Security Directory

S

Sneak'In

sneakin.shop

64

Sneak'In operates a professional e-commerce platform specializing in sneakers, streetwear, and fashion apparel for men, women, and children. The company maintains a strong market position with a broad brand portfolio and multiple international localized websites, targeting a diverse audience interested in trendy and affordable footwear and clothing. Their business model focuses on online retail with fast delivery and secure payment options, supported by customer service based in France. Technically, the website leverages modern frameworks such as SvelteKit, integrates with Cloudflare for DNS and CDN services, and employs comprehensive tracking and marketing tools with user consent management, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforcement, clientTransferProhibited domain status, and cookie consent mechanisms, though improvements like DNSSEC and explicit security.txt publication could enhance trust further. Overall, the site is accessible, well-structured, and compliant with GDPR, offering a safe and professional user experience.

F

Fédération Nationale des Transports de Voyageurs

fntv.fr

31

The Fédération Nationale des Transports de Voyageurs (FNTV) is a well-established French national federation representing passenger transport companies. Founded in 1999, it serves as a central body providing information, regulatory updates, employment and training resources, and member services. The website reflects a professional and consistent brand image, targeting transport companies and stakeholders in France. The technical infrastructure leverages modern JavaScript libraries and APIs, including Google Maps and Flockler embeds, hosted via GANDI registrar with a domain age supporting legitimacy. Security posture is solid with HTTPS and client-side CSRF protections, though improvements are recommended such as restricting API keys and publishing explicit security policies. Privacy compliance is addressed with cookie consent and a privacy policy, though terms of service and incident response details are lacking. Overall, the site is trustworthy, functional, and serves its business purpose effectively.

FUTOUR GmbH is a well-established German consultancy specializing in tourism and regional development with over 30 years of experience. The company offers a broad range of services including tourism concepts, regional management, feasibility studies, marketing consulting, and quality management. Their market position is strong within their niche, supported by multiple regional offices and a professional online presence. Technically, the website uses modern web technologies including Google Maps API and Google Fonts, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

K

Klimahelden GmbH

klimahelden.eu

70

Envalor, formerly known as Klimahelden, is a German-based small enterprise specializing in AI-driven ESG automation solutions, focusing on CSRD reporting and CO₂ balance calculations. The company offers a SaaS platform that simplifies sustainability reporting for businesses subject to EU regulations. The website reflects a professional and consistent brand presence, targeting businesses needing compliance with sustainability directives. Technically, the site is built on WordPress with modern analytics and marketing integrations, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is partially met with cookie consent mechanisms but lacks explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

tatwort Nachhaltige Projekte GmbH

tatwort.at

50

tatwort Nachhaltige Projekte GmbH is a small Austrian company specializing in sustainable projects, aiming to create solutions with lasting impact. The website is professionally designed using WordPress with Astra theme and includes key navigation for company information, services, projects, team, and contact. The site is primarily in German and targets a general audience interested in sustainability. Technically, the site is hosted by World4You Internet Services GmbH, uses HTTPS with a valid SSL certificate, and employs modern WordPress plugins including Borlabs Cookie for GDPR-compliant cookie consent. Security posture is good with HTTPS and cookie consent but lacks advanced security headers and explicit security policies. No contact emails or phone numbers are directly visible on the homepage, and no terms of service or vulnerability disclosure pages are present. Overall, the site is trustworthy, professional, and compliant with basic privacy regulations.

K

KATE Umwelt & Entwicklung e.V.

kate-stuttgart.org

66

KATE Umwelt & Entwicklung e.V. is a small environmental consultancy based in Stuttgart, Germany, specializing in climate management, sustainability consulting, and educational services for companies and social institutions. Their offerings include climate risk analysis according to ISO 14090 and support for sustainability reporting under VSME standards. The website is professionally designed using the Wix platform, featuring modern JavaScript technologies and error monitoring via Sentry. However, the site lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is generally good with HTTPS enforced, but security headers are not evident, and no incident response or vulnerability disclosure information is provided. Overall, the domain appears legitimate though WHOIS data is unavailable due to privacy protection or query issues.

L

Linking Tourism and Conservation e.V. (Ö.T.E.-LT&C e.V.)

ltandc.org

63

Linking Tourism and Conservation e.V. (Ö.T.E.-LT&C e.V.) is a small non-profit organization focused on promoting sustainable tourism and conservation efforts primarily in Europe. The website serves as an information hub showcasing projects, publications, news, and membership opportunities. The organization targets environmental groups, tourism professionals, and the general public interested in sustainable development. Technically, the site is built on a Verwaltungsportal CMS platform using common JavaScript libraries like jQuery and Slick Carousel, with good mobile optimization and accessibility features. Security posture is moderate with cookie consent implemented but lacking visible security headers and unknown SSL configuration. The WHOIS data is incomplete and malformed, which reduces domain trustworthiness, but the website content and social media presence support legitimacy. Overall, the site is professional and trustworthy but could improve security and transparency.

