Other security reports

Y

Your-Run GmbH

your-run.com

10

Your-Run GmbH operates a specialized community app focused on running and triathlon sports, offering a comprehensive event calendar, social community features, and detailed competition statistics. The business targets active runners and triathletes primarily in Germany but with a global event database. The company uses a freemium business model with a premium subscription unlocking advanced features. The website is professionally designed, mobile-optimized, and integrates modern SEO and performance tools.

A

ASC Ulm/Neu-Ulm

asc-ulm-neu-ulm.de

10

ASC Ulm/Neu-Ulm is a well-established German sports club founded in 2011, focusing on running, swimming, and cycling training courses primarily to prepare participants for the Einstein-Marathon. The club offers a variety of courses and community events, serving approximately 2,000 members as of 2016. The website is professionally designed using WordPress and Elementor, providing rich content about training programs, events, and membership details. It integrates with partner event sites and promotes sustainability initiatives. Technically, the site uses modern web technologies and SEO tools but lacks explicit privacy and cookie policies, which are compliance gaps. Security posture is adequate with HTTPS but could be improved by adding security headers and formal policies. Overall, the site is trustworthy and serves its community well but should enhance privacy compliance and security best practices.

B

Bernd Hummel

eurotour25-28.de

10

EuroTour25–28 is a multi-year endurance and climate awareness project led by Ulm-based extreme athlete Bernd Hummel, aiming to connect key European regions through sporting challenges and sustainability advocacy from 2025 to 2028. The project is positioned as a niche initiative promoting European unity and environmental responsibility, supported by partners such as the Einstein-Marathon and Technische Hochschule Ulm. The website is built on WordPress using modern tools like Elementor and Yoast SEO, providing a good user experience with mobile optimization and clear navigation. However, it lacks critical compliance elements such as privacy and cookie policies, and no direct contact information is provided, which limits user trust and GDPR compliance. Security posture is generally good with HTTPS and no visible vulnerabilities, but the absence of security headers and incident response details are areas for improvement.

Y

yorkwachter

ulmer-muensterturmlauf.de

52

Ulmer Münsterturmlauf is a specialized event website promoting the annual tower running race held in Ulm, Germany. The site provides detailed event information, registration links, news updates, and partner information, targeting runners and sports enthusiasts. The business operates as a small, niche event organizer with a focus on local and regional participants, emphasizing sustainability and community engagement. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices. The site is hosted with Cloudflare DNS and uses HTTPS, ensuring secure connections. Security posture is good but could be improved with additional security headers and explicit privacy and cookie policies. No direct contact emails or phone numbers are published, relying on contact forms and newsletter signups. Overall, the website is professional, trustworthy, and safe for general audiences.

U

Ulmer Frauenlauf

ulmer-frauenlauf.de

54

Ulmer Frauenlauf is a regional event organizer focused on women's running events in southern Germany. The website provides comprehensive event information, partner promotion, and registration details, targeting female runners and sports enthusiasts. The site is built on WordPress with Elementor and uses modern SEO practices including structured data. Hosting and DNS are managed via Cloudflare, ensuring good performance and security at the infrastructure level. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are detected, which may pose compliance risks under GDPR. Security posture is moderate with HTTPS enforced but missing security headers and vulnerability disclosure. Overall, the site is professional and trustworthy but could improve privacy compliance and security transparency.

U

Ulmer Firmenlauf

firmenlauf-ulm-neu-ulm.de

53

The Ulmer Firmenlauf website represents a regional corporate running event organizer in southern Germany, focusing on the popular AOK Firmenlauf event. The site provides event information and branding but lacks comprehensive business and contact details. Technically, the website is built on WordPress with Elementor and uses Cloudflare DNS for performance and security. SEO is supported by Rank Math, and analytics are implemented via WordPress.com Stats. Security posture is moderate with HTTPS enabled but missing advanced security headers and policies. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional and professional but could improve transparency and security practices.

Datasport Germany GmbH operates a professional website focused on sports event timing and registration services, primarily targeting event organizers and participants in Germany. The company offers key services including event timing, registration management, live result publishing, and event organization support. The website is well-branded and consistent with the company's identity, reflecting a medium-sized business with a solid market position in the sports event sector. Technically, the website employs modern frameworks such as Bootstrap and Material Design Bootstrap, uses jQuery for interactivity, and leverages Cloudflare for DNS and CDN services. Analytics are handled via Matomo, indicating a moderate level of user tracking. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses Cloudflare services, but lacks explicit security headers and published security policies. Privacy compliance is addressed with clear privacy and cookie policies, though a cookie consent mechanism is absent. No incident response or vulnerability disclosure information is provided, which could be improved. Overall, the website is trustworthy, professional, and safe for general audiences, with no adult or questionable content. The domain registration data aligns with the business identity, supporting legitimacy. Strategic improvements in security policy transparency and privacy consent mechanisms would enhance compliance and trust.

