Security Directory

S

sequa gGmbH

sequa.de

0

sequa gGmbH is a German non-profit development organization specializing in private sector development and vocational training projects worldwide. The website provides comprehensive information about their projects, partnerships, and services, targeting chambers, associations, and stakeholders involved in development cooperation. The site is built on TYPO3 CMS and uses modern frontend technologies but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with a GDPR-compliant privacy policy and cookie consent mechanism. However, contact information is primarily available via forms rather than direct emails or phone numbers. The WHOIS data aligns well with the organization's profile, showing consistent registration without privacy protection, supporting transparency. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

E

EU4Business Facility

eu4business.eu

0

EU4Business is a European Union umbrella initiative aimed at supporting small and medium enterprises (SMEs) in the Eastern Partnership countries including Armenia, Azerbaijan, Georgia, Moldova, and Ukraine. The initiative focuses on improving access to finance, providing business development services, and enhancing the business enabling environment. The website serves as an information portal showcasing projects, results, success stories, and reports related to EU support for SMEs in the region. Technically, the website uses modern web technologies including htmx, Google reCAPTCHA v3, and Google Tag Manager for analytics and spam protection. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, though terms of service and security policies are not explicitly found. Overall, the website is professionally designed with consistent branding and clear navigation but requires urgent security improvements to protect user data and enhance trust.

EnergyEfficiency4SMEs is an EU co-funded project coordinated by Eurochambres, focused on increasing energy efficiency uptake in SMEs across sectors such as Accommodation and Food services, Agri-food, and Metalwork. The project delivers capacity building, energy audits, financial guidance, and scoping studies to support SMEs in improving energy efficiency. The website is built on WordPress using the OceanWP theme and Elementor, featuring a moderate level of technical maturity but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Contact information and partner logos are clearly presented, enhancing business credibility. However, the absence of HTTPS and security headers exposes the site to risks and undermines user trust.

The Energy Efficiency 4 HORECA website represents a European Union co-funded project focused on promoting energy efficiency and renewable energy adoption within the HORECA sector. The project is coordinated by Eurochambres, a Brussels-based organization, and offers capacity building, expert assistance, and funding guidance to companies in the hospitality and catering industries. The website is built on WordPress using the OceanWP theme and Elementor page builder, featuring a professional design and clear navigation. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which significantly undermines user trust and data security. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site provides valuable content and services but requires urgent security improvements to meet modern standards.

E

Eurochambres

eulep.eu

0

EULEP is a European Union co-funded project platform led by Eurochambres, focusing on enhancing vocational education and training (VET) excellence across multiple European countries. The platform emphasizes innovative subjects such as artificial intelligence, virtual reality, and social innovation to promote lifelong learning tailored to enterprise needs. The website serves as a collaborative hub for 20 organizations from 8 countries, providing resources, partner information, and news related to VET development. Technically, the site is built on WordPress with Elementor and uses Matomo for analytics, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and lack of security headers represent significant security weaknesses. Privacy and cookie policies are present with consent mechanisms, reflecting basic GDPR compliance. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

E

Eurochambres

connectingcompanies.eu

0

EU4Business: Connecting Companies is an EU-funded initiative managed by Eurochambres, focused on supporting SMEs in the Eastern Partnership countries to foster sustainable economic development and job creation. The project provides services such as trade expansion support, investment attraction, and business networking. The website is built on WordPress using Elementor and Astra theme, hosted on OVH infrastructure. However, the site lacks a valid SSL certificate and does not enforce HTTPS, which is a critical security concern. There is no cookie policy or consent mechanism, and security headers are absent, indicating a basic security posture. The content is relevant and well-structured, targeting SMEs and business support organizations in the EaP region. Social media presence is active across multiple platforms. Overall, the site demonstrates moderate business credibility but requires significant improvements in security and privacy compliance to meet modern standards.

E

EU Business Hub

eubusinesshub.eu

0

The EU Business Hub website serves as an EU-funded platform supporting European companies in the green, digital, and healthcare sectors to access the markets of Japan and the Republic of Korea. It offers business missions, coaching, networking, and logistical support to facilitate market entry and partnerships. The site is built on Drupal 10 and uses modern web technologies including Matomo for analytics. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with clear cookie policies and consent mechanisms. The business model is credible and well-aligned with EU initiatives, but contact information is limited to web forms without direct emails or phone numbers.

