Security Directory

D

DocLX Holding GmbH

lighthousefestival.tv

64

Lighthouse Festival is a well-established boutique electronic music festival organizer with over 12 years of experience, operating events primarily in Croatia, Austria, and Tanzania. The company focuses on creating intimate, exclusive festival experiences branded as 'electronic music on vacation'. The website reflects a professional digital presence with clear event information, social media integration, and a consistent brand image. Technically, the site uses modern web technologies including Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and engaging user experience. However, some areas such as cookie consent and security headers could be improved to enhance privacy compliance and security posture. The domain registration data is consistent with the business claims, supporting the legitimacy of the site.

L

Loxone Lighthouse

loxone-lighthouse.com

52

Loxone Lighthouse is a specialized participation company focused on corporate succession, offering responsible and sustainable business handover services primarily targeting entrepreneurs and business owners in Germany. The website presents a professional and consistent brand image, emphasizing trust and long-term development of acquired companies. Technically, the site is built on WordPress with modern plugins and tracking tools, providing a good user experience with mobile optimization and GDPR-compliant cookie management. Security posture is adequate with HTTPS and consent mechanisms, though lacking some advanced security headers and explicit incident response information. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, warranting further verification. Overall, the site is functional, trustworthy, and business-oriented but could improve transparency and security practices.

Ost|Est Osteuropanetzwerk is a small non-profit association based in Switzerland focused on fostering cultural, historical, political, and economic understanding of East-Central, Eastern, and Southeastern Europe. The organization operates primarily in the Bern-Fribourg region and targets academic and public audiences interested in Eastern European studies. Their activities include organizing cultural events, lectures, film screenings, and facilitating engagement between universities and the public. The website reflects this mission with multilingual content and event listings. Technically, the site is built on the Weebly/EditMySite platform, using older JavaScript libraries and standard web technologies. While HTTPS is properly implemented, the site lacks modern security headers and privacy compliance documents, which are areas for improvement. Overall, the security posture is moderate with no critical vulnerabilities detected. The site is accessible without WAF or blocking mechanisms, and WHOIS data aligns well with the organization's profile, indicating legitimacy.

D

German TV in Thailand - streaming, download, Apps

deutsches-fernsehen-weltweit.de

49

The website deutsches-fernsehen-weltweit.de offers a subscription-based streaming and cloud DVR service providing access to 44 German TV channels worldwide, targeting German expatriates and German-speaking audiences, especially in Thailand. The business model centers on providing easy access to German TV content without hardware requirements, leveraging cloud recording technology. The site is well-branded and consistent, with clear service descriptions and pricing, positioning itself as a niche media provider in the German expatriate market. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and Google Fonts, hosted on AWS infrastructure. The site is mobile-optimized and SEO-friendly, with moderate performance and basic accessibility features. However, no CMS or advanced frameworks are detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not publish privacy, cookie, or security policies, which reduces its privacy compliance posture. No incident response or vulnerability disclosure information is provided, limiting transparency. The WHOIS data aligns with the website content and hosting, indicating a legitimate domain. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance. There are no indications of malicious or adult content, making it safe for general audiences.

S

Sophie und Karl Binding Stiftung

binding-stiftung.ch

51

The Sophie und Karl Binding Stiftung is a Swiss foundation dedicated to promoting social cohesion and preserving natural, cultural, and intellectual values in Switzerland. It operates primarily in the environmental, social, and cultural sectors, providing funding and engaging in projects and partnerships such as the Binding Biodiversity Prize. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeting Swiss society and nonprofit organizations. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics and reCAPTCHA for security and analytics. Security posture is solid with HTTPS and no exposed sensitive data, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-maintained, suitable for its nonprofit mission.

M

Marketing Mavens

marketingmavens.com

52

Marketing Mavens is a small, established digital marketing agency founded in 2009, specializing in delivering comprehensive sales and marketing strategies including branding, audience targeting, offer crafting, traffic generation, conversion optimization, and automation. The company positions itself as an experienced boutique agency with over 12 years of experience and more than 1,000 client projects, targeting businesses seeking predictable and profitable marketing results. Technically, the website is built on WordPress using the GeneratePress theme, integrating modern marketing and analytics tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Inspectlet. The site is mobile optimized and demonstrates good SEO and accessibility basics. Security posture is adequate with HTTPS enforced and use of reCAPTCHA on forms, but lacks advanced security headers and published security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Overall, the domain registration data is consistent and transparent, supporting the legitimacy of the business.

Z

Zisterzienserabtei Wettingen-Mehrerau

mehrerau.at

66

Kloster Mehrerau is a religious institution operating as the Zisterzienserabtei Wettingen-Mehrerau located in Bregenz, Austria. The website serves as a comprehensive portal for visitors and community members, offering information about monastic life, guest accommodations, events, and spiritual services. The institution positions itself as a vibrant community hub with a focus on faith, hospitality, and cultural engagement. The site features detailed event calendars, news updates, and opportunities for donations, reflecting an active and engaged organization. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, Google Tag Manager, and CookieHub for privacy compliance. The site is served over HTTPS with good security practices such as IP anonymization in analytics and a cookie consent mechanism. The design is professional, mobile-optimized, and accessible, providing a positive user experience. However, some security headers are not explicitly detected, and no dedicated security policy or incident response information is published. From a security perspective, the site demonstrates a solid baseline with HTTPS and privacy compliance but could improve by publishing explicit security policies and vulnerability disclosure information. No vulnerabilities or suspicious content were detected. The WHOIS data is unavailable due to quota limits, but the website content and contact details strongly support legitimacy and trustworthiness. Overall, Kloster Mehrerau presents a trustworthy, well-maintained online presence suitable for its non-profit religious mission. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and continuing to maintain privacy compliance and transparency.

