Security Directory

C

Countly Ltd.

count.ly

0

Countly Ltd. operates a privacy-focused first-party digital analytics and customer engagement platform, offering both on-premise and private cloud hosting solutions. The company targets businesses and product teams that require comprehensive data capture, analysis, and engagement tools while maintaining strict data ownership and privacy. Countly holds a strong market position as a leader in privacy-centric analytics, supported by a broad SDK ecosystem covering mobile, web, desktop, and connected devices. The website reflects a mature digital presence with excellent content quality, professional design, and clear navigation. Technically, Countly leverages modern web technologies including asynchronous JavaScript SDKs, Webflow CMS, and Cloudflare DNS services. The platform supports extensive data collection and user tracking capabilities, integrating advanced analytics and engagement features. Performance and mobile optimization are excellent, with good accessibility and SEO practices in place. From a security perspective, Countly demonstrates a robust posture with HTTPS enforcement, domain transfer protection, and recognized certifications such as SOC 2 Type 2 and ISO 27001/27017/27018. The platform emphasizes privacy by design and offers self-hosting options for complete data control. However, DNSSEC is not enabled, and no explicit incident response or vulnerability disclosure policies are publicly available, representing areas for improvement. Overall, Countly presents a trustworthy and professional digital analytics solution with strong privacy and compliance focus. The website and domain registration details align well, supporting legitimacy. Strategic recommendations include enabling DNSSEC, publishing vulnerability disclosure information, and enhancing security header implementation to further strengthen security and trust.

Marsh is a globally recognized leader in insurance broking and risk management, offering tailored solutions across various industries and regions. The website reflects a mature enterprise with a professional digital presence, leveraging Adobe Experience Manager and modern analytics and consent management tools. Security posture is strong with HTTPS enforcement, secure login forms, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data limits domain registration trust analysis but is consistent with large enterprises using privacy protections. Overall, Marsh's website demonstrates a solid balance of business credibility, technical sophistication, and privacy compliance.

Santa Monica Networks SIA is a well-established Latvian IT solutions provider specializing in data transmission networks, cybersecurity, cloud computing, and IT consulting services. With over 25 years of experience and a recent acquisition by SIA Latvijas Mobilais Telefons, the company holds a strong market position in the Baltic region. Their website reflects a professional business with clear service offerings and trusted technology partnerships including Cisco, Palo Alto Networks, and IBM. The technical infrastructure uses modern web technologies and includes security features such as HTTPS and Google reCAPTCHA. Privacy and cookie policies are present and indicate GDPR compliance. However, WHOIS data is unavailable due to query limits, limiting domain legitimacy verification. Overall, the company demonstrates a mature digital presence with good security posture and business credibility.

E

Eversheds Sutherland

eversheds.lv

0

Eversheds Sutherland is a global law firm with a dedicated Latvia presence, offering a wide range of legal services across multiple sectors including banking, energy, insurance, construction, and technology. The firm positions itself as a responsible and purpose-led business, aiming to support clients, employees, and communities. The website reflects a mature digital presence with a modern React-based frontend and integration of analytics tools like Piwik Pro. Security configurations are robust with HTTPS and security headers properly implemented, indicating a strong security posture. However, the absence of explicit privacy and cookie policies, as well as contact information, suggests areas for compliance and transparency improvement. Overall, the site is professional and trustworthy but could enhance user trust and regulatory compliance by adding missing policy documents and contact details.

The LinkedIn profile for Simon Andrews represents a professional individual engaged in media and advertising consulting, with a significant follower base and connections indicating a strong market presence. The profile is hosted on the LinkedIn platform, which provides a robust technical infrastructure with modern web technologies and secure authentication mechanisms including Google OAuth. The security posture is strong with HTTPS enforced and secure forms, though explicit security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy compliance. The absence of direct contact information is typical for personal LinkedIn profiles, but the profile maintains trust through platform credibility and follower metrics. Overall, the risk is low, and the profile serves as a credible professional representation.

C

Cinnabon Franchisor SPV LLC

cinnabon.com

0

Cinnabon Franchisor SPV LLC operates a globally recognized bakery brand specializing in cinnamon rolls, coffee, and related baked goods. The company operates through a franchise model and offers catering, grocery products, and gift cards. The website is professionally designed, mobile-optimized, and provides clear navigation to key services such as ordering, locations, and franchise opportunities. The brand maintains a strong market position with consistent branding and a large customer base. Technically, the website employs a modern technology stack including popular analytics and marketing tools, ensuring good performance and SEO optimization. Security posture is strong with HTTPS enforced and appropriate security headers, though some improvements in public security policy disclosure and incident response contacts are recommended. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website reflects a mature digital presence aligned with a large retail and hospitality business.

M

Man Group

man.com

0

Man Group is a well-established, enterprise-level investment management firm with a heritage dating back to 1783. The company specializes in technology-empowered active investment management, offering diversified strategies including quantitative and discretionary approaches, as well as private market investments. Their target audience primarily consists of institutional investors seeking tailored portfolio solutions. The website reflects a strong market position with consistent branding and comprehensive content focused on their investment capabilities and corporate responsibility. Technically, the website is built on Drupal CMS and employs modern web technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. However, some security headers are missing, and no explicit incident response or vulnerability disclosure information is provided, indicating areas for security posture improvement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, reflecting good privacy compliance aligned with GDPR. The absence of WHOIS data limits domain registration trust analysis, but the website content and external references strongly support legitimacy. Overall, the site demonstrates a mature digital presence with room for enhanced security transparency. Strategically, Man Group should focus on publishing vulnerability disclosure policies, enhancing security headers, and providing clear incident response contacts to strengthen trust and compliance. These steps will improve their security posture and align with best practices for enterprise financial services websites.

