Security Directory

N

NAWI Graz

nawigraz.at

61

NAWI Graz is a collaborative academic initiative between the University of Graz and TU Graz, focusing on natural sciences education and research. The website serves as a portal for students, researchers, and staff involved in this cooperation, providing information on teaching, research, and organizational aspects. The site is professionally designed, multilingual, and well-structured, reflecting a mature digital presence aligned with academic standards. Technically, the site is built on TYPO3 CMS with Bootstrap framework, hosted by the University of Graz infrastructure, and employs Matomo analytics with cookie consent mechanisms, indicating a good level of digital maturity and privacy awareness. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security policy and incident response information, which could be improved to enhance trust and compliance. Overall, the site is trustworthy, compliant with GDPR, and serves its academic audience effectively.

A

ArGe Medien GmbH im ZVEH

e-zubis.de

49

The website www.e-zubis.de serves as an educational and informational platform focused on promoting apprenticeships and careers in the electrical trade sector in Germany. Operated by ArGe Medien GmbH im ZVEH, it provides detailed information about various electrician training programs, career opportunities, DIY electronics projects, and a job finder tool. The site targets young people, students, teachers, and companies involved in the electrical industry. Technically, the site is built on TYPO3 CMS and integrates modern tracking and consent management tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and Usercentrics CMP. The website is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS with good SSL configuration and employs privacy-conscious practices like IP anonymization and explicit user consent for tracking. However, it lacks some security headers and explicit incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious or adult content.

O

Online Casino

topcasinosuisse.com

57

TopCasinoSuisse.com is a niche online platform specializing in providing detailed reviews, rankings, and information about Swiss online casinos. The website targets Swiss players interested in legal and safe online gambling options, offering insights into bonuses, payment methods, and casino game selections. The business operates primarily as an affiliate or review site within the hospitality sector, focusing on the Swiss market. Technically, the site is built on WordPress with Yoast SEO and performance optimizations like WP Rocket, leveraging Cloudflare DNS and Google Tag Manager for analytics and marketing. The site demonstrates good mobile optimization and SEO practices but lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security-wise, the site uses HTTPS and has domain transfer protections but could improve by enabling DNSSEC and adding security headers. Overall, the domain registration is consistent with the business profile, showing legitimacy and appropriate domain age. The site content is safe for adults, focusing on gambling-related information without explicit adult content.

W

Wirtschaftsinitiative Smart Living e.V.

wislev.de

43

Wirtschaftsinitiative Smart Living e.V. is a German non-profit association focused on advancing digitalization in home and living environments to establish Germany as a leading market for Smart Living applications. The organization collaborates with approximately 40 companies, associations, and alliances, providing services such as member networking, event organization, and dissemination of studies and media related to Smart Living. The website is built on WordPress with a modern UIkit framework, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response contacts. Some hidden SEO spam links to gambling sites were detected, which could pose reputational risks. Overall, the site is professional and trustworthy but could improve privacy compliance and security practices.

C

CasinosOnlineSchweiz24

casinosonlineschweiz24.com

52

CasinosOnlineSchweiz24.com is a specialized online platform providing detailed reviews, guides, and information about online casinos tailored for Swiss players. The site offers comprehensive content on casino bonuses, payment methods, game types, and legal regulations relevant to Switzerland. It targets adult gambling enthusiasts seeking trustworthy casino recommendations and insights. Technically, the website is built on WordPress, uses jQuery, and integrates Google Analytics and Tag Manager for tracking. It employs HTTPS and Cloudflare DNS for security and performance. Security posture is moderate with room for improvement in headers and vulnerability disclosure. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is professional, content-rich, and trustworthy for its niche audience.

O

Bestes Online Casino 2025 | TOP Casinos Deutschland

onlinecasinoanleitung.com

55

OnlineCasinoAnleitung.com is a German-language informational website focused on providing comprehensive guides, reviews, and bonus information about online casinos in Germany. It targets adult German-speaking users interested in legal and safe online gambling. The site operates on WordPress with a moderate technical infrastructure including Bootstrap and common plugins for user interaction and content management. The website is hosted behind Cloudflare DNS and uses HTTPS, ensuring basic security and performance standards. However, it lacks explicit privacy and cookie policies, which is a compliance gap. The security posture is reasonable with trust indicators like eCOGRA and DMCA badges, but no dedicated incident response or vulnerability disclosure information is provided. Overall, the site is functional, content-rich, and moderately professional but could improve in privacy compliance and security transparency.

The website 'Hainichen Suche' serves as an informational guide focused on the online gambling sector in Germany, providing detailed casino reviews, bonus information, and security considerations tailored for German players. It positions itself as a niche resource within the regulated German online gambling market, targeting adult players interested in legal and safe online casino experiences. Technically, the site is built on WordPress, leveraging standard web technologies and Cloudflare for DNS and likely CDN services, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies, and no explicit contact or incident response information is provided, which impacts trust and compliance. Overall, the site is functional and relevant but would benefit from enhanced privacy, security, and contact transparency to improve user trust and regulatory compliance.

