Security Directory

G

Giersiepen GmbH & Co. KG

gira.com

56

Gira, operated by Giersiepen GmbH & Co. KG, is a well-established company specializing in electrical installation products and smart home solutions. Their website demonstrates a professional and comprehensive digital presence targeting private customers, professionals, and architects. The company offers a broad range of products including switches, sockets, smart home systems, and door intercoms, supported by detailed product information, brochures, and a smart home configurator tool. The site is well-structured, mobile-optimized, and integrates modern web technologies and analytics tools with user consent mechanisms in place. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Google Analytics, Facebook Pixel, and Matomo for analytics, alongside reCAPTCHA for form security. The site uses HTTPS with good SSL configuration, though HTTP security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Contact information is clearly presented with multiple channels, enhancing business credibility. From a security perspective, the site shows good practices such as encrypted connections and consent-based tracking but lacks explicit security policy or incident response contact details. The absence of WHOIS data for the domain is unusual and should be monitored, though the website's professional appearance and consistent branding support its legitimacy. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, indicating a trustworthy and mature online presence.

S

SCHNEEWEISS interior

braunlockenhaus.at

48

SCHNEEWEISS interior is a medium-sized manufacturing company specializing in high-quality object furniture and interior solutions, operating primarily in Austria and Germany. The company integrates multiple established brands such as Hiller Objektmöbel, BRAUN Lockenhaus, rosconi, and MalscherSitzMöbel, offering a comprehensive portfolio from design and production to logistics and assembly. Their market position is strong within the interior furnishing sector, targeting professional and business clients seeking innovative and traditional furniture solutions. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery. It employs Matomo analytics configured for privacy-conscious tracking and includes a cookie consent mechanism. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and has basic security headers, though it lacks explicit security policies and incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service pages in the provided content. Overall, the website presents a professional and trustworthy digital presence with moderate security and privacy maturity. Strategic improvements in security policy transparency and privacy documentation would enhance compliance and user trust.

K

Kammer der ZiviltechnikerInnen Arch+Ing | Tirol und Vorarlberg

kammerwest.at

58

The website www.kammerwest.at represents the Kammer der ZiviltechnikerInnen Arch+Ing for the regions of Tirol and Vorarlberg in Austria. It serves as a professional chamber and service organization for architects and civil engineers, providing member services, continuing education, contract information, job postings, and event announcements. The site targets professionals in civil engineering and architecture as well as clients and stakeholders in the region. Technically, the site is built on a modern Nuxt.js and Vue.js framework, featuring responsive design and moderate performance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

N

Nacionālie bruņotie spēki

mil.lv

57

The website www.mil.lv is the official online presence of the Latvian National Armed Forces, providing authoritative information on military service, reserves, training, and national defense news. It serves primarily Latvian citizens interested in defense matters and military careers. The site is well-branded, consistent, and professionally maintained, reflecting its governmental status. Technically, it is built on Drupal 9, hosted on Azure, and employs modern analytics and tracking tools such as Matomo and Facebook Pixel. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong, with a comprehensive cookie policy and consent mechanism. However, no explicit security policy, incident response contacts, or vulnerability disclosure mechanisms are present. Overall, the site is trustworthy, professional, and serves its public service mission effectively.

B

Bundeskammer der Ziviltechniker:innen

zt.at

58

The website https://zt.at represents the Bundeskammer der Ziviltechniker:innen, the official Austrian chamber for civil engineers and architects. It serves as a professional platform providing information, member services, and resources for Ziviltechniker:innen across Austria. The site is well-structured, modern, and targets professionals and public entities involved in engineering and architecture. The presence of regional subdomains and comprehensive content indicates a mature and established organization with a long history dating back to 1860. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, employs privacy-conscious analytics via Matomo, and is optimized for mobile and accessibility. Security posture is strong with HTTPS and security headers, though it lacks explicit cookie consent and published security policies. Overall, the site is trustworthy, professional, and compliant with GDPR, serving its audience effectively.

E

European Federation Of Animal Science

eaap.org

65

The European Federation Of Animal Science (EAAP) is a well-established non-profit organization founded in 2000, focused on promoting high-quality animal science research and facilitating collaboration among scientific communities, the livestock industry, and civil society groups interested in livestock production. The website serves as a hub for disseminating scientific publications, organizing events such as workshops and annual meetings, and supporting young scientists through its Young Club platform. EAAP maintains a strong presence in the European animal science sector with a medium-sized organizational footprint and a consistent brand identity. Technically, the website is built on WordPress 6.8.1 with Elementor as the primary page builder, supplemented by plugins like JetEngine and Matomo for analytics. The site demonstrates good mobile optimization, clear navigation, and moderate performance. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. However, some technical improvements such as enabling DNSSEC and adding advanced security headers could enhance the security posture. From a security perspective, the site uses HTTPS with a clientTransferProhibited domain status, indicating domain transfer protection. No WAF or blocking mechanisms are detected, and no critical vulnerabilities or exposed sensitive data were found. However, the absence of a published privacy policy, terms of service, security policy, or incident response information represents compliance and transparency gaps. The domain registration details are consistent with the organization's identity and history, supporting the legitimacy of the website. Overall, the EAAP website is a credible and professional platform serving the animal science community with good technical and security foundations. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, and enhancing security headers to improve trust and compliance. These steps will strengthen the organization's digital maturity and user confidence.