T

Tietoevry

tieto.co.uk

0

Tietoevry is a large enterprise technology company with Nordic roots and a global presence, specializing in purposeful technology solutions that drive digital transformation, IT services, and software development. Their website reflects a mature digital infrastructure with modern analytics and monitoring tools, including Azure Application Insights, Google Tag Manager, and Piwik PRO, indicating a high level of digital maturity. The site is well-designed, mobile-optimized, and provides comprehensive privacy and cookie policies aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policy and incident response contact information are not prominently published. The absence of WHOIS data for the domain www.tietoevry.com is a notable anomaly that impacts domain trustworthiness, suggesting possible privacy protection or registration issues. Overall, the website presents a professional and trustworthy front for the business, but domain registration inconsistencies warrant further investigation.

C

CGI Inc.

acando.se

0

CGI Inc. is a global leader in IT and business consulting services, established in 1976, with a strong presence in Sweden and worldwide. The company offers a broad portfolio of services including business consulting, system integration, managed IT services, cybersecurity, cloud solutions, and sustainability initiatives. Their market position is solid, supported by recognition such as TIME Magazine's 2024 best companies list. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding consistency. Technically, the website is built on Drupal 9, leveraging modern technologies such as Google Tag Manager, New Relic for performance monitoring, and Akamai CDN for hosting and delivery. The site is optimized for mobile devices, has good SEO and accessibility features, and employs a robust cookie consent mechanism compliant with GDPR. From a security perspective, the site enforces HTTPS, implements security headers, and uses consent management tools. However, explicit security policies and incident response contacts are not published, which could be improved. The WHOIS data for the domain is unavailable, which slightly reduces trust but does not detract significantly given the strong corporate branding and content. Overall, CGI's website demonstrates a high level of professionalism, technical maturity, and compliance with privacy regulations, making it a trustworthy and authoritative source for their services.

O

OneMagnify

marketingassociates.com

0

OneMagnify is a performance marketing and technology agency specializing in creating optimal customer experiences through digital transformation. The company offers a broad range of services including customer experience optimization, brand strategy, digital marketing, business intelligence, and eCommerce capabilities. Backed by Crestview Partners and having acquired Guidance, OneMagnify positions itself as a growing player in the digital marketing and technology sector, targeting businesses seeking to enhance their digital presence and operational impact. Technically, the website is built on the Webflow platform, leveraging modern web technologies and multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, Segment, Mouseflow, and HubSpot forms. The site demonstrates excellent mobile optimization, fast performance, and good SEO and accessibility practices, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs standard security headers, and uses secure forms via HubSpot. However, there is no publicly available security policy, incident response information, or vulnerability disclosure program, which are areas for improvement. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and branding appear professional and trustworthy. Overall, OneMagnify presents a strong digital and business presence with minor gaps in security transparency and domain registration information. Strategic recommendations include publishing security and incident response policies, establishing a vulnerability disclosure program, and improving domain registration transparency to enhance trust and compliance.

W

WinMagic

winmagic.com

0

WinMagic is a well-established technology company specializing in enterprise data security solutions, including passwordless authentication, endpoint encryption, and key management. Founded in 1997, the company targets enterprises requiring robust cybersecurity measures to protect sensitive data. Their market position is supported by certifications such as ISO 27001 and SOC 2, and they emphasize seamless user experience combined with strong security. The website reflects a mature digital presence with comprehensive content, structured data, and modern marketing tools. Technically, the site is built on WordPress with popular plugins and demonstrates good performance and mobile optimization. Security posture is strong, with HTTPS enforced, security headers present, and no visible vulnerabilities. However, the site could improve by publishing a security.txt file and providing explicit incident response contacts. Overall, WinMagic presents a trustworthy and professional online presence aligned with its business objectives.

D

Datadog

sqreen.io

0

Datadog is a leading technology company specializing in cloud monitoring and security solutions. Their App and API Protection product offers comprehensive security features for web applications and APIs, targeting security and DevOps teams. The website reflects a mature, enterprise-grade SaaS platform with strong branding and professional content. Technically, the site uses modern frameworks like Tailwind CSS and Alpine.js, integrates multiple analytics and marketing tools, and is optimized for performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though privacy compliance could be improved by adding explicit privacy and terms of service pages. The absence of WHOIS data limits domain trust analysis but given the brand recognition, the domain is likely legitimate. Overall, the website is professional, secure, and well-positioned in the market.

J

Jets® Group

jetsgroup.com

0

Jets® Group is a company focused on reducing global water and energy consumption through innovative solutions and sustainability initiatives. Their website positions them as an established player in the energy sector, targeting businesses and organizations interested in environmental efficiency. The site features a professional design with good content quality and clear navigation, optimized for mobile devices. Technically, the website leverages modern tools including Craft CMS, Google Tag Manager, Piwik Pro analytics, and a comprehensive cookie consent management system, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR, but lacks explicit security headers and published security policies, which are recommended for enhanced trust and compliance. The absence of WHOIS data for the domain raises concerns about domain registration transparency, though the website content and compliance features suggest legitimate operations. Overall, the site scores well in security posture and privacy compliance but could improve business credibility by providing clearer contact and legal information.

