Security Directory

H

HRmaster

hrmaster.ro

0

HRmaster.ro is a Romanian-based HR software provider offering a modular and scalable solution for companies of all sizes to automate and manage human resources processes. The company positions itself as a recognized player in the European HR Tech market with a focus on recruitment, employee management, training, and performance evaluation. The website is built on Joomla CMS with modern UIkit frontend framework and integrates Google services for analytics and bot protection. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing users to risks. Privacy compliance is partially addressed with a privacy policy and GDPR consent on forms, but lacks cookie consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site demonstrates good content quality and business legitimacy but requires urgent security improvements.

I

Interticket Kft.

jegy.hu

0

Jegy.hu is a well-established Hungarian online ticketing platform specializing in cultural events such as theater, concerts, festivals, and sports. Founded in 2000, it serves a large audience primarily in Hungary with some regional presence. The platform offers extensive event listings, search and filtering capabilities, and supports affiliate marketing and gift vouchers. Technically, the site uses a custom CMS with modern JavaScript libraries and frameworks, providing a good user experience and mobile optimization. However, a critical security gap is the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with cookie consent mechanisms and comprehensive privacy policies. Overall, the site is professional and trustworthy but requires urgent security improvements.

Bonelli Bus s.a.s. is a well-established transportation company based in Italy, offering a variety of bus services including interregional lines, shuttle services, school transport, excursions, and bus rentals. The company targets tourists, commuters, and groups requiring transportation primarily in the Italian regions of Rimini, San Marino, Urbino, and Torino. The website is built on WordPress using Elementor and integrates common marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Despite a professional design and comprehensive content, the website lacks a valid SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are present and appear GDPR compliant, with a functional consent mechanism. The domain is mature and consistent with the business profile, enhancing trustworthiness. However, the absence of HTTPS and security headers, along with the presence of a suspicious external script domain, pose security risks that should be addressed promptly.

The website is.cc is currently inaccessible due to a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content or business information. The technical infrastructure is protected by Cloudflare but lacks a valid SSL certificate and HTTPS support, resulting in a poor security posture. Performance is slow and no privacy or contact information is available. Due to the blocking mechanism, a full analysis of the website's business model, services, and compliance cannot be performed.

I

International Beach Tennis IFBT

ifbt.eu

0

International Beach Tennis IFBT is a small, specialized sports federation focused on promoting and organizing beach tennis events globally. The organization operates a multilingual WordPress website providing comprehensive event information, player rankings, and membership services. The technical infrastructure is based on WordPress with several plugins and a custom theme, hosted by CDmon in Spain. While the website content and business information are well presented and consistent with the organization's mission, the security posture is weak due to lack of a valid SSL certificate and absence of modern TLS protocols. Privacy compliance is addressed with clear policies and consent mechanisms. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

F

FUNDACION DEL MUSEO GUGGENHEIM BILBAO

guggenheim-bilbao.eus

0

The Museo Guggenheim Bilbao is a prominent non-profit cultural institution based in Bilbao, Spain, managed by the FUNDACION DEL MUSEO GUGGENHEIM BILBAO. The website serves as a comprehensive portal for visitors to plan their visits, explore exhibitions, and access educational resources. It targets a broad audience interested in art, culture, and museum experiences. The museum holds a strong market position as an internationally recognized art venue with strategic partnerships and sponsorships from government and corporate entities. Technically, the website leverages modern web technologies including Next.js and React, with a headless WordPress CMS backend. It integrates accessibility tools and multimedia content hosted on Vimeo. The site is mobile-optimized and SEO-friendly, providing a good user experience and navigation clarity. From a security perspective, the site currently lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability impacting user trust and data security. Other security headers and best practices are partially implemented, but the absence of HTTPS significantly lowers the security posture. Overall, the website is professionally designed and content-rich, but the lack of HTTPS is a major risk. Strategic recommendations include immediate SSL/TLS deployment, enabling HSTS, and improving certificate management to enhance security and user trust.

E

Evolution Consulting Kft.

hrmaster.hu

0

HRmaster.hu is the online presence of Evolution Consulting Kft., a mature Hungarian company founded in 2012, offering modular HR software solutions tailored for small to large enterprises. The website presents a comprehensive portfolio of HR management modules and payroll services, positioning itself as a top European HR Tech provider. The technical infrastructure is based on Joomla CMS, PHP, ASP.NET, and Microsoft IIS, with modern JavaScript frameworks enhancing user experience. However, the site lacks a valid SSL certificate, exposing it to security risks and reducing trustworthiness. Contact information and business credibility are well established with testimonials and certifications. Overall, the website is professional and content-rich but requires urgent security improvements to enable HTTPS and enhance privacy compliance.

