Security Directory

G

Galop-Store

galop-store.fr

0

Galop-Store is a French e-commerce retailer specializing in equestrian equipment and animal care products. Founded in 2022, it targets horse riders, animal owners, and related enthusiasts with a broad catalog of products from reputable brands. The website demonstrates a solid market position within its niche, supported by a professional design, clear navigation, and secure payment options. The company maintains a medium-sized operation with a focus on the French market and some international reach through sister sites. Technically, the site leverages modern frameworks like SvelteKit and is hosted on Cloudflare, ensuring fast performance and good mobile optimization. Security practices include HTTPS enforcement, security headers, and GDPR-compliant cookie consent management, although no explicit security policy or incident response information is published. Overall, the site is trustworthy, professional, and well-maintained, with room for improvement in publishing dedicated security and incident response policies.

F

Foot-Store

foot-store.fr

0

Foot-Store is a well-established French e-commerce retailer specializing in football-related products including shoes, jerseys, and equipment. The website targets football players and fans primarily in France and Europe, offering a wide range of branded merchandise from Nike, Adidas, Puma, and others. The business has a solid market position supported by a domain age of over 9 years and multiple related partner sites. Technically, the website employs modern technologies such as SvelteKit, Cloudflare CDN, and integrates various marketing and tracking tools like Google Tag Manager and Facebook Pixel. The site is mobile-optimized, fast, and accessible, with good SEO practices. Security posture is strong with HTTPS enforced, comprehensive security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a professional and trustworthy e-commerce platform with good privacy and security practices.

E

Espace Golf

espace-golf.fr

0

Espace Golf is a specialized French e-commerce retailer focused on golf equipment, including clubs, bags, carts, clothing, and accessories. Founded in 2019, it serves golf enthusiasts primarily in France and surrounding European countries. The website demonstrates a professional market position with competitive pricing, fast delivery, and multiple payment options including secure installment plans. The presence of Trustpilot reviews and clear contact information enhances customer trust. Technically, the site uses modern frameworks such as SvelteKit, is hosted with OVH and Cloudflare, and integrates advanced tracking and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although a dedicated security policy and incident response contacts are absent. Overall, the site is compliant with GDPR and provides a good user experience with clear navigation and mobile optimization.

D

Direct-Volley : chaussures, ballons, vêtements et équipements de volleyball

direct-volley.fr

0

Direct-Volley.fr is a specialized e-commerce retailer focused on volleyball equipment, apparel, and accessories, serving primarily the French market with multiple localized European domains indicating a broader regional presence. The website offers a comprehensive catalog including shoes, balls, protective gear, club equipment, and lifestyle products related to volleyball. The business appears well-established with a domain age of nearly 9 years and uses reputable hosting and CDN services via Cloudflare. The technical infrastructure is based on Magento (OpenMage), supported by modern analytics and marketing tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and Criteo, reflecting a mature digital marketing strategy. Security posture is solid with HTTPS enforced, security headers present, and domain registration practices consistent with a legitimate retail business. However, the site lacks explicit privacy policy and terms of service pages, which are critical for GDPR compliance and user trust. Contact information and incident response details are also missing, limiting transparency. Overall, the site is professional, secure, and functional but would benefit from enhanced privacy and compliance documentation.

B

Boulevard du Golf

boulevard-du-golf.fr

0

Boulevard du Golf is a specialized French e-commerce retailer focused on golf equipment and accessories, offering a wide range of products from leading brands such as Taylormade, Callaway, and Srixon. Established in 2012, the company has positioned itself as a trusted provider for golf enthusiasts, providing secure payment options, customer support, and a user-friendly online shopping experience. The website is well-structured, mobile-optimized, and integrates modern web technologies including SvelteKit and Cloudflare CDN for performance and security. From a security perspective, the site enforces HTTPS, employs security headers, and integrates a consent management platform to comply with GDPR regulations. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact suggests room for improvement in transparency and readiness. The domain registration details are consistent with the business claims, enhancing trustworthiness. Overall, Boulevard du Golf demonstrates a mature digital presence with strong privacy compliance and a secure e-commerce environment. Strategic enhancements in security policy disclosure and incident response mechanisms would further strengthen its security posture and customer trust.

B

Basket-Center

basket-center.fr

0

Basket-Center is a well-established French e-commerce retailer specializing in basketball equipment and accessories, including official NBA merchandise and products from major brands such as Adidas, Nike, Wilson, and Mitchell & Ness. The company targets basketball players and fans primarily in France and Europe, offering a broad catalog with fast shipping and secure payment options. The website demonstrates a strong market position as an official distributor with a professional and consistent brand presence. Technically, the website is built on modern technologies including SvelteKit and is hosted behind Cloudflare, ensuring good performance and security. It employs multiple tracking and marketing tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and a consent management platform to comply with GDPR. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, implements security headers, and manages cookie consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance trust and compliance. Overall, Basket-Center presents a low-risk profile with a strong business and technical foundation. Strategic recommendations include publishing a dedicated security policy, incident response information, and a vulnerability disclosure policy to further strengthen security posture and transparency.