H

HSO

hso.com

0

HSO is a global business transformation partner specializing in Microsoft technology solutions, including Dynamics 365 ERP and CRM, cloud services, and AI-driven data analytics. The company holds a strong market position as a top Microsoft Business Applications partner, recognized with prestigious awards such as the Microsoft Inner Circle and Partner of the Year for Supply Chain Management. Their service offerings span multiple industries including manufacturing, financial services, professional services, retail, public sector, and non-profit organizations. The website reflects a mature digital presence with excellent content quality, clear navigation, and mobile optimization. Technically, the site leverages modern frameworks and integrates multiple analytics and marketing tools, including Google Tag Manager, Bing Ads, and uMarketingSuite, hosted on a CMS platform identified as Umbraco. The site enforces HTTPS with strong security headers, indicating a good security posture. However, there is a lack of explicit published security policies or incident response information, which could be improved to enhance transparency and trust. The WHOIS data for the domain is unavailable or not publicly disclosed, which raises some concerns about domain registration transparency. Despite this, the professional website, Microsoft partnership, and comprehensive service descriptions support the legitimacy of the business. Overall, the site scores well on content, technical implementation, and security, with moderate privacy compliance and business credibility scores due to missing direct contact details and WHOIS information. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and improving direct contact availability to strengthen trust and compliance.

P

Proact IT Group AB

proact.lv

0

Proact IT Group AB is a leading European specialist in data management and IT services, focusing on cloud transformation, data centre modernization, cybersecurity, and backup solutions. The company targets enterprise clients across multiple countries, offering a comprehensive portfolio of IT infrastructure and consulting services. Their market position is strong, supported by a large operational footprint and a history of over 30 years in the industry. The website reflects a mature digital presence with professional branding and clear communication of services and corporate governance. Technically, the website is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and third-party tools such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained digital infrastructure. Security posture is robust with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. However, the absence of a public vulnerability disclosure or security.txt file and explicit incident response contacts are areas for improvement. Overall, the website and business present a low-risk profile with strong trust indicators and professional operations. Strategic recommendations include enhancing transparency around security incident response and vulnerability disclosure to further strengthen stakeholder confidence.

B

Boston Scientific

btgplc.com

0

Boston Scientific is a leading global medical device company dedicated to advancing science for life by providing innovative medical solutions that improve patient health worldwide. Their website targets healthcare professionals, patients, and caregivers, offering extensive information on medical specialties, products, therapies, and support services. The company maintains a strong market position in the healthcare sector with an enterprise-scale digital presence. Technically, the website is built on Adobe Experience Manager, leveraging modern analytics and marketing technologies such as Adobe Target, Google Tag Manager, Hotjar, and Coveo Search. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design. Security posture is strong with HTTPS enforcement, security headers, and consent management via OneTrust, though explicit incident response contacts and vulnerability disclosure mechanisms are not evident. Overall, the website reflects a mature, trustworthy enterprise with comprehensive privacy and compliance policies, though the absence of WHOIS data limits domain registration trust verification.

E

Erasmus University Rotterdam

eur.nl

0

Erasmus University Rotterdam (EUR) is a well-established Dutch educational institution with a strong focus on bachelor and master programs, research, and societal impact. The university targets students, researchers, and academic professionals, maintaining a leading position in the Dutch and international education market. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the site is built on Drupal CMS, leveraging modern analytics tools like Matomo and Google Tag Manager, and employs OneTrust for cookie consent management, indicating a commitment to privacy compliance. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. However, explicit security policies and incident response contacts could be improved. Overall, the domain registration data aligns well with the university's identity, supporting legitimacy and trustworthiness.

G

GC Europe N.V.

gceurope.com

0

GC Europe N.V. is a prominent oral health company specializing in supplying high-quality dental products and materials to professionals across Europe. Their product portfolio includes glass ionomer cements, impression and filling materials, modelling gypsum, investments, and advanced light-curing composite and ceramic materials. The company targets dental professionals and operates primarily in the healthcare sector with a B2B business model. The website reflects a professional and consistent brand image, supporting their market position as a leading supplier in the European dental industry. Technically, the website is built on Drupal CMS, leveraging modern tools such as Google Tag Manager and CookiePro for analytics and consent management. The site is mobile-optimized and accessible, with good SEO practices in place. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, though explicit privacy policies and terms of service are not found in the analyzed content, indicating room for improvement in compliance transparency. No blocking or WAF challenges were detected, and the WHOIS data is privacy-protected, which is typical for corporate domains. Overall, the website demonstrates a solid digital presence with moderate to good security and privacy posture but would benefit from enhanced policy disclosures and contact transparency.

S

SOS Kinderdorpen

soskinderdorpen.nl

0

SOS Kinderdorpen is a well-established non-profit organization based in the Netherlands focused on strengthening families to ensure children grow up in loving and safe environments. The website reflects a professional and consistent brand presence with clear messaging aimed at donors, supporters, and stakeholders interested in child welfare. The organization leverages multiple digital marketing and analytics tools to engage its audience effectively while maintaining GDPR compliance through a comprehensive privacy policy and cookie consent mechanism. Technically, the website is built on WordPress and integrates modern technologies such as Google Tag Manager, Facebook Pixel, and Cookiebot, ensuring a good level of digital maturity and performance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although additional security headers could enhance protection. Overall, the site demonstrates a high level of professionalism and trustworthiness appropriate for a large non-profit entity.

