Security Directory

I

iPromote

ipromote.com

0

iPromote is a mature and established company specializing in programmatic digital advertising solutions. Their platform offers automated, scalable, and white-labeled advertising services across multiple channels including display, paid search, CTV/OTT, social media, native, video, and Yelp ads. The company positions itself as an industry leader with award-winning technology and a strong partner ecosystem. The website reflects a professional and modern digital presence with excellent content quality and user experience. Technically, the site is built on WordPress with advanced SEO and performance optimizations, integrating tools like Google Tag Manager, HubSpot, and Jetpack for analytics and marketing. Security posture is solid with HTTPS enforced and domain protections in place, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the business credibility is high, supported by consistent branding and social media presence.

1

1plusX

1plusx.com

0

1plusX is a technology company specializing in AI-powered first-party data management solutions for publishers and advertisers. Positioned as an award-winning data management platform, it offers services such as audience management, data clean rooms, connected TV solutions, and privacy-first data strategies. The company is a subsidiary of TripleLift, enhancing its market credibility and reach. The website demonstrates a professional digital presence with clear branding, client testimonials, and a focus on privacy compliance. Technically, the site is built on WordPress with modern SEO and cookie consent tools, ensuring good performance and user experience. Security posture is solid with HTTPS and privacy mechanisms, though some security headers and policies could be improved. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving accessibility features to further strengthen trust and compliance.

1

152 MEDIA

152media.com

0

152 MEDIA is a specialized AdTech company focused on delivering innovative programmatic advertising solutions for publishers and buyers. With over 14 years of experience, the company operates a dedicated development lab leveraging AI to enhance digital advertising profitability and campaign performance. The website reflects a mature business with a clear market position and a professional digital presence. Technically, the site is built on WordPress with modern frameworks and includes essential security features such as HTTPS and Google reCAPTCHA. Privacy compliance is addressed through a cookie consent mechanism and a privacy policy, though terms of service and security policies are not explicitly found. The security posture is solid but could be improved by adding security headers and formal incident response information. Overall, the website is trustworthy, well-maintained, and aligned with the business claims.

1

10dencehispahard, S.L.

014on.com

0

014 ON is a Spanish media company specializing in premium omnichannel data management and advertising solutions. They leverage proprietary technology to detect users in physical environments via wifi and Bluetooth signals, enabling highly precise audience targeting and activation through online campaigns. Their business model centers on a Data Management Platform (DMP) combined with an in-house Trading Desk to operate cross-device advertising campaigns. The company positions itself as a leader in exclusive advertising supports in specific environments, focusing on affinity and precision rather than broad coverage. The website content is professionally presented, targeting brands and advertisers seeking advanced omnichannel marketing solutions.

The domain hm.ee is registered to the Estonian Ministry of Education and Research, indicating a government-operated website focused on education and research sectors. However, the website content is currently inaccessible due to a Cloudflare Turnstile captcha security challenge, preventing direct analysis of the site's content, policies, or contact information. The technical infrastructure leverages Cloudflare for security and performance, but DNSSEC is not enabled, representing a minor security gap. The security posture is difficult to assess fully due to the blocked content, but the use of Cloudflare's WAF and captcha indicates a proactive approach to mitigating automated threats. Overall, the domain registration data is consistent and legitimate, reflecting a stable government entity. Strategic recommendations include enabling DNSSEC, publishing clear privacy and security policies, and ensuring accessibility without excessive security barriers to improve user experience and transparency.

E

eKool

ekool.eu

0

eKool is a well-established educational platform based in Estonia, offering a comprehensive school management system that facilitates communication, administrative tasks, and academic tracking for schools, parents, and students. The platform is positioned as a trusted solution with a strong presence in the Estonian education sector, supported by multiple certifications and partner integrations with notable educational service providers. Technically, the website is built on Webflow CMS and leverages modern web technologies such as GSAP and Swiper.js to deliver a responsive and engaging user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some improvements in security headers and explicit policies could enhance trust. Privacy compliance is generally good, with a comprehensive privacy policy present, but lacks a cookie consent mechanism. Overall, eKool demonstrates a mature digital presence with strong business credibility and a high-quality website experience.

E

Eesti Õpilasesinduste Liit

escu.ee

0

Eesti Õpilasesinduste Liit is the largest youth organization in Estonia representing approximately 90,000 students through its member schools. The organization focuses on advocating for student interests, organizing events, and providing resources to member schools. The website is built on WordPress using the Avada theme and integrates Gravity Forms for contact and application forms. It demonstrates a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and spam prevention in forms, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the website is professional and trustworthy, serving an essential role in the Estonian education sector.

S

Star Cloud OÜ

opiq.ee

0

Opiq is a well-established Estonian cloud-based educational platform operated by Star Cloud OÜ, offering a comprehensive digital learning environment aligned with the national curriculum. It serves a broad audience including schools, teachers, students, parents, and private users, providing interactive textbooks and learning materials from leading Estonian publishers. The platform supports multiple user roles and integrates with popular school management systems, enhancing its utility and market position. Technically, the website leverages modern JavaScript frameworks, Microsoft Azure cloud hosting, and Application Insights for telemetry and analytics. The platform is accessible via web browsers and dedicated mobile apps for iOS and Android, ensuring good mobile optimization and user experience. The site demonstrates good SEO and accessibility practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS, uses anti-forgery tokens in forms, and implements cookie consent mechanisms. However, it lacks a publicly available security policy and incident response contact information, which are recommended for enhanced trust and compliance. No critical vulnerabilities or suspicious patterns were detected, and the domain registration details align well with the business claims, indicating high legitimacy. Overall, Opiq presents a professional, secure, and user-friendly digital education platform with strong business credibility and compliance posture. Strategic improvements in security transparency and incident response readiness would further strengthen its position.

