies such as jQuery, Bootstrap, React, and Clay UI components. The presence of cookie consent mechanisms and GDPR compliance indicators reflects a mature approach to privacy and regulatory adherence. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though the absence of explicit security policies and incident response contacts suggests room for improvement. WHOIS data is privacy protected, which is common for European domains and does not detract from the site's legitimacy. Overall, the website demonstrates a solid digital presence with good technical and security practices, supporting DEEP's credibility as an IT services provider.

K

Kappa Data

kappadata.eu

0

Kappa Data is a value-added distributor specializing in innovative network connectivity, security, and IoT solutions. Established in 1998 and operating across five countries with 75 employees, the company serves resellers and end customers by providing technical support and knowledge sharing. The website reflects a professional and consistent brand presence with clear navigation and relevant business content. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and providing good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. Privacy and cookie policies are present, indicating basic GDPR compliance. Overall, the site is trustworthy and well-maintained, supporting the company's regional market position.

K

Kappa Data France

exer.fr

0

Kappa Data France is a value-added IT distributor specializing in network infrastructure and security solutions, serving businesses and IT resellers primarily in France and neighboring countries. The company has a strong market presence with over 20 years of experience and offers a portfolio of reliable IT products, technical expertise, and training services. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with modern performance optimizations and uses Cloudflare DNS services. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, but lacks published security policies and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and well-positioned but would benefit from enhanced compliance and security transparency.

K

Kappa Data

kappadata.pl

0

Kappa Data is a value-added distributor (VAD) specializing in networking, security, and IoT solutions primarily serving the Polish market. The company offers technical and sales support, ongoing training, and consulting services, partnering with reputable manufacturers to deliver innovative IT solutions to businesses and institutions. The website reflects a professional and consistent brand presence with multilingual support and a focus on IT infrastructure and cybersecurity expertise. Technically, the site is built on WordPress with modern performance optimizations such as lazy loading and asynchronous script loading. Security posture is generally good with HTTPS enforced, but lacks explicit security headers and formal privacy or cookie policies. WHOIS data is unavailable from the Polish registry, which slightly impacts trust but the website content and structure support legitimacy. Overall, the site is well-positioned in its market segment with room for improvement in privacy compliance and security transparency.

K

Kappa Data

kappadata.nl

0

Kappa Data is a well-established Value-Added Distributor specializing in IT network, security, and IoT solutions primarily serving B2B IT partners in the Netherlands, Belgium, France, and Poland. Founded in 1998, the company has over two decades of experience and offers a broad portfolio including network infrastructure, security, IoT connectivity, training, and technical services. Their market position is solid within the regional IT distribution sector, supported by a professional and multilingual web presence. Technically, the website is built on WordPress using modern plugins and optimization tools, delivering moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and published security policies is noted. Privacy compliance is lacking as no privacy or cookie policies are found, representing a compliance risk. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

L

Lobby X

lobbyx.army

0

Lobby X is a Ukrainian employment and recruiting platform focused on supporting progress and victory in Ukraine. The platform targets Ukrainian job seekers and employers, likely with a focus on government or military-related employment. Technically, the website is built on WordPress using Bootstrap and jQuery, hosted with Cloudflare DNS and registered via GoDaddy with privacy protection. The site uses modern tracking tools like Google Analytics and Facebook Pixel. Security posture is moderate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is functional and professionally designed but would benefit from enhanced privacy and security measures.

