Security Directory

StartLab is a Slovak crowdfunding platform that enables users to support projects and receive rewards. The website is professionally designed with a clear focus on user engagement and campaign support. It integrates multiple marketing and analytics tools such as Facebook Pixel, Google Analytics, Hotjar, and TikTok tracking, reflecting a mature digital marketing strategy. The platform employs a comprehensive cookie consent mechanism compliant with GDPR, enhancing user privacy and transparency. Security measures include HTTPS enforcement and standard security headers, though explicit security and incident response policies are not publicly detailed. Overall, the website presents a trustworthy and functional platform with room for improvement in transparency and accessibility.

O

OCI informatique

rendeznousmeilleurs.fr

47

OCI informatique operates a professional recruitment website targeting IT professionals in France, offering jobs in cloud, consulting, infrastructure, cybersecurity, and related fields. The company positions itself as a medium-sized IT services group focused on expanding its talent pool. The website is built on WordPress with Elementor and includes modern SEO and privacy compliance features such as cookie consent and GDPR-aligned privacy policies. Technically, the site uses HTTPS, Google reCAPTCHA, and standard web technologies, providing a moderate to good performance and user experience. Security posture is solid but could be improved with additional security headers and explicit incident response policies. The WHOIS data shows an anomalous domain creation date in the future, which requires verification but does not currently impact the website's operational legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving its business purpose effectively.

W

WBV - Westfälischer Bibliographischer Verlag

kirchenrecht.shop

56

Kirchenrecht.shop is an e-commerce platform specializing in customized and preconfigured legal text collections related to the Evangelische Kirche von Westfalen. The business operates in a niche market serving church members and legal professionals interested in church law. The website is professionally designed with clear navigation and offers a Rechtstexte-Konfigurator tool for personalized document creation. The platform is built on a Shopware Saltation theme, leveraging modern web technologies and Google reCAPTCHA for form protection. Hosting and domain registration are consistent with the business location and operations, supporting legitimacy. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a comprehensive privacy policy linked externally, but no cookie consent mechanism is present. Overall, the website is safe, trustworthy, and well-positioned within its market niche.

S

SCHWING Stetter

schwing-stetter.fr

42

SCHWING Stetter is a well-established French company specializing in the manufacturing, transport, and fabrication of concrete machinery and equipment. With a history dating back to 1985 and a domain registered since 1998, the company holds a solid market position in the construction and industrial equipment sector. Their key offerings include concrete batching plants, mixers, pumps, and recycling stations, supported by after-sales services and spare parts. The website targets construction professionals and businesses, providing detailed product information and service options. Technically, the website is built on WordPress with modern plugins and optimizations, hosted by OCI CLOUD, ensuring a reliable digital presence. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent mechanisms, although some security headers could be improved. Overall, the site demonstrates good content quality, professional design, and compliance with privacy regulations, supporting a trustworthy business image.

Vědeckotechnický park Plzeň, a.s. is a city-owned innovation and technology park established in 2005, providing modern office, laboratory, and semi-operational spaces to support research, development, and innovation activities in the Plzeň region. The park collaborates closely with the University of West Bohemia and other research institutions, offering services such as business incubation, funding assistance, and partnership facilitation. The website reflects a professional and consistent brand image with clear contact information and EU funding acknowledgments. Technically, the website uses a custom or legacy technology stack including jQuery 1.4.4, Cufon font replacement, and Google Analytics for tracking. Hosting is via Cloudflare DNS and name servers, ensuring good SSL configuration and basic security. However, the use of outdated JavaScript libraries and lack of modern security headers indicate areas for improvement. The site is moderately optimized for performance and mobile use, with basic accessibility features. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism compliant with GDPR principles. However, it lacks a published privacy policy, security policy, and incident response contacts, which are important for transparency and compliance. The outdated jQuery version poses a potential vulnerability risk. No WAF or blocking mechanisms are detected, and no suspicious content is present. Overall, the website is trustworthy and professionally maintained, with strong business legitimacy supported by domain age and WHOIS data. Strategic improvements in security practices, privacy documentation, and technology modernization would enhance the site's security posture and compliance standing.

S

Středisko volného času RADOVÁNEK

radovanek.cz

44

Středisko volného času RADOVÁNEK is a well-established non-profit educational and leisure center based in Plzeň, Czech Republic, with a history dating back to 2005 and organizational roots spanning 75 years. The organization offers a broad range of educational clubs, camps, cultural events, and projects targeting children, youth, and adults in the Plzeň region. The website reflects a professional and consistent brand presence, showcasing partnerships, awards, and a comprehensive offering of services. Technically, the site is built on Joomla CMS with modern frameworks like Gantry 5 and uses common libraries such as jQuery and Bootstrap, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced, use of Google reCAPTCHA, and a detailed cookie consent mechanism, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie management. Overall, the site is trustworthy, user-friendly, and well-positioned in its regional educational sector.