E

Edumus Education OÜ

edumus.ee

0

Edumus Education OÜ operates the Edumus platform, offering engaging and practical online courses targeted at primary and secondary school youth in Estonia and Ukraine. The platform emphasizes hybrid learning with live online classes and self-paced assignments, supported by expert-created curricula. The company has established a credible market presence with over 100 specialists contributing to education content and partnerships with educational foundations. Technically, the website is built on Squarespace, leveraging modern analytics and marketing tools, and provides a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers are recommended. Overall, Edumus demonstrates a trustworthy and professional online presence aligned with its educational mission.

M

MTÜ Noorteühing Tugiõpilaste Oma Ring Eestis

tore.ee

0

MTÜ Noorteühing Tugiõpilaste Oma Ring Eestis (TORE) is a well-established Estonian non-profit organization focused on youth peer support, mentoring, and training programs. The organization operates nationally with a history of nearly three decades, offering structured events such as summer and autumn schools, conferences, and supervision sessions. Their target audience includes Estonian students and their mentors, aiming to empower youth through systematic engagement and education. The website reflects this mission with relevant content, event announcements, and training information. Technically, the website is built on WordPress 6.8.1 with popular plugins like Yoast SEO and Modern Events Calendar Lite, indicating a mature digital infrastructure. The site uses HTTPS with a good SSL configuration, Google Fonts, and jQuery libraries. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured data. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, demonstrating awareness of privacy compliance. However, it lacks explicit privacy and terms of service pages, security headers, and incident response contacts, which are areas for improvement. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the HTML content. Overall, the website is credible and professional, with strong business legitimacy and consistent branding. The main risks relate to privacy compliance and security best practices, which can be addressed to enhance trust and regulatory adherence.

I

Initiative „Schulen: Partner der Zukunft“ (PASCH)

pasch-net.de

0

The PASCH-Initiative website represents a well-established global educational network promoting German language learning through over 2,000 partner schools worldwide. The initiative offers diverse services including learning materials, competitions, school partnerships, youth courses, and alumni projects. The website is professionally designed with consistent branding and targets German language learners and educational institutions globally. Technically, the site uses modern web technologies such as jQuery, Bootstrap, Bitmovin Player, and a consent management platform (Usercentrics), hosted on Microsoft Azure DNS infrastructure. Performance and mobile optimization are good, with accessibility and SEO well addressed. Security posture is solid with HTTPS enforced and consent management implemented, though some security headers and explicit security policies are absent. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact is primarily via a contact form; no direct emails or phone numbers are published. Overall, the site is trustworthy, professional, and aligned with its educational mission.

T

Taimne Teisipäev | Sest elu on tähistamist väärt!

taimneteisipaev.ee

0

Taimne Teisipäev is a niche Estonian website dedicated to promoting healthier eating habits by encouraging more plant-based food consumption. The site targets health-conscious consumers interested in lifestyle changes towards plant-based diets. The business model appears to be informational and advocacy-focused, without direct e-commerce or transactional services. The website uses modern frontend technologies including Bootstrap and Nuxt.js, and integrates popular analytics and tracking tools such as Google Analytics and Facebook Pixel, indicating a moderate level of digital maturity. However, the absence of explicit privacy, cookie, and terms of service policies suggests gaps in compliance and transparency. Security posture is moderate with HTTPS usage implied, but lacks published security policies or incident response contacts. Overall, the domain registration is consistent and legitimate, supporting the website's credibility. Strategic improvements in privacy compliance and security transparency are recommended to enhance trust and regulatory adherence.

P

Peaasi.ee

peaasi.ee

0

Peaasi.ee is a well-established Estonian non-profit organization dedicated to supporting youth mental health through a comprehensive online portal. The website offers extensive mental health information, e-counseling services, first aid tools, and training programs aimed at improving mental wellbeing among Estonian youth and those working with them. The organization maintains a strong market position as a leading mental health resource in Estonia, supported by multiple partnerships and funding sources. Technically, the site is built on WordPress with a modern tech stack including WooCommerce, Bootstrap, and various analytics and marketing tools, demonstrating a mature digital infrastructure. The website is multilingual and optimized for mobile devices, providing a good user experience and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit cookie consent mechanisms are missing, representing areas for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR, though enhancing privacy compliance and security policies would strengthen its risk profile.