The website redintelligence.net is minimalistic, consisting solely of a frameset that loads an external domain (www.redvertisment.com). There is no substantive content, metadata, or business information present on the site. The domain is registered since 2012 with INWX GmbH and is currently active with no privacy protection enabled. The lack of HTTPS and security headers indicates a weak security posture. No privacy, cookie, or terms of service policies are available, and no contact information or social media presence is found. Overall, the site appears to be a placeholder or redirect without meaningful business presence or user engagement features. Technically, the site uses outdated HTML frameset technology and lacks modern web standards such as responsive design, SEO metadata, or analytics. The hosting provider is inferred from the registrar data but no direct hosting details are available. Performance and accessibility cannot be fully assessed due to minimal content. From a security perspective, the absence of HTTPS and security headers is a significant concern. The domain registration is stable and consistent, but the website itself does not demonstrate compliance with privacy regulations or security best practices. No vulnerabilities or malicious indicators are detected, but the site’s minimalism and redirection behavior warrant caution. Overall risk is moderate due to lack of content and security features. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, improving website content and structure, and implementing security headers to enhance trust and compliance.

3dorszagjaro.hu is a Hungarian website dedicated to providing virtual 3D tours of cultural heritage sites across Hungary. The platform showcases 128 digitized locations, enabling users to explore these sites virtually. The business operates in a niche market focused on cultural tourism and digital heritage preservation. The website is built on WordPress and employs common web technologies such as jQuery, Bootstrap, and Google Analytics for tracking visitor interactions. The site is well designed with good navigation and mobile optimization, providing a positive user experience. However, it lacks some privacy compliance features such as a cookie consent mechanism and does not provide direct contact information or detailed security policies. The domain registration is consistent with the business age and content, indicating legitimacy. Overall, the website demonstrates moderate technical maturity and a good content offering but could improve in security and privacy compliance aspects.

Acconsento.click is a website providing a login portal for a service named Acconsento, likely related to privacy or consent management given the name. The website is relatively new, with domain registration dating back to 2020, and uses modern web technologies including Laravel backend and Vue.js frontend with Element UI components. The site is hosted behind Cloudflare DNS but lacks DNSSEC and visible security headers, indicating room for improvement in security hardening. No public privacy, cookie, or terms of service policies are present on the login page, and no contact or incident response information is provided, which limits user trust and compliance transparency. The content is minimal and focused solely on authentication, with no marketing or descriptive business information available.

The website digiko.tech currently returns a 403 Forbidden error page, indicating that the content is inaccessible to the public. Due to this restriction, no business information, contact details, or policies are available for analysis. The domain is relatively new, registered in August 2022, and managed by Tucows.com Co. with standard domain transfer protections enabled. DNSSEC is not enabled, which is a minor security gap. The hosting appears to be provided by host-anycast.it and host-anycast.com. The lack of accessible content and metadata prevents a full assessment of the company's business model, services, or market position. Technically, the site shows minimal implementation with no visible scripts, forms, or SEO optimizations. Security posture is limited by the absence of security headers and DNSSEC, but no critical vulnerabilities are evident from the data provided.

H

Halmos Béla Program

halmosbelaprogram.hu

44

Halmos Béla Program is a Hungarian cultural initiative dedicated to promoting folk music bands, folk clubs, and related cultural activities. The website serves as an informational and promotional platform targeting folk music enthusiasts and the cultural community in Hungary. It operates as a non-profit cultural program with institutional backing, providing news, event information, and support for folk culture. Technically, the site is built on WordPress with common plugins and scripts such as jQuery, Google Analytics, and Facebook Pixel, indicating a moderate level of digital maturity. The site is mobile-optimized and has good SEO practices but lacks some accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

B

Berliner Philharmoniker

berliner-philharmoniker.de

59

The Berliner Philharmoniker website represents a prestigious cultural institution focused on classical music performances, education, and digital streaming services. The site offers comprehensive information about concerts, ticketing, educational programs, and related media, targeting a broad audience including families, youth, and classical music enthusiasts. The business model centers on live event ticket sales, digital content distribution, and educational outreach, supported by strong partnerships such as Deutsche Bank and dedicated streaming platforms. Technically, the website is built on TYPO3 CMS with modern JavaScript integrations, including Vimeo for video content and Usercentrics for GDPR-compliant consent management. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design. Security posture is solid with HTTPS and consent management, though explicit security headers and incident response policies are absent. Overall, the site is trustworthy, professional, and compliant with privacy regulations, though it lacks explicit privacy and terms of service pages in the analyzed content. Recommendations include enhancing security headers, publishing security policies, and providing clearer contact information for security and privacy concerns.

