Security Directory

B

Büro Bum Bum

buerobumbum.com

52

Büro Bum Bum is a small creative collective specializing in visual communication and design, based in Berlin, Germany. The website serves as a showcase portfolio highlighting various projects including screenprints and illustrations. The business appears to be well-established with a domain age dating back to 2013, consistent with the company's founding period. The target audience is general, focusing on clients interested in creative visual communication services. Technically, the website is built using Angular 16, employs responsive design, and integrates Google Analytics with IP anonymization, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance as no privacy or cookie policies are present, and no consent mechanisms are implemented. Security posture is adequate with HTTPS enabled but lacks important security headers and DNSSEC is not enabled. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

Poznej Příbram is the official tourism portal for the city of Příbram, Czech Republic, providing comprehensive information on local attractions, cultural events, restaurants, accommodations, and outdoor activities. The website targets tourists, families, and culture enthusiasts, positioning itself as a key regional resource supported by the municipal government. Technically, the site employs modern JavaScript libraries such as jQuery, Flatpickr, and Google Maps API to deliver interactive features including a trip planner and event calendar. The site is mobile-optimized with good navigation and content relevance, though some accessibility features could be enhanced. Security-wise, the website enforces HTTPS and includes a cookie consent mechanism, but lacks advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a government tourism site. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements, though it could benefit from improved security headers and clearer contact information.

Č

Čachrov CZ

cachrov.cz

42

Čachrov CZ is a local community informational website serving the Čachrov region in the Czech Republic. It provides news, historical content, current events, and resources for residents and enthusiasts. The site is built on WordPress with a variety of plugins enhancing multimedia and social media integration. It maintains an active content publishing schedule and engages with users via social media platforms such as Facebook, Twitter, and YouTube. The website's technical infrastructure is modern and includes HTTPS encryption, Google Analytics, and Google Maps integration. However, it lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS but could be improved by adding security headers and formal incident response information. The absence of WHOIS data limits domain trust assessment, but the website content and structure indicate a legitimate community portal. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and publishing a security.txt file to improve transparency and compliance.

J

Jiří Turek

turekreality.cz

56

Jiří Turek operates a small real estate brokerage business in the Czech Republic, specializing in sales and rentals of residential and commercial properties. The company offers comprehensive services including market analysis, property valuation, legal support, professional photography, and property transfer assistance. The website is professionally designed with clear navigation and is targeted at local customers seeking real estate services. Technically, the site uses a custom real estate system called Realman, integrates Google Maps for location services, and employs standard web technologies such as jQuery and Font Awesome. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact details appear legitimate and professional. Overall, the site presents a trustworthy and functional digital presence for a local real estate business.

B

KOPEC

behydokopcu.cz

51

KOPEC is a Czech website dedicated to a series of uphill running races in Prague and its surroundings. The site provides race results, event information, rules, statistics, and community engagement features such as a guestbook and polls. The target audience is local runners and sports enthusiasts interested in these events. The website is built on WordPress with a variety of plugins to support social media integration, galleries, and mobile navigation. The design is functional and moderately consistent with the brand, offering good user experience and navigation clarity. Technically, the site uses modern web technologies including Bootstrap and jQuery, with a WordPress CMS platform. Performance is moderate, and mobile optimization is good. However, accessibility and SEO optimizations are basic. Security posture shows HTTPS usage but lacks visible security headers and formal security policies. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Overall, the security posture is average with room for improvement in policy transparency and technical security controls. The domain WHOIS data is consistent and legitimate, supporting the trustworthiness of the site. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

E-solutions, s.r.o. is a Czech-based technology company specializing in custom internet projects including web development, internet applications, mobile apps, and price monitoring services. With over 21 years of market presence and a solid client base, the company positions itself as a professional and experienced service provider in the Czech Republic. The website reflects a modern and professional digital presence with good design and user experience, supporting both Czech and English languages. Technically, the site uses modern JavaScript libraries, Google Analytics, Tag Manager, and Google Maps API, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers and formal privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the detailed contact information and business presentation support legitimacy. Overall, the website is a reliable representation of a small technology service company with room for improvement in privacy and security transparency.

C

Corradi

corradi.eu

67

Corradi is an established Italian company specializing in the design and manufacture of outdoor living solutions such as pergolas, sun sails, and closures. Founded in 1978 and now part of the Belgian Renson Group, Corradi holds a strong market position with internationally recognized products and a focus on design and innovation. The website reflects a professional and consistent brand image targeting both consumers and businesses interested in high-quality outdoor furniture and shading systems. Technically, the website uses modern web technologies including Google Tag Manager, Google Analytics, and CookiePro for consent management, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and cookie consent implemented, though some security headers and explicit privacy policies are missing. Overall, the site is safe, trustworthy, and compliant with basic privacy standards but could improve transparency and security documentation.