The website antydot.info operates as an independent Ukrainian investigative journalism platform managed by the Асоціація УМДПЛ. It focuses on critical coverage of the law enforcement system, anti-corruption efforts, and justice reforms in Ukraine. The site offers a variety of content types including news, investigations, analytics, videos, and lectures, targeting a Ukrainian-speaking audience interested in governance and human rights issues. The business model aligns with a non-profit media outlet providing public interest journalism. Technically, the site is built on WordPress 4.8.25 with common web technologies such as jQuery and Slick Carousel. It integrates multiple analytics tools including Google Analytics and Yandex Metrika, and uses Disqus for comments. Hosting is provided by Hosting Ukraine LLC, consistent with the domain's Ukrainian focus. The site is mobile-optimized and SEO-friendly with structured data and meta tags, though accessibility features are basic. From a security perspective, the site uses HTTPS but lacks DNSSEC and important security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Tracking scripts are used without visible consent mechanisms. The WHOIS data shows a stable domain registration since 2016 with a reputable Ukrainian registrar, supporting legitimacy. Overall, the site is a credible and professionally maintained media platform with good content quality and moderate technical maturity. Security and privacy compliance require improvements to reduce risk and enhance user trust. Strategic recommendations include implementing security headers, enabling DNSSEC, publishing privacy and cookie policies, and adding user consent mechanisms for tracking.

I

Ingroup

ingroup.lu

0

Ingroup is a prominent marketing and digital solutions provider based in Luxembourg, operating through multiple specialized brands that offer comprehensive communication, advertising, branding, media, and distribution services. The company positions itself as a major player in the Greater Region, targeting businesses seeking to maximize their visibility and impact through integrated 360° solutions. The website reflects a professional and consistent brand image with clear navigation and regularly updated news content. Technically, the site is built on WordPress with modern plugins and libraries, hosted by OVH, and optimized for mobile and SEO. Security measures include HTTPS, Google reCAPTCHA on contact forms, and a robust cookie consent mechanism, although some security headers and policies could be improved. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

D

Domainhotelli

domainhotelli.fi

0

Domainhotelli is a Finnish-based domain registrar and web hosting provider offering affordable and reliable services primarily targeting Finnish-speaking customers. The company emphasizes ease of use, local language support, and competitive pricing, positioning itself as a trusted local alternative in the domain and hosting market. Their key services include domain registration, DNS management, web hosting optimized for WordPress, and customer support in Finnish. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the website runs on WordPress with modern plugins such as Yoast SEO and integrates third-party services like Google Tag Manager and Iubenda for cookie management. Hosting infrastructure is located in Finland, ensuring performance and compliance with local data regulations. Accessibility and user experience are well addressed, with clear navigation and responsive design. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, explicit security policies and incident response contacts are not published, and security headers are not evident in the HTML content. No vulnerabilities or suspicious activities were detected. WHOIS data aligns well with the business claims, showing transparency and legitimacy. Overall, Domainhotelli presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security policy transparency and incident response communication would further enhance trust and compliance.

L

Luxembourg House of Cybersecurity g.i.e.

cswl.lu

0

The website represents the CYBERSECURITY Week Luxembourg 2025, a national campaign coordinated by the Luxembourg House of Cybersecurity. It aims to promote cybersecurity awareness and foster collaboration within the Luxembourg cybersecurity ecosystem through key events such as the Luxembourg GRC Conference and hack.lu. The campaign targets cybersecurity professionals and the wider community interested in cybersecurity topics. The website content is well-structured, professionally designed, and consistent with the organization's branding. Technically, the site uses modern web technologies including React, Bootstrap, and FontAwesome, with good mobile optimization and moderate performance. The site is served over HTTPS with no visible security vulnerabilities or exposed sensitive data. However, some security best practices like security headers and cookie consent mechanisms are missing or not visible in the provided content. From a security posture perspective, the site demonstrates a good baseline with HTTPS and no evident vulnerabilities. The presence of legal and data protection notices in PDF format indicates attention to compliance, though explicit security policies and incident response information are absent. The WHOIS data aligns well with the website's claims, showing consistent registration and no privacy protection, enhancing trustworthiness. Overall, the website is a credible, professional platform for cybersecurity awareness events in Luxembourg, with room for improvement in privacy compliance and security policy transparency.