The website principiaspa.it is currently inaccessible beyond a security challenge page that performs browser integrity checks and automatic redirects, indicating the presence of a Web Application Firewall or similar security mechanism. The visible content is minimal and primarily technical, with no substantive business or contact information available. The site appears to be running outdated CMS versions (Joomla 1.5 and WordPress 2.5), which are known to have multiple security vulnerabilities. The WHOIS data is suspicious, showing a domain creation date in the future (April 2025), which undermines the legitimacy and trustworthiness of the domain. No privacy, cookie, or terms of service policies are present, and no contact details or social media links are found on the page.

The website at geigertamas.hu currently presents an empty HTML page with no visible content, metadata, or interactive elements. This lack of content prevents meaningful analysis of the business, its services, or its market positioning. The domain is privacy protected, which limits the ability to verify registrant details or assess legitimacy. Technically, the site lacks modern web technologies, security headers, and compliance policies, indicating a low level of digital maturity. Security posture is minimal with no evidence of HTTPS or security best practices. Overall, the site appears inactive or a placeholder, posing a low trust level and high risk for users seeking business information or services.

The website nova.ie is currently inaccessible beyond a Cloudflare Turnstile security challenge page, which blocks access to any substantive content. As such, no business descriptions, contact information, or policy documents are available for analysis. The domain is registered since 2010 with Register 365 and uses Cloudflare DNS services, indicating a stable and legitimate registration. The presence of Cloudflare security and analytics scripts suggests a modern security infrastructure, but the lack of accessible content prevents a full assessment of the company's digital maturity or business operations. Security posture appears to rely on Cloudflare's WAF and bot mitigation services, but no further security headers or policies are visible. Overall, the site is currently not analyzable beyond the WAF challenge, limiting insights into compliance, business credibility, or content quality.

Bestattungen Hackmann is a small, family-owned funeral service provider based in Ibbenbüren, Germany, with a long tradition dating back to 1924. The company offers a comprehensive range of funeral-related services including hygienic care of the deceased, traditional and modern burial options, a dedicated farewell house, and funeral pre-planning. The website reflects a professional local business with clear service offerings targeted at residents of the Tecklenburger Land region. Technically, the site is built on the Contao CMS platform, utilizing common JavaScript libraries such as jQuery and Colorbox, hosted by Schlund Technologies. The website is mobile-optimized and provides a good user experience with clear navigation and contact options. Security posture is adequate with HTTPS enforced and a cookie consent mechanism in place, though security headers are missing and no explicit security or incident response policies are published. Overall, the site is trustworthy and compliant with GDPR requirements, but could improve in security best practices and transparency.

C

climatejustice.global

climatejustice.global

70

ClimateJustice.global operates as a specialized Mastodon instance dedicated to climate justice groups and activism. It provides decentralized social media services to a niche community focused on environmental and social justice causes. The platform is administered by a named individual and supported technically by the Fediverse Foundation, emphasizing a non-commercial, donation-supported model. The website content is well-structured, transparent about its principles, moderation policies, and community guidelines, targeting activist groups rather than individuals or political parties. Technically, the site leverages Mastodon and modern web technologies such as React and Webpack, hosted by a reputable foundation, ensuring a stable and community-trusted infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is partial with a privacy policy present but lacking cookie consent mechanisms or terms of service. Overall, the site demonstrates a high level of trustworthiness and professionalism appropriate for a small non-profit community server.

A

Agenti Treviso

agentitreviso.it

58

Agenti Treviso is a well-established association representing commercial agents and representatives in the Province of Treviso, Italy, founded in 1948. The organization provides key services such as legal representation, contractual assistance, and welfare support to its members. The website reflects a professional and consistent brand image, targeting agents of commerce and related stakeholders in the local market. Technically, the site is built on WordPress using Elementor, with modern web technologies and integrations such as Google Tag Manager and Iubenda for privacy compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although formal security policies and incident response contacts are not published. Overall, the site demonstrates good digital maturity and compliance with GDPR, providing a trustworthy and user-friendly experience for its audience.

