High-risk security reports

W

WENK Immobilien

wenk-immobilien.de

48

WENK Immobilien is a well-established real estate company based in Kaiserslautern, Germany, with a history dating back to 1958. The company offers comprehensive real estate services including buying, selling, renting, and property management, with a focus on personalized customer care and a strong local network. Their website reflects a professional and consistent brand image, targeting local residents and businesses seeking real estate solutions. Technically, the website is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and secure form handling, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy and compliant with GDPR, though cookie consent mechanisms could be enhanced.

J

JCT Childrens Foundation

jctchildrensfoundation.org

45

The John C Thomas Children's Foundation is a well-established non-profit organization dedicated to supporting orphaned and vulnerable children in Malawi. Their services include providing shelter, nutrition, sanitation, clean water, education, and awareness programs on HIV/AIDS and Cholera. The foundation has a strong market position with over 20 years of operational history and a medium-sized reach, supported by a consistent brand and active social media presence. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPBakery, offering good mobile optimization and SEO practices. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers, and no explicit privacy or cookie policies, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

T

The Bridge Cafe

bridgecafecheltenham.co.uk

44

The Bridge Café is a small hospitality business located in Cheltenham, UK, offering lunch and light dining options with a focus on locally sourced ingredients and fresh preparation. The website presents a professional and consistent brand image, targeting local residents and visitors seeking quality café services. The business leverages social media and online delivery platforms such as Deliveroo to extend its reach. Technically, the website is built on WordPress with popular plugins like Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity. The site is mobile optimized and includes SEO best practices, although accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and incident response transparency. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced compliance and security measures.

A

Apple Orchard Campsite & Tea Room

appleorchardcampsite.co.uk

47

Apple Orchard Campsite & Tea Room is a small, independent family-run hospitality business offering caravan and camping pitches, luxury wooden pods, and an on-site tea room located in the Forest of Dean, UK. The website is professionally designed using WordPress with modern plugins such as Yoast SEO and Slider Revolution, providing a good user experience and mobile optimization. The business maintains a strong local presence with active social media channels and customer testimonials, enhancing credibility. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though additional security headers and policies could improve resilience. Privacy compliance is well addressed with a comprehensive cookie and privacy policy. Overall, the website reflects a trustworthy and mature digital presence suitable for its business size and sector.

Ecornet is a German non-profit network of eight independent environmental and sustainability research institutes focused on shaping societal transformation towards sustainability. The website presents a professional and comprehensive digital presence, including detailed information about their mission, member institutes, events, and publications. The site is built on TYPO3 CMS and uses Matomo for privacy-conscious analytics. It features a robust cookie consent mechanism compliant with GDPR requirements. Security posture is good with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. WHOIS data is unavailable due to EURid privacy policies, but the website's professionalism and transparency support its legitimacy. Overall, Ecornet demonstrates a mature digital infrastructure suitable for its research and advocacy mission.

A

ADM Global

adm.uz

47

ADM Global is a medium-sized automotive group based in Uzbekistan, specializing in distribution, local manufacturing, sales, warranty and post-warranty services, logistics, leasing, and the sale of original spare parts and accessories. The company maintains a professional online presence with a well-structured website targeting regional customers and partners. The technical infrastructure includes modern tools such as Yandex Maps and Yandex Metrika for analytics and mapping, with Cloudflare DNS services enhancing reliability. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and visible privacy or cookie policies, indicating room for improvement in compliance and security transparency. Overall, the website is functional, professional, and trustworthy, but would benefit from enhanced privacy compliance and security best practices.

DF1 is a German media website offering documentaries, reportages, magazines, quiz shows, weather updates, and live sports including MotoGP, PENNY DEL, Formel-E, tennis, sailing, and football. The site targets a general audience interested in diverse media content and live sports coverage. The business model appears to be content streaming and broadcasting, with a focus on entertainment and sports media. The website uses modern web technologies such as Nuxt.js and Vue.js, built on a WordPress CMS backend, indicating a moderate level of digital maturity. Performance and mobile optimization are basic but functional. From a security perspective, the site implements a cookie consent mechanism with GDPR considerations, but lacks visible privacy policies, terms of service, or security headers. SSL configuration details are not provided, and no contact or incident response information is available. Google Analytics is used for user tracking at a moderate level. The absence of critical security issues is positive, but improvements are needed in security best practices and transparency. Overall, the website is accessible and safe for general audiences, with no adult or explicit content detected. The domain WHOIS data is consistent with a legitimate German media site, though limited registrant details are available. The site scores moderately on content quality, technical implementation, security posture, privacy compliance, and business credibility, resulting in an overall AI score of 66 out of 100.