M

Maximus

maximus.com

0

Maximus is a well-established enterprise specializing in providing technology and operational support services primarily to government agencies across federal, state, and local levels. Their offerings include customer experience solutions, technology services such as AI and cybersecurity, health services modernization, and program services that help transform policy into outcomes. The company operates globally with regional subsidiaries and maintains a strong market position as a trusted partner to public sector organizations. Technically, the website is built on Adobe Experience Manager, hosted on AWS infrastructure, and integrates modern analytics and consent management tools such as Google Tag Manager, Crazy Egg, and OneTrust. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Performance is moderate, with room for optimization. From a security perspective, Maximus employs HTTPS with strong domain registration protections and cookie consent mechanisms, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy or incident response contact is noted. Overall, the website demonstrates high professionalism, strong business credibility, and good privacy compliance. The risk profile is low, with recommendations to enhance DNS security and publish explicit security policies to further strengthen trust and compliance.

V

Vass

ecenta.com

0

Vass is a Spain-based technology consulting firm specializing in digital transformation services across a wide range of industries including banking, energy, insurance, retail, telecommunications, education, automotive, life sciences, logistics, travel, manufacturing, and public administration. The company offers a comprehensive portfolio of solutions such as customer experience, marketing, cloud services, business automation, cybersecurity, software engineering, AI and data analytics, and SAP business suite implementations. Their market position is that of a large, established player with a broad industry focus and multiple global technology partnerships. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies including Google reCAPTCHA, Google Tag Manager, LinkedIn Insight Tag, Facebook Pixel, and OneTrust for cookie consent management. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The hosting is provided by Hosting Concepts B.V., with a domain registered since 2018, consistent with the company's founding year. From a security perspective, the website enforces HTTPS and uses reCAPTCHA to protect forms. Cookie consent mechanisms are in place, indicating GDPR compliance. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, and no public security policy or incident response contacts are published. There is no vulnerability disclosure or security.txt file found, which could be improved to enhance transparency. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with a strong business credibility and technical foundation. Strategic recommendations include enabling DNSSEC, implementing additional security headers, publishing a security policy and incident response contacts, and adding a vulnerability disclosure program to further strengthen security posture and trust.

TV raidījums Zebra is a media entity operating primarily through a Facebook page, focusing on transportation safety and speed-related content targeted at a Latvian-speaking audience. The page has a substantial follower base of approximately 84,000, indicating a strong niche presence. The business model revolves around content creation and distribution on the Facebook platform, leveraging video, photos, reels, and posts to engage its audience. The company appears to be a small-sized media outlet without publicly disclosed parent or subsidiary companies. Technically, the page is hosted and managed entirely on Facebook's infrastructure, utilizing React and Facebook's internal CMS. The site benefits from Facebook's robust hosting, CDN, and security infrastructure, including HTTPS enforcement and security headers. The page is well-optimized for mobile devices and offers a good user experience with clear navigation and relevant content. From a security perspective, the page inherits Facebook's enterprise-grade security measures, including secure login forms and encrypted connections. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, as the page relies on Facebook's overarching policies rather than hosting its own. Contact information is limited but includes a verified company email address. Overall, the risk profile of the page is low given the reliance on Facebook's platform and security. Strategic recommendations include maintaining strong account security, monitoring for phishing attempts, and potentially enhancing direct privacy disclosures if the business expands its own web presence.

A

Avenga

seavus.com

0

Avenga is a global technology partner specializing in IT services including custom software development, AdTech and MarTech, data and AI, and managed services. With over 20 years of experience, Avenga serves a diverse range of industries such as automotive, manufacturing, retail, banking, media, telecommunications, life sciences, mobility, and logistics. The company positions itself as a trusted B2B partner offering comprehensive technology solutions to enterprises worldwide. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to business clients. Technically, the site is built on WordPress and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, Microsoft Clarity, and Piwik PRO, indicating a high level of digital maturity. Security posture is strong with HTTPS enforced, security headers present, and bot protection via Google reCAPTCHA. Privacy compliance is well addressed through a comprehensive privacy and cookie policy with a user-friendly consent mechanism. However, the absence of explicit terms of service, security policy, incident response information, and direct contact details for security or data protection officers suggests areas for improvement. The WHOIS data is unavailable, which slightly reduces trust but is mitigated by the professional website and privacy compliance. Overall, Avenga demonstrates a robust business and technical foundation with good security and privacy practices, suitable for enterprise clients.

K

KP Corporation

kpcorp.com

0

KP Corporation is a medium-sized enterprise specializing in large-scale print and digital communication strategies, primarily serving regulated industries such as healthcare, life sciences, government, legal, retail, financial, insurance, and elections. The company offers critical communication, data-driven communication, and commercial print communication services, emphasizing compliance, security, and optimized postal strategies. The website reflects a professional and consistent brand image with good content quality and SEO optimization. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager and CookieYes for analytics and cookie consent management. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks some security headers and explicit privacy and terms of service pages. The absence of WHOIS registration data is a notable concern, reducing trustworthiness and requiring further verification. Overall, the site is functional, professional, and moderately secure but would benefit from enhanced transparency and security best practices.

A

Apifonica

dzinga.com

0

Apifonica is a medium-sized telecommunications and technology company specializing in AI-powered customer communication automation solutions, including voicebots, SMS marketing, phone number masking, and cloud telecom platforms. The company positions itself as an established player with over 10 years in the market, serving a broad client base with scalable and innovative telecom services. Their website demonstrates a mature digital presence with modern technologies and comprehensive content, including client success stories and industry awards. Technically, the site is built on Vue.js and integrates multiple analytics and marketing tools, ensuring good performance and mobile optimization. Security-wise, Apifonica maintains strong practices with HTTPS, ISO 27001 certification, regular penetration testing, and GDPR compliance, though some transparency gaps exist due to missing WHOIS data. Overall, the company presents a professional and trustworthy image with room for improvement in public contact information and domain registration transparency.