P

peakzone

peakzone.de

0

Peakzone is a German-based e-commerce retailer specializing in sportswear, equipment, and accessories across a broad range of sports including basketball, football, rugby, volleyball, handball, running, and fitness. The website is built on the Shopware platform and integrates modern payment solutions such as PayPal and Klarna, indicating a mature digital infrastructure. The site offers a well-structured navigation system catering to sports enthusiasts, teams, referees, and lifestyle customers, positioning itself as a niche regional sports retail provider. Technically, the website demonstrates good mobile optimization and moderate performance, though there is room for improvement in SEO and accessibility features. Security posture is solid with HTTPS enabled and secure payment integrations; however, the absence of security headers and explicit privacy and terms of service pages suggests gaps in compliance and best practices. No blocking mechanisms or WAF challenges were detected, allowing full content accessibility. Overall, the site is safe for general audiences with no adult or questionable content. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and security maturity.

L

Leichtathletik Shop

leichtathletik-shop.info

0

Leichtathletik Shop is the official online merchandise store of the Deutscher Leichtathletik Verband (German Athletics Association), offering athletics apparel and related products primarily targeting athletes and fans in Germany. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Judge.me for customer reviews and Facebook Pixel for marketing analytics. The site demonstrates a good level of digital maturity with fast performance, mobile optimization, and clear navigation. Security posture is strong with HTTPS enforced, use of security headers, and form protection via hCaptcha, although explicit security and incident response policies are not publicly available. Privacy compliance is well addressed with comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, the site presents a professional and trustworthy e-commerce presence with room for improvement in transparency of security and contact information.

B

BVA BikeMedia GmbH

fahrrad-buecher-karten.de

0

BVA BikeMedia GmbH operates www.fahrrad-buecher-karten.de as a specialized e-commerce platform focused on cycling maps, books, and related media products. The company holds a strong market position in Germany as a leading provider of cycling literature and maps, targeting cycling enthusiasts and travelers. The website offers a well-structured catalog of products, including digital downloads and magazines, supported by clear navigation and professional design. Technically, the site uses modern web technologies including JavaScript, CSS3, and integrates Google Analytics with privacy-conscious configurations such as IP anonymization. The hosting is managed via INWX nameservers, and the site enforces HTTPS, ensuring secure data transmission. Privacy compliance is robust with a detailed cookie consent mechanism and accessible privacy policy. However, explicit security headers are not evident in the HTML content, suggesting room for improvement in security hardening. Contact information is comprehensive, including email, phone, physical address, and contact forms, enhancing business credibility. Overall, the site demonstrates a mature digital presence with good privacy and security practices, suitable for its retail and media business model.

i-Run is a well-established French e-commerce retailer specializing in sports shoes, apparel, and equipment for running, trail, hiking, and fitness. The website targets French-speaking sports enthusiasts and offers a wide range of products from major brands with fast delivery options. The digital infrastructure incorporates modern web technologies, including JavaScript frameworks, consent management via Didomi, and analytics tools such as Realytics and Ab Tasty, indicating a mature digital presence. Security posture is strong with HTTPS enforced and multiple security headers present, though the absence of a public security policy and incident response contacts suggests room for improvement in transparency. Privacy compliance is robust with clear cookie consent mechanisms and a comprehensive privacy policy in French. Overall, the website presents a professional, trustworthy, and user-friendly experience with no signs of malicious activity or content blocking.

D

Direct Running

direct-running.fr

0

Direct Running is a French-based e-commerce retailer specializing in running shoes, sportswear, and related equipment. The company offers a wide range of products from major brands such as Adidas, Saucony, Puma, and Mizuno, targeting runners and sports enthusiasts primarily in France and Europe. The website demonstrates a mature digital presence with a professional design, clear navigation, and mobile optimization. It integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, TikTok Pixel, and Criteo, supported by a consent management platform to ensure GDPR compliance. Security posture is strong with HTTPS enforced and modern security headers implemented, although no dedicated security policy or incident response page was found. Overall, the site is trustworthy and well-positioned in the retail e-commerce market.

S

Les experts du running sont ici! - Shop4Runners

shop4runners.fr

0

Shop4Runners.fr is a French e-commerce website specializing in running shoes, apparel, and accessories from well-known brands such as Asics, Adidas, and New Balance. The site targets running enthusiasts primarily in France and French-speaking regions, offering competitive pricing, free delivery, and a 30-day return policy. The business appears to be a small-sized retailer founded in 2020, operating on a Magento platform with a modern Hyva theme frontend. The website infrastructure leverages Cloudflare for DNS and CDN services, ensuring good performance and security. Marketing and tracking tools such as Google Tag Manager, SalesManago, and Kwanko are integrated for analytics and advertising purposes. The site implements a GDPR-compliant cookie consent mechanism but lacks visible privacy policy and terms of service pages in the provided content. Contact information is limited to a company email address, with no phone or physical address found. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the website is professional, functional, and trustworthy with room for improvement in privacy disclosures and security transparency.