The website pizza-da-alex.de is an informational platform focused on online casinos in Germany, providing detailed reviews, payment method guides, and regulatory information. It targets adult gambling enthusiasts in Germany and operates as a niche content site without direct gambling services. Technically, it is built on WordPress, uses HTTPS, and is hosted behind Cloudflare DNS, indicating a moderate level of digital maturity. However, it lacks advanced security headers and formal privacy or cookie policies, which are critical for compliance and user trust. The site does not provide direct contact information or security incident response details, limiting its transparency. Overall, the security posture is moderate but could be improved with better headers and compliance documentation. The site is accessible without WAF blocking, and content is safe but adult-oriented due to gambling focus.

V

VINCI Construction CS a.s.

vinci-construction.cz

68

VINCI Construction CS a.s. is the largest construction group operating in the Czech Republic and Slovakia, specializing in transport engineering, bridge construction, water management, and building construction. The company operates through a network of 21 subsidiary brands, serving a broad range of infrastructure and construction needs across the region. The website presents a professional and comprehensive overview of the business, targeting corporate and public sector clients. Technically, the website is built on the Solidpixels CMS platform, utilizing modern web technologies including Google Tag Manager and Google Analytics for tracking. It is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit incident response policies are absent. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding, contact transparency, and social media presence. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to further strengthen trust and compliance.

S

Stavitelství Řehoř, s. r. o.

stavitelstvirehor.cz

58

Stavitelství Řehoř, s. r. o. is a Czech construction company specializing in engineering networks such as water supply, sewage, and water management structures, as well as residential and public buildings and historical reconstructions. The company holds ISO certifications (45001, 9001, 14001) indicating a commitment to quality, safety, and environmental management. Their website showcases project references and multimedia content, targeting investors, public institutions, and private clients in the Czech Republic. Technically, the site is built on WordPress with common plugins, is mobile-optimized, and uses HTTPS with a cookie consent mechanism, reflecting a moderate level of digital maturity. However, the absence of WHOIS data and security headers slightly reduces trustworthiness. Overall, the company presents a professional image with good content quality and business credibility.

P

PK - stavební s.r.o.

pkstavebni.cz

40

PK - stavební s.r.o. is a small Czech construction company specializing in transportation infrastructure such as roads, parking lots, sidewalks, and cycle paths. Founded in 2021, the company leverages over 15 years of prior experience in the sector. Their website presents a professional image with clear descriptions of services, a gallery of completed projects, and references to reputable partner companies, positioning them as a credible player in their niche market. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by WEDOS. It demonstrates good mobile optimization and SEO practices but lacks some advanced security headers and privacy compliance features. The site uses HTTPS, ensuring secure communications, but does not provide privacy or cookie policies, which is a compliance gap. From a security perspective, the site shows a moderate posture with no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and incident response information suggests room for improvement. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the company's founding date, supporting legitimacy. Overall, the website is functional, professional, and trustworthy for its business purpose but should enhance privacy compliance and security best practices to improve its risk profile and user trust.

ABP a.s. Praha is a Czech architectural and construction project design company established in 2005. The company offers comprehensive services including project design, documentation, and legislative process support for various building types such as administrative, residential, transportation, and industrial structures. Their market position appears to be that of a small, specialized local firm serving clients requiring detailed project execution documentation and regulatory compliance assistance. Technically, the website is built using outdated technology (Microsoft FrontPage 4.0) with static HTML content, lacking modern web standards, mobile optimization, and accessibility features. There is no evidence of HTTPS or security headers, which negatively impacts the security posture. The site does not provide privacy or cookie policies, nor does it offer contact information or interactive forms, limiting user engagement and trust. Overall, the website reflects a basic online presence with significant room for modernization and security improvements.

C

Čejka Group a.s. | stavební společnost | Česká republika

cejkagroup.cz

56

The website www.cejkagroup.cz is a small business site hosted on the Wix platform. The content is minimal and primarily technical, with no clear business description or contact information available. The site lacks privacy, cookie, and terms of service policies, which limits its compliance posture. Technically, the site uses standard Wix scripts and polyfills, indicating a modern but basic infrastructure. Security posture is limited due to missing security headers and lack of visible incident response or security policies. Overall, the site appears to be a low digital maturity small business presence with limited trust signals and transparency.

C

COLAS CZ, a.s.

colas.cz

45

COLAS CZ, a.s. is a well-established Czech company specializing in road construction and infrastructure projects, including roads, bridges, railways, and tramways. It operates as part of the global Colas Group and offers a broad range of services from construction to material supply and laboratory testing. The company targets public infrastructure clients and construction partners within the Czech Republic, maintaining a strong market position supported by a history dating back to 1994 and multiple regional subsidiaries. The website reflects a professional and comprehensive digital presence with clear navigation, detailed service descriptions, and multiple contact options. Technically, the site uses modern JavaScript frameworks and Google Analytics with a consent mechanism, hosted on Czech infrastructure providers. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent banner. Overall, the website is trustworthy, professional, and aligned with the company's business model and market presence.

S

STRABAG a.s.

strabag.cz

61

STRABAG a.s. is a leading construction company in the Czech Republic and part of the multinational STRABAG SE group. The company specializes in transport, civil, and engineering construction projects, leveraging advanced technologies and a skilled workforce. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to experts and professionals in the construction sector. Technically, the site uses a mix of modern JavaScript libraries and legacy Lotus Domino backend, hosted on AWS infrastructure, indicating a hybrid but stable platform. Security posture is solid with HTTPS, cookie consent, and privacy policies in place, though some security headers and incident response details could be improved. Overall, the site is trustworthy, compliant with GDPR, and well-positioned to serve its audience effectively.

