Security Directory

B

Beisheim Holding

beisheim.com

61

Beisheim Holding operates as a holding and capital management company with a professional online presence focused on corporate stakeholders and investors. The website is structured using modern web technologies including Nuxt.js and integrates Cookiebot for comprehensive cookie consent management, reflecting a commitment to privacy compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional appearance and GDPR-compliant cookie practices. The site lacks explicit contact information, terms of service, and security policies, which limits transparency and user trust. Security posture is moderate with HTTPS enforced but missing key security headers and incident response information. Overall, the website is functional and compliant in privacy aspects but would benefit from enhanced transparency and security disclosures.

H

Hofheim

hofheim.de

54

Hofheim am Taunus operates an official municipal website providing comprehensive information and services to residents, visitors, and local stakeholders. The site covers a broad range of topics including culture, tourism, politics, administration, and community life, positioning itself as the primary digital interface for the city. The website is built on TYPO3 CMS, a robust open-source content management system, and demonstrates good technical maturity with responsive design and structured data for SEO and accessibility. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance documentation. Overall, the website reflects a trustworthy and professional government presence with clear contact information and consistent branding.

T

Techniker Krankenkasse

tk.de

66

Techniker Krankenkasse (TK) is a leading statutory health insurance provider in Germany, offering comprehensive health coverage, digital health services, and personalized member support. The website reflects a mature digital presence with a strong focus on user experience, accessibility, and privacy compliance. The technical infrastructure leverages modern web technologies and a custom design system, hosted on reliable infrastructure with Versatel. Security posture is solid with HTTPS, CSRF protection, and a consent manager, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-aligned with the business's market position.

H

Hochschulen Fresenius GmbH

hs-fresenius.de

71

Hochschulen Fresenius GmbH is a large, well-established private higher education institution in Germany, founded in 1848. It offers a broad range of Bachelor and Master degree programs across multiple disciplines including Chemistry, Biology, Business, Media, Health, Social Sciences, and Fashion & Design. The university serves over 17,000 students with flexible study options including full-time, part-time, on-campus, and online formats. The website reflects a professional and modern digital presence, leveraging WordPress CMS, SEO best practices, and cookie consent management via Usercentrics. Hosting is provided by Adacor, with consistent DNS and SSL configurations ensuring secure access. However, explicit privacy and security policies are not readily visible, and security headers are not detected, indicating room for improvement in security posture. Overall, the website is trustworthy, well-branded, and compliant with basic GDPR cookie consent requirements.

IKEA Deutschland GmbH & Co. KG operates a comprehensive retail website offering affordable furniture and home accessories tailored for the German market. The site provides extensive product categories, planning services, and customer support, positioning IKEA as a leading furniture retailer in Germany. The website is well-branded, professionally designed, and optimized for mobile and accessibility, reflecting a mature digital presence. Technically, the site employs modern web technologies including JavaScript frameworks, cookie consent management via OneTrust, and A/B testing with Optimizely, ensuring a robust user experience. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well addressed with clear cookie and privacy policies, including GDPR adherence and a consent mechanism. The absence of WHOIS data limits domain registration trust analysis, but the overall site quality and brand reputation strongly indicate legitimacy. No adult or questionable content is present, making the site safe for general audiences.

T

Taunus Sparkasse

taunussparkasse.de

66

Taunus Sparkasse is a regional German savings bank offering a comprehensive range of financial services including online banking, accounts, credit cards, loans, investments, insurance, and real estate services. The website targets both private and corporate customers with a strong focus on accessibility, user experience, and digital service delivery. The bank maintains a strong local market position with trusted brand recognition and multiple customer contact channels including phone, chat, and video consultations. Technically, the site is built on modern web technologies and a robust CMS platform (Adobe Experience Manager), optimized for mobile and accessibility compliance. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, though explicit security headers could be further confirmed. Privacy policies and cookie management are comprehensive and GDPR compliant. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.

H

HACON

hafas.de

65

HACON is a medium-sized company specializing in digital mobility solutions, offering platforms and systems for Mobility as a Service, ticketing, operator business products, and transport planning. As a part of Siemens Mobility since 2017, HACON holds a strong market position in the transportation technology sector. The website reflects a professional and consistent brand image, targeting mobility service providers and transport operators. Technically, the site is built on TYPO3 CMS, employs modern JavaScript, and integrates Cookiebot for GDPR-compliant cookie consent, alongside Matomo for privacy-friendly analytics. Security posture is solid with HTTPS and consent mechanisms, though security headers and explicit incident response policies are absent. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations, supporting HACON's business credibility and digital maturity.

