Security Directory

E

EyeVi Technologies

eyevi.tech

0

EyeVi Technologies is a small Estonian company founded in 2020 specializing in AI-powered geospatial data production for road infrastructure management. Their innovative platform combines car-mounted hardware, automated AI data processing, and a web application for data verification and integration, targeting road survey agencies, infrastructure operators, and consultants. The website is professionally designed, mobile-optimized, and provides clear contact information and cookie consent mechanisms, reflecting a mature digital presence. Technically, the site leverages modern frameworks like Webflow, Google Tag Manager, and Facebook Pixel, ensuring good performance and SEO. Security posture is strong with HTTPS and consent-based tracking, though explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

ThoughtSpot Inc.

thoughtspot.com

0

ThoughtSpot Inc. is a leading enterprise software company specializing in AI-driven analytics and business intelligence platforms. Positioned as a Gartner Magic Quadrant Leader for 2025, ThoughtSpot offers a comprehensive suite of products including AI Agents, Embedded Analytics, Enterprise BI, and AI-Augmented Dashboards. Their platform empowers data teams and business users to transform insights into actionable decisions through agentic AI and automated workflows. The website reflects a mature digital presence with modern technologies, strong branding, and extensive customer testimonials, indicating a well-established market position. Technically, the site leverages a modern React/Next.js framework with integrations for analytics, personalization, and marketing tools such as Google Tag Manager, Mixpanel, and Visual Website Optimizer. The site is fast, mobile-optimized, and SEO-friendly, demonstrating high digital maturity. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the security posture is robust with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. The absence of WHOIS data is a notable anomaly but does not detract from the legitimacy given the company's public recognition and professional web presence. Strategic recommendations include publishing explicit security and incident response policies, adding vulnerability disclosure information, and enhancing transparency around data protection officer contacts and certifications to further strengthen trust and compliance.

Q

Qupital

qupital.com

0

Qupital is a fintech company founded in 2016, specializing in providing data-driven funding solutions for e-commerce businesses, particularly in the cross-border market. The platform offers financing services to e-commerce sellers and an investment platform for investors seeking alternative investment opportunities. The website is multilingual, targeting primarily Hong Kong and broader Chinese-speaking markets, with English support. The business model leverages big data to optimize financing and investment decisions, positioning Qupital as a niche player in fintech for e-commerce.

S

SPRX

sprx.tax

0

SPRX is a technology-driven company specializing in AI-powered software solutions for corporate tax incentives, specifically R&D tax credits, 179D deductions, and cost segregation. Their platform integrates with popular enterprise software to streamline data collection and uses AI to accelerate and improve the accuracy of tax credit claims. The company positions itself as a modern alternative to traditional tax firms by offering faster turnaround times and audit-ready reports, targeting medium-sized corporate clients primarily in the finance and technology sectors. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies including jQuery, Google Fonts, and Amazon Cloudfront CDN for performance optimization. The site is mobile responsive and well-structured with good SEO practices, though accessibility features are basic. No major technical issues or vulnerabilities were detected in the front-end code. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks visible security headers and published security policies. There is no evidence of privacy or cookie policies, which is a compliance gap especially for GDPR. The absence of WHOIS data limits domain trust verification, though the professional presentation and client testimonials provide positive trust signals. Overall, SPRX demonstrates a solid business and technical foundation with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

Turion Space is a technology-focused website dedicated to advancing mankind's galactic destiny by reverse engineering science fiction concepts into reality. The site is built using the Framer platform and employs modern web fonts and Cloudflare DNS services, indicating a moderate level of digital maturity. The website content is well-structured and visually consistent, targeting space enthusiasts and technology innovators. However, the site lacks critical compliance elements such as privacy and cookie policies, contact information, and incident response details, which impacts its overall trustworthiness and compliance posture. Security-wise, the site benefits from HTTPS and domain status protections but could improve by enabling DNSSEC and implementing security headers. Overall, the website presents a good foundation but requires enhancements in privacy, security, and business transparency to strengthen its risk profile and user trust.

Nasdaq Baltic operates as the regional stock exchange platform for the Baltic countries of Estonia, Latvia, and Lithuania, providing trading services for shares, bonds, and funds. The website serves investors, companies, brokers, and advisers by offering real-time market data, news, and capital raising facilitation. It is part of the larger Nasdaq Inc. corporate group, reflecting a strong market position in the finance sector. The site is professionally designed with consistent branding and clear navigation, targeting financial market participants and stakeholders in the Baltic region. Technically, the website is built on WordPress with modern front-end technologies including Bootstrap, jQuery, Swiper.js, and Highstock for data visualization. It integrates Google Analytics and Tag Manager for user tracking and marketing insights. The site is mobile optimized and SEO friendly, with structured data enhancing search engine understanding. Hosting and domain registration are managed by reputable providers, ensuring stable infrastructure. From a security perspective, the site enforces HTTPS and employs domain status locks to prevent unauthorized changes. However, DNSSEC is not enabled, and no explicit security headers or incident response policies are published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. Overall, Nasdaq Baltic's website demonstrates a mature digital presence with strong business credibility and good security hygiene. Strategic improvements could focus on enhancing DNS security, publishing formal security policies, and expanding incident response transparency to further strengthen trust and compliance.