S

Stolt-Nielsen Limited

stolt-nielsen.com

0

Stolt-Nielsen Limited operates as a global leader in bulk-liquid logistics and sustainable land-based aquaculture, providing transportation, storage, and distribution services worldwide. The company holds a strong market position with its subsidiaries specializing in chemical tankers, storage terminals, tank containers, and aquaculture. Their business model focuses on long-term investment and management of these sectors, targeting investors, customers, and job seekers. The website reflects a professional and comprehensive digital presence with rich content, investor relations, and sustainability commitments. Technically, the website employs modern technologies including Google Tag Manager, Vimeo for media, and Cloudflare for performance and security insights. The site is well-optimized for mobile and accessibility, with fast loading times and good SEO practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies could be improved. Overall, the website demonstrates a mature digital infrastructure and a high level of professionalism. The absence of WHOIS data is a notable gap in transparency but does not detract significantly from the site's credibility given the extensive investor and business information presented. Strategically, the company should enhance its security documentation and consider publishing vulnerability disclosure policies to further strengthen trust and compliance.

H

Hexaware Technologies Pvt Ltd

hexaware.com

0

Hexaware Technologies Pvt Ltd is a well-established global IT consulting and services company founded in 1996, with a strong market presence and $1.4 billion in annual revenue. The company offers a broad portfolio of technology services including digital software solutions, cloud services, data analytics, AI-driven automation, and business process outsourcing, targeting enterprise clients across multiple industries. Their website reflects a mature digital infrastructure with modern technologies, responsive design, and comprehensive content showcasing their expertise and client success stories. Security posture is robust with HTTPS, clientTransferProhibited domain status, CAPTCHA-protected forms, and reputable analytics tools, though there is room for improvement in DNSSEC and security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Hexaware demonstrates high business credibility and professionalism, supported by consistent branding and trust indicators.

M

Mantsinen Group Ltd Oy

mantsinen.com

0

Mantsinen Group Ltd Oy is a well-established Finnish company specializing in material handling solutions and logistics support worldwide. The company positions itself as a frontrunner in the transportation sector, providing industrial solutions to multiple material handling industries. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the site is built on WordPress with modern libraries such as React and jQuery, and it uses Google Tag Manager for analytics and event tracking. Hosting is provided by Cloudpit, and the domain is stable with a long history dating back to 2001. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service. Contact information is not explicitly provided on the main page, which could be improved for better user trust and compliance. Overall, the site is functional, professional, and trustworthy but could enhance privacy and security transparency.

D

Dukascopy Bank SA

dukascopy.com

0

Dukascopy Bank SA is a Swiss-based financial institution specializing in online forex, CFD, binary options, and cryptocurrency trading, complemented by retail and corporate banking services. With over 20 years of market presence, it offers a comprehensive suite of trading platforms including JForex, MetaTrader 4 and 5, and binary options platforms, targeting retail and institutional clients globally. The bank emphasizes Swiss-quality service, competitive spreads, and multi-currency account offerings, positioning itself as a leading Swiss forex broker and bank with a strong digital presence. Technically, the website employs modern web technologies such as SVG graphics, Google Tag Manager, Hotjar analytics, and JSON-LD structured data for SEO. The site is mobile-optimized, accessible, and well-structured with clear navigation and multilingual support. Performance is moderate with room for optimization. Security best practices are observed with HTTPS enforcement, security headers, and consent management for cookies, though explicit security policies and incident response information are not prominently published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is good, with GDPR-aligned cookie and privacy policies. However, the WHOIS data for the domain is missing or unavailable, which is unusual for a regulated financial entity and may indicate privacy protection or registrar issues. Despite this, the website content, branding, and regulatory disclosures support the legitimacy of the business. Overall, Dukascopy Bank SA's website reflects a mature, professional financial services provider with robust digital infrastructure and security practices. The main risk lies in the lack of transparent WHOIS data, which should be addressed to enhance trust and compliance visibility.

H

HELSINKI COMMISSION

helcom.fi

0

HELCOM is a well-established intergovernmental organization focused on the protection and sustainable management of the Baltic Sea environment. It serves as a bridge between policy and science, providing environmental assessments, policy coordination, and stakeholder engagement for the Baltic Sea region countries. The organization enjoys a strong market position as a regional authority with a history dating back to 1991. The website reflects this maturity with comprehensive content, clear navigation, and a professional design tailored to policy makers, scientists, and environmental stakeholders. Technically, the website is built on WordPress with modern plugins and libraries, including GDPR compliance tools and social sharing features. The infrastructure supports good mobile optimization, accessibility, and SEO practices, although hosting details are not explicitly identified. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and employs standard security best practices, including cookie consent mechanisms and no visible vulnerabilities or exposed sensitive data. However, there is an opportunity to enhance security posture by implementing a security.txt file and publishing incident response policies. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website and domain exhibit high legitimacy and trustworthiness, supported by consistent WHOIS data and transparent organizational information. The risk profile is low, with no critical security issues detected. Strategic recommendations include enhancing security headers, formalizing vulnerability disclosure, and continuous monitoring of CMS and plugin updates to maintain security and compliance.