C

CentraleSupélec Alumni

centralesupelec-alumni.com

58

CentraleSupélec Alumni operates as the official alumni network for the prestigious French engineering school CentraleSupélec, offering a comprehensive platform for graduates and students to connect, share experiences, and access career opportunities. The website provides a variety of services including a member directory, event calendar, job board, and mentoring programs, positioning itself as a key resource for its community. The business model is membership-based with additional revenue from contributions and donations. Technically, the website employs modern web technologies such as Vue.js, Google Tag Manager, and Google Maps API, ensuring a responsive and interactive user experience. The platform integrates OAuth authentication with major providers, enhancing security and ease of access. While performance is moderate, the site is mobile-optimized and SEO-friendly. From a security perspective, the site enforces HTTPS and uses secure login mechanisms. However, some standard security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, representing an area for improvement. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good data protection practices. No vulnerabilities or exposed sensitive data were identified. Overall, the website is professional, trustworthy, and well-aligned with its educational and non-profit mission. The lack of WHOIS data for the subdomain is typical and does not detract from its legitimacy. Strategic recommendations include enhancing security headers, improving accessibility, and maintaining regular security audits to uphold trust and compliance.

M

Moonseven

moonseven.fr

48

Moonseven is a small Paris-based digital agency specializing in WordPress development, SEO training, content marketing, and digital strategy consulting. The company targets businesses and professionals seeking tailored WordPress and SEO solutions. Their market position is niche with a focus on quality and client engagement, supported by a portfolio including notable clients such as Disneyland Paris and Bouygues. Technically, the website is built on WordPress with common plugins like Yoast SEO and uses Google Analytics for tracking. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit privacy/cookie policies. WHOIS data is missing, which impacts domain legitimacy assessment. Overall, the website is functional and professional but would benefit from enhanced compliance and security measures.

U

Union Nationale Habitat Jeunes

habitatjeunes.org

56

Union Nationale Habitat Jeunes is a French non-profit organization dedicated to facilitating housing mobility for young people aged 16 to 30. It provides a wide network of housing sites and supportive services aimed at fostering social and individual development. The organization holds a significant national presence with over 800 sites and serves approximately 200,000 young people annually. The website reflects a professional and consistent brand image, targeting youth in various employment and educational statuses seeking affordable housing solutions. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates Google Analytics and Google Tag Manager for tracking. It uses Materialize CSS for responsive design and includes interactive features like sliders and Google Maps integration. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected in the content. The WHOIS data is unavailable or privacy-protected, which is common for non-profit entities and does not raise immediate concerns given the website's transparency and trust indicators. Overall, the website presents a low-risk profile with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

C

COSF Basket

cosf.fr

42

COSF Basket is a local basketball club based in Saint-Fons, France, providing community sports activities and information about team rosters, match schedules, and club history. The website serves primarily local players, fans, and community members interested in basketball. The business model is centered around sports club operations and community engagement, with a focus on the 2025/26 season. Technically, the website is built using modern Angular framework with Material Design components and Google Maps integration, hosted by OVH. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enabled and domain registration protections, but lacks security headers and formal privacy or cookie policies. No forms or analytics scripts were detected, indicating minimal data collection and tracking. Overall, the site is safe, trustworthy, and serves its intended audience well, though it would benefit from enhanced privacy compliance and security best practices.

E

Edunation

edunation.cz

54

Edunation is a specialized Czech company providing digital services tailored for educational institutions, including school website creation, graphic design, and virtual tours. The website reflects a focused business model targeting schools and school founders, with a strong presence in the Czech education sector. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Nette, and Google APIs, indicating a mature digital infrastructure. Security measures include HTTPS and Google reCAPTCHA, but the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the site is professional and trustworthy, though it lacks some compliance documentation and direct contact details. Strategic enhancements in privacy compliance and security policies would strengthen its market position and trustworthiness.

C

Centrum pro dětský sluch Tamtam, o. p. s.

tamtam.cz

47

Centrum pro dětský sluch Tamtam, o. p. s. is a Czech non-profit organization dedicated to supporting families with children who have hearing impairments. The website clearly targets this audience, providing resources, information, and community support. The organization maintains a professional online presence with consistent branding and active social media channels on Facebook and Instagram. The business model is focused on advocacy and support rather than commercial activities, positioning it as a trusted entity within its niche in the Czech Republic. Technically, the website employs modern web technologies including Bootstrap for responsive design, Google Fonts for typography, and Google Maps API for location services. Google Analytics is used for visitor tracking, indicating a moderate level of digital maturity. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, reflecting awareness of privacy regulations such as GDPR. However, explicit security headers are not detected, and no public security policy or incident response information is available. The absence of WHOIS data for the domain is a concern, as it reduces trust in the domain's legitimacy. Despite this, the website content and contact information appear legitimate and professional. Overall, the website scores well in content quality, technical implementation, and privacy compliance, but the lack of WHOIS transparency and some security best practices slightly reduce its security posture. Strategic recommendations include improving security headers, publishing a security policy, and verifying domain registration details to enhance trust and compliance.

