Security Directory

E

Europäisches Verbraucherzentrum Deutschland

evz.de

47

The Europäisches Verbraucherzentrum Deutschland (European Consumer Centre Germany) is a government-affiliated non-profit organization providing free consumer protection and advisory services for cross-border issues within the EU. The website serves as a comprehensive resource offering legal advice, consumer rights information, sample letters, newsletters, and podcasts targeted at German consumers facing problems with companies in other EU countries. The organization holds a strong market position as an established EU consumer protection center with over 15 years of experience. Technically, the website is built on TYPO3 CMS with Bootstrap framework, integrating Matomo analytics and Google Tag Manager for tracking. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. The performance is moderate, and the site uses HTTPS with good SSL configuration, though it lacks some advanced security headers. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and disabling cookies in Matomo tracking. However, it lacks explicit security headers, a published security policy, and a vulnerability disclosure mechanism. Privacy compliance is mostly good with a comprehensive privacy policy, but no cookie consent banner was detected, which is a minor compliance gap. Overall, the website is professional, trustworthy, and well-maintained, with a high level of content quality and business credibility. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing incident response information, and establishing a vulnerability disclosure policy to further enhance security and compliance.

B

Bundesinstitut für Berufsbildung

anerkennung-in-deutschland.de

51

The website 'Anerkennung in Deutschland' is an official information portal operated by the Bundesinstitut für Berufsbildung, providing comprehensive guidance on the recognition of foreign professional qualifications in Germany. It serves multiple target audiences including skilled workers, advisors, and employers, offering multilingual content and tools such as the Anerkennungs-Finder and a chatbot named Aidy. The portal is well-positioned as a trusted government resource with clear branding and authoritative content. Technically, the site employs modern web standards, uses Matomo for analytics with privacy considerations, and hosts its chatbot on Microsoft Azure within the EU, ensuring compliance with data protection regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site demonstrates high professionalism, accessibility, and trustworthiness, making it a reliable resource for its users.

L

Leitverband des Ostbelgischen Sports VoG

los-ostbelgien.be

65

Leitverband des Ostbelgischen Sports VoG operates as the main sports umbrella organization in East Belgium, representing approximately 250 sports clubs. The organization focuses on sports promotion, trainer education, talent development, elite sports coordination, and event organization. The website is multilingual and professionally designed, targeting sports clubs, trainers, athletes, and sports enthusiasts in the region. Technically, the site is built on WordPress with modern JavaScript libraries and uses Matomo for privacy-conscious analytics. Security posture is adequate with HTTPS enabled and cookie tracking disabled for analytics, but lacks some security headers and cookie consent mechanisms. WHOIS data is restricted, limiting domain trust verification, but the website content and contact information appear legitimate and consistent with a regional non-profit sports association.

F

Federal Office for Migration and Refugees

germany4ukraine.de

67

The Germany4Ukraine website is an official federal government portal managed by the Federal Office for Migration and Refugees. It provides comprehensive, multilingual information and services to support refugees from Ukraine, covering topics such as entry, residence, accommodation, healthcare, labor, integration, mobility, education, family support, and networking. The site is well-positioned as a trusted government resource with EU funding and partner institution endorsements. Technically, the site uses the Government Site Builder CMS and integrates Matomo analytics with privacy-conscious configurations. The website demonstrates good performance, accessibility, and SEO practices, with a clear and professional design optimized for mobile devices. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious elements were detected. Overall, the site is highly trustworthy and serves its target audience effectively.

NRW.Global Business is a government-affiliated trading agency focused on promoting North Rhine-Westphalia as Germany's premier investment location. The website targets foreign companies seeking to establish or expand their presence in the region, offering consulting and market entry support services. The site is built on TYPO3 CMS and integrates advanced analytics and marketing tools such as Matomo, Google Analytics, Facebook Pixel, and Cookiebot for consent management. Accessibility features are also implemented via the eyeAble tool. Security posture is strong with HTTPS enforcement and appropriate security headers, though the absence of a security.txt and incident response information is noted. The lack of WHOIS data raises some concerns about domain registration transparency, but the overall digital presence and content quality suggest a legitimate and professional operation. Strategic recommendations include publishing explicit security and incident response policies and verifying domain registration details.

S

Seehotel Grossherzog v. Mecklenburg

seehotel-boltenhagen.de

59

Seehotel Grossherzog v. Mecklenburg is a well-established first-class hotel located in Ostseebad Boltenhagen, Germany, offering a comprehensive range of hospitality services including accommodation, wellness, gastronomy, and conference facilities. The hotel emphasizes sustainability and regional sourcing, positioning itself as a responsible and modern hospitality provider. The website reflects this positioning with clear branding, good content quality, and relevant business information. Technically, the site uses a modern tech stack including Bootstrap, Matomo Analytics for privacy-conscious tracking, and a CMS platform (Busy Rooms). The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS enforced and email obfuscation, but lacks explicit security headers and incident response information. Privacy compliance is basic but present with privacy and cookie policies. Overall, the website is professional, trustworthy, and aligned with the business's market position.

