Security Directory

E

EVO Payments International s.r.o.

revopayments.cz

0

REVO CZ, operated by EVO Payments International s.r.o., is a payment service provider based in the Czech Republic offering a comprehensive suite of cashless payment solutions including payment terminals, payment gateways, and mobile SoftPOS terminals. The company is positioned as a medium-sized player in the finance sector and is part of the Global Payments group, which enhances its market credibility. The website is professionally designed, mobile optimized, and provides clear navigation and relevant content targeted at merchants and online retailers seeking payment processing solutions. Technically, the site leverages HubSpot CMS and integrates Google Tag Manager and HubSpot analytics for marketing and tracking purposes. Security posture is strong with HTTPS enforced and secure form handling, though there is room for improvement in implementing security headers and publishing explicit security policies. The absence of WHOIS data is a notable concern for domain legitimacy verification but does not detract significantly from the overall trustworthiness given the business affiliations and content quality. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site reflects a mature digital presence with moderate technical sophistication and good business credibility.

E

EVO Czech Republic s.r.o.

monetaplatebnisluzby.cz

0

The website monetaplatebnisluzby.cz represents EVO Czech Republic s.r.o., a payment service provider operating in the Czech Republic and affiliated with the Global Payments group. The company offers a range of cashless payment solutions including payment terminals, payment gateways, and mobile payment terminals, targeting merchants and e-commerce businesses. The site is professionally designed, mobile-optimized, and provides clear navigation and contact options, including a contact form and phone number. The presence of privacy and cookie policies with consent mechanisms indicates attention to regulatory compliance. Technically, the site is built on HubSpot CMS, leveraging HubSpot forms and analytics, along with Google Tag Manager for tracking. The SSL configuration is excellent, and secure form handling is in place. However, no WHOIS data was found, which reduces transparency and trustworthiness from a domain registration perspective. No explicit security headers or incident response information were detected, suggesting areas for improvement in security posture. Overall, the site is functional, professional, and compliant but would benefit from enhanced security disclosures and WHOIS transparency.

K

KB SmartPay

payphone.cz

0

KB SmartPay operates the PayPhone service, a mobile payment terminal application that transforms smartphones into card payment terminals, targeting merchants and businesses primarily in the Czech Republic. The website presents a professional and consistent brand image, emphasizing ease of use and a free one-year offer to attract users. The business model centers on providing mobile payment solutions leveraging smartphone technology, positioning itself in the finance sector with a focus on digital payment innovation. Technically, the website is built on WordPress 6.8.1 and integrates multiple modern technologies including Google Analytics, Google Tag Manager, Cookiebot for cookie consent management, and advertising/tracking services such as Adform and Facebook Pixel. The site is mobile-optimized and uses structured data (JSON-LD) to enhance SEO and provide clear business information. Performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, demonstrating awareness of privacy regulations. However, the absence of visible security headers and lack of explicit privacy policy or incident response information are notable gaps. The WHOIS data is unavailable, which reduces domain trustworthiness and raises questions about domain registration transparency. Overall, the website is functional, professional, and compliant with basic privacy requirements but would benefit from enhanced transparency in privacy policies, improved security headers, and clearer contact information to strengthen trust and compliance posture.

G

Global Payments s.r.o.

globalpayments.cz

0

Global Payments s.r.o. operates as a leading payment technology service provider in the Czech Republic, offering a comprehensive portfolio including payment terminals, payment gateways for e-commerce, and mobile payment terminal applications. Their market position is strong, targeting both small and large businesses seeking reliable and innovative payment solutions. The website reflects a mature digital presence with clear navigation, professional design, and localized content in Czech. Technically, the site employs modern tracking and consent technologies such as Google Analytics, Google Tag Manager, and OneTrust cookie consent, indicating a good level of digital maturity. Security posture is robust with HTTPS enforced, security headers present, and use of reCAPTCHA to protect forms, though explicit security policies and incident response information are not publicly disclosed. Overall, the site is trustworthy and professional, though the absence of WHOIS data slightly reduces transparency. Strategic recommendations include publishing security and incident response policies, enhancing accessibility, and providing clear data protection officer contact details.

D

Dotypay

dotypay.com

0

Dotypay is a Czech Republic based company specializing in modern payment terminal devices with extensive connectivity and multifunctional capabilities. Founded in 2018, the company targets businesses requiring advanced payment solutions, offering both sales and rental models. Their website is professionally designed using WordPress with Elementor and Astra theme, featuring comprehensive content about their products and services. The company maintains active social media presence on Facebook and LinkedIn, enhancing their market visibility. Technically, the website employs modern technologies including Google Analytics, Facebook Pixel, and Google Tag Manager for marketing and analytics purposes. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies and consent mechanisms. Overall, Dotypay presents a trustworthy and professional online presence with room for enhanced security policies and incident response transparency.

