Security Directory

The website www.niedersachsen.de is the official portal of the Lower Saxony state government in Germany. It serves as a comprehensive information hub for residents, government officials, and other stakeholders, providing detailed content on politics, state administration, culture, energy, emergency monitoring, integration, and public services. The site is well-structured, multilingual, and professionally designed, reflecting its authoritative government status. The business model is purely informational and service-oriented, targeting the general public and specific groups such as refugees and local citizens. Technically, the site uses a mature technology stack including jQuery, Video.js, FancyBox, Slick Carousel, DataTables, and Matomo analytics, managed via the Powerslave Liveserver CMS. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and explicit cookie consent mechanisms. Overall, the security posture is good with no detected vulnerabilities or suspicious content. The domain WHOIS data is privacy-protected as per DENIC policies, consistent with a government domain. The site lacks explicit security policies or incident response contacts, which could be improved. Privacy compliance is generally good, though cookie consent mechanisms should be enhanced. The risk assessment is low, with recommendations focusing on improving security headers, cookie consent, and publishing security policies to enhance trust and compliance. The site is trustworthy, professional, and safe for general audiences.

C

Cluster Gesundheitswirtschaft Berlin-Brandenburg

healthcapital.de

58

HealthCapital is a regional cluster organization representing the healthcare and life sciences sector in the Berlin-Brandenburg area of Germany. The website serves as a platform to promote networking, innovation, and business development within this sector, targeting industry stakeholders, startups, researchers, and investors. It provides resources such as reports, event calendars, and newsletters to support its community. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes a GDPR-compliant consent management system. Security posture is solid with HTTPS enforced and minimal tracking, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

E

Ethos Media Group srl

secsolution.com

76

Secsolution.com is a professional Italian B2B online magazine and information portal focused on security, cybersecurity, privacy, and related technologies. Operated by Ethos Media Group srl, it serves security professionals in Italy by providing news, articles, podcasts, training opportunities, and event promotion such as the Secsolution Forum. The website demonstrates a solid market position as a leading security information source in Italy with a consistent brand and quality content. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Analytics, with responsive design and good SEO practices. However, some security best practices such as HTTP security headers are missing, and the WHOIS data for the domain is unavailable, raising concerns about domain registration legitimacy. Privacy compliance is well addressed with GDPR-compliant cookie consent and a privacy policy. Overall, the site is professional and trustworthy but would benefit from enhanced security configurations and domain registration transparency.

B

Brunico Communications Ltd.

playbackonline.ca

56

Playbackonline.ca is a Canadian media news platform operated by Brunico Communications Ltd., specializing in production, broadcasting, and interactive media industry news. The website serves Canadian media professionals and industry stakeholders with subscription-based content and advertising revenue streams. It maintains a strong market position as Canada's leading source for screen industry business news, offering news articles, magazine issues, event coverage, and career listings. Technically, the site is built on WordPress with a moderate performance profile, leveraging common web technologies such as jQuery, Google Tag Manager, and Adsense for monetization and analytics. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks DNSSEC and security headers, representing areas for improvement. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR indicators. Overall, the site is professional, trustworthy, and safe for general audiences, with a well-established domain and consistent WHOIS data confirming legitimacy.

M

Medizinischer Fakultätentag (MFT)

omft.de

44

The website www.omft.de represents the Ordentlicher Medizinischer Fakultätentag (oMFT), a longstanding forum and event organizer for university medicine in Germany. It serves as a networking and discussion platform for medical faculties, healthcare policymakers, researchers, and students. The organization is part of the Deutsche Hochschulmedizin e.V., emphasizing its role in the healthcare and academic sectors. The site content is professional, well-structured, and targeted at a specialized audience in the medical education and research community. Technically, the website is built on WordPress and uses common JavaScript libraries such as jQuery, Modernizr, Swiper, and Fancybox to enhance user experience. The site is mobile-optimized and loads with moderate performance. SEO and accessibility features are basic but functional. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks visible security headers and published security policies. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. The absence of a cookie consent mechanism may pose GDPR compliance risks. Overall, the website is credible and trustworthy, with clear contact information and consistent branding. Strategic improvements in security headers, privacy compliance, and incident response transparency are recommended to strengthen the security posture and regulatory adherence.

B

berghWerk New Media

berghwerk.at

59

berghWerk New Media is a small Austrian technology service provider specializing in web design, print design, and eMarketing solutions since 2000. The company targets small to medium businesses and professionals, with a strong focus on medical and corporate clients in Austria. Their business model emphasizes personalized support and sustainable customer relationships, supported by a comprehensive portfolio and client testimonials. Technically, the website uses modern front-end technologies such as Bootstrap and jQuery plugins, delivering a good user experience with mobile optimization and clear navigation. Security posture is moderate with no visible vulnerabilities but lacks explicit security headers and incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the business claims and domain registration data.