W

Web Best Practice LTD

webbestpractice.co.uk

47

Web Best Practice LTD is a UK-based web development company with over 20 years of experience, specializing in web design, digital marketing, and branding services. The company targets businesses primarily in Manchester and across the UK, offering a full in-house team and a portfolio of over 1000 websites. The website is professionally designed, mobile optimized, and includes comprehensive customer reviews and contact options. Technically, the site uses modern web technologies and tracking tools such as Google Tag Manager, Facebook Pixel, and Mouseflow, with appropriate privacy and cookie consent mechanisms in place. Security posture is good with HTTPS and reCAPTCHA implemented, though explicit security headers are not detected and could be improved. WHOIS data is unavailable due to domain naming rules violation, which raises some legitimacy concerns, but the website content and business information appear consistent and trustworthy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

D

Die Arbeitgeber der Metall- und Elektroindustrie

standort-staerken.de

10

The website 'Standort stärken – Tarifrunde 2024' serves as an official communication and campaign platform for the employers of the metal and electrical industry in Germany. It provides timely news, videos, data, and event information related to the 2024 collective bargaining round. The site targets industry stakeholders and employers, positioning itself as a trusted source for campaign updates and industry insights. The business model focuses on information dissemination and stakeholder engagement within the manufacturing sector. Technically, the website is built on WordPress, utilizing common plugins such as Contact Form 7 and Google reCAPTCHA for form security. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be improved. Performance is moderate, with external widgets from Elfsight enhancing social media integration. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Social media links and official branding contribute to business credibility. Overall, the website presents a professional and trustworthy front for its intended audience, with moderate technical maturity and a solid security baseline. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance its posture and trustworthiness.

S

Schwing Stetter (UK) Ltd

schwing-stetter.co.uk

51

Schwing Stetter (UK) Ltd is a well-established manufacturer and supplier specializing in concrete production and placement equipment, including concrete pumps, batching plants, truck mixers, and concrete recyclers. The company positions itself as a global leader in the concrete equipment industry, serving primarily construction professionals and contractors in the UK. Their business model focuses on manufacturing, distribution, and after-sales services, supported by a professional and content-rich website that reflects their market position. Technically, the website employs modern web technologies such as Google Tag Manager, reCAPTCHA, and service workers, ensuring a secure and user-friendly experience. The site is mobile-optimized with good SEO practices and clear navigation, although some improvements in accessibility and security headers could enhance the overall technical posture. From a security perspective, the site uses HTTPS and implements reCAPTCHA on its contact forms, indicating a baseline security awareness. However, the absence of explicit security policies, incident response contacts, and security headers suggests room for improvement in security maturity. The WHOIS lookup failed due to querying a subdomain rather than the registered domain, but this does not detract from the legitimacy of the business as evidenced by the professional website and consistent branding. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to further strengthen the security posture.

S

SCHWING Stetter Ostrava s.r.o.

schwing.cz

45

SCHWING Stetter Ostrava s.r.o. is a Czech Republic-based manufacturer specializing in concrete pumps, mixers, batching plants, and related construction equipment. The company offers production, sales, and servicing of these products, targeting construction companies and concrete industry professionals. Their market position is that of a reputable regional player with a medium-sized business footprint. The website reflects a professional business model with clear product categories and service offerings, including training and consulting. Technically, the website is built on WordPress using the Enfold theme and integrates modern technologies such as Google reCAPTCHA for form security and All in One SEO for search optimization. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though there is room for improvement in implementing security headers and publishing explicit security policies. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract significantly from the business credibility demonstrated on the site. Overall, the site is safe, professional, and business-focused with minor compliance gaps in privacy policy presence.

I

Intermundio

intermundio.com

46

Intermundio is a small Dutch company specializing in trade fairs, industry publications advertising, and export consultancy services aimed at helping businesses open new markets. The company has a well-established online presence with a domain registered since 2000, reflecting its longevity and market experience. The website is professionally designed with good navigation and mobile optimization, targeting businesses seeking market expansion. Technically, the site uses Drupal 9 CMS with integrations of WordPress plugins, jQuery, Bootstrap, Google reCAPTCHA, and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is basic with HTTPS enabled and reCAPTCHA protecting forms, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy but could improve in security and compliance aspects.

O

OEMUS MEDIA AG

zwpstudyclub.de

54

ZWP Study Club is a professional online portal dedicated to dental continuing education, offering free access to live and on-demand webinars, as well as recorded lectures from international congresses. The platform targets dental professionals globally and is supported by OEMUS MEDIA AG and various partners. Technically, the website is built on WordPress with modern libraries such as jQuery, Bootstrap, and Owl Carousel, and uses Cloudfront CDN for hosting. Privacy and cookie policies are well implemented with user consent mechanisms, and Matomo analytics is configured with privacy in mind. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though explicit security and incident response policies are not published. Overall, the site is professional, trustworthy, and well-positioned in the dental education market.