BNO (Beroepsorganisatie Nederlandse Ontwerpers) is a well-established Dutch professional association for designers and design agencies, boasting a history of over 100 years. It serves as the largest community of designers in the Netherlands, offering a broad range of services including advice, training, coaching, events, publications, and mentoring. The website reflects a mature organization with a clear market position and a strong focus on supporting and promoting the design sector in the Netherlands. Technically, the site is built on the Odoo CMS platform, leveraging modern web technologies and analytics tools such as Google Tag Manager and Plausible Analytics. The site is well-optimized for mobile and SEO, with good performance and accessibility standards. Security posture is solid with HTTPS enforced, CSRF protection, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

D

Darwin CX

darwin.cx

0

Darwin CX is a technology company offering a comprehensive SaaS platform focused on real-time customer insights, campaign management, fulfillment, financial reporting, and customer support tailored for recurring revenue businesses. The website positions Darwin CX as a key player in providing integrated solutions to businesses seeking to optimize customer experience and revenue management. The platform targets businesses with subscription or recurring revenue models, emphasizing operational efficiency and customer engagement. Technically, the website leverages modern web technologies including Webflow for site building, HubSpot for marketing and form management, Google Tag Manager for analytics, and OneTrust for cookie consent management. The site is mobile optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Performance is moderate, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and uses secure form submissions via HubSpot. Cookie consent is managed through OneTrust, indicating awareness of privacy compliance. However, the absence of explicit security headers and lack of published privacy and terms of service pages represent gaps in security posture. No WHOIS data is publicly available for the domain, which reduces transparency and trustworthiness, although the professional site and use of reputable third-party services mitigate some concerns. Overall, Darwin CX presents a solid digital presence with a good security baseline but would benefit from enhanced transparency through published policies and improved security headers. The lack of WHOIS data is a notable concern that should be addressed to improve trust and legitimacy perception.

The website startupinresidence.com is currently inaccessible due to a Cloudflare Turnstile security challenge page that requires human verification before access. This prevents direct analysis of the actual website content, business information, and policies. The domain is registered since 2015 with a reputable registrar and has basic domain security settings such as clientTransferProhibited, but lacks DNSSEC. The technical infrastructure relies on Cloudflare for security and performance. No privacy, cookie, or terms of service policies are visible on the challenge page, nor any contact information or business details. The security posture is moderate due to HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Overall, the site currently provides minimal accessible content and lacks visible compliance or business credibility indicators.

S

Sportinnovator

sportinnovator.nl

0

Sportinnovator is a Dutch government-supported initiative focused on fostering innovation in the sports sector across the Netherlands. It operates as a network and funding platform that supports innovative ideas, projects, and initiatives through financing, coaching, connecting stakeholders, and promoting sport innovation. The website serves as a central hub for information, news, and resources related to sport innovation, targeting municipalities, sports professionals, companies, researchers, and sports associations. The initiative is backed by the Ministry of Health, Welfare and Sport and ZonMw, indicating strong governmental support and legitimacy. Technically, the website is built on a modern stack including Craft CMS, uses Amazon Cloudfront CDN for hosting, integrates Google reCAPTCHA for form security, and employs Sentry for error monitoring and replay. Analytics are handled via Piwik PRO, reflecting a moderate level of user tracking. The site is well-optimized for mobile and accessibility, with good SEO practices and clear navigation. However, explicit privacy and cookie policies are not found in the provided content, which is a gap in compliance. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and integrates reCAPTCHA to prevent spam. Error monitoring is active via Sentry. However, it lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data aligns well with the website's claims, showing consistent registrant information linked to the Dutch government, supporting the site's legitimacy. Overall, the website presents a professional, trustworthy, and functional platform for sport innovation in the Netherlands. To enhance its security posture and compliance, it should publish privacy and cookie policies with consent mechanisms, add security headers, and provide incident response contact information. These improvements would strengthen user trust and regulatory adherence.

A

Akademie der Kulturellen Bildung des Bundes und des Landes NRW e.V.

kulturellebildung.de

0

The Akademie der Kulturellen Bildung des Bundes und des Landes NRW e.V. is a prominent German non-profit educational institution specializing in cultural youth education. It serves as a federal and state central institute offering a broad range of courses, workshops, research projects, and events aimed at professionals and stakeholders in cultural education. The website reflects a strong market position with comprehensive program offerings and active engagement through newsletters and social media channels. Technically, the site is built on a modern WordPress platform with advanced plugins for SEO, user management, and analytics, demonstrating a mature digital infrastructure. Security measures include HTTPS enforcement, security monitoring via WP Sentry, and GDPR-compliant cookie consent mechanisms, although some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, with clear contact information and privacy policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and secure online presence.