M

Medizinischer Fakultätentag

medizinische-fakultaeten.de

46

The Medizinischer Fakultätentag is a well-established non-profit umbrella organization representing medical faculties in Germany, focusing on advancing medical education and research. The website provides comprehensive information on their initiatives, members, and events, targeting academic and medical professionals. Technically, the site is built on WordPress with modern plugins and demonstrates good mobile optimization and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

M

markt.de GmbH & Co. KG

markt.ch

64

Markt.de GmbH & Co. KG operates a well-established online classifieds platform targeting private and commercial users in Germany. Founded in 2005 and part of the Markt Gruppe, the company offers a broad range of classified ad categories including vehicles, real estate, jobs, services, pets, and electronics. The platform supports free and paid ads, serving millions of listings with a focus on ease of use and comprehensive search capabilities. The website is professionally designed with consistent branding and good content quality, targeting a general audience without adult content exposure on the main domain.

L

Leibniz-Institut für ökologische Raumentwicklung e. V.

ioer.info

54

The Leibniz-Institut für ökologische Raumentwicklung e. V. is a reputable German research institute specializing in ecological spatial development and urban planning. It operates under the Leibniz Association and is publicly funded by federal and state governments. The website reflects a mature digital presence with comprehensive content targeting researchers, policymakers, and urban development professionals. The institute offers research programs, data services, publications, and knowledge transfer activities. Technically, the site is built on TYPO3 CMS with modern frontend frameworks and privacy-conscious analytics (Matomo). Security posture is solid with HTTPS and privacy-respecting analytics configurations, though improvements are recommended in cookie consent and security policy disclosures. Overall, the site is professional, trustworthy, and well-aligned with its institutional mission.

L

Leibniz-Institut für ökologische Raumentwicklung e. V.

ioer-isbe.de

49

The website ioer-isbe.de represents the Leibniz-Institut für ökologische Raumentwicklung e. V., a German research institute focused on ecological spatial development. The site provides an information system centered on the built environment, emphasizing sustainability, resource management, and risk assessment related to natural hazards. It targets researchers, urban and regional planners, and industry stakeholders by offering data, publications, and tools related to building materials and environmental risks. Technically, the site is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery, and uses Matomo analytics configured for privacy. Security posture is good with HTTPS and privacy-respecting analytics, but lacks some security headers and explicit incident response information. The site is accessible without WAF or blocking mechanisms and shows consistent branding and professional content.

K

Kinowerkstatt St. Ingbert

kinowerkstatt.de

57

Kinowerkstatt St. Ingbert is a small, non-commercial cultural cinema located in Saarland, Germany, focusing on showcasing culturally and historically significant films. Supported by public funding and local partners, it offers both in-person screenings and online viewing options. The website reflects a well-structured and professionally presented platform with clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies such as Bootstrap and jQuery, and employs Matomo for privacy-conscious analytics. However, some security best practices like security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. Overall, the domain registration and website content are consistent and trustworthy, indicating a legitimate cultural institution.

L

Logotel

logotel.it

75

Logotel is an independent design company based in Italy, specializing in service design, communication, change management, and digital solutions. The company targets enterprises and organizations seeking innovative and impactful transformation projects. Their website reflects a mature digital presence built on WordPress, leveraging modern JavaScript libraries and a comprehensive cookie consent mechanism to comply with privacy regulations. The site is multilingual and professionally designed, offering clear navigation and relevant content about their services and projects. Security posture is solid with HTTPS and Cloudflare protection, though explicit security policies and incident response contacts are not found. Overall, Logotel demonstrates a credible and trustworthy online presence aligned with its business focus.

C

Commune de Collex-Bossy

collex-bossy.ch

48

The website for Commune de Collex-Bossy serves as the official digital presence for the local government of Collex-Bossy, Switzerland. It provides residents and visitors with access to municipal news, administrative services, event information, and contact details. The site targets local citizens and stakeholders interested in community affairs and public services. The business model is governmental, focusing on public administration and community engagement. The website is well-branded and consistent with local government standards, offering key services such as a virtual administrative counter and up-to-date news.

C

Commune de Choulex

choulex.ch

50

The website 'Commune de Choulex' serves as the official online presence for the local government of Choulex, Switzerland. It provides residents and visitors with essential information about municipal administration, political affairs, public services, leisure activities, commerce, environmental initiatives, and community support programs including assistance for Ukrainian refugees. The site targets local citizens and stakeholders seeking authoritative municipal information. Technically, the website is built on WordPress using the Colibri Page Builder Pro plugin, leveraging common web technologies such as jQuery, Swiper.js, and Fancybox for interactive elements. The site is mobile-optimized and presents a professional design with clear navigation, although accessibility features are basic. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some recommended security headers and does not display privacy or cookie policies, which are important for GDPR compliance. Overall, the website is trustworthy and credible as a government resource but would benefit from enhanced privacy compliance and security hardening.