E

Ev. Krankenhaus Ginsterhof GmbH

ginsterhof.de

40

Ev. Krankenhaus Ginsterhof GmbH is a non-profit psychosomatic hospital located near Hamburg, Germany, specializing in modern psychosomatic and psychotherapeutic treatments. The clinic operates seven inpatient stations with 140 beds and 20 day clinic places, offering individualized treatment concepts based on deep psychological therapy. The website reflects a professional healthcare provider with a clear focus on patient care and recovery. The presence of EU funding logos and detailed service descriptions reinforce its established market position in regional healthcare. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, indicating a modern and maintainable infrastructure. The site is mobile-optimized and SEO-friendly, with good content quality and clear navigation. Performance is moderate, with no major technical issues detected. However, some accessibility features could be improved. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were found. Privacy compliance is generally good, with a comprehensive privacy policy present, but the cookie consent mechanism is minimal and could be enhanced. Overall, the website is trustworthy, professional, and well-suited for its healthcare audience. Strategic improvements in security headers, incident response transparency, and cookie consent would further strengthen its security posture and compliance.

K

Krankenhaus Buchholz und Winsen gemeinnützige GmbH

krankenhaus-winsen.de

49

Krankenhaus Winsen is a regional acute care hospital located near Hamburg, Germany, operating under the umbrella of Krankenhaus Buchholz und Winsen gGmbH. The hospital offers a broad range of medical services across multiple specialized departments and competence centers, including surgery, anesthesiology, gynecology, orthopedics, and emergency care. The website targets patients, visitors, and healthcare professionals, providing comprehensive information about medical services, patient preparation, and events. The hospital maintains partnerships with related healthcare and educational institutions, enhancing its service offerings and training capabilities. Technically, the website is built on TYPO3 CMS, utilizing modern JavaScript libraries such as jQuery and Owl Carousel for interactive elements. The site is mobile-optimized with good navigation clarity and SEO practices. Hosting is provided by kundenserver.de, with HTTPS enforced and cookie consent implemented via an opt-in mechanism. Analytics are handled through Matomo, respecting user privacy. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers in the provided data. No vulnerabilities or exposed sensitive data were detected. The absence of a public incident response or vulnerability disclosure policy is noted as an area for improvement. The WHOIS data aligns with the hospital's identity, showing consistent domain registration without privacy protection, supporting legitimacy. Overall, Krankenhaus Winsen's website demonstrates a solid digital presence with good content quality, privacy compliance, and business credibility. Strategic recommendations include enhancing security headers, publishing incident response contacts, and formalizing vulnerability disclosure to strengthen security posture and trust.

K

Krankenhaus Buchholz und Winsen gemeinnützige GmbH

krankenhaus-buchholz.de

49

Krankenhaus Buchholz und Winsen gemeinnützige GmbH operates as a regional healthcare provider located near Hamburg, Germany, offering a broad range of medical services including surgery, anesthesiology, gynecology, neurology, and emergency care. The hospital positions itself as a medium-sized non-profit institution with specialized competence centers and partnerships, notably with Krankenhaus Winsen. The website is professionally designed using TYPO3 CMS, featuring good mobile optimization and clear navigation, supporting a positive user experience for patients, visitors, and healthcare professionals. Compliance with GDPR and cookie consent regulations is well implemented, reflecting a mature privacy posture. Security practices include HTTPS enforcement and cookie opt-in mechanisms, though there is room for improvement in security headers and incident response transparency. The website integrates Matomo analytics with minimal user tracking, aligning with privacy best practices. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining regular security audits to further strengthen the security posture.

S

ShooTrek

shootrek.cz

9

ShooTrek is a creative agency based in the Czech Republic offering a broad range of services including professional photography, video production, graphic design, and marketing strategies. The company targets both businesses and individuals seeking high-quality creative content to enhance their brand presence. Their website presents a professional image with clear service descriptions and multiple contact options, including email, phone, and social media channels. The business appears to be small-sized and newly established, with a focus on delivering tailored creative solutions. Technically, the website employs modern web technologies such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. The site is well-structured with appropriate meta tags and SEO considerations, although accessibility features could be improved. Hosting appears to be provided by WEDOS, a known Czech hosting provider. No content blocking or WAF mechanisms were detected, allowing full content access. From a security perspective, the website uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The WHOIS data raises concerns due to a domain creation date set in the future, which is inconsistent with the website's operational status and reduces trustworthiness. No analytics or tracking scripts were found, indicating minimal user tracking. Overall, ShooTrek's website is professionally designed and functional but requires improvements in privacy compliance, security headers, and WHOIS transparency to enhance trust and security posture. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, clarifying domain registration details, and establishing incident response contacts.

M

MB74 Stavby s.r.o.

mb74stavby.cz

9

MB74 Stavby s.r.o. is a newly established Czech construction company specializing in earthworks, sewerage, drainage, foundation construction, and reinforced surfaces. Despite its recent founding in 2024, the company leverages the long-term experience of its management team and owns its machinery, positioning itself as a reliable local service provider. The website reflects a professional image with clear service offerings and partnerships with established construction firms, indicating a solid market presence within the Czech Republic construction sector. Technically, the website uses modern frontend technologies such as Bootstrap and SweetAlert2, ensuring a responsive and user-friendly experience. However, there is room for improvement in accessibility and performance optimization. Security-wise, the site uses HTTPS but lacks visible security headers and formal policies such as privacy and cookie policies, which are important for compliance and trust. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening.