P

Psychedelic Therapies

psychedelictherapies.de

60

Psychedelic Therapies is a small German-based service provider specializing in counseling and integration therapy related to psychedelic treatments. The website targets clients and facilitators interested in psychedelic therapy, positioning itself as a niche mental health service provider. The digital infrastructure is built on the Squarespace platform, leveraging modern web technologies and providing a responsive and professionally designed user experience. Security posture is strong with HTTPS and HSTS enabled, and Google reCAPTCHA is used to protect forms. However, the site lacks explicit privacy policies, terms of service, and direct contact information, which are important for compliance and trust. Overall, the site is safe, well-structured, and suitable for its target audience, but improvements in privacy compliance and business transparency are recommended.

C

Caldecott Music Group

caldecottmusic.com

61

Caldecott Music Group is a global operator, innovator, and investor in the music industry, connecting various music brands and products worldwide. The company positions itself as a significant player in the media and music sectors, with multiple subsidiaries and brands under its umbrella, including BandLab Technologies, NME Networks, and Vista Musical Instruments. The website reflects a professional and modern digital presence built on the Framer platform, with integration of Google Analytics for user tracking. Security posture is generally good with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies, which are important for compliance and trust. Overall, the site is accessible and well-structured, targeting music industry professionals and investors.

S

Skat Foundation

skat-foundation.ch

49

Skat Foundation is a Swiss non-profit organization dedicated to development cooperation and sustainable development initiatives. The website presents a professional image with a focus on international development services, capacity building, and advisory roles. The target audience includes development professionals, donors, and partner organizations. The business model is typical for a non-profit foundation operating in the international cooperation sector. Technically, the website is built on WordPress using the Divi theme, with standard plugins for multilingual support and cookie consent management. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Security posture is adequate with HTTPS enabled and a cookie consent mechanism in place; however, there is room for improvement in security headers and published security policies. No critical vulnerabilities or blocking mechanisms were detected. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness.

B

Britta Mackenrodt | Privatpraxis für Frauenheilkunde

frauenarzt-mackenrodt.de

63

Britta Mackenrodt operates a private gynecology and obstetrics practice in Köln, Germany, focusing on holistic and personalized women's healthcare. The website presents a professional image with clear descriptions of services such as bioidentical hormones, laser therapy, and preventive medicine. The practice targets female patients seeking advanced and empathetic gynecological care. Technically, the website uses modern web technologies including Bootstrap and Cookiebot for cookie consent management, hosted with DNS services from DomainControl. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and cookie consent implemented, though security headers are not detected and no explicit security or incident response policies are published. Overall, the website is trustworthy and compliant with GDPR, with clear contact information and no suspicious content.

G

Gemeinde- und Schulbibliothek Turbenthal

bibliothek-turbenthal.ch

59

The website www.bibliothek-turbenthal.ch represents the Gemeinde- und Schulbibliothek Turbenthal, a local public and school library in Switzerland. It serves as a community hub offering books, digital media, children's Tonie figures, films, games, and local events. The site is built on the Wix platform, leveraging Wix Thunderbolt and editor elements, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and scripts to harden client-side requests, but lacks explicit security headers and privacy/cookie policies. No contact emails or phone numbers were found in the analyzed content, which limits direct user engagement and compliance transparency. Overall, the site is professional and trustworthy for its purpose but would benefit from enhanced privacy compliance and security best practices.

P

pCon Solutions

pcon-catalog.com

47

The website catalogs.pcon-solutions.com serves as a digital catalog platform offering high-resolution 2D and 3D models and materials primarily targeted at architects, interior designers, and planners. The business appears to be a specialized technology provider in the architectural content space, delivering digital assets for integration into architectural plans. The site is professionally designed using modern web technologies such as React and Material-UI, providing a good user experience with responsive design and clear navigation. However, the lack of WHOIS registration data raises questions about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enforced and cookie consent implemented, but the absence of security headers and contact information for incident response are notable gaps. Privacy compliance is addressed with a cookie policy and privacy policy links, indicating awareness of GDPR requirements. Overall, the site is functional and professional but would benefit from improved transparency and security practices.

Y

YellowMap AG

yellowmap.de

54

YellowMap AG operates a comprehensive local business directory platform for Germany, offering over 5 million listings including companies, services, maps, events, and more. The website targets general users seeking local business information and related services such as hotels, pharmacies, and restaurants. The platform is well-established with visible partnerships and affiliate programs enhancing its market position. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript libraries like jQuery and Slick Carousel, and integrates Piwik analytics for user tracking. The site is mobile-optimized with good SEO and accessibility basics. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks visible advanced security headers and explicit security policies. Overall, the site is professional, trustworthy, and safe for general audiences.