I

Intersnack Deutschland SE

intersnack.de

0

Intersnack Deutschland SE is a large German-based manufacturer and retailer of popular salty snacks, emphasizing sustainability and responsible production. The company operates a professional, well-structured website powered by TYPO3 CMS, targeting general consumers and potential employees. The site offers comprehensive information about their brands, sustainability initiatives, and career opportunities, with a clear corporate identity and consistent branding. Technically, the website uses modern web technologies and includes analytics via eTracker, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though some advanced security headers and policies are not explicitly published. Privacy compliance is well addressed with clear privacy and cookie policies. WHOIS data aligns with the corporate identity, showing a legitimate and consistent domain registration. Overall, the website reflects a mature digital presence suitable for a large enterprise in the retail food sector.

M

Milka

milka.com

0

Milka.com is the official website for the Milka brand, a well-known confectionery company specializing in chocolate products. The site targets German-speaking consumers, offering product information, promotions, and community engagement. The website is built using modern web technologies such as React and Gatsby, with a responsive design optimized for mobile devices. Security posture is strong with HTTPS enforced and standard security headers present, though no explicit incident response or vulnerability disclosure policies are found. The absence of WHOIS data is unusual but the website's professional presentation and brand consistency support its legitimacy. Overall, the site is well-constructed, secure, and user-friendly, though improvements in transparency and contact information could enhance trust.

A

AXOR

axor-design.com

0

AXOR is a premium luxury brand specializing in avant-garde design for bathrooms and kitchens, collaborating with leading designers to offer high-end mixers, showers, and fixtures. The website targets discerning consumers and design professionals seeking luxury bathroom and kitchen products. The business operates primarily in the retail sector with a B2C and partner network model, positioning itself strongly in the luxury market segment. The website content is professionally presented, multilingual, and consistent with the brand's premium image. Technically, the website leverages a modern technology stack including SAP Hybris as the CMS, advanced analytics platforms such as Google Analytics, Piwik PRO, New Relic, and Visual Website Optimizer, and integrates a comprehensive GDPR-compliant consent management system. The site is well-optimized for performance and mobile devices, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not visible in the HTML, the use of CSRF tokens and asynchronous loading of scripts indicates adherence to security best practices. No vulnerabilities or suspicious content were detected. However, the absence of visible privacy policy, terms of service, and contact information pages in the provided content suggests areas for improvement. Overall, AXOR's website demonstrates a mature digital presence with strong business credibility and compliance posture. Strategic recommendations include publishing explicit privacy and terms pages, enhancing security headers, and providing clear contact and incident response information to further strengthen trust and compliance.

S

sigdal

sigdal.com

0

Sigdal is a well-established Norwegian company specializing in high-quality kitchen, bathroom, and wardrobe solutions. With over 70 years of history, it operates primarily in the retail sector, offering both products and design services. The website reflects a mature digital presence with comprehensive content, professional design, and multiple customer engagement channels including free design meetings and installation services. The company maintains consistent branding and leverages modern web technologies to deliver a responsive and user-friendly experience. Technically, the site uses a modern JavaScript framework (Vue.js), integrates telemetry and analytics via Microsoft Application Insights and Google Tag Manager, and employs cookie consent management to comply with privacy regulations. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security policies and incident response contacts is noted. The WHOIS data for the domain is missing or unavailable, which is unusual for a commercial entity and slightly impacts trustworthiness. Overall, Sigdal presents a professional and trustworthy online presence with room for improvement in transparency of security policies.

Duravit.no is the Norwegian localized website of Duravit, a well-established international brand specializing in bathroom furniture and porcelain products. The company has a long history dating back to 1817 and collaborates with renowned designers to offer high-quality, stylish, and functional bathroom solutions. The website provides rich content including product categories, design inspiration, and tools for customers to plan their bathrooms. Technically, the site uses modern JavaScript libraries, consent management tools, and performance monitoring, hosted likely on a CDN with good SSL configuration. Security posture is solid but could be improved with additional headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly accessible privacy policy page in the provided content. No WHOIS data is publicly available due to Norwegian domain registry privacy policies, but the domain appears legitimate and consistent with the brand. Overall, the website is professional, trustworthy, and well-positioned in the retail bathroom products sector.

E

Essem Design

essem.se

0

Essem Design is a Swedish company specializing in the retail of hall furniture and interior accessories, focusing on design, sustainability, and functionality. Their website showcases a well-structured e-commerce platform with rich product offerings, design stories, and inspiration targeted at consumers interested in hall furnishings. The company maintains a consistent brand presence across multiple social media platforms and provides comprehensive privacy and cookie policies compliant with GDPR regulations. Technically, the website is built on the Umbraco CMS, uses modern JavaScript libraries such as Swiper.js, and integrates third-party services like Vimeo and Cookiebot for enhanced user experience and compliance. Security-wise, the site enforces HTTPS, employs strong security headers, and uses cookie consent mechanisms, although explicit security policies and incident response contacts are not published. The WHOIS data query for the subdomain 'www.essem.se' returned no results, which is expected as WHOIS data is typically registered for the root domain 'essem.se'. Overall, the website demonstrates a mature digital presence with good security posture and privacy compliance, suitable for its business model and audience.