Spitex Glattal is a Swiss non-profit association providing comprehensive home care and support services in the Glattal region, including nursing, psychiatric care, household assistance, and meal delivery. Established in 2013, it serves multiple municipalities with a team of approximately 100 employees, emphasizing empathy, professionalism, and multicultural diversity. The website reflects a well-structured and professional digital presence, leveraging modern web technologies such as Next.js and React, hosted with DigitalOcean Spaces for media assets. The site is mobile-optimized and offers clear navigation and relevant content for its target audience. From a security perspective, the website employs HTTPS with a strong SSL configuration and does not expose sensitive data or vulnerable libraries. However, it lacks some security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is generally good, with a comprehensive privacy policy available, but the absence of a cookie consent mechanism is a notable gap. Overall, the domain registration details align well with the business claims, supporting the legitimacy and trustworthiness of the entity. The risk assessment indicates a low risk profile with recommendations to enhance security headers, implement cookie consent, and publish incident response information to strengthen compliance and trust. The website's content is safe for general audiences, focusing solely on healthcare services without any adult or questionable content.

The website 'Bonn hilft Cherson' is a humanitarian aid initiative led by the city of Bonn in partnership with the NGO Help – Hilfe zur Selbsthilfe e.V. It focuses on raising donations to support medical aid and infrastructure rebuilding in the Ukrainian city of Cherson. The site is well-structured, professionally designed, and provides comprehensive information about the project, donation methods, and partner organizations. The target audience includes citizens of Bonn, local organizations, and donors interested in humanitarian support. Technically, the website is built on TYPO3 CMS and uses modern web technologies including Bootstrap for responsive design. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Hosting appears to be managed via German hosting providers, with no signs of blocking or WAF interference. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No incident response or vulnerability disclosure policies are published, which could be improved to enhance trust and security posture. Overall, the website scores well on content quality, business credibility, and technical implementation, with minor penalties for privacy and security policy gaps. It represents a trustworthy and professional platform for humanitarian fundraising and awareness.

N

Nordnorsk debatt

nordnorskdebatt.no

58

Nordnorsk debatt is a regional Norwegian online media platform focused on societal, political, and cultural debates in Northern Norway. It positions itself as the largest and best forum for northern Norwegian debate, targeting residents and stakeholders interested in regional issues. The platform offers opinion articles, debate forums, advertising opportunities, and subscription services, operating under the Amedia media group umbrella. Technically, the website employs modern JavaScript frameworks, service workers, and ad technologies such as Google Publisher Tags and Prebid.js, indicating a mature digital infrastructure with mobile app integration for iOS and Android. Security posture is strong with HTTPS enforcement and security headers, though explicit privacy and terms policies are lacking. The absence of WHOIS data limits domain legitimacy verification, but the website's professional branding and technology suggest a legitimate operation. Overall, the site is well-designed, content-rich, and trustworthy for its target audience.

N

Nord24

nord24.no

62

Nord24 is a Norwegian local news media outlet providing a wide range of content including local news, sports, culture, business news, and classifieds. It operates a subscription-based business model supplemented by advertising revenue. The website is professionally designed, mobile-optimized, and uses modern web technologies including service workers and JavaScript frameworks. The technical infrastructure supports a progressive web app experience and integrates multiple advertising networks and analytics services. Security posture is strong with HTTPS enforced and standard security headers present, though public security policies and incident response information are not found. The domain WHOIS data is unavailable, likely due to privacy protection, which is common for media companies. Overall, the site presents a trustworthy and professional presence in the Norwegian regional media market.

F

Fredriksstad Blad

f-b.no

66

Fredriksstad Blad is a regional Norwegian news media outlet providing local news, sports, culture, classifieds, and subscription-based premium content. The website targets local residents interested in community news and events. It operates under the parent company Amedia and offers digital and e-paper subscriptions alongside advertising revenue streams. The site demonstrates a mature digital infrastructure using modern JavaScript frameworks, service workers, and ad technologies. Security posture is strong with HTTPS, security headers, and privacy policies in place, though explicit security policy and incident response information are not publicly available. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, serving a general audience with safe content.

A

Avisa Valdres

avisa-valdres.no

66

Avisa Valdres is a regional Norwegian news media company providing local news, sports, culture, business, and community information primarily targeting residents of the Valdres region. The website supports subscription-based access to content including digital and e-paper editions. The company is part of the Amedia group, a major Norwegian media conglomerate. The site demonstrates a mature digital presence with modern web technologies, including progressive web app features and integration with advertising networks. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is evident with clear privacy and cookie policies and GDPR adherence. Overall, the site is professional, trustworthy, and well-maintained.

O

Oppland Arbeiderblad

oa.no

64

Oppland Arbeiderblad is a regional Norwegian newspaper providing local news, sports, culture, business, and community information primarily targeting the Oppland region. The website supports subscription services, advertising, and digital content delivery including e-paper and podcasts. The site is well-branded and consistent with a professional media outlet. Technically, the site uses modern JavaScript frameworks, service workers, and ad technologies to deliver a performant and mobile-optimized experience. Security posture is strong with HTTPS enforcement and standard security headers, though explicit incident response and vulnerability disclosure information is absent. Privacy and cookie policies are present and GDPR compliant. Overall, the site represents a legitimate, medium-sized media business with a solid digital presence.