C

CIRCL

vulnerability-lookup.org

0

Vulnerability-Lookup is a specialized cybersecurity platform developed and operated by CIRCL, focusing on vulnerability tracking, correlation, and coordinated vulnerability disclosure. It serves security teams, researchers, and system administrators by aggregating data from multiple vulnerability sources and providing tools for managing security advisories and sightings. The platform integrates with global initiatives such as the Global CVE Allocation System and supports compliance with directives like NIS2. Technically, the website is built using the Hugo static site generator and employs modern JavaScript libraries for search functionality, delivering a fast and accessible user experience. Security posture is solid with HTTPS implied, but lacks explicit security headers and published privacy policies, which are areas for improvement. WHOIS data is unavailable, reducing transparency but the association with CIRCL and EU funding projects supports legitimacy. Overall, the site is professional, trustworthy, and well-positioned within the cybersecurity niche.

S

Syndicat Intercommunal de Gestion Informatique

sigi.lu

0

The Syndicat Intercommunal de Gestion Informatique (SIGI) is a government IT syndicate based in Luxembourg that provides IT solutions and support services to local municipalities. The website presents a professional image with clear navigation, comprehensive privacy and cookie policies, and a focus on supporting Luxembourg communes in their missions. Technically, the site is built on WordPress using the Divi theme and incorporates modern plugins such as the Modern Events Calendar and Matomo for analytics, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security policies and incident response contacts suggests room for improvement. The lack of WHOIS data transparency limits the ability to fully verify domain legitimacy, but the website content and structure align with a credible public sector entity. Overall, the site is well-maintained, GDPR compliant, and serves its target audience effectively.

S

Syndicat des Villes & Communes luxembourgeoises

syvicol.lu

0

The Syndicat des Villes & Communes luxembourgeoises (Syvicol) website serves as the official online presence for the Luxembourg municipal syndicate, focusing on promoting and defending the interests of cities and communes in Luxembourg. The site targets local government entities and provides information relevant to their collective interests. The business model is that of a non-profit government association, with a clear focus on advocacy and representation within the public sector. Technically, the website employs modern web technologies including Bootstrap icons, Google Fonts, Google Tag Manager, Hotjar analytics, and Cookiebot for cookie consent management. The site is served over HTTPS, ensuring secure communication. The presence of a detailed cookie consent mechanism indicates a commitment to privacy compliance, although explicit privacy and terms of service pages were not detected in the provided content. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, bot protection via Google reCAPTCHA, and controlled script loading through Google Tag Manager. However, the absence of visible security headers and lack of explicit security policies or incident response contacts suggest areas for improvement. The WHOIS data is unavailable or malformed, which reduces domain trustworthiness, but the official .lu domain and professional site design mitigate some concerns. Overall, the website is professional, secure, and compliant with basic privacy standards, but it would benefit from publishing clear privacy policies, terms of service, and contact information to enhance trust and compliance. Strategic recommendations include improving security headers, adding vulnerability disclosure mechanisms, and enhancing accessibility features.

N

National Cybersecurity Competence Center Luxembourg

nc3.lu

0

The National Cybersecurity Competence Center Luxembourg (NC3) is a government-affiliated organization dedicated to enhancing the cybersecurity posture of Luxembourg's businesses, institutions, and stakeholders. It offers a comprehensive suite of services including self-assessment tools, risk diagnostics, training simulations, and strategic guidance. The center also fosters community initiatives and funding opportunities to strengthen the national and European cybersecurity ecosystem. The website positions NC3 as a central hub for cybersecurity competence in Luxembourg, linking national efforts with European initiatives.

L

Luxembourg House of Cybersecurity

room42.lu

0

ROOM#42 is a cybersecurity simulation service operated by the Luxembourg House of Cybersecurity, offering immersive cyberattack crisis training sessions primarily targeting professionals across various sectors including finance, IT, legal, and management. The service is recognized locally and internationally, with a subsidiary presence in Toulouse. The website presents a professional and consistent brand image with clear contact information and testimonials from credible industry figures. Technically, the site uses modern front-end libraries such as Materialize CSS and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage but lacks advanced security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration and DNS setup are consistent with a legitimate business entity.