M

Magyar Rádió Művészeti Együttesei

radiomusic.hu

0

radiomusic.hu is the official website for the Hungarian Radio's Artistic Ensembles, providing information about their symphonic orchestra, choir, children's choir, and related cultural events. The site serves a Hungarian-speaking audience interested in classical music and concert attendance, offering ticket sales, event calendars, galleries, and news updates. The organization is well-established with a history of over 80 years, supported by the parent media entity MTVA. Technically, the site is built on WordPress with a variety of plugins and JavaScript libraries to enhance user experience and functionality. However, the absence of a valid SSL/TLS certificate is a critical security shortfall, exposing users to potential risks and reducing trust. The site implements cookie consent mechanisms and links to legal and privacy pages, but lacks explicit security or incident response policies. Overall, the website is content-rich and professionally maintained but requires urgent security improvements to meet modern standards.

K

Közszolgálati Médiaakadémia Alapítvány

media-akademia.hu

0

The Média Akadémia website represents a Hungarian non-profit foundation dedicated to media education and talent development, primarily targeting future television and radio professionals. The site is well-structured with rich content including news articles, event information, and educational program details. It leverages WordPress CMS with a variety of plugins to deliver multimedia content and interactive features. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall that undermines user trust and data protection. The site implements a cookie consent mechanism but lacks comprehensive privacy and security policies. The domain registration is consistent and aligns with the organization's public media affiliations, indicating legitimacy. Strategic improvements in security posture and privacy compliance are necessary to enhance overall trustworthiness and compliance.

D

Duna Médiaszolgáltató Nonprofit Zrt.

dunamsz.hu

0

Duna Médiaszolgáltató Nonprofit Zrt. operates as a Hungarian public media service provider delivering television, radio, and online content primarily targeting Hungarian-speaking audiences. The website serves as a portal for accessing media services and related information, reflecting a nonprofit business model with a strong public service orientation. The company is positioned as a key player in Hungary's media landscape, supported by partnerships with official entities such as MTVA. Technically, the website is built on WordPress with a modern set of JavaScript libraries and plugins to support multimedia content delivery and user interaction. However, the absence of a valid SSL certificate and HTTPS support represents a critical security gap, exposing users to potential risks. The site includes a cookie consent mechanism but lacks explicit privacy, security, and incident response policies, which may affect compliance with GDPR and other regulations. Overall, the site is functional and professionally designed but requires urgent security enhancements to protect user data and improve trust.

Security assessment completed with an overall score of 0/100 (unknown risk). 1 critical issues require immediate attention. Total of 25 security findings identified across all modules.

S

San Marino Welcome

sanmarinowelcome.com

0

San Marino Welcome is a small Destination Management Company specializing in organizing events, meetings, and customized experiences in San Marino. The company collaborates with local hospitality, catering, and leisure providers to deliver exclusive and memorable events. The website is built on WordPress using Elementor and Yoast SEO, indicating a moderate level of digital maturity. However, the site suffers from a lack of HTTPS support, which significantly impacts its security posture. Cookie consent is implemented, but no privacy policy or terms of service pages were found, indicating gaps in compliance. Contact information and social media presence are clearly provided, supporting business credibility. Overall, the website provides good content and user experience but requires urgent security improvements.

C

Consorzio Terra di San Marino

terradisanmarino.com

0

Consorzio Terra di San Marino is a small-sized cooperative consortium focused on protecting and promoting typical agro-food products from the Republic of San Marino. The website serves as a platform to showcase their products, events, and cultural heritage, targeting local consumers and enthusiasts of traditional food and rural culture. Technically, the site is built on Drupal 7 with common web libraries and Google Analytics for tracking. However, the site suffers from critical security shortcomings, notably the absence of HTTPS and a valid SSL certificate, which exposes users to risks and undermines trust. Privacy compliance is basic, with a cookie policy and consent mechanism but no explicit privacy or security policies. The domain is mature and consistent with the business claims, enhancing credibility. Overall, the site provides good content and user experience but requires urgent security improvements to protect visitors and enhance trust.

24xtra.hu is a user authentication portal associated with the Hungarian media brand 24.hu, providing login and registration services including social login options via Facebook, Apple, and Google. The site targets Hungarian-speaking users of 24.hu services and acts as a gateway for accessing content or services requiring user authentication. The business model centers on user identity management for a media platform. Technically, the site is hosted on Amazon AWS infrastructure using CloudFront CDN and employs Keycloak for single sign-on capabilities. The technology stack includes modern JavaScript modules and standard web technologies, but performance metrics are unavailable or minimal, indicating potential areas for improvement. Mobile optimization and accessibility are basic but functional. From a security perspective, the site implements several important HTTP security headers and enforces HSTS with preload. However, the absence of a valid SSL certificate and lack of HTTPS support critically undermine the security posture. No OCSP stapling or session resumption is configured, and no privacy or cookie policies are published, indicating compliance gaps. No contact or business information is provided on the site, limiting transparency. Overall, the site is functional as a login portal but requires urgent improvements in SSL/TLS configuration and privacy compliance to enhance trust and security. The domain registration is consistent with the 24.hu brand, supporting legitimacy. Strategic recommendations include obtaining a valid SSL certificate, publishing privacy and cookie policies, and improving performance and accessibility.