E

EWIVS Certification

ewivs.com

38

EWIVS Certification is a specialized certification provider focusing on person certifications according to ISO 17024, targeting experts and assessors primarily in Germany and Europe. The company offers transparent, practice-oriented certification processes with personal support and a money-back guarantee for pre-checks, positioning itself as a trusted niche player in the certification market. Technically, the website is built on WordPress using the Divi theme, with modern SEO and cookie consent implementations, and moderate performance and mobile optimization. Security posture is good with HTTPS and cookie consent but lacks some advanced security headers and explicit incident response information. The absence of WHOIS registration data raises legitimacy concerns, though the professional website content and structured data suggest a legitimate business. Overall, the site scores well on content quality and technical implementation but could improve business credibility and security transparency.

D

Degrowth.info | degrowth.info

degrowth.info

50

Degrowth.info is a niche advocacy and informational platform focused on critiquing global capitalism and promoting social and ecological well-being through the degrowth movement. It serves activists, researchers, and the general public interested in environmental justice and systemic change. The website offers a rich library of articles, blog posts, event information, and community engagement tools. Technically, the site uses modern JavaScript frameworks and Matomo analytics, with good mobile optimization and clear navigation, though some accessibility features could be improved. Security posture is moderate with HTTPS and CSRF protections but lacks visible security headers and published privacy or cookie policies, which impacts compliance. Overall, the site is professional and trustworthy with a moderate risk profile due to limited transparency in WHOIS data and privacy policy absence.

D

Donaubüro gemeinnützige GmbH

donaufest.de

49

The Donaufest website represents a well-established international cultural festival organized by the Donaubüro gemeinnützige GmbH in Germany. It showcases a rich program of cultural events spanning ten days and involving ten countries along the Danube River. The festival emphasizes cultural exchange, artistic performances, and family-friendly activities, positioning itself as a significant cultural event in the region with recognition such as the EFFE Label. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and Cloudflare for DNS and CDN services. The site is mobile-optimized and presents good design and navigation, although accessibility could be improved. Security posture is strong with HTTPS and security headers in place, but lacks visible cookie consent and formal security policies. Overall, the site is trustworthy and professional, though it would benefit from enhanced privacy compliance and clearer contact information.

The website www.schwoermontag.com serves as an informational portal dedicated to the Ulmer Schwörmontag and the associated Schwörwoche events. It provides visitors with event details, historical context, and multimedia content to engage local residents and tourists interested in these cultural festivities. The site monetizes primarily through advertising and affiliate ticket sales, positioning itself as a niche local event information provider. Technically, the site employs a standard web stack including Bootstrap and jQuery, with Google Adsense and other ad networks integrated alongside a consent management platform to ensure GDPR compliance. Security posture is moderate, with HTTPS implied but lacking explicit security headers and documented incident response channels. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content appears legitimate and professional. Overall, the site offers a good user experience with clear navigation and relevant content but would benefit from enhanced security practices and verified domain registration.

U

Ulmer Zelt

ulmerzelt.de

46

Ulmer Zelt is a regional cultural event organizer based in Germany, hosting summer music and cultural festivals near the Ausee and Donau rivers. The website serves as an information hub for event programs, ticket sales, and visitor information, targeting a general audience including families and music enthusiasts. The business operates primarily as an event organizer with a focus on community engagement and cultural experiences. Technically, the website is built on WordPress with modern plugins such as Modern Events Calendar and Easy Video Player, and uses the Astra theme with SEO optimization via Rank Math. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security policies. Privacy compliance is minimal, with no visible privacy or cookie policies, which is a notable gap. Overall, the site is professional and trustworthy for its purpose but would benefit from enhanced privacy and security measures.

E

Einstein-Marathon

einsteinmarathon.de

55

Einstein-Marathon is a well-established sports event organizer focusing on one of the largest running events in southern Germany, attracting over 15,000 participants. The website provides comprehensive information about the event, including registration, race details, results, and partner collaborations. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and Cloudflare DNS for performance and security. The security posture is adequate with HTTPS and no visible sensitive data exposure, but lacks advanced security headers and formal privacy and cookie policies, which are critical for GDPR compliance. Overall, the site is professional and trustworthy but should improve privacy compliance and security disclosures to enhance user trust and regulatory adherence.

The website kulturnacht-ulm.de serves as the official portal for the Kulturnacht Ulm/Neu-Ulm 2025 cultural event, providing visitors with information about the event's schedule, partners, and participation opportunities. The site targets a broad audience including families and culture enthusiasts in the Ulm and Neu-Ulm region. The business model centers on event organization and cultural promotion, positioning itself as a regional cultural event organizer. Technically, the site uses traditional web technologies including JavaScript and CSS with custom scripts for image galleries and UI elements. The site lacks modern CMS or frameworks and shows basic mobile and accessibility support. Security posture is limited with no detected security headers or cookie consent mechanisms, and no explicit contact or incident response information is available on the main page. The domain's WHOIS data and name servers indicate local institutional hosting, supporting legitimacy. Overall, the site is functional and content-rich but would benefit from enhanced security and privacy compliance measures.