L

LANDI

landi.ch

61

LANDI is a well-established Swiss retail company specializing in products for home, garden, agriculture, and pets, operating both physical stores and an extensive online shop. The website reflects a mature e-commerce platform with a broad product catalog and user-friendly navigation, targeting consumers in Switzerland interested in these sectors. Technically, the site uses modern web technologies including JavaScript frameworks, Google Maps API, Facebook Pixel, and Google Tag Manager, with a CMS likely based on Concrete5. The site is mobile-optimized and performs moderately well. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly available. WHOIS data confirms the domain's legitimacy and alignment with the parent company Fenaco. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

H

Holzwerk GmbH

holzwerk-celle.de

41

Holzwerk GmbH is a small regional German company specializing in carpentry, roofing, and renovation services, particularly focusing on traditional woodwork and altbausanierung (old building restoration). The company serves the Celle area and nearby cities such as Hannover and Braunschweig, positioning itself as a trusted master craftsman business with a focus on quality and customer orientation. Their website provides detailed service descriptions, references, and contact information, supporting their local market presence. Technically, the website is a static or custom-built site using basic HTML, CSS, and JavaScript, with Google Analytics integrated for visitor tracking. The site lacks modern CMS or frameworks and shows basic mobile optimization and accessibility. Hosting is managed via nsentry.de nameservers, indicating a professional hosting environment. SEO is adequately addressed with meta tags and structured navigation. From a security perspective, the site lacks visible HTTPS enforcement and security headers, which are critical for protecting user data and ensuring trust. The presence of a cookie consent banner and privacy policy indicates some GDPR compliance, but incident response and security policies are absent. Google Analytics is configured with IP anonymization, reflecting some privacy awareness. Overall, the website is functional and credible for a small business but requires improvements in security posture and technical modernization to enhance trust and compliance.

K

KHM-Museumsverband

bundesmuseencard.at

60

The website www.bundesmuseencard.at represents the official platform for the Bundesmuseen Card, a cultural annual pass granting access to 25 Austrian federal museums and the Austrian National Library's museums. The site is professionally designed, content-rich, and targets museum visitors and cultural enthusiasts in Austria. It is operated by the KHM-Museumsverband, a recognized cultural institution. The technical infrastructure is based on TYPO3 CMS with modern web technologies, providing a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are not explicitly published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-positioned in its niche, with room for improvement in security transparency and privacy features.

C

Start | Clickmasters - Ihr #1 Social Recruiting Partner

clickmasters.info

56

The website www.clickmasters.info appears to be a small-scale or personal site hosted on the Wix platform. The site lacks meaningful business information, contact details, and policy documents, which limits its credibility and trustworthiness. Technically, it uses standard Wix technologies and scripts but lacks advanced SEO, accessibility, and security configurations. The security posture is basic with HTTPS enabled but no security headers or policies detected. The WHOIS data is unavailable or malformed, indicating privacy protection or query failure, which further reduces trust. Overall, the site presents a low maturity digital presence with minimal content and limited business identity.

K

Urlaub in Kitzbühel, Tirol buchen | Wandern, Skifahren & mehr

kitzbuehel.com

58

The website www.kitzbuehel.com serves as a comprehensive tourism portal for the Kitzbühel region in Tirol, Austria. It provides information on year-round alpine activities including hiking and skiing, accommodation options, and local events. The site targets tourists and travelers seeking alpine vacation experiences. Technically, the site is built on TYPO3 CMS and integrates modern web technologies including Cookiebot for consent management, Google Tag Manager, Matomo analytics, and Facebook Pixel for marketing and tracking. The presence of a chat widget enhances user engagement. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response information are not explicitly found. Privacy compliance is good with cookie consent and GDPR-related mechanisms, but no explicit privacy policy or terms of service pages were detected in the provided content. WHOIS data for the domain is missing, which raises concerns about domain registration transparency but does not necessarily indicate illegitimacy given the professional nature of the site. Overall, the site is well-designed, user-friendly, and trustworthy for its target audience.