B

BGO

findalternative.co.uk

43

Findalternative.co.uk is a website promoting a real estate development project named '105 Victoria Street' in London, managed by the developer BGO. The site focuses on showcasing the workspace and commercial property offerings with a target completion date in Q3 2026. The business model centers on real estate development and leasing, targeting commercial tenants and businesses seeking workspace in a prime London location. The website is professionally designed with modern web technologies, including SVG graphics and Google Analytics integration, indicating a moderate level of digital maturity. However, the site lacks critical compliance elements such as privacy and cookie policies, and no forms or extensive contact details are provided, limiting user engagement and transparency. Security posture is moderate with HTTPS usage but no visible security headers or explicit security policies. The domain registration is consistent with the business timeline and registered through a reputable registrar, supporting legitimacy. Overall, the site presents a professional front for a niche real estate project but requires improvements in privacy compliance, security best practices, and richer contact information to enhance trust and regulatory adherence.

M

Meine Kirchenzeitung

meinekirchenzeitung.at

65

MeineKirchenzeitung.at is a German-language online media portal aggregating regional and local news from various Austrian church newspapers. It serves as a centralized hub linking to multiple diocesan publications, offering news, reports, opinions, event listings, and ePaper access primarily targeting German-speaking audiences interested in church and regional topics in Austria. The website demonstrates a consistent and professional brand presence with good content quality and clear navigation. Technically, it employs modern web technologies including Google Analytics, Google Tag Manager, Swiper.js, and Foundation CSS framework, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie banner aligned with GDPR requirements. However, WHOIS data is unavailable due to quota limits, limiting domain registration trust verification. Overall, the site is trustworthy, safe, and professionally managed, with room for technical and security enhancements.

G

Graphly

graphly.io

11

Graphly is a specialized SaaS platform providing advanced reporting and analytics tools tailored for Keap and Infusionsoft users. Established in 2014 and operating under the parent company LEAP, Graphly positions itself as a market leader with a strong focus on business growth through data visualization and actionable insights. The platform targets small to medium businesses seeking to optimize marketing, sales, and customer service performance through comprehensive reporting. The website reflects a professional and consistent brand image, supported by customer testimonials and a clear call to action for trial usage. Technically, the website is built on WordPress using the GeneratePress theme, leveraging modern JavaScript libraries and third-party analytics and marketing tools such as Google Analytics, Facebook Pixel, Inspectlet, and Crisp Chat. The site demonstrates good performance, mobile optimization, and SEO practices. Hosting appears to be managed via GoDaddy, consistent with the domain registrar information. From a security perspective, the site enforces HTTPS and employs domain status protections but lacks DNSSEC and some recommended security headers like Content-Security-Policy. No explicit security policy or incident response information is publicly available, which could be improved. Privacy compliance is partially addressed with a GDPR compliance badge and a privacy policy, but no cookie consent mechanism is detected. Overall, Graphly presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance standing.

L

LEAP

leapmade.com

10

LEAP is a small technology company specializing in SaaS product development and marketing automation solutions. Their website promotes multiple SaaS products such as Parsey, Graphly, Evidence, and Maven RSS To Email, targeting businesses seeking to grow rapidly through automation and marketing tools. The company positions itself as award-winning and customer-oriented with a strong focus on core values and customer care. The website is built on WordPress with a moderate technical infrastructure including Google Analytics and Tag Manager for tracking. The site is mobile optimized and presents a professional design with consistent branding. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks security headers and explicit privacy or cookie policies. No contact information or security incident response details are provided, which limits transparency. The domain registration is consistent and legitimate, with no privacy protection and appropriate domain age. Overall, the website is functional and professional but could improve in privacy compliance and security best practices.

M

Magistra, a.s.

magistra.cz

62

Magistra.cz is a Czech Republic based online pharmacy and retail pharmacy chain operating over 200 physical locations nationwide. The company offers a broad range of pharmaceutical and healthcare products through its e-commerce platform, supported by a loyalty program and a mobile application facilitating e-prescription reservations. The website is professionally designed with clear navigation and relevant content targeted at general consumers seeking pharmaceutical products and health-related services. Technically, the site uses modern web technologies including HTTPS, Google Tag Manager, and multiple analytics platforms, hosted partially on Microsoft Azure Blob Storage. Security posture is adequate with HTTPS enforced but lacks visible security headers and explicit privacy and cookie policies, which are important for compliance and user trust. The WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the site demonstrates a strong business presence and trustworthy e-commerce platform in the healthcare sector.