E

Erasmus for Young Entrepreneurs Support Office

erasmus-entrepreneurs.eu

0

Erasmus for Young Entrepreneurs is a European Union-supported cross-border business exchange programme designed to facilitate knowledge transfer and networking between new and experienced entrepreneurs across 45 participating countries. The programme aims to support SME growth and internationalization by enabling new entrepreneurs to gain practical experience and host entrepreneurs to benefit from fresh perspectives. The website presents comprehensive business information, success stories, and multimedia content to engage its target audience effectively. Technically, the site uses established but somewhat dated technologies such as Bootstrap 3 and jQuery 1.11, with embedded social media and analytics integrations. However, the absence of a valid SSL certificate and HTTPS support represents a significant security risk, exposing users to potential data interception and undermining trust. Additionally, the lack of security headers and cookie consent mechanisms indicates gaps in security best practices and privacy compliance. Overall, while the business credibility and content quality are strong, the technical and security posture require urgent improvements to align with modern standards and ensure user safety.

O

OVH SAS

entrecomp4transition.eu

0

EntreComp4Transition is an EU co-funded educational project focused on fostering entrepreneurial mindsets and supporting the green and digital transition through innovative teaching and learning methodologies. The project targets a broad audience including teachers, trainers, businesses, and students across Europe, offering MOOCs, AI-based tools, and open badges to verify competencies. Technically, the website is built on WordPress with several plugins and uses Google Analytics and Piwik PRO for tracking. However, the site suffers from slow performance and lacks HTTPS, which is a critical security shortfall. Security posture is weak with no security headers or advanced DNS configurations, and privacy compliance is basic with a privacy policy but no cookie policy or GDPR explicit statements. Overall, the site is functional and professional in content but requires significant security and privacy improvements.

E

Eurochambres, BEUC and SMEunited

consumerlawready.eu

0

ConsumerLawReady.eu is an EU-backed educational platform focused on providing consumer law training for Small and Medium Enterprises (SMEs) and consumer law trainers across the European Union. The website offers dedicated portals for each EU country, supporting multilingual content and localized training resources. The project is implemented by reputable organizations including Eurochambres, BEUC, and SMEunited on behalf of the European Commission, establishing strong trust and legitimacy in the market. The platform targets legal experts, SME owners, and employees seeking to enhance their knowledge of consumer law.

P

Programme AL-INVEST Verde

alinvest-verde.eu

0

Programme AL-INVEST Verde is a European Union funded initiative aimed at fostering sustainable growth and job creation in Latin America by supporting the transition to a low-carbon, resource-efficient economy. The program operates across 12 Latin American countries, engaging both public and private sectors, with a focus on innovation, technical assistance, and intellectual property rights. The website serves as an information hub, providing news, events, and resources related to the program's activities. Technically, the site is built on WordPress with Elementor and several plugins for events and membership management. It integrates marketing and analytics tools such as Brevo and Matomo, and supports multilingual content. However, the site lacks a valid SSL certificate, which is a critical security vulnerability, exposing users to potential risks. Privacy and cookie policies are well implemented with GDPR compliance and consent mechanisms. Overall, while the content and business credibility are strong, the security posture requires urgent improvement to protect user data and enhance trust.

The website represents the Türkiye-EU Business Dialogue II (TEBD II), an EU-funded project implemented by Eurochambres to foster cooperation between Turkish and European chambers of commerce. The project focuses on capacity building, business dialogues, and grant schemes to support integration and awareness of Türkiye's potential EU accession. The website is currently under maintenance, providing visitors with contact information and social media links for updates. Technically, the site uses modern frontend technologies such as Tailwind CSS and Lucide icons but suffers from slow load times and lacks a valid SSL certificate, resulting in insecure HTTP access. Security posture is weak due to the absence of HTTPS, security headers, and modern TLS protocols. No privacy or cookie policies are present, indicating poor privacy compliance. Business credibility is moderate, supported by official EU funding logos and a professional maintenance notice. Overall, the site requires urgent security improvements and policy implementations to enhance trust and compliance.

The Latin America IP SME Helpdesk is an official European Commission service providing free intellectual property assistance to SMEs from the EU and SMP-associated countries targeting the Latin American market. It offers confidential advice, training, and resources to improve global competitiveness. The website is professionally designed, content-rich, and well-structured, targeting SMEs seeking IP support in Latin America. Technically, the site is built on Drupal 10 and hosted by Level27 bv, with moderate performance and good mobile and accessibility features. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is strong with clear cookie and privacy policies, and contact information is transparent and institutional. Overall, the site is trustworthy but urgently needs to address its SSL/TLS configuration to improve security posture and user trust.