B

BellaVista – Ulm

bellavista-ulm.de

41

The website bellavista-ulm.de represents a small business presence with a focus on local or regional audience in Germany. The site uses WordPress with the Divi theme and integrates common plugins such as Google Analytics, Google Tag Manager, and cookie consent management. However, the site lacks explicit business descriptive content, contact information, and formal privacy or terms of service pages, which limits its transparency and user trust. Technically, the site is moderately optimized with HTTPS enabled and basic mobile responsiveness, but it lacks advanced security headers and detailed compliance documentation. The security posture is adequate but could be improved with additional headers and incident response information. Overall, the site is functional but would benefit from enhanced privacy compliance and clearer business communication.

The website www.landesmusikrat-mv.de is currently inaccessible due to a Cloudflare security challenge page requiring human verification via Turnstile captcha. This prevents access to any substantive content, metadata, or business information. The domain uses Jimdo name servers, suggesting it is hosted on a website builder platform, likely for a small organization or association. Due to the lack of accessible content, no privacy policies, contact information, or security policies are detectable. The technical infrastructure includes Cloudflare's security services, but no further technology stack details are available. The security posture cannot be fully assessed due to blocked content, but the presence of Cloudflare WAF indicates some level of protection. Overall, the website's risk assessment is limited by inaccessibility, and strategic recommendations focus on enabling content access for proper evaluation.

H

HelloAmplo

helloamplo.be

52

The website 'HelloAmplo' appears to be a business portal or login page built with modern frontend technologies such as Vue.js, Nuxt.js, and Vuetify. The site includes tracking scripts from TikTok and Google Tag Manager but lacks visible privacy, cookie, or terms of service policies. The WHOIS data for the domain is inaccessible due to restrictive domain status 'NOT ALLOWED', which limits the ability to verify domain ownership, age, and legitimacy. This restriction, combined with the absence of contact information and legal disclosures, reduces the overall trustworthiness and compliance posture of the site. Technically, the site is moderately optimized with good mobile responsiveness and modern frameworks, but security best practices such as HTTPS verification and security headers could not be confirmed. Overall, the site presents a basic business presence but lacks critical transparency and compliance elements.

The Deutscher Musikwettbewerb website represents a well-established German non-profit organization dedicated to promoting professional classical music talent through competitions and concert support. The organization, founded in 1975 under the Deutscher Musikrat, targets young professional musicians aged 18 to 30, offering them opportunities such as concert bookings, career advice, and CD productions. The website is professionally designed using TYPO3 CMS and modern JavaScript libraries, providing a rich user experience with clear navigation and relevant content. Privacy and cookie policies are implemented with a compliant opt-in mechanism, reflecting good data protection practices. Technically, the site is hosted on Schlundtech nameservers and uses HTTPS with no visible security vulnerabilities. Analytics are handled via Matomo, respecting user consent. However, the site lacks a publicly available security policy and incident response contacts, which could be improved to enhance trust and transparency. The WHOIS data aligns well with the website's branding and hosting, indicating legitimacy and consistency. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy and professional platform for its target audience. Strategic improvements in security policy transparency and incident response readiness are recommended to further strengthen its security posture and user trust.

D

Dein-Job-Magnet

dein-job-magnet.de

52

Dein-Job-Magnet is a German job platform focused on connecting job seekers with employers through online job listings and recruitment marketing services. The website targets primarily the German market and operates as a small-sized business with a niche focus. The platform employs modern web technologies including Vue.js and Leaflet.js for interactive maps, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. The technical infrastructure is moderately performant and mobile-optimized, with a custom or unknown CMS backend. Security posture is solid with HTTPS enforced and CSRF protection implemented, though some security headers could be improved. Privacy compliance is strong, featuring a comprehensive privacy policy and cookie consent mechanism via Cookiebot. Overall, the website presents a professional and trustworthy front for its business operations.

F

Förderverein Wachstumswende e.V.

wachstumswende.de

48

Netzwerk Wachstumswende is a German non-profit platform dedicated to fostering collaboration among individuals and groups focused on sustainable alternatives to economic growth. Operated by the Förderverein Wachstumswende e.V., it offers tools for decentralized communication, project management, and community engagement. The platform is positioned as a niche player within the sustainability and degrowth movement, targeting activists and organizations seeking systemic change. Technically, the website is built on WordPress with Elementor and Bootstrap, hosted likely via Cronon GmbH and rzone.de, providing a stable and moderately performant infrastructure with good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partially met with a privacy policy present but missing cookie consent mechanisms. Overall, the site is trustworthy and professional but could improve in security and privacy transparency.