V

Váš Hosting s.r.o.

hlidam.to

0

Hlídám.to is a Czech-based professional server monitoring service operated by Váš Hosting s.r.o. The company offers uptime and performance monitoring, outage alerts, email server monitoring, and API access, targeting website owners and IT administrators in the Czech market. The website is well-structured, with clear navigation and legal compliance including privacy and cookie policies. Technically, the site uses a custom CMS with common JavaScript libraries and frameworks such as jQuery and Bootstrap, and integrates third-party analytics and advertising tools with user consent. Security posture is solid with HTTPS enforced and secure login forms, though explicit security headers are not detected. No direct company contact emails or phone numbers are publicly listed, with contact primarily via a web form. Overall, the site demonstrates a good balance of business professionalism, technical implementation, and privacy compliance.

W

WEDOS Internet, a.s.

praguevisitorpass.eu

0

The Prague Visitor Pass website serves as the official platform for purchasing and managing city visitor passes that provide unlimited public transport and discounted access to numerous experiences in Prague. The business targets tourists and visitors seeking convenience and cost savings during their stay. The website is professionally designed with clear navigation, mobile optimization, and integration with a mobile app, reflecting a mature digital presence. Technically, the site is built on ASP.NET WebForms with Kentico CMS, using jQuery and Bootstrap for frontend functionality. While the site performs moderately well, there is room for improvement in accessibility and SEO. Security-wise, the site uses HTTPS and implements CSRF tokens and cookie consent mechanisms, but lacks visible HTTP security headers and explicit vulnerability disclosure policies. WHOIS data indicates the domain is registered with a reputable Czech hosting provider, consistent with the business location and nature. Overall, the site is trustworthy and functional but could benefit from enhanced security hardening and clearer contact information.

W

WebActive s.r.o.

vivus.cz

0

The website www.vivus.cz represents a real estate business focused on selling new apartments in Prague, Czech Republic. The company behind the site is WebActive s.r.o., which appears as the developer and author of the website. The site showcases multiple ongoing and sold residential projects across various Prague districts, targeting individuals seeking affordable new housing. The business model centers on real estate development and sales, with a medium-sized market presence in the Prague region. Technically, the website is built on WebJET CMS and uses common web technologies such as jQuery and Bootstrap for responsive design. The site is well-structured with good SEO practices and mobile optimization. Cookie consent mechanisms are implemented, indicating some level of privacy compliance. However, no explicit privacy policy or terms of service pages were found, which is a compliance gap. From a security perspective, the site uses HTTPS (implied by canonical URLs) but lacks visible security headers and advanced security policies. No WHOIS data was retrievable for the domain, which raises concerns about domain registration legitimacy and trustworthiness. No incident response or security contact information is provided. Overall, the security posture is moderate but could be improved with better transparency and technical controls. The overall risk assessment suggests the website is functional and professional but has gaps in domain legitimacy verification and privacy compliance. Strategic recommendations include publishing privacy and terms policies, improving security headers, and clarifying domain registration details to enhance trust and compliance.

ČSOP Tilia is a small Czech non-profit organization dedicated to ecological education and youth engagement, focusing on renewable energy and environmental projects. The website provides information about their activities, projects, and contact details, targeting children, youth, and educators in the Ústecký region. The organization appears to be supported by regional and EU funding, as indicated by logos and project descriptions. Technically, the website is built on the eStránky.cz platform using older JavaScript libraries and includes basic social media integration via Facebook SDK. Security posture is limited with no visible security headers and unknown SSL configuration. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data is unavailable, which reduces domain trust but does not necessarily indicate malicious intent given the nature of the organization. Overall, the website is functional but basic in design and security, suitable for a small non-profit but requiring improvements in security and compliance.

M

Město Krásná Lípa

krasnalipa.cz

0

Město Krásná Lípa operates an official municipal website serving residents, tourists, and local stakeholders by providing comprehensive information about the town, its administration, cultural events, and public services. The website reflects a well-established local government entity with a domain registered since 1999, consistent with its long-standing municipal role. The content is rich, relevant, and professionally presented, targeting local citizens and visitors interested in the region. The business model is public service oriented, focusing on transparency and community engagement. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, Font Awesome, and integrates an AI chatbot for enhanced user interaction. The site is mobile-optimized with good navigation and content structure, though it lacks some advanced accessibility features and cookie consent mechanisms. Hosting appears to be managed by a Czech registrar and hosting provider, ensuring regional consistency. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and formal security or incident response policies. No vulnerability disclosure or security.txt files are present. Privacy compliance is partially addressed with a GDPR page but no cookie consent banner. Contact information is clearly provided, enhancing trustworthiness. Overall, the website presents a moderate to good security posture with room for improvement in privacy compliance and security best practices. The domain WHOIS data aligns well with the website content, indicating high legitimacy and trust. Strategic recommendations include implementing cookie consent, security headers, and publishing security policies to enhance compliance and user trust.