C

Centrum sociálních služeb Ostrava, o.p.s.

css-ostrava.cz

49

Centrum sociálních služeb Ostrava, o.p.s. is a well-established non-profit organization founded in 2006, providing a broad range of social services primarily in the Czech Republic. Their services focus on supporting families, children, and individuals in difficult social situations through shelters, crisis centers, family counseling, and social activation programs. The organization maintains a professional web presence with clear navigation and multiple physical locations integrated via Google Maps, enhancing accessibility for their target audience. The website encourages donations and donations with tax deduction benefits, indicating a transparent and community-focused business model. Technically, the website uses modern JavaScript libraries such as Swiper.js and Google Maps API, along with Google Tag Manager for analytics, reflecting a moderate level of digital maturity.

R

Réseau Entreprendre®

reseau-entreprendre.org

63

Réseau Entreprendre® is a well-established non-profit organization focused on supporting entrepreneurs and business leaders through personalized mentoring and community engagement. The organization operates internationally with a strong presence in France and partners with numerous reputable companies and institutions. The website reflects a professional and comprehensive digital presence, leveraging WordPress and modern web technologies to deliver content effectively. Privacy and cookie policies are in place, indicating GDPR compliance. Security posture is good with HTTPS and recaptcha protections, though some security headers and explicit incident response information are absent. The lack of WHOIS data limits domain registration trust assessment, but the website's content and partner ecosystem support legitimacy. Overall, the site is a credible resource for entrepreneurship support and community building.

Č

Čazmatrans - Nova d.o.o.

cazmatrans.hr

53

Čazmatrans - Nova d.o.o. is a Croatian transportation company specializing in bus services within Croatia and international routes. The website provides an online ticket purchasing platform targeting general travelers and commuters. The company has a medium-sized presence with multiple subsidiaries and a well-established market position since 2012. The website is professionally designed with good navigation, mobile optimization, and relevant content focused on transportation services. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper.js, and integrates Google services like Tag Manager and Maps API, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, cookie consent implemented, and secure payment logos displayed, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with GDPR, and provides a safe user experience.

H

Humacom srl

humacom.com

53

Humacom srl is a Belgium-based communication agency specializing in event management and communication services, including physical and virtual events, association management, and corporate identity design. The company targets businesses of all sizes seeking professional event communication solutions and positions itself as a dynamic and creative agency with international reach. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on Drupal 7 with older JavaScript libraries, indicating some technical debt but remains functional and moderately optimized for mobile devices. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though lacking advanced security headers and updated libraries. Privacy compliance is well addressed with clear policies and GDPR consent mechanisms. The absence of WHOIS registration data is a concern and should be investigated further to confirm domain legitimacy. Overall, the website presents a trustworthy and professional front for the business, with room for technical and security improvements.

Y

Young Entrepreneurs in Science

youngentrepreneursinscience.com

10

Young Entrepreneurs in Science (YES) is a well-established non-profit educational program based in Germany, focused on equipping master’s students, doctoral candidates, and postdocs with entrepreneurial skills through free workshops and training programs. Supported by government ministries and business partners, YES aims to foster a cultural shift in science towards entrepreneurship and innovation. The website reflects a professional and consistent brand presence with clear messaging and a strong partnership ecosystem, including the Falling Walls Foundation as a parent organization. Technically, the site is built on WordPress with modern technologies and integrates multiple analytics and marketing tools, though it lacks a cookie consent mechanism and some security headers. Security posture is generally good with HTTPS and no exposed sensitive data, but could be improved by adding security policies and incident response contacts. Overall, the website is trustworthy, well-designed, and serves its target audience effectively.

E

EquipmentShare

equipmentshare.com

68

EquipmentShare is a large US-based construction equipment rental and technology company offering a wide range of rental equipment, sales of new and used machinery, and a proprietary fleet tracking platform called T3. The company operates a nationwide network of 348 locations, targeting construction firms and jobsite managers with integrated technology and service solutions. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, Datadog RUM, and Google Maps API, ensuring good performance and user experience. Security posture is strong with HTTPS, security headers, and privacy-conscious analytics implementation, though the absence of a public security policy or incident response contact is noted. The lack of WHOIS data limits domain trust verification but the overall site professionalism and business consistency support legitimacy. Strategic recommendations include publishing a vulnerability disclosure policy, incident response contacts, and enhancing accessibility compliance.

B

Bundesverband professioneller Bildanbieter e.V.

bvpa.org

63

The Bundesverband professioneller Bildanbieter e.V. (BVPA) is a well-established non-profit association founded in 1970, representing professional image providers and related service companies primarily in Germany and Europe. The organization offers key services including interest representation, legal advice, networking events, publications on image usage fees, and training seminars. The website reflects a professional and consistent brand presence targeting industry professionals and stakeholders in the media and photography sectors. Technically, the site is built on a modern WordPress platform with WooCommerce and CherryFramework, hosted likely by IONOS SE, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, though improvements are recommended in DNSSEC deployment and security headers. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate online presence.