C

C. Bechstein Pianoforte GmbH

bechstein.com

0

C. Bechstein Pianoforte GmbH is a prestigious German manufacturer of grand and upright pianos, with a heritage dating back to 1853. The company offers premium handcrafted instruments targeting professional musicians and discerning customers worldwide. Their business model includes manufacturing, authorized dealer networks, service, and restoration. The website reflects a mature digital presence built on TYPO3 CMS, with multilingual support and comprehensive product and company information. Privacy and cookie compliance are well implemented, including consent management and GDPR-aligned policies. Security posture is good with HTTPS and CAPTCHA on forms, though some HTTP security headers are missing. WHOIS data is unavailable publicly, which slightly impacts trust but is not uncommon for premium brands. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

S

Sparkasse Oberlausitz-Niederschlesien

sparkasse-oberlausitz-niederschlesien.de

0

Sparkasse Oberlausitz-Niederschlesien is a well-established regional financial institution in Germany with a strong heritage of 200 years. The website serves both private and corporate customers, offering a broad range of banking products including accounts, loans, investments, insurance, and real estate services. The digital presence is professional, well-structured, and optimized for accessibility and mobile use, reflecting a mature digital infrastructure based on Adobe Experience Manager and modern web technologies. Security posture is strong with HTTPS enforcement, secure login forms, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. The website integrates trusted third-party services such as Deka Investments and a virtual assistant chatbot to enhance customer experience. Overall, the site demonstrates high business credibility and compliance with GDPR and cookie regulations.

S

solemedia GbR Peter und Agathe Rösch

solemedia.de

0

solemedia GbR Peter und Agathe Rösch operates a full-service marketing and communication agency based in Germany, focusing on services such as marketing, design, print, and internet solutions. The website presents a professional design with a clear focus on their service offerings, targeting businesses seeking comprehensive marketing support. Technically, the site uses modern front-end frameworks like Bootstrap and integrates self-hosted Matomo analytics alongside a Usercentrics consent manager, indicating a moderate level of digital maturity and privacy awareness. Security posture is adequate with HTTPS usage and consent management, but lacks visible security headers and published security policies, which are areas for improvement. Overall, the website is accessible and functional but would benefit from enhanced transparency in privacy and security documentation to improve trust and compliance.

S

Sparkasse Nürnberg

sparkasse-nuernberg.de

0

Sparkasse Nürnberg is a well-established regional bank in Germany offering a comprehensive range of financial services including online banking, loans, insurance, investment products, and advisory services targeted at both private and corporate customers. The website reflects a strong market position with recognized awards for customer service and employer reputation. Technically, the site is built on Adobe Experience Manager, uses modern web technologies, and provides a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, although explicit security policies and incident response information are not published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

Sparkasse Nürnberg

zukunftsstiftung-nuernberg.de

0

Sparkasse Nürnberg's Zukunftsstiftung website presents a well-established non-profit foundation focused on enhancing the quality of life in Nürnberg through funding sustainable and cultural projects. The site is professionally designed, content-rich, and targets local citizens and organizations. Technically, the site uses modern web technologies, including JavaScript and CSS, and is likely powered by an enterprise CMS such as Adobe Experience Manager. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are missing. The domain registration aligns well with the business identity, indicating legitimacy. Overall, the site demonstrates a mature digital presence with room for improvement in privacy compliance and security transparency.

L

Lebkuchen-Schmidt.com

lebkuchen-schmidt.com

0

Lebkuchen-Schmidt.com is an established German e-commerce retailer specializing in traditional Nürnberger Lebkuchen and related confectionery products. The website presents a professional and well-structured online shop with a strong emphasis on product quality and customer trust, evidenced by a high Trusted Shops rating and a long-standing business history since 1927. The target audience primarily includes consumers interested in authentic German baked goods and sweets, both domestically and internationally. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and a consent management platform to ensure compliance with privacy regulations. The website is mobile-optimized and offers a good user experience with clear navigation and product categorization. Security-wise, the site uses HTTPS and consent mechanisms but lacks visible security headers and explicit security policies. The absence of WHOIS registrant data is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly impacts the trust assessment. Overall, the site is credible and functional but would benefit from enhanced transparency in domain registration and explicit contact information.

B

Bezirk Mittelfranken

bezirk-mittelfranken.de

0

Bezirk Mittelfranken is a regional government entity in Germany focused on providing social services, cultural preservation, health care, education, and regional development for the citizens of Mittelfranken. The website serves as an official portal offering comprehensive information about its services, events, and administrative functions. It targets residents, social service providers, cultural organizations, and educational institutions within the region. The business model is public sector service delivery with a strong emphasis on social welfare and cultural heritage. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery, hosted on Hetzner infrastructure. It incorporates accessibility features and a consent management platform to comply with GDPR. The site demonstrates good mobile optimization and SEO practices, with a moderate performance profile. From a security perspective, the site enforces HTTPS, uses consent management for cookies, and avoids exposing sensitive data. However, it lacks some advanced security headers and does not publish a dedicated security policy or incident response contacts. No vulnerabilities were detected in the visible content or scripts. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It effectively supports the public institution's mission but could improve security posture by adding explicit security policies and enhancing HTTP headers.