D

DŘEVOMIGA, spol. s r.o.

drevomiga.cz

9

DŘEVOMIGA, spol. s r.o. is a Czech company specializing in high-quality wooden constructions including turnkey wooden houses, log cabins, pergolas, garages, and timber sales. Established in 2006, the company emphasizes craftsmanship using premium spruce wood and offers tailored solutions from design to final realization. The website reflects a professional and consistent brand image with clear contact information and social media presence, targeting customers seeking custom wooden buildings primarily in the Czech Republic. Technically, the website employs modern frontend technologies such as Bootstrap and SweetAlert2, ensuring good mobile responsiveness and user experience. However, no privacy or cookie policies are present, and no analytics or tracking scripts were detected, indicating minimal user tracking but also a lack of formal privacy compliance. Security posture is moderate with HTTPS usage but missing security headers and incident response information. The WHOIS data shows a suspicious domain creation date in the future (2025), inconsistent with the company's stated founding year, which may warrant further verification. Overall, the website is functional, trustworthy, and professionally presented but would benefit from enhanced privacy compliance and security practices.

Golfoveclenstvi.cz is an online platform operated by Golf Europe s.r.o., focused on providing a comprehensive comparison of golf club memberships across the Czech Republic. The website also offers tips on advantageous golf offers and promotes related golf services and products. It targets golf enthusiasts and players in the Czech market, positioning itself as a niche leader in golf membership aggregation and related services. The business model revolves around aggregating membership information and promoting affiliated golf-related businesses. Technically, the website is built on WordPress 4.7.31 with a technology stack including jQuery 1.12.4, Bootstrap 2.3.2, and Font Awesome 4.7.0. The site shows basic mobile optimization and moderate performance but uses outdated software versions that may pose security risks. SEO and accessibility features are basic, and the site includes Facebook social plugins for marketing and engagement. From a security perspective, the site uses HTTPS but lacks visible security headers and employs outdated libraries, increasing vulnerability risk. No privacy, cookie, or terms of service policies are present, indicating poor privacy compliance. WHOIS data is unavailable, limiting domain legitimacy verification and reducing trustworthiness. Contact information is present but limited to a company email and phone number in the footer. Overall, the website is functional and safe for general audiences but requires updates to its technical stack, improved security practices, and enhanced privacy compliance to strengthen its security posture and business credibility.

G

Golf Europe s.r.o.

golfovehry.cz

55

Golf Europe s.r.o. operates the website GolfovéHry.cz, a specialized platform offering golf travel packages, golf courses, lessons, and gift vouchers primarily targeting golf enthusiasts in the Czech Republic and neighboring countries. The business model focuses on providing curated golf travel experiences and personalized offers. The website demonstrates a professional and consistent brand presence with clear contact information and social media integration. Technically, the site uses modern web technologies including jQuery, Bootstrap 4, and tracking tools like Google Analytics and Facebook Pixel, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and formal privacy policies are missing. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and well-maintained.

G

Golf Europe s.r.o.

golfoveslevy.cz

9

Golf Europe s.r.o. operates the Golfové slevy platform, specializing in offering discounted golf packages, green fees, and related services primarily in the Czech Republic. The website features offers such as a 2-day stay with unlimited golf at PilsnerGolf Resort Hořehledy, targeting golf enthusiasts seeking affordable golf experiences. The business model revolves around aggregating and promoting golf-related discounts and packages, supported by partnerships with golf resorts, equipment shops, and membership providers. Technically, the website uses legacy technologies including jQuery 1.7.1, Google Analytics, and Facebook SDK for social integration. The site is served over HTTPS with no visible WAF or blocking mechanisms, but lacks modern security headers and uses outdated libraries, which may pose security risks. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and secures form submissions but lacks published privacy, cookie, or security policies, indicating compliance gaps with GDPR and other regulations. WHOIS data is unavailable, reducing domain trust verification, though contact information and payment processing via PayU add legitimacy. No vulnerabilities or malware indicators were detected. Overall, the site is functional and professional but would benefit from enhanced privacy compliance, updated technical stack, and improved security practices to strengthen trust and reduce risk.

G

Golf Europe s. r. o.

progolfistu.cz

38

Progolfistu.cz is a Czech Republic-based family-owned retail business specializing in golf equipment and accessories since 2009. The company operates both an e-commerce platform and a physical store located in Prague 5, offering a wide range of golf products including clubs, bags, balls, clothing, and training aids. Their market position is that of a trusted local retailer with a focus on personalized service and a broad product portfolio from well-known brands. Technically, the website employs common web technologies such as jQuery, Google Analytics, Facebook Pixel, and affiliate tracking, indicating a mature digital marketing approach. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks visible advanced security headers and formal security policies. The absence of WHOIS data for the domain is a notable concern, although the website content and business information appear legitimate and professional. Overall, the site demonstrates a solid business presence with room for improvement in security transparency and domain legitimacy verification.