G

Gewaltinfo

gewaltinfo.at

62

Gewaltinfo is a reputable Austrian non-profit informational platform dedicated to violence prevention and support. It provides comprehensive resources, including expert knowledge, legal information, and access to multiple hotlines and support organizations targeting vulnerable groups such as children, women, older adults, and LGBTIQA+. The platform serves victims, families, and professionals seeking assistance and information on violence-related issues. Technically, the website is built on a modern stack with Magnolia CMS, uses responsive design, and includes accessibility features, though some security headers and explicit security policies are absent. The site employs anonymized cookies with a consent mechanism, aligning well with GDPR requirements. Security posture is moderate with room for improvement in explicit security policies and incident response information. Overall, the domain registration and website content are consistent and trustworthy, reflecting a stable and legitimate entity. Recommendations include enhancing security headers, publishing security policies, and adding incident response contacts to strengthen trust and compliance.

Transports Brevet is a French transportation company specializing in temperature-controlled logistics services. The website serves primarily as a private client login portal, indicating a B2B focus on clients requiring secure access to transport information. The company operates from two physical locations in France and has been registered since 2010, suggesting an established presence in its niche market. The website content is minimal, focusing on login functionality and contact information without broader marketing or informational content. Technically, the site uses basic HTML, CSS, and JavaScript without modern frameworks or CMS, and lacks visible security enhancements such as HTTPS confirmation or security headers. The security posture is weak, with no privacy or cookie policies, no visible incident response contacts, and potential vulnerabilities in form handling. Overall, the site is functional but basic, with room for significant improvements in security, privacy compliance, and user experience.

N

naturenergie netze

ednetze.de

74

naturenergie netze is a regional utility network operator based in Südbaden, Germany, providing essential services in electricity, water, lighting, communication technology, and training. The company operates as part of the Energiedienst-Gruppe, targeting customers and partners in the energy and utility sectors. The website is professionally designed using TYPO3 CMS, with good content quality and clear navigation tailored to its audience. The technical infrastructure includes modern web technologies and is hosted on Microsoft Azure DNS, indicating a reliable hosting environment. The site incorporates accessibility features and is optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented via Cookiebot, ensuring GDPR compliance. However, explicit security headers and incident response policies are not publicly documented. Overall, the website demonstrates a mature digital presence with moderate tracking and marketing tools, balanced with user privacy considerations.

K

Kultursaat e.V.

kultursaat.org

48

Kultursaat e.V. is a German non-profit association dedicated to biodynamic plant breeding and the preservation of cultivated plant varieties. Established in 2004, the organization focuses on breeding open-pollinated vegetable varieties for ecological agriculture, aiming to conserve agricultural biodiversity and cultural heritage. Their website reflects a niche market position targeting ecological farmers, researchers, and supporters of biodynamic agriculture. The business model is centered on research, education, membership, and donations. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies and incorporating Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, clear navigation, and a professional design. Performance is moderate, with room for improvement in accessibility features. The hosting provider is not explicitly identified, but DNS uses powerdns.de name servers. From a security perspective, the site uses HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, DNSSEC is not enabled, and no advanced security headers were detected in the provided data. There is no published security policy or incident response contact information, which could be improved to enhance trust and compliance. No vulnerabilities or exposed sensitive data were found. Overall, the website is trustworthy, professional, and compliant with privacy regulations. The domain registration data aligns well with the organization's profile, indicating legitimacy and stability. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing security and incident response policies to strengthen the security posture and user trust.

마

마이페어(MyFair)

myfair.co

63

마이페어(MyFair) is a Korean-based online platform specializing in overseas exhibition booth reservation and comprehensive participation management services. The platform targets businesses, including SMEs, startups, and organizations seeking to participate in global trade shows. It offers key services such as exhibition search, booth reservation, professional partner matching, and management of exhibition-related tasks. The website is professionally designed with a clear structure and good user experience, primarily in Korean language, catering to the Korean market. Technically, the site uses modern frameworks like Next.js and React, integrates multiple marketing and analytics tools, and is hosted on a reliable CDN infrastructure. Security measures include HTTPS enforcement and standard security headers, although explicit privacy and cookie policies are missing. Overall, the site demonstrates a moderate to good security posture with room for improvement in privacy compliance and contact transparency.

K

K-Swiss

kswiss.nl

10

K-Swiss is a heritage American tennis footwear and apparel brand with a strong European online presence, operating a multilingual e-commerce platform primarily targeting tennis enthusiasts and sneaker consumers. The website is professionally designed, leveraging the Shopify platform with integrations for marketing, analytics, and search optimization. The technical infrastructure is modern and performant with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and CAPTCHA protections on forms, though improvements such as DNSSEC and explicit security headers are recommended. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, the site presents a trustworthy and professional retail experience with no critical security or compliance issues detected.