I

Interneto vizija, UAB

dedikuoti.lt

0

Dedikuoti.lt is a Lithuanian-based hosting provider specializing in self-managed VPS and dedicated servers, targeting professional users and businesses requiring robust server infrastructure. The company offers business-class HPE ProLiant DL360 hardware hosted in a Tier III data center with advanced features such as DDoS protection and container virtualization technologies (KVM and OpenVZ). The website content is professionally presented, primarily in Lithuanian, and includes detailed cookie consent mechanisms reflecting a commitment to privacy compliance, although no explicit privacy policy or terms of service pages were found. The domain WHOIS data is unavailable, which raises concerns about domain registration legitimacy but does not detract from the professional appearance and service offerings.

I

Interneto vizija, UAB

hostingas.lt

0

The website pro.hostingas.lt represents a Lithuanian company, Interneto vizija, UAB, offering professional managed hosting and server administration services. The business targets projects requiring high reliability and flexibility in hosting infrastructure, positioning itself as a specialized service provider in Lithuania. The website content is professionally presented in Lithuanian, with clear descriptions of services and a focus on business customers. The digital infrastructure includes modern cookie consent management and integration with marketing and analytics platforms such as Intercom, Google Analytics, and Sales Manago. However, the absence of a visible privacy policy and terms of service pages limits transparency and compliance clarity. The WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and reduces trustworthiness from a security perspective.

I

Interneto vizija, UAB

dizaineriai.lt

0

Dizaineriai.lt is a Lithuanian website offering accessible and user-friendly website creation and web design services, operated by the company Interneto vizija, UAB. The site targets individuals and businesses in Lithuania seeking to create functional, secure, and visually appealing websites quickly. The business model focuses on providing easy-to-use web design tools and hosting services, positioning itself as a local player in the Lithuanian technology sector. The website content is professionally presented with clear metadata and branding consistency.

K

Knock Knock WHOIS Not There, LLC

kjtz.co

0

The website jungespublikum.blog is a German-language cultural blog dedicated to performing arts and young audiences, providing networking, event information, funding, and research dissemination. It is hosted on WordPress.com and registered via Automattic Inc., with domain registration dating from 2023, consistent with the site's recent content. The platform targets professionals and stakeholders in the cultural and performing arts sectors, operating as a small non-profit media entity. Technically, the site uses WordPress with Jetpack and Gutenberg, delivering a modern and moderately performant user experience with good mobile optimization and basic accessibility. Security posture is solid with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and explicit security headers are not visible. Privacy compliance is weak, lacking visible privacy or cookie policies and consent mechanisms. Contact is primarily via a blog subscription form, with no direct emails or phone numbers published. Social media presence is established across major platforms. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy disclosures and security hardening.

T

Theater Pfütze e. V.

theater-pfuetze.de

0

Theater Pfütze e. V. is a non-profit cultural organization based in Nürnberg, Germany, specializing in theater and music theater performances targeted at young audiences, including children and youth. The organization offers a variety of services including theatrical performances, educational theater pedagogy courses, workshops, and festival events such as the Südwindfestival. The website reflects a well-established local cultural institution with a clear focus on youth engagement and education. Technically, the website is built on the TYPO3 CMS platform using the Bootstrap framework, ensuring a modern and responsive design. It integrates Matomo for analytics and Usercentrics for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and employs email obfuscation techniques to protect contact information. While no explicit security policies or incident response contacts are published, the site shows no signs of vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies and active consent mechanisms. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic improvements could include publishing formal security policies and vulnerability disclosure information to enhance transparency and security posture.

G

Gerhart Hauptmann-Theater Görlitz-Zittau GHT

g-h-t.de

0

Gerhart Hauptmann-Theater Görlitz-Zittau (GHT) is a regional cultural institution in Germany offering a diverse range of performing arts including music theater, drama, dance, and concerts by the Neue Lausitzer Philharmonie. The theater also provides summer open-air performances and educational theater programs targeting families, youth, and educational institutions. The website reflects a well-established presence with comprehensive event information and multiple contact channels. Technically, the site uses a proprietary CMS (BLUEPAGE-CMS) with modern JavaScript libraries and is mobile responsive, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is strong with clear cookie consent and privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its cultural mission.

