Retail security reports

M

McDonald's Gerhard Schmid

mcdonalds-ulm.de

0

McDonald's Gerhard Schmid operates a regional franchise network of McDonald's restaurants across multiple towns in Germany. The website serves as an informational and promotional platform for the franchise, offering details on locations, job opportunities, delivery services, and current offers. The site is built on the Squarespace platform, leveraging its CMS and hosting capabilities, with a moderate level of technical sophistication and mobile optimization. Security posture is strong with HTTPS and HSTS enabled, though cookie consent mechanisms and detailed security policies are lacking. Overall, the site reflects a professional local franchise business with consistent branding and good user experience.

K

Kirsamers-Backstube GmbH

kirsamers-backstube.de

0

Kirsamers-Backstube GmbH is a regional German bakery business established in 1927, specializing in fresh, handmade bakery products including spelt (Dinkel) breads, rolls, and cakes. The company emphasizes quality, regional ingredients, and traditional craftsmanship, targeting general consumers seeking healthy and artisanal baked goods. The website reflects a medium-sized retail bakery with consistent branding and a clear business model focused on quality and regionality. Technically, the site is built on WordPress using modern plugins such as WPBakery Page Builder and Slider Revolution, hosted on rzone.de servers. The site is mobile optimized and performs moderately well with good SEO and accessibility basics. Security posture is adequate with HTTPS enabled and GDPR-compliant cookie consent mechanisms, though explicit security policies and incident response contacts are not present. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility and customer engagement.

F

Frecciarossa Official Merchandising

frecciarossa.shop

0

Frecciarossa Official Merchandising operates an e-commerce platform specializing in travel-related products such as trolleys, bags, clothing, and accessories, leveraging the strong brand identity of the Italian high-speed train Frecciarossa. The website targets consumers interested in stylish and elegant travel merchandise, positioning itself as the official merchandising partner. The business model is retail-focused, selling branded products online primarily to the Italian market with multilingual support. The company maintains a consistent brand presence and integrates social media channels to enhance customer engagement. Technically, the website is built on the Shopify platform, utilizing modern web technologies including jQuery, Google Tag Manager, and Iubenda for cookie and privacy management. The site demonstrates good mobile optimization, SEO practices, and performance metrics typical of a professionally managed e-commerce store. The use of structured data and canonical tags further supports search engine visibility. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements standard security headers. Cookie consent mechanisms comply with GDPR requirements, and no sensitive data exposure or vulnerable libraries were detected. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and security maturity. Overall, the website presents a low-risk profile with a solid business foundation and technical infrastructure. Strategic recommendations include enhancing security transparency, adding terms of service, and improving accessibility features to further strengthen trust and compliance.

Ray-Ban's official EU website serves as a comprehensive e-commerce platform for their iconic eyewear products, including sun and prescription glasses. The site reflects the brand's leadership in the eyewear retail market, offering a seamless shopping experience with multi-language support and a strong focus on brand authenticity and premium quality. Technically, the website leverages modern web technologies such as CoreMedia CMS, Algolia search, and integrates advanced fraud prevention and analytics tools, indicating a mature and well-maintained digital infrastructure. Security posture is robust with HTTPS enforcement, multiple security headers, and use of trusted third-party services, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR, making it a reliable platform for customers in the EU region.

N

NABU

nabu-shop.de

0

The NABU-Shop website is an e-commerce platform operated by NABU, a prominent German non-profit organization dedicated to nature conservation. The site offers a wide range of products related to bird feeding, nesting aids, nature observation, books, and gifts, targeting nature enthusiasts and supporters of environmental protection. The platform leverages Magento 2 technology, integrating modern JavaScript libraries and Google services for analytics and tag management. The website demonstrates a good level of digital maturity with responsive design, clear navigation, and GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Overall, the site reflects a trustworthy and professional online presence aligned with NABU's mission.

T

Famms - Fashion HTML Template

tokox1500.store

0

The website tokox1500.store is a newly created e-commerce platform focused on fashion retail, offering products such as men's shirts and women's dresses. The site uses a basic Bootstrap template with standard e-commerce features including product listings, customer testimonials, and newsletter subscription. The business appears to be a small-scale online retailer with no clear company branding or detailed business information. Technically, the site employs common web technologies like Bootstrap, jQuery, and Font Awesome, and is hosted with DNS services via Cloudflare. However, there is no evidence of HTTPS enforcement or advanced security measures in place. Security posture is weak due to missing security headers and lack of privacy or cookie policies, which also impacts compliance with GDPR and other regulations. Contact information is present but generic and likely placeholder, reducing business credibility. Overall, the site is functional but basic, with significant room for improvement in security, privacy, and business transparency.