E

eoacomdev

emailonacid.com

0

Email on Acid is a technology company specializing in email pre-deployment solutions, offering a comprehensive SaaS platform that enables marketers and developers to build, test, optimize, and analyze email campaigns. The company holds a strong market position as a leading provider in email testing and analytics, supported by industry certifications such as SOC 2 type 1, ISO 27001, and GDPR compliance. Their platform targets email marketing professionals seeking to improve campaign quality and ROI through advanced testing and analytics tools. Technically, the website is built on WordPress with modern SEO and performance optimizations, including the use of Yoast SEO, WP Rocket, and integrations with Google Analytics, Google Tag Manager, RudderStack, and Qualified for marketing and analytics. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, contributing to a fast and user-friendly experience. From a security perspective, the company emphasizes compliance and certifications, though some security headers are not explicitly detected. The site uses HTTPS and secure forms, and includes cookie consent mechanisms aligned with GDPR. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, though the professional presentation and certifications mitigate this concern. Overall, Email on Acid presents a mature and trustworthy digital presence with strong business credibility and technical infrastructure. The main risk lies in the lack of publicly available domain registration data, which should be monitored. Strategic recommendations include enhancing security headers, publishing incident response contacts, and establishing a vulnerability disclosure policy to further strengthen trust and security posture.

R

Rugby Europe

rugbyeurope.eu

0

Rugby Europe is the governing body responsible for the administration and promotion of rugby union across European countries outside the Six Nations Championship. The organization focuses on organizing competitions, developing rugby at various levels, and serving the rugby community in Europe. The website serves as the official digital presence, providing information and resources related to European rugby activities. Technically, the website employs modern web technologies including Google Tag Manager for analytics and Cookiebot for cookie consent management, hosted on a reliable Azure CDN platform. The site is mobile-optimized and includes structured data for enhanced SEO. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, though lacks some advanced security headers and explicit security policies. Overall, the website is professional and trustworthy, but could improve privacy compliance and transparency by publishing privacy and terms of service policies and providing clear contact information. The domain WHOIS data is protected by EURid privacy services, which is common and justified for this type of organization.

B

Bauer Hockey, LLC

bauer.com

0

Bauer Hockey, LLC is a well-established company specializing in hockey equipment and apparel with over 90 years of market presence. The company operates a professional e-commerce website primarily targeting hockey players and enthusiasts, offering a wide range of products including sticks, gloves, pads, helmets, skates, base layers, bags, and apparel. The website is built on the Shopify platform, leveraging modern web technologies and multiple third-party marketing and analytics tools to enhance user experience and business intelligence. The technical infrastructure is robust, featuring a modern tech stack with integrations such as Google Tag Manager, Yotpo, Klaviyo, and Visual Website Optimizer. The site demonstrates good performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforced, comprehensive security headers, and cookie consent mechanisms in place. However, the absence of publicly available WHOIS data for the main domain introduces some uncertainty regarding domain registration legitimacy. Overall, the website presents a secure and professional front for Bauer Hockey's e-commerce operations, with strong privacy compliance and extensive user tracking for marketing optimization. The lack of direct contact information and security policy pages suggests areas for improvement in transparency and customer trust. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility, and maintaining vigilant third-party script audits to mitigate potential vulnerabilities.

T

TraceParts

traceparts.com

0

TraceParts operates as a leading global provider of 3D digital content for engineering professionals, offering free access to an extensive library of CAD models and supplier catalogs. The website is professionally designed with excellent content quality, targeting CAD users and engineers worldwide. The business model focuses on providing valuable digital assets to the engineering community, supporting product design and manufacturing processes. Technically, the site employs modern JavaScript libraries, analytics platforms like Piano Analytics and HubSpot, and a consent management platform (Didomi) to manage user privacy preferences. The website is accessible, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses consent management but lacks visible security headers and explicit security policies, which are recommended for enhancement. The absence of WHOIS data raises some concerns about domain registration transparency, though the website content and branding suggest a legitimate and established business. Overall, the site presents a strong digital presence with room for improvement in privacy compliance and security best practices.

R

Rara Themes

rarathemes.com

0

Rara Themes is a WordPress theme provider established in 2015, offering both free and premium mobile-friendly WordPress themes. The company targets WordPress users seeking easy-to-use, professional themes and operates a theme club membership model. The website demonstrates a good level of professionalism with clear navigation, consistent branding, and a significant user base indicated by the happy customers count. Technically, the site is built on WordPress with popular plugins such as Easy Digital Downloads and AffiliateWP, and uses modern tracking and marketing tools including Google Analytics, Facebook Pixel, and Microsoft Clarity. Hosting and DNS are managed via NameCheap and Cloudflare respectively, with HTTPS enabled ensuring secure communication. However, DNSSEC is not enabled, representing a minor security gap. The website lacks explicit privacy policy, terms of service, and security policy pages, which impacts privacy compliance and security posture scores. No direct contact emails or phone numbers were found, which may affect user trust and support accessibility. Overall, the site is well-structured and functional but could improve in privacy and security transparency.

Nevercode Ltd. operates Codemagic, a specialized SaaS platform providing continuous integration and delivery (CI/CD) services tailored for mobile app development across multiple frameworks including Flutter, React Native, native Android/iOS, Unity, Ionic, and MAUI. The company targets mobile development teams seeking to automate and accelerate their build, test, and release pipelines. With over 150,000 developers trusting the platform and notable clients showcased, Codemagic holds a strong market position as a focused mobile CI/CD solution. Technically, the website is modern, fast, and mobile-optimized, leveraging cloud hosting on AWS and integrating analytics tools such as Google Tag Manager and Plausible Analytics. Security posture is robust, with HTTPS enforced, SOC 2 type 2 and ISO 27001 certifications, and GDPR/CCPA compliance clearly stated. However, DNSSEC is not enabled and no public security.txt or incident response contacts were found, representing areas for improvement. Overall, the platform demonstrates a mature digital presence with strong trust signals and compliance adherence.