C

Chemie Altersvorsorge

chemie-altersvorsorge.de

49

Chemie Altersvorsorge is a specialized organization providing tariff-based occupational pension schemes for employees in the German chemical industry. Their website offers detailed information about the benefits of additional retirement provisions beyond the statutory pension, emphasizing tax advantages and employer contributions. The site is well-positioned within its niche, supported by reputable partners such as BAVC and IGBCE, enhancing its credibility and market presence. Technically, the website is built on a modern WordPress platform with Elementor and Yoast SEO, ensuring good performance, mobile optimization, and SEO readiness. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving its target audience effectively.

I

Initiative Neue Qualität der Arbeit (INQA)

inqa.de

46

The Initiative Neue Qualität der Arbeit (INQA) is a German government-backed initiative focused on supporting small and medium-sized enterprises (KMU) in developing sustainable and future-oriented workplace cultures. The website serves as a comprehensive resource hub offering coaching, checks, networking, and publications to promote quality work environments. It is positioned as a trusted government entity under the Bundesministerium für Arbeit und Soziales (BMAS), leveraging official branding and partnerships. Technically, the website employs a government site builder CMS, integrates a consent management platform for GDPR compliance, and uses Etracker for analytics. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers are missing. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site demonstrates good practices with HTTPS and consent mechanisms but lacks explicit security policies, incident response contacts, and some security headers. WHOIS data is minimal but does not raise immediate concerns. Overall, the site is safe, professional, and trustworthy, with room for improvement in transparency and security hardening. The overall risk is low, but strategic recommendations include publishing privacy and security policies, adding security headers, and providing clear contact information for security incidents to enhance trust and compliance.

C

Chemiehoch3

chemiehoch3.de

47

Chemiehoch3 is a German sustainability initiative focused on the chemical industry, providing information, news, publications, and event organization to promote sustainable practices. The website is built on TYPO3 CMS and hosted via plusline.de, featuring a professional and consistent design optimized for mobile devices. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are critical for compliance and trust. No WAF or blocking mechanisms were detected, allowing full content access. The security posture is basic, with room for improvement in SSL configuration and security best practices. Overall, the site serves its informational purpose well but should enhance compliance and security measures to improve trust and user confidence.

D

Deutscher Bauernverband e.V.

bauernverband.de

49

The Deutscher Bauernverband e.V. (DBV) is a prominent German agricultural association representing farmers' interests. The website serves as an information hub offering agripolitical positions, publications, event calendars, and thematic dossiers targeting farmers, policymakers, and stakeholders in the agricultural sector. The site is built on a modern TYPO3 CMS platform with Bootstrap and common JavaScript libraries, ensuring good mobile responsiveness and user experience. Security posture is solid with HTTPS enforced and a GDPR-compliant cookie consent mechanism, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-aligned with its non-profit government-related mission.

Kuratorium der Deutschen Wirtschaft für Berufsbildung e.V. (KWB) is a German non-profit organization focused on coordinating and representing the interests of the economy in vocational education. The website serves as an informational and organizational platform presenting their key services such as vocational education policy, coordination of training regulations, and public relations activities. The target audience includes economic stakeholders, vocational education experts, and member organizations. The site is professionally designed with consistent branding and clear navigation, supporting a medium-sized organizational profile within the education sector in Germany. Technically, the website is built on TYPO3 CMS with jQuery, employing compressed CSS and JavaScript assets for performance. It is mobile-optimized and accessible at a basic level. No advanced analytics or tracking technologies are detected, and the site uses HTTPS with basic SSL configuration. However, security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates a moderate posture with HTTPS and cookie consent mechanisms in place but lacks advanced security headers and vulnerability disclosure information. No critical vulnerabilities or suspicious patterns were detected. WHOIS data aligns with the website's professional nature, showing consistent domain registration and hosting. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, though improvements in security headers and transparency around security policies could enhance its posture. No adult or questionable content is present, making it safe for general audiences.

V

Virtual Minds GmbH

yieldlab.com

41

Virtual Minds GmbH is a reputable European adtech company specializing in programmatic advertising solutions for publishers, broadcasters, agencies, and advertisers. As a 100% subsidiary of ProSiebenSat.1 Media SE, it holds a strong market position with a modular full-stack offering including enterprise marketing platforms, DSPs, DMPs, SSPs, and media management tools. The company targets B2B clients in the digital advertising ecosystem, emphasizing premium technology made in Europe. The website reflects a professional and consistent brand image with good content quality and clear messaging.