G

Glåmdalen

glomdalen.no

64

Glåmdalen is a Norwegian regional news media website providing local news, sports, culture, business, and community information primarily targeting the Norwegian local audience. The site operates on a subscription-based model with premium content gated for subscribers and supported by advertising revenue. It is part of the Amedia group, a major Norwegian media company, which lends credibility and stability to its operations. The website demonstrates a mature digital infrastructure with modern web technologies including service workers and ad management frameworks. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned in its market segment.

N

Nordlys

nordlys.no

10

Nordlys is a well-established Norwegian regional media company focused on delivering local news, sports, culture, and business content primarily for Northern Norway. The website supports a subscription-based business model complemented by advertising revenue. It is part of the Amedia group, a significant media conglomerate in Norway. The site demonstrates a professional digital presence with modern web technologies, including progressive web app features and advanced ad serving frameworks. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policy and incident response information are not publicly available. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the site is trustworthy and professionally maintained, serving a general audience with safe content.

R

Romerikes Blad

rb.no

10

Romerikes Blad is a regional Norwegian news media company providing local news, sports, culture, and community information primarily targeting residents of the Romerike region. The website supports subscription and advertising revenue models, offering digital and print news access. It is part of the Amedia group, with several local subsidiary sites. The site is professionally designed with consistent branding and good content quality in Norwegian language. Technically, the site uses modern JavaScript frameworks, service workers, and ad technologies, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, serving a medium-sized regional media business.

S

Sandefjords Blad

sb.no

66

Sandefjords Blad is a regional Norwegian newspaper providing local news, sports, culture, and business information primarily targeting readers in Sandefjord and surrounding areas. It operates under the Amedia group, leveraging a subscription and advertising-based business model. The website demonstrates a professional digital presence with a focus on user engagement through subscription services and local classifieds. Technically, the site uses modern web technologies including service workers, header bidding for ads, and a proprietary CMS framework (Rodimus). The security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. The lack of WHOIS data is consistent with Norid's privacy policies for .no domains and does not detract from the site's legitimacy. Overall, the site is trustworthy, well-maintained, and serves its local audience effectively.

G

Gudbrandsdølen Dagningen

gd.no

10

Gudbrandsdølen Dagningen is a regional Norwegian news media company providing local news, sports, culture, and business content primarily targeting the Norwegian local population. The website supports subscription services and advertising revenue models, positioning itself as a trusted regional news source under the parent company Amedia. The digital infrastructure is built on a custom CMS and modern web technologies including service workers and advanced ad management frameworks. The site is mobile responsive and optimized for user experience with clear navigation and content relevance. Security posture is strong with HTTPS enforcement and security headers, though explicit vulnerability disclosure and incident response information are absent. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a mature digital presence with good business credibility and technical implementation.

B

Bundesstadt Bonn

bonn.de

58

The website www.bonn.de serves as the official digital portal for the Bundesstadt Bonn, providing extensive information and services related to the city administration. It targets residents, visitors, and businesses, offering multilingual content and access to municipal services such as event calendars, service portals, and contact forms. The site is well-branded with consistent city imagery and logos, reflecting its authoritative position as a government entity. Technically, the site employs a modern CMS platform (Information Enterprise Server by Sitepark GmbH) and uses standard web technologies including JavaScript, CSS, and SVG icons. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security best practices are observed with HTTPS enforcement, security headers, and cookie consent mechanisms. From a security perspective, the site demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not published, which could be improved to enhance transparency and trust. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent aligned with GDPR requirements. Overall, www.bonn.de is a professional, trustworthy, and well-maintained government website. It effectively balances user experience, privacy, and security, serving as a reliable resource for its audience. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure information, and providing data protection officer contact details to further strengthen compliance and user trust.

maxcluster GmbH is a German-based managed hosting provider specializing in scalable, high-performance cluster hosting solutions tailored for e-commerce platforms such as Shopware, Magento, WordPress, and others. Established in 2011, the company positions itself as Germany's leading e-commerce host, offering a comprehensive suite of hosting and managed services with a strong emphasis on security, performance, and customer support. Their target audience includes online shops, agencies, and e-commerce businesses seeking reliable and scalable hosting infrastructure. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to their market segment. Technically, the website is built on TYPO3 CMS and leverages modern web technologies including JavaScript frameworks, HubSpot forms for lead generation, and Iubenda for cookie compliance. The hosting infrastructure is TÜV-certified, with proprietary data centers and advanced security measures such as DDoS protection, malware scanning, and 24/7 monitoring. The site is mobile-optimized, SEO-friendly, and integrates marketing and analytics tools responsibly. From a security perspective, maxcluster demonstrates a strong posture with HTTPS enforcement, security headers, and proactive incident response capabilities. However, there is room for improvement in publishing a formal vulnerability disclosure policy and providing explicit data protection officer contact details. Overall, the domain registration data aligns well with the website content, reinforcing the legitimacy and trustworthiness of the business. The overall risk assessment is low, with no critical vulnerabilities or suspicious content detected. Strategic recommendations include enhancing transparency around vulnerability disclosures and incident response, which would further strengthen trust and compliance. The website scores highly across content quality, technical implementation, security, privacy compliance, and business credibility, making it a robust and professional digital asset for maxcluster GmbH.