I

Interactive Advisors

interactiveadvisors.com

0

Interactive Advisors is a well-established robo-advisor platform affiliated with Interactive Brokers Group, offering low-cost, diversified investment portfolios with a focus on transparency and ease of use. The platform targets retail investors seeking automated portfolio management and self-directed trading options. The website demonstrates a high level of professionalism, with comprehensive content, clear navigation, and strong trust signals including SEC registration and SIPC protection. Technically, the site uses modern web technologies, is mobile-optimized, and performs well. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is robust with clear cookie consent and privacy policies. Overall, the site reflects a credible and mature financial service provider with a solid digital presence.

P

Puppet

puppet.com

0

Puppet, a Perforce company, is a leading provider of infrastructure automation software designed to empower DevOps teams and enterprises to automate, manage, and secure their IT infrastructure across hybrid environments. The company offers a comprehensive platform including Puppet Enterprise, Puppet Core, and integrations, supported by professional services and training. The website reflects a mature enterprise with strong branding, clear navigation, and a focus on security and compliance. Technically, the site is built on Drupal 10, employs modern JavaScript libraries, and integrates consent management tools to ensure privacy compliance. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data for the domain is unavailable, which is unusual but does not detract significantly from the site's legitimacy given the strong external trust signals and parent company association. Overall, Puppet's digital presence is professional, secure, and well-optimized, supporting its market position as a leader in infrastructure automation.

W

William Reed Business Media

confectionerynews.com

0

ConfectioneryNews.com is a specialized media website operated by William Reed Business Media, providing daily news and insights focused on the confectionery, chocolate, candy, and biscuit industries. The site targets professionals and businesses within these sectors, offering industry news, market analysis, event information, and expert presentations. The business model is primarily media publishing supported by advertising and subscription services, positioning itself as a reputable source within its niche market. Technically, the website employs a modern technology stack including JavaScript frameworks, Google Tag Manager, Microsoft Clarity, and Tinypass for content monetization. It uses Arc Publishing as its CMS platform, ensuring good mobile optimization, accessibility, and SEO practices. Performance is moderate with a professional design and clear navigation enhancing user experience. From a security perspective, the site enforces HTTPS and includes several security headers, reflecting a good security posture. However, it lacks a publicly available security policy, incident response information, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and trust. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or registration issues, which slightly diminishes domain legitimacy trust. Overall, ConfectioneryNews.com is a professionally maintained industry news platform with solid technical and security foundations but would benefit from improved transparency in security policies and domain registration information to strengthen trust and compliance.

W

William Reed Business Media

nutraingredients.com

0

NutraIngredients.com is a specialized media platform operated by William Reed Business Media, focusing on daily news and insights related to dietary supplements, nutraceuticals, functional foods, health ingredients, and herbals primarily in Europe. The website serves industry professionals by providing timely news, expert presentations, and event information, positioning itself as a leading niche media outlet in the health ingredients sector. The business model centers on content delivery and industry engagement through digital media. From a technical perspective, the website employs a modern technology stack including Google Tag Manager, Microsoft Clarity, and Tinypass for content monetization. The CMS appears to be Arc Publishing, supporting a responsive and accessible design with good SEO practices. Performance is moderate with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and multiple security headers implemented. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a publicly available security policy or incident response contact reduces transparency. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website presents a professional and trustworthy front for its target audience, though the lack of WHOIS data introduces some uncertainty regarding domain registration legitimacy. Strategic recommendations include publishing a formal security policy, adding vulnerability disclosure information, and improving transparency around incident response to enhance trust and compliance.

E

Erply

erply.com

0

Erply is a well-established enterprise providing cloud-based retail POS and inventory management software solutions globally. Their platform supports retail businesses, franchises, and warehouses with a comprehensive suite of tools including employee scheduling, customer communication, BI dashboards, and payment processing. The website demonstrates a mature digital presence with excellent content quality, clear navigation, and mobile optimization. Technically, Erply leverages modern web technologies and AWS infrastructure, ensuring fast performance and scalability. Security posture is strong with HTTPS enforcement, domain protection statuses, and cookie consent mechanisms, although DNSSEC is not enabled and incident response contacts are not explicitly provided. Overall, Erply presents a trustworthy and professional online presence aligned with their business model and market position.

P

Puratos

puratos.pt

0

Puratos is a well-established international company specializing in manufacturing and supplying products and ingredients for bakers, pastry chefs, and chocolatiers. The website targets professional audiences in the bakery and food manufacturing sectors, emphasizing quality and innovation. The company demonstrates a strong market presence with a consistent brand and multilingual support across many countries. Technically, the website is built on Adobe Experience Manager CMS and integrates advanced analytics and A/B testing tools such as Google Tag Manager and Visual Website Optimizer, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled and no blocking mechanisms detected; however, the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and clearer contact and security information.