P

Proqua

proqua-kms.de

0

Proqua is a German-based non-profit organization focused on enhancing cultural education for disadvantaged children and youth by providing practical tools, organizing professional conferences, and fostering networking among professionals in culture, education, and social work. The website serves as a resource hub offering educational materials, event information, and a newsletter subscription to keep stakeholders informed. Technically, the site is built on WordPress with a modern theme and plugins, including Contact Form 7, Minerva Knowledge Base, and Nectar Slider, supported by Matomo analytics and Brevo for marketing communications. The infrastructure is hosted on German servers, consistent with the organization's regional focus. From a security perspective, the website employs HTTPS with good SSL configuration, uses Google reCAPTCHA v3 to protect forms, and implements GDPR-compliant cookie consent mechanisms. However, it lacks explicit security headers and does not provide a dedicated security policy or vulnerability disclosure page. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's content and hosting location, indicating legitimacy and consistency. Overall, Proqua's website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. The absence of direct contact emails or phone numbers is mitigated by a contact form. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen trust and security posture.

K

key | communication

keycommunication.lt

0

key | communication is a Lithuanian digital marketing agency specializing in planning and executing digital advertising campaigns for both B2C and B2B clients domestically and internationally. The company also has expertise in traditional media planning dating back to 2005, providing a broad market perspective. Their services include campaign management, interactive reporting, and daily campaign monitoring, with occasional 24/7 support for specific cases. The website is built on WordPress using WPBakery Page Builder and integrates Google Tag Manager for analytics. The site is well-designed, mobile-optimized, and provides clear business messaging in Lithuanian. However, it lacks explicit privacy, cookie, and terms of service policies, as well as visible contact emails or phone numbers.

The website unicode.lt/auth serves as a user login and registration portal primarily targeting Lithuanian-speaking users. It is associated with the company UAB "Interneto vizija", a Lithuanian registrar, which aligns with the domain registration data. The site provides basic user authentication services without extensive business content or marketing information, indicating a focused utility platform rather than a broad commercial presence. The technical infrastructure relies on common web technologies such as jQuery, Bootstrap, and FontAwesome, hosted behind Cloudflare DNS services, suggesting a moderate level of digital maturity but lacking advanced modern frameworks or CMS platforms. Security posture is moderate; while forms use secure POST methods and password confirmation, the absence of security headers, anti-CSRF tokens, and cookie consent mechanisms highlight areas for improvement. No direct contact or incident response information is provided, which may impact user trust and compliance. Overall, the site is functional but basic in design and security, suitable for a small business or service with limited public-facing content.

O

Onehub

onehub.com

0

Onehub is a technology company specializing in secure cloud storage, file sharing, and virtual data room services tailored for businesses. The company positions itself as a trusted provider with over one million users, including notable enterprise clients such as Starbucks and Dell. Their platform emphasizes security, role-based access controls, and customizable client portals to enhance collaboration and data protection. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, hCaptcha for bot protection, and Olark for live chat support. The site is hosted on Amazon Cloudfront CDN, ensuring fast performance and global availability. The site is mobile-optimized and accessible, with comprehensive SEO and privacy compliance features such as cookie consent management. From a security perspective, Onehub demonstrates strong practices including HTTPS enforcement, secure forms with CAPTCHA, detailed privacy and security policies, and audit trails for sensitive data rooms. However, the absence of explicit incident response and vulnerability disclosure information, as well as missing WHOIS domain registration data, represent areas for improvement. Overall, Onehub presents a professional and trustworthy online presence with robust security and privacy measures. The main risk factor is the lack of transparent domain registration data, which should be addressed to enhance trustworthiness and compliance.

Q

QUORiON Data Systems GmbH

quorion.de

0

QUORiON Data Systems GmbH is a German-based manufacturer specializing in Android-based cash register systems and POS software, serving over 650,000 businesses worldwide across retail and hospitality sectors. The company positions itself as a leading provider with a strong focus on customization, scalability, and compliance with fiscal regulations. Their website reflects a mature digital presence with comprehensive product information, dealer support, and customer testimonials. Technically, the site is built on WordPress with modern optimization tools like WP Rocket and integrates Google Analytics 4 for tracking. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates professionalism, good privacy compliance, and a trustworthy business image.

W

Willem II

willem-ii.nl

0

Willem II is a Dutch football club operating an official website that serves as a hub for fans and stakeholders to access club news, ticketing, and merchandising information. The website is built on Drupal 10, indicating a modern and maintainable technical infrastructure. The site integrates multiple analytics and marketing tools such as Google Analytics, Hotjar, Facebook Pixel, and LinkedIn Insight Tag, demonstrating a mature digital marketing approach. The presence of a comprehensive cookie consent mechanism compliant with GDPR reflects a strong commitment to privacy regulations. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies, incident response contacts, and terms of service pages suggests areas for improvement in transparency and compliance documentation. Overall, the website presents a professional and trustworthy digital presence aligned with the club's brand and audience expectations.

