Security Directory

I

Interlake – Your IT Crew

interlake.net

0

Interlake is a well-established German IT service provider specializing in cloud architecture and managed services, particularly focusing on Microsoft Azure and STACKIT platforms. The company offers development, migration, and 24/7 operational support, positioning itself as a premium provider in the cloud hosting and IT services market. The website reflects a professional and consistent brand image with good content quality and clear messaging targeted at business clients seeking advanced cloud solutions. Technically, the site is built on WordPress with the Divi theme and integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, HubSpot, and Matomo, indicating a mature digital infrastructure. Security posture is solid with HTTPS enabled and domain transfer protections in place, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is supported by a cookie consent mechanism, but lacks visible privacy policy and terms of service pages. Overall, the website and domain data suggest a trustworthy and credible business with room for enhanced transparency in security and privacy documentation.

I

In2Retail

in2retail.nl

0

In2Retail is a small-sized Dutch company specializing in the deployment and operation of ATMs across several European countries including the Netherlands, Denmark, Ireland, Portugal, and Spain. Their business model focuses on providing cost-free ATM installations with full service contracts, supplemented by advertising opportunities on the ATM screens. The company positions itself as an Independent ATM Deployer, catering primarily to businesses and locations seeking to offer ATM services and advertising to their customers. The website is professionally designed using Joomla CMS and incorporates common web technologies such as jQuery and Bootstrap. It supports multiple languages and provides clear contact information, enhancing user accessibility and trust. From a security perspective, the site uses HTTPS and DNSSEC, but lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with a privacy policy and terms of service, though no cookie consent mechanism is present. Overall, the website demonstrates a good level of digital maturity with room for improvement in security and privacy compliance.

A

A.S.O.

asocorporatechallenges.com

0

A.S.O. Corporate Challenges is a medium-sized French company specializing in organizing corporate team building and hospitality events linked to prestigious international sporting events such as marathons, golf tournaments, and cycling races. The website is professionally designed using Drupal 7 CMS and incorporates modern tracking and consent tools like Google Tag Manager and OneTrust. While the site provides detailed event information and external links to partner resources, it lacks explicit privacy and terms of service documentation, which are critical for compliance and user trust. Security posture is moderate with some best practices observed, but improvements are needed in DNS security and HTTP headers. Overall, the domain registration is consistent with the business profile, and no blocking or WAF mechanisms hinder content access.

Peek & Cloppenburg operates a large-scale e-commerce platform specializing in fashion retail, offering a wide range of clothing, shoes, and accessories from over 300 top brands. The company targets a broad general audience in Germany and maintains a strong market position as a well-established fashion retailer with both online and physical store presence. The website demonstrates a high level of digital maturity, utilizing modern web technologies such as Next.js and React, along with marketing and consent management tools like Kameleoon and Cookielaw.org. The site is mobile-optimized and provides a professional user experience with clear navigation and comprehensive product categorization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security best practices like security headers and explicit incident response contacts are not evident. Privacy compliance is moderate due to the absence of explicit privacy and cookie policies in the provided content. Overall, the website is trustworthy and professionally managed, with room for improvement in privacy transparency and security disclosures.

D

Deichmann

deichmann-karriere.de

0

Deichmann Karriere is the official career portal for Deichmann, a leading European shoe retailer with over 100 years of history and a large international presence. The website provides comprehensive information about job opportunities across retail stores, central offices, and logistics centers, targeting a broad audience including students, experienced professionals, and refugees. Technically, the site is built on WordPress with modern JavaScript libraries and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar. Security posture is solid with HTTPS and Cloudflare DNS/CDN, but some security headers and contact forms require attention. Privacy compliance is partially implemented with a cookie consent mechanism but lacks visible privacy policy and terms of service pages. Overall, the site is professional, well-branded, and trustworthy, though improvements in compliance and form functionality are recommended.

I

INTERSPORT Deutschland eG

intersport.de

0

INTERSPORT Deutschland eG operates a comprehensive online retail platform specializing in sportswear and sports equipment, targeting general consumers in Germany. The website demonstrates a mature digital infrastructure with modern technologies such as Algolia search, Usercentrics consent management, and Google Tag Manager for analytics and marketing. The platform is well-optimized for performance, mobile responsiveness, and accessibility, providing a high-quality user experience. Security posture is strong with HTTPS enforcement and consent-based tracking, although explicit security policies and incident response information are not publicly detailed. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate business. Strategic recommendations include publishing explicit security policies and vulnerability disclosure mechanisms to further enhance trust and compliance.