W

Wellness Hotel Lužan

hotelluzan.cz

0

Wellness Hotel Lužan is a small hospitality business offering luxury accommodation, wellness services, and dining near the Czech Switzerland region. The website presents a professional and consistent brand image with clear navigation and relevant content targeting tourists seeking comfort and relaxation. The technical infrastructure leverages ASP.NET WebForms with modern front-end libraries such as jQuery, Bootstrap, and Google Maps API, supporting a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy and cookie policies exist but could be enhanced with explicit consent mechanisms. Overall, the website is trustworthy and functional, but the absence of WHOIS data limits domain legitimacy verification.

D

Dráha národního parku

drahanp.cz

0

Dráha národního parku operates as a specialized regional tourism and transportation information platform focused on the Czech and Saxon Switzerland national parks and surrounding protected areas. The website provides comprehensive travel information including railway routes, bus connections, trip recommendations, ticketing, and timetables, targeting tourists and visitors interested in exploring these natural regions. The business model centers on promoting sustainable travel experiences by train and bus, supported by partnerships with regional transport and tourism organizations. Technically, the website is built on WordPress with common plugins such as LayerSlider, Contact Form 7, and Yoast SEO, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit privacy and incident response policies are absent. Overall, the website is professional and trustworthy, though it would benefit from enhanced privacy documentation and security best practices to improve compliance and user trust.

A

Alma Career

careerexpo.cz

0

Career Expo is a major career opportunities festival organized by Alma Career Czechia s.r.o., targeting job seekers and employers primarily in the Czech Republic. The website presents a professional and content-rich platform promoting the event, workshops, and networking opportunities. The company positions itself as a leading organizer in the career event space with partnerships including Jobs.cz and Prace.cz. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA usage, though lacks some security headers and formal security policies. Privacy compliance is partial, with cookie consent implemented but no clear privacy or terms pages. WHOIS data is unavailable, which slightly impacts trust but the overall digital presence is consistent and professional.

H

Hukot.net

hukot.net

0

Hukot.net is a small Czech Republic-based hosting service provider offering a comprehensive range of hosting solutions including domain registration, webhosting, VPS, dedicated servers, and storage services. The company positions itself as a reliable and experienced player with over 17 years of hosting experience and a strong focus on performance, availability, and customer support. Their target audience includes individuals and businesses seeking scalable and GDPR-compliant hosting solutions. Technically, the website is built on modern frameworks such as Bootstrap and uses Google Tag Manager for analytics, indicating a mature digital infrastructure with good mobile optimization and SEO practices. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS domain registration data raises concerns about domain legitimacy and trustworthiness, which impacts the overall risk assessment. Strategic recommendations include improving transparency around domain registration, implementing cookie consent mechanisms, enhancing security headers, and publishing incident response contacts to strengthen compliance and trust.

C

Control Web Panel

centos-webpanel.com

0

Control Web Panel (CWP) is a free Linux web hosting control panel designed to simplify server management for dedicated and VPS servers without requiring extensive SSH console use. The website positions itself as a niche open-source alternative to commercial control panels, offering a broad feature set including web server management, PHP configuration, user and DNS management, email services, security features, and database administration. The business model includes free software with optional paid PRO support and additional services such as AntiDDoS Proxy and Service Monitoring. The site has an active social media presence and a long-standing domain registration dating back to 2013, supporting its legitimacy. Technically, the website runs on WordPress 4.9.23 with various plugins and uses technologies like Apache, Nginx, Varnish, PHP, and Postfix for backend services. The site includes Google Analytics for tracking and has moderate performance and basic mobile optimization. SEO practices are good with proper meta tags and structured navigation. However, some components like WordPress and jQuery are outdated, posing potential security risks. From a security perspective, the site uses HTTPS and displays a SiteLock badge indicating PCI compliance and malware scanning. It implements several security best practices such as ModSecurity with OWASP rules, CSF Firewall, and user-level security limits. However, DNSSEC is not enabled, and no explicit HTTP security headers were detected in the HTML content. The absence of a cookie consent mechanism and outdated software versions are notable compliance and security gaps. Overall, the website is functional, professional, and moderately secure but would benefit from updates to software components, enhanced security headers, and improved privacy compliance mechanisms. The domain registration data is consistent with the website's claims, supporting its trustworthiness. Strategic improvements in security and privacy compliance will enhance the site's credibility and reduce risk.