A

Aruba S.p.A.

labour-int.eu

0

Labour-INT is a European Union-funded project focused on promoting the inclusion of asylum-seekers and refugees into the European labour market through multi-stakeholder cooperation involving businesses, chambers of commerce, trade unions, and migrant associations. The project operates pilot actions, capacity building, and advocacy to facilitate integration paths from arrival to workplace. The website serves as an information and dissemination platform for the project, showcasing events, partners, and resources. Technically, the website is built on WordPress 5.0.22 with common plugins such as SiteOrigin Panels and MetaSlider. It is hosted by Aruba S.p.A., a known hosting provider. However, the site lacks HTTPS, uses outdated JavaScript libraries, and has limited performance and accessibility optimizations. The site is mobile responsive at a basic level and has a clear navigation structure. From a security perspective, the absence of a valid SSL/TLS certificate is a critical vulnerability, exposing users to potential data interception. No security headers or advanced protections are implemented. Privacy compliance is weak, with no visible privacy or cookie policies and no consent mechanisms despite the presence of tracking scripts. Contact information is limited to emails associated with the ETUC domain, a key project partner. Overall, the site is functional and informative but requires urgent improvements in security and privacy compliance to protect users and align with EU regulations. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, updating technical components, and enhancing security headers and practices.

C

Cámara de Comercio de España

camara.es

0

Cámara de Comercio de España is a well-established governmental and non-profit organization dedicated to supporting SMEs, entrepreneurs, and self-employed individuals in Spain. The website offers a comprehensive range of services including business creation, innovation support, foreign trade facilitation, training, and mediation. It serves as a national chamber of commerce with a strong market position and a broad service portfolio. The digital infrastructure is built on Drupal 10 with Apache and PHP backend, hosted likely by Cloud4B, and includes modern frontend technologies ensuring good mobile optimization and accessibility. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS configuration, exposing users to potential risks. Privacy and cookie compliance are well implemented, with clear policies and consent mechanisms. The WHOIS data confirms the legitimacy and consistency of the domain registration, aligning with the organization's official status. Strategic improvements in SSL/TLS deployment and security hardening are recommended to enhance trust and security posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, sslTls. 15 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Eurochambres

eurochambres.eu

0

Eurochambres is a well-established non-profit association representing European chambers of commerce and industry, serving as a key voice for the business community at the EU level since 1958. The organization focuses on advocacy, information dissemination, and supporting SMEs through various projects and services. Their website reflects a professional and consistent brand presence targeting European businesses and policymakers. Technically, the site is built on WordPress with the Divi theme and integrates several plugins and external services such as Cookiebot for cookie consent and Google Analytics for tracking. However, the website suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. While privacy compliance is well addressed through Cookiebot and a comprehensive privacy policy, the lack of security best practices and slow performance pose risks to user trust and data protection. Strategic improvements in SSL deployment, security headers, and performance optimization are recommended to enhance the overall security and user experience.

L

Luminor

luminorcareers.ee

0

LuminorCareers.ee is a professional career portal for Luminor bank, primarily targeting job seekers in Estonia and the Baltic region. The website offers detailed job listings, employee testimonials, and career-related information, positioning Luminor as an employer of choice in the banking sector. The site leverages modern web technologies and a CMS platform to deliver content but suffers from significant security shortcomings, notably the absence of a valid SSL certificate and HTTPS support. Privacy compliance is well addressed through OneTrust cookie consent and a comprehensive privacy policy. However, the lack of visible contact information and security policies limits transparency. Overall, the site is functional but requires urgent security improvements to protect user data and enhance trust.

C

Cambra de Terrassa

garantiajuvenil.cat

0

Garantiajuvenil.cat is a government-backed youth employment program website managed by Cambra de Terrassa, targeting young people aged 16 to 29 who are not currently working or studying, as well as companies interested in hiring youth with incentives. The program is promoted by the Ministry of Labour and Social Economy and co-financed by the European Social Fund. The website provides information, orientation, and support services to its target audience. Technically, the site is built on WordPress using Elementor and Yoast SEO plugins, with integration of Google Analytics and social media links. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. Privacy compliance is basic but present, with cookie consent and privacy policies linked. Overall, the site is functional but requires urgent security improvements to protect user data and enhance trust.