S

Simmons & Simmons

simmons-simmons.com

68

Simmons & Simmons is an established international law firm that positions itself as a strategic business partner to its clients. The firm offers legal services across multiple sectors including financial institutions, healthcare and life sciences, technology, media and telecommunications, and energy and infrastructure. With over 120 years of history, Simmons & Simmons maintains a strong market presence and a professional brand image. The website reflects a mature digital presence with comprehensive content, clear navigation, and modern web technologies such as Vue.js and Google reCAPTCHA for security. Technically, the website is well-structured, mobile-optimized, and employs modern fonts and video embedding technologies. The presence of privacy and cookie policies, along with a cookie consent mechanism, indicates attention to privacy compliance and user experience. However, the absence of visible security headers and explicit contact information for security or incident response are areas for improvement. From a security perspective, the site uses HTTPS and Google reCAPTCHA, which are positive indicators. The lack of WHOIS data is unusual for a firm of this stature and may warrant further investigation to confirm domain registration legitimacy. No vulnerabilities or malicious content were detected in the site content. Overall, Simmons & Simmons presents a professional and trustworthy online presence suitable for its business model. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving transparency around domain registration and contact information.

Partners for Democratic Change Slovakia (PDCS) organizes an international conference titled 'Civic Actors in War and Peace' focusing on strategies to address hate, polarization, and extremism in communities during times of conflict and peace. The conference attracts international experts, civic actors, and policymakers, positioning PDCS as a recognized non-profit entity in the civic engagement and conflict prevention sector. The website provides comprehensive event details, speaker profiles, and multimedia content, reflecting a well-established event with a history dating back to at least 2014. Technically, the site uses modern web technologies including Bootstrap, Font Awesome, Flickity, and integrates privacy-conscious analytics via Plausible. Hosting is managed by Websupport with DNSSEC enabled, and HTTPS is enforced, indicating a secure infrastructure. However, some security best practices such as explicit security headers and cookie consent mechanisms are missing. Overall, the site is professional, trustworthy, and compliant with GDPR through a linked privacy policy, though improvements in privacy and security disclosures are recommended.

F

Foca Gruppe

foca-gmbh.de

45

The website 'Foca Gruppe' appears to be a small business entity based in Germany, as indicated by the domain and language usage. The site uses modern web technologies such as Font Awesome Pro for icons and Google reCAPTCHA for bot protection, hosted behind Cloudflare DNS services. However, the content is minimal with no explicit business description, contact information, or legal policies such as privacy or cookie policies. The technical infrastructure shows moderate digital maturity but lacks comprehensive SEO, accessibility, and security headers. Security posture is basic with some best practices like reCAPTCHA but missing critical security headers and policies. Overall, the site is accessible without WAF or blocking mechanisms but requires significant improvements in privacy compliance, contact transparency, and security hardening to enhance trust and compliance.

A

Axians Deutschland

axians.de

80

Axians Deutschland is a prominent ICT solutions provider and digital transformation partner operating as part of the global VINCI Energies network. The company focuses on delivering industry-specific digitalization services, primarily targeting business customers in Germany's energy and technology sectors. The website reflects a professional and consistent brand presence, emphasizing Axians' role as a pioneer in digital transformation. Technically, the site is built on WordPress with modern libraries and includes SEO and analytics tools such as Yoast SEO Premium and Matomo Analytics. Security measures include HTTPS usage and Google reCAPTCHA integration, alongside a cookie consent mechanism, although explicit security policies and headers are not evident. The WHOIS data is partially consistent with the website's claims but lacks detailed registrant information, slightly impacting trust. Overall, the site is well-structured, secure, and compliant with basic privacy standards, suitable for its business audience.

T

TruckScout24 GmbH

truckscout24.de

62

TruckScout24 GmbH operates a leading European online marketplace specializing in commercial and leisure vehicles including trucks, transporters, construction machinery, and caravans. The platform offers extensive vehicle listings with advanced filtering options, catering to both professional and private buyers and sellers. The company maintains a strong market position supported by official sponsorships and a professional digital presence. Technically, the website employs modern frameworks such as Yii2, Bootstrap, and jQuery, with integrations for Google Tag Manager and reCAPTCHA, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and CSRF protections, though explicit security policies and incident response contacts are absent. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-optimized for user experience and mobile devices.

R

REDOX, s.r.o.

redox.sk

44

REDOX, s.r.o. is a leading Slovak supplier specializing in municipal waste management technology and vehicles, serving cities, towns, and waste handling companies. The company emphasizes comprehensive solutions for waste collection, sorting, recovery, and disposal. The website reflects a mature digital presence built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. Security measures include HTTPS, Google reCAPTCHA, and a detailed cookie consent mechanism, indicating a strong commitment to privacy and security compliance. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives.

A

ATG

atgvision.com

54

The website www.swedishhorseracing.com is a media and betting platform focused on Swedish horse racing. It provides video replays of races, coverage of major events, and betting information targeting horse racing enthusiasts primarily in Sweden. The site is branded under ATG, a known entity in the Swedish horse racing and betting industry. Technically, the site uses modern web technologies including AngularJS, JWPlayer for video playback, Google Tag Manager for analytics, and AdRoll for advertising and retargeting. The hosting for media content is provided by Rackfish, indicating a professional infrastructure. Security posture is generally good with HTTPS enforced and use of Google reCAPTCHA, but lacks some security headers and explicit privacy and terms of service documentation. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and branding suggest a legitimate business. Overall, the site is well-designed, mobile-optimized, and provides relevant content for its audience, but would benefit from improved transparency in privacy and security policies.