T

Trustwave

trustwave.com

78

Trustwave is a globally recognized cybersecurity and managed security services provider specializing in managed detection and response. Following its acquisition by LevelBlue, it has become the world's largest pure-play MSSP, offering a broad portfolio of services including advisory, penetration testing, email and database security, and incident response. The company targets enterprises and organizations across multiple sectors such as technology, government, healthcare, and retail. The website reflects a mature digital presence with professional branding and comprehensive service descriptions. Technically, the site is built on HubSpot CMS, leveraging modern web technologies and analytics tools, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforcement, security headers, and secure forms, though explicit security policy and vulnerability disclosure pages could be enhanced. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy or registry policies, but the overall trustworthiness is supported by the company's market position and content quality.

S

Südniedersachsen Stiftung

suedniedersachsenstiftung.de

43

Südniedersachsen Stiftung is a regional non-profit foundation dedicated to fostering a strong and sustainable community in the Südniedersachsen region of Germany. The foundation focuses on key areas such as education, social welfare, environmental sustainability, economic development, and scientific collaboration. Their website reflects a professional and consistent brand image, targeting regional stakeholders and community members. The business model centers on supporting and coordinating regional projects to enhance the quality of life and economic prospects in the area. Technically, the website is built on a modern WordPress platform using Elementor as the page builder, supplemented by various plugins for SEO (Rank Math), event management, and cookie consent (Borlabs Cookie). The infrastructure is hosted on servers associated with kasserver.com, with a moderate performance profile and good mobile optimization. SEO and accessibility features are adequately implemented, though there is room for improvement in accessibility. From a security perspective, the site employs HTTPS and a cookie consent mechanism, but lacks visible advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of a privacy policy and terms of service pages is a notable compliance gap, although cookie consent is present. The WHOIS data indicates a legitimate domain registration with no privacy protection, but lacks detailed registrant information. Overall, the website presents a trustworthy and professional front for the foundation, with good business credibility and technical implementation. However, improvements in privacy compliance documentation and security best practices are recommended to enhance trust and regulatory adherence.

E

EntryEeze

entryeeze.com

9

EntryEeze is a specialized SaaS provider offering web-based solutions for figure skating competition registration and membership management. The company targets skating clubs, skaters, coaches, and officials, providing tools to streamline event management and membership tracking. The website reflects a niche market position with a focused service offering and a small business scale, founded in 2008. Technically, the website uses legacy JavaScript libraries like jQuery 1.10.2 and SlickNav for navigation, hosted on Hostway infrastructure. The site is moderately optimized for mobile and accessibility but lacks modern SEO and performance enhancements. Security posture is moderate; while HTTPS is implied, DNSSEC is not enabled, and no security headers are detected. The use of outdated libraries presents potential vulnerabilities. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR indicators. Business credibility is supported by testimonials and legal notices but lacks direct contact emails or phone numbers on the site. Overall, the site is functional and trustworthy but would benefit from modernization and enhanced security and privacy practices.

Z

Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH)

e-haus-online.de

45

The website 'Virtuelles E-Haus' serves as a virtual platform showcasing the latest smart home technologies and electrical trade products, primarily targeting electrical professionals and interested consumers in Germany. It is affiliated with the Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH), a reputable industry association. The site provides educational content and virtual tours to promote smart home solutions and electrical craftsmanship. Technically, the site is built as an Angular SPA with integration of modern analytics and consent management tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS usage and cookie consent, but lacks visible advanced security headers and explicit incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements in security transparency and contact availability are recommended.

W

Wirtschaftsinitiative Smart Living e.V.

smartliving-germany.de

43

Wirtschaftsinitiative Smart Living e.V. is a German non-profit association focused on advancing digitalization in home and living environments, aiming to establish Germany as a leading market for Smart Living applications. The website serves as an information hub for companies, associations, and stakeholders interested in Smart Living technologies, offering resources such as showroom maps, media downloads, and event information. Technically, the site is built on WordPress with modern UIkit and Yootheme frameworks, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS enabled but lacking explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The presence of hidden gambling-related content in the HTML is a concern for content integrity and SEO hygiene. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

A

Arbeitsgemeinschaft Medienwerbung GmbH im Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke

elektrobetrieb-finden.de

49

The website www.elektrohandwerk.de/fachbetriebssuche.html serves as a professional platform for locating qualified electrical and information technology craft businesses in Germany. Operated by the Arbeitsgemeinschaft Medienwerbung GmbH under the Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH), it offers a comprehensive search function, certification information, and thematic content aimed at end customers, commercial clients, and public sector entities. The platform holds a strong market position as a trusted intermediary in the energy and electrical craft sector, supported by multiple certifications and a consistent brand presence. Technically, the site is built on the TYPO3 CMS and integrates modern technologies including Google Tag Manager, TikTok Analytics, Usercentrics for consent management, and Google Maps API for geolocation services. The hosting is provided by a German hosting provider (RZone), ensuring regional compliance and performance. The website demonstrates good mobile optimization, SEO practices, and accessibility features, although some accessibility aspects could be enhanced. From a security perspective, the site enforces HTTPS and employs consent management for cookies and tracking scripts, reflecting GDPR compliance. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not evident in the HTML source and could be improved. No direct incident response or vulnerability disclosure policies are published, which is a potential area for enhancement. Overall, the website is professional, trustworthy, and well-aligned with its business objectives. It maintains a good balance between user experience, compliance, and technical implementation, making it a reliable resource for its target audience.