E

easyApotheke Hildesheim Versandhandel

easyapotheke.de

0

easyApotheke.de is a German online pharmacy specializing in affordable pharmaceutical products and health-related goods. The company offers a broad range of medications and health products with convenient online ordering and free shipping for orders over 39€. Positioned as a trusted and customer-focused online retailer, easyApotheke targets consumers in Germany seeking cost-effective and reliable pharmacy services. The website features clear contact information, including a physical address in Hildesheim and a dedicated customer service phone number, enhancing business credibility. Technically, the website is built on the Mauve Webshopsystem 3 platform and integrates modern analytics and consent management tools such as Google Tag Manager, Microsoft Clarity, and Consentmanager.net. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Hosting is managed via domaincontrol.com, a GoDaddy service, indicating a standard and reliable infrastructure. From a security perspective, the site employs HTTPS and secure form handling, with a consent mechanism for cookies, reflecting compliance with GDPR requirements. However, explicit security headers like Content-Security-Policy and X-Content-Type-Options are not evident, and no formal security policy or incident response contact is published. No vulnerabilities or suspicious patterns were detected, and the WHOIS data aligns reasonably with the business claims, supporting legitimacy. Overall, easyApotheke.de presents a professional, secure, and compliant online pharmacy platform with strong business credibility and a solid technical foundation. Strategic improvements in security header implementation and publishing a security policy could further enhance trust and security posture.

W

Wirtschaftskammer Wien - Marketing

meinkaufstadt.wien

0

meinkaufstadt.wien is a marketing and lifestyle platform operated by Wirtschaftskammer Wien - Marketing, focusing on promoting shopping, events, and local businesses in Vienna. The platform serves residents and visitors by providing curated content on retail, gastronomy, and cultural events, positioning itself as a trusted local guide backed by the Vienna Chamber of Commerce. Technically, the website employs modern frontend technologies such as SvelteKit, integrates user consent mechanisms for privacy compliance, and uses multiple marketing and analytics tools with proper consent management. Security posture is solid with HTTPS enforced and captcha protections on forms, though explicit security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its target audience.

O

OPUS Fashion

opus-fashion.com

0

OPUS Fashion is a well-established European women's fashion brand offering a wide range of casual and feminine clothing through its e-commerce platform. The company emphasizes sustainability, fair working conditions, and provides a seamless shopping experience with multiple payment options and international shipping. Technically, the website is built on modern frameworks such as Spryker and uses Storyblok CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response information are absent. The lack of WHOIS domain registration data is a concern but does not detract significantly from the professional presentation and trustworthiness of the site. Overall, the site is safe, compliant with GDPR, and targets a general audience interested in fashion.

B

Benjamin Moore

benjaminmoore.com

0

Benjamin Moore is a well-established premium paint and stain brand offering a wide range of colors and products for both consumers and professionals. The website showcases a comprehensive catalog of paint colors, tools, and inspiration, positioning the company as a leader in the retail paint industry. The digital presence is modern, leveraging React and Next.js frameworks, and integrates multiple marketing and analytics tools to enhance user engagement and data collection. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit privacy policies are missing from the analyzed content. The absence of WHOIS data is a notable gap, but the website's branding and content strongly support its legitimacy. Overall, the site provides a professional and trustworthy experience for its target audience.

U

Ulmer City Marketing e.V.

ulmercity.de

0

Ulmer City Marketing e.V. is a local economic association dedicated to supporting and promoting the retail, service, hospitality, and gastronomy sectors in Ulm, Germany. The organization focuses on marketing the city center, organizing events, and managing voucher programs to enhance the local business environment. The website reflects a professional and consistent brand image, targeting local businesses and consumers with relevant content and services. Technically, the site is built on Webflow with modern animation libraries and includes cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response information. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the site is trustworthy and functional but could improve in compliance and security transparency.

I

Interdependence GmbH

hotelshop.one

0

HOTELSHOP.one is a German-based e-commerce platform operated by Interdependence GmbH, specializing in selling high-quality hotel products such as beds, mattresses, bedding, and care products for home use. The business targets consumers seeking premium hotel-quality items and also offers B2B services. The website is built on the Shopware CMS platform and integrates modern e-commerce technologies including Google Tag Manager, reCAPTCHA v3, and Trusted Shops certification to enhance trust and security. The site is mobile-optimized with good navigation and user experience, supporting a medium-sized retail operation founded in 2016. Security posture is generally good with HTTPS and anti-bot measures, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is limited due to the absence of explicit privacy and cookie policies in the provided content. Overall, the domain registration is consistent and trustworthy, matching the business entity and country.