MC-Bauchemie Müller GmbH & Co. KG is a well-established German manufacturer specializing in construction chemicals and concrete additives. The company offers high-quality products, technical consulting, and tailored solutions for the construction industry. With a strong international footprint evidenced by numerous country-specific domains, MC-Bauchemie positions itself as a leading player in the manufacturing and technical consulting sector for building materials. The website is professionally designed, multilingual, and targets construction professionals including engineers, architects, and contractors. Technically, the site employs modern JavaScript frameworks such as Alpine.js and Swiper.js, with security features including HTTPS, reCAPTCHA, and input validation. The security posture is strong with appropriate headers and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website reflects a mature digital presence aligned with the company's market position and business model.

A

ATG

swedishhorseracing.com

54

The website www.swedishhorseracing.com serves as an information and betting platform focused on Swedish horse racing, primarily associated with ATG. It offers race replays, race schedules, news, tips, and betting options targeting horse racing enthusiasts and partners. The site is well-branded with consistent ATG identity and provides a good user experience with clear navigation and relevant content. Technically, it employs modern web technologies including AngularJS, JWPlayer for media, Google Tag Manager for analytics, and AdRoll for advertising and retargeting. Security is robust with HTTPS enforced and multiple security headers present, alongside the use of Google reCAPTCHA to protect forms. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and branding suggest a legitimate business presence. Privacy compliance is addressed primarily through cookie policies with GDPR considerations, but lacks explicit terms of service and detailed security policies. Contact information is limited to a web form and social media presence on Facebook. Overall, the site is professional and trustworthy but would benefit from enhanced transparency in domain registration and expanded compliance documentation.

D

Danske Spil

danskespil.dk

63

Danske Spil is Denmark's leading licensed gambling operator, offering a wide range of games including lottery, sports betting, casino, poker, and bingo. Established in 2000, it serves the Danish market with a strong emphasis on responsible gaming and compliance with national regulations. The website reflects a mature business with clear branding and a comprehensive portfolio of gambling products. Technically, the site uses modern web technologies including Sitecore CMS, JavaScript frameworks, and integrates monitoring tools such as AppDynamics and Sentry for performance and error tracking. Security posture is strong with enforced HTTPS, reCAPTCHA for bot protection, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is evident through the presence of privacy and cookie policies with consent mechanisms. Overall, the site is professional, trustworthy, and well-optimized for performance and user experience.

D

Drausy GmbH

drausy.de

56

Drausy GmbH operates as a specialized provider of biological water treatment and odor control solutions, focusing on sustainable and environmentally friendly technologies for water, wastewater, and soil treatment. The company targets municipal water management, environmental technology sectors, and related industries, positioning itself as a niche player with recognized expertise and practical applications demonstrated through expert testimonials and awards. The website reflects a professional and consistent brand image with detailed product information and a user-friendly contact mechanism. Technically, the website employs modern web technologies including Vue.js, Bootstrap, Google Analytics, and reCAPTCHA, ensuring a responsive and interactive user experience. The presence of a cookie consent manager (Klaro) and multi-language support indicates a mature digital infrastructure with attention to privacy compliance. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms to mitigate spam. However, it lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, Drausy GmbH's website presents a trustworthy and professional front with solid business credibility and compliance with GDPR. The domain registration data is partially consistent with the business claims, supporting legitimacy. Strategic improvements in security policies and technical headers would further strengthen the site's security and trustworthiness.

S

Schoenstatt

schoenstatt.com

60

Schoenstatt.com is the official website of the International Schoenstatt Movement, a Catholic non-profit organization founded in 1914 and active internationally across five continents. The website serves as a central platform for community engagement, spiritual education, and dissemination of news and resources related to the movement. It targets members and followers of the movement, providing multilingual content and multimedia resources to support its mission. Technically, the website is built on WordPress with Elementor and Yoast SEO Premium, hosted by IONOS SE. It uses modern web technologies including HTTPS, Google Tag Manager, and reCAPTCHA for security and analytics. The site demonstrates good mobile optimization and SEO practices, although performance is moderate and accessibility is basic. From a security perspective, the site enforces HTTPS and uses domain locking to prevent unauthorized changes. However, DNSSEC is not enabled, and some recommended security headers are missing. Privacy compliance is weak due to the absence of explicit privacy and cookie policies and consent mechanisms. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website is professional, trustworthy, and content-rich, supporting the organization's mission effectively. Strategic improvements in privacy compliance, DNS security, and security headers would enhance its security posture and regulatory adherence.

C

CNW computer network s.r.o.

cnw.cz

50

CNW computer network s.r.o. is a small Czech Republic-based IT services company specializing in complex IT solutions including customized app development, network design and installation, cloud services, and support. The company positions itself as a reliable partner for both business and home IT needs, emphasizing long-standing expertise and ISO 9001:2015 certification as trust signals. Their website is professionally designed, mobile-optimized, and provides clear navigation and relevant content targeting businesses and home users. Technically, the site is built on WordPress with modern technologies such as Leaflet.js and Google reCAPTCHA, ensuring a secure and user-friendly experience. Security posture is good with HTTPS enforced and form protection via reCAPTCHA, though improvements could be made by adding security headers and a cookie consent mechanism. The absence of WHOIS data limits domain trust verification, but the website content and certifications support legitimacy. Overall, CNW demonstrates a mature digital presence with room for enhanced privacy compliance and security transparency.