L

Lappset GmbH

lappset.de

0

Lappset GmbH operates as a manufacturer and supplier of innovative playground and sports equipment, targeting organizations and communities interested in promoting active play and social interaction. The website presents a professional and consistent brand image with good content quality and user experience, primarily in German. Technically, the site is built on WordPress, leveraging modern tools such as Google Tag Manager, Google Analytics, and Cookiebot for consent management and analytics. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, though some security headers are missing and no explicit security policy or incident response information is provided. Privacy compliance is supported by a comprehensive cookie consent mechanism, but no explicit privacy policy or terms of service pages were detected in the provided content. Overall, the website is trustworthy and well-maintained, with room for improvement in transparency and security best practices.

I

Institute of National Anti-Doping Organisations

inado.org

0

The Institute of National Anti-Doping Organisations (iNADO) is a non-profit international membership organization dedicated to supporting National Anti-Doping Organisations (NADOs) and Regional Anti-Doping Organisations (RADOs). It promotes best practices, fosters community collaboration, and serves as a global voice advocating for clean sport. The website reflects a professional and well-structured platform that provides resources, news, and event information relevant to anti-doping experts and stakeholders. Technically, the website is built on the TYPO3 CMS platform, integrating modern tools such as Google Tag Manager for analytics and Usercentrics for consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. However, some security headers are missing, and there is no publicly visible security policy or incident response information. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance, aligning with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for organizations of this nature, and does not raise immediate concerns. Overall, the site demonstrates a solid security posture but could improve transparency around security policies and incident response. The overall risk assessment is low, with recommendations focusing on enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

The website 'Spordin puhtalt!' is an Estonian e-learning platform dedicated to educating amateur athletes about antidoping rules, prohibited substances, and healthy sports practices. It is operated by SA Eesti Antidoping and supported by notable Estonian sports figures and international partners such as UNESCO. The platform offers educational content, exercises, videos, and testimonials to promote clean sports. Technically, the site is built on WordPress with common plugins and uses HTTPS with a moderate performance profile. However, it lacks visible privacy and cookie policies and security headers, which are areas for improvement. The absence of explicit contact emails or phone numbers limits direct communication channels, though a contact form is present. Overall, the site is trustworthy and professionally presented but could enhance its privacy compliance and security posture.

The website www.wada-ama.org is currently inaccessible due to a Web Application Firewall (WAF) challenge page implemented via AWS WAF. The page requires JavaScript execution to verify the visitor is not a robot, effectively blocking access to any substantive content. Consequently, no metadata, business information, or contact details are available for analysis. The WHOIS data query returned malformed and incomplete information, with no registrar, creation date, expiry date, or registrant details, which further limits trust and legitimacy assessment. The technical infrastructure indicates hosting on Amazon AWS in the eu-north-1 region with JavaScript-based security controls. The security posture is limited by the lack of accessible content and absence of visible security headers or policies. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the blocking mechanisms and missing data.

Oxiapps.com presents a professional website offering a Shopify app focused on social login integration to simplify customer authentication and improve signup rates. The business targets e-commerce store owners seeking to enhance user experience through social media login options. The website is built on WordPress using WPBakery Page Builder and includes modern UI elements such as sliders and responsive design. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. No privacy, cookie, or terms of service policies are present, and no contact information is provided, which impacts compliance and user trust. Security posture is moderate with no visible security headers or incident response information. Overall, the site is functional and well-designed but lacks critical compliance and trust elements.

P

PR-room

pr-room.cz

0

PR-room is a small Czech Republic based business specializing in custom WordPress website development and graphic design services. The company is led by Ing. Kristýna Včeláková, who has extensive experience since 2014 and formal training in web development and graphic design. The website demonstrates a professional service offering with references to client sites and a clear contact section including email, phone, and LinkedIn profile. Technically, the site uses modern WordPress and WooCommerce versions, integrates Google Analytics, and is served over HTTPS, indicating a reasonable digital maturity level. However, the absence of privacy and cookie policies, lack of security headers, and missing WHOIS registration data present compliance and trust concerns. Overall, the security posture is moderate but could be improved with better policy disclosures and security headers.

Tady Chutná is a hospitality business operating four distinct restaurants in the heart of Prague, specializing in traditional Czech and Austro-Hungarian cuisine. The brand emphasizes quality food, regional wines, and a rich historical ambiance, targeting both locals and tourists seeking authentic dining experiences. The parent company, Husičky s.r.o., manages these establishments with a focus on culinary heritage and customer satisfaction. The website serves as a central hub linking to each restaurant's dedicated site and provides daily menu offerings and contact information. Technically, the website is built on WordPress 6.8.1, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for interactive elements. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing, alongside Cookiebot for GDPR-compliant cookie consent management. Hosting is provided by Webglobe, consistent with the domain's WHOIS data. The site is mobile-optimized and SEO-friendly, with structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies. No forms are present for direct data collection, reducing attack surface, but the absence of privacy and terms of service documents represents a compliance gap. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and preparedness. Overall, the website presents a professional and trustworthy front for a medium-sized hospitality business, with good technical implementation and moderate privacy compliance. Strategic improvements in policy transparency and security posture would further strengthen its risk profile and customer confidence.