M

Médiaszolgáltatás-támogató és Vagyonkezelő Alap (MTVA)

mtva.hu

0

MTVA.hu is the official website of the Hungarian public media organization Médiaszolgáltatás-támogató és Vagyonkezelő Alap (MTVA), providing a wide range of media services including television, radio, and online content. The site is well-structured, content-rich, and targets the Hungarian public with news, press releases, and organizational information. The business model is public service media, supported by government funding, positioning MTVA as a leading media broadcaster in Hungary. Technically, the site is built on WordPress with modern JavaScript libraries and accessibility features, hosted on Telekom.hu infrastructure. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS, exposing users to potential risks. The site implements proper email security with SPF and DMARC records and includes a cookie consent mechanism compliant with GDPR. Overall, the website demonstrates good business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

I

IDIMweb

idimweb.com

0

IDIMweb is a small, specialized web agency operating primarily in France and the Caribbean, with over 15 years of experience in custom website creation, development, SEO, and digital marketing. The company targets professionals, institutions, and individuals seeking tailored web solutions, leveraging Joomla CMS and modern frontend technologies. The website reflects a professional and consistent brand image with clear contact channels and a portfolio of client references. Technically, the site uses Joomla with Bootstrap and jQuery, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security shortfall. Privacy compliance is well addressed with comprehensive cookie and privacy policies and a consent mechanism. Social media integration and analytics usage are moderate and transparent.

T

TEMPESTA MEDIA, S.L.

latempesta.cc

0

La Tempesta is a small Spanish company specializing in digital transformation and consulting services for cultural heritage and social innovation organizations. Founded in 2019, it offers a range of services including digital storytelling, web development, 3D virtualisation of heritage, knowledge management, and digital strategy. The company has a strong market position within its niche, supported by reputable clients and industry awards. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and multilingual support. However, the site suffers from a critical security issue due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with comprehensive cookie and privacy policies and consent mechanisms. Overall, the business presents a professional and trustworthy image but must urgently address its SSL/TLS configuration to improve security and user trust.

L

Log In ‹ CEATL members — WordPress

ceatl-members.eu

0

The website ceatl-members.eu serves as a WordPress-based login portal for CEATL members, indicating a restricted access platform likely intended for a specific user group. The site lacks publicly accessible business descriptions, contact information, or policy documents, which limits transparency and user trust. Technically, the site runs on WordPress with jQuery libraries and is hosted by Budget Webhosting. However, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which exposes users to potential data interception risks. The security posture is weak, with minimal security headers and no modern TLS protocols enabled. Privacy compliance is also lacking, with no visible privacy or cookie policies or GDPR indicators. Overall, the site appears to be a basic, small-scale member login portal with limited public-facing content and significant security and compliance gaps.

R

Repubblica di San Marino

gov.sm

0

The website gov.sm serves as the official digital portal for the Republic of San Marino, providing citizens and public administration users with access to government services, news, and administrative information. It is positioned as the primary government interface for public sector communication and service delivery. The site targets residents, businesses, and government employees within San Marino. Technically, the website uses older but stable technologies such as jQuery 1.12.4 and Bootstrap, with a custom or unknown CMS. However, performance is slow with a load time exceeding 12 seconds, and SEO and accessibility features are basic. Security posture is weak due to the absence of a valid SSL certificate, lack of HTTPS, missing security headers, and no DNSSEC or CAA records, exposing the site to potential risks. Privacy compliance is minimal, with no cookie consent mechanism and only a basic privacy policy present. Business credibility is moderate given the official government branding and domain, but the lack of contact information and security best practices reduces trust. Overall, the site requires urgent security improvements and enhanced privacy compliance to meet modern standards.

U

Ufficio del Turismo

visitsanmarino.com

0

The website visitsanmarino.com serves as the official tourism portal for the Republic of San Marino, providing comprehensive information on events, travel planning, cultural experiences, shopping, and outdoor activities. It targets tourists and visitors interested in exploring San Marino, positioning itself as the authoritative source for tourism-related content in the country. The business model is government-driven, focusing on promoting tourism and cultural heritage. Technically, the site is built on Magnolia CMS and served via Apache, utilizing JavaScript libraries including jQuery and Google Tag Manager for analytics and marketing. The site is multilingual and mobile-optimized, though performance data suggests potential slowness. Accessibility and SEO are basic but functional. From a security perspective, the site lacks a valid SSL certificate and HTTPS support, which is a critical vulnerability. Security headers are minimal, and no advanced security policies or incident response information are published. Cookie consent mechanisms are absent despite the use of tracking tools, indicating privacy compliance gaps. Overall, the site is legitimate and trustworthy as an official government tourism resource but requires urgent improvements in security and privacy compliance to protect users and enhance trust.