T

TEDi

tedi.com

0

TEDi is a retail company operating a network of shops offering a variety of consumer goods. The website provides comprehensive information about the company, including its history, quality standards, sustainability initiatives, expansion conditions, and store locator services. The site targets a general audience interested in retail shopping and potential business partners for expansion. The business model focuses on retail sales through physical stores with an international presence, primarily in Germany and neighboring countries. Technically, the website is built on TYPO3 CMS, utilizing modern JavaScript libraries such as jQuery and Slick Slider for enhanced user experience. The site is mobile optimized, SEO friendly, and includes multilingual support. Performance is moderate with good accessibility features, although some improvements could be made. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks published security policies, incident response information, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for commercial domains. Overall, TEDi's website demonstrates a professional and trustworthy online presence suitable for its retail business. Strategic recommendations include publishing security policies, enhancing accessibility, and providing direct security contact information to improve transparency and trust.

M

MediaMarktSaturn

mediamarktsaturn.com

0

MediaMarktSaturn is a leading European consumer electronics retailer operating a professional and well-structured website built on Drupal 10. The company emphasizes sustainability, social responsibility, and customer experience through innovative retail concepts such as Space-as-a-Service. The website demonstrates a mature digital infrastructure with modern technologies and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security best practices like DNSSEC and security policy disclosures could be improved. Privacy compliance is well addressed with GDPR-aligned policies and consent management. Overall, the site reflects a trustworthy and credible business with strong branding and market position.

S

Schwarz IT KG

jobs.schwarz

0

Schwarz Corporate Solutions operates as a career and corporate solutions portal under the Schwarz Group, a major retail conglomerate based in Germany. The website offers a range of career opportunities targeting students, graduates, experienced professionals, and career changers. The company emphasizes a collaborative work environment across various corporate functions such as controlling, mobility, real estate, purchasing, HR, finance, taxes, and gastronomy. The site is professionally designed with consistent branding and provides a modern user experience with mobile optimization and clear navigation. Technically, the site uses modern JavaScript modules, a custom framework, and integrates with SAP SuccessFactors for career management. Security posture is good with HTTPS enforced and cookie consent implemented via OneTrust, though some security headers and policies could be improved. No direct contact information or privacy policy pages were found in the provided content, indicating areas for compliance enhancement. WHOIS data confirms the domain's legitimacy and consistency with the corporate identity. Overall, the site is a trustworthy and professional portal for career opportunities within the Schwarz Group.

L

Lidl

lidl.de

0

Lidl operates as a major retail supermarket chain in Germany with both physical stores and an online shopping platform. The website reflects a professional retail business model targeting general consumers with a focus on local and online shopping convenience. The company maintains consistent branding and provides comprehensive privacy and cookie policies compliant with GDPR, including consent mechanisms for tracking and personalization. Technically, the website uses modern JavaScript libraries and tracking tools such as Kameleoon and OneTrust, along with YouTube integration for video content. The site is mobile-optimized and accessible, with good SEO practices and structured data for organization information. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and a public security policy or incident response contact suggests areas for improvement. Privacy compliance is strong, with clear policies and consent management. Overall, the website is trustworthy and professional, suitable for a large enterprise retail business. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

Kaufland Marketplace GmbH operates a large e-commerce retail platform primarily serving the German market. The company provides an online marketplace for various products, targeting a general audience. The website is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge, which prevents full content and policy analysis. The technical infrastructure includes modern frameworks such as Nuxt.js and Cloudflare security services, indicating a mature digital presence. However, the lack of visible privacy, cookie, and terms of service policies on the challenge page limits assessment of compliance and user experience. Security posture benefits from Cloudflare's WAF and bot mitigation but lacks visible security headers and incident response information. Overall, the site is trustworthy but currently blocked, resulting in a low AI score and incomplete analysis.

D

dm-drogerie markt

dm-jobs.com

0

The website www.dm-jobs.de serves as the official career portal for dm-drogerie markt, a large retail chain specializing in drugstore products primarily in Germany and other European countries. It offers comprehensive job listings, apprenticeship opportunities, and career information targeting job seekers, students, and young professionals. The site is well-branded and consistent with dm's corporate identity, providing a professional user experience with clear navigation and mobile optimization. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, hosted on Amazon AWS infrastructure, and integrates a cookie consent management platform (Usercentrics) to comply with privacy regulations. The use of Storyblok CMS is inferred from HTML classes, indicating a modern content management approach. Performance is moderate with good SEO and accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration and DNS setup are consistent with a legitimate enterprise website. Overall, the website presents a low-risk profile with good business credibility and privacy compliance, though improvements in security policy transparency and security headers are recommended to enhance trust and protection.

S

Scalingo

scalingo.com

0

Scalingo is a reputable European Platform as a Service (PaaS) provider specializing in cloud hosting for developers with a strong emphasis on data sovereignty and compliance. The company holds key certifications such as ISO 27001 and HDS, positioning itself as a trusted provider for sectors including healthcare, government, and web agencies. Their platform supports multiple programming languages and databases, enabling rapid deployment and scaling of applications. The website reflects a mature business with professional design, clear navigation, and comprehensive service offerings.