L

LAUFEN

laufen.no

0

LAUFEN is a company specializing in high-quality Swiss bathroom products and design solutions, targeting consumers and professionals interested in premium bathroom furnishings. The website reflects a medium-sized retail business with a consistent and professional brand presence, offering a wide range of bathroom products including toilets, sinks, showers, and furniture. Technically, the site is built on the Liferay CMS platform, utilizing modern web technologies and standard analytics tools such as Google Analytics and Google Tag Manager. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS and includes cookie consent mechanisms, but lacks explicit privacy policy and terms of service pages, as well as contact information for security incidents or data protection officers. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the site itself appears trustworthy and professional. Overall, the website scores well in content quality and security posture but should improve privacy compliance and business credibility transparency.

I

INR

inr.no

0

INR is a Scandinavian bathroom furnishing company offering customizable, high-quality products such as shower solutions, bathroom furniture, mirrors, storage, mixers, and towel warmers. The company targets consumers seeking stylish and functional bathroom designs with a focus on Scandinavian aesthetics. Their market position is that of an established brand with Swedish production and long-term warranties, emphasizing quality and design. Technically, the website uses modern web technologies including jQuery, Google Tag Manager, OneTrust for cookie consent, and Swiper.js for UI components. The site is mobile-optimized and SEO-friendly but lacks explicit privacy and security policies. Security posture is good with HTTPS and cookie consent but could be improved by adding security headers and incident response information. Overall, the website is professional, trustworthy, and safe for general audiences.

S

Steve Edge Design Ltd.

steve-edgeshop.com

0

Steve Edge Design Ltd. operates the Steve Edge Shop, an e-commerce platform specializing in artist-created merchandise such as posters, books, and badges. The business targets art enthusiasts and collectors, offering unique design products with personal significance. The website is built on WordPress with WooCommerce, leveraging modern web technologies and tracking tools like Google Analytics and Tag Manager. The site is mobile-optimized and provides clear navigation and professional design, supporting a positive user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the site's professional appearance and active social media presence. Security posture is moderate with HTTPS enabled but lacks important security headers and cookie consent mechanisms, indicating room for improvement in compliance and protection. Overall, the site presents a trustworthy retail front but should address domain registration transparency and enhance security and privacy compliance to strengthen its credibility and user trust.

M

Milka

milka.de

0

Milka is a well-established confectionery brand specializing in chocolate products, with a strong market presence primarily in Germany and Europe. The website serves as a brand engagement platform offering product information, promotions, and community interaction. The technical infrastructure is modern, leveraging React and Gatsby frameworks with Tailwind CSS for styling, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced, appropriate security headers, and GDPR-compliant privacy and cookie policies. However, WHOIS data is unavailable, which is common for large brands using privacy protection services. Overall, the website is professional, trustworthy, and secure, supporting Milka's brand reputation effectively.

M

Margaret Howell

margarethowell.co.uk

0

Margaret Howell is a well-established British fashion brand specializing in contemporary design for men and women since 1970. The company operates a professional e-commerce website hosted on the Shopify platform, targeting fashion consumers primarily in the UK and internationally. The website showcases their collections and provides a seamless online shopping experience. Technically, the site leverages modern web technologies including Shopify Liquid, TailwindCSS, and integrates marketing and security services such as Klaviyo, Forter, and Global-e. The site is well-optimized for mobile devices and includes essential SEO and accessibility features. Security posture is strong with HTTPS enforced, security headers present, and cookie consent mechanisms implemented, reflecting compliance with GDPR and privacy regulations. However, WHOIS data is unavailable due to querying the www subdomain rather than the base domain, which slightly impacts domain trust analysis. Overall, the website is professional, secure, and trustworthy, with room for improvement in publishing explicit security policies and contact information.