A

Arbeitsgemeinschaft Medienwerbung GmbH im Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke

energieeffizienz-fachbetrieb.org

46

The website www.elektrohandwerk.de is a professionally maintained platform operated by the Arbeitsgemeinschaft Medienwerbung GmbH under the Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH). It focuses on providing comprehensive information about energy efficiency, electrical installations, and related services targeted primarily at private homeowners and electrical trade professionals in Germany. The site offers educational content, interactive tools, brochures, and a search function to find qualified electrical specialists, positioning itself as a leading resource in the German energy efficiency and electrical trade sector. Technically, the website is built on the TYPO3 CMS platform and employs modern web technologies including JavaScript, CSS3, and HTML5. It integrates a consent management platform (Usercentrics) for GDPR compliance and uses Google Tag Manager and TikTok Pixel for analytics and marketing. The site is hosted on RZone servers, indicating a professional hosting environment. Performance and mobile optimization are good, with accessible navigation and SEO best practices implemented. From a security perspective, the site enforces HTTPS and uses a consent management platform to manage user privacy. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security headers and a published security or incident response policy. No vulnerability disclosure or security.txt file is present, which could be improved to enhance transparency and trust. Overall, the website demonstrates a high level of professionalism, content quality, and compliance with privacy regulations. It serves as a trustworthy information source for energy efficiency and electrical services in Germany, with strong branding and a clear target audience. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen the security posture and user trust.

A

ArGe Medien GmbH im ZVEH

ezubis.de

49

The website www.e-zubis.de serves as a comprehensive educational and informational platform focused on apprenticeships and careers in the electrical trade (E-Handwerk) in Germany. It is operated by ArGe Medien GmbH im ZVEH and targets young people, students, teachers, and companies interested in electrical training and career opportunities. The site offers detailed information on various electrician apprenticeship paths, career advice, DIY electronics projects, and a job finder tool. It maintains an active presence on major social media platforms to engage its audience. From a technical perspective, the website is built on TYPO3 CMS and leverages modern web technologies including Google Tag Manager, Google Analytics, Facebook and TikTok tracking pixels, and the Usercentrics Consent Management Platform to ensure GDPR compliance. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. Hosting is managed via domaincontrol.com name servers, indicating professional domain management. Security-wise, the site enforces HTTPS with excellent SSL configuration and uses consent-based loading of third-party scripts to protect user privacy. However, it lacks explicit security headers and published security or incident response policies, which could be enhanced to improve security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the website is a trustworthy, well-maintained resource with a strong focus on privacy compliance and user engagement. It effectively supports its business goal of promoting electrical apprenticeships in Germany. Strategic improvements in security headers and incident response transparency would further strengthen its security and compliance standing.

A

Arbeitsgemeinschaft Medienwerbung GmbH im Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke

echeck.de

46

The website www.elektrohandwerk.de is a professionally maintained platform operated by the Arbeitsgemeinschaft Medienwerbung GmbH under the Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH). It serves as an authoritative source of information on electrical safety checks (E-CHECK) and related energy efficiency topics for private consumers in Germany. The site promotes certified electrical contractors and provides educational content on photovoltaic systems, IT, and e-mobility. Technically, the site uses the TYPO3 CMS, modern JavaScript libraries, and integrates Usercentrics for GDPR-compliant cookie consent. It employs Google Tag Manager and TikTok analytics for user tracking with moderate tracking levels. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Contact information is provided via a dedicated contact page, but no direct emails or phone numbers are present on the analyzed page. Overall, the site is trustworthy, well-branded, and compliant with privacy regulations.

Z

Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke

zveh.de

41

The Zentralverband der Deutschen Elektro- und Informationstechnischen Handwerke (ZVEH) operates as the central association representing the interests of companies in the German electrical and information technology trades. The website serves as a comprehensive information and service portal targeting industry professionals, members, and apprentices. It offers resources such as news, educational content, event information, and partner services, positioning itself as a key player in the sector. The site is well-branded and professionally maintained, reflecting its authoritative market position. Technically, the website is built on TYPO3 CMS and integrates modern web technologies including Usercentrics for consent management, Google Analytics, Google Tag Manager, and TikTok analytics for tracking and marketing purposes. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting is provided by RZone, as indicated by the nameservers. From a security perspective, the site enforces HTTPS and uses a consent management platform to comply with GDPR. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. However, the site lacks publicly available security policies and incident response contacts, which are recommended for enhanced transparency and readiness. Overall, the website demonstrates a high level of professionalism, compliance, and technical maturity, with a strong focus on user privacy and business credibility. Strategic improvements in security policy disclosure and incident response communication would further strengthen its security posture and trustworthiness.

O

oikos Graz

oikosgraz.org

67

oikos Graz is a small non-profit student organization based in Austria focused on sustainability and academic transformation. It operates as a local chapter of the international oikos network, targeting students and academics interested in sustainability issues. The website is built on WordPress using modern plugins such as Elementor and Yoast SEO, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements like DNSSEC and CSP headers are recommended. Privacy compliance is strong with a comprehensive privacy policy and cookie banner. Overall, the website is professional and trustworthy, supporting the organization's mission effectively.

U

Universität Graz

uni-graz.at

72

Universität Graz is a prominent Austrian university dedicated to education and research, serving students, researchers, and the academic community. The website reflects its mission to develop solutions for the future and showcases its research profile, study programs, and community engagement. It holds a strong market position as a reputable institution with international connections. Technically, the site is built on TYPO3 CMS with Angular components, leveraging modern web technologies and analytics tools like Google Analytics and Matomo. The site is well-optimized for mobile and accessibility, with good SEO practices. Security-wise, the website enforces HTTPS, employs security headers, and anonymizes IPs in analytics, but lacks explicit public security policies or incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR, though it could improve transparency on security and vulnerability disclosures.