D

Deutsche Hochschulmedizin e.V.

deutsche-hochschulmedizin.de

47

Deutsche Hochschulmedizin e.V. is a non-profit association representing university hospitals and medical faculties across Germany. It serves as a central body advocating for the interests of university medicine, promoting collaboration in teaching, research, and patient care. The organization targets stakeholders in politics, science, and society, positioning itself as a key player in the German healthcare sector. The website reflects a professional and consistent brand image, with clear communication of its mission and services. Technically, the website is built on WordPress 6.8.3, utilizing modern JavaScript libraries such as jQuery, Swiper.js, and Borlabs Cookie for consent management. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but consistent with the website's legitimacy, supported by authoritative nameservers and external partner links. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and user trust.

G

Guten Tag Apotheke

mein-tag.de

61

MEIN TAG® is a German-language health advisory website affiliated with the Guten Tag Apotheke pharmacy network. It provides daily health and wellness content, including medical news, tips, recipes, and expert advice. The platform targets the general German-speaking public interested in health topics and wellness. The business model centers on content publishing with ancillary services such as a pharmacy finder and e-prescription information, supported by advertising partnerships and a linked online shop. Technically, the site is built on WordPress with modern plugins for SEO, advertising, and GDPR compliance, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. No critical vulnerabilities or privacy issues were detected. Overall, the site is professional, trustworthy, and compliant with GDPR, serving as a reliable health information source.

Ostprignitz-Ruppiner Personennahverkehrsgesellschaft mbH operates as a regional public transportation company in Germany, providing bus services, ticketing options, and mobility support primarily for residents and commuters within the Ostprignitz-Ruppin region. The website offers comprehensive timetable information, ticket purchase options, and details about special services such as Rufbus, bus rental, and advertising. The company targets local users seeking reliable and accessible public transport solutions. Technically, the website is built on a modern stack including Bootstrap 4.3.1, jQuery, Font Awesome, and Moment.js, ensuring responsive design and usability across devices. Forms on the site submit data securely to trusted external domains, indicating integration with regional transport information systems. While performance is moderate, the site is well-structured and navigable, with good mobile optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies, which are recommended for enhanced protection and transparency. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism is implemented. Overall, the site demonstrates a solid security posture but could improve in compliance and security best practices. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response contacts, and auditing third-party libraries regularly. These steps will enhance trust, compliance, and security resilience for the company and its users.

M

Musikkultur Rheinsberg gGmbH

osterfestspiele-schloss-rheinsberg.de

46

Osterfestspiele Schloss Rheinsberg is a well-established cultural festival and music education organization based in Germany, operating under the parent company Musikkultur Rheinsberg gGmbH. The website showcases a professional and consistent brand presence, offering detailed information about festival programs, visitor info, and related cultural divisions. The technical infrastructure is modern, leveraging WordPress CMS with popular JavaScript libraries and plugins, ensuring good performance and mobile optimization. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site reflects a trustworthy and credible cultural institution with clear contact information and active social media engagement.

M

Musikkultur Rheinsberg gGmbH

kammeroper-schloss-rheinsberg.de

45

Kammeroper Schloss Rheinsberg is a well-established international festival and music education organization based in Germany, focusing on young opera singers. It offers a rich program of operas, concerts, and an international singing competition, attracting a culturally engaged audience. The organization operates as a non-profit and maintains a professional online presence with detailed event and visitor information. Technically, the website is built on WordPress with modern libraries and plugins, providing good mobile optimization and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit privacy and security policy pages. Overall, the site is trustworthy and professionally managed, serving its cultural mission effectively.

M

Musikkultur Rheinsberg gGmbH

musikakademie-rheinsberg.de

45

Musikakademie Rheinsberg is a well-established cultural and educational institution based in Brandenburg, Germany, focused on music education, music theater, and amateur music. The organization offers a wide range of courses, workshops, and event hosting services targeting musicians, educators, and music enthusiasts. The website reflects a medium-sized non-profit entity with a clear mission to serve musicians of all generations and promote cultural engagement through music. The business model is centered on educational and cultural services with a strong regional presence. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap Grid, and various plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The use of structured data enhances search engine visibility. However, hosting provider details are not explicitly identified. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. Security headers are not explicitly detected, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found in the content. Overall, the security posture is good but could be enhanced with additional policies and technical controls. The overall risk assessment is low with no signs of malicious activity or unsafe content. Strategic recommendations include publishing security and privacy policies, implementing security headers, and establishing incident response contacts to improve trust and compliance. The website is professional, trustworthy, and suitable for its target audience.