D

deutsche Automobilberatung Oranienburg

dabag.de

48

The website www.dabag.de represents deutsche Automobilberatung Oranienburg, a small-sized automobile consulting and brokerage service based in Germany. The company offers services including automobile brokerage, fleet management, custom vehicle procurement, and financing solutions. The website is professionally designed using WordPress CMS with SEO optimization and targets automobile customers and fleet managers primarily in the German market. The business has been active since at least 2014, consistent with the domain age. Technically, the website employs a modern technology stack including jQuery, Google Tag Manager, Google Analytics, Meta Pixel, and Cookiebot for cookie consent management. The site is hosted likely on your-server.de, a German hosting provider, and uses HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well implemented with meta tags and structured data. From a security perspective, the site uses HTTPS and cookie consent with blocking mode, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The site uses multiple third-party analytics and marketing scripts, indicating extensive user tracking but with GDPR-compliant consent mechanisms in place. Overall, the website is safe, professional, and trustworthy with no adult or questionable content. The domain registration and hosting details align with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility to further strengthen the security posture and compliance.

B

Blauring Littau

brlittau.ch

66

Blauring Littau is a well-established non-profit youth organization based in Switzerland, focused on providing engaging activities and community events for girls and young women. The website serves as a communication platform for event announcements, group activities, and community engagement, reflecting a strong local presence and a 90-year history. Technically, the site is built on the Jimdo Creator CMS platform, leveraging modern web technologies and third-party widgets, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, though it lacks some formal documentation such as terms of service and security policies.

S

skyPixX GmbH

skypixx.ch

47

skyPixX GmbH is a Swiss-based small business specializing in graphic design and advertising technology services. Their offerings include direct printing, vehicle wrapping, signage, interior design, milling and cutting, POS displays, illuminated advertising, privacy and sun protection films, and logistics/montage services. The company targets local businesses and organizations seeking professional advertising and design solutions. The website presents a professional and consistent brand image with clear contact information and multimedia content such as videos and maps to enhance user engagement. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, Google Analytics, Google Maps API, Video.js, Lightbox2, and Typekit fonts. The site is mobile optimized with good navigation and user experience, although accessibility features are basic. Performance is moderate with no critical errors or broken elements detected. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, it lacks visible security headers such as Content-Security-Policy and Strict-Transport-Security, and no security or incident response policies are published. The absence of privacy and cookie policies and consent mechanisms indicates compliance gaps with GDPR and related regulations. Google Analytics is used without visible user consent, which may pose privacy compliance risks. Overall, the website is safe, professional, and business-focused with moderate security posture and privacy compliance. Strategic improvements in security headers, privacy policies, and cookie consent would enhance trust and regulatory compliance.

W

Wasser- und Bodenverbände Hessen - Maschinenringe Hessen e.V.

wbl-mr-hessen.de

52

Wasser- und Bodenverbände Hessen - Maschinenringe Hessen e.V. is a regional non-profit association focused on agricultural machinery sharing, water and soil management, and supporting farmers in Hessen, Germany. The organization provides consultation services, organizes events such as the Smart Farming Day, and disseminates relevant agricultural and environmental information. Their market position is strong within the regional agricultural sector, serving a medium-sized audience of farming professionals and stakeholders. The website is built on Joomla CMS and integrates various multimedia and interactive components to engage its audience. Technically, the site uses a mix of modern and legacy technologies, with room for improvement in script security and performance. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and vulnerability disclosure policies. Privacy compliance is strong, with a comprehensive GDPR-aligned privacy policy and cookie management. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional and trustworthy, though technical and security enhancements are recommended.

B

BX1

bx1.be

59

BX1 is a French-language regional media company focused on delivering news, culture, sports, traffic, and weather information for the Brussels Capital Region. The website offers a variety of content including news articles, TV broadcasts, radio and podcasts, and live streaming services. It targets residents and French-speaking audiences in Brussels, positioning itself as a key regional media outlet. The business appears medium-sized, founded in 2015, and maintains a consistent brand presence across multiple social media platforms. Technically, BX1 uses WordPress CMS with popular plugins such as Yoast SEO and Elementor, hosted on OVH and assets served via DigitalOcean. The site is moderately performant, mobile-optimized, and SEO-friendly. Security posture is good with HTTPS enabled and reCAPTCHA implemented, though explicit security headers and a published security policy are lacking. Privacy compliance is partial, with a GDPR cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, BX1 demonstrates a professional and trustworthy online presence with room for improvement in privacy and security transparency.

D

Dorint Hotels & Resorts

dorint.com

59

Dorint Hotels & Resorts is a well-established hospitality company operating approximately 65 hotels across Germany, Austria, and Switzerland. The website serves as a comprehensive platform for hotel bookings, event hosting, and culinary experiences targeting both leisure and business travelers. The company demonstrates a strong market position with a large footprint in the DACH region. Technically, the website is built on TYPO3 CMS, integrates modern analytics and marketing tools, and provides a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though improvements such as enabling DNSSEC and adding security headers are recommended. Overall, the site is professional, trustworthy, and user-friendly, supporting the company's business objectives effectively.