R

Radio X

radiox.ch

58

Radio X is a well-established community radio station based in Basel, Switzerland, focusing on youth and cultural programming. It serves a diverse audience locally and internationally via multiple broadcast channels including DAB+, FM, cable, and internet streaming. The station relies heavily on volunteer broadcasters and offers a wide range of specialty shows, podcasts, and live events, positioning itself as a key cultural media player in the region. Technically, the website is built using modern web technologies such as Vue.js and Adobe Experience Manager, with integration of Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS, includes important security headers, and does not expose sensitive data. However, it lacks explicit security or incident response policies publicly available. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, Radio X demonstrates a mature digital presence with strong community engagement and trustworthy operations. Strategic improvements could focus on enhancing accessibility, publishing security policies, and providing clearer contact information to further strengthen trust and compliance.

S

Select Insure Group

ecolife.zone

53

Eco Life Zone is a content-driven website dedicated to promoting sustainable living and eco-friendly practices. The site offers a variety of resources and articles on topics such as renewable energy, green homes, sustainable transportation, zero waste lifestyle, natural health, organic gardening, and sustainable travel. The business targets environmentally conscious individuals seeking practical advice and inspiration for greener living. The website is positioned as a niche informational platform with a focus on community engagement and education. Technically, the website is built on WordPress using popular plugins and frameworks such as Elementor, Mai Engine, and Genesis Framework. It employs modern web technologies including JavaScript, jQuery, and Google Analytics for tracking. The site is mobile optimized and demonstrates good SEO practices with comprehensive meta tags and structured data. Performance is moderate, with room for improvement in loading speed and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration and employs a WordPress security plugin (Malcare). However, it lacks explicit security headers and privacy compliance mechanisms such as a privacy policy and cookie consent banner, which are important for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common for this type of website, and does not raise immediate concerns. Overall, Eco Life Zone presents a professional and trustworthy platform for eco-sustainability content. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and maintaining regular updates to plugins and themes to enhance security and compliance.

E

eSolutions Softhouse Limited

imghaste.com

64

IMGHaste is a technology company specializing in white-labeled image optimization services designed to improve website speed and reduce server costs. Their service leverages a worldwide CDN with over 550 edge servers and advanced image transformation technologies such as AVIF, WebP, client hints, and service workers. The company targets website owners and developers seeking seamless image optimization without integration complexity. The website demonstrates a good level of technical maturity with modern frameworks and tracking tools, though it lacks some privacy and security policy disclosures. Security posture is generally good with HTTPS and service worker usage, but could be improved by adding security headers and formal policies. The absence of WHOIS registration data is a notable concern that requires further investigation to confirm domain legitimacy.

A

Arbeiter-Samariter-Bund Österreichs

samariterbund.net

68

The Arbeiter-Samariter-Bund Österreichs is a well-established non-profit organization founded in 1927, providing a wide range of healthcare, emergency, social, and humanitarian services primarily in Austria with international outreach. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes standard analytics and marketing tools. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a dedicated security policy page are absent. The WHOIS data is unavailable, which limits domain registration trust verification, but the overall site and external references indicate legitimacy. Privacy compliance is well addressed with a detailed privacy policy and cookie management. Overall, the site is professional, trustworthy, and safe for general audiences.

Halle-Crowd is a localized crowdfunding platform focused on supporting projects in culture, art, social initiatives, education, environment, and sports within the Halle (Saale) region in Germany. The platform leverages Colligent Crowdfunding Technology and integrates accessibility tools to enhance user experience. The website is primarily in German and targets local residents and project initiators seeking funding. Technical infrastructure includes modern JavaScript libraries, Google Analytics with IP anonymization, and cookie consent management, reflecting a moderate level of digital maturity. Security posture is adequate with privacy compliance measures in place, though there is room for improvement in security headers and published policies. Overall, the platform presents a trustworthy and functional service for its niche audience.

C

Catholic Bishops' Conference of England and Wales

dayforlife.org

49

The Catholic Bishops' Conference of England and Wales operates a professional and authoritative website dedicated to religious advocacy and raising awareness on life issues. The site provides comprehensive resources including messages, prayer booklets, and grant information, targeting Catholics and interested individuals in England and Wales. The organization holds a strong market position as a recognized religious authority with consistent branding and a clear mission. Technically, the website is built on WordPress with modern technologies such as Bootstrap, Yoast SEO, and Google Analytics, hosted with CDN support for performance. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and employs security best practices, although explicit security headers are not detected in the provided data. No vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website presents a low risk profile with strong business credibility and technical maturity. The main limitation is the lack of WHOIS data due to querying the 'www' subdomain, but this does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers and publishing explicit security and incident response policies.