M

Moravskoslezské inovační centrum (MSIC)

ms-ic.cz

10

Moravskoslezské inovační centrum (MSIC) is a regional innovation support organization based in the Czech Republic, founded in 2017. The website presents MSIC as a key player in supporting business and innovation in the Moravian-Silesian region, offering services such as financing, know-how, matchmaking, and infrastructure support. The site targets local businesses and entrepreneurs, providing resources, events, and expert networks to foster innovation and growth. Technically, the website is built on WordPress with modern integrations including Google Analytics, Microsoft Clarity, Hotjar, and Google Tag Manager, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and reCAPTCHA implementations, though some security headers and explicit policies are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-branded, with strong regional partnerships and client testimonials enhancing credibility.

R

RM

rm.com

73

RM is a UK-based leading supplier of technology and services tailored for the education sector, supporting a wide range of educational institutions from pre-school to higher education, including examination boards and government bodies. Their offerings encompass education technology, assessment solutions, broadband, VoIP, and support services, positioning them as a comprehensive provider in the education technology market. The website reflects a professional and consistent brand presence with clear navigation and extensive content targeting schools, teachers, and educational institutions globally. Technically, the site employs a modern tech stack including C#, jQuery, Google Analytics, and OneTrust for cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though some security headers and explicit policies are not evident in the provided data. The absence of WHOIS registration details limits domain trust verification but the overall digital footprint and related domains support legitimacy. Privacy compliance is partially addressed with cookie consent but lacks a clearly accessible privacy policy in the analyzed content. Overall, RM demonstrates a strong market position with room for improvement in transparency and security documentation.

The Verband für Sicherheit in der Wirtschaft Hessen (VSW) is a professional association serving as a key interface between government security agencies and the private sector in Germany, particularly in Hessen. It provides a platform for information exchange, networking, and professional development through seminars, events, and an expert pool. The organization collaborates closely with federal and state security bodies, enhancing its credibility and influence in the security domain. The website reflects a mature digital presence built on TYPO3 CMS, featuring modern web technologies and a responsive design that caters well to its professional audience. Security-wise, the site enforces HTTPS, uses GDPR-compliant cookie consent mechanisms, and integrates Google reCAPTCHA to protect forms. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site is trustworthy, well-maintained, and aligned with its business mission.

Q

qurix Technology GmbH

qurix.tech

60

qurix Technology GmbH is a boutique data technology consultancy based in Germany, founded in 2019. The company specializes in transforming businesses into data-inspired champions by providing independent, client-focused data solutions. Their market position is that of an independent boutique consultancy, emphasizing advocacy for clients free from technology provider influence. The website reflects a professional and consistent brand image, targeting companies seeking expert data consultancy services. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium, Google reCAPTCHA, and integrates third-party services like Calendly and ActiveCampaign for scheduling and marketing automation. Hosting is provided by Cronon GmbH, and the site employs HTTPS with good security headers, indicating a solid security posture. Analytics and marketing tools are used with appropriate consent mechanisms, reflecting good privacy compliance. Security-wise, the site enforces HTTPS, uses cookie consent banners, and includes reCAPTCHA to mitigate abuse. No critical vulnerabilities or exposed sensitive data were detected. However, DNSSEC is not enabled, which could be improved. The absence of a published security policy or incident response contact is noted. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. Strategic recommendations include enabling DNSSEC, publishing a security policy, and continuous monitoring of third-party scripts to maintain security and compliance.

R

rimondo

rimondo.com

59

rimondo.com is a specialized online platform dedicated to equestrian sports and horse breeding, providing users with access to show videos, results, breeding information, horse market listings, pedigrees, and statistics. The platform targets equestrian enthusiasts, breeders, and professionals primarily in Germany and Switzerland but serves a worldwide audience. The business operates under LV digital GmbH, indicating a medium-sized company with a focused niche market position. The website offers a paid Pro membership model to unlock full access to premium content and services. Technically, the site employs modern web technologies including Vue.js, Google Tag Manager, and a consent management platform to ensure GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security-wise, HTTPS is enforced, CSRF tokens are present, and user consent is managed effectively, though explicit security headers and a public security policy are absent. The WHOIS data is missing, which is unusual and slightly reduces trust, but the professional presentation and clear business information mitigate concerns. Overall, rimondo.com presents a trustworthy, professional, and user-focused digital presence in the equestrian media sector.