M

MeWe

mewe.com

0

MeWe is a privacy-focused social networking platform established in 2002, positioning itself as a next-generation social network with no ads and no spyware. The platform offers chat and group functionalities targeting users who prioritize privacy and control over their social interactions. Technically, the website leverages modern web technologies including Ember.js and is hosted on AWS infrastructure, ensuring a scalable and performant environment. The website design is professional and mobile-optimized, providing a good user experience. Security posture is adequate with HTTPS enabled and domain registration well-managed; however, the absence of security headers and explicit privacy and cookie policies indicates room for improvement in compliance and security best practices. Overall, the site is trustworthy with a moderate risk profile due to missing compliance documentation and security headers.

E

Ettevõtja infovärav Aktiva

aktiva.ee

0

Aktiva.ee is an Estonian business information portal focused on supporting entrepreneurs at various stages, including startups, operating companies, and those expanding internationally. The platform offers practical guidance, resources, and insights to help businesses succeed, with content tailored to the Estonian market and language. The website is positioned as a trusted resource for business knowledge and development in Estonia, with a clear focus on entrepreneurship and business growth.

F

FCI Levadia

fcilevadia.ee

0

FCI Levadia is an Estonian football club with an online presence primarily focused on providing football-related content and engaging with local sports fans. The website is built on WordPress and utilizes common plugins such as Yoast SEO and WP Rocket to enhance SEO and performance. The technical infrastructure is moderate, hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. The site is accessible without any WAF or security challenge blocking content. However, the website lacks critical privacy and cookie policies, contact information, and published security or incident response policies, which are important for compliance and trust. Security posture is basic with no advanced headers or vulnerability disclosures evident. Overall, the site is functional but would benefit from improvements in privacy compliance, security best practices, and business transparency.

C

Citadele pank

citadeleleasing.ee

0

Citadele pank is a well-established financial institution in Estonia offering leasing services primarily focused on vehicle financing. The website provides detailed leasing options, including a calculator and a dedicated leasing portal for customers to manage their contracts and applications. The business targets private individuals seeking flexible leasing solutions with personalized interest rates and competitive terms. The company is part of the larger Citadele Group, indicating a strong market position in the Baltic financial sector. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, with a CMS likely being October CMS. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security-wise, the site enforces HTTPS, uses security headers, and implements cookie consent mechanisms, though explicit security and incident response policies are not publicly available. WHOIS data confirms the domain's legitimacy and consistency with the business identity. Overall, the website reflects a professional and trustworthy financial service provider with room for improvement in transparency around security policies and incident response.

C

Citadele

xrewards.ee

0

The website www.xrewards.ee represents the C REWARDS loyalty and discount program affiliated with Citadele bank, targeting C card holders primarily in Estonia and the Baltic region. The platform offers users the ability to earn points on purchases and redeem them for discounts and prizes, integrating banking services with retail loyalty. The website is built on Magento CMS with modern frontend technologies including RequireJS and jQuery, and is monitored using New Relic and Google Tag Manager. The site is well-optimized for mobile devices and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not published. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Overall, the site demonstrates a mature digital infrastructure aligned with the business goals of Citadele bank's loyalty program.

Getty Images is a leading global provider of high-quality royalty-free images, editorial stock photos, vector art, video footage, and stock music licensing. The company targets creative professionals, marketers, and media companies seeking licensed digital content. The website reflects a mature digital media licensing platform with a strong brand presence and extensive content offerings. Technically, the site employs modern web technologies including AngularJS, Google reCAPTCHA for bot mitigation, and OneTrust for cookie consent management, indicating a well-maintained and user-focused infrastructure. Security posture is strong with HTTPS enforced and bot protection mechanisms, though explicit security headers and public security policies are not evident on this page. Privacy compliance is robust with clear privacy and cookie policies and GDPR considerations. Overall, the site demonstrates high professionalism and trustworthiness, though WHOIS data is unavailable due to domain naming rules, which does not detract from the legitimacy of the business.

M

Molongui

molongui.com

0

Molongui is a specialized WordPress plugin provider focusing on authorship management tools such as author boxes, guest authors, and co-authors. The company targets WordPress site owners and publishers who require advanced authorship features to credit content creators properly. The website is professionally designed, mobile-optimized, and provides comprehensive documentation and support resources. Technically, the site leverages WordPress with Elementor and several performance and privacy plugins, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and security headers present, though explicit security policies and incident response information are absent. The lack of WHOIS data is a notable gap, slightly impacting trust but not detracting from the overall professionalism. Strategic recommendations include publishing security policies and incident response contacts to enhance trust and compliance.

S

Sustinere

sustinere.eu

0

Sustinere is a medium-sized advisory firm specializing in ESG and sustainability transformation services primarily in the Baltic region. Founded in 2016, the company offers a blend of expert consulting and digital solutions to help clients navigate ESG regulations, develop sustainability strategies, and assess climate impact. Their market position is supported by a team of over 25 experts and a client base spanning 11 sectors, including energy, banking, manufacturing, and retail. The website reflects a professional and consistent brand image with good content quality and clear navigation.