M

markt.de GmbH & Co. KG

markt.de

54

Markt.de GmbH & Co. KG operates a well-established online classified ads platform targeting private and commercial users in Germany. Founded in 2005 and headquartered in Munich, the company offers a broad range of classified categories including vehicles, real estate, jobs, services, pets, and electronics. The platform supports free and paid listings, serving as a marketplace for millions of users. Markt.de maintains a consistent brand presence with comprehensive privacy and terms policies, and active social media engagement. The website is optimized as a Progressive Web App (PWA) with modern frontend technologies such as Kotlin/JS and RequireJS, ensuring good mobile responsiveness and accessibility.

L

Leibniz-Institut für ökologische Raumentwicklung e. V.

ioer.de

54

The Leibniz-Institut für ökologische Raumentwicklung e. V. is a reputable German research institute specializing in ecological spatial development and sustainable urban and regional planning. It operates under the Leibniz Association umbrella and is publicly funded by federal and state governments. The website serves as a comprehensive portal for research programs, publications, events, and data services, targeting researchers, policymakers, and urban planners. The institute maintains a strong market position within the academic and research community in Germany and internationally. Technically, the website is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery, ensuring good mobile responsiveness and accessibility. The site uses Matomo analytics configured with privacy-respecting settings, although it lacks a cookie consent mechanism. Performance is moderate with a well-structured navigation system and professional design. From a security perspective, the site enforces HTTPS and disables cookies in analytics, reflecting good privacy practices. However, it lacks several security headers and does not publish a formal security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's academic nature, hosted on trusted research network name servers. Overall, the website is professional, trustworthy, and well-maintained, with minor improvements recommended in security headers and privacy compliance to enhance its security posture and regulatory adherence.

M

Musikkultur Rheinsberg gGmbH

musikkultur-rheinsberg.de

52

Musikkultur Rheinsberg gGmbH is a well-established cultural non-profit organization based in Germany, offering a broad range of music and cultural events, including concerts, operas, festivals, and educational courses. It operates through three main divisions: the Musikakademie Rheinsberg, the Kammeroper Schloss Rheinsberg, and the Schlosstheater Rheinsberg, serving both professional and amateur musicians as well as cultural audiences. The organization holds a strong market position as a cultural beacon in northern Brandenburg, with a clear focus on music and performing arts. The website is built on a modern WordPress platform utilizing popular plugins such as Yoast SEO, Borlabs Cookie for privacy compliance, and various JavaScript libraries for enhanced user experience. The site demonstrates good technical maturity with responsive design, SEO optimization, and moderate performance. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. From a security perspective, the site enforces HTTPS and uses privacy and cookie management plugins, but lacks explicit published security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and serves its cultural mission effectively. However, improvements in privacy documentation, security transparency, and accessibility could enhance compliance and user trust.

Ს

საქართველოს ენერგეტიკისა და წყალმომარაგების მარეგულირებელი ეროვნული კომისია

gnerc.org

63

The Georgian National Energy and Water Supply Regulatory Commission (GNERC) operates as a government regulatory authority overseeing the electricity, natural gas, water supply, and irrigation sectors in Georgia. Established in 2001, it maintains a significant national presence with a focus on balancing consumer and enterprise interests, setting tariffs, monitoring markets, and ensuring compliance with regulatory frameworks. The website reflects an active organization with frequent news updates, public communications, and certifications such as ISO 9001:2015, reinforcing its credibility and operational maturity. Technically, the website employs a modern yet standard technology stack including Bootstrap, jQuery, FontAwesome, Owl Carousel, and integrates analytics tools like Google Analytics and Facebook Pixel. The site is mobile optimized and accessible, with good SEO practices evident in meta tags and structured navigation. However, it lacks explicit privacy and cookie policies, which is a notable gap in compliance and user transparency. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but it does not implement advanced security headers or provide a vulnerability disclosure policy. The domain registration data is consistent with the organization's profile, showing a long-standing and legitimate presence without privacy protection, appropriate for a government entity. Overall, the website is professional, trustworthy, and serves its regulatory function effectively, but improvements in privacy compliance and security best practices are recommended to enhance user trust and regulatory adherence.

M

moori

moori.net

56

The website docs.moori.net serves as a comprehensive documentation portal for Shopware 6 plugins developed by the company moori. It targets Shopware 6 shop owners and developers, providing detailed plugin documentation, FAQs, and additional resources such as demo shops and partner theme recommendations. The business operates in the technology and e-commerce sectors, focusing on software development and plugin sales/support. The site is professionally designed using MkDocs with the Material theme, offering good navigation, mobile optimization, and content relevance. Structured data indicates a positive user rating and a physical presence in Germany. However, WHOIS data for the subdomain is unavailable, limiting domain registration trust verification.