F

Feria Outlet Valladolid

feriaoutletvalladolid.com

0

Feria Outlet Valladolid is a Spanish event organizer specializing in retail outlet fairs offering discounts up to 80% on major brands. The website serves as an information portal for upcoming events, galleries, and participation details, targeting local consumers interested in discounted shopping experiences. The business is relatively new, founded in 2022, and operates primarily in the retail and hospitality sectors within Spain. Technically, the site is built on WordPress using Elementor, with integration of common web technologies such as jQuery and Bootstrap, and hosted behind Cloudflare DNS services. The site demonstrates good digital maturity with structured data, SEO optimization, and mobile responsiveness. Security posture is adequate with HTTPS enforced and GDPR cookie compliance implemented, though additional security headers and DNSSEC could improve resilience. No critical vulnerabilities or suspicious patterns were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though lacking explicit contact emails and terms of service pages.

Y

yack.rocks GmbH

weekli.de

0

weekli.de is a German digital platform operated by yack.rocks GmbH that aggregates weekly retail brochures, offers, and store information from a wide range of retailers. The website targets general consumers in Germany seeking to save money by browsing current offers and coupons online. It holds a strong market position with partnerships with major retailers such as Kaufland, Lidl, and MediaMarkt, and cooperates with regional newspapers to provide up-to-date content. The platform supports mobile users with dedicated iOS and Android apps, enhancing accessibility and user engagement. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Google Adsense, and CookieFirst for consent management. The site is mobile-optimized with good SEO practices and a clear navigation structure. Performance is moderate, with room for improvement in accessibility features. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, though some security headers could be enhanced. No critical vulnerabilities or security issues were detected. The site respects GDPR requirements with a comprehensive privacy policy and cookie consent mechanism. Contact information is partially available, including an email address and a contact form linked via the parent company site. The domain registration is consistent with the business profile, indicating legitimacy. Overall, weekli.de presents a professional, trustworthy, and user-friendly platform for retail brochure aggregation in Germany, with a good balance of content quality, technical implementation, and privacy compliance.

Ray-Ban's official EU online store offers a comprehensive e-commerce platform for purchasing sun and prescription eyewear. The website reflects the brand's strong market position as a leader in eyewear, providing premium products with a focus on style and authenticity. The site targets European consumers and supports multiple regional versions, indicating a broad international presence. Technically, the website employs a modern tech stack including CoreMedia CMS, Algolia search, and various marketing and security tools such as Tealium and Forter, ensuring a robust and scalable infrastructure. Security posture is strong with HTTPS enforced and integration of fraud prevention services, although some security headers are not explicitly detected in the provided content. Privacy compliance indicators such as privacy and cookie policies are not clearly found in the analyzed content, suggesting room for improvement in transparency and GDPR compliance. Overall, the website is professional, trustworthy, and well-optimized for user experience, with no signs of blocking or WAF interference. The absence of WHOIS data limits domain registration insights but does not detract from the site's legitimacy given the brand recognition and secure implementation.

A

Anna Cichosz

annacichosz.pl

0

Anna Cichosz operates a Polish-language fashion e-commerce website specializing in high-quality designer clothing including Haute Couture and Pret a Porter collections. The site targets fashion-conscious consumers in Poland, offering a curated selection of dresses, suits, and accessories. The business appears to be a small-sized, established brand with a domain registered since 2010, indicating a stable market presence. Technically, the website is built on WordPress with WooCommerce, leveraging modern frontend libraries such as Bootstrap and Swiper.js, and SEO optimized with Yoast. The site is mobile-friendly and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and secure e-commerce forms, but lacks advanced security headers and explicit privacy or terms of service documentation, which are compliance gaps. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security best practices.

T

TEXET POLAND Sp. z o.o.

texet.pl

0

Texet Poland Sp. z o.o. is a medium-sized Polish company specializing in promotional clothing, workwear, bags, and corporate gifts tailored for branding purposes. Operating for over 25 years, it serves businesses and advertising agencies by providing a wide portfolio of brands under the umbrella of the Swedish New Wave Group. The website demonstrates a professional and consistent brand presence with clear navigation and a focus on B2B services. Technically, the site uses modern web technologies including Bootstrap, jQuery, and various analytics and marketing tools, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers are not explicitly detected, suggesting room for improvement. The absence of WHOIS data from the .pl registry introduces some uncertainty regarding domain registration legitimacy, but the business content and social proof indicate a legitimate operation. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility.

F

FederDistribuzione

federdistribuzione.it

0

FederDistribuzione is a prominent Italian federation representing companies in the modern food and non-food distribution sector. The website serves as a comprehensive platform for institutional information, news, sustainability reports, and publications relevant to its members and stakeholders. The organization positions itself as a key player in advocating for the interests of modern distribution companies in Italy, emphasizing sustainability and regulatory engagement. Technically, the website is built on WordPress with modern libraries such as jQuery and Font Awesome, and integrates Google Tag Manager and Iubenda for analytics and cookie compliance respectively. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit policies could enhance trust and compliance. Overall, the site is professional, content-rich, and trustworthy, with a high legitimacy score based on WHOIS data and domain consistency.