B

Biosphärengebiet Schwäbische Alb e.V.

biosphaerengebiet-alb.de

50

The website www.biosphaerengebiet-alb.de serves as the official information portal for the UNESCO Biosphere Reserve Schwäbische Alb, operated by the non-profit organization Biosphärengebiet Schwäbische Alb e.V. It provides comprehensive regional information, educational content, event announcements, and promotes sustainable tourism and environmental conservation. The site targets a broad audience including tourists, local residents, and environmental enthusiasts. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and integrates privacy-compliant cookie consent mechanisms and Matomo analytics for user tracking. Security posture is good with HTTPS enforced and basic security best practices observed, though additional security headers and explicit security policies could enhance protection. The domain WHOIS data is limited but shows no suspicious patterns, supporting the site's legitimacy. Overall, the website is professional, trustworthy, and well-optimized for accessibility and SEO.

E

European Association for Animal Production (EAAP)

smarterproject.eu

63

The Smarter Project website represents a well-structured and professionally maintained EU Horizon 2020 funded research initiative focused on genetic selection to improve resilience and efficiency in small ruminants. The project involves multiple international partners and stakeholders, targeting researchers, breeders, and farmers. The site uses WordPress CMS with modern front-end technologies such as Bootstrap and Swiper.js, and integrates Matomo analytics with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies. Contact information is primarily via a contact form, with no explicit emails or phone numbers listed. Overall, the website is trustworthy, safe, and serves its academic and dissemination purposes effectively.

S

Stadtwerke Nürtingen GmbH

bienenstrom.de

59

Bienenstrom is a German eco-friendly electricity product offered by Stadtwerke Nürtingen GmbH in partnership with the UNESCO Biosphärengebiet Schwäbische Alb. It combines 100% renewable hydropower electricity supply with a unique business model that channels customer contributions into biodiversity-enhancing flowering land projects to combat insect decline. The website is well-designed, content-rich, and professionally maintained, targeting environmentally conscious residential and business customers in Germany. Technically, the site uses modern frameworks like Neos CMS and integrates Google Maps and Matomo analytics with user consent mechanisms. Security posture is good with HTTPS and cookie consent, though explicit security policies and incident response contacts are not published. Overall, the domain and business information are consistent and trustworthy, supported by certifications and strong partner ecosystem.

I

IÖB - Servicestelle

ioeb-innovationsplattform.at

57

The IÖB Innovationsplattform is a government-backed Austrian platform designed to connect public sector buyers with innovative companies. It serves as a showcase for innovations and facilitates public procurement challenges and a marketplace for novel products and services. The platform is supported by key Austrian ministries and the Bundesbeschaffung GmbH, positioning it as a central hub for innovation in public procurement within Austria. The website is professionally designed, content-rich, and offers multiple services including challenges, innovation presentations, and a newsletter to engage its target audience of public authorities and innovative enterprises. Technically, the site is built on TYPO3 CMS, uses modern analytics and marketing tools, and is optimized for mobile and accessibility. Security posture is strong with HTTPS, cookie consent, and secure forms, though it lacks explicit security policy and incident response contacts. Overall, the platform demonstrates high trustworthiness and professionalism, suitable for its government and innovation ecosystem role.

V

Verein NATUR im GARTEN Steiermark

naturimgarten-steiermark.at

54

The website www.naturimgarten-steiermark.at represents the Verein NATUR im GARTEN Steiermark, a regional environmental initiative supported by the Land Steiermark government. The organization promotes ecological gardening practices, emphasizing pesticide-free and peat-free garden maintenance. Their target audience includes private gardeners, municipalities, schools, and partner businesses within the Steiermark region. The website serves as an informational and engagement platform, offering resources, certification programs, and contact channels for interested parties. Technically, the site is built on TYPO3 CMS with Bootstrap and jQuery, featuring responsive design and moderate performance. It integrates Matomo and Google Analytics for visitor tracking, with privacy-conscious configurations such as IP anonymization and cookie consent opt-in mechanisms. The site demonstrates good SEO practices and basic accessibility features. From a security perspective, the website enforces HTTPS and employs cookie consent with opt-in for analytics cookies. While some standard security headers are present, there is room for improvement by adding headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, showing consistent registration information and no privacy protection, which is appropriate for a government-backed entity. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. It poses low risk and effectively supports the organization's mission. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility compliance to further strengthen the site's security posture and user experience.