A

AS CREDITINFO EESTI

e-krediidiinfo.ee

0

AS CREDITINFO EESTI operates the e-krediidiinfo.ee website, providing comprehensive credit and business information services primarily for Estonian, Lithuanian, and Finnish companies. The platform offers services such as credit risk assessments, monitoring, payment default management, and sanctions screening, targeting businesses seeking to evaluate their partners and clients. The website demonstrates a professional design with clear navigation and relevant content tailored to its target audience. However, the technical infrastructure shows room for improvement, particularly in security and performance aspects. The absence of a valid SSL certificate and HTTPS support is a critical vulnerability that undermines user trust and data security. The site employs modern web technologies and integrates multiple analytics and marketing tools with a compliant cookie consent mechanism, reflecting a moderate level of digital maturity.

Lulufantasias.com.br operates as a virtual companionship service targeting Portuguese-speaking users, primarily in Brazil. The service offers intimate conversational experiences via WhatsApp, leveraging subscription plans with message limits and conversation memory. The business is operated by Stripeless Zebra LLC and DA Industries OU, indicating a small but focused operation. Technically, the website is built on WordPress with common plugins and hosted behind Cloudflare DNS services. However, the lack of a valid SSL certificate and absence of HTTPS significantly undermines the security posture. Privacy policies and terms of service are present but basic, with no cookie consent mechanisms detected. Overall, the site presents a professional and consistent brand experience but requires urgent security improvements to protect user data and build trust.

L

Luminor Bank AS

luminor.ee

0

Luminor Bank AS operates as a leading financial institution in the Baltic region, offering a comprehensive suite of banking services including payments, loans, savings, investments, and private banking. The website targets both retail and business customers and positions itself as the third largest financial services provider in the Baltics. The digital presence is built on modern web technologies such as React and integrates tools like Google Tag Manager and LiveChat for enhanced user engagement. However, the website suffers from a critical security flaw due to the absence of a valid SSL certificate, exposing users to potential data interception risks. Privacy and cookie policies are well implemented and GDPR compliant, reflecting a strong commitment to user data protection. Overall, while the business credibility and content quality are high, the security posture requires urgent improvement to meet industry standards and protect customer data effectively.

U

Unifiedpost

rekini.lv

0

Rekini.lv operates as a Latvian digital invoicing and payment platform affiliated with Unifiedpost. It provides services for invoice receipt, payment, and invoice preparation via a partner platform Banqup. The website targets businesses and individuals in Latvia requiring invoicing solutions. Technically, the site uses a modern frontend stack including jQuery, Bootstrap, and multiple tracking and analytics services, but suffers from slow load times and lacks a valid SSL certificate, which critically impacts security. The security posture is weak due to missing HTTPS, absence of DMARC, DNSSEC, and domain protection locks. Privacy compliance is basic with a cookie consent modal and privacy policy present but no terms of service or incident response information. Overall, the site is functional but requires urgent security improvements to protect user data and enhance trust.

SEB Eesti operates as a major banking institution in Estonia, providing a broad spectrum of financial services including retail, corporate, and private banking. The website reflects a mature and professional digital presence with comprehensive content targeting private individuals and business clients. The technical infrastructure is based on Drupal CMS with modern frontend technologies, offering good mobile optimization and accessibility. However, the security posture is significantly weakened by the absence of a valid SSL certificate and lack of HTTPS support, which is a critical vulnerability for a financial services website. Privacy compliance is well addressed with clear cookie and privacy policies, and the domain registration is consistent and trustworthy. Strategic improvements in SSL/TLS configuration and security headers are urgently recommended to protect user data and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, sslTls. 15 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

AS Kredītinformācijas Birojs

kib.lv

0

AS Kredītinformācijas Birojs is a Latvian credit information bureau providing credit data and reporting services to individuals and businesses. The company is positioned as a trusted entity in the Latvian financial sector, supported by ISO 27001 certification and memberships in recognized organizations such as Creditinfo and the Latvian Chamber of Commerce (LTRK). Their services focus on promoting responsible lending and credit transparency. Technically, the website is built on WordPress with common libraries like jQuery and uses Cookiebot for GDPR-compliant cookie consent. The site is moderately performant and mobile-optimized, though page load times could be improved. Security posture is adequate with HTTPS and SPF/DMARC email protections, but lacks advanced SSL features like HSTS and OCSP stapling. Privacy policies and terms of service are clearly presented and GDPR compliant. Overall, the website reflects a professional and credible business with room for technical and security enhancements.