Z

Zeren Group Investment Holding A.Ş.

zerenholding.com

63

Zeren Group Investment Holding A.Ş. is a multinational investment holding company operating across 4 continents and 8 major sectors including energy, manufacturing, shipping, professional services, trading, media, hospitality, and banking. The company positions itself as a reputable group with a strong financial history and entrepreneurial spirit, aiming to create sustainable value globally. The website reflects a mature corporate presence with detailed information about its subsidiaries, sectors, and career opportunities, targeting investors, partners, and potential employees. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and Google Tag Manager for analytics and user experience enhancements. It features a responsive design with multimedia content and interactive navigation. Cookie consent and privacy compliance mechanisms are well implemented, indicating awareness of GDPR and related regulations. From a security perspective, the site uses HTTPS with good SSL configuration and includes cookie consent banners. However, it lacks explicit security headers and a published security policy or incident response contact. Minor JavaScript warnings exist but do not impact usability. The absence of WHOIS data for the domain is a notable concern for domain legitimacy and transparency. Overall, the website is professional, content-rich, and compliant with privacy norms, but improvements in security posture and domain transparency are recommended to enhance trust and resilience.

R

race result AG

raceresult.com

54

RACE RESULT AG is a well-established company specializing in sports timing and scoring technology, serving over 25,000 events annually across more than 120 countries. Their offerings include timing systems, transponders, timing software, and event platforms, targeting sports event organizers, race timers, and athletes. The company emphasizes German engineering quality and precision in its solutions. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website employs modern JavaScript libraries such as jQuery and Google Tag Manager for analytics, with good mobile optimization and SEO practices. The site uses HTTPS and implements a detailed cookie consent mechanism, indicating a mature approach to privacy compliance. However, some security best practices like security headers and explicit incident response contacts are missing. From a security perspective, the site demonstrates a solid posture with secure login forms supporting two-factor authentication and no visible vulnerabilities. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which slightly impacts the overall trust score. No adult or questionable content is present, making the site safe for general audiences. Overall, the website is professional, secure, and privacy-conscious, but the domain registration inconsistency warrants further investigation to ensure full legitimacy and trustworthiness.

M

Munich Intellectual Property Law Center (MIPLC)

miplc.de

45

The Munich Intellectual Property Law Center (MIPLC) is a specialized academic institution offering a one-year LL.M. program focused on intellectual property, innovation, and competition law. It operates with strong partnerships including the Max Planck Institute for Innovation and Competition and prominent universities, positioning itself as a niche leader in legal education for innovation-driven economies. The website reflects a high level of professionalism, with comprehensive content, multimedia integration, and clear navigation tailored to prospective students and academic audiences. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and privacy-conscious analytics via Matomo with cookies disabled. However, some security headers and explicit security policies are missing, and no direct contact emails or phone numbers are provided, relying instead on contact forms. Overall, the site is trustworthy, well-maintained, and compliant with GDPR, though improvements in transparency and security documentation could enhance user trust further.

M

Musikkultur Rheinsberg gGmbH

schlosstheater-rheinsberg.de

10

Musikkultur Rheinsberg gGmbH operates the Schlosstheater Rheinsberg, a year-round cultural venue offering concerts, theater, dance, film, and opera in Rheinsberg, Germany. The organization targets a broad audience including families and culture enthusiasts, providing diverse programming and venue rental services. The website reflects a well-established regional cultural institution with a professional online presence and clear event information. Technically, the website is built on WordPress with modern plugins and libraries such as jQuery, Slick Slider, and Yoast SEO, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS with good SEO practices, although some accessibility features could be improved. Cookie consent is managed via Borlabs Cookie, showing attention to privacy compliance. From a security perspective, the site uses HTTPS and nonce tokens for AJAX calls but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The absence of a privacy policy page is a notable compliance gap. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The risk assessment is low given the site's cultural and non-profit nature, absence of sensitive data exposure, and legitimate domain registration. Strategic recommendations include publishing a comprehensive privacy policy, implementing security headers, and adding vulnerability disclosure information to improve trust and compliance.

I

Ireland's National Support Network for Horizon Europe

horizoneurope.ie

78

HorizonEurope.ie serves as Ireland's National Support Network for the EU's Horizon Europe research and innovation funding programme. The website provides comprehensive information about the programme's pillars, funding opportunities, success stories, and advisory services to researchers and innovators in Ireland. It is positioned as a trusted government-supported resource to facilitate access to EU funding and promote Irish participation in Horizon Europe. Technically, the site is built on WordPress with common plugins and uses Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. The domain registration is consistent with the website's purpose and geographic focus, supporting its legitimacy. Overall, the site is professional, trustworthy, and safe for general audiences, but could enhance privacy compliance and security best practices.