T

ToDesktop

todesktop.com

0

ToDesktop is a technology company offering a platform that converts web applications into cross-platform desktop applications with native features. The website is professionally designed, targeting developers and software teams seeking to quickly create desktop apps from existing web codebases. The platform supports Windows, Mac, and Linux and provides both a code-optional drag & drop builder and desktop APIs for customization. Technically, the site uses modern frameworks such as Svelte and Electron, hosted likely behind Cloudflare, and employs Google Analytics for user tracking. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security headers and published privacy or cookie policies. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and raising questions about domain registration legitimacy. Overall, the site is functional and professional but would benefit from improved transparency and compliance documentation.

Y

YouShouldAsk B.V.

youshouldask.ai

0

YouShouldAsk B.V. operates a sophisticated AI-driven customer service platform tailored for e-commerce businesses, offering 24/7 AI agents that handle customer inquiries, product advice, and lead generation. The company is positioned as a market leader in the Dutch e-commerce AI customer service space, with multiple integration partners and notable client case studies demonstrating effectiveness and customer satisfaction. The platform is built on modern web technologies with strong performance and mobile optimization, supported by advanced monitoring tools like New Relic and Leadinfo. Security posture is solid with HTTPS and monitoring but lacks some advanced security headers and explicit incident response policies. The domain is newly registered with privacy protection, consistent with the company's recent founding. Overall, the website and business present a professional, trustworthy, and technically mature profile suitable for its target market.

W

WestCord Hotels

westcordhotels.de

0

WestCord Hotels operates a multilingual WordPress-based website targeting travelers interested in unique hotel accommodations across various locations in the Netherlands. The site offers booking services and presents itself as a medium-sized hospitality business with consistent branding and good content quality. The technical infrastructure leverages modern web technologies including WooCommerce for e-commerce capabilities, Google Tag Manager, Facebook SDK for marketing, and Cookiebot for cookie consent management. SEO and social media integration are well implemented through structured data and Open Graph metadata. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though the absence of explicit privacy policy, terms of service, and incident response information indicates room for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and safe for general audiences.

W

WestCord Hotels

westcordhotels.com

0

WestCord Hotels is a well-established Dutch hotel group operating 16 hotels across major cities and regions in the Netherlands. Their official website provides comprehensive information about their hospitality services, targeting tourists and business travelers. The company has a solid market position as a recognized hotel group with a medium-sized business footprint. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, Facebook SDK, and Cookiebot for GDPR-compliant cookie consent. The site is mobile-optimized and SEO-friendly, offering a good user experience. Security-wise, the site uses HTTPS and implements cookie consent but lacks explicit security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-term registration consistent with the business history. Overall, the website demonstrates a mature digital presence with room for improvement in security transparency and advanced header configurations.

M

Mews

mews.com

0

Mews is a cloud-native hospitality management software provider specializing in property management systems (PMS) that automate operations and enhance guest experiences. The company targets hospitality businesses such as hotels and hostels, positioning itself as an innovative SaaS provider in the hospitality technology sector. The website reflects a professional and modern digital presence, leveraging HubSpot CMS, Tailwind CSS, and multiple marketing and analytics tools including Google Tag Manager and OneTrust for privacy compliance. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not published. The absence of WHOIS data limits domain trust assessment but the overall website professionalism and compliance suggest a legitimate business. Strategic recommendations include publishing security policies, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

C

CATSone

catsone.nl

0

CATSone is a Netherlands-based technology company specializing in recruitment software, offering a comprehensive Applicant Tracking System (ATS) and CRM tailored for HR professionals and recruiters. The company serves a global audience with over 10,000 users in more than 80 countries, providing a SaaS model with integrations to popular platforms such as LinkedIn, Google Drive, MailChimp, and Indeed CV Search. Their website reflects a mature digital presence with responsive design, multilingual support, and SEO optimization. Technically, the site is built on WordPress with modern plugins and scripts, ensuring a good user experience and moderate performance. Security posture is strong with HTTPS enforced and reCAPTCHA implemented, though explicit security headers and incident response policies are not evident. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

Fryslân Veilig

fryslanveilig.nl

0

Fryslân Veilig is a regional government safety information platform focused on providing residents of Friesland, Netherlands, with timely updates on incidents, risks, and safety advice. The website serves as a trusted source for public safety information, featuring recent incident notifications, news, and guidance on emergency preparedness. The platform leverages modern web technologies including Drupal 10, Cookiebot for cookie consent management, and Monsido for accessibility and analytics. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and DNSSEC enabled, though additional HTTP security headers could enhance protection. Privacy compliance is strong, with a comprehensive cookie policy and consent mechanism in place. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, trustworthy, and aligns well with its public service mission.