C

comvos online medien

comvos.de

67

Comvos online medien is a small, established internet agency based in Mannheim, Germany, specializing in WordPress, TYPO3, and Magento development. With over 25 years of experience, the company combines startup creativity with professional digital solutions aimed at business clients. Their market position is that of a trusted local digital service provider offering creative web development and digital marketing services. The website is well-structured, professionally designed, and optimized for SEO, targeting businesses seeking comprehensive internet agency services. Technically, the site runs on WordPress with common plugins such as WPBakery Page Builder and Rank Math SEO, and uses Matomo for analytics, indicating a moderate level of digital maturity. Security-wise, HTTPS is enabled and a firewall plugin is in use, but the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. Overall, the site is trustworthy and professional but should enhance privacy compliance and security best practices to reduce risk and improve user trust.

G

GALABAU VERBAND Österreich

gartengottwerden.at

54

The website www.gartengottwerden.at serves as a platform promoting gardening and landscaping jobs in Austria, operated by the GALABAU VERBAND Österreich association. It targets job seekers interested in the gardening sector, offering job listings, company portraits, and a merchandise shop. The site is well-branded and consistent with its association identity, providing relevant content in German for the Austrian market. Technically, the site is built on TYPO3 CMS, leveraging modern analytics tools like Matomo and Google Tag Manager, and implements a robust cookie consent mechanism via Klaro. The website is mobile-optimized and accessible, with good SEO practices in place. Security-wise, the site enforces HTTPS and cookie consent but lacks explicit security headers and detailed security or incident response policies. No critical vulnerabilities or suspicious content were detected, and the WHOIS data aligns well with the business, indicating legitimacy. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, with room for improvement in security posture and contact transparency.

F

FRASEBA GmbH

fraseba.de

64

FRASEBA GmbH is a German-based company specializing in substrates, soils, and related landscaping products and services. The company targets businesses, private customers, and municipal clients, offering a broad product range including tree, roof, lawn, and plant substrates, as well as gravel, lava, and soil processing services. Their market position is that of a reliable regional supplier with industry certifications and memberships enhancing their credibility. Technically, the website employs modern web technologies, including Cookiebot for consent management and Matomo for privacy-conscious analytics, with responsive design and good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting a positive business reputation.

S

Sempergreen

sempergreen.com

47

Sempergreen is a globally recognized market leader specializing in sustainable green solutions including green roofs, living walls, and ground cover. The company targets a professional audience comprising contractors, architects, roofers, landscape architects, gardeners, and civil engineers. Their business model focuses on providing direct-green products and tailored project recommendations, supported by a network of nurseries and dealers worldwide. The website reflects a medium-sized enterprise with a strong brand presence and consistent messaging aligned with environmental sustainability. Technically, the website employs modern tracking and marketing technologies such as Google Tag Manager, Matomo Analytics, Cookiebot for consent management, and Google reCAPTCHA for form security. The site is mobile-optimized with good SEO practices and moderate performance. However, no CMS or hosting provider details were explicitly detected. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks visible security headers and published security policies or incident response contacts. No vulnerability disclosure or security.txt files were found, indicating room for improvement in transparency and security maturity. The absence of WHOIS data raises concerns about domain registration legitimacy, which should be investigated further to ensure trustworthiness. Overall, the website is professional, content-rich, and user-friendly, but the domain registration inconsistency and limited security policy disclosures present moderate risks. Strategic enhancements in security governance and domain verification are recommended to strengthen trust and compliance.

D

PENNY DEL - Startseite

del.org

60

The PENNY DEL website serves as the official digital platform for the Deutsche Eishockey Liga, providing comprehensive information including news, statistics, team details, and multimedia content targeted at ice hockey fans primarily in Germany. The site demonstrates a mature digital presence with consistent branding and partnerships with notable sponsors such as Magenta Sport, Nikon, and PENNY. Technically, the site is built on TYPO3 CMS and leverages modern frontend libraries and frameworks, ensuring good mobile optimization and user experience. Security posture is solid with HTTPS enforced and privacy-conscious analytics configuration, though explicit privacy and cookie policies are absent. The lack of WHOIS data transparency slightly impacts trust but is mitigated by the professional and official nature of the content. Overall, the site is reliable and well-positioned within its niche, serving a medium-sized audience with quality content and stable technical infrastructure.

K

Kirkon Keskusrahasto

evl.fi

77

The website evl.fi serves as the official online presence of the Evangelical Lutheran Church of Finland, operated by Kirkon Keskusrahasto. It provides information and services related to the church's activities, targeting Finnish residents interested in religious and community engagement. The domain is well-established, dating back to 1991, reflecting the long-standing nature of the organization. The website employs a modern WordPress CMS with SEO optimization and a GDPR-compliant cookie consent mechanism, indicating a mature digital infrastructure. Security-wise, the site uses HTTPS with good SSL configuration and standard security headers, though DNSSEC is not implemented. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is partially met with cookie consent but lacks explicit privacy and terms of service pages. Overall, the site is professional, trustworthy, and aligned with the organization's mission.

P

PrimaCat vehnätön ja viljaton kissanruoka - aina runsaasti lihaa | PrimaCat

primacat.com

63

PrimaCat is a Finnish brand specializing in wheat-free and grain-free cat food products, emphasizing natural nutrition with high meat content and no added sugars. The website targets cat owners primarily in Finland and neighboring Nordic countries, offering a range of dry and wet cat food, treats, and cat litter. The business model focuses on retail distribution with availability in local stores. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrating analytics and marketing tools such as Matomo and Google Tag Manager. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are absent. WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and social media presence support legitimacy. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in business credibility and security transparency.