W

Wellmade

well-made.it

0

Wellmade is a digital platform dedicated to discovering and promoting the best Italian artisans. It serves as a community hub where users can find artisans by region or craft, learn about their bespoke products and services, and leave reviews. The platform positions itself as a niche leader in the Italian artisanal retail sector, targeting consumers interested in authentic craftsmanship and cultural heritage. The website is built on WordPress with a modern tech stack including SEO optimization and social media integration, reflecting a mature digital infrastructure. Security measures such as HTTPS, reCAPTCHA, and security headers are in place, indicating a good security posture. However, formal security policies and incident response contacts are not publicly available, suggesting room for improvement in transparency and compliance. Overall, the site is professional, trustworthy, and well-optimized for its audience.

Wella International Operations Switzerland Sàrl operates a global hair care brand with a website that serves as a selector directing visitors to professional or retail product lines. The website is professionally designed with consistent branding and clear navigation, targeting both hair care professionals and retail consumers. The technical infrastructure includes Adobe DTM and AppMeasurement for analytics and tag management, alongside common libraries like jQuery and Bootstrap, indicating a mature digital presence. Security posture is moderate with no visible security headers in the provided data, and WHOIS information is unavailable, which is unusual but likely due to privacy protection for a well-known brand. Overall, the site is safe, compliant with privacy regulations, and trustworthy, though improvements in security headers and contact transparency are recommended.

C

Certilogo

certilogo.com

0

Certilogo operates as a leading connected product and authentication platform primarily serving the fashion and luxury sectors. The website presents a professional and modern digital presence, leveraging technologies such as React, Google Tag Manager, and OneTrust for cookie consent management. The platform aims to connect products with people to enhance brand authentication and consumer trust. Despite the professional front-end and privacy compliance, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. No contact information or detailed business policies are readily available, which may impact user trust and business credibility. Security posture is generally good with HTTPS enforced and cookie consent implemented, but additional security headers and published policies would strengthen the security framework. Overall, the website is functional, GDPR compliant, and well-designed, but domain registration opacity and limited business transparency suggest caution.

C

Camera Nazionale della Moda Italiana

milanomodadesign.it

0

Camera Nazionale della Moda Italiana operates as a key Italian fashion industry association, organizing and promoting Milano Moda Design events that merge fashion and design excellence. The website serves as an information hub for event calendars, galleries, and industry news, targeting fashion professionals and enthusiasts. The technical infrastructure leverages modern analytics and tracking tools, with a responsive design and basic accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the organization's market position as a leading fashion authority in Italy.

C

CONSORZIO DI TUTELA DELLA DENOMINAZIONE DI ORIGINE CONTROLLATA PROSECCO

prosecco.show

0

The website prosecco.show serves as the official online presence of the Consorzio di Tutela della Denominazione di Origine Controllata Prosecco, a consortium dedicated to promoting Prosecco DOC wines and their producers. It offers a curated directory of producers, links to their online shops, and facilitates consumer access to authentic Prosecco DOC products. The site targets wine consumers and enthusiasts, primarily within Italy but also internationally, positioning itself as an authoritative source for Prosecco DOC information and commerce. Technically, the website is built on WordPress and employs modern JavaScript libraries such as Swiper for interactive sliders, alongside Google Analytics and Google Tag Manager for visitor tracking. It integrates Iubenda services for privacy and cookie compliance, reflecting a mature approach to GDPR requirements. The site is mobile-optimized with a responsive design and provides a good user experience with clear navigation and professional branding. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, it lacks visible security policy documentation and incident response contacts, and no advanced security headers were detected. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data aligns well with the business claims, showing a legitimate and consistent registration without privacy protection, enhancing trustworthiness. Overall, prosecco.show is a well-maintained, professional consortium website with good privacy compliance and moderate security posture. Strategic improvements in security policy transparency and header implementation could further strengthen its security stance and user trust.

B

Barilla G. e R. F.lli S.p.A

barilla.com

0

Barilla G. e R. F.lli S.p.A is a well-established Italian family-owned food company founded in 1877, recognized globally as a leader in pasta and ready-made sauces, with a strong presence in continental Europe and Scandinavia. The website serves as a regional portal for Finland, offering product information, recipes, and campaigns, targeting general consumers interested in Italian food products. The digital infrastructure leverages modern JavaScript libraries, Google Tag Manager for analytics, and OneTrust for cookie consent, indicating a mature digital presence. The site is mobile-optimized and accessible, with good SEO and user experience. Security posture is solid with HTTPS and privacy compliance, though explicit security headers and incident response information are absent. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract from the overall legitimacy of the brand presence online. Strategic recommendations include enhancing security headers, publishing a security policy, and clarifying domain registration details.