V

Vitsœ

vitsoe.com

0

Vitsœ is a specialized furniture company focused on modular, timeless designs created by Dieter Rams since 1959. The company operates a direct-to-consumer business model selling high-quality furniture designed for longevity and adaptability. Their market position is niche premium retail with a strong emphasis on sustainability and design heritage. Technically, the website is well-constructed using modern JavaScript libraries, Google Tag Manager, and OneTrust for privacy compliance, hosted on a performant CDN. Security posture is solid with HTTPS and bot protection via reCAPTCHA, though it lacks explicit security policies and incident response information. The absence of WHOIS data reduces transparency but the website content and branding are professional and trustworthy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

S

Storefront.com Online Inc.

storefront.com

0

Storefront.com Online Inc. is a medium-sized technology and retail-focused company specializing in personalized print-on-demand and imaging solutions for enterprise retailers and industry suppliers. Established since 1999, the company offers a suite of services including online platforms, secure kiosk sales, backlab production workflows, and systems management solutions. The website reflects a professional business presence with consistent branding and clear service offerings but lacks comprehensive privacy, cookie, and security policy disclosures. Technically, the website employs Bootstrap 4.1.3 and jQuery 3.3.1, indicating a moderately modern tech stack with good mobile responsiveness and navigation clarity. However, the absence of DNSSEC, security headers, and HTTPS status information suggests room for improvement in security hardening. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the domain is well-established with a long registration period and domain locking, supporting legitimacy. Yet, the lack of published security policies, incident response contacts, and vulnerability disclosures points to a low maturity in security governance. No critical vulnerabilities or adult content were found, and the site is accessible without WAF blocking. Overall, the website scores moderately in content quality and business credibility but scores lower in privacy compliance and security posture. Strategic improvements in security policies, privacy disclosures, and technical security controls are recommended to enhance trust and compliance.

L

Leyendecker HolzLand GmbH & Co. KG

leyendecker.de

0

Leyendecker HolzLand GmbH & Co. KG is a well-established wood specialist retailer and wholesaler based in Trier, Germany, with a history dating back to 1860. The company offers a broad range of wood products including flooring, doors, garden furniture, and wood-based materials, serving craftsmen, businesses, and end consumers primarily in the Rheinland-Pfalz, Saarland, and Luxembourg regions. Their market position is strong regionally, supported by a large physical exhibition and an online shop. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and consent management tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, CSP headers, and privacy compliance mechanisms in place, though lacking a dedicated security policy or incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and social media presence.

E

EVH GmbH & Co. KG

evholz.de

0

EVH GmbH & Co. KG operates as a purchasing alliance for wood dealers in Germany, established in 2012 and part of the hagebau group. The company focuses on optimizing purchasing conditions and supporting its members through a network of over 50 sales locations and more than 100 supplier relationships. The website reflects a professional business presence targeting wood dealers and suppliers, emphasizing collaboration and market strength. Technically, the website is built on the Contao CMS platform, utilizing jQuery and Rocksolid Slider for interactive elements. It is hosted with INWX and uses HTTPS with proper session and CSRF protections. The site is mobile-optimized with basic accessibility and SEO features, though some security headers could be improved. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism. However, explicit security policies and incident response contacts are not present. No vulnerabilities or suspicious elements were detected. WHOIS data aligns well with the business information, supporting domain legitimacy. Overall, the website presents a trustworthy and professional image with good privacy compliance and moderate technical sophistication. Recommendations include enhancing security headers, adding explicit security policies, and expanding analytics and marketing transparency for improved digital maturity.

C

Carl Götz

carlgoetz.de

0

Carl Götz is a medium-sized German company specializing in the retail and distribution of wood products and related construction materials. The website presents a comprehensive catalog of products including panels, wood construction materials, flooring, doors, and garden-related items, targeting both business and private customers. The company maintains multiple physical locations and offers digital services such as customer login, configurators, and sample services. Technically, the website is built on the Shopware CMS platform, uses modern web technologies including Google reCAPTCHA and Google Tag Manager, and is hosted on a reliable DNS provider. Security posture is good with HTTPS enforced and CSRF protection on forms, though additional security headers and policies could enhance protection. Privacy compliance is basic with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-structured, with room for improvement in privacy and security transparency.

hagebau Handelsgesellschaft für Baustoffe mbH & Co. KG operates a well-established cooperative retail and wholesale business specializing in building materials and home improvement products primarily in Germany. The website presents a professional and content-rich platform featuring specialist trade, retail, career opportunities, and press information, targeting both business partners and end customers. The company is positioned as a major player in its sector with a large operational footprint and active engagement through news and job postings. Technically, the site is built on CoreMedia CMS, employs modern tracking and consent management tools like Usercentrics and eTracker, and uses structured data for SEO and business transparency. Security posture is good with HTTPS and domain transfer protections, though DNSSEC is not enabled and security policies are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and compliant with GDPR cookie consent requirements.