P

Papenfuss | Atelier

atelierpapenfuss.de

51

Papenfuss | Atelier is a specialized agency based in Germany offering communication, design, web development (notably TYPO3 CMS), and interior architecture services. Established in 1990, the agency focuses on sectors such as nature & environment, culture, tourism, and UNESCO World Heritage projects. Their website reflects a mature, professional business with a strong portfolio and long-term client relationships. The technical infrastructure leverages TYPO3 CMS, Google Tag Manager, Google Analytics, and Klaro for consent management, indicating a modern and privacy-conscious digital presence. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the website is well-designed, mobile-optimized, and provides clear contact information, enhancing trust and user experience.

E

Europaportal Mecklenburg-Vorpommern

europa-mv.de

61

The Europaportal Mecklenburg-Vorpommern is an official government website serving as a comprehensive information hub for European policies, funding instruments, Baltic Sea cooperation, and the regional representation of Mecklenburg-Vorpommern in Brussels. It targets citizens, government officials, businesses, and educational institutions interested in European affairs within the region. The portal provides regularly updated news, press releases, event information, and detailed navigation to various EU-related topics. Technically, the website uses a custom or proprietary CMS with JavaScript and Google Maps API integration. The site is moderately performant, mobile-optimized, and accessible at a basic level. SEO and metadata are present but could be enhanced. Security posture is adequate with HTTPS usage but lacks visible security headers and explicit security policies. Privacy compliance is good with a clear privacy policy, though no cookie consent mechanism was detected. The security posture is stable with no visible vulnerabilities or exposed sensitive data. However, improvements are recommended in security headers, incident response transparency, and vulnerability disclosure. The domain WHOIS data aligns well with the website's government affiliation, supporting legitimacy and trustworthiness. Overall, the site is a professional, trustworthy government portal with good content quality and business credibility. Strategic enhancements in security and privacy compliance would further strengthen its posture and user trust.

D

digicube AG

bienenzeitung.ch

67

The Schweizerische Bienen-Zeitung is a specialized Swiss magazine focused on beekeeping, targeting hobbyist and professional beekeepers, as well as related agricultural and health professionals. It operates on a subscription-based model with a monthly publication cycle and a circulation of approximately 13,500 copies. The website is professionally designed and maintained by digicube AG, a digital agency, and provides a rich content experience including articles, archives, and subscription management. The site is well positioned within its niche market in Switzerland, supported by partnerships with related beekeeping organizations and shops. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including jQuery, Google Maps API, and caching via WP Rocket. It uses a child theme of GeneratePress and integrates social media and analytics tools such as Plausible Analytics. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and security.txt files. No security headers were detected, which could improve protection against common web attacks. The privacy policy is comprehensive and GDPR compliant, but no cookie consent banner was found, which is a compliance gap. The WHOIS data confirms a legitimate registration consistent with the business claims, enhancing trust. Overall, the website presents a low risk profile with good business credibility and content quality. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance compliance and security posture, further strengthening user trust and regulatory adherence.

S

SportClinic Zurich

sportclinic.ch

62

SportClinic Zurich is a specialized healthcare provider focusing on sport surgery and sport medicine services in Zurich, Switzerland. The clinic operates multiple physical locations across Zurich, offering a comprehensive range of treatments including physiotherapy, rehabilitation, diagnostics, and medical consultations. The website is professionally designed, well-structured, and targets patients seeking specialized sport medicine care. Technically, the site uses modern JavaScript libraries such as jQuery and Flatpickr, integrates Google Maps for location display, and is built on the PC3 CMS platform. Security-wise, the site enforces HTTPS, includes a cookie consent mechanism compliant with GDPR, and does not expose sensitive data. However, formal security policies and incident response contacts are not published, representing an area for improvement. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

Niederoesterreich.at is the official tourism and travel portal for the Lower Austria region, operated by Niederösterreich-Werbung GmbH. The website offers comprehensive travel information, accommodation booking, event calendars, and cultural and natural experience guides targeting tourists interested in exploring the region around Vienna. It holds a strong market position as a government-supported regional tourism authority with consistent branding and a professional online presence. Technically, the website employs modern web technologies including JavaScript, Matomo analytics with privacy-conscious configurations, and Google Tag Manager. The site is mobile-optimized and features good SEO practices, though some security headers could be improved. The site uses HTTPS with good SSL configuration, and disables cookies in analytics to enhance privacy. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and privacy-respecting analytics. However, it lacks a visible cookie consent mechanism and some security headers like Content-Security-Policy and X-Frame-Options are missing, which are recommended for enhanced protection. No vulnerabilities or suspicious activities were detected. Overall, the website is safe, professional, and trustworthy, with no adult or explicit content. The WHOIS data aligns well with the website's identity, confirming legitimacy. Strategic recommendations include implementing a cookie consent banner, adding missing security headers, and enhancing accessibility features to further improve compliance and security posture.

T

TOP-Ausflugsziele Niederösterreich in Zusammenarbeit mit Niederösterreich-Card GmbH

top-ausflug.at

48

The website www.top-ausflug.at serves as a comprehensive regional tourism platform promoting 54 certified top excursion destinations in Niederösterreich, Austria. It targets families and tourists seeking quality leisure experiences, offering detailed information on attractions, events, and mobility options. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, it is built on WordPress with modern plugins and frameworks, including Bootstrap and Borlabs Cookie for privacy compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The site integrates Google Analytics and social media channels for marketing and user engagement. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site is trustworthy, compliant with GDPR, and well-positioned in its niche.