E

Excelsior Rotterdam

excelsiorrotterdam.nl

0

Excelsior Rotterdam is a professional football club based in the Netherlands, operating a comprehensive website that serves fans, business partners, and the local community. The site offers detailed team information, match schedules, news updates, and e-commerce functionality through its fanshop. The club maintains a strong market position within Dutch football, supported by active business partnerships and community engagement. Technically, the website is built on WordPress with WooCommerce, enhanced by modern analytics and marketing tools such as Google Tag Manager and Quantcast. The site demonstrates good digital maturity with mobile optimization and SEO best practices. Security posture is solid, featuring HTTPS, DNSSEC, and cookie consent mechanisms, though additional security headers could further enhance protection. Privacy compliance is well addressed with clear policies and consent management. Overall, the website reflects a professional and trustworthy digital presence aligned with the club's brand and business objectives.

R

RKC Waalwijk

rkcwaalwijk.nl

0

RKC Waalwijk is a professional Dutch football club with a well-established online presence. The website serves as a hub for fans and stakeholders, offering news, ticket sales, merchandise, and community engagement through its foundation. The club maintains a consistent brand image and provides a user-friendly experience with clear navigation and mobile optimization. Technically, the site is built on TYPO3 CMS and integrates modern analytics and advertising technologies, ensuring good performance and SEO. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site reflects a mature digital infrastructure aligned with the club's business objectives.

K

Knauf Insulation

b2b-knaufinsulation.lt

0

Knauf Insulation Lithuania operates a B2B web portal focused on insulation products, providing business customers with login access to product catalogs and order management. The website is built using modern Angular technology and is hosted behind Cloudflare DNS, ensuring good performance and security. The site is mobile optimized and presents a professional design consistent with the Knauf brand. However, the site lacks publicly accessible privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. Security posture is generally good with HTTPS enforced and secure form inputs, but security headers and incident response information are missing. Overall, the domain registration is legitimate and consistent with a new business initiative, supporting the website's credibility.

Starthubs is a Netherlands-based open innovation platform operated by Battle of Concepts, specializing in challenge-based innovation connecting large organizations with startups and SMEs. The platform hosts over 600 challenges and a community of 40,000+ innovators, focusing on sectors such as energy, transportation, government, and other domains. The website is professionally designed with good navigation and mobile optimization, leveraging modern technologies including Google reCAPTCHA for security. However, it lacks visible privacy and cookie policies, which impacts privacy compliance scores. The domain registration is consistent and trustworthy, supporting the legitimacy of the business.

V

Visa

visasoutheasteurope.com

0

Visa is a globally recognized leader in digital payments, offering a wide range of payment technologies and services to individuals, businesses, and innovators. The website serves as a comprehensive portal for Visa's offerings in Southeast Europe, including premium cards, contactless payments, and business solutions. The site is well-branded, professionally designed, and optimized for mobile and accessibility, reflecting Visa's enterprise-level digital maturity. Technically, the site leverages modern frameworks like Stencil.js, integrates multiple analytics and marketing tools, and is hosted on a robust infrastructure likely supported by Cloudflare. Security posture is strong with HTTPS enforced, security best practices observed, and cookie consent mechanisms in place. However, the absence of publicly available WHOIS data and explicit security policy or incident response information introduces some uncertainty. Overall, the site is trustworthy and professional but would benefit from enhanced transparency in security and contact information.

D

DRP

bureaudrp.nl

0

DRP is a well-established creative design agency based in Assen, Netherlands, specializing in graphic design, website creation, branding, and digital communication solutions. With over 25 years of experience, the company serves a diverse clientele including government, businesses, and organizations. Their website reflects a professional and consistent brand image, offering clear navigation and comprehensive service descriptions. Technically, the site is built on Joomla CMS with modern web technologies such as Gridbox, FontAwesome, and Google Analytics integration, ensuring a good user experience and mobile responsiveness. Security posture is strong with HTTPS enforced, DNSSEC enabled, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with accessible privacy and cookie policies and GDPR adherence. Overall, DRP demonstrates a credible and trustworthy online presence with solid business and technical foundations.

Č

Česko platí kartou

ceskoplatikartou.cz

0

Česko platí kartou is a Czech program aimed at facilitating merchants' adoption of card payment acceptance by providing access to free terminals and payment gateways for an initial period. The website positions itself as a trusted intermediary connecting merchants with multiple payment providers, promoting cashless payments to increase sales and customer convenience. The program targets small and medium-sized businesses in Czechia, emphasizing ease of use and modern payment technologies including mobile terminals and online payment gateways. Technically, the website employs modern web technologies such as Bootstrap and Google Tag Manager, hosted behind Cloudflare, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers and privacy policies are missing, representing compliance gaps. The absence of WHOIS data limits domain legitimacy verification, but the presence of multiple reputable payment partners and clear business messaging supports trust. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security transparency.