L

Lastekaitse Liit

kiusamisestvabaks.ee

0

Kiusamisest vabaks is a non-profit educational platform operated by Lastekaitse Liit, focused on bullying prevention in Estonia. The website offers multilingual educational materials and awareness content targeting nurseries, kindergartens, and grade schools. It collaborates with reputable partners including the Estonian Ministry of Education and Research and international child protection organizations. The platform is well-positioned within its niche, serving educators, parents, and children with relevant resources. Technically, the website is built on WordPress with modern technologies such as Bootstrap, jQuery, and Google services for analytics and tag management. It employs multilingual support via WPML and uses SEO best practices including structured data and Open Graph metadata. The site is mobile-optimized and performs moderately well, with a consistent and professional design. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website demonstrates a solid business credibility and technical foundation with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

R

Ridango AS

pilet.ee

0

Pilet.ee is a well-established Estonian online platform specializing in public transportation ticket sales and management of the Ühiskaart travel card. Operated by Ridango AS, the service provides users with convenient access to tickets across multiple regions and transport types in Estonia. The website offers clear navigation and service descriptions targeting public transport users, supporting multiple languages including Estonian, English, and Russian. The platform integrates with regional ticketing subdomains and partners such as Omniva for card sales. Technically, the website employs standard web technologies including JavaScript, jQuery, and Google Analytics for user tracking. DNS is managed via Cloudflare, but DNSSEC is not enabled. The site uses HTTPS, ensuring encrypted communications, but lacks advanced security headers which could improve protection against common web threats. Mobile optimization and accessibility are basic but functional. From a security perspective, the site demonstrates a moderate posture with no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, as well as a consent mechanism despite the use of Google Analytics, indicates compliance gaps with GDPR and privacy best practices. No incident response or security policy information is publicly available. Overall, Pilet.ee is a credible and professional service with a solid market position in Estonia's transportation sector. Strategic improvements in privacy compliance, security headers, and user consent mechanisms would enhance trust and regulatory adherence, supporting long-term operational security and customer confidence.

N

Norrison OÜ

norrison.ee

0

Norrison OÜ is an established Estonian company specializing in the manufacturing and retail of knitwear, workwear, school uniforms, and fashion apparel. Founded in 2010, it holds a strong market position as the largest school uniform producer and quality knitwear creator in Estonia. The website serves as a professional e-commerce platform targeting Estonian consumers interested in locally produced, ethically made clothing. The company emphasizes quality, local production, and customer satisfaction, supported by testimonials and a consistent brand presence across social media channels. Technically, the website is built on the PrestaShop CMS platform, leveraging modern web technologies including jQuery, Matomo analytics, and Facebook Pixel for marketing and tracking. The site is hosted by Zone Media OÜ, a reputable Estonian hosting provider. The website demonstrates good mobile optimization, SEO practices, and user experience, although accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting compliance with GDPR requirements. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not evident, and the extensive use of third-party tracking scripts may raise privacy considerations. No incident response or security policy information is publicly available, indicating an area for improvement. Overall, the website is trustworthy and professionally maintained, with a solid business foundation and digital presence. Strategic enhancements in security headers, privacy transparency, and incident response readiness would further strengthen its security posture and compliance standing.

I

Infopank

infopank.ee

0

Infopank is Estonia's largest business information platform, providing a comprehensive suite of services including competition reports, marketing lists, sales agent tools, certificates, data interfaces, debt registers, and background information. The platform targets Estonian businesses and professionals seeking reliable business data to support growth and decision-making. Technically, the website leverages modern frameworks such as Next.js and React, integrates Google Tag Manager, Facebook Pixel, Hotjar, and a consent management platform (Didomi), indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit privacy and security policies are not found in the provided content. Overall, the site is professional, functional, and trustworthy, with room for improvement in privacy compliance documentation and accessibility.

E

Eesti Maksumaksjate Liit

maksumaksjad.ee

0

Eesti Maksumaksjate Liit (EML) is a well-established Estonian non-profit organization founded in 1995, dedicated to protecting taxpayers' interests, providing tax consultation, education, and advocacy. The website serves as a portal offering news, training, legal advice, and publications related to taxation in Estonia. The organization targets Estonian taxpayers and businesses seeking reliable tax information and support. Technically, the website is built on WordPress, utilizing modern libraries such as jQuery and Slick Slider, with Google Analytics and CookieYes for tracking and consent management. The site is hosted by Radicenter OÜ and uses HTTPS with a good security posture, including a comprehensive cookie consent mechanism. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, accessible, and trustworthy, with good SEO and privacy compliance, supporting EML's role as a credible tax advocacy entity.

E

ETKA Andras

andras.ee

0

ETKA Andras is a well-established Estonian non-profit organization dedicated to adult education and lifelong learning. The website serves as a hub for adult learners and educators, providing information on training, certification, and community events. The organization partners with the Estonian Ministry of Education and Research and benefits from European Social Fund programs, reinforcing its credibility and national importance. The site is multilingual, primarily in Estonian, with English and Russian options, enhancing accessibility for diverse audiences. Technically, the website is built on WordPress with modern plugins and frameworks, offering a good user experience and moderate performance. Security measures include HTTPS and reCAPTCHA integration, though additional security headers and explicit privacy policies are recommended to enhance compliance and trust. Overall, the site reflects a professional, trustworthy educational entity with a clear mission and stable digital presence.