D

Deutscher Schwimm-Verband e. V.

dsv.de

59

The Deutscher Schwimm-Verband e. V. (DSV) is a well-established non-profit sports federation founded in 1886, representing swimming sports across Germany. It unites regional swimming associations and supports approximately 600,000 members in around 2,500 clubs. The organization focuses on promoting swimming disciplines, organizing competitions, and enforcing anti-doping policies in cooperation with national agencies. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with its institutional stature. Technically, the website employs a modern CMS (AmphiCMS), uses JavaScript libraries such as jQuery and Owl Carousel, and implements lazy loading for performance optimization. Hosting is managed via DomainControl.com, and the site is secured with HTTPS and cookie consent mechanisms, indicating good digital maturity. Accessibility and SEO practices are well addressed, supporting a broad user base including mobile users. From a security perspective, the site enforces HTTPS and uses cookie consent management, but lacks explicit security headers like Content-Security-Policy and does not publish vulnerability disclosure or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence. Overall, the DSV website presents a low-risk profile with high trustworthiness and professionalism. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and maintaining regular security audits to sustain compliance and trust.

D

Deutscher Tischtennis-Bund e.V.

tischtennis.de

34

The Deutscher Tischtennis-Bund e.V. (German Table Tennis Association) operates the website tischtennis.de as the official platform for table tennis in Germany. The site serves as a comprehensive resource for players, clubs, fans, and stakeholders, offering news, event information, training resources, and organizational details. It holds a strong market position as the national governing body for the sport in Germany, supported by subsidiaries such as Tischtennis Marketing GmbH and TTBL Sport GmbH. The business model is non-profit and community-focused, targeting the German table tennis ecosystem.

D

Deutscher Ruderverband e.V.

rudern.de

55

The website www.rudern.de is the official digital presence of the Deutscher Ruderverband e.V., the German Rowing Federation. It serves as a comprehensive resource for rowing athletes, clubs, and enthusiasts in Germany, offering detailed information on national teams, competitions, youth programs, and organizational governance. The site demonstrates a high level of professionalism with excellent content quality, clear navigation, and consistent branding. Technically, it is built on Drupal 10, employs modern web standards, and is optimized for mobile devices. Security practices include HTTPS enforcement and a GDPR-compliant cookie consent mechanism, though some security headers and explicit incident response policies are absent. Overall, the domain and website content align well, indicating legitimacy and trustworthiness.

D

Deutscher Leichtathletik Verband

leichtathletik.de

48

leichtathletik.de is the official athletics portal for the Deutscher Leichtathletik Verband (DLV), serving as the leading source of news, event information, athlete profiles, and anti-doping resources for the German-speaking athletics community. The website is well-structured, content-rich, and targets athletics enthusiasts, athletes, and stakeholders in Germany. Technically, the site is built on the TYPO3 CMS platform, employs modern JavaScript libraries such as Splide.js for carousels, and integrates consent management and analytics tools like Consentmanager.net and eTracker. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers are not detected. Privacy compliance is moderate, with cookie consent implemented but no visible privacy policy or terms of service links in the provided content. Overall, the domain and website appear legitimate and consistent with an official sports federation, with no signs of suspicious activity or adult content.

O

Olympiabewerbung München

olympiabewerbung-muenchen.com

55

The website www.olympiabewerbung-muenchen.com is a professionally designed government-related campaign site promoting Munich's bid for the Olympic and Paralympic Summer Games starting from 2036. It targets citizens and stakeholders in Munich and Bavaria, aiming to inform and engage the public about the bid's vision, concept, and benefits. The site uses WordPress CMS with modern front-end technologies including JavaScript libraries like Plyr and Swiper, and employs Matomo for analytics. The content is rich, well-structured, and visually appealing, supporting a positive user experience and clear navigation. However, the site lacks explicit privacy and cookie policies, security headers, and incident response contact information, which are important for compliance and security posture. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy, though the official nature of the content suggests a legitimate campaign. Overall, the site scores well on content quality and business credibility but needs improvements in privacy compliance and security best practices.