A

A&J HOLZZENTRUM – Andresen & Jochimsen GmbH & Co. KG

holzzentrum.de

0

A&J HOLZZENTRUM – Andresen & Jochimsen GmbH & Co. KG operates a specialized retail and online shop business focused on wood products, building materials, doors, and garden supplies primarily serving the Hamburg region in Germany. The company positions itself as Hamburg's largest selection provider in this sector, targeting both B2C and B2B customers. Their business model combines physical retail with an integrated e-commerce platform, leveraging Shopware technology to deliver a comprehensive shopping experience. Technically, the website is built on the Shopware CMS platform, enhanced with modern JavaScript libraries such as jQuery and integrated with marketing and customer service tools like Google Tag Manager, Superchat, and Trusted Shops widgets. The hosting is managed via 1&1 IONOS, with consistent domain registration and DNS configurations. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features, supporting a positive user experience. From a security perspective, the website enforces HTTPS, employs standard security headers, and integrates CAPTCHA on forms to mitigate automated abuse. While no critical vulnerabilities or exposed sensitive data were detected, the absence of a dedicated security policy or incident response contact suggests room for improvement in transparency and preparedness. Privacy and cookie policies are present and include consent mechanisms, aligning with GDPR requirements. Overall, the website presents a trustworthy and professional front with solid business credibility and technical implementation. The risk profile is low, with recommendations focusing on enhancing security documentation, incident response readiness, and accessibility compliance to further strengthen the security posture and user trust.

D

DigiShop GmbH

kloepfer.de

0

Klöpfer Holzhandel operates a professional B2B e-commerce platform specializing in wood and wood-related construction materials, targeting professional tradespeople and commercial customers primarily in Germany. The website offers a comprehensive product catalog, planning tools, and customer account management features, positioning itself as a leading provider in the German wood trade market. Technically, the site uses a modern JavaScript stack with Bootstrap, jQuery, Slick Slider, and a ColdFusion backend, hosted likely on Deutsche Telekom infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published privacy or terms policies. No WAF or blocking mechanisms were detected, and no suspicious or adult content is present. Overall, the site is professional, trustworthy, and well-structured but could improve privacy transparency and security header implementation.

D

DigiShop GmbH

weltholz.de

0

Weltholz is a German-based wood import company specializing in high-quality timber and exclusive wood products for wholesale and retail customers. The website presents a professional and well-structured platform targeting B2B clients such as large and wood dealers. It offers a comprehensive product catalog, marketing support, and online tools like a terrace planner. Technically, the site uses a custom ColdFusion backend with modern frontend libraries including jQuery, Bootstrap, and Slick Slider, integrated with HubSpot and Google Analytics for marketing and analytics. The security posture is solid with HTTPS and cookie consent mechanisms, though security headers are not explicitly detected and could be improved. Privacy compliance is strong with clear policies and consent management. Overall, the site is trustworthy, well-branded, and professionally maintained.

funny-frisch.de is the official website of funny-frisch, a leading German snack brand known for its salty snack products. The site is branded under the parent company Intersnack Deutschland SE and positions itself as a market leader with a strong consumer focus in Germany. The website offers product information, brand storytelling, and consumer engagement through social media and campaigns. Technically, the site is built on the Contao CMS platform and uses modern JavaScript libraries such as jQuery, Slick Slider, and WOW.js to deliver a responsive and visually appealing user experience. The site is mobile optimized and SEO friendly, with clear navigation and professional design. Security-wise, the site uses HTTPS with good SSL configuration and avoids exposing sensitive data. However, it lacks visible security headers and explicit cookie consent mechanisms, which are important for GDPR compliance. No direct contact emails or phone numbers are published, with contact primarily via a web form. Overall, the website is trustworthy, professional, and safe for general audiences, with room for improvement in privacy compliance and security transparency.

M

Mondelez International

fcmilka.de

0

The website fcmilka.de serves as a promotional platform for the Milka brand's campaign in partnership with the Bundesliga football league. It offers consumers opportunities to participate in contests and win prizes by entering codes from Milka products. The site targets football fans and Milka consumers primarily in Germany, leveraging strong brand partnerships and official licensing to enhance engagement. The business model focuses on marketing and brand promotion through interactive fan experiences and contests. Technically, the website is built using modern web technologies including React and Next.js, hosted behind Cloudflare's CDN and security services. It employs Google Tag Manager and cookie consent tools to manage analytics and privacy compliance. The site is well-optimized for mobile devices, performs well, and follows good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, uses security headers, and avoids exposing sensitive data. However, it lacks explicit security policy documentation and incident response contacts, which could be improved. Privacy compliance is strong with clear links to comprehensive privacy and cookie policies managed by Mondelez International. Overall, the website presents a low-risk profile with high legitimacy due to its association with a major global brand. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure information, and enhancing incident response visibility to further strengthen trust and compliance.

Swatch is a globally recognized watch brand operating an official Finnish e-commerce website offering a wide range of watches. The site is built on Salesforce Commerce Cloud, indicating a mature digital infrastructure supporting e-commerce functionalities such as product search, cart, and checkout. The website demonstrates strong branding consistency and professional design, targeting general consumers in Finland. Technically, the site uses modern web technologies and integrates multiple analytics and marketing tools, including Google Tag Manager and TikTok Analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and CSRF protections, though explicit security headers should be verified. WHOIS data was unavailable from the raw output, likely due to query restrictions, but the domain is a well-known brand domain, reducing suspicion. Overall, the site is trustworthy, professional, and compliant with privacy regulations.