The website pa.sm serves as the official government portal for the Republic of San Marino, providing citizens and businesses with access to public administration services, news, and information. It targets local users and offers key services such as online public services, recruitment notices, and departmental information. The site is branded consistently with government logos and domain usage, reinforcing its official status. Technically, the website employs older but widely used technologies like jQuery 1.12.4 and Bootstrap, with some external libraries loaded from CDNs. However, the site suffers from slow performance with a load time exceeding 12 seconds and lacks modern security configurations. Notably, there is no valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. The absence of security headers and cookie consent mechanisms further weakens its security and privacy posture. From a security perspective, the lack of HTTPS and security headers exposes users to potential risks, and the site does not demonstrate compliance with GDPR or other privacy regulations. No incident response or vulnerability disclosure information is provided. WHOIS data confirms the domain's legitimacy and government ownership, supporting the trustworthiness of the site despite technical shortcomings. Overall, while the website fulfills its role as a government information portal with good content quality and professional design, significant improvements in security, privacy compliance, and performance are necessary to enhance user trust and protect sensitive data.

M

MédiaKlikk

mediaklikk.hu

0

MédiaKlikk is a Hungarian media platform offering live streaming of multiple TV and radio channels, program guides, and media archives primarily targeting Hungarian-speaking audiences. It operates under the umbrella of MTVA, the Hungarian public media organization, and serves as a central hub for national media content. The platform leverages WordPress CMS with a variety of plugins and integrates social login options and user account management features. The website demonstrates a consistent brand presence and good content relevance for its target audience. Technically, the site uses a modern web stack including jQuery, jQuery UI, Video.js, and ElasticPress, hosted on Telekom Hungary infrastructure. While the site is mobile-optimized and includes accessibility features, performance metrics are not explicitly available. SEO practices are implemented with proper meta tags and structured data. However, the absence of HTTPS is a critical security gap, significantly impacting the site's security posture. From a security perspective, the site lacks a valid SSL certificate, HSTS, and other modern security headers, exposing users to potential risks. It employs reCAPTCHA for form protection and uses third-party analytics and tracking services such as Facebook Pixel, Hotjar, and Gemius, indicating extensive user tracking. Privacy compliance is basic, with a privacy policy present but no visible cookie consent mechanism. Incident response and vulnerability disclosure information are not found. Overall, while MédiaKlikk is a reputable media platform with solid business credibility and content quality, its security posture requires urgent improvement, especially regarding HTTPS implementation and enhanced privacy compliance. Strategic recommendations include securing the site with SSL, enabling security headers, and implementing a cookie consent mechanism to align with GDPR requirements.

I

Interferenza s.r.l.

offertissime.shop

0

Offertissime.shop is an Italian e-commerce price comparison platform operated by Interferenza s.r.l., founded in 2016. The website offers a product search engine aggregating offers from multiple e-shops, targeting Italian online shoppers seeking the best prices. The business model focuses on guiding users to convenient purchases through comparison and curated e-shop listings. The site is positioned as a niche player in the Italian e-commerce market with a small company size and consistent branding. Technically, the website uses a traditional Apache server with Bootstrap and jQuery for frontend components. DNS is managed via Cloudflare, but only for DNS services, not for security or CDN. The site lacks HTTPS encryption, which is a critical security shortfall. Performance data is missing, but the site appears to have basic mobile optimization and SEO practices. The cookie consent mechanism and privacy policy indicate some GDPR compliance awareness. From a security perspective, the absence of SSL/TLS is a major vulnerability, exposing users to data interception risks. No advanced security headers or modern TLS protocols are implemented. DNSSEC and CAA records are missing, reducing domain security. No incident response or vulnerability disclosure policies are published. The security posture is weak and requires urgent improvements to protect user data and enhance trust. Overall, the website is functional and provides relevant content for its target audience but suffers from critical security deficiencies. Strategic recommendations include immediate deployment of HTTPS, enhancement of security headers, enabling DNSSEC, and publishing security policies. These steps will improve user trust, compliance, and reduce risk exposure.

C

Central Médiacsoport Zrt.

24.hu

0

24.hu is a leading Hungarian news portal operated by Central Médiacsoport Zrt., offering a wide range of news content including domestic and international news, culture, sports, and lifestyle. The site features multimedia content such as videos and podcasts, and supports subscription services. Technically, the site is built on WordPress with WPBakery Page Builder and hosted on AWS infrastructure with CloudFront CDN and Redis caching for performance optimization. However, the security posture is weak due to the absence of a valid SSL certificate and lack of TLS protocol support, which poses significant risks for user data protection and trust. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user consent mechanisms. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect users and maintain credibility.

REO AG is a medium-sized German company specializing in the manufacturing and supply of innovative resistive and inductive electrical components, including transformers, reactors, and power controllers. The company targets industrial sectors such as energy, transportation, and medical technology, emphasizing sustainability and technological innovation. Their website is multilingual and professionally designed, supporting a global B2B audience. Technically, the website is built on WordPress with Elementor and several plugins for SEO and multilingual support, hosted on kasserver.com. However, the site lacks a valid SSL certificate and HTTPS support, representing a critical security vulnerability. While privacy and legal documents are linked, no cookie consent mechanism is present, which may affect GDPR compliance. Social media presence and clear contact information enhance business credibility. Overall, the site is functional and content-rich but requires urgent security improvements.