The website fuer-ihr-gutes-recht.de serves as an informational platform for legal advisory services primarily in labor, traffic, tenancy, medical, and family law. It is affiliated with the Sozialverband Deutschland (SoVD) in Niedersachsen, a significant social welfare association in Germany. The platform connects users with qualified lawyers across multiple regional locations, emphasizing social welfare legal support. The business model focuses on providing accessible legal representation and advice through a network of individual lawyers tied to a reputable non-profit organization. Technically, the website is built on TYPO3 CMS version 6.1, an outdated content management system, which may pose security and maintenance challenges. The site uses standard web technologies such as CSS and JavaScript but lacks modern performance and security enhancements. The hosting appears to be managed via your-server.de based on the nameservers. The site shows basic mobile optimization and accessibility features but could benefit from modernization and improved SEO practices. From a security perspective, no HTTPS or SSL configuration details were confirmed, and no advanced security headers or policies are evident. The absence of cookie consent mechanisms and privacy policy details indicates limited GDPR compliance. No incident response or security contact information is provided. The site does not employ analytics or tracking technologies, which reduces privacy concerns but also limits business intelligence capabilities. Overall, the website is functional and provides relevant content for its target audience but requires significant improvements in security posture, privacy compliance, and technical modernization to enhance trustworthiness and resilience against emerging threats.

S

Sport- und Erlebnisdorf Hinsbeck des Landessportbundes Nordrhein-Westfalen e.V.

hinsbeck.nrw

60

Sport- und Erlebnisdorf Hinsbeck, operated by the Landessportbund Nordrhein-Westfalen e.V., provides sports, leisure, and accommodation services primarily targeting clubs, school classes, and families in the NRW region of Germany. The website is professionally designed with a strong emphasis on accessibility, user experience, and comprehensive content about their offerings including accommodations, sports activities, and event hosting. Technically, the site uses modern JavaScript libraries, a consent management platform, and multimedia content to engage users effectively. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site demonstrates strong compliance with GDPR and privacy regulations, providing clear contact and legal information. The domain registration details align well with the business entity, supporting high legitimacy and trustworthiness.

The Nationale Plattform zur Bekämpfung der Manipulation von Sportwettbewerben is an official German government initiative under the Bundesministerium des Innern und für Heimat, dedicated to combating manipulation in sports competitions. The platform provides comprehensive information, monitoring, prevention strategies, and a reporting mechanism to stakeholders including public authorities, sports organizations, and the general public. It holds a strong market position as a trusted governmental resource in Germany for sports integrity. Technically, the website is built on the Government Site Builder CMS, employing modern web technologies such as HTML5, CSS3, JavaScript, and accessibility tools like ReadSpeaker. The site is mobile-optimized, accessible, and includes SEO best practices. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism with options for anonymous statistical tracking. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were found in the content. The WHOIS data is consistent and transparent, reinforcing the site's legitimacy. Overall, the platform demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable source for its intended audience. Strategic improvements in security policy transparency and header implementation could further enhance its security posture.

K

KERN CHERKEH Rechtsanwälte Partnerschaft mbB

sportrechtskanzlei.de

58

KERN CHERKEH Rechtsanwälte Partnerschaft mbB is a specialized German law firm focusing on sports law and related legal services. The firm serves a broad clientele including sports federations, professional clubs, athletes, sponsors, and agencies, positioning itself as a leading expert in the sports legal domain in Germany. Their website reflects a professional and consistent brand image with comprehensive service offerings in sports sponsorship, contracts, labor law, doping, compliance, and more. Technically, the website uses modern web technologies such as HTML5, CSS3, and JavaScript with Swiper.js for UI elements, delivering a good user experience with mobile optimization and clear navigation. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks advanced security headers and formal security policies. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. Overall, the site is trustworthy and professional, with room for improvement in security and privacy transparency.

Hotel Des Alpes is a well-established family-run hospitality business located in the picturesque Saanenmöser-Gstaad region of Switzerland, with a history dating back to 1904. The website reflects a professional and consistent brand image, offering hotel accommodation, gastronomy, and event services. The target audience includes tourists and travelers seeking premium mountain hospitality experiences. The business maintains a strong market position through its tradition and partnership with Hotel Kernen. Technically, the website employs modern web technologies including Google Tag Manager and Cookiebot for analytics and cookie consent management, ensuring GDPR compliance and user privacy. The site is mobile-optimized with good SEO and accessibility basics. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, explicit security policies and incident response information are absent, representing an area for improvement. Overall, the website is trustworthy, secure, and compliant, supporting the business's credibility and customer engagement.

D

domainwebhosting.de

domainwebhosting.de

48

The website domainwebhosting.de is currently a parked domain primarily monetized through Bodis advertising services. It lacks active business content, contact information, or any clear company identity. The site serves ads and related search results but does not provide any direct services or products. Technically, the site uses basic HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. The hosting is via Bodis name servers, indicating domain parking rather than active hosting. Security posture is weak with no visible HTTPS enforcement or security headers, and privacy compliance is minimal with only a basic privacy policy page and no cookie consent mechanism. Overall, the site presents a low trust profile and limited business credibility.