S

Schau in MV

schau-in-mv.de

55

Schau in MV is a small, community-driven tourism platform dedicated to showcasing the beauty and attractions of Mecklenburg-Vorpommern, Germany. The website offers 360° panorama virtual tours and augmented reality marketing solutions tailored for tourism businesses and locations within the region. The platform positions itself as a regional promoter rather than a traditional agency, emphasizing collaboration and love for the region. Technically, the website is built on WordPress 6.8.1, utilizing modern web technologies including jQuery and Matomo analytics, with embedded Google Maps and 3D viewer plugins enhancing user experience. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks advanced security headers and explicit incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and well-suited for its target audience, though improvements in security and privacy compliance are recommended.

1

13°

13-grad.com

50

13° is a German branding and communication agency specializing in transforming companies into brands, providing products with distinct identities, and crafting compelling stories. The agency serves a diverse clientele including large, medium, and small enterprises as well as public sector clients such as ministries, universities, cities, and foundations, primarily based in Mecklenburg-Vorpommern but operating nationwide. Their website reflects a professional and modern digital presence with multimedia content, client showcases, and testimonials. Technically, the site is built on WordPress with SEO and cookie consent plugins, and uses Matomo for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and incident response information could enhance their security maturity. Overall, the website is trustworthy, well-branded, and compliant with GDPR, supporting the agency's credibility and market positioning.

AGIT Aachener Gesellschaft für Innovation und Technologietransfer mbH is a regional technology and innovation service provider based in Aachen, Germany. The company supports startups, established companies, and regional development initiatives by offering innovation consulting, patent and intellectual property services, business plan advice, financing support, and networking opportunities. Their market position is that of a key regional innovation facilitator within the Aachen technology ecosystem. The website is built on TYPO3 CMS and demonstrates a moderate to good level of digital maturity with active content updates and multilingual support. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

A

Algeco B.V.

algeco.nl

70

Algeco B.V. is a well-established Dutch company specializing in modular housing solutions with over 65 years of experience. The company targets businesses and organizations requiring flexible, temporary, or permanent modular buildings, positioning itself as a reliable and expert partner in the modular construction sector. The website reflects a mature digital presence built on Drupal 9, integrating modern analytics and marketing tools such as HubSpot and Google Analytics, ensuring good performance and user experience across devices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts could be enhanced. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

A

Algeco

algeco.be

69

Algeco Belgium is a leading European provider of modular units and buildings, offering turnkey solutions, rental, sales, and comprehensive 360° services. The website is professionally designed using Drupal 9 CMS, with modern technologies and analytics tools such as Matomo and Google Tag Manager. Contact information including phone, email, and physical address is clearly presented, alongside active social media channels. The security posture is solid with HTTPS usage and no visible vulnerabilities, though explicit security policies are not publicly disclosed. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly accessible privacy policy page. WHOIS data is restricted, which is common for commercial entities but limits domain registration transparency. Overall, the site reflects a trustworthy and professional business presence in Belgium's modular construction sector.

R

Region Aachen

housing-emr.eu

46

Housing Monitor EMR is a regional government-backed project focused on providing transparent, cross-border housing market data for the Euregio Meuse-Rhine region. The website serves as a public resource aggregating demographic and housing industry statistics to support sustainable housing development. The project is led by Region Aachen and hosted by GeoDok GmbH, with partnerships across regional governments. Technically, the site uses standard web technologies with Matomo analytics for privacy-conscious user tracking. The site is accessible, mobile-optimized, and professionally designed, though it lacks some advanced SEO and accessibility features. Security posture is moderate with HTTPS implied but no explicit security headers or policies published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking usage. Overall, the site is trustworthy and legitimate, serving a niche government/non-profit role with good business credibility but room for improvement in security and privacy practices.

GeoDok GmbH operates a specialized web platform focused on commercial real estate and industrial zones in the Aachen region of Germany. The site provides detailed search and mapping tools for businesses seeking commercial spaces, supporting regional economic development. The platform leverages modern web technologies including JavaServer Faces, PrimeFaces, Bootstrap, and OpenLayers for interactive mapping. Analytics are handled via Matomo, reflecting a moderate level of user tracking with some privacy considerations. Security posture is adequate but could be improved by implementing standard security headers and cookie consent mechanisms. The domain registration data aligns well with the website's regional focus and business purpose, supporting legitimacy. Overall, the site is professional and functional, serving a niche market effectively.

B

Bremicker Verkehrstechnik GmbH

bremicker-vt.de

34

Bremicker Verkehrstechnik GmbH is a leading German manufacturer specializing in traffic technology products and solutions since 1932. The company offers a broad portfolio including traffic signs, variable message signs, speed warning systems, parking management, and comprehensive training programs. With multiple locations and over 220 employees, Bremicker serves municipalities, traffic authorities, and related sectors with innovative and high-quality products. The website reflects a mature digital presence built on WordPress with Divi theme, integrating privacy-respecting analytics and modern UI/UX design. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. Overall, the site demonstrates strong business credibility, professional content, and good compliance with GDPR requirements.