S

Sächsische Landesbibliothek – Staats- und Universitätsbibliothek Dresden

slub-dresden.de

62

The Sächsische Landesbibliothek – Staats- und Universitätsbibliothek Dresden (SLUB Dresden) operates as a major academic and public library institution in Germany, providing extensive library services, digital collections, research support, and cultural programming. The website reflects a mature digital presence with a comprehensive content offering targeting academic researchers, students, and the general public interested in cultural heritage. The institution's market position is strong within the regional and academic library sector, supported by government funding and a focus on open access and digital innovation. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery, Chartist, and Fancybox. The hosting infrastructure appears to be aligned with German research networks, ensuring reliability and performance. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and uses secure login mechanisms like Shibboleth SSO. While some security headers are implied, explicit implementation of Content-Security-Policy and other headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies. However, the absence of a public security policy or vulnerability disclosure program suggests room for maturity in security governance. Overall, the website is trustworthy, professionally maintained, and aligned with the institution's public service mission. Strategic enhancements in security policy transparency and header implementation would further strengthen its security posture.

D

Deutsche Leasing AG

deutsche-leasing.de

66

Deutsche Leasing AG operates as a leading asset finance partner primarily serving the German Mittelstand (SMEs). The company offers a broad portfolio of leasing and financing solutions including machinery, mobility, IT leasing, and sustainable financing options. The website reflects a mature enterprise with a strong market position and international presence through subsidiaries. Technically, the site employs a modern tech stack with jQuery, Google Tag Manager, and Cookiebot for consent management, ensuring compliance with GDPR and privacy standards. Security posture is robust with HTTPS, security headers, and secure login forms, although explicit security policies and incident response details are not published. The absence of WHOIS data reduces transparency but the professional presentation and comprehensive contact information support legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy, targeting business customers in finance and leasing sectors.

B

Bundesverband Deutscher Finanzberater e.V.

bdf24.de

54

The Bundesverband Deutscher Finanzberater e.V. (BDF) is a professional association representing financial advisors, investment consultants, insurance brokers, and related experts in Germany. The organization offers membership benefits including certifications, professional development, and a rating system to enhance the credibility and market position of its members. The website targets both finance professionals seeking membership and consumers looking for qualified advisors. Technically, the website employs a modern JavaScript stack with user consent management and Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response transparency are recommended. Overall, the site is professional, well-structured, and compliant with GDPR, supporting a trustworthy online presence for the association.

H

Horizon Europe Ireland National Support Network

horizon2020.ie

78

Horizon Europe Ireland National Support Network operates as the official Irish national support network for the EU's Horizon Europe research and innovation funding programme. The website serves as a comprehensive resource for researchers, innovators, and entrepreneurs in Ireland, providing detailed information on funding opportunities, programme areas, success stories, and events. The site is well-positioned as an authoritative source within the Irish research and innovation ecosystem. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and LiteSpeed caching. Hosting is provided by Hosting Ireland, a reputable Irish hosting provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers. No sensitive data exposure or vulnerabilities were detected in the content. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professional, serving its target audience effectively. However, improvements in privacy compliance, security headers, and accessibility would enhance its security posture and user trust.

D

Deutsche Leasing AG

deutsche-leasing.com

65

Deutsche Leasing AG operates as a leading asset finance partner primarily serving the German Mittelstand (SMEs). The company offers a broad range of leasing and financing solutions including machinery, mobility, IT leasing, and sustainable financing options. The website reflects a mature enterprise with a strong market position and comprehensive service portfolio. Technically, the site employs a modern JavaScript stack with consent management and analytics tools, ensuring good user experience and compliance with privacy regulations. Security posture is solid with HTTPS and secure login forms, though some security headers could be improved. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the professional web presence. Strategic recommendations include enhancing security headers and clarifying domain registration details.

D

Digival.es

digival.es

51

Digival.es is a well-established Spanish technology service provider specializing in domain registration, professional web hosting with SSD NVMe technology, WordPress optimized hosting, VPS servers, professional email solutions, web design, e-commerce development, and SEO services. With 25 years of experience and official accreditation as a .es domain registrar, Digival.es holds a strong market position serving businesses and individuals in Spain. The website is professionally designed, content-rich, and optimized for SEO and mobile devices, reflecting a mature digital presence. The technical infrastructure leverages modern JavaScript libraries, Google Tag Manager, Google Analytics, and live chat support, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and reCAPTCHA integration, though some security headers and explicit security policies are absent. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact channels. Recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen security and compliance.