The website scientists4future.org currently presents a security challenge page that blocks direct access to its main content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is registered with InterNetX GmbH since 2019 and is valid with no privacy protection, suggesting a legitimate registration. However, the website uses outdated CMS versions (Joomla 1.5 and WordPress 2.5), which are known to have multiple security vulnerabilities and are no longer supported. No privacy, cookie, or terms of service policies are present, and no contact information is available on the accessible page. The site links externally to bitninja.io, indicating use of a security service. Overall, the website's technical infrastructure is outdated, and the content is minimal and inaccessible due to security measures.

I

Ibec

ibec.ie

74

Ibec is Ireland’s largest business representative and lobbying organization, providing a broad range of services including government lobbying, professional HR and employment law advice, occupational health and safety consulting, management training, and networking opportunities. The organization targets Irish businesses and employers, positioning itself as a key influencer and support entity in the Irish business ecosystem. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the website leverages modern web technologies such as Google Tag Manager, Datadog RUM for real user monitoring, Bootstrap for responsive design, and Vue.js for interactive components. It is hosted on Microsoft Azure and uses Sitecore CMS, indicating a robust and scalable infrastructure. Performance and mobile optimization are excellent, with accessibility and SEO also well addressed. From a security perspective, the site enforces HTTPS and employs privacy consent mechanisms, masking user input in analytics to protect privacy. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not clearly present, and no public security or incident response policies are found. The absence of WHOIS data limits domain trust assessment, but the professional nature of the site and clear contact information mitigate concerns. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security header implementation, publishing incident response information, and adding a vulnerability disclosure policy to further strengthen trust and compliance.

V

viadee spark

viadee-spark.de

46

viadee spark is a German consulting brand specializing in organizational transformation, innovation management, coaching, mediation, agility, and culture change. The company positions itself as a trusted partner for businesses seeking to implement sustainable change and improve their organizational culture. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the site is built on WordPress with modern SEO and consent management tools, hosted on Microsoft Azure DNS infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

S

SHOW2BE

show2be.com

53

SHOW2BE is a newly established (2023) Spanish company specializing in global trade fair operations and marketing solutions. The company positions itself as an innovative operator focusing on B2P (Business-to-People) event ecosystems, leveraging creativity, technology, and strategic alliances to serve industries and professionals. The website reflects a professional and modern digital presence with multimedia content, clear navigation, and comprehensive information about services and team members. Technically, the site uses modern JavaScript libraries, Google Tag Manager, Facebook Pixel, and cookie consent management, indicating a mature digital marketing infrastructure. Security posture is adequate with HTTPS and domain protection statuses, but lacks visible security policies or incident response contacts. Privacy compliance is strong with clear cookie and privacy policies. Overall, the website is trustworthy, well-branded, and professionally executed, suitable for its target audience in the trade fair and marketing sectors.

The website fibar-valladolid.com is currently inaccessible due to a server-side bandwidth limit exceeded error (HTTP 509). This prevents access to any meaningful content, including business descriptions, contact information, or security policies. The domain is registered since 2013 with a reputable registrar, indicating a potentially established business, but no online presence is currently available to confirm this. The lack of accessible content severely limits the ability to assess the company's market position, services, or technical infrastructure. Security posture cannot be evaluated due to absence of accessible data and no HTTPS or security headers information is available. Overall, the site is effectively offline for analysis, resulting in a very low AI score and a recommendation to resolve hosting or bandwidth issues to restore accessibility.

C

Cultural & Creative Industries Skillnet

creativeskillnet.ie

52

Cultural & Creative Industries Skillnet is a professional organization dedicated to providing high-quality, subsidised skills development and training programs tailored for the cultural and creative sectors in Ireland. The website reflects a well-established entity with a clear focus on delivering responsive and relevant training courses, events, and resources to industry professionals. The presence of co-funding logos from Skillnet Ireland and the Government of Ireland further supports its credibility and market position. Technically, the website is built on a modern WordPress platform utilizing a variety of plugins such as LifterLMS for course management, Complianz for GDPR compliance, and Google Analytics for visitor tracking. The site is well-optimized for SEO and mobile responsiveness, with a clean design and clear navigation enhancing user experience. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, although additional security headers could improve the security posture. From a security perspective, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with comprehensive privacy and cookie policies and a consent mechanism in place. However, there is no explicit incident response or vulnerability disclosure information, which could be areas for improvement. Overall, the website presents a low-risk profile with a strong business credibility and technical foundation. Strategic recommendations include enhancing security headers, adding a security.txt file, and improving accessibility features to further strengthen compliance and trust.