Rentokil Initial plc operates the website www.rentokil.com, positioning itself as the global leader in pest control and specialist disinfection services with a presence in over 90 countries. The company offers a broad range of pest control solutions, including digital pest control technologies, tailored to various business sectors such as food processing, logistics, hospitality, and healthcare. The website reflects a mature enterprise with consistent branding, comprehensive content, and a professional user experience. Technically, the website leverages modern marketing and analytics platforms including HubSpot, Google Tag Manager, and OneTrust for cookie consent management, hosted likely behind Cloudflare infrastructure. The site is built on Magnolia CMS and demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy are not evident. The WHOIS data for the domain is unavailable, likely due to privacy protection or registry policies, but the website content and external references strongly support the legitimacy of the domain as part of Rentokil Initial plc's digital presence. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Overall, the website is a secure, professional, and comprehensive platform supporting Rentokil's global pest control business, with recommendations to enhance security transparency and incident response disclosures.

B

BNI Global, LLC

bnitos.com

0

BNI Global, LLC operates the website bnitos.com as an informational portal providing legal and privacy documentation related to its BNI Connect® and BNI Business Builder platforms. The site targets users and members of these business networking services, offering access to Terms of Service, Privacy Policies, Data Retention, and Cookie Policies primarily in English with translation options. The business is positioned as a large, established global networking organization with a consistent brand presence and clear trust signals such as registered trademarks and official documentation. Technically, the website is built on WordPress 6.8.1 with Bootstrap and jQuery libraries, hosted on AWS infrastructure. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though it lacks advanced security headers and DNSSEC. Privacy compliance is strong with comprehensive policies and a named Data Protection Officer contact, but no cookie consent mechanism is implemented. Overall, the security posture is solid but could be improved by adding explicit incident response policies, security headers, and cookie consent mechanisms. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. The site lacks phone and physical contact details, which could enhance credibility. No advertising or tracking services were detected, indicating a privacy-conscious approach. Strategic recommendations include enhancing DNS security with DNSSEC, implementing security headers, publishing incident response and vulnerability disclosure policies, and adding cookie consent mechanisms to improve compliance and user trust.

S

Schoox

bniuniversity.com

0

Schoox operates a sophisticated learning management system platform designed to empower organizations in training, engaging, and developing their workforce. The website analyzed is the login portal for the Schoox LMS, featuring a professional design and integration with Google OAuth for authentication. The platform targets organizational clients seeking scalable LMS solutions and positions itself as an established player in the education technology sector. Technically, the site leverages modern frameworks such as Angular and includes device fingerprinting for security and analytics purposes. The security posture is strong with HTTPS enforced and CSRF protections in place, though there is room for improvement in security headers and cookie consent mechanisms. Privacy policies and terms of service are clearly linked and appear comprehensive, supporting GDPR compliance. Overall, the site presents a moderate to high level of trustworthiness and professionalism, suitable for enterprise use.

B

Supporting Children's Futures for a Brighter Tomorrow: BNI Foundation

bnifoundation.org

0

The website www.bnifoundation.org is currently inaccessible in full capacity due to apparent blocking by a web application firewall or security mechanism, as indicated by the malformed WHOIS response and truncated HTML content. Consequently, no meaningful business, contact, or policy information could be extracted. The lack of WHOIS data and absence of privacy, cookie, or terms of service policies further complicate trust and legitimacy assessments. Technically, the site appears to be built on the Wix platform, but performance, security posture, and compliance cannot be evaluated due to content restrictions. Overall, the site presents a high risk from a security and compliance perspective due to lack of transparency and accessibility.

B

BNI

bnipodcast.com

0

The Official BNI Podcast website serves as a professional content platform delivering weekly audio discussions led by Dr. Ivan Misner, founder of BNI, the world's largest business networking organization. The site targets business professionals seeking networking education and referral strategies, positioning itself as an authoritative media outlet within the business networking niche. The business model revolves around content publishing, podcast distribution, and educational sponsorships, supported by partnerships with related training and audio program providers. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, and various social sharing and marketing plugins. The site demonstrates good mobile optimization and SEO practices, though performance is moderate and accessibility features are basic. Security posture is solid with HTTPS enforced and some security best practices observed, but lacks advanced security headers and a formal vulnerability disclosure mechanism. From a security and compliance perspective, the site includes a cookie consent mechanism indicating GDPR awareness, but lacks a clearly linked privacy policy and terms of service pages. Contact information is limited to forms and subscription emails, with no explicit company emails or phone numbers found. The absence of WHOIS registration data for the domain is a notable concern, potentially indicating domain registration issues or privacy protection, which impacts trustworthiness. Overall, the website is professionally maintained with high-quality content and strong brand association with BNI. However, the missing WHOIS data and incomplete privacy documentation suggest areas for improvement in transparency and compliance. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, verifying domain registration legitimacy, and improving accessibility features to strengthen trust and compliance.