G

Genossenschaft Getränkekollektiv

getraenkekollektiv.ch

0

Genossenschaft Getränkekollektiv operates a sustainable and fair beverage delivery and retail business based in Basel, Switzerland. The company targets private customers, offices, event organizers, and the hospitality sector with a focus on regional and environmentally friendly products. Their business model includes direct delivery via cargo bike or van, subscription options, and an online shop. The website is built on WordPress with Elementor and integrates privacy-conscious tools like Matomo analytics and hCaptcha for form security. Contact information and social media presence support customer engagement and trust. Security posture is adequate with HTTPS and basic protections, but lacks published security policies and advanced headers. Privacy compliance is partial, missing a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with the business's local and sustainable ethos.

DeinDeal AG operates a Swiss-focused e-commerce platform specializing in private sales offering discounts up to 70% on a wide range of products including apparel, cosmetics, home goods, and travel. The company targets consumers in Switzerland seeking branded products at discounted prices. The website demonstrates a mature digital infrastructure leveraging modern web frameworks such as Next.js and React, integrated with Prismic CMS for content management. Performance and error monitoring are implemented via New Relic, and bot protection is enforced using Google reCAPTCHA v3. The security posture is strong with HTTPS and Content Security Policy in place, although explicit security policy and incident response information are not publicly available. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms active. Overall, the platform presents a professional and trustworthy online retail experience with extensive marketing and analytics integrations.

G

Gotthilf Benz Turngerätefabrik GmbH + Co KG

benz-sport.de

0

Gotthilf Benz Turngerätefabrik GmbH + Co KG operates a professional e-commerce platform specializing in sports equipment manufacturing and retail. The company targets a broad audience in Germany and neighboring countries, offering a wide range of sports products with a focus on quality and service. The website is well-branded, consistent, and provides clear contact and business information, reinforcing its market position as a trusted sports equipment provider. Technically, the website leverages Prestashop CMS with modern integrations such as Google Tag Manager, Facebook Pixel, and PayPal SDK, indicating a mature digital infrastructure. The site is mobile-optimized and includes SEO best practices, although some accessibility features could be enhanced. Performance is moderate, suitable for the business scale. Security posture is solid with HTTPS enforced and GDPR compliance mechanisms in place, including cookie consent and privacy policy. However, explicit security headers could be improved. No critical vulnerabilities or suspicious activities were detected. The WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers and accessibility would further strengthen its posture.

B

Bäckerei Kult

baeckereikult.ch

0

Bäckerei Kult is a small local bakery business based in Basel, Switzerland, operating multiple physical locations and offering bakery products, ordering services, and event hosting. The website is professionally designed using WordPress and integrates social media channels such as Facebook and Instagram to engage with its local audience. The business targets local customers and partners within the Basel region, maintaining a consistent brand presence and providing clear information about opening hours and locations. Technically, the website uses a modern CMS with SEO optimization and basic accessibility features, though there is room for improvement in security headers and incident response transparency. Security posture is solid with HTTPS enabled and cookie consent implemented, but lacks advanced security policies or vulnerability disclosure mechanisms. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements, reflecting a legitimate and established local business.

F

FORS AG

fors.ch

0

FORS AG is a Swiss-based company specializing in the retail and professional supply of household and commercial appliances, with over 40 years of market presence. The website showcases a broad product range including cooling, cooking, washing, and professional equipment, supported by warranty and service offerings. The company targets both private consumers and professional clients, positioning itself as a trusted specialist in its sector. Technically, the website is built on WordPress with WooCommerce, leveraging modern SEO and marketing tools such as Yoast SEO, Google Tag Manager, and multiple tracking pixels. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility could be enhanced. Security posture is strong with HTTPS and security headers implemented, but lacks explicit privacy and cookie policies, which impacts compliance. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

ANSARO

ansaro.ch

0

ANSARO is a Swiss-based coffee roastery specializing in freshly roasted coffee beans and retailing coffee products. The company positions itself as a local Swiss quality brand with a focus on authentic taste and craftsmanship. The website is professionally designed using the Wix platform, indicating a moderate level of digital maturity suitable for a small retail business. The technical infrastructure leverages Wix's Thunderbolt framework, ensuring reasonable performance and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and visible privacy compliance mechanisms. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security features to meet compliance standards. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and improving accessibility.

N

natelo

natelo.ch

0

natelo is a Swiss-based retail and e-commerce company specializing in mobile subscriptions, smartphones, buyback, repairs, and accessories. The company operates both online and through four physical locations, targeting Swiss consumers seeking mobile technology products and services. The website presents a professional and consistent brand image with a clear focus on the Swiss market. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern plugins for SEO and payment processing. It employs HTTPS and security best practices such as Google reCAPTCHA and cookie consent management, indicating a mature digital infrastructure. However, the absence of a dedicated privacy policy and terms of service pages represents a compliance gap. Security posture is strong with appropriate headers and no visible vulnerabilities, but incident response and security policy documentation are lacking. Overall, natelo demonstrates a solid market presence with good technical and security foundations but should enhance privacy compliance and transparency to improve trust and regulatory adherence.