N

Nkom

nkom.no

74

Nkom is the Norwegian Communications Authority responsible for ensuring robust, equitable, and future-oriented postal and electronic communication services across Norway. As a government regulatory body, it oversees frequency management, market regulation, security, and emergency preparedness in the telecommunications sector. The website reflects its authoritative role with comprehensive information, regulatory documents, and public resources targeted at Norwegian citizens, businesses, and communication providers. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and SVG graphics, with Adobe Fonts integration and Fathom Analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and well-structured, providing a professional user experience. Security best practices such as HTTPS and cookie consent mechanisms are implemented, though some security headers could be enhanced. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of a published vulnerability disclosure policy and incident response contact details suggests room for improvement in transparency and readiness. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements. Overall, Nkom's website is a trustworthy, professional government portal with high content quality and technical maturity. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen trust and security posture.

A

Amedia

plussalt.no

59

The website www.plussalt.no is a Norwegian media subscription platform branded as +Alt, operated by Amedia. It offers users access to over 100 local newspapers, exclusive podcasts via the Untold app, and live sports streaming through Direktesport. The platform targets Norwegian consumers interested in comprehensive news and sports content in a single subscription. The site is professionally designed with good content quality and consistent branding, reflecting a mature digital media business. Technically, the site uses modern JavaScript libraries and ad platforms, including Google Tag Manager, Prebid.js, and DoubleClick, indicating a sophisticated advertising and analytics infrastructure. Security posture is moderate with HTTPS implied but lacks explicit security headers and incident response information. Privacy compliance is supported by a comprehensive privacy policy, though no cookie consent mechanism was detected. WHOIS data is not publicly available, likely due to privacy protection, which is common and justified for this business type. Overall, the site is legitimate and well-positioned in the Norwegian media market, but could improve security and privacy transparency.

F

Filemail Inc.

filemail.com

61

Filemail Inc. operates a mature and professional cloud-based file transfer service specializing in sending and sharing large files securely. The company targets a broad audience including individuals, teams, businesses, and enterprises, offering a free tier and multiple paid subscription plans with advanced features such as managed file transfer, compliance certifications, and custom branding. The website demonstrates a strong market position with over 50 million users and global data centers, emphasizing security and ease of use. Technically, the website is built on modern frameworks like Next.js and React, with native applications available across major platforms including desktop, mobile, and Outlook. The site is well-optimized for performance, mobile responsiveness, accessibility, and SEO. Security is robust with HTTPS, multiple security headers, end-to-end encryption, 2FA, virus scanning, and regular penetration testing. The security posture is strong, with compliance to standards such as ISO 27001, HIPAA, GDPR, and Cyber Essentials UK. However, explicit incident response and vulnerability disclosure policies are not publicly found, representing an area for improvement. The absence of WHOIS data limits domain registration trust analysis, but the overall business credibility and website professionalism mitigate concerns. Overall, Filemail presents a low-risk profile with a secure, compliant, and user-friendly service offering. Strategic recommendations include publishing incident response and vulnerability disclosure policies, adding a security.txt file, and providing Data Protection Officer contact details to enhance transparency and trust.

The analyzed content corresponds to an internal Chrome browser error page (chrome-error://chromewebdata/) that includes the embedded offline dinosaur game. There is no commercial or business-related content, no privacy or cookie policies, and no contact or security information. The page is designed to provide a user-friendly offline experience within the browser rather than serve as a public website. The technical infrastructure is focused on JavaScript and HTML5 Canvas for game rendering, with no external dependencies or analytics. Security posture is minimal due to the nature of the page, and no vulnerabilities or sensitive data exposure are detected. Overall, this is a safe, internal browser page with limited scope for business or security analysis.

R

RE|STRUCTURED NEWS | Real Estate Market Inside News

restructurednews.com

59

The website 'Restructured News' appears to be a small-scale news or informational site hosted on the Wix platform. The site uses standard Wix technologies and includes Google Analytics and Google Tag Manager for tracking, along with an ad network script from PageBooster. However, the site lacks substantive business information, contact details, and compliance policies such as privacy or cookie policies. The absence of WHOIS registration data is a significant concern, as it suggests the domain may not be properly registered or the data is not publicly available, which undermines trust and legitimacy. Technically, the site is moderately optimized for mobile and performance but lacks advanced security headers and visible security best practices. Overall, the security posture is basic, and privacy compliance is poor, indicating room for improvement in governance and transparency.

Wienerberger is an international manufacturer and supplier of building and infrastructure solutions, specializing in energy-efficient and sustainable construction materials such as bricks, roof tiles, pipelines, and solar panels. The website serves primarily as a recruitment platform targeting job seekers interested in joining the company’s diverse workforce across multiple locations in Belgium. The company positions itself as a large, established player with a family-oriented culture and a strong focus on innovation and sustainability. Technically, the website uses modern web technologies including JavaScript, CSS, Google Tag Manager, and Cookiebot for consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site employs HTTPS and cookie consent mechanisms but lacks visible security headers and explicit security policies. WHOIS data is inconsistent, showing a future domain creation date and a registrar that does not match the company, which raises some trust concerns. Overall, the website is professional and functional but could improve in privacy transparency and security posture.