A

Algeco GmbH

algeco.de

54

Algeco GmbH is a well-established German company specializing in the rental and sale of modular container buildings and related services. With over 60 years of experience and a broad European footprint, including 14 locations in Germany and multiple international subsidiaries, Algeco serves diverse sectors such as construction, education, healthcare, and retail. Their business model focuses on providing flexible, sustainable, and efficient space solutions supported by comprehensive 360° services including design, installation, and facility management. The website reflects a professional and mature digital presence with strong branding and clear service offerings. Technically, the website employs modern web technologies including Google Tag Manager, Matomo analytics, and Usercentrics for consent management, ensuring compliance with privacy regulations. The site is mobile-optimized, accessible, and performs moderately well. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the security posture is good but could benefit from publishing explicit security policies and incident response contacts. The site is free from adult or questionable content, targeting a general business audience. The domain registration data aligns with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, adding vulnerability disclosure information, and maintaining up-to-date third-party scripts to further strengthen security and trust.

B

Bystricky a spol., s.r.o.

redir.services

43

redir.services is a Czech Republic based free URL redirection service operated by Bystricky a spol., s.r.o., established in 2017. The website offers a simple redirect service with statistics on redirect requests, targeting a general audience needing URL redirection. The business operates in the technology sector with a small company size and a niche market position. The website's technical infrastructure uses Bootstrap and jQuery with Matomo analytics for tracking. Hosting is provided by Gransy, s.r.o., a Czech registrar and hosting provider. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and comprehensive content. Security posture is moderate with HTTPS enabled but missing important security headers and DNSSEC. Privacy and cookie policies are absent, and no contact or incident response information is provided, limiting compliance and trust. Overall, the domain registration is consistent and transparent, supporting legitimacy. The website is safe with no adult or questionable content detected.

N

Netdisk - zasílání dat

netdisk.cz

37

Netdisk.cz is a Czech Republic based file transfer service operating since 2009, offering users a platform to securely send files to partners using a verification code system. The website is modest in design and functionality, focusing on core file upload features with basic user interface elements. The technical infrastructure includes standard web technologies such as HTML5, CSS3, JavaScript with jQuery and Bootstrap, and uses Matomo for analytics tracking. Hosting and domain registration are managed by REG-GRANSY, a consistent and stable registrar, supporting the legitimacy of the service. Security measures include verification codes for uploads, but client-side code uses unsafe eval() calls and lacks visible security headers or CSRF protections, indicating room for improvement. Privacy and cookie policies are absent, and no cookie consent mechanism is implemented despite active tracking, which may raise compliance concerns. Overall, the site is functional but basic, with moderate security posture and limited transparency on privacy and incident response.

Staatliche Schlösser und Gärten M-V is an official government entity managing historic castles, gardens, and cultural heritage sites in Mecklenburg-Vorpommern, Germany. The website serves as a portal for visitors and tourists to explore events, tours, and digital museum experiences. It targets a broad audience including families, cultural tourists, and B2B tourism groups. The organization holds a strong market position as the official state institution for cultural heritage in the region. Technically, the website is built on WordPress 6.4.1 with a modern tech stack including jQuery, Swiper.js for sliders, Matomo for analytics, and Google reCAPTCHA v3 for form security. The site is hosted likely by mvnet.de, uses HTTPS with good SSL configuration, and implements cookie consent mechanisms for GDPR compliance. Mobile optimization and navigation are good, though accessibility could be improved. Security posture is solid with HTTPS, reCAPTCHA, and privacy-focused analytics, but lacks explicit security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is evident through a privacy policy and cookie banner, but terms of service and vulnerability disclosure are absent. Overall, the website is professional, trustworthy, and well-maintained, supporting the organization's mission to promote cultural heritage and tourism. Strategic improvements could focus on enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.

C

Cestovná kancelária DAKA

cestovnakancelariadaka.sk

54

Cestovná kancelária DAKA is a Slovak travel agency specializing in holiday packages including wellness, sightseeing tours, and exotic vacations. Established in 2013, it targets Slovak-speaking customers seeking reliable travel services. The website is professionally designed with good content quality and consistent branding, providing a user-friendly experience optimized for mobile devices. The technical infrastructure includes modern JavaScript libraries and tracking tools such as Google Analytics, Microsoft Clarity, and Criteo for marketing and retargeting purposes. Cookie consent is managed via Cookiebot, ensuring GDPR compliance. Security posture is strong with HTTPS, DNSSEC, and no visible vulnerabilities, although security headers could be improved. No direct contact information or detailed security policies are present on the site, which could be enhanced to improve trust and compliance. Overall, the website is trustworthy, secure, and well-positioned in its market segment.