C

Catholic Bishops' Conference of England and Wales

taking-stock.org.uk

45

Taking Stock is a non-profit project managed by the Catholic Bishops' Conference of England and Wales, focusing on the architectural and historical review of Catholic churches and chapels across England and Wales. The website serves as an informational resource and partnership platform involving dioceses and Historic England. The target audience includes researchers, heritage professionals, and the Catholic community. The business model is collaborative and heritage-focused, with a niche market position in religious architectural documentation. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and advanced SEO plugins like Yoast. Hosting utilizes a CDN for performance, and Google Analytics is implemented for visitor tracking. The site demonstrates good mobile optimization and basic accessibility features, though there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks explicit security policies, incident response information, and cookie consent banners, which are important for GDPR compliance and user trust. No critical vulnerabilities or suspicious activities were detected. Overall, the website is professionally maintained with a strong business credibility and good content quality. Strategic recommendations include enhancing privacy compliance with cookie consent, implementing security headers, and publishing security and incident response policies to improve trust and compliance posture.

S

Sprachenatelier Berlin [isk] gGmbH

sprachenatelier-berlin.de

53

Sprachenatelier Berlin [isk] gGmbH is a small, established language school located in Berlin, Germany, specializing in German language courses from beginner to advanced levels (A1 to C2), including telc German exams and over 50 foreign language offerings. The school provides both onsite and online learning options, catering to international students, professionals, and language enthusiasts. Recognized by the Berlin Senate and holding multiple certifications, the institution maintains a strong market position within the education sector. The website reflects a professional and comprehensive presentation of their services, pricing, and cultural programs, targeting a broad audience seeking language education in Berlin. Technically, the website is built on the KONTEXT-CMS platform, utilizing modern web technologies such as jQuery, Google Analytics, Google Tag Manager, and Matomo for analytics. The site is mobile-optimized with good SEO practices and moderate performance. Hosting is provided by warenform.de, consistent with the domain's nameservers and analytics endpoints. From a security perspective, the site enforces HTTPS with an excellent SSL configuration and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism, which is a GDPR compliance gap. The business credibility is high, supported by clear contact information, certifications, and professional content. Overall, the website is trustworthy, well-maintained, and suitable for its educational purpose. Strategic improvements in privacy compliance and security transparency would enhance its security posture and regulatory adherence.

E

Epipoli S.p.A

mygiftcardbusiness.it

60

MyGiftCard Business, operated by Epipoli S.p.A, is a well-established Italian e-commerce platform specializing in prepaid cards, gift cards from major brands, multibrand gift cards, and corporate welfare card solutions. The company holds a strong market position as a pioneer in Italy for gift cards and prepaid Mastercard cards, serving a large client base including businesses seeking to incentivize employees and reward clients. The website reflects a professional and consistent brand image with clear business offerings and a focus on corporate clients. Technically, the website is built on the Magento platform, utilizing modern JavaScript libraries such as jQuery, Prototype.js, and integrations with Google Tag Manager and Analytics for marketing and tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, integrates Google reCAPTCHA v3 to prevent abuse, and employs a comprehensive cookie consent mechanism via Iubenda, indicating strong privacy compliance. However, DNSSEC is not enabled, and HTTP security headers are not explicitly detected, suggesting areas for improvement. No critical vulnerabilities or exposed sensitive data were found. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic improvements in DNS security and HTTP headers would further enhance its security stance.

W

WaveDigital s.r.o.

wavedigital.cz

44

WaveDigital s.r.o. is a Czech-based digital agency specializing in custom web development, web applications, e-commerce solutions, PPC advertising, and SEO optimization. Established in 2018, the company positions itself as a reliable partner for businesses seeking modern digital solutions. The website reflects a professional and consistent brand image, targeting business clients primarily in the Czech Republic. The company leverages popular CMS and page builder technologies such as WordPress and Elementor, combined with modern marketing and analytics tools including Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel. Cookie consent is managed via Cookiebot, indicating attention to privacy compliance, although explicit privacy and terms of service pages are not found.

M

Mirus

mirus.it

73

Mirus is an established Italian communication company with over 30 years of experience, specializing in integrated communication, consulting, events, digital branding, and strategic creativity. The company targets businesses seeking to strengthen their brand presence through multi-channel experiences. Their market position is supported by a portfolio of notable clients including government and regional entities, and a clear emphasis on certifications and ethical practices. Technically, the website is built on WordPress with Elementor and incorporates modern SEO and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in explicit security policies and incident response disclosures. Overall, the website presents a professional, trustworthy, and compliant digital presence suitable for its business domain.

L

LiteSpeed Technologies Inc

http3check.net

47

HTTP3Check.net is a specialized online tool provided by LiteSpeed Technologies Inc that allows users to verify HTTP/3 and QUIC protocol support on any given URL. The service targets web developers, IT professionals, and website administrators seeking to assess modern web protocol adoption. The website is professionally designed using the UIkit framework and integrates Google Analytics and Google Tag Manager for user tracking and analytics. The domain is registered with NameCheap and uses Cloudflare DNS, reflecting a stable and legitimate technical infrastructure. However, the site lacks visible security headers and cookie consent mechanisms, which are important for enhancing security and privacy compliance. The privacy policy is present but limited in scope, and no direct contact or incident response information is provided.