E

Eesti Töötukassa

tootukassa.ee

0

Eesti Töötukassa is the official Estonian Unemployment Insurance Fund, providing employment services, unemployment benefits, and labor market support to Estonian residents and employers. The website serves as a government portal offering information and access to services related to employment and social security. It targets job seekers, employers, and the general public in Estonia. The site is well-branded, consistent, and professionally designed with good content relevance and navigation clarity. The presence of language options enhances accessibility for non-Estonian speakers. Technically, the website is built on modern Angular framework (version 18.2.13) and uses contemporary web technologies including Google Fonts, Material Icons, and Matomo analytics. The site is mobile-optimized and demonstrates good performance and accessibility standards. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities. Cookie consent mechanisms are implemented, supporting GDPR compliance. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not found, which could be improved to enhance transparency and trust. The WHOIS data confirms the domain is legitimately registered to the Estonian government entity, supporting high trustworthiness. Overall, the website is a reliable and professional government resource with a solid technical and security foundation. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure information, and providing direct security contact channels to improve security posture and user trust.

L

Luwi OÜ

luwi.ee

0

Luwi OÜ operates as a specialized training center in Estonia, providing a broad range of educational services including group and individual training courses, psychological and addiction counseling, and supervision services. The company is recognized as a partner of the Estonian Unemployment Insurance Fund's training card program, which enhances its credibility and market position. The website is professionally designed, multilingual, and offers clear navigation to various training categories and services, targeting individuals and organizations seeking professional development in Estonia. Technically, the website is built on WordPress with a modern technology stack including Bootstrap, jQuery, and several optimization and security plugins. It employs Google reCAPTCHA v3 for form protection and uses cookie consent mechanisms to comply with privacy regulations. The site is hosted by Zone Media OÜ, a known Estonian hosting provider, and demonstrates moderate performance and good mobile optimization. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a privacy policy and cookie consent banner. Business credibility is strong with clear contact information, company registration details, and trust signals such as partnerships and certifications. Overall, Luwi OÜ's website presents a trustworthy and professional online presence with room for improvement in security header implementation and formal security policies. The risk level is moderate with no critical issues detected, making it a reliable platform for its users.

C

Corgea

corgea.com

0

Corgea is an AI-driven security platform focused on automatically detecting, triaging, and fixing insecure code, targeting developers and security teams. The company appears to be a small technology startup founded in 2020, offering SaaS solutions in the cybersecurity domain. The website is professionally designed using Framer, with good content relevance and user experience, though it lacks explicit privacy and cookie policies as well as contact information. Technically, the site uses modern analytics and marketing tools such as HubSpot and Google Analytics, but lacks security headers and DNSSEC, which are recommended for enhanced security. The domain registration is consistent and transparent, registered with NameCheap since 2020, aligning with the company's startup profile. Overall, the security posture is moderate with room for improvement in privacy compliance and security best practices.

Forge Automation Corp. operates a software-enabled manufacturing platform specializing in rapid CNC milling services, delivering custom metal parts within 4 days or less. The company targets engineers and manufacturers requiring fast turnaround and instant quoting, positioning itself as a technologically advanced and customer-centric CNC parts provider. The website is professionally designed with clear navigation and mobile optimization, leveraging modern web technologies such as ES modules and 3D model viewers to enhance user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional online presence. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site demonstrates strong business credibility but requires improvements in transparency and security documentation.

Z

Zoomcar

zoomcar.com

0

Zoomcar is a leading self-drive car rental service operating primarily in India, offering a wide range of vehicles with features such as unlimited kilometers, instant booking, and keyless access via their mobile app. The company targets individuals seeking flexible and budget-friendly transportation solutions across multiple Indian cities. The website demonstrates a mature digital presence with modern technologies including Google Analytics, Microsoft Clarity, and RudderStack for analytics and user tracking, alongside performance monitoring tools like Boomerang and Bugsnag. The site is well-optimized for mobile and SEO, with excellent content quality and user experience. Security posture is strong with HTTPS enforced and a Content Security Policy in place, though additional security headers could enhance protection. However, the absence of explicit privacy, cookie, and terms of service policies, as well as missing WHOIS domain registration data, represent gaps in compliance and transparency. Overall, Zoomcar's website reflects a professional and trustworthy business with room for improvement in privacy and security disclosures.

M

Mineflow

mineflow.ai

0

Mineflow is a newly founded AI-driven mineral exploration startup focused on transforming exploration site data into accurate 3D and 2D models of mineral deposits such as gold and copper. The company targets mining professionals and geologists with a SaaS platform leveraging advanced AI technologies. The website is built using modern web technologies including React and Next.js, providing a good user experience with responsive design and clear navigation. Analytics are implemented via PostHog, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks DNSSEC and security headers, and no privacy or cookie policies are published, which are critical for compliance and trust. The domain is privacy protected and very new, consistent with a startup profile. Overall, the website is professional but would benefit from enhanced privacy compliance and security hardening.

V

VideoGen, Inc.

videogen.io

0

VideoGen, Inc. operates a cutting-edge AI-powered video generation platform designed to simplify and accelerate video creation for content creators, marketers, educators, and businesses. The platform offers a wide range of AI-driven features including script writing, voiceover generation, avatar integration, and multi-format video outputs tailored for social media and professional use. Backed by Y Combinator and trusted by millions, VideoGen positions itself as a leading SaaS solution in the AI video generation market. Technically, the website is built on modern web technologies including React and Next.js, hosted and secured via Cloudflare. It demonstrates excellent performance, mobile optimization, and SEO practices. The security posture is strong with HTTPS enforcement and appropriate security headers, although privacy compliance could be enhanced by implementing explicit cookie consent mechanisms. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. The domain uses privacy protection for WHOIS data, which is justified for a startup. The business credibility is high, supported by professional branding, testimonials, and a comprehensive affiliate program. Overall, VideoGen presents a mature digital presence with room for minor improvements in privacy transparency and security policy disclosures.