S

Schoox

bnibusinessbuilder.com

0

Schoox operates a professional learning management system platform designed to empower organizations with innovative LMS solutions for employee training, engagement, and development. The website analyzed is a login portal for the Schoox LMS, featuring integration with Google Sign-In and mobile app download links, targeting organizational users. The platform positions itself as a SaaS provider in the education technology sector with a medium-sized market presence. Technically, the site employs modern JavaScript frameworks such as AngularJS and libraries like jQuery and MomentJS, alongside device fingerprinting and Google APIs. The site demonstrates moderate performance and basic mobile optimization. The presence of CSRF tokens and reCAPTCHA integration indicates attention to security, although no explicit security headers were detected in the HTML content. From a security perspective, the site uses HTTPS (implied by the URL), secure form practices, and spam prevention mechanisms. However, the absence of visible security headers and cookie consent mechanisms suggests room for improvement in security hardening and privacy compliance. No direct contact emails or phone numbers were found, but a help widget provides a contact form. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the main domain schoox.com is a known legitimate LMS provider. Overall, the website presents a trustworthy and professional LMS login portal with good technical implementation and business credibility. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance the security posture and user trust.

B

BNI

bniconnectglobal.com

0

BNI Connect is an online social media platform designed exclusively for BNI members to facilitate local and global business networking. The platform targets business professionals who are part of BNI chapters, providing a digital space to connect and collaborate. The website presents a professional and consistent brand image aligned with BNI's global presence, although detailed company founding information and physical location are not disclosed on the login page. The business model is membership-based, focusing on networking services within a niche market segment.

Pie Messenger is a technology platform launched in 2019 that offers an all-in-one service for creators to share images, videos, and files, as well as explore groups and communities. The platform targets creators and online community participants, aiming to elevate their online presence through content sharing and community engagement. The website uses modern web technologies including Blazor Server and Bootstrap, indicating a contemporary technical infrastructure with moderate performance and basic mobile optimization. However, the website lacks comprehensive content, including privacy, cookie, and terms of service policies, as well as contact information, which limits user trust and compliance. Security posture is minimal with no detected security headers or DNSSEC enabled, and no visible incident response or vulnerability disclosure mechanisms. The domain is registered with GoDaddy and has a long registration period, which supports legitimacy, but the absence of registrant details and privacy policies reduces overall trust. Strategic improvements in security, compliance, and transparency are recommended to enhance the platform's credibility and user confidence.

F

Fabricca

btsaf.com

0

Fabricca is an international, award-winning creative design and branding agency founded in 2013 and based primarily in North Macedonia with presence in Munich and Vienna. The agency offers a broad range of creative services including design, branding, web development, motion graphics, digital marketing, copywriting, video production, and photography. With a team of about 20 professionals and over 1000 clients served globally, Fabricca positions itself as a multi-disciplinary agency focused on delivering high-quality creative solutions. The website reflects a mature digital presence built on WordPress with modern frontend technologies and SEO optimizations. Hosting is provided by DreamHost, and the domain is registered via NameCheap with a consistent registration history. Security posture is good with HTTPS enforced and domain transfer protection, but lacks some security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and well-structured, but could improve compliance and security transparency.

M

Miltton Latvia

miltton.lv

0

Miltton Latvia is a creative and dynamic agency focused on providing communication consulting and branding services to clients in Latvia and the Baltic region. The company positions itself as a bold and innovative partner helping clients to be visible in a changing world. The website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for GDPR compliance, and integrates Google Analytics for traffic analysis. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and headers could be improved. Overall, the site demonstrates a good balance of business professionalism, technical implementation, and privacy compliance, suitable for a medium-sized agency in the media sector.

M

Miltton

miltton.com

0

Miltton is a well-established consultancy agency founded in 2007, specializing in business, communications, and design services aimed at enabling impactful change for organizations. The company operates across multiple European markets with subsidiaries and regional sites, positioning itself as a strategic partner for business transformation, branding, and communications. The website reflects a mature digital presence with rich content including case studies, insights, and news updates, targeting businesses and organizations seeking consultancy and creative solutions. Technically, the site is built on WordPress with modern technologies such as Tailwind CSS, jQuery, and integrates advanced SEO and analytics tools like Yoast SEO, Matomo, and Google Tag Manager. Mobile optimization and accessibility are well addressed, providing a seamless user experience across devices. Security posture is good with HTTPS enforced and privacy compliance supported by Cookiebot for consent management, although some security headers and DNSSEC are missing. No direct contact emails or phone numbers are published, relying on contact forms for communication. Overall, the site demonstrates high professionalism and trustworthiness with minor areas for security enhancement.