P

Panthera

panthera.org

64

Panthera is a well-established non-profit organization dedicated to the conservation of wild cat species globally. Founded in 1998, it operates across more than 35 countries with partnerships and scientific research to protect 40 wild cat species. The website reflects a mature digital presence with strong branding, comprehensive content, and multiple trust indicators including charity ratings and social media engagement. The organization primarily targets conservation supporters, donors, researchers, and the general public interested in wildlife preservation. Technically, the website is built on Drupal 10 and integrates modern web technologies including Google Tag Manager, Microsoft Clarity, Facebook Pixel, and Fundraise Up for donations. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and reCAPTCHA implemented, but could be improved by enabling DNSSEC and adding security headers. Security-wise, the site shows no critical vulnerabilities or exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and a vulnerability disclosure mechanism. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism despite tracking scripts. Overall, Panthera's website is professional, trustworthy, and well-suited for its mission. Strategic improvements in privacy compliance and security policies would enhance its risk posture and user trust.

D

die profilschmiede GmbH & Co. KG

profilschmiede.de

47

die profilschmiede GmbH & Co. KG is a Cologne-based full-service agency specializing in web design, print production, hosting, social media, SEO, and consulting services. Established in 2000, the company targets businesses and associations seeking integrated digital and print solutions. Their market position is that of a trusted regional internet agency with over two decades of experience. Technically, the website employs a traditional tech stack including MooTools, Google Analytics, Hotjar, and eTracker, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA integration, but lacks advanced security headers and explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. Overall, the website is professional, trustworthy, and business-focused with no signs of suspicious activity or adult content.

F

Finest Audience Academy

aflare.de

48

The website aflare.de appears to be a small-scale affiliate marketing or digital marketing related site powered by Finest Audience Academy. The content is minimal and primarily focused on marketing tracking technologies. The technical infrastructure includes common analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA, hosted behind Cloudflare nameservers. However, the site lacks critical privacy and cookie policies, contact information, and visible security best practices, which limits its trustworthiness and compliance posture. The WHOIS data is limited but consistent with Cloudflare usage, providing no strong indicators of illegitimacy but also lacking transparency. Overall, the site demonstrates basic digital maturity but requires significant improvements in privacy compliance, security posture, and business transparency to enhance credibility and user trust.

B

Buth Maschinen + Technik GmbH & Co. KG

baisonlaser.de

55

Baison Laser Europa, operated by Buth Maschinen + Technik GmbH & Co. KG, is a specialized distributor of fiber laser cutting machines for metal processing in Europe. The company offers a range of high-performance laser cutting and welding equipment targeting industrial manufacturing sectors. Their market position is that of an official distributor with a focus on precision, efficiency, and automation in metal cutting technologies. The website reflects a professional and consistent brand image with clear product offerings and calls to action such as live and online demos. Technically, the site is built on the Webflow CMS platform, utilizing modern web technologies including Google Fonts, jQuery, and Usercentrics for GDPR-compliant cookie management. Performance and mobile optimization are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and bot protection via Google reCAPTCHA, but lacks advanced security headers and published security policies. Overall, the site is trustworthy and safe with no adult or questionable content detected. WHOIS data is partially consistent with the business claims but lacks detailed registrant information. The domain appears legitimate with no privacy protection or suspicious patterns. Recommendations include enhancing security headers, publishing explicit security and incident response policies, and adding vulnerability disclosure information to improve trust and compliance.

G

Gov Lab

govlab.cz

46

Gov Lab is a specialized consultancy focused on improving public sector services through strategic change management, service design, education, and evaluation. Founded in 2018 and based in the Czech Republic, the company targets public sector organizations and non-profits, helping them innovate and better meet citizen needs. The website reflects a professional and consistent brand with clear service offerings and client engagement. Technically, the site is built on WordPress using the Avada theme and includes modern plugins like Yoast SEO and Slider Revolution. Security posture is adequate with HTTPS and reCAPTCHA, though security headers could be enhanced. Privacy compliance is partial due to the absence of a clear privacy policy. Overall, the site is trustworthy and well-positioned in its niche.

ZE-BRAND is a small, specialized branding consultancy with over 30 years of experience focused on the Central and Eastern European (CEE) market. The company offers brand consulting, packaging design, and special project services primarily targeting fast-moving consumer goods (FMCG), beauty, hygiene, health, and nutrition sectors. Their website reflects a professional business with clear service offerings and a regional focus. Technically, the site is built on the Weebly platform using legacy JavaScript libraries and includes standard analytics and tracking tools. Security posture is moderate but could be improved by updating libraries and implementing security headers. The absence of privacy and cookie policies and missing WHOIS registration data are notable gaps that impact trust and compliance. Overall, the website is functional and professional but requires enhancements in security and privacy transparency to align with best practices.

P

Penta Real Estate

pentarealestate.com

66

Penta Real Estate is a professional real estate development company focusing on residential and commercial projects. The website presents a clear market position with key services including project development, ESG initiatives, and career opportunities. The company targets real estate investors and clients seeking property solutions. Technically, the website is built on WordPress with Bootstrap and uses modern analytics and marketing tools such as Google Analytics, Hotjar, and Facebook Pixel. Cookie consent is implemented comprehensively, indicating GDPR compliance. Security posture is good with HTTPS enforced and bot protection via Google reCAPTCHA, though some security headers are not explicitly detected. The lack of WHOIS data limits domain trust verification, but the website content and structure suggest legitimacy. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

I

International School Prague - Park Lane

parklane-is.cz

43

Park Lane International School Prague operates as an educational institution providing international schooling services in Prague. The website presents a professional and modern design, targeting parents and students seeking quality international education. The technical infrastructure is based on WordPress CMS with WooCommerce and Divi theme, integrating multiple analytics and tracking tools such as Google Tag Manager, Facebook Pixel, TikTok Pixel, and LinkedIn Insight Tag. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but lacks important security headers and visible privacy or cookie policies. The absence of WHOIS data raises concerns about domain registration legitimacy, although the website content and structure suggest a legitimate business. Overall, the site is safe for general audiences and well-optimized for mobile and SEO, but improvements in privacy compliance and security hardening are recommended.