D

digris Ltd

digris.uk

39

Digris Ltd is a specialized Anglo-Swiss network operator providing DAB+ broadcasting services primarily in the United Kingdom, Switzerland, and France. The company offers a comprehensive suite of services including service planning, encoding, multiplexing, transmission, and monitoring, targeting radio stations and broadcasters. Their market position is that of a niche player with a strong technical focus and membership in industry bodies such as WorldDAB. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website employs modern web technologies including Vue.js, Google Analytics, and DigitalOcean hosting for media assets. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but no cookie consent mechanism is present. The security posture is good but could be enhanced by implementing additional HTTP security headers, publishing incident response and vulnerability disclosure policies, and improving GDPR cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected. The WHOIS data is unavailable due to domain registration issues with the 'www.digris.uk' domain, which appears to be a subdomain or alias rather than a registered domain, slightly reducing trust but not undermining the legitimacy of the business. Overall, the website and business present a trustworthy and professional front with moderate technical maturity and good security hygiene. Strategic improvements in privacy compliance and security transparency would further strengthen their position.

D

digris AG

digris.fr

41

Digris AG is a specialized company providing comprehensive services in the digital radio broadcasting sector, particularly focusing on DAB+ technology. They offer a full range of services including site studies, installations, supervision, and development of digital radio platforms. The company operates multiple local and national multiplexes primarily in France and Switzerland, positioning itself as a key regional player in digital radio infrastructure. Their website reflects a professional and consistent brand image with clear contact information and active social media presence. From a technical perspective, the website employs modern web technologies such as Vue.js and integrates analytics tools like Google Analytics and Google Tag Manager. Hosting appears to be on DigitalOcean, and the site is mobile-optimized with good user experience. However, there is room for improvement in SEO and accessibility features. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating potential compliance and security posture gaps. The absence of WHOIS data limits the ability to fully verify domain legitimacy and registration details, which slightly reduces trustworthiness. Nonetheless, the professional presentation and detailed contact information support the legitimacy of the business. Overall, the site is safe, with no adult or questionable content detected, and serves a general audience interested in digital radio broadcasting solutions.

N

Nemzeti Média- és Hírközlési Hatóság

onlineplatformok.hu

43

The website onlineplatformok.hu is the official digital services coordinator portal of the Hungarian National Media and Infocommunications Authority (NMHH). It serves as a comprehensive resource for regulatory information, research, and educational content related to online platforms and the Digital Services Act (DSA). The site targets a broad audience including the general public, researchers, policymakers, and digital platform users in Hungary. It provides authoritative content on digital rights, platform governance, and safe online practices. Technically, the website employs modern web standards with HTML5, CSS3, and JavaScript, including integration of Google Analytics with IP anonymization and Spotify embeds. The site is hosted by NMHH and demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response information are not published, and security headers are not explicitly detected. No vulnerabilities or suspicious elements were found, indicating a solid security posture appropriate for a government informational site. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively fulfills its role as a government portal providing transparency and education about online platforms. Strategic recommendations include publishing detailed security policies, enhancing security headers, and considering a vulnerability disclosure policy to further strengthen trust and security posture.

P

Plasztikgyár

plasztikgyar.hu

44

Plasztikgyár.hu is a Hungarian-based manufacturing company specializing in the production of plastic cards, recycled plastic cards, card holders, and custom lanyards. Established since 2009, the company serves a broad B2B audience with over 10,000 business clients, offering personalized and premium-quality products. Their website reflects a professional and consistent brand image with a focus on quality and customer satisfaction. Technically, the site uses modern frameworks such as Yii and Bootstrap, integrates multiple analytics and marketing tools, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site is well-structured, user-friendly, and trustworthy.

A

Adathordozok.hu

adathordozok.hu

45

Adathordozok.hu is a Hungarian company specializing in professional printing and promotional product services, including CD/DVD duplication, custom USB drives, powerbanks, and branded audio products. Established in 2004, the company has a strong market presence with over 15 years of experience, serving multinational corporations, musicians, and SMEs. Their business model focuses on B2B and B2C online sales supported by a proprietary production facility and extensive inventory, enabling fast delivery and competitive pricing. The website reflects a mature digital presence with clear branding and customer trust signals such as testimonials and social media engagement. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Analytics, with a custom or Yii-based CMS platform. The site is mobile-optimized and SEO-friendly, providing a good user experience.