C

Camera Nazionale della Moda Italiana

cameramoda.it

0

Camera Nazionale della Moda Italiana (CNMI) is a prominent Italian non-profit association dedicated to coordinating and promoting the Italian fashion industry. The organization serves as a key reference point for Italian style, fashion, and customs, organizing major events such as Milan Fashion Week and supporting sustainability and new talent initiatives. The website reflects a mature digital presence with comprehensive content, clear navigation, and active engagement through social media and newsletters. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Analytics, and Facebook Pixel, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and privacy compliance evident through detailed policies and consent mechanisms, although some security headers could be enhanced. Overall, CNMI's website demonstrates professionalism, trustworthiness, and alignment with GDPR requirements, supporting its role as a leading fashion authority in Italy.

T

tonies

tonies.de

0

Tonies is a well-established German retail company specializing in children's audio products, notably the Toniebox and associated audio content. The company positions itself as a market leader in this niche, offering a range of products including hardware, audio content, bundles, and accessories. The website reflects a mature e-commerce platform with a focus on user experience, mobile optimization, and brand consistency. Technically, the site leverages modern web technologies such as React with Next.js, AWS hosting, and integrates consent management tools to comply with privacy regulations. Security posture is strong with HTTPS enforcement, domain locking, and AWS WAF protections, although DNSSEC is not enabled. Privacy and terms policies are not explicitly found in the analyzed content, representing an area for improvement. Overall, the site is professional, trustworthy, and safe for its target audience of children and parents.

F

FISASCAT CISL

laboratorioterziario.it

0

Laboratorio Terziario is a digital publication and information portal operated by FISASCAT CISL, a recognized labor federation representing workers in the tertiary, tourism, and services sectors in Italy. The website serves as a hub for union news, contract updates, and sector-specific publications, targeting workers and union members. The platform is supported by Union Labor Srl and has been active since 2007, reflecting a mature and established presence in the Italian labor union landscape. Technically, the website employs modern web technologies including Next.js, Bootstrap, and Google Analytics, ensuring a responsive and user-friendly experience. Security measures such as HTTPS and DNSSEC are in place, although additional HTTP security headers could enhance protection. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information including a designated Data Protection Officer. Overall, the site demonstrates a solid security posture and trustworthy business credibility, making it a reliable resource for its audience.

X

XXXLdigital

xxxl.digital

0

XXXLdigital is the digital organizational unit of the XXXLutz Group, one of the world's largest furniture retailers. The company focuses on designing and developing online shops for multiple brands within the group, managing digital touchpoints, and modernizing physical stores with innovative digital solutions. Their market position is strong as the digital arm of a major retail group, targeting digital professionals and job seekers interested in the furniture retail sector. Technically, the website is built on Squarespace CMS, integrating standard analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is well-optimized for mobile and SEO, with good design quality and user experience. Security-wise, the site enforces HTTPS with HSTS and shows no exposed sensitive data or vulnerabilities, though it lacks explicit security policies or incident response contacts. Privacy compliance is basic, with a privacy policy present but no visible cookie consent mechanism. Overall, the website is professional and trustworthy, though improvements in privacy and security transparency are recommended.

H

Hausbrandt Trieste 1892 Handels GmbH

hausbrandt1892.at

0

Hausbrandt Trieste 1892 Handels GmbH is a well-established Austrian coffee company specializing in premium Italian espresso products. The website reflects a mature brand with a strong market position in retail coffee sales, including beans, ground coffee, capsules, and related beverages. The company leverages an online shop and maintains active social media channels to engage its target audience of coffee enthusiasts in Austria. Technically, the website is built on WordPress with modern plugins and SEO optimizations, providing a good user experience with mobile responsiveness and clear navigation. Security posture is adequate with HTTPS and some security best practices, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the site is trustworthy and professional, supporting the company's credibility and business goals.

Unilever PLC is a global leader in consumer goods, specializing in nutrition, hygiene, and personal care products. The company operates a large portfolio of well-known brands aimed at improving everyday life for consumers worldwide. The website reflects a mature digital presence with comprehensive content on corporate strategy, sustainability, and investor relations, targeting a broad audience including consumers, investors, suppliers, and partners. Technically, the website employs modern web technologies such as the Astro framework, optimized for performance and mobile responsiveness. It uses HTTPS with strong security headers and implements structured data for SEO enhancement. The site integrates standard analytics tools like Google Analytics and Tag Manager, with clear cookie and privacy policies indicating GDPR compliance. From a security perspective, the site demonstrates good practices including HTTPS enforcement, content security policies, and no visible vulnerabilities or exposed sensitive data. However, explicit incident response contacts and a security.txt file are not found, which could improve transparency and vulnerability management. Overall, the website is professional, secure, and compliant with privacy regulations, supporting Unilever's reputation as a trustworthy multinational corporation. The WHOIS data is not publicly available, likely due to privacy protection, which is justified for a company of this scale. Strategic recommendations include enhancing incident response visibility and maintaining regular security audits.