The website ww1.weluma.com appears to be a non-registered or parked subdomain with minimal content. The site primarily consists of an embedded iframe from an unrelated external domain and includes tracking pixels. There is no visible business information, contact details, or privacy policies, indicating a lack of legitimate business presence or operational website. The domain WHOIS data confirms no registration, which further undermines trust and legitimacy. Technically, the site lacks HTTPS enforcement and security headers, and the content quality is poor with minimal user engagement features. Security posture is weak due to the absence of best practices and the presence of third-party tracking without transparency. Overall, the site is likely a placeholder or proxy with WAF or security filtering mechanisms limiting content access.

Fundación "la Caixa" is a well-established Spanish non-profit foundation with over a century of history dedicated to social, cultural, educational, and scientific initiatives. It operates as a key player in the non-profit sector in Spain, leveraging its strong brand and affiliation with CaixaBank. The website reflects a mature digital presence with comprehensive content aimed at beneficiaries, donors, and partners. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript frameworks and integrates multiple analytics and marketing tools, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and domain protections in place, though improvements such as DNSSEC and enhanced security headers could be implemented. Privacy compliance is robust, with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the website and domain registration data indicate a trustworthy and professional organization with a strong market position in the non-profit sector.

D

Deutsche Apotheker- und Ärztebank

apobank.de

70

Deutsche Apotheker- und Ärztebank (apoBank) is a specialized financial institution serving healthcare professionals and their organizations in Germany. The website clearly communicates its banking and financial services tailored to this niche, including accounts, financing, asset management, and insurance products. The bank positions itself as the leading financial service provider in the healthcare sector, targeting professionals such as pharmacists, doctors, and related entities. The business model focuses on specialized banking solutions with a strong emphasis on customer service and sector expertise. Technically, the website is built on a modern infrastructure using Magnolia CMS, jQuery UI, and integrates consent management via Usercentrics and CAPTCHA protection through FriendlyCaptcha. The site is hosted on UltraDNS name servers and employs HTTPS with proper security headers, ensuring secure and reliable access. The design is professional, mobile-optimized, and accessible, providing a positive user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement, CAPTCHA on forms, and privacy compliance with GDPR. However, there is room for improvement by adding additional security headers and publishing incident response contacts or a security.txt file. No vulnerabilities or suspicious content were detected. Overall, the apoBank website is a trustworthy, professional, and secure platform that aligns well with its business goals and regulatory requirements. It effectively serves its target audience with clear communication and robust technical implementation.

F

foodwatch

foodwatch.de

64

foodwatch is a German non-profit organization dedicated to exposing consumer-unfriendly practices in the food industry and advocating for the right to good, healthy, and honest food. The organization operates independently from the food industry and government funding, relying primarily on donations. Their website is content-rich, professionally designed, and targets German-speaking consumers interested in food safety and consumer rights. The site offers campaigns, reports, podcasts, and petitions to engage the public. Technically, the website is built on TYPO3 CMS and uses Matomo analytics for privacy-conscious visitor tracking. It features a cookie consent mechanism compliant with GDPR and is optimized for mobile devices with good accessibility and SEO practices. The site uses HTTPS with strong SSL configuration but lacks some advanced security headers and a public security policy or vulnerability disclosure page. From a security perspective, the site shows good practices such as encrypted connections and no exposed sensitive data. However, WHOIS data is privacy protected, limiting transparency about domain registration details. Overall, the site appears legitimate, trustworthy, and well-maintained, with recommendations to enhance security headers and publish a security policy for improved transparency and incident response readiness.

K

K-Swiss

kswiss.de

44

K-Swiss.de is the official German-language online shop for the established American tennis brand K-Swiss, specializing in sneakers and racketsport apparel. The website targets European tennis enthusiasts and operates on the Shopify platform with localized versions for multiple European countries. The site offers a professional e-commerce experience with product releases, promotions, and customer engagement through forms protected by Google reCaptcha. Technically, the site leverages modern web technologies and integrates marketing and analytics tools such as Klaviyo, Microsoft Clarity, and Trustpilot, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and secure form handling, though explicit security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site presents a trustworthy and professional retail presence with no critical vulnerabilities detected.

D

Dunlop Sports

dunlopsports.com

50

Dunlop Sports operates a professional e-commerce website specializing in sports equipment and apparel, primarily for tennis, squash, padel, and table tennis. The company is an established player in the retail sports sector with a domain registered since 1995 and owned by PSI-Japan, Inc. The website targets sports enthusiasts and athletes, offering a broad range of products and engaging content such as news and stories. The digital infrastructure leverages modern web technologies including Bootstrap and Google Tag Manager, hosted behind Cloudflare DNS services, ensuring reliable performance and security. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR standards. However, explicit security policies and incident response contacts are not published, indicating room for improvement in transparency and security maturity. Overall, the website presents a trustworthy and professional front with good content quality and user experience.