T

Technoport SA

technoport.lu

0

Technoport SA is a Luxembourg-based business incubator focused on supporting innovative and technology-oriented startups. The company provides incubation programs, event spaces, and participates in European and international projects to foster entrepreneurship and innovation. The website reflects a professional and consistent brand presence targeting entrepreneurs and startups seeking support and networking opportunities. The technical infrastructure relies on established but somewhat dated technologies such as jQuery 1.x and Bootstrap 3.x, hosted on Amazon AWS infrastructure, indicating a stable but potentially improvable digital maturity. Security posture is moderate with HTTPS usage assumed but lacking visible security headers and using outdated JavaScript libraries, which could expose the site to vulnerabilities. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR requirements. Overall, the website is functional, trustworthy, and business credible but would benefit from technical and compliance enhancements.

A

Adoraweb Agence Marketing Digital Luxembourg

adoraweb.lu

0

Adoraweb is a small, agile digital marketing agency based in Luxembourg, founded in 2013. The company specializes in providing digital marketing services including SEO, SEA, web design, and digital strategy consulting, targeting ambitious businesses in Luxembourg. Their market position is strengthened by unique agile marketing methodologies and a strong client portfolio. The website is professionally designed, content-rich, and optimized for user experience and SEO, reflecting a mature digital presence. Technically, the site is built on WordPress with modern JavaScript libraries and uses Cloudflare for DNS and likely CDN services. Security posture is solid with HTTPS and form protections, though explicit security headers and cookie consent mechanisms are missing. Analytics and tracking are extensive, leveraging Piwik PRO, Google Analytics, Facebook, and LinkedIn pixels. Overall, the website is trustworthy and professional, with clear contact information and certifications displayed. Recommendations include enhancing privacy compliance with cookie consent and security headers, and publishing security policies.

C

CMD Solutions

cmd.solutions

0

CMD Solutions is an IT service provider specializing in hosting, mail, phone, fiber, backup, and milestone services. The company appears to target business clients seeking reliable IT and telecommunications solutions. The website is built on WordPress using the Divi theme, with multilingual support for French, English, and German. The technical infrastructure includes common plugins for SEO, analytics, and GDPR compliance, hosted via EuroDNS S.A. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service found. Contact is primarily via a web form, with no direct email or phone contacts visible. Overall, the website is professional and trustworthy but could enhance transparency and security practices.

A

ANEXIA Internetdienstleistungs GmbH

anexia.com

0

ANEXIA Internetdienstleistungs GmbH is a well-established IT service provider founded in 2006 in Austria, with additional offices in Germany and the USA. The company specializes in software development, managed hosting, cloud solutions, and IT infrastructure services, targeting businesses seeking high availability and European digital sovereignty. Their market position is supported by multiple ISO certifications and a strong portfolio of international clients including BMW and Audi. Technically, the website is built on TYPO3 CMS and integrates Google Tag Manager for analytics, reflecting a modern and professional digital presence. Security posture is strong with ISO 27001 certification and domain transfer protections, though DNSSEC is not enabled and no public incident response contacts or vulnerability disclosure policies were found. Overall, the website is professional, well-structured, and compliant with GDPR, with clear contact channels and trust indicators. The risk profile is low with recommendations to enhance DNS security and publish vulnerability disclosure information.

O

OCA Luxembourg

oca.lu

0

OCA Luxembourg is a professional insurance brokerage firm operating in the Grand Duchy of Luxembourg, providing tailored insurance solutions for both professionals and individuals. The company offers a range of services including professional insurance, personal insurance, and specialty insurance products such as Lifestyle & Fine Art, construction guarantees, and coverage for European officials and sports professionals. The website reflects a well-structured and professional digital presence with clear navigation and relevant content targeting Luxembourg-based clients. Technically, the website employs modern web technologies including Bootstrap, jQuery, and specialized plugins like Revolution Slider and tarteaucitron for cookie consent management. The site is mobile-optimized and demonstrates good SEO practices, although some improvements in accessibility and security headers could enhance its technical maturity. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating awareness of privacy regulations such as GDPR. However, the absence of visible security headers and incident response information suggests room for improvement in security posture. The lack of WHOIS data limits the ability to fully verify domain legitimacy, but the professional content and business registration number lend credibility. Overall, the website presents a trustworthy and professional image suitable for its business domain, with moderate technical and security maturity. Strategic enhancements in security headers, incident response transparency, and WHOIS data availability would strengthen trust and compliance.