I

Industrieverband Feuerverzinken e.V.

feuerverzinken.com

73

The Industrieverband Feuerverzinken e.V. is a German industry association specializing in corrosion protection of steel through hot-dip galvanizing (Feuerverzinken). The website serves as a comprehensive resource for planners, engineers, and industry professionals, offering detailed information on sustainability, technical standards, and applications of galvanized steel. The organization holds a strong market position as a leading industry body with a medium-sized footprint and a focus on manufacturing and non-profit sectors. Technically, the website is built on TYPO3 CMS with modern JavaScript and analytics integrations, providing a good user experience with mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements could be made by implementing security headers and publishing explicit security policies. The absence of WHOIS registration data is a notable anomaly but does not detract from the overall legitimacy indicated by the website content and social media presence. Overall, the site is professional, trustworthy, and well-maintained.

G

Galabau-Verband Österreich

galabau-verband.at

51

Galabau-Verband Österreich is the official association representing garden and landscape construction companies in Austria. The website serves as a hub for members and interested parties, offering information about membership, events, awards, and industry news. The organization positions itself as a key player in the Austrian green industry sector, fostering community and professional development. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design and uses Matomo for privacy-conscious analytics. The presence of a cookie consent mechanism via Klaro indicates compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site is professional, trustworthy, and well-maintained, supporting the association's mission effectively.

B

Betonwerk Büscher GmbH & Co. KG

zurueckfuerdiezukunft.de

61

Betonwerk Büscher GmbH & Co. KG operates the website zurueckfuerdiezukunft.de, focusing on sustainable construction materials, specifically recycling concrete products certified by the German Institute for Building Technology (DIBt). The company is a pioneer in Germany, offering innovative building elements made from 100% recycled natural stone substitutes, targeting construction firms and licensees interested in eco-friendly building solutions. The website is built on a modern WordPress platform with Elementor and Yoast SEO, ensuring good technical maturity and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and social media presence supporting business credibility.

A

ARWEI Bauzubehör GmbH

arwei.de

49

ARWEI Bauzubehör GmbH is a well-established German manufacturer specializing in high-quality recessed matting and floor mat systems since 1952. The company targets architects, planners, homeowners, and construction professionals, offering custom solutions and accessories. Their market position is strong with over 60 years of experience and recognized certifications such as TÜV and DGNB. Technically, the website is built on the Contao CMS platform, using modern JavaScript libraries and privacy-conscious Matomo analytics. The site is mobile-optimized with a clear navigation structure and cookie consent implemented via Klaro. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. WHOIS data aligns with the business claims, showing a consistent and legitimate domain registration. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

D

DGNB GmbH

dgnb-system.de

56

DGNB GmbH operates as a leading non-profit organization specializing in sustainability certification for buildings and urban districts, positioning itself as a global benchmark in sustainable building practices. The website provides comprehensive information about the DGNB certification system, its benefits, criteria, and processes, targeting professionals and organizations in the construction and real estate sectors. The company offers certification services, educational programs, and consulting to promote sustainable building standards. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics, and is hosted on agenturserver infrastructure, delivering a well-structured, mobile-optimized, and SEO-friendly user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and vulnerability disclosures are absent. Overall, the site reflects a mature digital presence with strong business credibility and trust indicators.

D

DGNB GmbH

dgnb-akademie.de

57

DGNB GmbH operates the DGNB Akademie, a central platform dedicated to education and certification in sustainable building and real estate management. The company offers a broad range of training programs, seminars, and certifications recognized nationally and internationally, targeting professionals in architecture, construction, and real estate sectors. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is hosted on agenturserver infrastructure, indicating a stable and modern setup. Security posture is strong with HTTPS enforced and secure login mechanisms, though some security headers could be improved. Overall, the site demonstrates high business credibility with clear contact information, trust signals like testimonials and certifications, and compliance with GDPR and cookie regulations. No blocking or WAF interference was detected, allowing full content accessibility.

Z

ZIA Zentraler Immobilien Ausschuss e.V.

zia-deutschland.de

45

ZIA Zentraler Immobilien Ausschuss e.V. is a leading German real estate industry association providing advocacy, events, publications, and networking services to stakeholders in the real estate sector. The website is professionally designed using WordPress with the Divi theme and integrates modern JavaScript libraries and Matomo analytics for user tracking. The site content is rich and relevant, targeting real estate professionals and policymakers. Security posture is good with HTTPS enforced, but lacks explicit security headers and incident response information. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is trustworthy and well-positioned in its industry.