G

GranChef

granchefpremiumfood.it

0

GranChef is a specialized B2B e-commerce platform focused on distributing premium food products to upscale gastronomy clients, primarily in Italy and German-speaking markets. The website presents a professional and well-structured catalog with multi-level navigation, targeting professional chefs and hospitality businesses. Technically, the site is built on the Shopware CMS platform, leveraging modern JavaScript and SVG icons, with Google Tag Manager and CookieFirst for analytics and consent management. Security posture is solid with HTTPS enforced and cookie consent implemented, though improvements are needed in security headers and published policies. Overall, the site is trustworthy and functional but lacks some compliance documentation such as privacy policy and terms of service.

T

tonies

tonies.com

0

Tonies is a well-established company specializing in screen-free audio players and educational toys for children, primarily targeting ages 1-9. Their flagship product, the Toniebox 2, is positioned as a market leader in this niche, offering innovative audio storytelling experiences through physical audio characters called Tonies. The website reflects a mature e-commerce platform with a focus on user experience, modern technology, and compliance with privacy regulations through consent management. Technically, the site leverages modern frameworks such as Next.js and is hosted on AWS infrastructure, ensuring scalability and reliability. Security posture is strong with HTTPS enforcement, AWS WAF integration, and domain registration protections, although DNSSEC is not enabled. Privacy compliance is partially addressed with cookie consent but lacks visible privacy policy and terms of service links in the analyzed content. Overall, the site is professional, trustworthy, and safe for its target audience.

P

Procter & Gamble

for-me-online.de

0

ForMe is a consumer-oriented platform operated under the Procter & Gamble umbrella, designed to help users save time and money through cashback offers, product testing, free samples, and sweepstakes. The website targets consumers interested in family, wellness, and household products, leveraging strong brand partnerships and a well-established corporate backing. Technically, the site is built on modern frameworks including React and Sitecore, hosted on Microsoft Azure, and employs advanced security measures such as HTTPS, security headers, and reCAPTCHA Enterprise. The security posture is strong, with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through comprehensive policies linked to official Procter & Gamble domains. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, making it a reliable platform for its users.

O

Oral-B Germany

oralb.de

0

Oral-B Germany operates a comprehensive e-commerce and brand marketing website focused on oral health products including electric and manual toothbrushes, replacement brush heads, toothpaste, and oral hygiene accessories. The site targets German consumers and is part of the global Procter & Gamble portfolio, positioning Oral-B as a leading trusted brand in dental care. The website demonstrates a high level of digital maturity, utilizing modern technologies such as Next.js and React, hosted on Microsoft Azure infrastructure, and integrates advanced marketing and analytics tools like Google Analytics and Bazaarvoice. The site is well-optimized for mobile and SEO, providing an excellent user experience with clear navigation and rich content. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response contacts are not published. Privacy compliance is robust with GDPR-aligned policies and cookie consent mechanisms. Overall, the website reflects a professional, trustworthy, and secure online presence for a major consumer brand.

EXPERT Elektrofachhandel operates as a large regional electrical retail chain in Austria, with a strong physical presence across 180 stores and an online platform. The business focuses on selling electrical appliances, providing electrical installation services, and offering repair and maintenance. The website reflects a professional retail business model targeting general consumers in Austria. Technically, the site uses modern JavaScript frameworks such as Vue.js and Nuxt.js, with integration of third-party services like Klarna for payments and Google Tag Manager for analytics. The site is mobile optimized and has good SEO practices, though accessibility is basic. Security posture is adequate with HTTPS enabled but lacks important security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. WHOIS data confirms the legitimacy of the domain with consistent registrant information matching the business claims. Overall, the website is functional and professional but would benefit from enhanced privacy and security measures to improve trust and compliance.

I

In Good Spirits

ingoodspirits.at

0

In Good Spirits Vertriebsgesellschaft is a small Austrian company specializing in the distribution of spirits, sparkling wines, and non-alcoholic beverages primarily targeting the gastronomy and retail sectors in Austria. Their website reflects a professional and consistent brand presence, showcasing a diverse product portfolio with detailed descriptions. The company leverages WordPress CMS with SEO optimizations but lacks some advanced security and compliance features. Technically, the site is moderately performant and mobile-optimized, though it could benefit from enhanced accessibility and security headers. Security posture is adequate with HTTPS enforced but missing several best practice headers and explicit incident response policies. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Overall, the website is trustworthy and suitable for mature audiences given its alcohol-related content.