L

Luthor, Inc.

luthor.ai

0

Luthor, Inc. is a fintech company providing AI-powered fractional Chief Compliance Officer (CCO) services tailored for Registered Investment Advisors (RIAs) and broker-dealers. Their platform combines human expertise with automated workflows to help financial firms meet SEC and FINRA compliance obligations efficiently. Positioned as a modern RegTech solution, Luthor is backed by Y Combinator and trusted by firms managing over $6.8 billion in assets under management. Key services include compliance calendar management, automated filings, marketing compliance monitoring, and mock SEC exam preparation. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies such as Google Fonts, jQuery, and multiple third-party integrations for analytics and scheduling (Google Analytics, Apollo.io, SavvyCal, Cal.com, Koala). The site is well-optimized for performance, mobile responsiveness, and accessibility, with fast loading times and clear navigation. From a security perspective, the site enforces HTTPS with excellent SSL configuration and integrates several security best practices. However, some security headers like Content-Security-Policy and X-Frame-Options are missing, and there is no visible cookie consent mechanism, which impacts privacy compliance. The company is undergoing SOC 2 Type II certification, indicating a commitment to security and data protection. Overall, Luthor presents a professional, trustworthy online presence with strong business credibility and technical maturity. The lack of public WHOIS data is mitigated by other trust signals. Recommendations include enhancing security headers, implementing cookie consent for GDPR compliance, and publishing incident response contact information to further strengthen security posture and regulatory compliance.

O

OpenFunnel

openfunnel.dev

0

OpenFunnel is a small technology company specializing in sales prospecting solutions that leverage real-time signals to help users discover and prioritize high intent prospects. The website is professionally designed using Framer, with a consistent branding approach and clear focus on its core service offering. However, the site lacks critical compliance and security documentation such as privacy policies, cookie consent mechanisms, and terms of service, which are essential for trust and regulatory adherence. Technically, the site uses modern web fonts and hosting assets from Framer's CDN, but no advanced security headers or analytics tools are detected. The absence of contact information and incident response details limits transparency and user trust. Overall, the website is functional and visually appealing but requires significant improvements in privacy, security, and compliance to enhance its credibility and reduce risk.

T

Toka

tokagroup.com

0

Toka is a specialized cybersecurity and digital forensics company focused on providing advanced lawful digital forensics, intelligence, and force protection solutions primarily to government, law enforcement, and security agencies. Their offerings include forensic investigations, targeted intelligence, covert operations, and national-level cyber capacity building services. The company positions itself as a trusted partner in homeland security and cyber defense, with recognition from entities such as the World Bank and StateUp. Technically, the website is built on the Webflow platform, leveraging modern JavaScript libraries such as jQuery and Glide.js for UI components, and integrates Google Analytics and Google Tag Manager for analytics and marketing. The site is mobile optimized with good design quality and clear navigation, though accessibility features are basic. Performance is moderate, typical of Webflow-hosted sites. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML. However, it lacks visible security headers and does not provide public security policies or incident response contacts. The absence of privacy and cookie policies is a compliance gap, especially for GDPR. The WHOIS data is missing or indicates the domain may not be registered, which is a significant trust concern. Overall, while the business and technical presentation is professional and targeted, the lack of WHOIS transparency and privacy compliance documentation reduces trustworthiness. Strategic improvements in security headers, privacy policies, and domain registration transparency are recommended to enhance credibility and compliance.

D

Dili

dili.ai

0

Dili.ai is a specialized technology company offering a SaaS platform and full-service solutions for prevailing wage and apprenticeship compliance, primarily targeting energy projects. The company positions itself as a leading compliance solution, supported by reputable investors such as Allianz and Y Combinator. Their platform integrates real-time wage validation, automated tracking, and audit-ready reporting to simplify compliance and reduce penalties. The website is professionally designed using modern Webflow technology, with good mobile optimization and clear navigation. However, direct contact information is limited to a contact form, and no phone numbers or emails are publicly listed. Privacy and terms of service pages exist, but cookie consent mechanisms and explicit security policies are absent.

T

Tatva Labs Inc.

cekura.ai

0

Cekura, operated by Tatva Labs Inc., is a technology company specializing in AI voice agent testing and observability solutions. The company offers a SaaS platform that enables enterprises and conversational AI companies to efficiently test, monitor, and improve their AI voice agents. Positioned as a trusted partner with backing from Y Combinator and strategic partnerships with Cisco, Cekura serves over 50 conversational AI companies globally. Their platform supports scenario simulation, persona emulation, and real-time alerting to ensure AI agents perform reliably in complex conversational workflows. Technically, the website is built on modern frameworks such as Next.js and React, with integrated analytics via PostHog and scheduling via Cal.com, demonstrating a mature digital infrastructure with fast performance and excellent mobile optimization. Security-wise, the company holds SOC2 Type2 and HIPAA compliance certifications, indicating a strong commitment to data protection and regulatory adherence. However, the site lacks explicit security headers and a public vulnerability disclosure, which are recommended for enhanced security posture. Overall, Cekura presents a professional, trustworthy, and technically sound presence in the AI voice technology market.