A

Artis Zelmenis

artiszelmenis.lv

0

Artis Zelmenis operates a small Latvian-based business website offering a variety of services including web development, SEO, legal assistance, photography, advertising, and educational content. The site targets local SMEs, individuals, and students, providing multilingual content in English, Latvian, and Russian. The business appears niche-focused with a stable presence since 2012. Technically, the website uses standard JavaScript libraries and social media SDKs for Facebook, Twitter, VK, and Draugiem.lv, alongside Google Analytics for traffic monitoring. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS indications. SEO is reasonably addressed with meta tags and multilingual support. Security posture is moderate but with notable gaps: no visible HTTPS enforcement, absence of security headers, and use of some HTTP resources that may cause mixed content issues. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is functional and professional but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user safety.

Baltic Legal operates a specialized immigration and legal consultancy website focused on residence permits and immigration services in Latvia and the broader European Union. The company offers services including residence permits via real estate investment, business investment, and bank deposits, alongside legal assistance in corporate and immigration law. The website is well-structured, multilingual, and provides detailed information about immigration policies, visa requirements, and investment options. Technically, the site uses standard web technologies with Google Analytics and Tag Manager for tracking, but lacks advanced security headers and cookie consent mechanisms. The WHOIS data is fully redacted as per EURid policy, which is typical for .eu domains and does not raise immediate concerns. Overall, the site presents a professional image with moderate technical maturity and some room for security and privacy improvements.

S

Stratasys Direct

stratasysdirect.com

0

Stratasys Direct operates as a leading provider of on-demand 3D printing services, specializing in prototyping and production manufacturing. The company targets manufacturers and product developers seeking rapid and flexible additive manufacturing solutions. The website reflects a mature digital presence with professional branding and clear service descriptions, positioning Stratasys Direct as a key player in the manufacturing sector. Technically, the site employs modern monitoring and marketing technologies such as New Relic, Google Tag Manager, and VWO, indicating a focus on performance and user experience analytics. Security posture is strong with HTTPS enforced and no obvious vulnerabilities, though the absence of explicit security headers and privacy policies suggests room for improvement. The lack of WHOIS data limits domain trust analysis but does not detract significantly from the overall legitimacy given the brand recognition. Strategic recommendations include enhancing transparency around privacy and security policies, implementing additional security headers, and providing clear contact and incident response information to bolster user trust and compliance.

S

Stratasys Ltd.

stratasys.com

0

Stratasys Ltd. is a leading enterprise in the industrial 3D printing and additive manufacturing sector, offering advanced hardware, software, and services that support the entire product lifecycle. The company targets industrial manufacturers, engineers, and enterprises seeking innovative manufacturing solutions. Their market position is strong, supported by a professional and comprehensive digital presence. The website demonstrates a mature technical infrastructure with modern analytics, performance optimization, and mobile responsiveness. Security posture is robust with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly detailed. Overall, the risk profile is low with recommendations to enhance transparency around security and vulnerability disclosures.

E

Eesti Lauatenniseliit

eltl.ee

0

Eesti Lauatenniseliit is a national sports organization dedicated to table tennis in Estonia, providing news, event calendars, club information, player rankings, and regulatory details. The website serves as an information hub for players, clubs, and enthusiasts within the Estonian table tennis community. Technically, the site uses modern web technologies including JavaScript modules and CSS, hosted on DigitalOcean with DNS managed by the same provider. The site appears to be built on WordPress, indicating a standard CMS approach. Security posture is moderate with HTTPS likely enabled but lacking visible security headers and formal security policies. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Business credibility is supported by consistent WHOIS data showing local Estonian registration and a new domain appropriate for the organization's recent founding. Overall, the site is functional and professional but would benefit from enhanced privacy, security, and contact transparency.

S

STIGA Sports

stigasports.se

0

STIGA Sports operates an e-commerce platform specializing in sports and leisure products, including table tennis equipment, scooters, and hockey games. The website targets consumers interested in sports gadgets and leisure activities, positioning itself as a recognized brand in the retail sports sector primarily in Sweden. The business model focuses on direct online sales with a moderate company size and consistent branding. Technically, the website is built using modern frameworks such as Next.js and integrates multiple third-party services for analytics, marketing, and user engagement, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is partial, with a cookie consent banner present but no explicit privacy policy or terms of service detected in the provided content. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Strategic recommendations include enhancing privacy disclosures, improving security headers, and verifying domain registration details to strengthen business credibility and compliance.

The website kul.ee is registered to Haridus- ja Teadusministeerium (EENet), an Estonian government entity, with a domain age dating back to 2010. The site is currently inaccessible due to a Cloudflare security challenge page requiring human verification, which blocks access to actual website content. Consequently, no business description, contact information, or user-facing content is available for analysis. The technical infrastructure relies on Cloudflare services for security and performance, including the Turnstile captcha and Cloudflare Insights for analytics. Security posture cannot be fully assessed due to the blocked content, but the use of Cloudflare indicates a baseline security approach. Privacy and cookie policies are not detectable on the challenge page, and no forms or data collection mechanisms are visible beyond the security verification. Overall, the domain registration data supports legitimacy as a government entity website, but the lack of accessible content limits comprehensive evaluation.