C

Cestovní kancelář Ludor, spol. s r. o.

e-wlochy.pl

50

The website www.e-wlochy.pl represents Cestovní kancelář Ludor, a Polish-language travel agency specializing in vacation packages to Italy for the year 2025. The company offers a broad range of services including accommodation bookings, travel consultancy, and customer support primarily targeting Polish-speaking tourists and families. The site is well-structured with rich content, including detailed regional guides, accommodation options, and customer reviews, reflecting a mature digital presence. Technically, the site uses a modern tech stack with jQuery, Bootstrap, Google Tag Manager, and Cookiebot for consent management, ensuring good user experience and privacy compliance. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and documented incident response policies. WHOIS data is unavailable, which slightly impacts trust but is offset by visible certifications and official documents. Overall, the site is professional, trustworthy, and well-positioned in the hospitality sector for Italian vacations.

C

Cestovná kancelária Ludor, spol. s r. o.

ludor.sk

49

Cestovná kancelária Ludor is a well-established Slovak travel agency specializing in holiday packages and accommodation bookings primarily in Italy for the 2025 season. The company leverages over 30 years of experience to provide curated travel options with a focus on family-friendly and diverse vacation experiences. The website is professionally designed, mobile-optimized, and offers clear navigation with multilingual support, enhancing user experience for Slovak, Czech, and Polish customers. Technical infrastructure includes modern JavaScript libraries, Bootstrap framework, and privacy-compliant analytics tools such as Matomo and Cookiebot. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The business demonstrates high credibility with transparent WHOIS data, certifications from relevant travel associations, and clear contact information. Overall, the website is safe, trustworthy, and compliant with GDPR regulations.

P

Peter Konecny / zacweb.net e.U.

zacwebber.net

53

ZACWEB, legally registered as Peter Konecny / zacweb.net e.U., is a small Austrian technology and telecommunications service provider specializing in professional hosting, VoIP telephony solutions, Nextcloud cloud services, and web design. The company targets local businesses and individuals in the Waldviertel region, positioning itself as a trusted local partner with a focus on quality and personalized service. The website is built on WordPress using the Divi theme and incorporates modern web technologies and privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and domain transfer protection, though improvements such as DNSSEC and enhanced security headers are recommended. The site includes a GDPR-compliant cookie consent mechanism but lacks explicit privacy and terms of service pages. Overall, the website presents a professional and trustworthy digital presence aligned with the company's business model and market position.

Z

ZACWEB.NET

zacweb.at

52

Konecny & Friends operates as a small Austrian technology and telecommunications service provider, focusing on web design, hosting, cloud solutions, VoIP, and WiFi services. The company leverages a partner network to extend its offerings and serves small to medium businesses and individual entrepreneurs. The website is built on WordPress with the Divi theme, incorporating modern plugins for GDPR compliance and analytics. Security posture is good with HTTPS, security headers, and consent-based tracking. However, the site lacks explicit security policies and incident response information. Overall, the business presents a professional and trustworthy online presence with room for enhanced transparency in security and contact details.

J

JobRouter AG

jobrouter-workflow.com

77

JobRouter AG operates a sophisticated low-code digital process automation platform designed to help enterprises automate and optimize complex business workflows. With over 20 years of experience and a broad international customer base, JobRouter offers modular, scalable solutions including workflow automation, document management, and cloud services. The company maintains a strong partner network and integrates with major enterprise systems such as SAP and Microsoft Office. Technically, the website is built on TYPO3 CMS and employs Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies with user consent mechanisms. Security posture is solid with HTTPS and vulnerability disclosure policies, though explicit security headers are not evident in the provided data. The absence of WHOIS registration data is a notable gap, warranting further verification. Overall, JobRouter presents as a credible and professional technology provider with a mature digital presence.

D

DocuWare

docuware.com

68

DocuWare is a well-established enterprise software provider specializing in document management and workflow automation solutions. The website serves as a comprehensive marketing and resource portal targeting businesses seeking to digitize and automate their document processes. The company positions itself as a leader in the technology sector with a strong emphasis on security, compliance, and customer support. The site is professionally designed, mobile-optimized, and rich in content, including multilingual support and extensive resources such as webinars, case studies, and product tours. Technically, the site leverages HubSpot CMS, modern analytics tools like Matomo and Google Tag Manager, and implements robust privacy and cookie consent mechanisms. Security posture is strong with HTTPS enforced and multiple certifications displayed, though explicit security headers could be improved. Overall, the site reflects a mature digital presence aligned with enterprise standards.

O

ohne-makler.at

ohne-makler.at

57

ohne-makler.at is an established Austrian online real estate platform founded in 2009, specializing in enabling property owners to sell and rent properties without traditional brokers. The platform offers a streamlined service where users create one listing that is automatically published across multiple major real estate portals, enhancing reach and efficiency. Key services include multi-portal listings, floor plan preparation, energy certificates, virtual tours, signage, property valuation, and auction-based sales. The company targets private and professional real estate sellers and landlords seeking cost-effective and user-friendly marketing solutions. The website demonstrates consistent branding, good content quality, and strong trust signals such as extensive customer reviews and partner logos.