Cleva is a fintech startup founded in 2023 that provides US-based dollar accounts and virtual USD cards to global users, including non-US residents. The company positions itself as a solution for cross-border USD banking, enabling users to receive payments from platforms like Upwork, Deel, and Amazon, convert currencies, and make transfers with low fees. Supported by Y Combinator and featured in reputable media outlets, Cleva demonstrates a growing market presence in the fintech space. The website is built on modern technologies such as React and Next.js, hosted on AWS infrastructure, and optimized for mobile devices with good performance and SEO practices. Security posture is solid with HTTPS and domain protections, though improvements are needed in DNSSEC and security headers. Privacy compliance is weak due to the absence of privacy and cookie policies and lack of consent mechanisms. Overall, the site is professional and trustworthy but should enhance transparency and security policies to improve compliance and user trust.

The website lyft.com is currently inaccessible due to a CloudFront 403 error blocking requests, preventing content retrieval and analysis. Lyft is a well-known transportation network company founded in 2007, operating primarily in the United States as a major ride-sharing service provider. The domain is legitimate, registered since 2001 with MarkMonitor Inc., and shows strong domain management practices. However, the lack of accessible website content severely limits the ability to assess technical infrastructure, security posture, privacy compliance, and user experience. The CloudFront blocking indicates possible traffic or configuration issues that should be resolved to enable proper analysis and user access. Security headers and policies cannot be evaluated, and no contact or policy information is visible.

N

Nowadays AI, Corp.

getnowadays.com

0

Nowadays AI, Corp. operates a technology-driven platform that leverages artificial intelligence to streamline corporate event planning. The company positions itself as an in-house event planner for businesses, offering services such as venue search, negotiation with venues globally, and travel agency capabilities certified by IATA. The platform targets corporate clients seeking efficient and hassle-free event organization, supported by notable trust signals including Y Combinator backing and press coverage. Technically, the website is built using modern frameworks such as Next.js and React, with integrations like Intercom for customer engagement and embedded YouTube videos for marketing. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and security headers. From a security perspective, the site uses HTTPS (implied by the URL), but no explicit security headers were detected in the HTML content. Privacy and terms of service pages are present, indicating some compliance with data protection regulations such as GDPR. However, no cookie consent mechanism or detailed security policies were found, suggesting areas for compliance improvement. Overall, the risk profile is moderate with no critical security issues detected. The lack of public WHOIS data is typical for startups and does not detract from legitimacy given the professional branding and external validations. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing more detailed security and incident response policies to strengthen trust and compliance.

O

OpenCall AI

opencall.ai

0

OpenCall AI is a US-based technology startup founded in 2023, offering an AI-powered communications platform that automates telephone conversations to accelerate sales and improve customer experience. The company positions itself as an innovative player in the AI communications space, targeting businesses seeking sales automation and enhanced customer interactions. The website is professionally designed using modern JavaScript frameworks such as Nuxt.js and Vue.js, with good mobile optimization and SEO practices. However, the site lacks explicit privacy, cookie, and terms of service policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. No incident response or vulnerability disclosure information is published. Social media presence on LinkedIn and Twitter supports business credibility. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures.

I

Iliad

iliad.ai

0

Iliad is a small technology company founded in 2022, offering an expressive AI art generation platform focused on creating custom textures, images, and 3D models with granular creative control. The business operates on a freemium SaaS model, providing a free tier with limited daily access and a paid subscription for full features. The website is professionally designed with a modern tech stack including SvelteKit, FontAwesome, and analytics tools like PostHog, hosted behind Cloudflare DNS services. From a security perspective, the site enforces HTTPS and uses WHOIS privacy protection, which is appropriate for a small startup. However, it lacks DNSSEC, explicit security headers, and a cookie consent mechanism, which are areas for improvement. No contact emails or phone numbers are publicly available, and there is no published security policy or incident response information, which may impact trust and compliance. Overall, the website is accessible, well-structured, and technically modern, but could enhance its privacy compliance and security posture by implementing cookie consent, security headers, and publishing relevant policies. The domain registration is consistent with the business profile and shows no suspicious indicators. Strategic improvements in security and transparency would strengthen trust and compliance.

R

Relari AI

relari.ai

0

Relari AI is a technology company specializing in contract-based development tools for AI agents, enabling teams to define, verify, and inspect complex agent behaviors using natural language contracts. The company positions itself as an innovator in AI agent verification and simulation, targeting AI development teams and organizations. Their platform offers services such as Agent Contracts, Custom Evaluators, Agent Simulation, Synthetic Test Cases, and Trace Analytics. The website is professionally designed, consistent in branding, and includes developer resources such as GitHub and documentation links. Technically, the site is built on Webflow with modern JavaScript libraries and tracking tools, delivering moderate performance and good mobile optimization. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and formal privacy and cookie policies. The WHOIS data is privacy protected, which is typical for startups, but limits domain ownership transparency. Overall, the site demonstrates a moderate level of trustworthiness and technical maturity.