The Washington Monthly is a well-established independent media organization focused on political and educational journalism, with a strong emphasis on government accountability and policy analysis. The website serves a target audience interested in in-depth political commentary, education issues, and public affairs, supported by subscription and donations. Technically, the site is built on WordPress with modern SEO and analytics tools, delivering good performance and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and no explicit cookie consent mechanism is present. Overall, the site demonstrates high professionalism and trustworthiness with a long domain history and consistent WHOIS data.

M

Montana Free Press

montanafreepress.org

0

Montana Free Press is an independent nonprofit digital newsroom providing fact-based statewide news coverage focused on Montana. It operates with a reader-supported business model emphasizing transparency, ethics, and community engagement. The organization is positioned as a leading source of independent journalism in Montana, offering news, newsletters, special projects, and events. The website is professionally designed with excellent content quality and clear navigation targeting Montana residents and stakeholders interested in local affairs. Technically, the site is built on WordPress with a modern tech stack including WooCommerce for e-commerce, Fundraise Up for donations, and Google Analytics for tracking. Hosting is via WordPress.com nameservers, ensuring reliable infrastructure. The site is mobile-optimized, fast loading, and accessible with good SEO practices. Security posture is strong with HTTPS, multiple security headers, and use of Google reCAPTCHA on forms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy and GDPR considerations, though cookie consent mechanisms and terms of service are missing. Contact information is available primarily via email and contact forms. Overall, the website presents a trustworthy, professional, and secure platform for nonprofit journalism. Strategic recommendations include implementing cookie consent banners, publishing terms of service, and adding vulnerability disclosure and incident response information to enhance transparency and compliance.

T

The Colorado News Conservancy

coloradonewsconservancy.com

0

The Colorado News Conservancy is a nonprofit collaboration launched in 2021 by the National Trust for Local News and The Colorado Sun to maintain community ownership of 24 local newspapers in Colorado. The organization positions itself as an innovative alternative to national media consolidation, focusing on local journalism and community engagement. The website reflects this mission with clear content, partnership references, and a call to support the initiative. Technically, the site uses modern React technology, is hosted on Glitch, and integrates Google Tag Manager and Mailchimp for analytics and marketing. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Business credibility is strong given the reputable partners and consistent WHOIS data. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

V

VTDigger

vtdigger.org

0

VTDigger is a well-established, member-supported news organization focused on Vermont, providing comprehensive coverage of business, politics, environment, and public policy since 2009. The website demonstrates a strong market position as Vermont's largest newsroom, with a professional and consistent brand presence. Technically, the site is built on WordPress with modern plugins and integrations such as Gravity Forms, WooCommerce, and Google Analytics, hosted with reputable providers and using Cloudflare DNS. The site is mobile-optimized and SEO-friendly, offering a good user experience. Security posture is solid with HTTPS and domain protections, though it lacks some advanced security headers and explicit security policies. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to improve trust and regulatory adherence. Overall, the site is credible and trustworthy with room for improvement in privacy and security transparency.

Mirror Indy is a small nonprofit media organization dedicated to community-oriented news reporting in Indianapolis. The website serves as a platform to engage local residents with relevant news, events, and community stories. The organization relies on donations and subscriptions to support its mission. Technically, the site is built on WordPress using the Newspack theme, integrating modern analytics and advertising tools such as Google Analytics, Google Tag Manager, and DoubleClick. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled and reCAPTCHA on forms, but lacks DNSSEC and some recommended security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the domain registration is consistent with nonprofit use, employing privacy protection appropriately. The site is trustworthy and professionally maintained, with room for security and privacy enhancements.

The Center for Public Integrity is a well-established nonprofit investigative journalism organization founded in 1997, focused on exposing inequality and holding powerful interests accountable. It operates a professional, content-rich website with a strong emphasis on investigative reports, podcasts, and data tools. The organization targets a broad audience interested in social justice, democracy, and accountability. Technically, the website is built on WordPress, leveraging modern SEO and performance optimizations, hosted behind Cloudflare for DNS and CDN services. Security posture is strong with HTTPS enforced and domain transfer protections, though some security headers and explicit incident response policies are absent. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity.

Capital B News is a nonprofit news organization dedicated to reporting on stories about Black Americans at local and national levels. Founded in 2020, it operates with regional branches such as Capital B Atlanta and Capital B Gary, focusing on investigative journalism and accessible news content. The organization relies on donations and memberships to sustain its operations, emphasizing free access to important information. Technically, the website is built on WordPress using the Newspack theme and plugins, optimized for SEO and performance with integrations like Google Analytics and Google Tag Manager. Security posture is solid with HTTPS enabled and use of reCAPTCHA on forms, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site presents a professional and trustworthy image but would benefit from enhanced privacy and security disclosures.