D

Digitaliseringsdirektoratet

uustatus.no

0

The website uustatus.no is a Norwegian government digital service platform managed by Digitaliseringsdirektoratet. It provides a login portal for accessibility declarations and supplier evaluations, primarily targeting public sector entities and private ICT solution providers used in the public sector. The platform integrates with ID-porten, a trusted Norwegian authentication service, ensuring secure user access. The site is built on Drupal 10, leveraging modern web technologies and providing a professional and accessible user experience. Privacy and cookie policies are present, though no explicit cookie consent mechanism is implemented. Security policies and incident response information are not publicly available, indicating room for improvement in transparency and compliance. Overall, the site demonstrates a solid business credibility and technical foundation appropriate for a government service.

B

Benify AB

benify.no

0

Benify AB operates a leading global employee benefits and total rewards platform, targeting employers and HR professionals worldwide. The company positions itself as a market leader with a comprehensive SaaS offering that enhances employee engagement through personalized benefits. The website reflects a mature digital presence with professional design, SEO optimization, and multi-language support. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Tag Manager and Cookiebot for privacy compliance. Security posture is strong with HTTPS and standard security headers, though explicit security policies and incident response contacts are not publicly available. The absence of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy, but the website content and branding strongly indicate a legitimate and established business. Overall, the site demonstrates a solid digital maturity with room for improvement in transparency and compliance documentation.

F

Frende Forsikring

frende.no

0

Frende Forsikring is a Norwegian insurance company offering a wide range of insurance products including car, travel, home contents, life, and health insurance. The company positions itself as a customer-centric insurer with a strong emphasis on ease of use and safety, supported by awards for best insurance and customer service. The website reflects a mature digital presence with modern technologies, responsive design, and comprehensive content tailored for both private individuals and businesses in Norway. Technically, the site uses modern JavaScript modules, SVG graphics, and integrates Google Analytics 4 for user insights. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website content and branding. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details.

T

Tryg Forsikring

tryg.no

0

Tryg Forsikring is a major Norwegian insurance company providing a range of insurance products for individuals and families, including property and personal insurance. The website is professionally designed, with consistent branding and clear content targeting Norwegian customers. It offers online insurance services with benefits such as a 10% online discount. The company maintains a strong market position in the Norwegian finance sector. Technically, the website uses modern web technologies including Drupal CMS, Bootstrap for responsive design, and integrates advanced tag management and analytics tools such as Tealium and Adobe Experience Cloud. The site is hosted on Amazon Web Services, ensuring scalability and reliability. Mobile optimization and accessibility features are well implemented, contributing to a good user experience. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism compliant with GDPR. However, security headers are not explicitly detected, and no public security policy or incident response contact is found. The absence of WHOIS data suggests privacy protection for domain registration, which is justified for a large financial institution. Overall, the security posture is strong but could be enhanced by publishing additional security policies and headers. The overall risk assessment is low, with no critical vulnerabilities or suspicious indicators detected. Strategic recommendations include improving security header implementation, publishing a vulnerability disclosure policy, and enhancing contact information transparency to further build trust and compliance.

V

VMware by Broadcom

vmware.com

0

VMware by Broadcom is a leading enterprise technology company specializing in cloud computing, virtualization, and infrastructure optimization. The website presents a professional and consistent brand image aligned with its parent company Broadcom. The site targets enterprise customers and IT professionals seeking advanced cloud, networking, and security solutions. Technically, the website uses modern frameworks such as React and integrates industry-standard tools like Google Tag Manager and OneTrust for analytics and cookie consent management. Performance and mobile optimization are good, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and cookie consent implemented; however, explicit security headers and published security policies are absent in the provided data. WHOIS data is missing or inaccessible, which is unusual for a major enterprise domain but may be due to registry or privacy policies. Overall, the website is trustworthy, professional, and well-maintained, with minor gaps in security transparency and privacy documentation.

T

Tealium Inc.

tealium.com

0

Tealium Inc. is a well-established enterprise founded in 2007, specializing in real-time customer data integration and management through its Customer Data Platform (CDP) and tag management solutions. Positioned as a leader in the market, recognized by Gartner's Magic Quadrant, Tealium serves a global enterprise audience with a comprehensive suite of products designed to unify, activate, and leverage customer data across multiple touchpoints in real-time. Their offerings include advanced AI data streaming, cloud data activation, and privacy-first healthcare solutions, targeting marketing, IT, and data analytics teams. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Marketo forms, and Tealium's own tag management scripts. The site demonstrates good SEO, accessibility, and mobile optimization, with a moderate performance profile. Hosting and domain registration are consistent with enterprise standards, leveraging Amazon Registrar and AWS DNS infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and a published security.txt file. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear policies and GDPR adherence. Contact information is transparent, including phone and physical address, enhancing business credibility. Overall, Tealium's website reflects a mature, professional, and trustworthy enterprise with a strong market position in customer data platforms. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and enabling DNSSEC to further strengthen security posture.