Q

QUIC.cloud

quic.cloud

74

QUIC.cloud is a specialized technology company providing a comprehensive WordPress optimization platform that includes CDN-level caching, image and page optimization, security features, and DNS services. Established in 2018, it has positioned itself as a niche leader in WordPress performance enhancement with a growing global network of CDN points of presence. The website reflects a mature digital presence with professional design, clear navigation, and extensive service descriptions targeting WordPress site owners and developers. Technically, the site is built on WordPress with Elementor and leverages modern technologies such as LiteSpeed Cache, Google Analytics, and Google Tag Manager. Hosting is supported by Amazon AWS infrastructure, ensuring fast performance and global reach. The site is mobile-optimized and accessible, with good SEO practices and comprehensive metadata including Open Graph and JSON-LD structured data. From a security perspective, the site enforces HTTPS and integrates CDN-level security features including brute-force protection, reCAPTCHA, Layer-7 DDoS mitigation, and WAF rules tailored for WordPress. However, explicit security policies and incident response information are not published, representing an area for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, QUIC.cloud demonstrates a strong security posture, good privacy compliance with GDPR-aligned policies and cookie consent mechanisms, and high business credibility. The domain registration data is consistent and trustworthy. Strategic recommendations include publishing dedicated security and incident response policies, adding security headers, and enhancing transparency around vulnerability disclosures.

S

Space Squirrel Ltd.

covet.pics

57

Covet.pics is a specialized Shopify app developed by Space Squirrel Ltd. that offers merchants customizable, shoppable galleries integrating Instagram feeds, user-generated content, and product galleries to enhance e-commerce conversion rates. The website positions itself as a niche solution within the Shopify ecosystem, targeting store owners seeking to improve visual merchandising and customer engagement through galleries. The business model is subscription-based with tiered pricing plans, reflecting a SaaS approach tailored for small to medium-sized e-commerce businesses. Technically, the website is built on Webflow CMS and leverages modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics and security. Hosting and DNS services are provided via Cloudflare and Webflow, ensuring good performance and availability. The site is mobile optimized and demonstrates good SEO practices, although accessibility features are basic. No major technical debt or vulnerabilities were detected in the frontend code. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and published security or incident response policies. The domain registration is consistent and trustworthy, with no privacy protection masking ownership, and domain age aligns with the business founding date. However, the absence of privacy and cookie policies and lack of GDPR compliance indicators represent compliance gaps. Overall, the security posture is moderate but could be improved with additional policies and technical controls. The overall risk assessment is low to moderate, with no signs of malicious activity or suspicious content. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, and publishing incident response contacts to enhance trust and compliance. These improvements will strengthen the security posture and regulatory compliance, supporting business credibility and customer confidence.

C

Catholic Bishops' Conference of England and Wales

cbcew.org.uk

49

The Catholic Bishops' Conference of England and Wales operates an official website providing authoritative information about the Catholic Church's activities, leadership, safeguarding, and community engagement within England and Wales. The site serves a broad audience including clergy, laity, and the general public interested in religious affairs. It offers news, events, podcasts, and educational resources, positioning itself as a trusted source for Catholic-related content in the region. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates SEO and analytics tools such as Yoast SEO and Google Analytics, reflecting a mature digital infrastructure. The site is hosted on reliable CDN services ensuring moderate to good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations including GDPR. The lack of WHOIS data for the exact subdomain queried is explained by it being a subdomain, with the main domain being legitimate and well-established. Strategic recommendations include enhancing security headers and maintaining regular updates to sustain security and compliance.

H

Hallesche Wohnungsgenossenschaft FREIHEIT eG

wgfreiheit.de

50

Hallesche Wohnungsgenossenschaft FREIHEIT eG is a well-established housing cooperative based in Halle (Saale), Germany, with a history spanning over 70 years. The organization provides affordable, modern housing solutions with a strong emphasis on community engagement, social responsibility, and cultural sponsorship. Their target audience includes families, seniors, students, and local residents. The website reflects a mature digital presence with comprehensive content, clear navigation, and active social media integration. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Google Analytics with privacy-conscious settings. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business profile.

R

R.R. Bowker LLC

myidentifiers.com

72

MyIdentifiers.com is the official website of the U.S. ISBN Agency operated by R.R. Bowker LLC, providing essential services such as ISBN sales, barcode generation, copyright registration, ebook conversion, and marketing tools for publishers and self-publishers. The website is well-branded, professionally designed, and targets authors and publishers seeking to publish and market their books effectively. The site leverages modern web technologies including AngularJS, Drupal CMS, Bootstrap, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Hosting assets are served via Amazon AWS S3, indicating a reliable infrastructure. Security posture is good with HTTPS enforced and secure form handling, though some security headers are missing and AngularJS version is outdated, suggesting areas for improvement. Privacy and cookie policies are present and GDPR compliant, supporting user data protection. The WHOIS data is missing or unavailable, which slightly reduces trust but the website content and branding strongly align with the legitimate Bowker business. Overall, the site is a credible and professional platform for book identification and publishing services.