Ს

სს საკრედიტო საინფორმაციო ბიურო კრედიტინფო საქართველო

creditinfo.ge

0

Creditinfo Georgia is a mature credit information bureau operating since 2006, providing a range of credit-related services including credit reports, scoring, monitoring, and business risk databases. The company targets individuals and legal entities in Georgia, leveraging its affiliation with the international Creditinfo Group to maintain a strong market position. The website is built on WordPress and uses common plugins and scripts to deliver content and interactive forms. While the site is professionally designed with good content relevance and navigation, it lacks a valid SSL certificate, which severely impacts its security posture. Contact information is clearly presented, and privacy policy exists, but cookie policy and terms of service are missing. Overall, the site demonstrates moderate trustworthiness but requires urgent security improvements.

A

AS Creditinfo Eesti

creditinfo.ee

0

AS Creditinfo Eesti operates Estonia's largest and most trusted business information database, offering comprehensive credit information, payment default registers, credit ratings, and business lists. As part of the international Creditinfo Group, it serves a broad audience including businesses and individuals seeking to manage credit risks and make informed financial decisions. The company is well-established with a domain age of 9 years and recognized certifications such as ISO 27001, underscoring its commitment to information security. Technically, the website is built on WordPress with modern JavaScript libraries like jQuery and Slick Carousel, integrated with analytics and marketing tools including Google Tag Manager, Hotjar, and Facebook Pixel. The site demonstrates good SEO and mobile optimization, though performance is moderate and could benefit from further optimization. The hosting and DNS infrastructure is stable but lacks advanced security features like DNSSEC and domain protection locks. Security posture reveals critical issues, notably the absence of a valid SSL certificate, which severely impacts user trust and data protection. While DMARC policies and some best practices are in place, the lack of HTTPS and HSTS headers exposes the site to potential risks. Privacy compliance is strong, with clear cookie consent mechanisms and GDPR adherence. Business credibility is high, supported by clear contact information, social media presence, and trust signals. Overall, the site is functional and professional but requires urgent remediation of SSL/TLS issues to ensure secure communications and maintain trust. Strategic improvements in DNS security and domain management would further enhance its security posture.

C

Creditinfo Group

creditinfosolutions.com

0

Creditinfo Group operates as a global leader in credit information and risk management solutions, providing software and credit bureau services across mature and emerging markets worldwide. The company focuses on facilitating access to finance through innovative software solutions tailored for financial institutions and lenders. Their market position is strong, supported by over 19 years of domain maturity and a presence in multiple countries, including a headquarters in the Czech Republic. The website content reflects a professional and consistent brand with clear business messaging and case studies highlighting their global impact. Technically, the website is built on WordPress and leverages common web technologies such as jQuery and Google Analytics for tracking. Hosting and CDN services are provided by Cloudflare, enhancing performance and security at the network edge. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate, serving content over unencrypted HTTP, which exposes users to potential interception risks. From a security perspective, while some security headers are present, the absence of HTTPS and modern TLS protocols significantly lowers the security posture. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. Contact information is clearly provided, enhancing business credibility and user trust. Overall, the site is functional and professional but requires urgent security improvements to protect user data and maintain trust. Strategic recommendations include implementing HTTPS, enabling HSTS, and enhancing security headers to align with best practices.

The website at uoc.edu is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content. This prevents any meaningful extraction of business, security, or compliance information from the site itself. The domain is registered and maintained with no privacy protection, indicating a legitimate registration status, but the lack of SSL/TLS and security headers presents a poor security posture. The DNS configuration shows use of Amazon AWS for hosting and Google for email services, which are reputable providers. Due to the blocked content, the overall risk assessment is elevated, and the site cannot be fully evaluated for compliance or business credibility.

SEB.lv is the official website of SEB bank in Latvia, a major financial institution offering comprehensive banking services to private individuals, businesses, and large enterprises. The website provides extensive information on daily banking, loans, investments, insurance, and private banking, supported by a professional and well-structured Drupal-based platform. Multilingual support and clear navigation enhance user experience. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. DNS configurations show good email security practices with SPF and DMARC policies in place. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting strong privacy awareness. Overall, the site demonstrates a mature digital presence but requires urgent remediation of its SSL/TLS configuration to meet modern security standards.

PricewaterhouseCoopers Italy operates a mature, well-branded professional services website targeting businesses seeking consulting, auditing, tax, and advisory services. The site demonstrates a strong market position consistent with PwC's global reputation, offering a wide range of services and localized content for the Italian market. Technically, the site uses modern frameworks such as AngularJS and Adobe Experience Manager, but suffers from slow load times and lacks a valid SSL certificate and modern security headers, which are critical for trust and compliance. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent improvements in security posture to meet industry standards.