The Petrucci Music Library - Canada (PML-CA) is a specialized portal providing access to music scores stored on Canadian servers, targeting users in Canada and countries with similar copyright laws. It operates as a non-commercial digital library, distinct from but aligned in objectives with IMSLP. The website content is static and informational, with basic design and limited interactivity, focusing on delivering free access to music scores within legal boundaries. The portal links to related IMSLP resources and forums, enhancing its utility for music enthusiasts. Technically, the website uses simple HTML and CSS without modern frameworks or CMS detected. Hosting is provided by Project Leonardo Limited. The site lacks mobile optimization and advanced SEO or accessibility features, indicating a basic digital maturity level. No analytics, tracking, or advertising scripts are present, reflecting a privacy-conscious approach but also limiting insights into user engagement. From a security perspective, the site does not display security headers or evidence of HTTPS from the provided data, and DNSSEC is not enabled, which are areas for improvement. No forms or user input fields reduce attack surface, but the absence of published security policies or incident response contacts suggests limited formal security governance. WHOIS data shows a domain created in 2013 with privacy protection, consistent with the non-commercial nature and no suspicious patterns detected. Overall, the site is safe and trustworthy for its niche audience but would benefit from enhanced security practices, privacy compliance improvements, and technical modernization to improve user experience and resilience.

F

FIGARO drukarnia i agencja reklamowa

figaro.pl

43

FIGARO drukarnia i agencja reklamowa is a well-established printing and advertising agency based in Ryki, Poland, with over 27 years of experience. The company offers a comprehensive range of services including graphic design, printing, promotional gadgets, and website development, positioning itself as the largest printing house in the region. Their business model focuses on serving local businesses and individuals requiring high-quality advertising and printing solutions. The website reflects a professional image with consistent branding and clear contact information, supported by positive customer reviews and social media presence. Technically, the website is built on WordPress using modern plugins and libraries such as Oxygen Builder, Rank Math SEO, and various JavaScript libraries for animations and Instagram feed integration. The site is mobile-optimized and SEO-friendly, though performance is moderate. Analytics and tracking are implemented via Google Analytics and Tag Manager, indicating a moderate level of user tracking. From a security perspective, the site uses HTTPS with good SSL configuration but lacks advanced security headers and explicit security policies. No privacy or cookie policies were found, which is a compliance gap, especially under GDPR. The domain WHOIS data is consistent with the business identity, showing a mature domain registration without privacy protection, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security practices to improve user trust and regulatory adherence.

G

Home

gruenland.it

49

Gruenland.it is an Italian website apparently related to an online shop focused on agriculture or related products, as indicated by the brief description. The domain is well-established, created in 2000, indicating a longstanding presence. The website uses WordPress CMS with common plugins such as Contact Form 7 and TranslatePress, and includes standard web technologies like jQuery and Font Awesome. The site is accessible without any WAF or security challenge blocking access. However, the content is minimal and lacks critical compliance and security documentation such as privacy policies, cookie consent mechanisms, terms of service, and incident response information. No explicit contact information or business details are provided on the accessible pages, limiting business credibility and user trust. The site is mobile optimized and uses HTTPS, but lacks advanced security headers and DNSSEC.

M

Website is not found

mangomarketing.de

47

The website www.mangomarketing.de currently serves a placeholder page indicating that the site has been unpublished or deleted by the owner. No active business content, contact information, or policies are present. The domain uses name servers associated with rzone.de and is in a 'connect' status, but lacks detailed WHOIS registrant information. The absence of content and security features suggests the website is not operational at this time. From a technical perspective, the site uses basic HTML, CSS, and JavaScript with resources hosted on onecdn.io. There is no evidence of a CMS or advanced frameworks. The page is mobile responsive at a basic level but lacks SEO optimization and accessibility features. No security headers or HTTPS information were detected in the provided data. Security posture is weak due to the lack of HTTPS, security headers, and absence of privacy or cookie policies. No forms or data collection mechanisms are present, reducing immediate data protection concerns but also indicating no active user engagement. The WHOIS data is minimal and does not provide sufficient information to verify legitimacy or business claims. Overall, the website is inactive and does not currently represent an operational business presence. Strategic recommendations include reactivating the website with proper security configurations, publishing privacy and cookie policies, adding contact information, and improving technical and content quality to establish trust and compliance.