O

Orange Luxembourg

orange.lu

0

Orange Luxembourg is a major telecommunications operator providing mobile telephony, internet fiber, TV, and fixed-line telephone services in Luxembourg. The website reflects a professional and well-branded digital presence, targeting a general audience with clear service offerings. The technical infrastructure is based on Magento 2, leveraging modern web technologies and integrating analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS enforced and partial security headers, though some improvements are recommended to enhance security headers and CSP completeness. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy policy detected in the provided content. The absence of WHOIS data limits domain trust verification, but the website content and branding strongly indicate legitimacy.

O

Orne THD

ornethd.net

0

Orne THD is a local public telecommunications operator based in France, founded in 2015. The company provides fiber optic internet, TV, and telephony services primarily targeting residential and professional customers in specific French departments (54 and 57). The website presents a professional image with clear branding and consistent content focused on its key services. The domain registration data aligns well with the company's founding date and business claims, supporting its legitimacy. Technically, the website is built on WordPress using popular plugins such as LayerSlider and Revolution Slider, with jQuery and Google reCAPTCHA integrated for enhanced user experience and security. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Hosting is likely provided by OVH sas, inferred from the registrar information. From a security perspective, the website uses HTTPS and implements Google reCAPTCHA, but lacks DNSSEC and security headers, which are recommended to improve security posture. There is no visible privacy policy, cookie policy, or vulnerability disclosure information, indicating compliance gaps with GDPR and best practices. Contact information is clearly provided, but no dedicated security or incident response contacts are found. Overall, the website is trustworthy and professional but would benefit from enhanced security measures and compliance documentation to improve user trust and regulatory adherence.

L

lux-airport

lux-airport.lu

0

Luxembourg Airport operates as a key regional transportation hub offering passenger and cargo air services with over 100 destinations and 14 airlines. The airport provides comprehensive services including parking, transport options, shopping, dining, and special assistance, targeting travelers and business passengers. The website demonstrates a mature digital presence with multilingual support, modern technologies, and strong branding consistency. Technical infrastructure is based on WordPress with integrations for analytics, accessibility, and cookie compliance. Security posture is solid with HTTPS and privacy mechanisms, though explicit security headers and incident response policies are absent. WHOIS data is unavailable, limiting domain trust verification, but the professional website and official social media presence support legitimacy. Overall, the airport's digital platform is well-structured, user-friendly, and compliant with GDPR, serving its audience effectively.

F

FRS Finland

frs-finland.fi

0

FRS Finland is a regional ferry and charter cruise operator serving the Helsinki Metropolitan Area and surrounding archipelago destinations. The company offers a range of services including scheduled ferry routes, VIP and group cruises, seasonal passes, and gift cards. It holds sustainability certifications and is part of the FRS Group, indicating a solid market position in transportation services. The website is built on TYPO3 CMS, employs modern web technologies, and integrates Google Tag Manager and Analytics for marketing and performance tracking. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site is professional, accessible, and trustworthy, supporting a positive user experience.

J

JT-Line Oy

jt-line.fi

0

JT-Line Oy is a Finnish small-sized transportation company specializing in ferry and charter cruise services in the Helsinki archipelago. The company operates authentic paddle steamer ferries and water buses, emphasizing sustainable travel by using renewable biofuels and promoting inclusivity. Their market position is niche but well-defined, targeting tourists, families, and groups seeking maritime experiences in the Helsinki region. The website reflects a professional and consistent brand image with clear service offerings and certifications such as Sustainable Travel Finland and Ekokompassi. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Tag Manager and Facebook Pixel, supported by a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed. Contact information is comprehensive, supporting business credibility.