T

TTI Technische Textilien International GmbH

tti-intern.de

50

TTI Technische Textilien International GmbH is a German manufacturing company specializing in the development, production, and distribution of technical textiles, particularly for personal protective equipment, heavy heat protection, and insulation products. Established in 1996, the company has a strong market presence with over 25 years of experience, serving customers in more than 20 countries. Their business model focuses on both standard and customized textile solutions, emphasizing quality and safety backed by ISO certification. Technically, the website is built on the dynamic commerce platform, utilizing modern JavaScript libraries such as jQuery, Google Tag Manager, and Google reCAPTCHA for security and analytics. The site is mobile-optimized with good SEO practices and moderate performance. Hosting is managed via dc-cluster.de nameservers, indicating professional infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a public security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with accessible privacy and cookie policies aligned with GDPR requirements. Overall, the website and business demonstrate a high level of professionalism, trustworthiness, and compliance, with recommendations to enhance security headers and publish incident response information to further strengthen their security posture.

C

chemmedia AG

textil-trainer.de

45

The website textil-trainer.de is a professionally developed digital learning platform offering free textile industry foundational knowledge. It targets a broad audience including companies, educational institutions, employees, career changers, apprentices, and textile enthusiasts. The platform is supported by reputable partners such as TU Chemnitz and chemmedia AG, and funded by ESF and the Free State of Saxony. The site demonstrates a mature technical infrastructure based on WordPress with modern SEO and privacy compliance features. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, well-branded, and provides valuable educational content with good user experience.

G

Grupo Tuinbit SL

tuinbit.com

63

Grupo Tuinbit SL operates the website tuinbit.com, providing specialized no-code and low-code development services including mobile app creation, web and ecommerce development, marketing, and digital transformation solutions. The company targets businesses and organizations seeking to innovate with reduced coding effort, time, and cost. The website is professionally designed, primarily in Spanish, and demonstrates a clear market niche in technology services focused on no-code solutions. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Security posture is adequate with HTTPS and reCAPTCHA usage, though security headers and incident response policies are not evident. Privacy compliance is strong with comprehensive policies and a cookie consent mechanism. Overall, the site is trustworthy and well-positioned for its market segment.

P

Plinko

plinko.co.za

63

Plinko.co.za is an online gaming platform specializing in the Plinko casino game, targeting primarily the South African market. The website offers real money gameplay, bonuses, and downloadable apps, with a focus on engaging and strategic gambling experiences. The business is relatively new, founded in 2024, and operates with a professional and consistent brand presence. The technical infrastructure leverages Cloudflare for DNS and CDN services, uses modern JavaScript modules, and integrates Google reCAPTCHA for form security. The site is well optimized for mobile and desktop users, providing a fast and accessible user experience. Security posture is solid with HTTPS and anti-bot measures, though explicit security policies and incident response contacts are absent. WHOIS data indicates a recent domain registration with some geographic mismatch between registrant country (Ukraine) and target market (South Africa), which is common in online gaming but should be monitored. Overall, the platform is trustworthy, compliant with basic privacy and cookie regulations, and provides a safe environment for adult users interested in online gambling.

B

Buth Maschinen + Technik GmbH & Co. KG

buthgrav.com

61

Buth Maschinen + Technik GmbH & Co. KG is a medium-sized German company specializing in the sale and service of industrial machinery for advertising technology and manufacturing sectors. With over 32 years of market presence, the company offers a broad portfolio including laser cutting machines, laser marking and engraving devices, milling machines, and equipment for light advertising. The website reflects a professional B2B business model targeting industrial clients and advertising professionals. Technically, the site is built on the Webflow platform, leveraging modern web technologies and integrating tracking tools such as Facebook Pixel and Google reCAPTCHA for security and marketing purposes. The website is well-structured, mobile-optimized, and provides clear contact information and product details. However, the WHOIS data for the domain is missing or indicates the domain may not be currently registered, which raises concerns about domain legitimacy and consistency with the company's claimed history. Security posture is generally good with HTTPS and some security best practices, but lacks explicit security headers and a cookie consent mechanism. Privacy and terms are available, indicating GDPR awareness. Overall, the site is professional and trustworthy in content but requires verification of domain registration and enhancement of security and privacy compliance.