REO AG is a medium-sized German company specializing in the manufacturing and supply of electromagnetic components such as EMV components, chokes, transformers, and power control devices. The company positions itself as a global supplier with a strong emphasis on innovation and sustainability, targeting industrial and technological sectors. The website is built on WordPress with Elementor and includes multilingual support, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security weakness that undermines user trust and data protection. Privacy policies and terms of service are present on the main corporate domain, indicating compliance awareness, though cookie consent mechanisms are lacking. Social media engagement and structured data usage enhance the company's online credibility. Overall, the site offers good content quality and user experience but requires urgent security improvements.

REO AG is a medium-sized German company specializing in the manufacture and supply of electromagnetic compatibility components, chokes, transformers, and resistors primarily for industrial and energy sectors. The company emphasizes innovation and sustainability in its product offerings and maintains a global presence with multiple language-specific websites. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS approach with SEO optimization. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. While contact information and legal pages are well presented, the lack of cookie consent mechanisms and security policies indicates partial privacy compliance. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

REO AG is a medium-sized German company specializing in the manufacturing and supply of innovative resistive and inductive electrical components, including EMV components, transformers, power controllers, and vibratory conveyor technology. The company targets industrial clients globally, emphasizing sustainability and technological innovation. Their website is built on WordPress with Elementor and optimized for Spanish-speaking markets, reflecting a multilingual corporate presence. Technically, the site uses modern CMS and SEO tools but lacks a valid SSL certificate, resulting in an insecure HTTP-only connection. Security posture is weak due to missing HTTPS, lack of security headers, and no domain protection locks. Privacy compliance is moderate with a clear privacy policy but no cookie consent mechanism. Contact information and social media presence are well established, supporting business credibility. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

REO AG is a well-established German family-run company with a 100-year history specializing in the development and production of inductive, resistive, and electronic components for various industrial sectors including energy, transportation, and manufacturing. The company operates internationally with subsidiaries across Europe, North America, Asia, and the Middle East, maintaining production primarily in Germany with a focus on quality and innovation. Technically, the website is built on a modern WordPress CMS with Elementor and Yoast SEO, indicating a good level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support is a critical security weakness that undermines user trust and data protection. The site lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. Business credibility is strong with clear contact information, social media presence, and detailed product and industry information. Strategic improvements in security and privacy compliance are recommended to enhance trust and protect user data.

H

Helló Sajtó! Üzleti Sajtószolgálat

hellosajto.hu

0

Helló Sajtó! Üzleti Sajtószolgálat is a Hungarian online media platform specializing in publishing and distributing business press releases. Established in 2022, it serves businesses, PR agencies, and institutions primarily in Hungary, offering services such as press release publication, distribution, and effectiveness measurement. The website is built on WordPress with Elementor and uses the Smart Mag theme, hosted on a server managed by Mediacenter.hu. The platform integrates Google Tag Manager and Google Ad Manager for analytics and advertising purposes. Despite a professional design and good content quality, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided, including email and phone. Social media presence is active on Facebook, LinkedIn, and Twitter. Overall, the website is functional and credible but requires urgent security improvements to protect user data and enhance trust.

The website carikita.id is currently inaccessible due to Cloudflare security mechanisms blocking direct content access. The domain is registered with a legitimate Indonesian registrar and is relatively new, created in late 2023. No meaningful business or contact information is available on the site, and no privacy or cookie policies are present. Technically, the site lacks a valid SSL certificate and does not support HTTPS, resulting in a poor security posture. The page load performance is slow, and the content quality is minimal, consisting mainly of embedded iframes and tracking pixels from suspicious external domains. Overall, the site appears to be either under development or improperly configured, limiting its trustworthiness and usability.

D

Dauphin Telecom Business

dauphintelecompro.com

0

Dauphin Telecom Business is a regional telecommunications and digital solutions provider focused on serving businesses in French overseas territories such as Guadeloupe, Martinique, Guyane, and the Northern Islands. The company offers a range of services including fiber internet (FTTH, FTTO), unified communication solutions, mobile plans, cloud and data center services, and VPN interconnection. Their website reflects a professional digital presence with clear navigation and relevant content tailored to their target audience. Technically, the website is built on Joomla CMS using the Helix Ultimate framework and Bootstrap 5, incorporating modern libraries like jQuery and Awesomplete. However, the site suffers from slow load times and lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security concern. Cookie consent and privacy policies are implemented, showing good GDPR compliance, and Google Analytics is used with appropriate data retention policies. From a security perspective, the absence of HTTPS and security headers significantly lowers the security posture. While Google reCAPTCHA is used to protect forms, the lack of SSL/TLS encryption exposes users to risks. The WHOIS data confirms the domain is mature and registered transparently, consistent with the business claims. Overall, the website is functional and informative but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling security headers, and optimizing performance to improve user experience and security compliance.