D

Deutscher Tennis Bund (DTB)

tennisimnorden.de

71

The website tennis.de serves as the official platform for the Deutscher Tennis Bund (DTB), focusing on providing comprehensive information about the Regionalliga Nord-Ost and related tennis leagues in Germany. It offers league results, official documents, contact details for league officials, and integrates with the nuLiga platform for result entry. The site targets tennis players, clubs, officials, and fans primarily in northern and eastern Germany. The business model revolves around sports federation services and information dissemination. Technically, the site is built on Adobe Experience Manager (AEM) with modern JavaScript frameworks including ZK Framework and Litepicker. It is hosted on Adobe's cloud infrastructure, ensuring reliable performance and scalability. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Cookie consent is managed via Cookiebot, and Google Tag Manager is used for analytics and marketing. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The domain WHOIS data indicates professional management consistent with a reputable organization. Overall, the website is a trustworthy, well-maintained official sports federation site with good content quality and technical implementation. Strategic improvements could include enhanced security headers and publishing a security policy to further strengthen trust and compliance.

N

naturenergie netze

naturenergie-netze.de

74

naturenergie netze is a regional energy network operator based in Südbaden, Germany, providing essential utility services including electricity, water, lighting, communication technology, and training. The company operates as part of the Energiedienst-Gruppe, positioning itself as a key regional player in energy distribution and infrastructure services. The website reflects a professional and consistent brand presence targeting customers and partners within the energy sector in the region. Technically, the site is built on TYPO3 CMS, hosted on Azure DNS infrastructure, and integrates modern web technologies including Cookiebot for GDPR-compliant cookie management, Google Analytics, and social media tracking tools. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security posture is solid with HTTPS enforced and use of reputable third-party scripts, although explicit security headers and incident response information are not clearly published. Privacy compliance is well addressed through a comprehensive privacy policy and granular cookie consent mechanisms. Overall, the website is trustworthy, professional, and compliant with relevant regulations, supporting the company's business credibility and digital maturity.

G

Groupe Sobotram

sobotram.fr

52

Groupe Sobotram is a well-established French transport and logistics company specializing in general goods and hazardous materials transport, operating both nationally and internationally. Founded in 1953 and acquired by Groupe Blondel in 2023, it maintains strategic locations including a SEVESO high-threshold site. The website reflects a professional business presence with clear service offerings and subsidiary information. Technically, the site uses modern web technologies such as Bootstrap, Mapbox GL JS, and Vimeo API, providing a good user experience with mobile optimization and structured navigation. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data supports the legitimacy and trustworthiness of the business.

G

Groupe Bernardi

bernardi-logistique.fr

45

Groupe Bernardi is a well-established French transportation and logistics company founded in 1961, specializing in national and international freight transport, storage, and distribution services. The company leverages its membership in the ASTRE network to extend its market reach and offers a variety of services including palletized freight, bulk transport, and logistics solutions. Their digital presence includes an online booking platform and client portals, reflecting a moderate level of digital maturity. Technically, the website is built on the SPIP CMS with modern web technologies such as Bootstrap and JavaScript libraries. It features responsive design and good SEO practices, although some accessibility features could be improved. The site uses HTTPS and includes GDPR-compliant cookie consent mechanisms, indicating attention to privacy and security. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, supporting the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy image with solid business credibility and compliance. Strategic improvements in security headers and incident response transparency would further enhance their security posture.

T

Transports Adam

transports-adam.com

58

Transports Adam is a French transport and logistics company based in Joinville, established in 1965. The company specializes in industrial road transport, exceptional transport, handling works, and storage services. The website presents a professional image with clear service offerings and contact options, including phone and social media. Technically, the site uses modern web technologies such as Bootstrap, Matomo analytics, and cookie consent management via tarteaucitron. The hosting is provided by OVH, a reputable registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and DNSSEC. Privacy policies and terms of service are not explicitly found, indicating room for compliance improvement.

The website porotech.com is currently inaccessible due to a security challenge page implementing a JavaScript-based proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism blocking direct access to the site's content. As a result, no business, contact, or policy information is available for analysis. The visible page is minimal, focused solely on verifying the visitor is not a bot, with no SEO or user engagement content. The technical infrastructure includes modern JavaScript features and uses AWS Cloudfront CDN for content delivery. However, no security headers or SSL configuration details are visible in the provided data. Overall, the site’s security posture cannot be fully assessed due to the blocking mechanism, and the lack of accessible content limits the ability to evaluate privacy compliance or business credibility.