T

Turun seudun joukkoliikenne

foli.fi

0

Turun seudun joukkoliikenne (Föli) operates as the primary public transportation provider in the Turku region, Finland. The website serves as a comprehensive portal for bus schedules, route planning, ticketing, and real-time transit updates, targeting residents and visitors of the region. Föli maintains a strong market position as a regional transit authority, supported by partnerships with seven municipalities. The business model is public service oriented, focusing on accessibility and user convenience.

J

Jyväskylän kaupunki

jyvaskyla.fi

0

Jyväskylän kaupunki operates as the official municipal government website for the city of Jyväskylä, Finland. It provides comprehensive information and services related to municipal administration, culture, events, and public services targeted primarily at residents and visitors. The website is positioned as the authoritative source for city-related information and services, supporting citizen engagement and municipal transparency. Technically, the site is built on Drupal 10 CMS, leveraging modern web technologies, including a robust cookie consent mechanism and integration with reputable third-party analytics and content delivery networks. The site demonstrates good digital maturity with mobile optimization, accessibility features, and SEO best practices. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance aligned with GDPR. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving as a reliable digital platform for municipal services.

H

Hämeenlinna

hameenlinna.fi

0

Hämeenlinna's official website serves as a comprehensive digital portal for the city, providing extensive information and services related to housing, education, wellbeing, culture, tourism, and economic development. The site targets residents, visitors, and businesses, positioning itself as a trusted municipal resource. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Cookiebot, ensuring good SEO and privacy compliance mechanisms. The use of Matomo and Google Analytics indicates a mature approach to user analytics, although privacy policy documentation is lacking. Security posture is strong with HTTPS and cookie consent, but could be improved with additional security headers and published policies. Overall, the site is professional, well-branded, and trustworthy, reflecting the city's stature and commitment to digital service delivery.

O

Oulun seudun liikenne

oulunjoukkoliikenne.fi

0

Oulun seudun liikenne operates as a regional public transportation authority in Finland, providing bus schedules, ticketing, and travel information primarily for the Oulu region. The website serves residents and travelers with relevant transit data and customer service resources. The business model focuses on public transport facilitation with digital tools such as the OSL app and integration with partner services like Waltti for ticket purchases. Technically, the website is built on WordPress, leveraging modern web technologies including jQuery, Google Tag Manager, and Cookiebot for consent management. The site demonstrates good SEO and accessibility practices with responsive design and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Privacy compliance is partially met with a detailed cookie consent mechanism but lacks a clearly accessible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-aligned with its public service mission, though improvements in transparency and security documentation are recommended.

Lahden seudun liikenne operates as the official public transportation authority for the Lahti region in Finland, providing comprehensive bus route information, timetables, ticketing options, and customer service. The website serves as a key digital touchpoint for residents and visitors seeking transit information. The company holds a solid market position as a regional transport provider with a clear focus on accessibility and user convenience. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Tag Manager, and Cookiebot for consent management. The site demonstrates good performance, mobile optimization, and accessibility features, ensuring a positive user experience across devices. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website reflects a mature digital infrastructure supporting a trusted public service entity.

N

Nysse, Tampereen seudun joukkoliikenne

nysse.fi

0

Nysse is the public transportation service provider for the Tampere region in Finland, offering responsible and evolving transit solutions to residents and visitors. The website reflects a regional public service entity with a clear focus on accessibility, user convenience, and compliance with privacy regulations. The technical infrastructure leverages modern web technologies including jQuery, Bootstrap, and Cookiebot for cookie consent management, alongside Matomo for analytics, indicating a mature digital presence. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of a published security policy and incident response contact suggests room for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the organization's public service mission effectively.