D

dauphintelecom-entreprise.com

dauphintelecom-entreprise.com

0

The website dauphintelecom-entreprise.com currently presents as a minimal placeholder or parked page with no substantive content or business information. The domain is very young, registered in mid-2024, and is close to expiry, which raises concerns about the legitimacy and stability of the business presence. There is no SSL certificate installed, resulting in no HTTPS support, which severely impacts the security posture and user trust. No privacy, cookie, or terms of service policies are present, and no contact information or business details are provided on the site. Technically, the site lacks modern web technologies, performance optimizations, and accessibility features, indicating a low level of digital maturity.

D

Dauphin Telecom

dauphintelecom.com

0

Dauphin Telecom is a regional telecommunications provider serving the French Antilles, Saint Martin, and Saint Barthélemy. The company offers a variety of services including mobile plans, fiber internet, TV packages, and bundled offers, targeting both residential and business customers. With a local presence supported by multiple agencies and a customer service center based in Guadeloupe, Dauphin Telecom positions itself as a trusted and accessible operator in its market. Technically, the website is built on WordPress using the Elementor page builder and several Jet plugins, indicating a modern and flexible digital infrastructure. However, the site suffers from slow performance and lacks a valid SSL certificate, which impacts both user experience and security. The site is mobile-optimized and includes basic accessibility features, but there is room for improvement in performance and security hardening. From a security perspective, the absence of HTTPS and modern TLS protocols is a critical vulnerability. While the site implements cookie consent mechanisms and appears GDPR compliant, it lacks explicit security policies and incident response information. The use of SPF records for email authentication is a positive indicator, but the overall security posture is weak and requires urgent attention. Overall, Dauphin Telecom's website reflects a legitimate and established business with good content quality and business credibility. However, significant security improvements are necessary to protect user data and enhance trust. Addressing these issues will strengthen the company's digital presence and compliance standing.

M

MIGASTONE INTERNATIONAL SRL

migastoneacademy.com

0

Migastone Academy operates as a specialized educational platform focused on mobile marketing and app creation, leveraging proprietary methods such as the ASP© method and the Siberian platform. The company positions itself as a leader in Europe with over 1055 applications sold and strong partnerships with major Italian trade associations. The website is built on the Kartra platform, integrating multiple marketing and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. Despite a professional design and good content quality, the site suffers from critical security issues, notably the lack of a valid SSL certificate and HTTPS, which significantly impacts its security posture. Privacy and cookie policies are present and GDPR compliant, with clear contact information including phone numbers and a physical address in San Marino. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

S

San Marino Open Innovation Institute

sanmarinoinnovation.com

0

San Marino Innovation is the official digital technology and blockchain innovation hub of the Republic of San Marino, established in 2017. It serves as a government-supported institute promoting high technology enterprises, startups, and entrepreneurs with tax benefits and certification programs. The website presents a professional and consistent brand image, targeting technology-focused businesses and investors interested in blockchain and digital transformation. The company maintains active social media channels and offers newsletter subscriptions to engage its audience. Technically, the website is built on the Squarespace platform using standard scripts and Typekit fonts. However, it suffers from poor performance with a very slow load time and a large page size. Mobile optimization and SEO are adequate, but accessibility is basic. Critically, the site lacks a valid SSL certificate, resulting in no HTTPS support, which severely impacts security posture. Security-wise, the absence of HTTPS, security headers, and DNSSEC are significant vulnerabilities. While cookie consent mechanisms are in place, GDPR compliance is only basic. The WHOIS data confirms a mature and consistent domain registration without privacy protection, aligning with the business claims. Overall, the website is functional and credible but requires urgent security improvements, especially SSL/TLS implementation, to protect user data and enhance trust. Performance optimization and enhanced security headers would further strengthen the site’s posture.

R

Rete di Top Segnalatori Business Certificati

retesegnalatori.com

0

The website 'retesegnalatori.com' serves as a platform for individuals and businesses interested in becoming certified business referrers and growing within a referral network. It positions itself as a niche network focused on business introductions and certification in the Italian-speaking market. The content is minimal and primarily marketing-oriented, with limited business or legal information provided. Technically, the site is built on the Kartra platform, utilizing common web fonts and CDNs, but suffers from slow load times and lacks modern performance optimizations. Security posture is weak, with no valid SSL certificate or HTTPS support, absence of security headers, and no privacy or cookie policies, exposing users to potential risks. Overall, the site demonstrates low trustworthiness and poor compliance with privacy regulations. Strategic improvements in security, privacy compliance, and content richness are recommended to enhance credibility and user trust.

B

Banca Agricola Commerciale

baclife.sm

0

Banca Agricola Commerciale (BAC) is a well-established financial institution based in San Marino, providing a broad range of banking, investment, and insurance services to both private individuals and businesses. The website reflects a mature and professional presence with comprehensive business information, news updates, and customer resources. The company operates subsidiaries such as BAC Life S.p.A. and BAC Investments, indicating a diversified financial services group. The target audience is primarily local customers in San Marino, with services tailored to their needs including online and mobile banking solutions. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Cookiebot for compliance and marketing. It integrates Google Tag Manager and Google Maps API, showing a moderate level of digital maturity. However, performance metrics are missing, and some technical debt is evident, especially in the SSL/TLS configuration. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability exposing users to potential data interception. While some security headers are present, the absence of HTTPS and DNSSEC reduces the overall security posture significantly. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is credible and professional but requires urgent improvements in SSL/TLS security to protect user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and enhancing DNS and domain protections.