N

Nordea

nordea.pl

0

Nordea is a leading Nordic financial services group with a significant presence in Poland since 2010, providing essential support and services across various business areas. The website targets professionals and job seekers interested in careers at Nordea Poland, highlighting its recognition as a Top Employer in 2025. The technical infrastructure is modern, leveraging Drupal 11 CMS, with good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and privacy compliance, although explicit incident response and vulnerability disclosure information are not publicly available. Overall, the website reflects a mature, professional financial institution with a solid digital presence.

N

Nordea Rahoitus Suomi Oy

nordearahoitus.fi

0

Nordea Rahoitus Suomi Oy operates the website www.nordeafinance.fi, providing consumer financial services primarily focused on auto financing, credit cards, and consumer loans in Finland. As part of the Nordea Group, it holds a strong market position in the Nordic financial sector, targeting private individuals with a comprehensive range of financing options and digital self-service platforms. The website supports multiple languages (Finnish, Swedish, English) and integrates with Nordea's broader digital ecosystem, including online banking and customer profile services. Technically, the site uses a proprietary CMS (dotXX2017), modern web standards, and is optimized for mobile devices, ensuring a good user experience and accessibility.

N

Nordea Finans Danmark A/S

nordeafinans.dk

0

Nordea Finans Danmark A/S operates as a financial services provider specializing in consumer and business financing solutions, including car loans, leasing, and daily economy loans. The company is a subsidiary of the larger Nordea group, a well-established financial institution in Denmark. The website targets private individuals and businesses, offering a range of financing products with a clear focus on vehicle and consumer financing. The site is professionally designed, with consistent branding and comprehensive content in Danish, supporting a strong market position in the Danish finance sector. Technically, the website is built on a modern infrastructure using JavaScript, SVG, and web fonts, likely managed through SDL Tridion CMS. It features responsive design optimized for mobile devices and includes SEO best practices. The site integrates third-party marketing and analytics tools such as Tealium, and employs cookie consent mechanisms to comply with GDPR requirements. From a security perspective, the website enforces HTTPS and provides secure login portals for customers. While explicit security headers are not visible in the HTML content, the site demonstrates good security hygiene with no exposed sensitive data or vulnerabilities detected. Privacy policies and cookie policies are clearly presented, indicating compliance with GDPR. However, no explicit security policy or incident response information is published. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. The lack of WHOIS data is attributed to privacy protection, which is justified for a financial institution. Recommendations include enhancing security headers and publishing a vulnerability disclosure policy to further improve trust and security posture.

N

Nordea Finans Sverige AB (publ)

nordeafinans.se

0

Nordea Finans Sverige AB (publ) operates the website www.nordeafinance.se, providing financial services primarily focused on private customers in Sweden. The company offers vehicle financing, credit cards, loans, and related financial products. The website is professionally designed, mobile-optimized, and consistent with the Nordea brand, indicating a strong market position within the Nordic financial sector. The presence of multiple login portals and comprehensive customer service options reflects a mature digital infrastructure supporting diverse customer needs. Technically, the site uses modern web standards, including HTTPS, secure cookies, and a custom CMS framework, ensuring a reliable user experience. Security posture is strong with appropriate headers and no visible vulnerabilities, though explicit security policy and incident response information are not published. Privacy compliance is well addressed with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site represents a trustworthy and professional financial services platform with room for improvement in transparency around security policies and incident response.

N

Nordea Funds Oy

nordeafunds.com

0

Nordea Funds Oy operates as a Nordic investment fund company focused on creating added value for investors through reliable, transparent, and responsible investment practices. The company leverages the extensive investment expertise of the Nordea Group, positioning itself strongly in the Nordic financial market. The website is professionally designed using Drupal 10, featuring comprehensive content about funds, responsible investing, and market insights, primarily targeting Finnish-speaking investors and savers. Technically, the site employs modern analytics and tag management tools such as Adobe Analytics and Tealium, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers are not evident. WHOIS data is unavailable, likely due to privacy protection, but the website's branding and content align with a reputable financial institution. Overall, the site presents a trustworthy and professional digital presence for Nordea Funds Oy.

Nordea Asset Management operates as a major Nordic asset manager with a global footprint, focusing on responsible investment solutions that combine attractive returns with sustainability. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern technologies and third-party marketing and analytics tools. Security posture is strong with HTTPS and secure form handling, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly, but the website's professional content and branding strongly support legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant, supporting good privacy practices.