O

OrionThemes

orionthemes.com

47

OrionThemes is a small technology company specializing in the creation and sale of premium, responsive WordPress themes. Established in 2014, the company offers well-documented themes such as Dentalia and Recycle, targeting WordPress users and businesses seeking elegant website solutions. The website demonstrates a consistent brand presence with positive customer testimonials and a focus on quality and support. Technically, the site is built on WordPress 5.6.16, utilizing common plugins and libraries including Contact Form 7, Redux Framework, and Google Analytics for tracking. Hosting is provided via Neoserv.si, with domain registration through NameCheap, Inc. The site is mobile-optimized and performs moderately well, though accessibility and SEO optimizations are basic. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

T

The Eli and Eydthe Broad Foundation

broadfoundation.org

62

The Eli and Edythe Broad Foundation is a well-established philanthropic organization focused on entrepreneurship for the public good in education, science, and the arts. Founded in 1999, it operates primarily in the United States with a large organizational size and a strong market position supported by flagship initiatives and a 50-year history of giving. The website reflects a professional and consistent brand image, targeting non-profit organizations, educational institutions, and the general public interested in philanthropy. Technically, the site is built on WordPress and leverages modern JavaScript libraries and optimization tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforcement and domain registration protections, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is well addressed with accessible privacy and cookie policies and a consent mechanism. Overall, the website is trustworthy and safe, with no adult or questionable content detected.

T

TRENDnet, Inc.

trendnet.com

75

TRENDnet, Inc. is a medium-sized technology company specializing in networking and surveillance hardware solutions for home and office environments. Their product portfolio includes wireless routers, network switches, IP cameras, and cloud-managed network services under the TRENDnet Hive brand. The company maintains a professional and comprehensive website with clear navigation, detailed product categories, and support resources. Their market position is that of a reliable and affordable networking solutions provider with a strong focus on quality and customer support. Technically, the website employs modern web technologies including jQuery, Bootstrap, and advanced UI components like Revolution Slider and Slick Carousel. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism aligned with GDPR requirements. Analytics usage is minimal and privacy-conscious. From a security perspective, the site uses HTTPS and enforces cookie consent but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable or privacy protected, which slightly reduces domain trustworthiness but does not outweigh the professional presentation and business legitimacy evident on the site. Overall, TRENDnet's website demonstrates a strong digital maturity level with good content quality, technical implementation, and privacy compliance. Security posture is solid but could be improved with additional headers and transparency. The domain's WHOIS opacity is a minor concern. Strategic recommendations include enhancing security headers, publishing a security policy, and providing clearer security contact information to further strengthen trust and compliance.

S

SEA Corporate

milanairports.com

10

SEA Corporate operates the Milan Linate and Milan Malpensa airports, providing comprehensive airport management and passenger services. The company holds a significant market position as a major transportation hub in Italy, targeting general travelers and business clients. The website reflects a professional corporate presence with clear branding and consistent messaging focused on airport operations and sustainability. The digital infrastructure is built on Drupal CMS with modern web technologies, ensuring good performance and mobile optimization. Security measures include HTTPS, cookie consent management via Cookiebot, and integration with Google Tag Manager for controlled script deployment. However, some security headers and explicit incident response contacts are not evident in the provided data. Overall, the site demonstrates a mature digital presence with strong privacy compliance and user tracking transparency.

L

La Cour des comptes de Genève

cdc-ge.ch

51

La Cour des comptes de Genève is the official governmental audit institution serving the Geneva public sector. It provides audit, evaluation, and consultation services to improve public action performance. The website targets government officials, public stakeholders, and citizens interested in governance transparency. The institution holds a stable market position as the official audit authority in Geneva. Technically, the website is built on WordPress with modern frontend libraries such as Swiper.js and Fancybox, and uses Google Fonts and reCAPTCHA for security. The site is moderately performant and mobile-optimized with good SEO practices. Security posture is strong with HTTPS and reCAPTCHA, but lacks some security headers and explicit policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

F

Fribourg International Film Festival

fiff.ch

53

Fribourg International Film Festival (FIFF) is a well-established non-profit cultural organization based in Switzerland, dedicated to promoting intercultural understanding through cinema. The festival emphasizes films that provoke reflection and discussion, targeting film enthusiasts, cultural communities, and educational institutions. The website reflects a mature digital presence with multilingual support, rich content, and clear navigation tailored to its audience. The business model relies on ticket sales, partnerships, and sponsorships, positioning FIFF as a significant player in the international film festival circuit. Technically, the site is built on Drupal 10 with modern web technologies and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. Security measures include HTTPS enforcement, secure forms with reCAPTCHA, and standard security headers, although formal security policies and incident response plans are not publicly documented. Privacy compliance is partially addressed with a comprehensive data protection policy but lacks a visible cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

C

Cinémas Les Scala

les-scala.ch

52

Cinémas Les Scala operates three independent cinemas in Geneva, offering a curated selection of independent and auteur films, special events, and online ticket reservations. The website effectively targets local cinema enthusiasts and families with dedicated programming such as children's cine-clubs and opera broadcasts. Technically, the site uses a variety of JavaScript libraries to enhance user experience and integrates Google Analytics for visitor tracking. The site is mobile optimized and provides clear navigation and event information. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and formal incident response disclosures. WHOIS data confirms the domain's legitimacy and consistency with the business location. Overall, the site is professional, trustworthy, and serves its niche audience well.