T

Till Schaap Edition GmbH

tillschaapedition.ch

49

Till Schaap Edition GmbH is a Swiss-based publishing company specializing in art, photography, and cultural history books. The company operates an e-commerce website built on Magento, targeting art enthusiasts and collectors primarily in Switzerland and German-speaking regions. The website presents a professional design with clear navigation and multilingual support (German, English, French). Technically, the site uses modern web technologies including Google Analytics and Google Tag Manager for tracking, and it enforces HTTPS for secure communications. However, it lacks advanced security headers and cookie consent mechanisms, which impacts its privacy compliance posture. No explicit security or incident response policies are published, which could be improved to enhance trust and compliance. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency. The website content is safe and appropriate for a general audience.

D

Der gesunde Menschenversand GmbH

menschenversand.ch

48

Der gesunde Menschenversand GmbH operates a German-language publishing and e-commerce website focused on spoken word, slam poetry, and literary works. The company targets a niche audience interested in cultural and literary content, offering books, audiobooks, music, and event promotion. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. The business is small-sized, based in Switzerland, and founded around 2019, with a clear market position as a specialized literary publisher. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by Yoast SEO for search optimization. It uses modern JavaScript libraries such as jQuery and Slick Slider for UI components, and integrates Google Analytics and Mailchimp for marketing and analytics. The site is mobile-optimized and performs moderately well, though accessibility features are basic. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism implemented, which is a gap given GDPR applicability. Overall, the website is trustworthy and professional with a solid business foundation. Strategic improvements in privacy compliance and security practices would enhance its posture and user trust.

I

INSOR AG

editionmaulhelden.com

41

Edition Maulhelden is a small Swiss cultural publishing platform specializing in literary works, performances, and autobiographical writing workshops. The website is professionally designed using TYPO3 CMS and integrates multimedia content such as videos and podcasts. The business targets German-speaking literature enthusiasts and operates with a niche cultural focus. Technically, the site uses modern web technologies including jQuery, Webflow CSS, and Google Analytics with IP anonymization, but lacks some advanced security headers and cookie consent mechanisms. The domain registration is consistent with the business timeline, and no suspicious patterns were detected. Overall, the website demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

E

Edition Moderne

editionmoderne.ch

51

Edition Moderne is a Swiss-based publishing company specializing in graphic novels, comics, and cartoons primarily in the German language. Founded in 1981 and headquartered in Zürich, it holds a unique market position as the only comic publisher in the German-speaking part of Switzerland. The company operates an e-commerce platform using WordPress and WooCommerce to sell its publications directly to consumers. The website is professionally designed, mobile-optimized, and SEO-friendly, targeting German-speaking comic readers and enthusiasts. Privacy and cookie policies are clearly stated and GDPR compliant, with user consent mechanisms in place. Social media presence includes Instagram and a Wikipedia page, enhancing trust and brand visibility.

C

Christoph Merian Verlag

merianverlag.ch

71

Christoph Merian Verlag is an independent Swiss publishing company specializing in books related to architecture, art, culture, society, and regional topics focused on Basel. The company has a well-established market presence since 1976 and operates an e-commerce platform for book sales alongside event hosting. The website is professionally designed with consistent branding and good content quality, targeting a general audience interested in cultural and architectural publications. Technically, the site uses Magnolia CMS and integrates Google Analytics and Tag Manager for tracking, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent banners. Overall, the site demonstrates high business credibility and trustworthiness.

S

Schöne Bücher c/o Verlag Jens Korch

schoenebuecher.net

53

Schöne Bücher is a German media platform dedicated to promoting independent book publishers through curated reading tips, news, and event coverage. The website targets readers interested in independent literature and operates as a niche media network. Technically, the site is built on WordPress with a modern plugin ecosystem, including analytics and consent management tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and consent management but lacks some advanced security headers. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and social media presence suggest a genuine small media business. Overall, the site is professional and trustworthy but should address domain registration transparency.

M

Moluna GmbH

moluna.de

49

Moluna GmbH operates www.moluna.de, a German e-commerce platform specializing in books, music, games, toys, and lifestyle products. The website offers a broad catalog with detailed categorization and targets general consumers interested in German-language media and related products. The business model combines direct online retail with affiliate marketing partnerships, leveraging trusted payment providers like Klarna. Technically, the site uses a custom e-commerce platform with modern JavaScript libraries such as jQuery and Flickity, and integrates multiple marketing and analytics tools including Google Analytics and Facebook Pixel. The website is mobile-optimized with good navigation and content quality. Security posture is solid with HTTPS enforced and use of security tokens, though security headers could be enhanced. Privacy compliance is good, featuring a cookie consent mechanism and comprehensive privacy policy. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

Orell Füssli is a well-established Swiss retail bookstore with a strong online presence offering books, eBooks, films, and games. The website targets a general audience interested in literature and related media, providing services such as home delivery and in-store pickup. The site is professionally designed with consistent branding and good content quality, reflecting a mature e-commerce business model. Technically, the website employs modern JavaScript frameworks, consent management via Usercentrics, and integrates Google Analytics and Tag Manager for marketing and analytics. Security measures include HTTPS enforcement and CAPTCHA protection on login forms, indicating a good security posture. However, explicit privacy and terms of service pages are not clearly found, which slightly impacts privacy compliance scores. Overall, the website is trustworthy, secure, and user-friendly, serving a large retail market in Switzerland.