N

Nordea Bank Oyj

nordea.fi

0

Nordea Bank Oyj is the largest bank in the Nordic region, offering a comprehensive range of banking and financial services to private individuals and businesses. Their website provides extensive information on retail banking, loans, investments, insurance, and digital banking services, supporting multiple languages to cater to their diverse customer base. The company maintains a strong market position with a focus on digital accessibility and customer service excellence. Technically, the website is built on a custom CMS framework (dotXX2017) with modern web technologies, optimized for performance and mobile use. Security is robust, featuring HTTPS, security headers, and secure login mechanisms including multi-factor authentication via the Nordea ID app. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site reflects a mature digital infrastructure and a high level of professionalism, trustworthiness, and regulatory compliance.

N

Nordea Danmark, Filial af Nordea Bank Abp, Finland

nordea.dk

0

Nordea Danmark is a major Nordic financial institution operating as a branch of Nordea Bank Abp, Finland. The website serves private and business customers in Denmark, offering a comprehensive range of banking and financial services including online banking, loans, savings, investments, pensions, insurance, and digital payment solutions. The site is well-branded, professionally designed, and provides clear navigation and extensive product information. Technically, the site uses modern web technologies and a proprietary CMS framework, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, security headers, and secure login portals, although explicit security policies and incident response details are not published. Privacy compliance is evident with GDPR-aligned privacy and cookie policies and consent mechanisms. The absence of WHOIS data limits domain registration verification, but the overall trust indicators and business presence strongly support legitimacy. Recommendations include publishing security policies, vulnerability disclosure information, and improving transparency on data protection officer contacts.

L

Loox

loox.io

0

Loox is a well-established social proof marketing platform specializing in product reviews and customer referrals for Shopify and Shopify Plus merchants. Serving over 100,000 merchants, it offers visual review collection and referral marketing tools to enhance brand credibility and sales. The website demonstrates a professional and consistent brand presence with excellent design and user experience, targeting e-commerce businesses on Shopify. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and multiple analytics and advertising pixels, indicating a mature digital infrastructure. Security posture is good with HTTPS and standard tracking protections, though explicit security policies and incident response contacts are absent, representing an area for improvement. Privacy compliance is basic, lacking visible privacy and terms policies, which should be addressed to meet regulatory standards fully. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

ProfitMetrics

profitmetrics.io

0

ProfitMetrics.io is a Denmark-based SaaS company specializing in profit bidding and POAS® marketing software for e-commerce businesses and marketing agencies. The platform offers real-time profit tracking, server-side conversion tracking, and integration with major advertising channels like Google Ads and Facebook Ads. The company is well-positioned in the e-commerce analytics market, supported by strong partner certifications and a growing customer base. Technically, the website is built on Webflow CMS with modern JavaScript libraries and integrates advanced marketing and analytics tools such as Google Tag Manager, Sleeknote, and Intellimize. The site is mobile-optimized, fast-loading, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses server-side tracking to enhance data accuracy and privacy compliance. However, explicit security headers and a published security policy or incident response contacts are absent, representing areas for improvement. Privacy and cookie policies are comprehensive and include consent mechanisms, aligning with GDPR requirements. Overall, ProfitMetrics.io demonstrates a high level of professionalism, trustworthiness, and technical maturity, with minor gaps in explicit security documentation. The risk profile is low, but strategic enhancements in security transparency and incident response readiness are recommended.

A

Avada Commerce

avada.io

0

Avada Commerce is a medium-sized e-commerce technology company specializing in marketing automation solutions for Shopify merchants. Founded in 2014, it offers a comprehensive suite of integrated apps including SEO optimization, email marketing, sales boosters, loyalty programs, and store compliance tools. The company has a strong market position with over 300,000 merchants globally and a robust presence in the Shopify ecosystem. Technically, the website is built on WordPress with modern frameworks like UIkit and Yoast SEO, hosted on Cloudways, and optimized for performance and SEO. Security posture is strong with HTTPS, domain locking, and no visible vulnerabilities, though DNSSEC is not enabled and cookie consent mechanisms are missing. Overall, Avada Commerce demonstrates a professional, trustworthy, and technically mature online presence.

The website at radiustheme.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. As a result, no business information, contact details, or policy documents are available for review. The domain is registered with GoDaddy.com, LLC since 2015 and uses SiteGround name servers, indicating a legitimate registration and hosting setup. However, the lack of DNSSEC and absence of security headers suggest room for improvement in domain and web security configurations. The website's technical infrastructure appears basic with no detectable scripts or analytics, and the content quality is poor due to the access restriction. Overall, the site lacks transparency and publicly available information, which limits trust and business credibility assessments.