K

Kaasuvalo Oy

kaasuvalo.fi

50

Kaasuvalo Oy is a Finnish retail company specializing in gas grills, cooking appliances, heating, and lighting products. Established in 2000 and owned by Scandinavisk Spismiljo AB, the company operates both an online e-commerce platform and a physical store in Vantaa, Finland. Their market position is that of a niche retailer with a focused product offering catering to consumers and businesses interested in gas and heating solutions. The website is built on Magento CMS, leveraging modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, indicating a mature digital infrastructure. Security measures include HTTPS, Google reCAPTCHA on forms, and a cookie consent mechanism, reflecting compliance with GDPR and good security hygiene. Overall, the website presents a professional and trustworthy front with clear contact information and comprehensive policies.

S

Société Française de Dermatologie

dermato-info.fr

51

Dermato-Info is the official public information website of the Société Française de Dermatologie, providing comprehensive, expert-reviewed dermatological information to the French-speaking general public. The site offers detailed content on skin diseases, treatments, prevention campaigns, and patient associations, positioning itself as a trusted leader in dermatology education in France. Technically, the website employs a modern but custom-built infrastructure with jQuery, Matomo analytics for privacy-conscious tracking, and SiteSearch360 for search functionality. The site is hosted via IONOS SE and uses HTTPS with good SSL configuration. Security posture is solid but could be enhanced by adding explicit cookie consent mechanisms, security headers, and published security policies. Business credibility is high due to clear affiliation with a reputable professional society, consistent branding, and institutional partnerships. Overall, the website is professional, trustworthy, and well-suited for its educational mission.

L

Liikenne- ja viestintävirasto Traficom

viestintavirasto.fi

74

Liikenne- ja viestintävirasto Traficom is a Finnish government agency responsible for ensuring smooth, safe, and sustainable transportation and communication services. It also promotes cybersecurity in Finland. The agency operates as a licensing, registry, and supervisory authority, serving both private individuals and businesses in sectors such as road traffic, maritime, aviation, and telecommunications. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support.

K

Kanta-Hämeen hyvinvointialue

omahame.fi

67

Kanta-Hämeen hyvinvointialue operates as the regional authority responsible for social and healthcare services as well as rescue services for the Kanta-Häme region in Finland. The website serves as a digital portal providing residents access to information, digital services including chat support, and electronic service login. The organization is a public sector entity with a clear regional focus and a comprehensive service offering tailored to local residents. The domain registration and website content align well, reinforcing the legitimacy and trustworthiness of the entity. Technically, the website is built on the Liferay platform, utilizing modern web technologies such as Bootstrap and FontAwesome for responsive design and user interface enhancements. It integrates analytics tools like Matomo and Siteimprove for performance and user behavior tracking, alongside search and chatbot services to improve user experience. The site demonstrates good mobile optimization and basic accessibility features, although there is room for improvement in accessibility compliance. From a security perspective, the website enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While explicit security policies and incident response information are not publicly available, the site does not expose sensitive data or show signs of vulnerabilities. The use of secure login portals and external trusted services for feedback and electronic transactions further strengthens its security posture. Overall, the website presents a professional, trustworthy, and user-friendly digital presence for a regional government healthcare provider. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility, and implementing a security.txt file to facilitate vulnerability disclosures.

M

Mainostoimisto, Markkinointitoimisto, Digimarkkinointi, Hämeenlinna

prosentti.fi

48

Prosentti is a small, agile digital marketing and design agency based in Hämeenlinna, Finland, specializing in visual design, marketing communications, open source web solutions, and business planning. The company targets local business clients seeking effective marketing and digital services. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on Joomla CMS with Yootheme and UIkit frameworks, incorporating Matomo analytics and Mautic marketing automation, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced but lacks DNSSEC and security headers, and no privacy or cookie policies are published, which are compliance gaps. Overall, the domain registration is consistent with a small business, though registrant details are minimal, slightly reducing transparency.

C

CzechTrade

bizinfo.cz

70

BusinessInfo.cz is an official Czech government-supported online portal providing comprehensive business information, guides, and export resources targeted at small and medium-sized entrepreneurs and exporters. The portal is managed by the Ministry of Industry and Trade of the Czech Republic and implemented by the CzechTrade agency, ensuring authoritative and ad-free content. The website offers a rich variety of content including articles, events, tenders, tools, and guides, supported by multimedia such as videos and podcasts. Technically, the site is built on WordPress with modern SEO and analytics integrations, including Google Analytics and Matomo, and employs security best practices such as HTTPS and Google reCAPTCHA for form protection. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting GDPR compliance. Despite the absence of publicly available WHOIS data, the website's official backing and consistent branding indicate high legitimacy. Overall, the site demonstrates a mature digital presence with strong content quality and security posture.

A

Allyspin Casino

allyspincasino.hu

52

Allyspin Casino is an online gambling platform targeting Hungarian adult players, offering a wide range of casino games and sports betting options. The site emphasizes a community feel, responsible gaming, and provides various bonuses and VIP benefits. Technically, the site uses modern web technologies including Matomo analytics and Google Fonts, and is optimized for desktop and mobile devices. Security posture is adequate with SSL encryption and responsible gaming policies, but lacks some advanced security headers and explicit incident response contacts. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site presents a professional and trustworthy gambling service with room for improvement in privacy and security transparency.