K

Kuopio

kuopio.fi

0

Kuopio.fi is the official website of the city of Kuopio, Finland, serving as a comprehensive portal for municipal information, public services, and community engagement. The site targets residents, visitors, and local businesses, providing access to city news, events, and administrative resources. The website positions itself as a trusted government authority with a focus on transparency and accessibility. Technically, the site is built on WordPress CMS, utilizing modern web technologies including jQuery, Matomo analytics for privacy-conscious user tracking, and Cookiebot for GDPR-compliant cookie consent management. The infrastructure supports good mobile optimization and accessibility standards, ensuring a positive user experience across devices. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms that respect user privacy. While explicit security headers are not fully evident, no critical vulnerabilities or exposed sensitive data were detected. The domain registration aligns well with the municipal identity, reinforcing trustworthiness. Overall, Kuopio.fi demonstrates a solid digital maturity with good content quality, privacy compliance, and security posture. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and improving visible contact information to further strengthen user trust and compliance.

V

VR-Yhtymä Oyj

vrgroup.fi

0

VR Group is a Finnish state-owned enterprise specializing in transportation, logistics, and maintenance services, with a strong focus on sustainable and carbon-neutral rail and urban mobility solutions. The company operates multiple business units including long-distance rail, urban transport, logistics, and fleet care, serving both consumer and corporate clients. Their market position is significant within Finland and parts of Sweden, supported by a 160-year history and a clear commitment to environmental responsibility. The website reflects a mature digital presence with multilingual support and comprehensive corporate information. Technically, the site employs modern web technologies, including JavaScript frameworks, Google Tag Manager, and Cookiebot for consent management, ensuring good performance, accessibility, and SEO optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and vulnerability disclosure policies are absent. Overall, the domain registration and WHOIS data align well with the company's profile, confirming legitimacy and trustworthiness. The site is safe for general audiences with no adult or questionable content detected.

OnniBus operates as a leading Finnish bus ticket sales platform, providing affordable and reliable bus transportation services across Finland and to neighboring countries. The website offers a user-friendly online booking system, promotional offers, and partnerships with other transportation providers such as Eckerö Line. The company targets travelers seeking cost-effective and convenient bus travel options. Technically, the website employs modern analytics and tracking technologies including Google Analytics, Microsoft Clarity, and Cookiebot for consent management, ensuring compliance with privacy regulations. Security posture is solid with HTTPS enforced and session management in place, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain is a notable anomaly that slightly diminishes trust but does not detract from the professional presentation and functionality of the site. Overall, OnniBus presents a mature digital presence with good privacy compliance and a strong market position in the Finnish transportation sector.

J

JULKISEN SANAN NEUVOSTON KANNATUSYHDISTYS RY

vastuullistajournalismia.fi

0

The website vastuullistajournalismia.fi is operated by the Finnish association JULKISEN SANAN NEUVOSTON KANNATUSYHDISTYS RY and focuses on promoting responsible journalism and media ethics in Finland. It provides educational resources, information on journalistic rights, and links to the Public Word Council. The site targets Finnish-speaking students, teachers, and media professionals interested in journalism ethics. The business model is non-profit and educational, with a niche market position in Finnish media ethics education. Technically, the site is built on WordPress using the UIkit framework and jQuery libraries. It uses Typekit fonts and has a moderate performance profile with basic mobile optimization. The hosting and domain registrar are Moonhill Oy, a Finnish provider. The site lacks advanced SEO and accessibility features but maintains a consistent branding and navigation structure. From a security perspective, the site uses HTTPS but lacks important security headers and does not have configured analytics or privacy policies, indicating room for improvement in compliance and security posture. No vulnerabilities or suspicious patterns were detected. The WHOIS data is transparent and consistent with the website's mission, enhancing trustworthiness. Overall, the site is a safe, basic educational resource with moderate technical and security maturity. Strategic improvements in privacy compliance, security headers, and analytics configuration would enhance its security posture and user trust.