S

SECURTRUCK

securtruck.fr

47

SECURTRUCK is a French company specializing in anti-siphoning technology for fuel tanks, targeting transportation and fleet management sectors. Their flagship product, SECURTANK, uses advanced 3D digital sensors to detect tampering and theft attempts in real-time. The company positions itself as a niche provider with a focus on innovation and ease of installation, emphasizing a non-intrusive, tool-free setup. The website reflects a professional and modern digital presence built on WordPress with Elementor, featuring multimedia content to demonstrate product capabilities. Social media integration and client logos enhance credibility. However, the absence of a privacy policy and explicit security policies indicates room for compliance improvement.

B

betaITS GmbH

beta-its.de

62

betaITS GmbH is a small German managed IT services provider specializing in modern, simple, and customer-friendly IT solutions. Their offerings include managed endpoint services, infrastructure management, Microsoft 365 management, security, backup, and hardware procurement. The company targets businesses seeking comprehensive IT management with a focus on proactive service and operational continuity. The website is professionally designed using modern technologies like Astro, with excellent mobile optimization and clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies could be improved. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Contact is primarily via Calendly and social media, with no direct emails or phone numbers visible. Overall, the site is trustworthy, well-branded, and content-rich, supporting betaITS GmbH's market position as a reliable managed IT service provider.

T

TC Expo

tcexpo.uz

55

TC Expo is a newly established company (founded in 2024) specializing in exhibition stand design and construction, targeting businesses and organizations that require professional exhibition architecture services. The company positions itself as a leading provider in its sector with international partnerships and a focus on customized, high-quality solutions. The website is built on the Tilda CMS platform, leveraging modern web technologies and CDN hosting for performance and reliability. The site is well-designed, mobile-optimized, and provides a good user experience, although it lacks explicit privacy and cookie policies as well as clear contact information. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and incident response contacts. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

C

Central Asian Expo Uzbekistan

caexuzbekistan.com

48

CAEx Uzbekistan is a modern international exhibition center located in Tashkent, Uzbekistan, serving as a major business arena in Central Asia. It offers versatile pavilion spaces adaptable for various projects and event formats. The center is a member of prestigious international exhibition associations UFI and IAEE, underscoring its commitment to quality and international standards. The website targets businesses and event organizers seeking exhibition and event hosting services in the region. Technically, the website employs modern web technologies including Swiper.js for interactive galleries, AOS for animations, Google Tag Manager and Yandex Metrika for analytics, and a live chat widget for customer engagement. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. The design is professional, mobile-optimized, and provides clear navigation and relevant content. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no explicit security headers were detected, which are areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is clearly provided, but no incident response or vulnerability disclosure policies are available. Overall, the website presents a trustworthy and professional image suitable for its business purpose. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance its security posture and regulatory adherence.

C

Centrum Air

centrum-air.com

57

Centrum Air is a private airline company based in Uzbekistan, founded in 2023, offering affordable flight tickets primarily from Tashkent to various regional and international destinations. The website provides a modern booking platform built on Next.js and React, featuring multiple flight routes, schedules, and additional services such as extra baggage, seat selection, and wheelchair rental. The technical infrastructure is contemporary with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business appears legitimate and focused on transportation services with a clear market presence in Uzbekistan and surrounding regions.

K

Komtrans Tashkent + Futuroad Expo Tashkent

comtrans.uz

49

Komtrans Tashkent + Futuroad Expo Tashkent is a newly established international exhibition platform focused on cargo and commercial transport in Uzbekistan and Central Asia. The website serves as a B2B platform for showcasing products, technologies, and solutions in the commercial transport sector. The event is positioned as a leading regional exhibition with a professional digital presence built on the Tilda CMS platform. The technical infrastructure includes modern web technologies and integration with Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy and cookie policies, indicating room for improvement in compliance and security maturity. Overall, the website is functional, professionally designed, and trustworthy, with clear contact information and social media presence. Strategic recommendations include enhancing privacy compliance, implementing security headers, and publishing incident response policies to strengthen trust and security posture.

T

Tashkent International Auto Show

tias.uz

58

Tashkent International Auto Show (TIAS) is a regional automotive exhibition event based in Uzbekistan, targeting automotive manufacturers, dealers, and lifestyle consumers in Central Asia. The website presents the event professionally with detailed information about the exhibition, participation, and partner programs. The technical infrastructure is built on the Tilda CMS platform, leveraging modern JavaScript libraries and third-party integrations such as Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal privacy and cookie policies, which are compliance gaps. The domain registration data aligns well with the business purpose and location, indicating legitimacy. Overall, the website is a credible digital presence for the TIAS event but would benefit from enhanced privacy compliance and security best practices.