B

Buy Better Food

buybetterfood.eu

51

Buy Better Food is a Europe-wide coalition advocating for sustainable food procurement in public institutions such as schools, hospitals, and elderly care homes. The coalition comprises over 100 members and focuses on promoting healthy, environmentally friendly, and socially responsible food systems by 2030. The website serves as an information hub, campaign platform, and resource center for stakeholders interested in sustainable food policies. Technically, the website is built on Drupal CMS with modern JavaScript libraries such as jQuery and Slick Carousel. It employs privacy-conscious analytics via Matomo with Do Not Track and cookie disabling enabled. The site is mobile-optimized and presents content clearly with good navigation and professional design. From a security perspective, the site uses HTTPS with a good SSL configuration and avoids exposing sensitive data. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for compliance and enhanced security. No incident response or vulnerability disclosure information is published, which could be improved to strengthen trust. Overall, the website is trustworthy, professional, and aligned with its non-profit advocacy mission. It effectively communicates its goals and engages its audience through events, petitions, and media coverage. Strategic improvements in privacy compliance and security policies would further enhance its posture.

Q

Quattro Creative Studio

wearequattro.com

52

Quattro Creative Studio is a small creative agency specializing in ethical and sustainable design solutions, offering services ranging from brand strategy to print and digital design. The company targets businesses seeking to expand their brands with a focus on sustainability and ethical passion. The website reflects a modern and professional design, built using contemporary technologies such as Nuxt.js and Tailwind CSS, hosted by OVH sas. The technical infrastructure is moderately optimized for performance and mobile responsiveness, with basic accessibility features. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website is trustworthy and professional but could improve transparency and security practices.

S

Société Française de Dermatologie

sfdermato.org

53

The Société Française de Dermatologie (SFD) is a well-established French non-profit professional society dedicated to promoting dermatology research, education, and public health. With over 130 years of history and more than 2400 members, it serves medical professionals, researchers, and patients by providing educational resources, funding opportunities, and organizing congresses. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design consistent with its mission. Technically, the site employs a modern tech stack including Bootstrap, jQuery, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, some security best practices such as security headers and explicit security policies are missing, which could be improved to enhance the security posture. From a security perspective, the site shows good privacy compliance with GDPR-aligned cookie consent and anonymized analytics. No vulnerabilities or suspicious activities were detected. The absence of WHOIS data limits domain trust analysis, but the professional content and certifications like HONcode support legitimacy. Overall, the site is a trustworthy and authoritative resource in the dermatology field, with recommendations to improve security headers, publish security policies, and clarify domain registration data to further strengthen trust and compliance.

Häme Events is a regional event listing platform operated by Hämeen Maakuntaliitto, a Finnish regional government entity. The website provides a searchable calendar of events in the Kanta-Häme region and offers an open API for integrating event data into other services. The platform targets residents and visitors interested in local events, supporting community engagement and regional promotion. The business model centers on providing free access to event information and facilitating event submissions. Technically, the website uses a custom-built platform with modern JavaScript libraries such as jQuery, Semantic UI, and various UI enhancement plugins. It integrates multiple analytics services including Google Analytics, Matomo, and Facebook SDK. Hosting appears to be on Amazon AWS infrastructure, indicated by the AWS nameservers. The site is mobile optimized and has basic SEO and accessibility features, though content quality is minimal and mostly functional. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers like Content-Security-Policy and X-Frame-Options, and does not provide privacy or cookie policies, which impacts GDPR compliance. No contact emails or phone numbers are visible on the site, limiting user support and incident response transparency. The WHOIS data confirms the domain is registered to the regional government organization, with consistent registration details and no privacy protection, supporting legitimacy. Overall, the website is a functional regional event platform with moderate technical maturity and a solid legitimacy profile. Security and privacy compliance can be improved by adding policies, security headers, and contact information. Enhancing content richness and user engagement features would also increase value and trust.

W

WP-Ensure Ltd.

wpensure.com

67

WP-Ensure Ltd. is a Finland-based small technology company specializing in website security, maintenance, and optimization services primarily for WordPress websites. Established in 2014, the company offers subscription-based solutions including comprehensive website audits and a continuous protection platform. Their market position is that of a niche provider focused on delivering technical excellence and security to solopreneurs, small businesses, and enterprises. The website is professionally designed, mobile-optimized, and demonstrates consistent branding with clear navigation and relevant content. Technically, the site runs on WordPress 6.8.1 with modern libraries like jQuery and uses Cloudflare for DNS and security, alongside Matomo for privacy-conscious analytics. The hosting partner is UpCloud, indicating a robust infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though DNSSEC is not enabled and security policies are not publicly documented. Privacy compliance is good with a comprehensive privacy policy and GDPR adherence, but lacks a cookie consent mechanism. Overall, the domain registration data is consistent and supports the legitimacy of the business. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, adding cookie consent, and enhancing security headers to further strengthen the security posture.