U

UnderTheDoormat Ltd

underthedoormat.com

71

UnderTheDoormat Ltd is a UK-based company specializing in luxury short term and vacation rental properties. Established in 2014, it has positioned itself as a premium service provider in the real estate and hospitality sectors, offering handpicked, high-quality rental homes with verified standards and a strong focus on customer experience. The company targets affluent travelers and homeowners seeking professional property management and rental services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that supports its market positioning. Technically, the site leverages modern JavaScript frameworks (Vue.js), integrates with multiple third-party marketing and analytics platforms, and uses secure payment and mapping APIs. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers are not explicitly detected. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business demonstrates credibility through industry awards, trust badges, and consistent domain registration data.

H

Heyflow

heyflow.id

59

Heyflow is a technology company providing a SaaS platform for building interactive, no-code forms designed to increase user engagement and conversion rates. The platform offers drag & drop design, conditional logic, and seamless integrations with popular CRMs and analytics tools, positioning itself as a flexible and user-friendly solution for marketers and businesses. The website is professionally designed with consistent branding and clear messaging targeting business users seeking enhanced lead generation tools. Technically, the site leverages modern JavaScript frameworks, asynchronous script loading, and integrates with major analytics and marketing platforms such as Google Analytics, Google Tag Manager, and Facebook Pixel. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and domain transfer protections, though additional security headers and a formal security policy could enhance trust. Privacy compliance is addressed with a cookie consent mechanism and links to privacy and imprint pages, indicating GDPR awareness. No direct contact emails or phone numbers are provided on the site, which may impact user trust slightly. Overall, the site is secure, performant, and business credible with room for improvement in explicit security disclosures and contact transparency.

B

Bundesverband Garten-, Landschafts- und Sportplatzbau e. V.

mein-traumgarten.de

10

Mein Traumgarten is a professional online platform operated by the Bundesverband Garten-, Landschafts- und Sportplatzbau e. V., serving as a comprehensive resource for garden inspiration, trends, and connecting users with expert landscaping professionals in Germany. The website offers curated garden examples, expert advice, and a specialized search tool to find qualified GaLaBau (garden and landscaping) companies. It targets homeowners and garden enthusiasts seeking professional services to realize their garden projects. Technically, the website employs a modern technology stack including jQuery libraries, Angular framework for interactive components, and integrates Google Tag Manager and Google Maps API for analytics and location services. The site is built on the onpublix 7 CMS and demonstrates good mobile optimization, SEO practices, and a professional design that supports user engagement. From a security perspective, the site enforces HTTPS, uses a comprehensive cookie consent mechanism compliant with GDPR, and avoids exposing sensitive data. However, it lacks a dedicated security policy page and explicit incident response contact information. No security vulnerabilities or suspicious patterns were detected in the content or WHOIS data, indicating a mature security posture. Overall, Mein Traumgarten presents a trustworthy, professional, and user-friendly platform with strong compliance to privacy regulations and a clear focus on its niche market. Strategic improvements in publishing security policies and incident response details would further enhance its security maturity and user trust.

B

Bundesverband Garten-, Landschafts- und Sportplatzbau e. V.

galabau-karriere.de

71

The website www.galabau-karriere.de serves as a specialized career platform for the German garden and landscape construction sector (GaLaBau). It is operated by the Bundesverband Garten-, Landschafts- und Sportplatzbau e. V., a recognized industry association. The platform offers job listings, career advice, and educational resources targeting job seekers and employers within this niche market. The site is well-branded, consistent, and provides a professional user experience with good content relevance and navigation clarity. Technically, the site leverages modern frameworks such as Angular and integrates Google Tag Manager and consent management tools to ensure GDPR compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit security policies are absent. Overall, the domain registration aligns with the business entity, supporting legitimacy and trustworthiness.

V

Verband Garten-, Landschafts- und Sportplatzbau Bayern e. V.

galabau-bayern.de

68

The Verband Garten-, Landschafts- und Sportplatzbau Bayern e. V. is a professional association representing experts in garden and landscape construction in Bavaria, Germany. The website serves as a comprehensive resource for members and the public, offering information on membership benefits, industry news, educational seminars, and a directory of member companies. The organization positions itself as a key regional player with strong ties to the national federation, supporting the sector through advocacy, education, and marketing campaigns. Technically, the website employs modern web technologies including Angular and ASP.NET, with integration of Google Tag Manager and Google Maps API. The site is mobile-optimized, well-structured, and uses a recognized cookie consent management platform to ensure GDPR compliance. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected. WHOIS data is minimal but consistent with a legitimate business entity. Overall, the website demonstrates a solid digital presence with good privacy compliance and professional content. Strategic improvements in security headers and incident response transparency could enhance trust and resilience.