S

Studo GmbH

studo.co

75

Studo GmbH is a medium-sized technology company specializing in digital solutions for students and higher education institutions, primarily in Austria and neighboring countries. Their flagship product, the Studo Campus App, supports over 500,000 daily users and offers a suite of services including digital campus cards, workload measurement, and administrative tools. The company positions itself as a trusted partner for universities, emphasizing quality, sustainability, and personal collaboration since its founding in 2016. Technically, the website demonstrates a mature and modern infrastructure leveraging Cloudflare DNS and CDN services, Piwik PRO for analytics, and optimized assets such as WebP images. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a high level of digital maturity. Security practices include HTTPS enforcement, TÜV SÜD certification covering data protection and software quality, and annual accessibility audits, though some improvements like DNSSEC and security.txt publication are recommended. The security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR consent on forms, although a visible cookie consent banner is missing. Business credibility is reinforced by multiple trust indicators including certifications, testimonials from university officials, and awards. Overall, the website and business present a low-risk profile with strong professionalism and trustworthiness. Strategic recommendations include enhancing DNS security, publishing vulnerability disclosure information, and implementing explicit cookie consent mechanisms to further improve compliance and security posture.

H

HochschülerInnenschaft an der medizinischen Universität Graz

oehmedgraz.at

46

ÖH Med Graz is the official student representation body for the Medical University of Graz, Austria. The organization provides advocacy, consultation, and various student services, positioning itself as a key support entity for medical students. The website reflects a non-profit educational focus with clear targeting towards students at the university. Technically, the site is built on WordPress using modern plugins and frameworks such as Elementor and Yoast SEO, indicating a moderate to advanced digital maturity. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and professional, serving its intended audience effectively.

Ö

ÖH-KUG

oehkug.at

63

The ÖH-KUG website serves as the official online presence of the student union for the Kunstuniversität Graz, providing comprehensive information and services to current and prospective students. The site is well-structured, with clear navigation and relevant content focused on student representation, financial support, counseling, and event information. The target audience is clearly defined as students of the university, and the business model is non-profit, centered on student advocacy and support. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google Fonts, Datadog for logging, and Weglot for multilingual support. The site is mobile-optimized and performs moderately well, with good accessibility and SEO basics in place. Security measures include HTTPS with HSTS and a cookie consent banner, though explicit privacy and terms of service pages are missing. From a security perspective, the site demonstrates a solid posture with no detected vulnerabilities or exposed sensitive data. However, it lacks formal incident response contacts and vulnerability disclosure mechanisms, which are recommended for enhanced security maturity. Overall, the domain registration and WHOIS data align with the website's claims, supporting its legitimacy and trustworthiness. The overall risk is low, with strategic recommendations focusing on improving privacy compliance documentation, adding incident response information, and enhancing accessibility features to further strengthen the site's security and user trust.

Ö

ÖH Uni Graz

oehunigraz.at

53

ÖH Uni Graz is the official student interest representation organization for the Karl-Franzens-Universität in Graz, Austria. The website serves as a communication platform to inform students about their rights, services offered, and organizational news. It provides support in academic, legal, and social matters, positioning itself as a trusted intermediary between students, the university, and political bodies. The site targets university students and offers resources such as legal advice, social support, and event information. Technically, the website is built on WordPress using the Avada theme, incorporating modern web technologies like jQuery and Bootstrap. It integrates Google Analytics with IP anonymization for user tracking. The site is mobile-optimized and accessible, with a clear navigation structure and recent content updates, reflecting a moderate to good level of digital maturity. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks several security headers and formal security policies. No vulnerability disclosures or incident response contacts are published. Privacy compliance is limited, with no visible privacy or cookie policies or consent mechanisms, which could be improved to meet GDPR standards. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security practices to strengthen compliance and user trust. The domain registration data aligns well with the website's claims, supporting its legitimacy.

Ö

öh joanneum

oeh-joanneum.at

55

öh joanneum is a student representation organization serving the FH JOANNEUM community in Austria. The website provides comprehensive information about student services including advisory, legal, housing, psychological support, and event information. It targets students primarily and operates as a non-profit entity. The site is built on WordPress with Bootstrap and uses common web technologies such as jQuery and Google Analytics with IP anonymization enabled. The technical infrastructure is moderate in performance with basic mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced but lacks advanced security headers and cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and professionally maintained, serving its intended audience effectively.

H

Hochschülerinnen- und Hochschülerschaft an der TU Graz GmbH

printkultur.at

47

Printkultur is a well-established printing and study supply service provider based in Graz, Austria, primarily serving the academic community, especially TU Graz students and staff. Founded in 1977, the company offers a broad range of services including digital printing, copying, plotting, scanning, and binding, alongside retail of study materials and promotional items. Their market position is that of a trusted local partner with strong ties to educational institutions, supported by visible partnerships and consistent branding. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, integrating modern tools such as Google reCAPTCHA and Borlabs Cookie for privacy compliance. The site demonstrates good SEO practices and mobile optimization, although some legacy libraries like an older jQuery version present minor security concerns. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, explicit security policies and incident response contacts are absent, and some security headers are not clearly present. No critical vulnerabilities or exposed sensitive data were found, but updating libraries and adding security documentation would enhance posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its niche audience effectively. Strategic improvements in security policy transparency and technical updates would further strengthen its risk profile and operational resilience.