I

Interferenza s.r.l.

newcart.it

0

Newcart.it is a professional Italian e-commerce platform operated by Interferenza s.r.l., offering turnkey online store solutions including domain, hosting, payment integration, and marketing support. The platform targets small to medium businesses seeking easy and rapid e-commerce deployment with additional features like dropshipping and marketplace synchronization. Technically, the site uses a custom PHP-based platform with Apache server, Bootstrap, jQuery, and FontAwesome, but suffers from outdated libraries and lacks a valid SSL certificate, which critically impacts security. Privacy and cookie policies are well implemented and GDPR compliant, with active user consent mechanisms. The site demonstrates good content quality, clear navigation, and mobile optimization, supported by customer testimonials and a visible company address enhancing trust. However, the absence of HTTPS and modern security headers significantly lowers the security posture, requiring urgent remediation. Overall, the site is functional and credible but needs critical security improvements to ensure safe user interactions and compliance with best practices.

F

FX

fxnetworks.com

0

FX Networks operates as a prominent media and entertainment company specializing in critically acclaimed dramas, comedies, and original documentaries. The website serves as the official platform for FX and FXX, offering streaming content primarily through Hulu. The company holds a strong market position with a focus on original programming and a partnership with Hulu for content distribution. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Akamai CDN and AWS Lambda for hosting and content delivery, indicating a mature digital infrastructure. However, the security posture is weak due to the absence of a valid SSL certificate and HTTPS support, which is a critical vulnerability. Privacy compliance is also lacking, with no visible privacy or cookie policies and no explicit contact information for users. Overall, while the website excels in content quality and business credibility, it requires urgent improvements in security and privacy compliance to enhance trust and protect user data.

T

The Walt Disney Company

disneynow.com

0

DisneyNOW is a digital streaming platform operated by The Walt Disney Company, offering a wide range of Disney Channel, Disney Junior, and Disney XD shows, movies, and video clips targeted primarily at children and families. The platform is well-branded and professionally designed, providing an excellent user experience with clear navigation and rich content offerings. Technically, the site uses modern web technologies including React, Nginx, Varnish Cache, and AWS hosting, along with performance monitoring via New Relic. However, the site suffers from a critical security issue due to an invalid SSL certificate, which undermines the security posture and user trust. Privacy policies and terms of service are comprehensive and properly linked, indicating good compliance with privacy regulations such as GDPR. Overall, the site is a high-quality media platform with strong business credibility but requires urgent remediation of its SSL configuration to improve security and trust.

REO AG is a well-established German family-owned manufacturing company specializing in inductive, resistive, and electronic components with a history dating back to 1925. The company operates internationally with subsidiaries across Europe, North America, Asia, and the Middle East, serving diverse industrial sectors including transportation, energy, medical technology, and defense. Their business model focuses on B2B supply of customized and standard components, emphasizing innovation, quality, and sustainability. Technically, the website is built on WordPress with modern plugins and SEO tools, offering a professional and content-rich user experience. However, the absence of a valid SSL certificate and HTTPS support is a significant security shortfall, exposing the site to risks and reducing trust. Privacy policies are comprehensive and GDPR compliant, but cookie consent mechanisms are missing. Overall, the company demonstrates strong business credibility but needs urgent improvements in security infrastructure to align with best practices.

C

CEATL

ceatl.eu

0

CEATL is a well-established international non-profit association based in Belgium, serving as a platform for literary translators’ associations across Europe. Founded in 1993, it provides advocacy, resources, and information exchange to improve the status and working conditions of literary translators. The website targets translators, associations, publishers, and other stakeholders interested in literary translation and European cultural policies. Technically, the site is built on WordPress with a modern theme and plugins, but it suffers from a critical security issue due to the absence of a valid SSL certificate, resulting in no HTTPS support. This significantly impacts the security posture and user trust. The site includes rich content, structured data, and active social media integration, reflecting good digital maturity. However, privacy compliance is partial, with no cookie consent mechanism despite the use of tracking tools like Google Analytics and StatCounter. Overall, the site is professional and credible but requires urgent security improvements to protect user data and enhance trust.

U

Universiteit Utrecht

uu.nl

0

Universiteit Utrecht is a large, internationally recognized research university based in the Netherlands, providing higher education and research services primarily to students and academic professionals. The website is built on Drupal 10 with modern JavaScript libraries and integrates Google Tag Manager for analytics. Despite rich content and excellent design quality, the site lacks a valid SSL certificate and does not enforce HTTPS, which is a critical security shortfall. No advanced security headers or incident response policies are publicly disclosed, indicating room for improvement in security posture. Privacy policy is present and appears GDPR compliant, but no cookie consent mechanism was detected. Overall, the website is professional and trustworthy but requires urgent security enhancements to protect user data and improve compliance.