B

Bayerische Staatsforsten AöR

baysf.de

65

Bayerische Staatsforsten AöR is a publicly owned forestry organization under the Free State of Bavaria, managing the entire Bavarian state forest with a focus on sustainable, integrative forest management. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting citizens, forestry professionals, and environmental stakeholders. The organization offers a broad range of services including wood production, hunting, renewable energy, and nature conservation. Technically, the site is built on Drupal CMS, uses Matomo for analytics with user consent, and supports responsive design and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms, though explicit security headers and policies could be improved. Overall, the domain and WHOIS data align with the organization's government affiliation, supporting legitimacy and trust. No critical vulnerabilities or suspicious content were detected.

E

Experience Boats

experienceboats.com

70

Experience Boats operates a premium boating experience platform offering MasterCraft and Crest Pontoons at luxury destinations across the United States. The company targets consumers seeking watersports, boat rentals, and curated water experiences through a network of experience centers, partners, and verified providers. The website demonstrates a solid digital presence with good content quality, mobile optimization, and accessibility features. Technically, it leverages modern analytics and tracking tools, including Google Tag Manager, Facebook Pixel, and Microsoft Application Insights, and is built on the Umbraco CMS platform. Security posture is strong with HTTPS enforced and secure form handling, though some security headers are missing and no explicit incident response or security policies are published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

G

ge-webdesign.de

ge-webdesign.de

39

ge-webdesign.de is a small, local web design service provider based in Berlin, Germany, specializing in affordable and technically sound website creation using the CMSimple platform. The website offers CMSimple templates, plugins, and installation services, targeting small businesses and individuals in the Berlin-Brandenburg region. The business emphasizes over 20 years of experience and provides a general license for its templates and plugins. Technically, the website is built on CMSimple 5.21 with jQuery 1.12.4 and standard HTML/CSS, showing good mobile optimization and SEO practices but lacking modern security headers and cookie consent mechanisms. Security posture is moderate with no visible vulnerabilities but could be improved by updating libraries and enhancing SSL and header configurations. Overall, the site is accessible without WAF or blocking, contains no adult or questionable content, and demonstrates moderate trustworthiness with room for technical and privacy compliance improvements.

M

Mundharmonika Berlin

mundharmonika-berlin.de

39

Mundharmonika Berlin is a small local business specializing in the sale and consultation of Mundharmonika musical instruments, as well as live music performances in Berlin. The website serves as a platform for showcasing the business offerings, including an online shop and detailed information about the proprietor's musical background. The business targets music enthusiasts and players of the harmonica, focusing on a niche market within the Berlin area. Technically, the website is built on the CMSimple CMS platform, utilizing standard web technologies such as HTML5, CSS, and jQuery. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Hosting appears to be provided by a German hosting provider associated with the domain's nameservers. From a security perspective, the website lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and user protection. No HTTPS or SSL configuration details were provided, which is a critical area for improvement. The site does not disclose any formal security policies or incident response contacts, indicating a low maturity in security governance. Overall, the website is functional and professional for a small business but requires enhancements in security posture, privacy compliance, and technical modernization to improve trust and user experience.

비

비즈니스포스트 (Businesspost)

chwho.co.kr

56

채널Who is a Korean economic media channel operated by CHANNELWHO, Inc., focusing on people-centered economic analysis and business news. The website offers video content, interviews, and news briefings targeting Korean-speaking business professionals and investors. The business is positioned as a niche media provider with a consistent brand and professional content. Technically, the site uses modern web technologies including Google Tag Manager and Analytics, with hosting likely on AWS infrastructure. Mobile optimization is good, and navigation is clear. Security posture is adequate with HTTPS and secure form handling, but lacks advanced security headers and explicit cookie consent mechanisms. WHOIS data is transparent and consistent with the business identity, supporting legitimacy. Overall, the site is professional and trustworthy with room for security and privacy improvements.

S

sports4everybody

kitz-extremechallenge.com

49

The website www.kitz-extremechallenge.com represents the World Extreme Run Challenge (WERC), an extreme sports event organized by the non-profit association sports4everybody. The event is held on the famous Kitzbühel Streif ski slope and aims to challenge participants with an up-and-down mountain run. The business model is non-profit, focusing on community engagement and supporting Austrian sports talents. The website content is professionally presented in German, with clear navigation and relevant event information. The site is supported by multiple reputable partners and sponsors, enhancing its credibility. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as jQuery and Owl Carousel. It employs Matomo analytics for user tracking with privacy considerations. The site is mobile-optimized and performs moderately well. However, no CMS or hosting provider details are explicitly detected. Security posture is good with HTTPS enforced and secure form handling, but lacks some security headers and incident response information. From a security and compliance perspective, the site includes a privacy policy and cookie consent mechanism compliant with GDPR. Contact information is clearly provided, but no terms of service or security policy documents are found. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional website presence. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is a credible and professional platform for the WERC event but should address WHOIS transparency and enhance security headers and policies to improve trust and compliance.