P

Puratos

puratos.ch

0

Puratos is a well-established Swiss company specializing in manufacturing and supplying innovative bakery, patisserie, and chocolate ingredients. The website reflects a professional and consistent brand presence with a clear focus on B2B customers in the food manufacturing sector. The company offers a broad product range and supports customers with tailored solutions and an online ordering platform called My Puratos. Technically, the website is built on Adobe Experience Manager CMS with modern JavaScript frameworks and integrates Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and secure login mechanisms, although some security headers are missing and no explicit privacy or cookie policies were detected. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Puratos

puratos.gr

0

Puratos is a well-established international supplier specializing in ingredients and products for the bakery, patisserie, chocolate, and ice cream industries. The website targets professional bakers, pastry chefs, chocolatiers, and food industry businesses primarily in Greece, offering a broad product catalog and customer services. The company leverages a modern technical infrastructure including Adobe Experience Manager CMS and React components, with integration of Google Tag Manager for analytics and marketing. Security posture is strong with HTTPS enforcement and secure login mechanisms, though explicit privacy and cookie policies are not found in the provided content. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

W

WebSecured AS

websecured.io

0

WebSecured AS is a Norwegian cybersecurity service provider specializing in penetration testing, security audits, code review, and physical security testing. The company serves a diverse clientele including major organizations such as Microsoft, Vipps, and the Norwegian Tax Administration, positioning itself as a trusted small business in the cybersecurity sector. Their website reflects a professional and modern digital presence built on Vue.js and Nuxt.js frameworks, with good mobile optimization and SEO practices. The use of Cloudflare for DNS and CDN enhances their hosting reliability and security. Security posture is solid with HTTPS enforced and domain transfer protection, though improvements are recommended in security headers and explicit security policies. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is clearly provided, including email, phone, and physical address. Overall, WebSecured demonstrates a credible and trustworthy business with a good balance of technical maturity and client trust.

H

Hill & Knowlton

hillandknowlton.com

0

Hill & Knowlton is a well-established global public relations and communications consultancy, operating since 1995. The website reflects a professional enterprise-grade digital presence built on modern JavaScript frameworks (Nuxt.js) and uses Cloudflare for DNS services. Accessibility features are implemented via external scripts, enhancing user experience. However, the site lacks explicit privacy and cookie policies, terms of service, and direct contact information, which are critical for compliance and user trust. Security posture is generally good with HTTPS enabled and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers. Overall, the website is functional and professional but requires enhancements in privacy compliance and transparency to meet best practices.

D

DFDS A/S

dfds.com

0

DFDS A/S operates a comprehensive European ferry travel service, offering passenger and freight ferry crossings, mini cruises, and package holidays. The company holds a strong market position as the World’s Leading Ferry Operator with multiple routes across Europe, the UK, Scandinavia, and the Baltics. Their website provides rich content, clear navigation, and a professional user experience targeting travelers and logistics customers. Technically, the site is built on modern frameworks such as React and Gatsby, with optimized performance and mobile responsiveness. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data reduces domain registration trustworthiness, though the website content and branding strongly support legitimacy.

L

Linde

linde.com

0

Linde is a leading global industrial gases and engineering company focused on making customers more successful while supporting sustainability and decarbonization efforts. Their website presents a professional and comprehensive overview of their expertise in industrial gases, clean energy solutions including hydrogen technologies, and corporate governance. The company targets industrial and energy sectors with a B2B business model and positions itself as a market leader in its industry. Technically, the website employs modern analytics and monitoring tools such as Google Tag Manager and Microsoft Application Insights, and implements a cookie consent mechanism indicating awareness of privacy compliance. However, the absence of a visible privacy policy and terms of service, as well as missing WHOIS domain registration data, raises concerns about transparency and domain legitimacy. Security posture is moderate with HTTPS implied but lacking explicit security headers and vulnerability disclosure information. Overall, the website is well designed, mobile optimized, and user-friendly, but improvements in security transparency and domain registration clarity are recommended.

S

Skadden, Arps, Slate, Meagher & Flom LLP

skadden.com

0

Skadden, Arps, Slate, Meagher & Flom LLP is a leading global law firm providing high-quality legal advice and innovative solutions to complex legal challenges. The firm targets corporate clients and business professionals seeking expert legal services. The website reflects a strong brand presence with professional design and comprehensive content tailored to its audience. Technically, the site employs modern web technologies including AngularJS and integrates analytics and cookie consent tools, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent implemented; however, explicit security headers and detailed security policies are absent, representing areas for improvement. The lack of WHOIS registration data reduces domain trustworthiness from a registration perspective but does not detract from the firm's established market position. Overall, the website is professional, secure, and user-friendly, with recommendations to enhance privacy transparency and security disclosures.

P

Proact SE

proact.se

0

Proact SE is a leading Swedish IT services company specializing in data storage, backup, cybersecurity, network solutions, and modern workplace consulting. Positioned as Europe's leading specialist in data and information management with a focus on cloud services and data center solutions, Proact offers expert consulting and 24/7 support to its business clientele. The website reflects a professional and consistent brand image with comprehensive service descriptions and a strong emphasis on expertise and support. Technically, the website is built on a modern WordPress CMS platform using Elementor and Yoast SEO plugins, indicating a mature digital infrastructure. The site is mobile-optimized and includes SEO best practices, although some accessibility features could be improved. Analytics and marketing tools such as Google Analytics, Facebook Pixel, and Cookiebot are integrated, supporting data-driven marketing and compliance. From a security perspective, the site enforces HTTPS with excellent SSL configuration and implements a robust cookie consent mechanism via Cookiebot. However, explicit security headers are not detected, and there is no visible security policy or incident response contact information, which are areas for improvement. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. The lack of WHOIS data for the exact queried subdomain is typical and does not detract from the legitimacy of the main domain. Strategic recommendations include enhancing security headers, publishing a security policy, and providing clearer contact information to further strengthen trust and compliance.