B

Beikircher Grünland Srl

agritura.com

0

Agritura by Beikircher Grünland is an established Italian e-commerce platform specializing in agricultural products, animal husbandry supplies, and gardening accessories. Founded in 2008, the company targets farmers, hobby breeders, and gardening enthusiasts primarily in Italy, offering a wide range of Beikircher branded feeds and equipment. The website leverages Shopify as its platform, integrating customer review systems such as Google Reviews and Judge.me to build trust and credibility. The site is multilingual, supporting Italian, German, and English languages, enhancing its accessibility to a broader audience. Technically, the website employs modern web technologies and maintains good performance and mobile optimization, although some accessibility features could be improved.

H

Handels- und Dienstleistungsverband Südtirol

unione-bz.it

0

The Handels- und Dienstleistungsverband Südtirol (hds) is a regional trade and service association serving businesses in South Tyrol, Italy. It provides professional consulting, member services, training, and advocacy, positioning itself as a key regional player affiliated with the national Dachverband Confcommercio. The website reflects a mature digital presence with good content quality, clear navigation, and mobile optimization. Technically, it employs modern JavaScript libraries, consent management tools, and analytics platforms, hosted by a professional provider. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the site is trustworthy and professionally maintained, serving its target audience effectively.

Milchwerke Berchtesgadener Land Chiemgau eG operates a regional dairy cooperative focused on producing high-quality, sustainable dairy products. The website emphasizes values such as quality, origin, sustainability, and fairness, targeting consumers who value responsible agriculture and regional products. The business model is cooperative-based dairy production and retail, positioning itself as a trusted regional brand in Germany. The website is built on the Neos CMS platform using the Flow PHP framework, hosted on servers indicated by the domain's nameservers. The technical infrastructure is modern and supports good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR-compliant cookie consent. Overall, the website is professional, trustworthy, and aligned with the business's values and market position.

O

OBI

obi.pl

0

OBI.pl is a large Polish retail website specializing in building materials, gardening products, and home improvement solutions. The site targets general consumers and professionals seeking quality products for construction and garden care. It operates both online and through physical stores, offering promotions and loyalty programs. Technically, the website is built on modern frameworks such as Vue.js and integrates advanced analytics and marketing tools like Google Tag Manager, Hotjar, and Instana, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and multiple security headers, though explicit privacy and terms policies are not clearly found in the provided content. The absence of WHOIS data from the Polish registry is notable but does not detract significantly from the site's legitimacy given the professional branding and consistent sister sites in other countries. Overall, OBI.pl presents a trustworthy and well-maintained online presence in the retail sector.

O

OBI

obi.ch

0

OBI is a leading retail and e-commerce company specializing in home improvement, gardening, and construction products in Switzerland. The website serves as a comprehensive online shop and information portal for consumers interested in these sectors. The company maintains a strong market position with a consistent brand presence and localized content tailored for the Swiss market. Technically, the website employs modern frameworks such as Vue.js and integrates advanced analytics and monitoring tools like Google Tag Manager, Hotjar, and Instana, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and implements standard security headers, but lacks visible privacy and cookie policies, as well as explicit incident response contact information, which are areas for improvement. Overall, the website is professional, trustworthy, and well-optimized, but could enhance its privacy compliance and transparency to further strengthen user trust.

F

Filifolli

filifolli.it

0

Filifolli is a niche Italian e-commerce business specializing in luxury women's legwear, including silk pants, capris, leggings, shorts, and culottes adorned with lace and embroidery. The website positions itself as a premium brand targeting women seeking high-quality, made-in-Italy fashion products. The digital infrastructure is built on WordPress with WooCommerce, leveraging a variety of marketing and analytics tools to support a mature online presence. The site demonstrates good SEO practices and mobile optimization, contributing to a positive user experience. Security measures such as HTTPS and Google reCAPTCHA are implemented, though explicit security and privacy policies are not published, representing an area for improvement. Overall, the website is professional and trustworthy, with no signs of blocking or malicious activity.

A

Alber's

albers.it

0

Alber's is an Italian textile company specializing in the production and retail of OEKO-TEX certified textile products, focusing on comfort and quality for the autumn/winter 2025-26 season. The website is built on WordPress with WooCommerce, indicating a mature e-commerce infrastructure. The technical setup includes a variety of marketing and analytics tools, demonstrating a strong digital marketing orientation. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks explicit security headers and published privacy policies, which are areas for improvement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

S

someday Fashion

someday-fashion.com

0

someday Fashion is a German-based e-commerce retailer specializing in sophisticated and sustainable women's fashion. The brand emphasizes timeless designs, high-quality materials, and environmental responsibility, targeting women who value style and sustainability. The website is professionally designed, mobile-optimized, and offers a seamless shopping experience with multiple payment options and international shipping. Technically, the site leverages modern frameworks such as Spryker and Vue.js, with content managed via Storyblok CMS. Security is well-implemented with HTTPS and security headers, complemented by a GDPR-compliant cookie consent mechanism. However, the absence of WHOIS data for the subdomain is typical and does not detract from the site's legitimacy. Overall, someday Fashion presents a trustworthy and professional online presence in the retail fashion sector.