S

Suomen Tietotoimisto Oy

lehtikuva.fi

0

Lehtikuva.fi is the digital presence of Suomen Tietotoimisto Oy, Finland's largest photo agency with a history dating back to 1951. The company specializes in news and editorial photography, focusing on Finnish and Nordic themes, and operates a comprehensive image licensing platform. The website reflects a mature digital infrastructure with multilingual support and modern web technologies. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although some security headers could be enhanced. Privacy compliance is well addressed with clear policies and GDPR-aligned consent. Overall, the site projects professionalism and trustworthiness suitable for media professionals and content buyers.

M

Miamo

miamo.cz

0

Miamo is a Czech ice cream brand that blends traditional production methods with innovative flavors and modern design, targeting a broad audience of ice cream lovers. The brand is supported by TIPAFROST, a significant Czech ice cream manufacturer, indicating a solid manufacturing and distribution foundation. The website presents a professional and user-friendly interface with clear navigation, detailed product offerings, and active social media engagement. Technically, the site is built on WordPress using popular plugins for forms and GDPR compliance, with moderate performance and good mobile optimization. Security posture is generally strong with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response policies. The absence of WHOIS data is a notable concern, reducing domain trustworthiness and suggesting the need for further verification. Overall, the site is well-positioned in its market segment but could improve transparency and security practices.

Meggle.cz is a well-established Czech retail website specializing in dairy and vegan dairy-alternative products. The site offers a variety of product categories including vegan creams, cottage cheese, various creams, butter specialties, and lactose-free options, complemented by recipe content to engage consumers. The website targets Czech consumers interested in these food products and is part of the MEGGLE Group, indicating a strong market presence and brand recognition. Technically, the site is built on the MySUITU CMS platform, uses common JavaScript libraries such as jQuery and ResponsiveSlides, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized with good navigation and SEO practices, although some technical debt is noted with the use of an outdated jQuery version. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks published privacy policies, terms of service, and advanced security headers. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and updated security practices.

M

Museum of the Rockies

museumoftherockies.org

0

Museum of the Rockies is a well-established cultural and educational institution located in Bozeman, US, focusing on natural history, cultural exhibits, and astronomy. The website presents a professional and informative platform targeting a general audience interested in museum experiences and educational programs. The domain has been registered since 2000, reflecting a stable and legitimate presence. Technically, the website employs modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and Sojern, hosted on Montana State University DNS infrastructure, indicating a reliable hosting environment. However, the site lacks visible privacy and cookie policies, which impacts its compliance posture. Security-wise, HTTPS is properly implemented, but the absence of security headers and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is trustworthy and professionally maintained but should enhance privacy compliance and security best practices to reduce risk and improve user trust.

ERGO is a well-established insurance provider in Latvia offering a wide range of insurance products for both private individuals and businesses. Their services include vehicle insurance (OCTA, KASKO), health, travel, accident, property, life insurance, and pension products. The company targets Latvian residents and businesses, positioning itself as a comprehensive insurer with a strong local presence and customer support infrastructure. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, Usercentrics for cookie consent management, and Genesys for customer messaging. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Privacy compliance is well addressed through explicit cookie consent mechanisms and a comprehensive privacy policy. From a security perspective, the site enforces HTTPS and uses consent-based tracking, minimizing privacy risks. However, it lacks publicly visible security policies and incident response contacts, which could enhance trust and preparedness. No critical vulnerabilities or suspicious content were detected. Overall, the security posture is solid but could benefit from additional transparency and security headers. The overall risk assessment is low, with the website demonstrating professionalism, compliance, and technical maturity. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, and enhancing security headers to further strengthen the security posture and user trust.

E

Empat.tech

empat.tech

0

Empat.tech is a Ukrainian-based technology company specializing in custom software and mobile app development services, targeting startups and enterprises globally. Established in 2013, the company has completed over 300 projects across 23 markets, serving clients including Fortune 500 companies and Y Combinator alumni. Their service portfolio includes mobile app development, fintech software, product development, and dedicated developer hiring, positioning them as a trusted partner in the technology sector. The website reflects a professional and consistent brand image with strong trust signals such as client testimonials, press mentions, and industry recognitions.