Q

Quality2Build

quality2build.be

57

The website 'Quality2Build' presents minimal accessible content, primarily a JavaScript-driven single page with no visible business descriptions, contact information, or policies. The domain WHOIS data is restricted with a 'NOT ALLOWED' status, preventing extraction of registrar or registration dates, which limits trust and legitimacy assessment. Technically, the site uses JavaScript and Google Tag Manager for analytics but lacks security headers and privacy compliance indicators. The security posture is basic with no visible vulnerabilities but also no advanced protections. Overall, the site appears to be in an early or placeholder state, lacking critical business and security information, which poses risks for trust and compliance.

G

GVB Privatversicherungen AG

gvb-privatversicherungen.ch

69

GVB Privatversicherungen AG is a Swiss insurance company specializing in supplementary building insurance products that complement the obligatory building insurance in Switzerland. The company targets property owners across Switzerland, offering tailored insurance solutions and online contract services. The website reflects a professional and consistent brand image with clear business focus and relevant content for its audience. Technically, the site employs modern technologies including Adobe's tag management and analytics platforms, Cookiebot for cookie consent, and CDN services for hosting and media delivery. Security posture is strong with HTTPS enforcement and security headers, although explicit privacy and terms of service documents are missing. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

W

wetteralarm.ch

wetteralarm.ch

74

Wetteralarm.ch is a Swiss-focused weather application providing free weather forecasts, precipitation radar, severe weather warnings, and access to over 500 live webcams. The service targets the general public in Switzerland, offering multilingual support and mobile app availability for iOS and Android. The website demonstrates a professional digital presence with consistent branding and good content quality. Technically, it employs modern JavaScript libraries, Adobe analytics, and Cookiebot for consent management, hosted likely on a CDN for performance. Security posture is solid with HTTPS and security headers, though explicit privacy and security policies are missing. Overall, the site is trustworthy and well-positioned in its niche.

Hausinfo.ch is a Swiss-based advisory website operated by GVB Services AG, providing neutral guidance around house and garden topics, primarily targeting homeowners and property owners in Switzerland. The site is positioned as a service linked to the Swiss Homeowners Association, offering insurance-related advice and consultation services. The business model focuses on providing informational content and facilitating insurance and property management services through digital forms and advisory tools. The website demonstrates a consistent brand presence and targets a niche market segment effectively. Technically, the website employs modern web technologies including JavaScript, Adobe Experience Platform Launch for tag management, and Cookiebot for cookie consent management. The hosting appears to be managed or supported by GVB's CDN infrastructure. The site is moderately performant, mobile-optimized, and includes basic accessibility features. SEO practices are well implemented with proper meta tags and structured data. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes standard security headers such as Content-Security-Policy and Strict-Transport-Security. Cookie consent mechanisms are in place, supporting GDPR compliance. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not published, representing areas for improvement. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, hausinfo.ch presents a trustworthy and professional online presence with good privacy compliance and security posture. Strategic recommendations include publishing detailed security and incident response policies, adding a terms of service page, enhancing accessibility, and maintaining vigilance on third-party scripts. These steps will further strengthen the site's security and compliance maturity.

D

Dinas Lingkungan Hidup Kota Jakarta

dlhdkijakarta.org

54

Dinas Lingkungan Hidup Kota Jakarta operates as the official government environmental agency for Jakarta city, focusing on environmental preservation, waste management, public complaint handling, and community education. The website serves as an authoritative portal for residents and stakeholders to access environmental information and services. Technically, the site uses modern web technologies including Laravel Livewire, Swiper.js, and Cloudflare DNS, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS enforced but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in security and compliance aspects.

I

I am Sanderson

iamsanderson.com

42

I am Sanderson is a professional design portfolio website showcasing the work of Sander Vermeulen, a designer specializing in branding, typeface design, graphic design, and visual identity for cultural institutions, art galleries, and brands. The website presents a rich collection of projects with high-quality images and videos, demonstrating a strong creative portfolio. The technical infrastructure includes modern web technologies such as JavaScript, CSS, and lazy loading of images, with media assets hosted on Amazon S3. The site is responsive and optimized for mobile devices, though SEO and accessibility features are basic. Security posture is limited, with no detected security headers or privacy policies, and no WHOIS data available for the domain, which reduces trustworthiness from a domain registration perspective. Overall, the website is professional and content-rich but lacks formal privacy and security compliance documentation.