OpenCart is a well-established open-source e-commerce platform offering a free PHP-based shopping cart solution. It serves a large global user base with over 471,000 eCommerce entrepreneurs and provides a rich ecosystem including a marketplace with thousands of modules and themes, cloud hosting solutions, and both community and dedicated support. The website is professionally designed, mobile-optimized, and integrates modern web technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS and secure payment integrations, though there is room for improvement in security policy transparency and cookie consent mechanisms. WHOIS data is incomplete or unavailable, which slightly impacts trust but does not negate the legitimacy indicated by the website content and external references. Overall, OpenCart presents a credible and professional e-commerce solution with strong community and commercial support.

Z

Zifera

zifera.io

0

Zifera is a small, Netherlands-based company specializing in green web development and digital carbon footprint analytics. Their business model focuses on providing sustainable web and e-commerce development services alongside a SaaS application that helps organizations monitor, optimize, and compensate their digital carbon emissions. The company is positioned as a niche player with a strong emphasis on environmental sustainability and digital responsibility, supported by client testimonials and media features. Technically, the website is built using modern frameworks such as Astro, hosted with Cloudflare DNS services, and employs privacy-friendly analytics via Simple Analytics. The site demonstrates excellent design quality, mobile responsiveness, and SEO optimization, reflecting a mature digital presence for a small company. However, some security best practices like DNSSEC and security headers are not yet implemented. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is partially met with a comprehensive privacy policy but no cookie consent mechanism. The absence of direct contact emails or phone numbers slightly reduces business credibility. Overall, Zifera presents a trustworthy and professional online presence with a clear business focus on sustainability in technology. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance their security posture and compliance standing.

A

ABN AMRO Bank N.V.

abnamro.nl

0

ABN AMRO Bank N.V. is a leading Dutch financial institution specializing in retail banking services for private customers in the Netherlands. The website offers comprehensive information about their banking products including savings, mortgages, loans, investments, and insurance. The bank holds a strong market position as one of the major banks in the country, supported by a large customer base and a well-established brand. The website is professionally designed with consistent branding and clear navigation tailored to its target audience of private individuals.

K

Klimaatplein

klimaatplein.com

0

Klimaatplein is a well-established Dutch platform founded in 2009 that focuses on promoting energy-conscious and CO2-neutral business practices. It offers practical tips, tools such as CO2 calculators, and inspiring case studies to help businesses reduce energy and fuel costs while contributing to climate change mitigation. The website targets businesses and entrepreneurs interested in sustainability and operates primarily in the energy sector within the Netherlands. Technically, the site is built on WordPress with modern SEO and analytics integrations, including Yoast SEO and Google Tag Manager. The site is mobile-optimized and demonstrates good accessibility and performance. Security-wise, the site uses HTTPS with DNSSEC enabled and implements cookie consent mechanisms compliant with GDPR. However, it lacks visible HTTP security headers and a public security policy or incident response information. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security transparency and policy disclosures.

DPG Media operates a privacy consent gate service for its media properties, including trouw.nl. The service is designed to manage user consent for privacy and cookie usage in compliance with GDPR requirements. The page analyzed is a minimal functional gate that blocks access until consent is provided, limiting content visibility and analysis. The technical infrastructure includes JavaScript and Google Tag Manager for tracking, hosted on DPG Media's own domains. The security posture is moderate but lacks visible security headers and explicit privacy or security policies on this page. Overall, the site is consistent with a large media company but the privacy gate limits content and transparency, impacting user experience and compliance visibility.

W

World Resources Institute

wri.org

0

World Resources Institute (WRI) is a globally recognized non-profit research organization dedicated to advancing environmental sustainability, climate action, and equitable development. The organization leverages data, research, and global partnerships to influence policy and catalyze systemic change across sectors such as climate, energy, forests, freshwater, oceans, cities, and finance. WRI maintains a strong international presence with offices and initiatives worldwide, positioning itself as a leader in environmental research and advocacy. Technically, WRI's website is built on Drupal 10, utilizing modern JavaScript libraries and multiple analytics platforms including Google Analytics, Microsoft Clarity, Matomo, and privacy-focused tools like Osano CMP. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Privacy compliance is robust, with clear cookie consent mechanisms and a comprehensive privacy policy. From a security perspective, the site enforces HTTPS and employs reputable third-party services for analytics and consent management. While explicit security headers were not fully confirmed in the provided data, no vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical and justified for a large non-profit entity. Overall, the security posture is strong with room for minor improvements such as explicit security header implementation and vulnerability disclosure mechanisms. The overall risk assessment is low, with the website exhibiting high professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include enhancing security header deployment, establishing a security.txt file for vulnerability reporting, and continuous monitoring of third-party scripts to maintain security integrity.