L

LUMAS

lumas.de

0

LUMAS operates a professional online and physical gallery platform specializing in hand-signed, limited edition photo art and artworks. The company targets art collectors and enthusiasts seeking quality and affordable art pieces. Their market position is strong with multiple galleries across Europe and North America, supported by a well-designed and user-friendly e-commerce website. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and Klaviyo for marketing and analytics, with good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent managed via Cookiebot, though some security headers could be improved. Overall, the site is trustworthy and compliant with privacy regulations. The WHOIS data for the subdomain is unavailable, which is typical and not suspicious for subdomains. The website presents no signs of malicious activity or adult content.

S

simplicity networks GmbH

simplicity.ag

0

Simplicity networks GmbH operates as a network supporting the fashion brands OPUS and someday, focusing on simplifying career opportunities and fostering a digital and innovative work environment. The website targets job seekers and professionals interested in retail, sales, and IT roles within the fashion industry. The business model centers on providing a collaborative network and career platform for these brands, positioning itself as a niche player emphasizing simplicity and clarity in operations. Technically, the website is built on WordPress 6.5.4, utilizing modern JavaScript libraries such as Mapbox GL JS and Google Tag Manager for analytics and tracking. CookieFirst is implemented for consent management, reflecting good privacy practices. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable or privacy protected, which is common and justified for this business type, though it limits domain registration transparency. Overall, the website presents a professional and trustworthy front with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and providing clearer contact channels for security incidents to improve trust and compliance further.

P

Pistor AG

pistor.ch

0

Pistor AG is a well-established Swiss wholesale partner specializing in bakery, gastronomy, hospital, and home care supplies. The company operates a comprehensive product range and offers expert consulting and reliable delivery services, supported by a unique specialist network. Their market position is strong within Switzerland, serving multiple sectors with a large partner network and a history spanning over 100 years. Technically, the website is built on Drupal 10, uses modern web technologies, and includes analytics and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with HTTPS and basic best practices, though it lacks explicit security headers and public incident response policies. Overall, the website is professional, trustworthy, and well-optimized for users, but could improve privacy transparency and security disclosures.

I

IIC-INTERSPORT International Corporation GmbH

intersport.com

0

Intersport International Corporation GmbH operates a global sports retail platform with a strong presence across multiple countries, as evidenced by the extensive country-specific links on their website. The company positions itself as a leader in the sports retail sector, offering products and services tailored to diverse markets. The website is professionally designed, mobile-optimized, and provides clear navigation to localized shops and corporate information. Technically, the site leverages WordPress CMS with a modern JavaScript stack and is hosted behind Cloudflare, ensuring good performance and security. Privacy compliance is well addressed with visible cookie consent mechanisms and comprehensive legal pages. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site demonstrates a mature digital presence with a solid security posture and trustworthy business credibility.

H

HORNBACH Baumarkt AG

hornbach.de

0

HORNBACH Baumarkt AG operates a leading home improvement retail and e-commerce platform primarily serving the German market and other European countries. The website offers a comprehensive product catalog exceeding 500,000 items, project planning resources, and professional services, positioning itself as a top-tier DIY and construction materials provider. The company is well-established with a long history dating back to 1877 and operates under the HORNBACH Holding AG & Co. KGaA umbrella. Technically, the website employs modern web technologies including Stencil.js for web components, Usercentrics for consent management, and Dynatrace for real user monitoring, indicating a mature digital infrastructure. The site is optimized for performance, mobile responsiveness, and accessibility, with strong SEO practices and structured data enhancing discoverability. Security posture is robust with enforced HTTPS, comprehensive security headers, and GDPR-compliant consent mechanisms. However, the absence of a dedicated security policy or incident response contact page suggests room for improvement in transparency and readiness. No vulnerabilities or suspicious activities were detected. Overall, the website reflects a professional, trustworthy, and secure online presence suitable for an enterprise-level retail business. Strategic enhancements in security communication and incident response disclosures would further strengthen stakeholder confidence.

P

Pro Hockey GmbH

hockeyshop.it

0

Pro Hockey GmbH operates a specialized e-commerce platform focused on professional hockey sports equipment, including ice hockey, inline hockey, and floorball products. The company targets athletes and enthusiasts in the hockey sports niche primarily in Italy, offering a wide range of products such as sticks, protective gear, apparel, and accessories. The website is well-structured with clear navigation and product categorization, supporting a positive user experience. The business maintains a credible market position with physical locations and verified contact information.