H

Hegel AI

hegel-ai.com

0

Hegel AI is a technology startup focused on building an open-source developer platform for large language model (LLM) applications. Their offerings include an open-source SDK called PromptTools and an online playground, enabling developers and researchers to experiment, monitor, and improve generative AI systems. The company is backed by notable investors such as Y Combinator, positioning it well in the AI developer tools market. Technically, the website is built using Framer and hosted likely on AWS infrastructure, with a moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and domain protection flags, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

G

Fluently: Your AI English Speaking Coach

getfluently.app

0

Fluently is an AI-driven English speaking coach platform offering affordable and accessible language tutoring services. The website positions itself as a cost-effective alternative to traditional human tutors, targeting English learners who want to improve speaking skills and confidence. The technical infrastructure is built using Framer with integrations of popular analytics tools such as Google Analytics, Facebook Pixel, Amplitude, and Plausible, indicating a modern digital maturity level. Security posture is strong with HTTPS enforced and appropriate security headers, but lacks visible privacy and cookie policies, as well as contact information and incident response details, which are important for compliance and trust. Overall, the site is functional and professional but would benefit from enhanced transparency and compliance documentation.

L

Liquid Instruments

liquidinstruments.com

0

Liquid Instruments is a technology company specializing in innovative software-reconfigurable hardware platforms designed for scientists, engineers, students, and professionals in test and measurement fields. Their flagship product, Moku, offers multi-instrument modes and cloud compilation services, positioning them as a niche leader in scientific instrumentation. The website reflects a professional and modern digital presence, leveraging WordPress with advanced marketing and analytics integrations such as HubSpot, Google Analytics, and Hotjar. The technical infrastructure is robust, hosted on DreamHost with a secure HTTPS configuration and a consistent branding approach. Security posture is strong with enforced HTTPS, cookie consent mechanisms, and no detected vulnerabilities, although some security headers could be enhanced. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the website demonstrates a mature digital footprint with good business credibility and technical implementation.

O

Omnistrate

omnistrate.com

0

Omnistrate is a technology company specializing in providing a modular control plane as a service for SaaS products, enabling rapid build, deployment, and scaling of multi-tenant B2B applications. The platform emphasizes AI-powered infrastructure management, SaaS billing, and global deployments, targeting startups and enterprises seeking to accelerate SaaS product delivery. The website is professionally designed using modern frameworks such as Next.js and Material UI, hosted via Cloudflare, and optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS and basic security headers, though improvements are recommended in DNSSEC and advanced security headers. Privacy compliance is currently lacking, with no visible privacy or cookie policies or consent mechanisms. Contact information and incident response details are not explicitly provided, which may impact user trust and compliance. Overall, the domain registration is consistent with the business profile, and no blocking or WAF challenges were detected, allowing a full content analysis.

P

Propine

propine.com

0

Propine is a Singapore-based enterprise-grade digital asset custodian specializing in custody, tokenization, trading, and DeFi solutions for institutional clients. The company holds a Capital Markets Services (CMS) license from the Monetary Authority of Singapore (MAS), positioning it as a trusted and regulated player in the digital asset custody market in Asia. Their platform targets banks, family offices, asset managers, corporates, exchanges, and protocol foundations, offering services such as Digital Custody ProTect™, Tokenization DASH™, and white label custody solutions. The website reflects a professional and consistent brand image with clear service offerings and a focus on institutional clientele. Technically, the website is built on WordPress using Elementor and several modern plugins like Yoast SEO and WP Rocket, hosted on AWS infrastructure. The site demonstrates good mobile optimization, SEO practices, and moderate performance. However, there is room for improvement in accessibility and security headers. The domain is mature, registered since 2001, and shows consistency with the business claims, enhancing trustworthiness. Security posture is solid with HTTPS enabled and domain transfer protections, but lacks DNSSEC and explicit security policies or incident response information. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Contact information is primarily via forms, with no direct emails or phone numbers publicly listed. Overall, Propine presents as a credible and professional digital asset custody provider with a strong market position in Asia. Enhancing privacy compliance, security transparency, and adding direct contact channels would further strengthen trust and regulatory adherence.

A

Ai Palette

aipalette.com

0

Ai Palette operates an AI-powered SaaS platform focused on accelerating product innovation and market intelligence primarily for the food and beverage industry. Their platform offers multiple AI-driven tools such as trend discovery, product concept creation, virtual validation, and a chat-driven assistant for food innovation. The website is professionally designed using WordPress with modern plugins and SEO optimizations, indicating a mature digital presence. Security posture is generally good with HTTPS enabled and anti-spam measures in place, but lacks explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. The domain WHOIS data is missing, which raises concerns about domain legitimacy despite the active and professional website. Overall, the site is functional and credible but requires improvements in privacy compliance and domain registration transparency.