O

ohne-makler.net

ohne-makler.net

63

ohne-makler.net is a German real estate platform founded in 2009 that enables users to sell and rent properties without brokers by publishing listings simultaneously on major portals such as ImmoScout24 and Immowelt. The website offers a comprehensive suite of services including multi-portal listing, premium exposés, legal advice, professional photography, and virtual tours, targeting private and professional real estate sellers and landlords. The platform positions itself as a cost-effective and time-saving alternative to traditional broker services with transparent pricing and extensive reach. Technically, the site uses modern JavaScript frameworks like Alpine.js and HTMX, integrates privacy-conscious analytics tools such as Matomo, and employs standard marketing and tracking technologies including Google Tag Manager and Facebook Pixel. The website is well-optimized for mobile devices, has good SEO and accessibility features, and presents a professional, trustworthy user experience. Security-wise, HTTPS is enforced with appropriate headers, but the absence of a published security policy and incident response information suggests room for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and reduces trust scores, although the website content and business presence appear legitimate and professional. Overall, the site demonstrates a mature digital presence with solid privacy compliance but would benefit from enhanced transparency in security and domain registration details.

A

Avril

groupeavril.com

70

Avril is a leading French industrial group specializing in oils and plant proteins, with a strong commitment to sustainability and addressing climate and demographic challenges. The company operates across multiple sectors including renewable energies, food production, specialty chemicals, agricultural solutions, incubators, and investments. Their market position is strong in France and internationally, supported by a broad portfolio of subsidiaries and brands. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content focused on their business mission and sustainability goals. Technically, the site uses modern web technologies including WordPress CMS, jQuery, and privacy-focused analytics (Matomo). Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the website content and branding strongly indicate a legitimate and established business. Overall, Avril demonstrates a solid digital maturity and business credibility with room for minor security enhancements.

C

Cestovní kancelář Ludor, spol. s r. o.

ludor.cz

10

Cestovní kancelář Ludor, spol. s r. o. is a Czech travel agency specializing in holiday packages and accommodation bookings in Italy, with a focus on both summer and winter vacations. The website offers a comprehensive and user-friendly platform featuring detailed regional guides, interactive maps, and a wide selection of apartments, hotels, and villaggi. The company positions itself as a trusted provider with 30 years of experience, catering primarily to Czech-speaking tourists seeking quality and reliable travel services. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Tag Manager, Matomo analytics, and Cookiebot for GDPR-compliant cookie consent. The site is mobile-optimized and features good SEO practices, although some security headers are missing. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent mechanisms but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trust slightly, but the presence of certifications and legal documents supports legitimacy. Overall, the website presents a professional, trustworthy, and content-rich platform for travel services to Italy, with moderate technical and security maturity. Strategic improvements in security headers and published security policies would enhance its posture further.

B

Bestattung Graz GmbH

bestattung-graz.at

53

Bestattung Graz GmbH is a well-established funeral services provider based in Graz, Austria, with over 115 years of experience. The company offers a range of services including traditional burial, cremation, alternative funeral forms, and related support services. Their market position is strong regionally, supported by transparent pricing and a customer-centric approach. The website reflects a professional and trustworthy business with clear contact information and a consistent brand presence. Technically, the site is built on WordPress using Elementor and several modern plugins, with good SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers could be enhanced. Overall, the site is compliant with GDPR and provides a positive user experience.

O

OeAD - Austria's Agency for Education and Internationalisation

studyinaustria.at

53

The website studyinaustria.at is an official educational portal managed by OeAD, Austria's Agency for Education and Internationalisation, a government-owned non-profit entity. It provides comprehensive information and services for international students interested in studying in Austria, including study programmes, institutions, scholarships, and visa guidance. The site is well-positioned as an authoritative source in the education sector, targeting prospective students globally. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript modules, a consent management platform (Usercentrics), and Matomo analytics for privacy-conscious tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs security headers, and integrates privacy-compliant cookie consent. No vulnerabilities or exposed sensitive data were detected. However, the site could improve by publishing explicit terms of service, vulnerability disclosure policies, and direct security contact information. Overall, the website presents a low-risk profile with strong trust indicators, professional content, and compliance with GDPR. Strategic recommendations include enhancing transparency around security incident response and expanding legal documentation to further bolster user trust.

I

INTOUCH

intouch.at

49

INTOUCH is a well-established Austrian marketing and advertising agency based in Gleisdorf near Graz, Steiermark, operating since 1996. The company offers a comprehensive range of services including corporate design, online marketing, e-commerce solutions, SEO, and full-service marketing consulting. Their market position is strong within the regional media and advertising sector, serving clients from small enterprises to large corporations. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to business clients seeking sustainable marketing success. Technically, the website employs a mature technology stack including Bootstrap, jQuery, and various marketing and analytics tools such as Matomo and Google Analytics. While the site is moderately optimized for performance and mobile devices, there is room for improvement in accessibility and updating legacy libraries. The presence of a cookie consent mechanism and detailed privacy policy demonstrates good digital maturity and GDPR compliance. From a security perspective, the site uses HTTPS and implements user consent for tracking technologies. However, it lacks explicit security headers and uses an older jQuery version, which could be updated to enhance security posture. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the entity. Overall, INTOUCH presents a secure, compliant, and professional online presence suitable for its business model. Strategic improvements in security headers and technical modernization would further strengthen its digital resilience and user trust.