Z

Zeren Group Investment Holding A.Ş.

zerengroup.com

62

Zeren Group Investment Holding A.Ş. is a large, multi-sector investment holding company operating across 4 continents and 8 key sectors including energy, manufacturing, shipping, professional services, trading, media, hospitality, and banking. The company presents itself as a reputable group with a strong emphasis on sustainable value creation and entrepreneurship. Their website is professionally designed, mobile-optimized, and provides comprehensive information about their business activities, subsidiaries, and career opportunities. Technically, the website uses modern JavaScript libraries such as jQuery and Swiper.js, integrates Google Analytics for visitor tracking, and employs a cookie consent mechanism powered by Cerezgo, indicating a mature digital infrastructure. The site is served over HTTPS with no visible blocking or WAF challenges, though minor PHP warnings in the HTML source suggest some backend issues that should be addressed. From a security perspective, the site enforces HTTPS and cookie consent but lacks explicit security headers in the provided data. No incident response or security policy pages were found, which could be improved to enhance trust and compliance. The absence of WHOIS data for the domain raises some legitimacy concerns, though the website content and business presence appear professional and consistent with a legitimate enterprise. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, with recommendations to fix backend warnings, implement security headers, and verify domain registration details to strengthen trustworthiness and security posture.

A

Assoretipmi

assoretipmi.it

63

Assoretipmi is an established Italian association founded in 2012, specializing in supporting small and medium enterprises through business networks. The website serves as a platform for disseminating information, offering services, and facilitating connections among SMEs in Italy. The digital infrastructure is built on WordPress with a modern plugin ecosystem, including WooCommerce and membership management tools, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its target audience. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks advanced security headers and explicit incident response policies. Overall, the website reflects a professional and trustworthy business presence with room for security enhancements.

I

IS.NA.R.T. scpa - Istituto Nazionale Ricerche Turistiche

isnart.it

62

ISNART is a nationally recognized Italian research institute specializing in tourism economy analysis and enterprise growth support. It operates primarily as a government-affiliated non-profit entity, providing comprehensive data, studies, and initiatives to support tourism stakeholders and regional development. The website reflects a mature digital presence with a strong focus on data-driven insights and public sector transparency. Technically, the site is built on WordPress with modern performance and privacy tools, including WP Rocket and Iubenda for cookie and privacy management. Security posture is solid with HTTPS enforcement and some security headers, though minor improvements in CSP and header coverage are recommended. Overall, the site is trustworthy, professional, and compliant with GDPR regulations, offering clear contact channels and active social media engagement.

D

Deutscher Gutachter und Sachverständigen Verband e. V.

deutsche-gutachterauskunft.de

49

Deutsche Gutachterauskunft is a professional German-language platform that connects consumers and businesses with qualified experts and appraisers across Germany, Austria, and Switzerland. Backed by the Deutscher Gutachter und Sachverständigen Verband e. V., it offers a comprehensive directory, membership packages, and a marketplace for assignments. The website is well-structured, content-rich, and designed to facilitate easy expert search and engagement. Technically, it employs modern JavaScript libraries and integrates cookie consent and analytics tools with privacy considerations. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. Overall, the platform demonstrates a trustworthy and professional presence in the real estate and expert services sector.

H

Handwerkskammer Dresden

ausbilderakademie-handwerk.de

51

The website www.ausbilderakademie-handwerk.de is operated by the Handwerkskammer Dresden, a regional chamber of crafts in Dresden, Germany. It serves as an educational and informational platform targeting trainers, apprentices, and handcraft businesses. The site offers resources such as Ausbilderforen (trainer forums), an Ausbilder-App for knowledge enhancement, and various continuing education programs. The business model is non-profit and government-affiliated, focusing on supporting vocational training in the crafts sector. The website is professionally designed with consistent branding and clear navigation, targeting a German-speaking audience with multilingual options.

N

njumii - Das Bildungszentrum des Handwerks

njumii.de

53

njumii.de is the official website of njumii - Das Bildungszentrum des Handwerks, an educational center affiliated with the Handwerkskammer Dresden, Germany. The organization offers a broad range of vocational training, master craftsman courses, continuing education, and company training primarily targeting skilled trades professionals. The website is well-structured, professionally designed, and uses TYPO3 CMS with modern frontend technologies to deliver a responsive and accessible user experience. While the site demonstrates strong business credibility and good technical implementation, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with HTTPS usage but no visible security headers or incident response information. Overall, the site is trustworthy and serves its educational purpose effectively but could improve privacy compliance and security transparency.