M

Marr Labs

marrlabs.com

0

Marr Labs is a technology company specializing in AI voice agents designed to automate customer interactions such as lead qualification, appointment scheduling, and customer service. The company targets multiple industries including financial services, call centers, real estate, legal, and hospitality. Their business model is based on a managed service approach with a one-time setup fee and usage-based pricing, emphasizing quick deployment and scalability. The website reflects a professional and consistent brand with clear messaging and transparent pricing. Technically, the website is built on the Webflow platform, utilizing modern web technologies including Google Tag Manager, Google Analytics, and Howler.js for audio playback. The site is well-optimized for performance and mobile devices, with good SEO practices and basic accessibility features. Security is enforced through HTTPS and secure form handling, though some security headers are missing and no cookie consent mechanism is present. From a security perspective, Marr Labs demonstrates a moderate security posture with SOC 2 compliance mentioned, indicating a focus on data protection and reliability. However, the absence of WHOIS registration data raises questions about domain legitimacy and age, which should be monitored. No incident response or vulnerability disclosure information is publicly available, and privacy compliance could be improved with explicit cookie consent and GDPR indicators. Overall, Marr Labs presents a credible and professional business with advanced AI offerings, but improvements in transparency, security headers, and privacy compliance are recommended to enhance trust and regulatory adherence.

J

JustPaid

justpaid.ai

0

JustPaid is a technology-driven SaaS company specializing in AI-powered revenue operations and billing automation. Their platform streamlines invoicing, payment collections, and customer communications, targeting financial experts, entrepreneurs, and accountants. The company is positioned as an innovative player in the finance technology sector, supported by Y Combinator backing, which enhances its market credibility. The website demonstrates a high level of professionalism, with comprehensive content and clear navigation, reflecting a mature digital presence. Technically, JustPaid leverages modern web technologies including Webflow CMS, Google Tag Manager, HubSpot, Hotjar, and various tracking and marketing tools. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. Hosting is provided by Webflow, a reputable platform for SaaS startups. From a security perspective, the site enforces HTTPS and employs standard marketing and analytics scripts. However, explicit security headers are not detected, and there is no public incident response or vulnerability disclosure information. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The lack of exposed sensitive data and professional content supports a positive security posture. Overall, the risk assessment indicates a legitimate and trustworthy business with minor recommendations to enhance security headers and incident response transparency. The domain WHOIS data is privacy protected, which is typical for startups and does not raise immediate concerns. Strategic recommendations include improving security policy visibility, adding vulnerability disclosure, and enhancing trust signals through certifications or security frameworks.

P

Private by Design, LLC

texel.ai

0

Texel.ai is a US-based technology startup founded in 2022, operating as a SaaS platform that enables users to create and edit images, videos, and audio using AI-powered tools and APIs. The platform targets developers and businesses seeking fast, cost-effective AI media generation and editing solutions. The website presents a professional and modern design with clear navigation, showcasing key services and partner logos to build trust. Technical infrastructure leverages Django, Tailwind CSS, and Cloudflare DNS, with Google Analytics for user tracking. Performance and mobile optimization are good, though accessibility is basic. Security posture is solid with HTTPS and domain protections but lacks explicit security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is consistent and supports legitimacy. Overall, the site scores well on content and technical implementation but needs improvements in privacy and security transparency.

C

Cloudchipr

cloudchipr.com

0

Cloudchipr is a technology company offering a cloud optimization platform that empowers teams with AI agents to optimize cloud costs, explain anomalies, send reports, and automate workflows. The platform targets FinOps professionals, engineers, and leadership teams, providing real-time observability and management across multiple cloud providers. The website is professionally designed using Webflow CMS and integrates modern analytics and marketing tools such as Google Analytics, HubSpot, Facebook Pixel, and PostHog. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enabled and reCAPTCHA used for forms, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies and no visible consent mechanisms. Business credibility is supported by consistent WHOIS data and professional content, but contact information is not explicitly provided. Overall, the website is functional and professional but requires improvements in privacy compliance and security transparency.

N

Nanox

nanox.vision

0

Nanox is a healthcare technology company specializing in advanced medical imaging solutions and AI-powered diagnostic tools. Their flagship products include the FDA-cleared Nanox.ARC 3D tomosynthesis imaging system and Nanox.AI suite of diagnostic solutions targeting chronic diseases. The company operates a cloud-based platform (Nanox.MARKETPLACE) to connect imaging providers globally and offers OEM components and radiology services. The website demonstrates a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, it is built on WordPress with modern libraries and integrates Google Tag Manager and reCAPTCHA for security and analytics. Security posture is strong with HTTPS and spam protection, though security headers and explicit incident response policies are absent. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, Nanox presents a credible and trustworthy business with a focus on innovation in healthcare imaging technology.

S

Speedoc Singapore

speedoc.com

0

Speedoc Singapore operates as a healthcare service provider specializing in delivering medical services such as doctor home visits and telemedicine consultations within Singapore. The company positions itself as a convenient and accessible healthcare solution, bringing doctors, nurses, ambulance, and medicine directly to patients' locations. The website reflects a medium-sized enterprise with a focus on the Singapore market and healthcare sector. Technically, the site is built using modern web technologies including React and Next.js, with integration of popular analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight. The site is mobile optimized and presents a professional user experience with good SEO practices. Security-wise, the website enforces HTTPS and uses hCaptcha for bot protection, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. The WHOIS data for the subdomain sg.speedoc.com is unavailable, which is typical for subdomains, but the main domain's registration details are not provided here. Overall, the website is credible and functional but could enhance privacy compliance and security posture further.