G

Giersiepen GmbH & Co. KG

gira.at

51

Gira is a well-established German manufacturer specializing in smart home technology and electrical installation products such as switches, sockets, and security systems. The company maintains a strong market position with a professional website offering comprehensive product information, partner networks, and customer support. Their digital infrastructure leverages modern web technologies including Vue.js, Google Tag Manager, Google Analytics, Facebook Pixel, and Matomo for analytics, ensuring a mature and data-driven online presence. Security measures include HTTPS enforcement, cookie consent mechanisms, and reCAPTCHA integration for form protection. However, the absence of WHOIS data for the domain www.gira.com in the .com registry is unusual and warrants monitoring, though the website's professionalism and contact transparency mitigate immediate concerns. Overall, Gira demonstrates a robust security posture and compliance with GDPR, supporting its credibility as a trusted brand in the smart home industry.

A

abfallplus

abfallplus.de

45

abfallplus is a German-based company specializing in digital solutions for waste management and municipal citizen services. Their offerings include smart modules for waste collection, complaint management, and communication support aimed at simplifying citizen interactions and automating administrative workflows. The website is built on WordPress using the Divi theme and incorporates modern web technologies including JavaScript ES modules and Matomo analytics for user tracking. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is limited by the absence of a clear privacy policy, though a cookie consent mechanism is present. Business credibility is supported by professional content and consistent branding, but contact information is not explicitly found in the provided content. Overall, the website is functional and professional but would benefit from enhanced security and privacy disclosures to improve trust and compliance.

T

TRUENDO Technologies GmbH

truendo.com

64

TRUENDO Technologies GmbH operates a Consent Management Platform (CMP) designed to simplify global online privacy compliance, particularly GDPR. The company offers automated cookie policy management, continuous compliance monitoring, and customizable consent banners, positioning itself as a flexible and affordable solution certified by Google and IAB. The website reflects a professional and consistent brand image targeting website owners and app developers seeking privacy compliance solutions. Technically, the site is built on modern frameworks such as React and Next.js, hosted via Amazon infrastructure, and integrates Matomo analytics and Crisp chat for user engagement. Security posture is strong with HTTPS enforced and domain registration protections, though DNSSEC is not enabled and some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website demonstrates good digital maturity, security awareness, and business credibility.

C

Concours Mondial de Bruxelles

cmsauvignon.com

46

Sauvignon Selection by CMB is a prestigious international wine competition dedicated exclusively to Sauvignon wines, organized by Concours Mondial de Bruxelles. The website positions itself as a world reference for wine competitions, targeting wine producers, sommeliers, distributors, journalists, and consumers interested in Sauvignon wines. It offers services such as wine registration, medal ordering, and publishing competition results, supported by a strong partnership and media ecosystem. The business is medium-sized, founded in 2021, and operates primarily in the hospitality sector with a global reach. Technically, the website is built on WordPress using a custom theme, leveraging modern technologies such as Bootstrap 5, SVG graphics, and analytics tools including Matomo and Google Tag Manager. The site is well optimized for mobile devices, has fast performance, and good SEO and accessibility features. Hosting is provided by OVH sas, a reputable provider. From a security perspective, the site enforces HTTPS and has domain protections like clientDeleteProhibited and clientTransferProhibited statuses. However, DNSSEC is not enabled, and security headers are not explicitly visible, indicating room for improvement. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. No incident response or vulnerability disclosure information is provided. Overall, the website is professional, trustworthy, and well maintained, with a mature audience focus due to its alcohol-related content. Strategic recommendations include enhancing privacy and security policies, enabling DNSSEC, and publishing incident response contacts to improve trust and compliance.

K

Krassgrün.at

krassgruen.at

45

Krassgrün.at is a small, established advertising agency based in Villach, Austria, founded in 2013. The company offers a broad range of marketing services including web design, social media marketing, SEO, Google Ads, content marketing, and graphic design. Their market position is that of a creative and dynamic regional agency focused on elevating brands through innovative advertising solutions. Technically, the website is built on WordPress using modern plugins and tools such as Slider Revolution, WPBakery, and Borlabs Cookie for consent management. Analytics and tracking are extensively implemented via Matomo, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, indicating a mature digital marketing infrastructure. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response contacts are missing. Overall, the website is professional, well-branded, and trustworthy, but could improve privacy compliance transparency.