The Ivy Collection is a well-established hospitality group operating restaurants across the UK and Ireland, known for its distinguished service and vibrant dining environments. The website reflects a professional and consistent brand image, targeting general audiences interested in dining and private events. Technically, the site is built on WordPress with modern performance optimizations such as NitroPack and integrates popular marketing and analytics tools including Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforced and domain transfer protections in place, though there is room for improvement in DNS security and explicit security policy disclosures. Privacy compliance is partially addressed with a cookie consent mechanism, but lacks a dedicated privacy policy and terms of service pages. Overall, the site is credible and trustworthy with a good user experience and clear business focus.

L

LEON

leon.co

70

LEON is a UK-based restaurant chain specializing in Naturally Fast Food, emphasizing healthy, plant-based, and convenient dining options. The company operates physical restaurants and offers retail products such as meal pouches, frozen foods, cookbooks, and gift cards. Their market position is that of a medium-sized, reputable brand with a strong focus on health-conscious consumers. Technically, the website is built on modern frameworks like Next.js and React, with a CMS powered by Sanity, delivering fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are absent. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-branded, though SEO could be improved by adjusting robots meta tags. No WAF or blocking mechanisms were detected, and WHOIS data confirms domain legitimacy and consistency with the business history.

G

Ginger Media

ginger.it

53

Ginger Media is an established Italian engagement and influencer marketing agency founded in 2003, specializing in digital marketing projects for large brands and SMEs across sectors such as Retail, Food & Beverage, Entertainment, Toys & Games, and Beauty. The company leverages proprietary technology platforms to deliver superior campaign performance and aims to create impactful engagement experiences. The website reflects a mature digital presence with professional design, clear messaging, and a focus on client engagement. Technically, the site is built on WordPress with the Divi theme and integrates modern marketing and analytics tools including Google Tag Manager and Google Analytics, complemented by GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS, DNSSEC, and reCAPTCHA protections, though additional security headers could enhance defenses. Overall, Ginger Media presents a credible and trustworthy digital footprint aligned with its business claims.

P

PONTIFICIA UNIVERSIDAD CATOLICA MADRE Y MAESTRA

midominio.do

67

The website midominio.do is the official domain registration and web hosting platform for the .do country code top-level domain, operated by the Pontificia Universidad Católica Madre y Maestra. It offers domain registration, bulk domain registration, domain transfer, web hosting, email hosting, and website design services primarily targeting Spanish-speaking users in the Dominican Republic. The site is positioned as the authoritative registry for .do domains, providing essential services for individuals and businesses seeking an online presence in the region. Technically, the website employs a custom or proprietary platform with jQuery and Google Analytics integrations. The site is moderately optimized for performance and mobile use, with basic SEO and accessibility features. The infrastructure appears stable but lacks advanced security configurations such as DNSSEC and security headers. The domain is secured with HTTPS, and the WHOIS data confirms a legitimate and consistent registration aligned with the business purpose. From a security perspective, the site demonstrates basic best practices, including HTTPS and domain transfer protection. However, it lacks DNSSEC, security headers, and a cookie consent mechanism despite using tracking technologies, which may pose compliance risks. No explicit security policies or incident response contacts are published, indicating room for improvement in transparency and security maturity. Overall, midominio.do is a credible and professionally maintained website serving a critical national function. Strategic enhancements in security policies, privacy compliance, and technical modernization would strengthen its trustworthiness and regulatory adherence.

C

home - communeagence.ch

communeagence.ch

49

The website communeagence.ch represents a small communication agency focused exclusively on serving French-speaking Swiss municipalities. The business appears to be niche and specialized, targeting a specific regional audience. The website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Analytics and Google Tag Manager for tracking, with IP anonymization enabled to enhance privacy. However, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is moderate with HTTPS enabled but missing important security headers and incident response information. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

D

Diario dei Nuovi Appalti

diarionuoviappalti.it

51

Diario dei Nuovi Appalti is a specialized Italian media outlet focused on providing news, commentary, and documents related to public procurement. Founded in 2023 and operated by CRESME EUROPA MEDIA SRL, it targets professionals and stakeholders interested in public contracts and regulatory developments. The website offers subscription services and regularly updated content authored by domain experts. Technically, the site is built on WordPress with modern plugins such as Elementor and Rank Math SEO, ensuring good SEO and mobile responsiveness. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms in place, though additional HTTP security headers could enhance protection. Privacy compliance is well addressed with clear policies and consent banners. Overall, the site presents a professional and trustworthy digital presence in its niche market.

K

Katholische ArbeitnehmerInnen Bewegung Österreich

kaboe.at

60

The website www.kaboe.at represents the Katholische ArbeitnehmerInnen Bewegung Österreich, a well-established Austrian non-profit organization focused on social advocacy, labor rights, and Catholic community engagement. The site provides rich content including news, campaigns, publications, and event information, targeting workers and socially conscious audiences in Austria. Technically, the site is built on the siteswift CMS platform, leveraging modern JavaScript libraries such as jQuery, Swiper, and Magnific Popup, with a cookie consent mechanism implemented via Klaro. Security posture is good with HTTPS enforced and CSRF protections in place, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. WHOIS data confirms the legitimacy and transparency of the organization, matching the website's claims. Overall, the site is professional, trustworthy, and well-maintained.