K

KU Leuven

kuleuven.be

0

KU Leuven is a prestigious and internationally recognized university based in Belgium, offering a broad range of educational and research services. The website reflects a mature institution with a strong market position in higher education, targeting students, researchers, alumni, and staff. The digital presence is well-structured, with comprehensive content and consistent branding. Technically, the site uses the Plone CMS and modern web technologies, but suffers from critical SSL/TLS configuration issues that undermine its security posture. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. However, the absence of a valid SSL certificate and modern TLS protocols significantly reduces the site's security score and exposes users to risks. Overall, the site is professional and trustworthy but requires urgent security improvements.

P

Pluck

pluckvermont.com

0

Pluck is a small graphic design studio based in the United States, specializing in branding, website design, advertising, and digital production services. The company targets businesses and organizations seeking strategic brand development and creative design solutions. Their website showcases a portfolio of featured work and provides contact forms for client inquiries. Technically, the site is built on WordPress, hosted on WP Engine with Cloudflare CDN, and uses popular plugins such as LayerSlider and Contact Form 7. However, the website lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security concern. Additionally, no privacy, cookie, or terms of service policies are present, indicating poor privacy compliance. The security posture is weak due to missing modern TLS protocols and security headers. Overall, the site is functional with good design and content quality but requires urgent improvements in security and privacy compliance to enhance trust and protect user data.

O

OK Compliance s.r.l.

okcompliance.it

0

OK Compliance s.r.l. is a small Italian startup and benefit company specializing in sustainable compliance solutions tailored for SMEs and larger enterprises, focusing on HR legal updates, whistleblowing outsourcing, and GDPR compliance packs. The company leverages technology and legal expertise to provide effective and convenient compliance services primarily targeting businesses in Northeast Italy. The website reflects a professional and consistent brand image with clear service offerings and relevant content for its audience. Technically, the website runs on PHP 7.3.33 with nginx and Plesk hosting, using modern JavaScript libraries such as animejs and slim-select for UI enhancements. DNS is managed via Cloudflare, and SPF records are correctly configured. However, the site lacks HTTPS support, which is a critical security deficiency. Performance data is missing, but the site shows basic mobile optimization and accessibility features. From a security perspective, the absence of a valid SSL/TLS certificate and HTTPS support severely impacts the security posture, exposing users to risks. No advanced security headers or incident response information is present. Privacy compliance is well addressed with comprehensive privacy and terms documents, though no cookie consent mechanism is implemented. Contact information is clearly provided, enhancing business credibility. Overall, the website scores moderately due to strong content and business clarity but is critically impacted by missing HTTPS. Strategic improvements in security infrastructure and privacy mechanisms are recommended to enhance trust and compliance.

T

Treviweb SAS di Spolitu Francesco & C.

treviweb.it

0

Treviweb is a small Italian technology company specializing in website creation, software development, mobile app development, web marketing, and hosting services. Established since 2005, it has a mature domain and a clear market presence targeting businesses and private clients seeking digital solutions. The website is professionally designed with good content relevance and clear navigation, supporting a positive user experience. Technically, the site uses a WordPress CMS with modern frameworks like Bootstrap and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. However, the absence of a valid SSL certificate and HTTPS is a critical security shortfall, exposing users to risks and impacting trust. Privacy compliance is well addressed through Iubenda policies and consent management. Overall, the business credibility is moderate, supported by clear contact information and social media presence.

T

Team23 Srl

dcredit.it

0

DCredit is a specialized ERP software solution designed for credit recovery agencies, developed and operated by Team23 Srl, an Italian company. The platform offers a fully web-based system integrating CRM, AI-driven analytics, compliance automation, and invoicing modules to streamline business processes and improve productivity. The website presents a professional and consistent brand image targeting financial service providers in Italy. Technically, the site uses modern frontend technologies such as Bootstrap and Google Fonts, hosted behind Cloudflare DNS with a dedicated IP server. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the security posture. The site lacks essential compliance documents such as privacy and cookie policies, which is a notable gap given GDPR requirements. Contact information is limited to email addresses without phone or physical address details, reducing direct communication channels. Overall, the website is functional and informative but requires urgent security and compliance improvements.

ViaggiaTreno is a web service associated with Trenitalia, Italy's main train operator, providing train travel information primarily for Italian train travelers. The website content is minimal, consisting of a redirect to another page, with no visible user-facing content or interactive elements. The domain is mature and consistent with the business's history, but the digital presence is underdeveloped. Technically, the site lacks a valid SSL certificate and does not support any TLS protocols, resulting in no HTTPS security. While some security headers are present, the overall security posture is weak due to the absence of proper SSL/TLS configuration and modern security practices. Performance data is missing, indicating no real content delivery or slow response. From a security and compliance perspective, the site does not provide privacy or cookie policies, nor any contact or incident response information. This lack of transparency and minimal content reduces trustworthiness and compliance with GDPR and other regulations. The domain registration is consistent and legitimate, but the imminent expiry date poses a risk if not renewed. Overall, the website requires significant improvements in content delivery, security configuration, and compliance documentation to enhance user trust and meet modern web standards.