V

Vegane Gesellschaft Österreich

vegan.at

54

Vegane Gesellschaft Österreich is a well-established non-profit organization dedicated to promoting vegan and plant-based nutrition in Austria. The website serves as an educational and community platform offering resources such as events, recipes, nutritional information, and advocacy tools. It holds a strong market position as a leading vegan society in Austria with a consistent brand presence and active social media engagement. Technically, the site is built on Drupal 7 with modern JavaScript libraries and analytics tools like Matomo and Google Tag Manager, reflecting a mature digital infrastructure. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks some advanced security headers and explicit incident response information. Overall, the site demonstrates a high level of trustworthiness and compliance with GDPR, making it a credible and safe resource for its audience.

B

BizBudding Inc.

bizbudding.info

64

BizBudding Inc. operates the website bizbudding.info, which hosts a Matomo analytics platform login page. The site is primarily intended for administrators or users of the Matomo analytics service, providing access to web analytics data. The business appears to be a small technology entity founded in 2019, focused on providing or managing analytics services. The website content is minimal, centered on login functionality, with no public-facing business descriptions or marketing content. The technical infrastructure leverages Matomo analytics software, hosted behind Cloudflare, with HTTPS enabled but lacking DNSSEC and visible security headers. Privacy and cookie policies are absent, indicating limited compliance transparency. Security posture is moderate with room for improvement in headers and policy disclosures. Overall, the site is functional but basic in design and content, with moderate trustworthiness based on WHOIS data consistency.

D

Didaktikon

didaktikon.cz

63

Didaktikon is an educational and popularization center affiliated with Charles University in the Czech Republic, established in 2021. It offers science exhibitions and workshops primarily targeting school children, teachers, and the general public interested in science education. The website reflects a well-structured and professionally branded presence consistent with its academic partnerships and mission. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Matomo analytics, hosted likely on university infrastructure. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks published security policies and security headers. Privacy compliance is basic with no explicit privacy policy found on the main page. Overall, the site is safe, accessible, and trustworthy for its intended audience.

D

Dům dětí a mládeže hlavního města Prahy

ddmpraha.cz

44

Dům dětí a mládeže hlavního města Prahy is a well-established public institution founded in 1998, providing educational and leisure activities for children and youth in Prague. The organization operates multiple branches offering clubs, camps, events, rentals, and educational programs, targeting children, youth, parents, and educators. It is funded and overseen by the city of Prague, positioning it as a key local educational service provider with a strong community presence. Technically, the website employs a modern tech stack including Bootstrap, jQuery, FontAwesome, and Matomo analytics, ensuring a responsive and user-friendly experience. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting and domain registration are consistent and reliable, managed by REG-GRANSY since 1998. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, explicit security headers and incident response policies are not publicly visible, indicating room for improvement in security posture. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. Overall, the website is professional, trustworthy, and safe for general audiences, with no adult or questionable content. The domain's long history and consistent WHOIS data reinforce its legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility and SEO to further strengthen the site's digital maturity and compliance.

H

Hämeenlinnan kaupunki

hameenlinnantaidemuseo.fi

67

Hämeenlinnan taidemuseo is a municipal art museum located in Hämeenlinna, Finland, operated by the city government. The museum offers a diverse range of visual art exhibitions, events, educational programs, and retail services, targeting the general public, art enthusiasts, and tourists. The website reflects a well-established regional cultural institution with a clear focus on accessibility and community engagement. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for consent management, and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration aligns with the municipal ownership, confirming legitimacy and trustworthiness.

Hämeenlinnan kaupungin museo operates as a regional cultural heritage museum in Finland, managing multiple museum sites including Museo Skogster, Sibelius's birthplace, Palanderin talo, and the Savings Bank Museum. The institution targets general public audiences interested in history, culture, and regional heritage, offering exhibitions, events, educational programs, and a museum shop. The website reflects a well-maintained digital presence with multilingual support and clear navigation. Technically, the website is built on WordPress 6.8.1, utilizing standard plugins such as Cookie Law Info for GDPR compliance and Matomo for analytics. Hosting and DNS services leverage Cloudflare, providing CDN and security benefits. The site demonstrates good mobile optimization, accessibility, and SEO practices, though some security headers are missing. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks published privacy policy and terms of service pages, which are recommended for full compliance and transparency. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain is legitimately registered to the museum organization with consistent details. Overall, the website is trustworthy, professionally managed, and compliant with basic privacy regulations. Strategic improvements include publishing comprehensive privacy and security policies, enhancing security headers, and adding vulnerability disclosure information to strengthen trust and compliance.

K

Kulttuurikeskus ARX

kulttuurikeskusarx.fi

65

Kulttuurikeskus ARX is a municipal cultural center based in Hämeenlinna, Finland, focused on providing cultural services and events primarily for children, youth, and families. The website serves as a hub for information about their activities, exhibitions, festivals, and youth programs, positioning itself as a key local cultural institution. The business is affiliated with the city of Hämeenlinna, reinforcing its legitimacy and public service orientation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot, indicating a mature digital infrastructure. Analytics are handled via Matomo and Google Analytics, with clear cookie consent mechanisms in place, reflecting good privacy practices. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, with no signs of blocking or WAF interference.