S

Signal Cleveland

signalcleveland.org

0

Signal Cleveland is a nonprofit newsroom dedicated to serving the Greater Cleveland community with local news and resources. Founded recently in 2022, it operates with a mission to provide accessible, community-focused journalism covering government, housing, education, and public safety. The organization relies on donations and community support, as evidenced by donation appeals and fundraising campaigns on the website. The site is well-branded and maintains consistent messaging aligned with its nonprofit media identity. Technically, the website is built on WordPress using the Newspack theme, leveraging modern tools such as Gravity Forms for data collection, Yoast SEO for search optimization, and integrations with HubSpot, Fundraise Up, and Parsely for marketing and analytics. Hosting is provided by Automattic Inc., consistent with WordPress.com infrastructure. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and security headers such as CSP or HSTS. No privacy or cookie policies were found, indicating gaps in compliance with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is published. Tracking and advertising scripts are present, including Google Analytics and Facebook Pixel, with moderate user tracking. Overall, Signal Cleveland presents a credible and professional nonprofit media presence with solid technical foundations but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

L

Lookout Santa Cruz

lookout.co

0

Lookout Santa Cruz is a well-established local news media organization founded in 2010, serving Santa Cruz County with daily news, opinion, and community resources. The website is professionally designed using WordPress CMS and integrates modern technologies such as WooCommerce, Google Tag Manager, and Broadstreet Ads for monetization and analytics. The site demonstrates good content quality and user experience, targeting local residents and community members. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and published security policies. Privacy compliance is limited due to absence of explicit privacy and cookie policies. Overall, the site is trustworthy and credible with room for improvement in privacy and security transparency.

T

The Black Wall Street Times

theblackwallsttimes.com

0

The Black Wall Street Times is a small, niche national news publication focused on delivering news from Black perspectives, headquartered in Tulsa's historic Greenwood District. The website is built on WordPress and leverages a modern technology stack including Yoast SEO, WooCommerce, Jetpack, and various advertising and analytics tools. The site demonstrates good content quality, consistent branding, and a professional design optimized for both desktop and mobile users. Security posture is adequate with HTTPS enabled and domain transfer protections in place, though improvements such as enabling DNSSEC and implementing security headers are recommended. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and functional but would benefit from enhanced privacy and security disclosures to improve user trust and regulatory compliance.

T

The Haitian Times

haitiantimes.com

0

The Haitian Times is a well-established online news media outlet focused on delivering news and information about Haiti and the Haitian diaspora globally. Founded in 1998, it serves as an authoritative voice for the Haitian community with a broad range of content including news articles, videos, and special reports. The website targets the Haitian diaspora and those interested in Haitian affairs, operating primarily as an advertising-supported media platform with subscription and donation options. The brand is consistent and professional, with a strong social media presence and a clear market position within its niche. Technically, the site is built on WordPress using the Newspack theme and associated plugins, leveraging modern web technologies such as Google Analytics, Google Tag Manager, and OneSignal for push notifications. The site is hosted with Cloudflare DNS and uses HTTPS with good SSL configuration, ensuring secure communications. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well implemented through Yoast SEO and structured data. From a security perspective, the site follows best practices such as HTTPS enforcement and domain transfer protection. However, DNSSEC is not enabled, and there is a lack of published security policies or incident response information. Privacy compliance is weak due to missing privacy and cookie policies and no visible consent mechanisms, which could expose the site to regulatory risks. Overall, The Haitian Times presents a credible and professional online presence with solid technical infrastructure but should improve privacy compliance and DNS security to enhance trust and regulatory adherence.

B

Bridge Detroit

bridgedetroit.com

0

BridgeDetroit is a nonprofit news media organization dedicated to providing original, community-driven reporting focused on Detroit's local issues including health, education, jobs, and neighborhoods. The website serves Detroit residents and stakeholders by delivering relevant news, analysis, and community engagement through multiple channels such as newsletters and podcasts. The organization is grant-funded by reputable foundations, emphasizing its nonprofit and community-oriented mission. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, and AMP partial implementation, ensuring good performance, mobile optimization, and SEO effectiveness. Security posture is strong with HTTPS, security headers, and secure forms using reCAPTCHA, though privacy compliance could be improved by adding a cookie consent mechanism and publishing more explicit security policies. The absence of public WHOIS data slightly reduces trust but the professional content and transparency in business information mitigate this concern. Overall, BridgeDetroit presents a trustworthy, well-maintained digital presence aligned with its nonprofit mission.