P

PaysafeCard

paysafecard.com

75

PaysafeCard is a global prepaid online payment service provider offering secure and easy payment solutions without the need for bank accounts or credit cards. The website targets consumers seeking convenient prepaid codes and account/card services for online purchases. The company holds a strong market position with extensive retail presence and a comprehensive digital platform. Technically, the site is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager, reCAPTCHA, and Optimizely for analytics and optimization. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for user experience and accessibility.

A

Athena Web Designs Ltd.

athenawebdesigns.co.uk

69

Athena Web Designs Ltd. is a small, award-winning web design and digital marketing company based in Cirencester, Gloucestershire, UK. They provide a comprehensive suite of services including custom web design, digital marketing, graphic design, IT services, and training. Their client portfolio and testimonials indicate a strong local market presence and a reputation for quality and reliability. The company targets businesses seeking to build or enhance their online brand and digital footprint. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Google reCAPTCHA, and Mailchimp integration, indicating a mature digital infrastructure. The site is well-optimized for SEO, mobile-friendly, and uses caching for performance. Analytics and tracking are implemented with Google Analytics, and cookie consent is managed with a compliant mechanism. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with clear policies and GDPR-aligned cookie consent. Overall, the website presents a professional, trustworthy, and secure digital presence suitable for its business model. The main limitation is the lack of WHOIS data due to querying a subdomain rather than the registered domain, which restricts full domain trust verification. Strategic improvements in security headers and public security documentation are recommended.

N

Nissan

nissan-jobboerse.de

49

The website nissan-jobboerse.de serves as an official job board platform dedicated to Nissan dealerships across Germany, facilitating job postings and applications within the automotive sector. It leverages a combination of WordPress CMS with WPBakery page builder and an Angular-based job board widget powered by the carsonal recruiting platform. The site is professionally designed with consistent Nissan branding and provides comprehensive job listings, employer registration, and applicant management features. The content is primarily in German and targets job seekers and Nissan dealer partners in Germany. Technically, the site uses modern web technologies and is mobile-optimized, though performance is moderate. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and explicit incident response policies. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. WHOIS data is minimal, reducing trust slightly, but the overall business credibility is high due to official branding and partner integrations.

R

Réseau évangélique suisse

evangelique.ch

52

The Réseau évangélique suisse is a Swiss non-profit organization that serves as a network for evangelical churches, unions, and works across Switzerland. It provides coordination, publications, and project management to support its members and promote evangelical interests nationally. The website is professionally designed using WordPress and Elementor, with a moderate technical infrastructure including Google Maps integration and Piwik analytics. Security posture is solid with HTTPS and security headers, though there is room for improvement in privacy compliance and explicit security policies. Overall, the site is trustworthy and well-positioned within its niche community.

The website www.unesco.sk represents the Slovak national commission for UNESCO, a specialized agency of the United Nations focused on education, science, culture, and communication. The site provides informative content about UNESCO's mission, history, and activities in Slovakia, targeting a general audience interested in cultural heritage and educational initiatives. The organization is well-established with a clear global mandate and recognized legitimacy. Technically, the website employs standard and modern web technologies including jQuery, Bootstrap, Font Awesome, and Google Maps API, hosted likely behind Cloudflare. The site is mobile responsive with moderate performance and basic SEO and accessibility features. However, it lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and user trust. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. Analytics are limited to Cloudflare Insights, indicating minimal user tracking. No forms or contact details are provided, limiting data collection and interaction. The WHOIS data aligns well with the website's claims, confirming legitimacy and consistent registration. Overall, the site is professionally presented and trustworthy but would benefit from enhanced privacy compliance, security headers, and clearer contact information to improve user confidence and regulatory adherence.

M

MTÜ Arengukoostöö Ümarlaud (AKÜ)

terveilm.ee

42

MTÜ Arengukoostöö Ümarlaud (AKÜ) is a small Estonian non-profit coalition representing NGOs engaged in development cooperation, global citizenship education, and sustainable development. The organization acts as a strategic partner and consultant to the Estonian Ministry of Foreign Affairs and provides workshops and consultancy services to private sector companies and the public. The website reflects a professional and consistent brand presence with good content quality and clear navigation, targeting Estonian NGOs and interested stakeholders. Technically, the site is built on WordPress with modern plugins and integrations, including multilingual support and social media connectivity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security or privacy policies. Overall, the site is trustworthy and well-positioned within its sector but would benefit from enhanced privacy compliance and security best practices.

A

Arquitectos Urbanistas e Ingenieros Asociados S.L.

auia.es

50

Arquitectos Urbanistas e Ingenieros Asociados S.L. (AUIA) is a well-established Spanish firm specializing in architecture, urbanism, and engineering with a strong focus on sustainable building practices. Founded in 1969, the company serves both public and private sectors, offering a broad range of services including residential architecture, urban development, industrial construction, and rehabilitation of historic buildings. Their website reflects a professional and consistent brand image, targeting clients interested in sustainable and efficient architectural solutions. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, Contact Form 7, and Slider Revolution, indicating a modern and maintainable infrastructure. The site is mobile-optimized and includes SEO best practices, although performance is moderate and accessibility features are basic. Security is adequate with HTTPS enforced and a cookie consent mechanism in place, but lacks advanced security headers and explicit security policies. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of published security policies and incident response contacts suggests room for improvement in transparency and readiness. WHOIS data is unavailable due to Red.es restrictions, but the domain's privacy protection is typical and justified for a professional services firm. Overall, the website presents a trustworthy and credible digital presence with moderate risk. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and improving technical performance and accessibility to further strengthen the company's digital maturity and client trust.