D

Digital Impulse Hub

digitalimpulsehub.eu

0

Digital Impulse Hub is a strategic alliance focused on supporting the digital transformation of SMEs and local public administrations in Spain. It leverages partnerships with chambers of commerce, universities, and public entities to provide consulting, training, financing, and networking services. The website reflects a mature digital presence with integration into the European Digital Innovation Hubs network, showcasing a strong regional market position and trust indicators such as the Seal of Excellence. Technically, the site is built on WordPress with modern frameworks and libraries, though performance optimization is needed due to slow load times and large page size. Security posture is adequate with HTTPS, SPF, and DMARC configured, but could be enhanced with additional headers and HSTS. Privacy compliance is well addressed with GDPR-compliant cookie consent and policies. Overall, the site is professional and trustworthy, though direct contact details are limited to forms and social media.

ilMioDono is a donation platform operated by UniCredit S.p.A., focused on facilitating donations to non-profit organizations and social projects primarily in Italy. The platform showcases multiple projects and organizations, providing a community engagement space for donors and beneficiaries. The website is built on Adobe Experience Manager and hosted via Akamai, with moderate performance and good mobile and accessibility features. However, a critical security issue is the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture. The site implements DMARC with a reject policy, enhancing email security. Privacy and cookie policies are present and appear comprehensive, supporting GDPR compliance. Overall, the business credibility is strong due to the UniCredit brand and mature domain age, but security improvements are urgently needed.

J

JSC Credit Information Bureau

manakreditvesture.lv

0

JSC Credit Information Bureau (KIB) operates the website manakreditvesture.lv, providing credit information and risk management services in Latvia. As part of the global Creditinfo Group and backed by major Latvian banks, it offers individuals and companies access to credit reports, credit scores, dispute management, and profile monitoring. The business model includes free and subscription-based services, targeting Latvian consumers and financial institutions. The website is built on a modern React and Gatsby stack, offering a good user experience and clear navigation, though performance is somewhat slow. Security posture is weak due to the absence of a valid SSL certificate and lack of security headers, which poses a significant risk. Privacy compliance is basic but present, with a privacy policy aligned with GDPR. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional but requires urgent security improvements to protect user data and build trust.

M

Moventia

moventia.net

0

Moventia is a well-established multinational family business specializing in sustainable mobility solutions since 1923. The company offers integrated services in collective and private mobility, emphasizing quality, innovation, and sustainability. Their digital presence is built on a modern WordPress platform with multilingual support and SEO optimization, reflecting a mature and professional online identity. However, the website suffers from a critical security flaw due to an invalid SSL certificate, resulting in the absence of HTTPS protection, which poses risks to user data and trust. While privacy and cookie policies are present and GDPR compliant, no explicit security or incident response policies are found. The domain registration is consistent and mature, supporting the company's legitimacy. Strategic improvements in SSL deployment and security headers are recommended to enhance the security posture and user trust.

M

Marfina, SL

moventisexperience.es

0

MoventisExperience is an online platform operated by Marfina, SL, offering road transport services and excursions primarily in Catalonia, Spain. The company provides shuttle transfers, private transfers, and guided tours, targeting tourists and travelers seeking convenient booking options. The website reflects a medium-sized business with consistent branding and a focus on customer service, including 24/7 telephone support and cancellation policies. Technically, the site uses a modern tech stack including jQuery, Bootstrap, and Google Tag Manager, but suffers from slow load times and lacks a valid SSL certificate, which impacts its security posture. Privacy compliance is well addressed with clear cookie and privacy policies and a consent mechanism via Cookiebot. However, no explicit security or incident response policies are found on the site. Overall, the site is professional and trustworthy but requires improvements in security and performance to enhance user trust and compliance.

Security assessment completed with an overall score of 0/100 (unknown risk). 1 critical issues require immediate attention. Total of 20 security findings identified across all modules.

M

Moventia

moventia.es

0

Moventia is a well-established Spanish multinational company specializing in collective and private mobility solutions since 1923. The company positions itself as a leader in the transportation sector with a strong emphasis on innovation, sustainability, and quality service. Their website reflects a mature digital presence with multilingual support, rich multimedia content, and comprehensive corporate information. Technically, the site is built on WordPress with modern plugins and frameworks, though performance is somewhat slow likely due to heavy resource usage. Security posture is a concern due to an invalid SSL certificate and lack of modern TLS protocols, which exposes the site to risks and undermines user trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility is high, supported by consistent branding and trust signals, but security improvements are critical to maintain reputation and compliance.