A

Avril

avril.com

70

Avril is a major French industrial group specializing in oils and plant proteins, with a strong commitment to sustainability and serving the earth through addressing climate and demographic challenges. The company operates multiple subsidiaries and brands, offering services across renewable energies, food production, specialty chemicals, agricultural solutions, incubators, and investments. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, cookie consent management, and privacy-focused analytics (Matomo), but lacks some advanced security headers and explicit security policies. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the overall business credibility and trust signals are strong. Privacy compliance is well implemented with clear cookie policies and GDPR adherence. Overall, the site presents a secure and trustworthy digital front for a large industrial enterprise.

V

Deutschlands größter veganer Online-Shop

velivery.com

65

Velivery.com presents itself as Germany's largest vegan online shop, offering nearly 2,000 plant-based products for home delivery. The website is professionally designed with clear navigation and a focus on vegan food retail. Technically, it employs modern JavaScript libraries, Matomo analytics, and responsive design elements, ensuring a good user experience across devices. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, though it lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS registration data raises concerns about domain legitimacy, suggesting either recent registration or privacy protection not reflected in the WHOIS output. Overall, the site appears functional and trustworthy from a user perspective but would benefit from enhanced transparency and security disclosures.

V

Venter Tours

ventertours.de

47

Venter Tours is a specialized German travel agency focusing on tailor-made safaris and tours in southern and eastern Africa. With over 21 years of experience and a team of travel experts including a South African managing director, the company offers a range of travel types including group tours, self-drive, family trips, and flight safaris. Their market position is that of a niche expert with strong local partnerships and personalized service. The website is built on TYPO3 CMS, integrates Matomo analytics and Google reCAPTCHA, and is hosted on servers associated with kasserver.com. It features comprehensive content, good SEO, and mobile optimization. Security posture is solid with HTTPS and form protections, though additional security headers and updated libraries could improve it. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-suited for its target audience.

P

Peter Konecny / zacweb.net e.U.

zacweb.net

53

ZACWEB is a small Austrian company specializing in professional hosting, VoIP telephone systems, Nextcloud cloud services, and web design, primarily serving the Waldviertel region. The company presents itself as a local, trusted provider with a focus on telecommunications and IT services. The website is built on WordPress using the Divi theme, enhanced with SEO and accessibility plugins, and employs Matomo for analytics with privacy-conscious settings. Security posture is solid with HTTPS enabled and domain registration consistent with the business identity, though there is room for improvement in DNSSEC adoption and security headers. Privacy compliance is partial, with a cookie consent mechanism present but lacking a dedicated privacy policy or terms of service. Overall, the site is professional, well-branded, and trustworthy, suitable for its target audience.

M

Moviement srl

rumigen.eu

65

RUMIGEN is a European research project focused on improving ruminant breeding through advanced genomic and epigenomic approaches. Coordinated by INRAE and involving 18 partners across multiple European countries, the project aims to develop new breeding strategies to help livestock adapt to climate change. The website serves as a dissemination platform for project outputs, training, and stakeholder engagement. Technically, the site is built on WordPress using Elementor, with integrated analytics and cookie consent management, reflecting a moderate to good level of digital maturity. Security posture is adequate with HTTPS and cookie consent, though some security headers and policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting its role as an academic and research communication tool.

M

Moviement srl

holoruminant.eu

65

HoloRuminant is a European Union Horizon 2020 funded research project focused on understanding the microbiomes associated with ruminant animals and their impact on health, welfare, and environmental sustainability. The project operates as a consortium of 25 organizations across 17 countries, targeting researchers, stakeholders, and farmers involved in livestock and microbiome research. The website serves as an information hub with news, project details, publications, and stakeholder engagement resources. Technically, the site is built on WordPress using Elementor, with modern plugins for analytics and cookie consent, providing a good user experience and mobile optimization. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

Stadt Salzburg operates an official municipal government website serving the residents and visitors of Salzburg, Austria. The site provides comprehensive city news, event calendars, public service information, and contact details for various city departments. It positions itself as a trusted source of local government information with a clear focus on community engagement and transparency. The website is primarily in German and targets local citizens and stakeholders. From a technical perspective, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with additional libraries such as Hyphenopoly for text hyphenation and Matomo for analytics. The site appears to be well-structured with JSON-LD schema markup for news and events, enhancing SEO and data interoperability. Mobile optimization and accessibility are addressed at a basic to good level, though there is room for improvement in accessibility features. Security posture is solid with HTTPS enforced and no visible exposed sensitive data. However, the absence of security headers such as Content-Security-Policy and lack of a cookie consent mechanism indicate areas for enhancement in compliance and security best practices. No incident response or vulnerability disclosure policies are published, which could be improved to strengthen trust and readiness. Overall, the website is professional, trustworthy, and serves its public service mission effectively. Strategic improvements in privacy compliance, security headers, and transparency policies would elevate its security and compliance maturity, further reinforcing its credibility and user trust.