W

Wasch- & Küchentechnik Urs Ruoss | Altendorf, March Höfe

wakutech.ch

0

Wasch- & Küchentechnik Urs Ruoss is a small, established retail business based in Switzerland specializing in household and kitchen appliances, including washing machines, kitchen technology, and coffee machines. The company operates a physical showroom in Altendorf SZ and offers repair services, home delivery, and disposal of old appliances. Their market position is that of a trusted local specialist with over 20 years of experience, supported by partnerships with well-known appliance brands and an online webshop. Technically, the website is built on WordPress using modern plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution, with Google reCAPTCHA implemented for form security. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is good with HTTPS enforced and reCAPTCHA in place, but lacks advanced security headers and a formal security policy. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the business's local retail focus.

Joe Pfister is a small boutique wine producer and retailer based in Castelrotto, Tessin, Switzerland. The company offers exclusive wines primarily through an online shop, targeting adult wine consumers interested in high-quality boutique wines. The website reflects a focused e-commerce business model with event hosting and direct sales. Technically, the site is built on WordPress with WooCommerce, enhanced by plugins for SEO, cookie consent, age verification, and photo galleries. The site is moderately optimized for performance and mobile devices, with good SEO practices but basic accessibility features. Security-wise, the site enforces HTTPS and includes cookie consent and age verification mechanisms, but lacks visible security headers and explicit privacy or security policies. The Google Analytics plugin is present but not configured, indicating limited user tracking. Overall, the website is professional and trustworthy but could improve in privacy transparency and security hardening.

K

KAFILAND

kafiland.ch

0

KAFILAND is a small local retail business specializing in coffee machines located in Altendorf SZ, Switzerland. The website is built on the Wix platform and uses Wix's Thunderbolt framework and standard JavaScript polyfills. The business targets local consumers and businesses seeking coffee machines. The website provides basic business information including phone number and physical address but lacks email contact and online forms. The technical infrastructure is modern for a small business, with HTTPS enabled and moderate performance. However, privacy and cookie policies are missing, which is a compliance gap. Security posture is adequate with HTTPS and some script-based security hardening but lacks explicit security headers and incident response information. Overall, the website is functional and trustworthy but could improve privacy compliance and contact options.

C

Cava Hispania

cavahispania.ch

0

Cava Hispania is a small retail business based in Basel, Switzerland, specializing in the import and sale of Spanish wines. With over 25 years of experience, the company has established itself as a trusted local wine importer and retailer. The website is professionally designed, targeting mature wine consumers in the Basel region, and offers clear contact information and social media engagement. The business model focuses on direct import from producers and retail sales, including gastronomy supply. Technically, the website uses modern frontend technologies such as React and Webpack, with Craft CMS as the backend platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS but lacks security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. No blocking or WAF mechanisms interfere with access, and no suspicious content or vulnerabilities were detected. Overall, the website demonstrates a solid digital presence with room for improvement in privacy compliance and security best practices.

H

Handelsverband Hessen

hvhessen.de

0

Handelsverband Hessen is a regional trade association representing retail businesses in Hessen, Germany. The organization focuses on strengthening the competitiveness of its members by providing tailored support and fostering a vibrant trade community. The website reflects a professional and consistent brand image, targeting retail businesses and stakeholders within the Hessen region. Technically, the site is built on the Weblication® CMS platform, featuring responsive design and modern web fonts, but lacks advanced security headers and visible privacy compliance documentation. Security posture is moderate with room for improvement in policy transparency and technical safeguards. Overall, the site is trustworthy and well-positioned within its market niche but should enhance privacy and security practices to align with GDPR and industry standards.

IKEA Deutschland GmbH & Co. KG operates a comprehensive retail website offering affordable furniture and home accessories tailored for the German market. The site provides extensive product categories, planning services, and customer support, positioning IKEA as a leading furniture retailer in Germany. The website is well-branded, professionally designed, and optimized for mobile and accessibility, reflecting a mature digital presence. Technically, the site employs modern web technologies including JavaScript frameworks, cookie consent management via OneTrust, and A/B testing with Optimizely, ensuring a robust user experience. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well addressed with clear cookie and privacy policies, including GDPR adherence and a consent mechanism. The absence of WHOIS data limits domain registration trust analysis, but the overall site quality and brand reputation strongly indicate legitimacy. No adult or questionable content is present, making the site safe for general audiences.

G

Göttingen Marketing GmbH

einkaufen-in-goettingen.de

0

The website 'Einkaufen in Göttingen' is a professionally developed local city marketing platform operated by Göttingen Marketing GmbH. It serves as a comprehensive shopping and event guide for residents and visitors of Göttingen, focusing on retail, gastronomy, cultural events, and city services. The platform leverages modern web technologies including WordPress and Elementor, with integrations for maps and user consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, although formal security policies and incident response information are absent. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements, making it a reliable resource for its target audience.