C

Consorci Localret

localret.cat

0

Consorci Localret is a well-established consortium focused on supporting local governments in Catalonia, Spain, with digital transformation initiatives. Their website showcases a comprehensive range of services including advisory, procurement centralization, telecommunications infrastructure, innovation office, and digital society support. The organization targets municipalities and supramunicipal entities, positioning itself as a key player in local government digital modernization. Technically, the website is built on WordPress with a mature tech stack including SEO and multilingual plugins, accessibility tools, and analytics integrations. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support and exposing users to potential risks. Privacy compliance is strong with clear cookie and privacy policies and consent mechanisms. Overall, the site is content-rich and professionally presented but requires urgent security improvements to protect user data and enhance trust.

C

CREDITREFORM Rating SIA

crediweb.lv

0

CrediWeb.lv is a Latvian-based business information platform operated by CREDITREFORM Rating SIA, providing comprehensive credit and business reports for companies primarily in Latvia, Europe, and China. The platform targets businesses and registered users seeking detailed company and private person credit information, offering services such as company reports, family trees, monitoring, and foreign credit reports. The website demonstrates a professional design with consistent branding and clear navigation, supporting multiple languages and user authentication methods including bank link authentication. Technically, the site uses modern JavaScript libraries like jQuery, Flatpickr, Tippy.js, and Chart.js, and integrates Google Tag Manager for analytics. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts user security and trust. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. WHOIS data confirms the domain is actively maintained and consistent with the business's Latvian operations, though domain protection locks are not enabled. Overall, while the business model and content quality are strong, the security posture requires urgent improvement to protect users and enhance credibility.

A

ADTENDE SL

adtende.es

0

ADTENDE SL is a specialized company focused on innovation and service provision for the public sector, particularly in electronic administration and citizen assistance. The company positions itself as a unique partner with a public sector DNA, offering comprehensive services such as OAC 360º, LIAM AI agent, and centralized call services. Their target audience includes public administrations and e-citizens, emphasizing effective and innovative solutions to improve public service delivery. Technically, the website is built on WordPress with Elementor and integrates modern tools like Google Analytics and reCAPTCHA, but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Privacy and cookie policies are well implemented and GDPR compliant, with clear contact information and social media presence enhancing business credibility. Security posture is weak due to missing HTTPS and lack of security headers, exposing the site to potential risks. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

M

Moventis S.A.

moventis.es

0

Moventis S.A. is a well-established transportation company specializing in collective passenger transport by road, operating primarily in Spain with regional and European services. The company offers a broad range of services including urban and interurban transport, coach rental, and ITS solutions. The website reflects a mature digital presence with comprehensive content, consistent branding, and clear business information targeting travelers and clients seeking transport services. Technically, the site is built on Drupal 7 with a variety of modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. However, the site suffers from slow load times and lacks some advanced security headers and mechanisms such as HSTS, DNSSEC, and OCSP stapling. Privacy policies are present and GDPR compliance is indicated, though no active cookie consent mechanism is implemented. The WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is professional and trustworthy but could benefit from performance and security enhancements.

JauniAuto.lv is a Latvian automotive news website providing up-to-date articles, reviews, and industry news targeted at Latvian-speaking automotive enthusiasts. The site operates primarily as an advertising-supported media platform, featuring a range of automotive content with a consistent brand presentation. Technically, the website is built on WordPress and uses common web technologies such as jQuery and Google Analytics, but suffers from slow performance and lacks modern security configurations. The absence of a valid SSL certificate and HTTPS support is a critical security gap, exposing users to potential risks. Additionally, the site lacks privacy and cookie policies, which raises compliance concerns under GDPR regulations. Business credibility is moderate due to the lack of explicit contact information and security policies, although the domain registration data aligns well with the website's purpose and location.

P

PK MEŽS SIA

pkmezs.lv

0

SIA PK Mežs is a Latvian small-sized company specializing in forestry and wood processing services, primarily serving the Zemgale region. The company offers forest and forest stand purchasing, forestry services, wood processing, and forest property valuation. The website is professionally designed with good content quality and clear navigation, targeting forest owners and sellers. Technically, the site uses a modern tech stack including jQuery, Usercentrics for cookie consent, Google Analytics, and Snowplow for analytics, hosted on Businessmedia.lv infrastructure. However, the website lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability. Privacy compliance is basic with a privacy policy and cookie consent but no GDPR-specific indicators or terms of service. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional but requires urgent security improvements.