G

Green Fins

greenfins.net

53

Green Fins is a well-established non-profit initiative dedicated to protecting coral reefs through sustainable marine tourism. Supported by the United Nations Environment Programme and partnered with Reef-World, it offers certified and digital memberships to dive centers, snorkelling centers, and liveaboard businesses globally. The website provides educational e-courses for recreational divers and professional guides, promoting responsible tourism practices. The organization targets eco-conscious tourists and marine operators, positioning itself as a trusted global leader in marine conservation education and certification. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, and Google Maps API integration. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Hosting and DNS services leverage Cloudflare and NameCheap, ensuring reliable performance and domain security. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and some security headers are missing. There is no public vulnerability disclosure or incident response policy, and cookie consent mechanisms are absent, which may impact GDPR compliance. No exposed sensitive data or vulnerabilities were detected. Overall, Green Fins presents a professional, trustworthy, and content-rich platform with a strong business credibility score. Strategic improvements in privacy compliance and enhanced security practices are recommended to further strengthen its security posture and regulatory adherence.

T

Transdanubia

transdanubia.com

55

Transdanubia is a transport and logistics service provider emphasizing faster, safer, and more reliable services in a dynamic environment. The website presents core business areas including transport, forwarding, and logistics but lacks detailed company information or contact data. The technical infrastructure includes usage of Google Maps API and custom JavaScript, with a basic design and moderate navigation clarity. However, the site lacks advanced CMS or analytics integrations and shows limited mobile optimization and accessibility features. Security posture is minimal with no evident security headers or privacy policies, and WHOIS data is missing, raising concerns about domain legitimacy. Overall, the site is functional but basic, with room for improvement in security, compliance, and business transparency.

F

Fédération Adventiste de la Suisse romande et du Tessin

adventiste.ch

57

Adventiste.ch serves as the official digital presence of the Fédération Adventiste de la Suisse romande et du Tessin, providing religious, community, and ministry information to the French-speaking Adventist population in Switzerland and Ticino. The website offers comprehensive content including church locations, pastoral contacts, event announcements, and newsletters, positioning itself as a trusted regional hub for the Adventist community. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Calendarize It, ensuring good SEO and event management capabilities. Security measures include HTTPS enforcement and Google reCAPTCHA integration, though there is room for improvement in security headers and cookie consent mechanisms. Overall, the site demonstrates a solid security posture and compliance with privacy standards through links to comprehensive privacy policies. The domain registration details align well with the organization's identity, supporting high legitimacy and trustworthiness.

B

BIEG Hessen GbR

bieg-hessen.de

11

BIEG Hessen GbR is a small, regionally focused service organization affiliated with the Industrie- und Handelskammern (IHKs) in Hessen, Germany. It provides free, neutral online marketing consulting, social media guidance, e-commerce support, and educational seminars primarily targeting small and medium-sized enterprises (SMEs) and member companies of the IHKs. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern frameworks like Bootstrap and uses reputable plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some HTTP security headers are missing and no explicit security policy or incident response information is published. Overall, the domain registration aligns with the business claims, and no suspicious patterns or vulnerabilities were detected. The website is safe, trustworthy, and compliant with GDPR regulations.

A

ALSO Schweiz AG

also-training.ch

57

ALSO Schweiz AG operates a professional IT training platform focused on providing product and solution trainings, certifications, and e-learning services primarily to IT resellers, service providers, and technical professionals in Switzerland. The company holds a strong market position as a leading wholesale and service provider in the IT sector, offering a broad portfolio of trainings including company-specific and online options. Technically, the website is built on a modern Ruby on Rails framework with standard frontend technologies and integrates analytics and user behavior tracking tools such as Google Analytics and Hotjar. Security posture is moderate with CSRF protections in place but lacks explicit security headers and incident response disclosures. Privacy compliance is supported by comprehensive privacy and cookie policies, though a cookie consent mechanism is absent. Overall, the website is professional, trustworthy, and well-structured, serving a clear business purpose with good user experience and content relevance.

F

FIRMA DZIEWIARSKA BETTER

better.pl

12

Better.pl is a Polish manufacturing company specializing in producing sweaters and apparel for uniformed services such as the military, police, prison services, security personnel, and fire brigades. Their product range includes cotton scarves, promotional scarves, reflective vests, and T-shirts, targeting a niche market of uniform apparel. The company has been operational since 2010, supported by consistent domain registration data. The website presents a professional and clear business focus with good content quality and user experience, though it lacks comprehensive privacy and security policies.