The website trainercentralsite.eu currently displays an access restricted page indicating that the content is blocked and not publicly accessible. The page is branded with a logo and link to trainercentral.com, suggesting a relationship or partnership. Due to the restricted access, no detailed business information, privacy policies, or contact details are available for analysis. The technical infrastructure uses older versions of jQuery and Bootstrap, with no evidence of modern CMS or advanced SEO and accessibility features. Security posture is minimal with no visible security headers or HTTPS status provided. Overall, the site appears professionally registered through MarkMonitor International Limited, indicating legitimacy, but the lack of accessible content limits comprehensive evaluation.

The website 50epiuturismo.it currently presents only a maintenance placeholder page in Italian, indicating temporary unavailability. The domain is well-established, created in 2006, and registered with a valid status, suggesting a legitimate business presence. However, the lack of accessible content, metadata, or business information severely limits the ability to assess the company's operations, market position, or services. Technically, the site lacks visible security features such as HTTPS, security headers, or privacy policies, which are critical for user trust and regulatory compliance. The absence of contact information and business disclosures further reduces credibility. Overall, the website is not currently functional for end users or evaluators, and significant improvements are needed to restore full operational status and compliance.

5

50&PiùCaf

50epiucaf.it

65

50&PiùCaf is an established Italian fiscal assistance center providing a wide range of tax and social welfare services primarily targeting employees, pensioners, companies, and professionals across Italy. The company has a strong market presence with over 800,000 users annually and offers services including tax declarations, ISEE, IMU, succession declarations, and family collaborator management. The website reflects a professional and consistent brand image with clear service offerings and user engagement features such as contact forms and membership options. Technically, the site is built on WordPress with popular plugins and tracking tools, ensuring a modern and responsive user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site demonstrates good compliance with privacy regulations and provides transparent contact information, supporting its credibility and trustworthiness.

M

Manageritalia

manageritalia.it

63

Manageritalia is a professional organization serving managers, executives, and professionals in the tertiary sector including commerce, transport, tourism, and services in Italy. The website positions itself as a key reference point offering membership services, networking events, specialized solutions, and a magazine for its audience. The digital infrastructure is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good performance, mobile optimization, and SEO readiness. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security and incident response policies are not publicly visible. Overall, the site is professional, trustworthy, and compliant with GDPR cookie regulations, serving a medium-sized organization in Italy.

The website www.mastercardgiftcard.com is currently inaccessible due to blocking by the Incapsula Web Application Firewall (WAF). The WHOIS lookup failed to return any registration data, indicating the domain may not be registered or is using privacy protection that is not publicly disclosed. The site contains minimal HTML content with no visible business information, contact details, or policies. This severely limits the ability to assess the business, technical infrastructure, or security posture. The lack of HTTPS information, security headers, and privacy compliance further compounds the risk profile. Overall, the site appears non-functional or under protection, raising significant trust and legitimacy concerns.

The website careasy.org is currently inaccessible, returning a 403 Forbidden error with minimal HTML content indicating access denial. This prevents any meaningful content or metadata extraction. The domain is registered with GoDaddy.com, LLC since 2011, showing a stable and consistent registration history without privacy protection. However, the lack of accessible content, absence of privacy and cookie policies, and missing contact information significantly limit the ability to assess the business or security posture. Technically, no security headers or HTTPS information were available, suggesting potential security weaknesses. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user and security experience.

The website givingproperty.org is currently inaccessible, returning a 403 Forbidden error with minimal content, indicating restricted or blocked access. The domain is registered with GoDaddy.com, LLC since February 2022, which is consistent with a relatively new business or project. Due to the lack of accessible content, no business description, services, or contact information can be determined. The website lacks metadata, scripts, forms, or any visible technologies, suggesting it is either under development or improperly configured. From a technical perspective, the site shows no evidence of modern web technologies, security headers, or SSL configuration details. DNSSEC is not enabled, and no privacy or cookie policies are present. The absence of contact or social media information further limits the ability to assess business credibility or user engagement. The security posture is weak due to the lack of visible security best practices and the blocked content. Overall, the risk assessment is elevated due to the inability to verify the website's legitimacy or content. The domain registration is transparent and consistent, but the inaccessible website content and missing policies reduce trustworthiness. Strategic recommendations include enabling HTTPS, publishing privacy and cookie policies, improving website accessibility, and ensuring proper security headers and configurations to enhance trust and compliance.

The website su2cstreamteam.org is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The domain is very recently registered (March 2024) with Network Solutions and uses SiteGround for hosting. No business, contact, or policy information is available on the site, indicating either a misconfiguration, restricted access, or an incomplete deployment. The lack of HTTPS, security headers, and privacy compliance features further diminishes the site's trustworthiness and security posture. Overall, the site appears to be in an early or restricted state, preventing a full assessment of its business or technical maturity.