T

Tritón Pardubice, spol. s r. o.

clotheslockers.eu

41

Tritón Pardubice, spol. s r. o. is a Czech manufacturing company specializing in the development and production of equipment for dressing rooms, workshops, and offices, including clothes lockers and related furniture. Established in 1993, the company has a solid market presence and offers a range of products through its website, targeting businesses and organizations requiring specialized locker solutions. The website is professionally designed, leveraging WordPress with WooCommerce and Elementor, providing a good user experience and mobile optimization. The company maintains active social media profiles and provides comprehensive privacy and cookie policies, demonstrating GDPR compliance. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response contacts. Overall, the website and business exhibit a trustworthy and professional digital presence.

E

Event management system - Conference Manager

conferencemanager.dk

67

Conference Manager is a well-established Danish company founded in 2006, providing a leading event registration and management system across Europe. Their SaaS platform simplifies planning and execution of various event types, including physical and online events. The website reflects a mature digital presence with professional design, SEO optimization, and integration of modern web technologies such as WordPress, Elementor, and Cookiebot for GDPR compliance. The company maintains active social media profiles on Facebook, Instagram, and LinkedIn, enhancing their market visibility. Technically, the website leverages a robust WordPress CMS with Elementor page builder and Yoast SEO plugin, supported by Google Tag Manager and Apollo tracking for analytics. Security measures include HTTPS enforcement and Google reCAPTCHA for form protection, alongside a cookie consent mechanism via Cookiebot. However, the absence of explicit security headers and privacy policy pages suggests areas for improvement in security posture and compliance transparency. Overall, the security posture is solid but could benefit from enhanced HTTP security headers and published security policies. The domain WHOIS data is consistent with the business claims, indicating legitimacy and long-term operation. No WAF or blocking mechanisms were detected, allowing full content accessibility and analysis.

F

F&P Brancheorganisation pensions- og forsikringsselskaber

forsikringogpension.dk

68

F&P Brancheorganisation pensions- og forsikringsselskaber is a well-established Danish industry association representing insurance and pension companies. The organization provides policy advocacy, industry analysis, member services, and event hosting, positioning itself as a key player in Denmark's finance sector. The website reflects a professional and consistent brand image, targeting industry members and stakeholders with relevant content and resources. Technically, the site employs modern frameworks such as Bootstrap and Vue.js, integrates Vimeo for video content, and uses CookieInformation.com for GDPR-compliant cookie management. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and secure forms, though some security headers and explicit policies are not published. Overall, the site is trustworthy, compliant, and functional, with room for improvement in security transparency and terms of service availability.

V

Videnscenter for Life Science

lifescienceinsights.dk

46

Videnscenter for Life Science is a Danish knowledge center focused on generating insights and facilitating collaboration within the life science and healthcare sectors. It operates as part of the Lif-koncernen group and aims to bridge the gap between life science innovation and patient care. The website presents professional content about their projects and organizational mission, targeting private and public stakeholders in the Danish life science ecosystem. Technically, the website is built on WordPress, uses HTTPS, and integrates Matomo analytics for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS but lacks security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and professional. Overall, the site scores moderately well on content quality, technical implementation, and business credibility, but privacy compliance and security posture could be enhanced.

D

Dansk Lægemiddel Information A/S

medicin.dk

61

Medicin.dk is a well-established Danish healthcare information platform operated by Dansk Lægemiddel Information A/S, providing authoritative and clinically relevant medicine information to both the general public and healthcare professionals. The platform includes multiple service sites tailored to different audiences and integrates with various healthcare IT systems, positioning itself as a trusted national resource. Technically, the website employs a legacy but stable JavaScript stack including jQuery and jQuery UI, enhanced with modern SDKs like Scandit for barcode scanning and Matomo for privacy-conscious analytics. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements are possible. Security-wise, the site uses HTTPS and disables cookies in analytics to respect privacy, but lacks advanced security headers and explicit incident response documentation. The WHOIS data confirms a consistent and legitimate registration aligned with the business's history and location. Overall, Medicin.dk presents a professional, trustworthy, and user-friendly digital presence with room for security and compliance enhancements.

S

Signum

signumlifescience.com

58

Signum is a specialized life science consulting firm focused on providing data-driven consulting and solutions to the Nordic pharmaceutical market. Their key services include market access, market research, and real-world evidence insights, positioning them as a niche player in the healthcare consulting sector. The website reflects a professional and consistent brand image with clear messaging targeted at pharmaceutical companies and stakeholders in the Nordic region. Technically, the website is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Google Tag Manager. Hosting and DNS services are provided via Cloudflare, ensuring good performance and security. The site is mobile-optimized and includes accessibility considerations, though some advanced security headers are missing. From a security perspective, the site enforces HTTPS and uses a GDPR-compliant cookie consent mechanism with detailed cookie categorization. However, DNSSEC is not enabled and several recommended security headers are absent, which could be improved to enhance security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained with good privacy compliance. The domain registration is consistent and legitimate, supporting the business claims. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing explicit security and incident response policies to further strengthen trust and compliance.