S

Suomen itsenäisyyden juhlarahasto Sitra

sitra.fi

0

Sitra is a Finnish independent public fund focused on societal renewal and sustainability. The website serves as a platform to communicate their projects, research, and events aimed at future-oriented societal development. The organization targets policymakers, researchers, and the general public interested in sustainability and democracy. Technically, the site is built on WordPress with modern web technologies including Matomo analytics and Typekit fonts, offering good performance and mobile optimization. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers and policies could be improved. Privacy compliance is moderate with a cookie consent mechanism but no explicit privacy or terms of service pages detected in the provided content. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission.

O

Organisation for Economic Co-operation and Development

oecd.org

0

The Organisation for Economic Co-operation and Development (OECD) operates as a leading global policy forum, collaborating with over 100 countries to promote policies that improve economic and social well-being worldwide. The website reflects its authoritative position with comprehensive multilingual content, targeting governments, policymakers, researchers, and the public. The business model centers on policy analysis, data dissemination, and international cooperation facilitation, positioning OECD as a key player in global governance and economic development. Technically, the website leverages a modern infrastructure including Adobe Experience Manager CMS, React.js, and various analytics and optimization tools such as Google Analytics, Visual Website Optimizer, and Crazy Egg. Hosting on Adobe AEM Cloud ensures scalability and reliability. The site demonstrates good performance, mobile optimization, and accessibility, supporting a positive user experience. From a security perspective, the site enforces HTTPS, employs multiple security headers, and avoids exposing sensitive data or vulnerable libraries. While no explicit security policy or incident response contacts are published, the overall posture is strong. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR. Overall, the OECD website is a professional, secure, and trustworthy platform that effectively supports its mission. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and a vulnerability disclosure program to further enhance transparency and trust.

B

Banque de France

ngfs.net

0

The Network for Greening the Financial System (NGFS) is a collaborative network of central banks and supervisors focused on integrating environmental and climate risk management into the financial sector. Launched in 2017 and hosted under the Banque de France Eurosystème brand, the NGFS provides research, scenario analysis, capacity building, and data services to support sustainable finance transitions globally. The website is professionally designed using Drupal 10, with strong branding consistency and comprehensive content targeting financial regulators, policymakers, and researchers. Technical infrastructure includes modern analytics and privacy-compliant cookie management. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, which is a concern but offset by the site's official affiliation and content quality. Overall, the NGFS website demonstrates a mature digital presence aligned with its mission and audience.

I

Inter-American Development Bank

iadb.org

0

The Inter-American Development Bank (IDB) operates as a leading regional development bank focused on improving lives in Latin America and the Caribbean through financial and technical support. The website reflects a mature, enterprise-level organization with a clear mission to reduce poverty and inequality, enhance infrastructure, and support education and health. The digital infrastructure is built on Drupal 10, leveraging modern analytics and consent management tools, indicating a well-maintained and technically sound platform. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting the organization's credibility and market position.

G

GCA.org - The Global Center on Adaptation

gca.org

0

The Global Center on Adaptation (GCA) is a well-established non-profit organization founded in 1995, focused on accelerating climate adaptation solutions worldwide. It operates globally with multiple regional offices and partners, including the African Development Bank. The website reflects a mature digital presence with comprehensive content on climate adaptation programs, youth engagement, and advocacy. Technically, the site is built on WordPress with modern technologies such as Google Analytics, Cookiebot for consent management, and Mapbox for mapping features. The site is fast, mobile-optimized, and SEO-friendly. Security posture is strong with HTTPS enforcement and domain transfer protections, though DNSSEC is not enabled and no explicit security policy or vulnerability disclosure was found. Overall, the domain registration data aligns well with the organization's profile, indicating high legitimacy and trustworthiness.

E

European Bank for Reconstruction and Development

ebrd.com

0

The European Bank for Reconstruction and Development (EBRD) is a prominent international financial institution focused on fostering economic transition and sustainable development across more than 40 economies in three continents. The organization leverages a unique business model combining financing, advisory services, and policy reform to support private sector growth and environmental sustainability. With over €210 billion invested since its founding in 1991, EBRD holds a strong market position as a key development financier. Technically, the website is built on Adobe Experience Manager, utilizing modern web technologies including Adobe Analytics and Adobe Launch for marketing and data collection. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. The presence of comprehensive metadata, structured data, and SEO best practices further enhances its digital maturity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR compliance. While explicit security headers are not visible in the HTML, the use of Adobe's secure platforms and absence of exposed sensitive data indicate a solid security posture. However, the lack of WHOIS data for the domain is unusual and warrants further verification to confirm domain registration legitimacy. Overall, the website presents a professional, trustworthy, and well-maintained digital presence consistent with a large international financial institution. Strategic recommendations include verifying WHOIS registration details, enhancing visible security headers, and implementing a security.txt file to improve vulnerability disclosure transparency.