R

R. Steinwender Gesmbh

rsteinwender.at

46

R. Steinwender Gesmbh is a well-established Austrian family business specializing in heating, climate, ventilation, and sanitary installations since 1954. The company operates with a modern infrastructure including a revitalized hydropower plant for sustainable energy supply. Their website reflects a professional and consistent brand image targeting private and commercial customers seeking building technology services. Technically, the site is built on WordPress with popular plugins like WPBakery and Slider Revolution, and uses Matomo for analytics, indicating a moderate level of digital maturity. Security posture is good with HTTPS and security headers in place, though the absence of visible cookie consent and security policies suggests room for compliance improvements. Overall, the domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

M

Magistrat der Landeshauptstadt Klagenfurt am Wörthersee

klagenfurt.at

59

The website www.klagenfurt.at serves as the official digital presence of the city government of Klagenfurt am Wörthersee, Austria. It provides municipal services, public information, and resources for residents and visitors. The site is positioned as a key government portal with a focus on city services such as waste management, education, and building permits. The target audience primarily includes local residents and tourists seeking official information. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including Bootstrap Package, jQuery, and Modernizr. It integrates analytics tools such as Matomo and Google Tag Manager for user tracking and performance monitoring. The site is hosted by Webwerk Online Solutions GmbH and demonstrates moderate performance with good mobile optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and formal security or incident response policies. Privacy compliance is limited due to the absence of a privacy policy and cookie consent mechanism, which are critical for GDPR adherence. The WHOIS data confirms the domain's legitimacy and consistency with the official city government entity. Overall, the website is professional and trustworthy but requires improvements in privacy compliance and security best practices to enhance user trust and regulatory adherence.

L

Latvijas Kara muzejs

karamuzejs.lv

58

Latvijas Kara muzejs is a Latvian national war museum dedicated to preserving and presenting Latvia's military history. The website serves as an informational and educational platform offering details about exhibitions, research, galleries, and visitor services. It targets a broad audience including the general public, history enthusiasts, researchers, and tourists. The museum operates as a non-profit cultural institution with free admission, positioning itself as a key cultural heritage entity in Latvia. Technically, the website is built on Drupal 9 CMS and incorporates modern JavaScript libraries such as FullCalendar and Matomo for analytics. The site is hosted on servers associated with online.lv and demonstrates good mobile optimization, accessibility, and SEO practices. The presence of cookie consent mechanisms and privacy policies indicates a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and formal security or incident response policies publicly available. No vulnerabilities or suspicious activities were detected. The WHOIS data aligns well with the museum's identity, supporting legitimacy and trust. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve security posture by adding security headers and incident response information.

B

Bundesimmobiliengesellschaft

big.at

60

Bundesimmobiliengesellschaft (BIG) is a major Austrian real estate company specializing in public sector properties, particularly educational buildings and specialized real estate. The company holds a strong market position as one of the largest property owners in Austria's education sector, offering services including construction and project management, facility management, and tenant services. The website reflects a professional and consistent brand image targeting public institutions, investors, and stakeholders in the real estate and education sectors. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and FontAwesome, and employs Matomo for privacy-conscious analytics. Security posture is strong with HTTPS enforcement, security headers, and a cookie consent mechanism, although no explicit security policy or incident response information is published. WHOIS data confirms the legitimacy and transparency of the domain registration, consistent with the company's public profile. Overall, the website is well-structured, accessible, and compliant with GDPR requirements, supporting trust and credibility.

P

Peter Vratny :: EDV Dienstleistungen

proserver1.at

53

Peter Vratny :: EDV Dienstleistungen operates as a small IT service provider based in Austria, offering IT consulting and services with a promotional offer of 3 months free trial. The website is built on WordPress using the Divi theme and incorporates plugins for SEO (Rank Math), analytics (Matomo), and GDPR compliance (Complianz). The technical infrastructure is modern and moderately optimized for performance and mobile devices. Security posture is adequate with HTTPS enabled and spam protection via honeypot, but lacks advanced security headers and explicit security policies. Privacy compliance is partially addressed through a cookie consent banner, but no dedicated privacy or terms of service pages are found. Business credibility is supported by consistent WHOIS data and structured organization information. Overall, the website is professional and trustworthy but could improve transparency and security practices.

F

Fachverband BIOGAS e.V.

biovollgas.de

44

Fachverband BIOGAS e.V. operates the website biovollgas.de to promote biogas as a vital component of the energy transition in Germany. The organization focuses on educating the public about the benefits of biogas, dispelling myths, and supporting climate-friendly energy solutions. The website serves as an information hub with multimedia content, social media integration, and clear contact details, positioning the association as a trusted advocate in the renewable energy sector. Technically, the website is built on the ProcessWire CMS platform, utilizing modern JavaScript libraries such as jQuery and Slick Slider, and integrates analytics tools including Matomo and Facebook Pixel. The site is hosted on servers associated with kasserver.com and employs HTTPS with a good SSL configuration. Mobile optimization and SEO practices are well implemented, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, explicit security headers are not detected, and no published security or incident response policies are available. No vulnerabilities or exposed sensitive data were found, indicating a solid but improvable security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable source for biogas information. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen its position.