W

WongDoody

oddity.agency

72

WongDoody is a creative technology agency specializing in intelligent marketing and immersive experiences designed to unlock future opportunities for brands and people. The company operates globally and is backed by Infosys, a leading technology innovator, positioning WongDoody as a significant player in the creative technology sector. Their services include digital marketing, product experience, and immersive experiences, supported by a large team of designers and innovators. Technically, the website is built on modern platforms such as Webflow, integrates Google Analytics 4 with consent management, and uses Vimeo for video content, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses reCAPTCHA for form protection, and implements cookie consent mechanisms, although explicit security policies and incident response contacts are not published. The WHOIS data is missing, which raises some concerns about domain transparency, but the professional presentation and affiliation with Infosys mitigate this risk. Overall, WongDoody presents a strong, professional digital presence with good security and privacy practices, though improvements in domain transparency and published security policies are recommended.

Vogler technische Leistungen GmbH is a Berlin-based electrical engineering company founded in 2002, specializing in residential and commercial construction projects. Their clientele includes Berlin housing cooperatives, government bodies, and private clients. The company offers services such as new construction, renovations, building technology, data technology, and project planning. The website is built on TYPO3 CMS with a moderate technical infrastructure including jQuery and Google reCAPTCHA for security. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA, though lacking advanced security headers and explicit incident response policies. Overall, the website reflects a trustworthy small business with professional presentation and clear contact information.

C

CoreTrustSeal

coretrustseal.org

46

CoreTrustSeal is a specialized certification organization focused on accrediting trustworthy data repositories to promote sustainable data infrastructures. The website positions the organization as a recognized authority in the data repository certification domain, offering clear information on certification requirements, application processes, and certified repositories. The target audience includes data repository managers, research communities, and data infrastructure stakeholders. Technically, the website is built on WordPress with modern web technologies such as jQuery, Font Awesome, and Swiper.js. It employs HTTPS with a valid SSL certificate and integrates Google reCAPTCHA for form security. The site includes a GDPR-compliant cookie consent mechanism powered by Complianz, indicating a mature approach to privacy compliance. Performance and mobile optimization are good, with accessible navigation and professional design. From a security perspective, the site demonstrates good practices including HTTPS enforcement and spam protection via reCAPTCHA. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. The overall security posture is strong but could be improved with additional transparency on security policies. Overall, CoreTrustSeal's website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its niche market with clear content and functional design. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

I

IAG - International Association of Geodesy

ggos.org

52

The International Association of Geodesy (IAG) operates the Global Geodetic Observing System (GGOS) website, providing a comprehensive platform for geodetic infrastructure, data products, and scientific expertise to monitor Earth system processes. The organization is positioned as a leading global scientific entity in geodesy, targeting researchers, scientists, and governmental bodies. The website reflects a professional and consistent brand aligned with IAG's mission and is hosted on a WordPress platform with modern plugins and SEO tools. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with reCAPTCHA for security, though it lacks DNSSEC and some security headers. Privacy and cookie policies are not explicitly found, indicating room for compliance improvement. Overall, the site is trustworthy, secure, and serves its scientific community effectively.

O

oByvani.blog

obyvani.blog

53

oByvani.blog is a Slovak language inspirational blog focused on housing and real estate topics, providing readers with tips, trends, and advice related to living spaces and property. The site targets Slovak-speaking individuals interested in home decoration, real estate investment, and financial guidance related to housing. The business model centers on content publishing with monetization through advertising and partnerships. Technically, the website is built on WordPress using the Newspaper theme, enhanced with plugins for GDPR compliance, advertising management, and social media integration. The infrastructure includes modern technologies such as Google reCAPTCHA for form security and Cloudfront CDN for widget delivery. Security posture is solid with HTTPS enforced, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving a niche real estate audience in Slovakia.

music-job.com operates as a specialized online job marketplace focused on the music industry, particularly orchestra musicians. Established in 2000, it positions itself as the world's largest job market for orchestra musicians, offering job listings across orchestras, music schools, universities, and music management sectors. The website targets music professionals seeking employment and organizations looking to hire within the music domain. Technically, the site is built on WordPress with WooCommerce and WPBakery Page Builder, enhanced by multilingual support via WPML and accessibility features through the digiaccess plugin. Hosting is provided by IONOS SE, a reputable provider, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security measures include Google reCAPTCHA and accessibility compliance, but security headers are not detected, suggesting room for improvement. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and security hardening.

Z

Zweckverband Zulassungsstelle Coburg

zulassungsstelle-coburg.de

10

Zweckverband Zulassungsstelle Coburg operates as a joint vehicle registration and driver licensing authority serving the city and district of Coburg, Germany. The website provides essential public services including vehicle registration, driver licensing, online application portals, and appointment scheduling. It targets local residents and vehicle owners, positioning itself as a trusted local government entity with clear contact channels and official branding. Technically, the website is built on WordPress using the Enfold theme and Avia framework, incorporating modern web technologies such as jQuery and Google Maps integration. The site is mobile-optimized with good navigation and content quality, although accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks explicit HTTP security headers and does not provide visible incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business purpose, though registrant details are minimal. Overall, the website demonstrates a solid security posture and privacy compliance suitable for a government service portal. Recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility. The risk level is low, with no signs of malicious activity or content safety concerns.