A

Attollo Brokers

octa24.lv

0

OCTA24.lv is an online insurance brokerage platform focused on providing vehicle owners in Latvia with an easy-to-use OCTA insurance calculator and policy purchase service. The website offers comprehensive information about mandatory vehicle liability insurance, including FAQs, news, and related insurance products like KASKO. The business operates under Attollo Brokers, a recognized insurance intermediary in Latvia, positioning itself as a convenient digital channel for insurance comparison and purchase. Technically, the site uses an older technology stack with Apache and PHP 5.5.9, integrating jQuery and FancyBox for UI components. Despite functional content and structured data, the absence of a valid SSL certificate and outdated server software significantly weaken the security posture. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are found. Overall, the site is functional and informative but requires urgent security upgrades to protect user data and improve trust.

I

iAuto.lv

iauto.lv

0

iAuto.lv is a Latvian automotive news portal providing a wide range of content including automotive news, sports, forums, classifieds, and user-generated content. The site targets Latvian-speaking automotive enthusiasts and general audiences interested in vehicles and related topics. It operates primarily as an advertising-supported media platform with additional services such as classifieds and insurance calculators. Technically, the site uses a custom or unknown CMS with technologies including nginx, jQuery, Font Awesome, Google Tag Manager, and Gemius analytics. Hosting is supported by Cloudflare DNS and a dedicated IP. However, the site lacks a valid SSL/TLS certificate and does not support modern TLS protocols, which significantly impacts its security posture. Cookie consent mechanisms are implemented, supporting GDPR compliance to a basic degree. The absence of explicit contact information and security policies reduces business credibility somewhat. Overall, the site is functional with good content quality but requires urgent security improvements to protect users and enhance trust.

A

Akciju sabiedrība “Olpha”

olpha.eu

0

Olpha is a leading pharmaceutical manufacturer based in Latvia with a strong regional presence across more than 60 markets. The company offers a broad portfolio of pharmaceutical products, active pharmaceutical ingredients, and contract manufacturing services. Their website reflects a mature digital presence built on WordPress with multilingual support and advanced accessibility features, demonstrating a commitment to inclusivity and user experience. The site is professionally designed with clear navigation and comprehensive content tailored to healthcare professionals, business partners, and the general public. Security posture is solid with HTTPS enabled and SPF/DMARC email protections, though improvements in HTTPS hardening and DNS security are recommended. Privacy and cookie policies are well implemented and GDPR compliant. Overall, Olpha presents a trustworthy and credible business with a modern digital infrastructure.

A

Akciju sabiedrība “Olpha”

olpha.lv

0

Olpha is a leading pharmaceutical manufacturer based in Latvia, serving over 60 markets with a broad portfolio of pharmaceutical products, active ingredients, and nutritional supplements. The company operates through multiple subsidiaries across Eastern Europe and Central Asia, emphasizing contract manufacturing and pharmaceutical co-development. Their website reflects a mature digital presence with multilingual support, professional design, and a strong focus on accessibility, ensuring compliance with WCAG 2.1 AA standards. Technically, the site is built on WordPress with modern plugins and tracking tools, although performance could be improved due to high resource count and page size. Security posture is adequate with HTTPS and modern TLS protocols, but lacks some advanced configurations such as HSTS, DNSSEC, and DMARC, which are recommended for enhanced protection. Privacy compliance is strong with clear policies and consent mechanisms. Overall, Olpha presents a trustworthy and professional online presence aligned with its business stature.

A

A2Z Events

mya2zevents.com

0

A2Z Events is a well-established event management software provider offering a comprehensive platform tailored for trade shows, conferences, and corporate events. With over 25 years of industry presence and backing by Personify Corporation, it holds a strong market position supported by a robust suite of event management tools and services. The website demonstrates professional design, rich content, and clear navigation targeting event professionals seeking scalable solutions. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple marketing and analytics tools, reflecting a mature digital infrastructure. However, the security posture is currently weak due to the absence of a valid SSL certificate and missing security headers, which poses risks to user data confidentiality and trust. Privacy compliance is well addressed with visible policies and consent mechanisms. Overall, the site is credible and professional but requires urgent security improvements to align with best practices and user expectations.