G

greenants. Mosbach, Mosbach GbR

greenants.de

46

greenants. Mosbach, Mosbach GbR is a small-sized full-service internet agency based in Germany, specializing in digital transformation consulting, TYPO3 CMS development, e-commerce solutions, and online marketing services. The company targets businesses seeking to leverage digital opportunities and improve their online presence through tailored strategies and technical implementations. Their website demonstrates a professional and consistent brand image with comprehensive service descriptions and client references, positioning them as a trusted regional player in the technology sector. Technically, the website is built on TYPO3 CMS, integrates modern marketing and analytics tools such as Google Analytics and Facebook Pixel, and employs Cookiebot for GDPR-compliant cookie management. Hosting appears to be provided by a reputable provider (kasserver.com). The site is mobile-optimized with good SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and explicit incident response policies. From a security perspective, the site uses HTTPS with anonymized IP tracking for analytics and enforces cookie consent. However, no explicit security policies or incident response contacts are published. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the website's business identity, supporting legitimacy and trustworthiness. Overall, greenants.de presents a secure, professional, and GDPR-compliant digital presence suitable for its business model. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its posture and trustworthiness.

N

Neocom

neocomapp.com

68

Neocom.ai is a technology startup founded in 2020, offering an AI-native commerce experience platform designed to personalize online shopping through an AI shop agent. The website presents a professional and modern design built with Framer and integrates analytics and cookie consent tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. The domain is privacy protected, which is common for startups, and shows no suspicious registration patterns. Overall, the site is functional and credible but would benefit from enhanced transparency and security disclosures.

H

Happyworm Ltd

jplayer.org

52

jPlayer.org is the official website for jPlayer, a free and open source HTML5 audio and video media player plugin for jQuery and Zepto. Operated by Happyworm Ltd, the site serves a developer audience seeking cross-platform media playback solutions. The project is well-established since 2010 with an active community and GitHub presence, positioning it as a reputable player in the web media technology space. Technically, the site uses a modern JavaScript stack with jQuery, Zepto, and HTML5, supported by Cloudflare DNS and external analytics and social media integrations. However, some technical debt is evident in the lack of modern security headers and partial use of HTTP resources. Security posture is moderate with no critical vulnerabilities detected but lacking in privacy and cookie policy compliance. The domain registration is consistent and legitimate, with no privacy protection masking ownership, supporting trustworthiness. Overall, the site is professional and functional but would benefit from improved privacy compliance and security hardening.

L

La Guida Nomade

laguidanomade.it

46

La Guida Nomade is an Italian online portal dedicated to conscious travelers seeking wellness, artisanal, agricultural, commercial, and tourism experiences that respect health, life, and the environment. The website serves as a niche directory and content platform, positioning itself as a reference point for sustainable and mindful travel in Italy. The business is small-sized, founded around 2018, and operates under the parent project La Grande Via. The portal offers categorized listings, blog content, and a contact form to engage users. Technically, the website is built on WordPress with WooCommerce for product listings, enhanced by popular plugins such as Yoast SEO, Revolution Slider, and WPBakery Page Builder. It uses modern web technologies including Google Analytics for tracking, Google Fonts, and FontAwesome icons. The site is moderately optimized for performance and mobile devices, with good SEO practices and structured data implemented. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, it lacks explicit security headers like a full Content-Security-Policy and does not publish a security policy or incident response contacts. Privacy compliance is basic, with no visible privacy or cookie policies or consent mechanisms, which is a gap given GDPR requirements. Overall, the website is accessible, professionally designed, and content-rich, targeting a general audience interested in sustainable travel and lifestyle. The security posture is adequate but can be improved with better policy disclosures and headers. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

V Label Italia operates as a recognized certification provider specializing in vegetarian and vegan product certification. The website targets consumers and businesses seeking transparency and quality assurance in vegetarian and vegan certifications, positioning itself as a trusted brand in this niche market. The presence of multiple language versions and country-specific subdomains indicates a strategic international outreach. Technically, the website is built on WordPress with the Avada theme, leveraging popular SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel, reflecting a moderate to advanced digital maturity. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers suggests room for improvement. Privacy compliance is basic, lacking explicit privacy and cookie policies or consent mechanisms. Overall, the site is professional, trustworthy, and well-structured, though it would benefit from enhanced privacy and security disclosures.

M

MyGiftCard

mygiftcard.it

68

MyGiftCard is an established Italian e-commerce platform specializing in the sale of gift cards from major brands across various sectors including retail, food, electronics, and travel. The website offers services such as online activation and balance verification of gift cards, targeting Italian consumers seeking convenient gifting solutions. The platform also features MyGiftCardPlus, a loyalty or enhanced service program. Technically, the site is built on Magento with a mix of modern and legacy JavaScript libraries, and integrates Google Analytics and Tag Manager with privacy-conscious configurations like IP anonymization. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and explicit security policies are recommended. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site scores well on content quality, privacy compliance, and business credibility, making it a trustworthy platform for gift card purchases.