H

Hämeenlinnan Liikuntahallit Oy

liikuntahallit.fi

71

Hämeenlinnan Liikuntahallit Oy is a municipally owned limited company operating under the city of Hämeenlinna, Finland. It provides a broad range of sports and recreational services including management of swimming halls, sports halls, gyms, ice rinks, and related facilities. The company targets local residents, sports clubs, and community groups, positioning itself as a key municipal service provider in the sports sector. The website reflects a professional and consistent brand presence with clear navigation and relevant content for its audience. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for privacy compliance. Analytics are handled primarily through Matomo, ensuring privacy-conscious data collection. The site is mobile optimized and accessible, with good SEO practices implemented. However, some plugins like MonsterInsights are installed but not configured, indicating room for technical refinement. From a security perspective, the site enforces HTTPS and uses a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a publicly available security policy or incident response contact reduces transparency in security governance. The site would benefit from adding security headers and formalizing its security posture. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements. It serves its municipal function effectively with a moderate security maturity level. Strategic improvements in security policy publication and analytics configuration would enhance its posture further.

J

Jätelautakunta Kolmenkierto

kolmenkierto.fi

67

Jätelautakunta Kolmenkierto is a Finnish governmental waste management authority serving 13 municipalities. The organization provides regulatory oversight and services related to waste management, including waste fees, composting notifications, and waste regulations. The website is professionally designed, targeting residents and municipal stakeholders within its service area. It operates under the parent organization Hämeenlinnan kaupunki and maintains a consistent brand presence online. Technically, the website is built on WordPress CMS with modern plugins such as Yoast SEO and Cookiebot for privacy compliance. It uses Matomo analytics to respect user privacy and implements HTTPS with good SSL configuration. The site is mobile-optimized and accessible, with good SEO practices in place. From a security perspective, the site enforces HTTPS and cookie consent but lacks a dedicated security policy or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear cookie categories and GDPR adherence. The domain registration aligns well with the website's governmental nature, enhancing trustworthiness. Overall, the website presents a low-risk profile with good privacy and security practices. Strategic recommendations include publishing a security policy, adding incident response contacts, and enhancing security headers to further strengthen the security posture.

M

MyIntegration

myintegration.fi

48

MyIntegration is a Finnish-based company with an online presence focused on integration services, as indicated by the website title and branding. The website is built on WordPress and employs a modern technology stack including popular plugins such as Yoast SEO, Smart Slider 3, and Cookiebot for cookie consent management. The site supports multiple languages, indicating a target audience that is international or multilingual. The business appears to be small-sized with a consistent brand image and a moderate level of trust signals, including a Facebook social media presence. Technically, the website is well-structured with proper SEO meta tags and uses HTTPS with an excellent SSL configuration. The use of Matomo analytics shows a commitment to privacy-friendly tracking. However, the site lacks visible security headers and does not publish a privacy policy or terms of service, which are important for compliance and user trust. No direct contact information is found on the homepage, which may affect user confidence. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. There are no visible vulnerabilities or exposed sensitive data. The absence of a security policy and incident response contacts suggests room for improvement in security transparency and readiness. Overall, the website is functional, moderately secure, and privacy-conscious but would benefit from enhanced compliance documentation and clearer contact information to improve trust and professionalism.

O

Oulun yliopisto

oulu.fi

75

Oulun yliopisto is a large, internationally active research university based in Finland, providing higher education and producing scientific knowledge and solutions. The website reflects a mature digital presence built on Drupal 10, integrating modern analytics and consent management tools such as Google Analytics, Matomo, and CookieInformation. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is strong with HTTPS enforced and Cloudflare used for hosting and protection, although explicit security policies and incident response contacts are not published. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the domain registration and website content are consistent and trustworthy, representing a legitimate educational institution.

L

Luxinnovation

luxinnovation.lu

79

Luxinnovation is Luxembourg's national innovation agency dedicated to empowering companies to innovate and fostering a sustainable and digital economy. The website reflects a mature digital presence with comprehensive content targeting startups, businesses, and research organizations. The technical infrastructure leverages modern web technologies, including Tailwind CSS, Alpine.js, Kentico CMS, and integrates multiple analytics and marketing tools such as Matomo, Google Tag Manager, Facebook Pixel, and LinkedIn Insight. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is partial, with cookie consent implemented but lacking a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

N

National Library of Finland (University of Helsinki)

finna.fi

69

Finna.fi is a Finnish national search portal operated by the National Library of Finland under the University of Helsinki. It aggregates cultural heritage, scientific, and educational materials from archives, libraries, museums, and other institutions, providing a comprehensive resource for researchers, educators, and the general public. The website is well-established since 2012 and holds a strong market position as a trusted government/non-profit service. Technically, the site uses modern frameworks such as VuFind and Solr, with Cloudflare DNS and Matomo analytics, ensuring fast performance, mobile optimization, and good accessibility. Security posture is strong with HTTPS, nonce-based CSP, and cookie consent mechanisms, though DNSSEC is not implemented and no explicit security policy or incident response contacts are published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.