W

Wienerberger

wienerberger.be

71

Wienerberger is a well-established manufacturer and distributor of ceramic building materials including bricks, roof tiles, and clay pavers, serving primarily the Belgian market. The company emphasizes quality, sustainability, and offers a range of tools and training for construction professionals. The website is professionally designed using Adobe Experience Manager and integrates modern marketing and analytics tools such as Google Tag Manager and Adobe DTM. Cookie consent is managed via Cookiebot, indicating compliance efforts with GDPR. However, explicit privacy and terms of service pages were not detected in the provided content. The WHOIS data for the domain is restricted, which is common for corporate domains to protect registrant privacy. Overall, the website presents a credible and professional business presence with good content quality and user experience.

R

Reynaers Aluminium

reynaers.be

64

Reynaers Aluminium is a leading manufacturer and marketer of innovative and sustainable aluminium solutions for windows, doors, facades, verandas, and related building products. The company operates globally with multiple country-specific domains and offers a comprehensive product portfolio targeting both professionals and consumers in the construction and manufacturing sectors. The website is built on Drupal 11 and employs modern web technologies, including cookie consent management and analytics tools. Security posture is generally good with HTTPS and consent mechanisms, though explicit security headers and published security policies are absent. WHOIS data is restricted due to registry policies, but the website's professional presentation and consistent branding indicate legitimacy. Privacy compliance is partial, with cookie consent but no visible privacy policy on the main page. Overall, the site is well-designed, user-friendly, and trustworthy for its business domain.

The website a-plus.be currently serves a security CAPTCHA challenge page designed to verify visitor legitimacy before granting access to the actual content. This indicates the presence of a Web Application Firewall (WAF) or anti-bot mechanism, which blocks direct content access. The domain is registered since 2002 with ClearMedia NV, a Belgian registrar, suggesting an established presence. However, no business or contact information, privacy policies, or terms of service are exposed on this page, limiting the ability to assess the company's operations or compliance posture. The technical implementation uses advanced JavaScript with Web Workers to perform a proof-of-work CAPTCHA, reflecting a modern approach to bot mitigation. Despite this, the lack of visible security headers and privacy compliance documentation is a concern. Overall, the site is inaccessible for full analysis due to the security challenge, resulting in a low AI score and limited insights.

H

Healthline Media LLC

healthline.com

56

Healthline Media LLC operates www.healthline.com, a leading health and wellness information website providing expert medical guidance, wellness advice, and product reviews. The company holds a strong market position as a trusted source for health content, supported by a large content library, sponsored programs, and community engagement platforms. The website targets a broad audience seeking reliable health information and wellness resources. Technically, the site is built on modern web technologies including Next.js and React, with integrations for analytics, advertising, and consent management, delivering a fast and mobile-optimized user experience. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant consent mechanisms, though explicit security policies and incident response details are not publicly disclosed. WHOIS data is privacy-protected, which is common for media companies, slightly impacting transparency but justified by the business type. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

B

BD4Jobs

bd4jobs.com

10

BD4Jobs is a UK-based specialized job board focusing on architecture and related professions. The platform offers job search, job alerts, CV uploads, and recruiter services, positioning itself as a niche player in the real estate recruitment market. The website is built on the Madgex Job Board Platform and integrates multiple Google services for analytics and advertising. The technical infrastructure is modern and supports good mobile optimization and accessibility. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and published policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The absence of WHOIS data for the domain raises concerns about domain legitimacy, though the website content and branding appear professional and trustworthy. Strategic improvements in security transparency and privacy compliance are recommended to enhance trust and compliance.

S

Social Intents, LLC

socialintents.com

10

Social Intents, LLC operates a professional SaaS platform specializing in live chat and AI chatbot solutions integrated with popular collaboration tools such as Microsoft Teams, Slack, Google Chat, Zoom, and Webex. Their platform enables businesses to engage customers across multiple channels including websites, WhatsApp, Messenger, and SMS, leveraging AI to automate routine inquiries and improve customer support efficiency. The company targets small businesses, entrepreneurs, and marketing teams seeking to enhance customer engagement and sales through streamlined communication tools. Their market position is strong within the niche of AI-powered chat solutions integrated with collaboration platforms, supported by clear pricing tiers and agency reseller options. Technically, the website employs a modern technology stack including JavaScript frameworks like Alpine.js and jQuery, along with integrations for analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Bing Ads, and Weglot for multilingual support. The site is well-optimized for mobile and accessibility, with good SEO practices and fast loading performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be more visible. No critical vulnerabilities or exposed sensitive data were detected. The security posture is mature with good privacy compliance evidenced by comprehensive privacy and cookie policies and GDPR adherence. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and ownership transparency. No direct contact emails or phone numbers were found, and no public security or incident response contacts are provided, which could impact trustworthiness from a security perspective. Overall, the website presents a professional, trustworthy, and technically sound platform for AI-driven live chat services. Strategic recommendations include verifying domain registration details, enhancing visible security headers, publishing incident response contacts, and providing clearer direct contact information to improve business credibility and security transparency.