Szentiras.hu is a Hungarian non-profit website operated by Iron Illustration Kft., dedicated to providing online access to multiple Bible translations and daily scripture verses for the Hungarian-speaking Christian community. The site serves as a religious educational resource with a clear focus on scripture study and community engagement through features like a message board. The business model is informational and non-commercial, targeting a niche religious audience in Hungary. Technically, the website employs a modern tech stack including Bootstrap 5.2.3 and custom JavaScript, with a responsive design optimized for mobile devices. The site uses HTTPS with a valid SSL configuration and includes a cookie consent mechanism, reflecting a moderate level of digital maturity. However, no CMS or advanced analytics tools are detected, and some security headers are missing, indicating room for improvement in security hardening. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the website's claims, showing a recently registered domain without privacy protection, which supports legitimacy. Overall, Szentiras.hu presents a trustworthy, well-structured, and content-rich platform for its target audience. Strategic recommendations include enhancing security headers, publishing security policies, and considering vulnerability disclosure to improve trust and compliance further.

The website panthermedia.com is currently inaccessible due to a security block imposed by the Wordfence plugin, which restricts access from certain areas for security reasons. The domain is well-established, registered since 1999 with GoDaddy.com, LLC, indicating a mature online presence. However, the current page content is limited to a security block message with no visible business or contact information, policies, or marketing content. The technical infrastructure includes WordPress CMS with Wordfence security plugin, hosted under GoDaddy's registrar services. Due to the block, a full assessment of the website's content quality, user experience, and compliance posture is not possible. The security posture is partially observable, showing active use of Wordfence but lacking DNSSEC and visible security headers. Overall, the site appears legitimate but currently inaccessible for detailed analysis.

V

Home

vhu.de

44

The website www.vhu.de is a German-language site built on the Contao Open Source CMS platform. It integrates modern consent management tools such as Usercentrics and analytics platforms including Matomo and Google Tag Manager, indicating a moderate level of digital maturity. However, the site lacks visible privacy policies, terms of service, and explicit contact information, which limits its transparency and compliance posture. The technical infrastructure appears standard with no detected WAF or blocking mechanisms, and the site is accessible without security challenges. Security practices are basic, with no security headers detected and no vulnerability disclosure mechanisms in place. Overall, the site presents a moderate risk profile primarily due to missing compliance documentation and limited business information.

The Chambre Nationale des Services d’Ambulances (CNSA) operates as a professional association representing ambulance services in France, providing legal, HR, training, and advocacy support to its members. The website is well-structured, content-rich, and targets ambulance professionals and related stakeholders. Technically, the site is built on WordPress with common plugins and uses HTTPS, but lacks some advanced security headers and explicit privacy policies. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or data unavailability, which slightly impacts trustworthiness. Overall, the site demonstrates a moderate to good digital maturity with room for security and compliance improvements.

C

Centigrade GmbH

centigrade.de

48

Centigrade GmbH is a medium-sized German technology company specializing in human-centered IT solutions, focusing on digital product development, UX design, software engineering, and AI integration. The company serves business clients seeking to enhance user experience and digital transformation success. Their website reflects a mature digital presence with comprehensive service descriptions, client references, and industry awards, positioning them as a reputable player in the UX and software engineering consultancy market. Technically, the website employs a modern tech stack including jQuery, lazy loading, Google Analytics with privacy features, and a consent management platform (Usercentrics). The site is mobile-optimized, accessible, and SEO-friendly, though it appears to use a custom or proprietary CMS. Performance is moderate, with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS, uses consent management for GDPR compliance, and implements form validation with required privacy consent. However, it lacks explicit security policies, incident response information, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture but with room for improvement in transparency and security headers. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security documentation and incident response readiness are recommended to further strengthen trust and compliance.

T

Tiroler Bildungsforum

tiroler-bildungsforum.at

48

Tiroler Bildungsforum is a well-established non-profit organization focused on providing affordable educational and cultural services to communities in Tirol, Austria. It supports over 500 volunteers organizing approximately 1,800 events annually, serving around 35,000 participants across 220 municipalities. The organization offers a broad range of initiatives including adult education, archival services, environmental programs, and community workshops. Their market position is strong regionally as a leader in adult education and cultural engagement. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience of local communities and educational volunteers. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and jQuery, incorporating plugins for event management, contact forms, and PDF flipbooks. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site uses HTTPS with valid SSL certificates and integrates reCAPTCHA for form protection. However, it lacks visible security headers and does not publish a security policy or incident response contacts. GDPR compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the security posture is adequate but could be enhanced with additional policies and technical controls. The overall risk is low given the organization's non-profit nature and transparent operations. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers and accessibility. These improvements will strengthen compliance, user trust, and resilience against potential threats.

ASVÖ Tirol operates a dedicated online submission portal for associations registered in Tirol, Austria, facilitating official data reporting primarily via ZVR number verification. The website is a focused service platform with minimal content but clear purpose, targeting regional non-profit associations. The technical infrastructure relies on a classic web stack with Bootstrap and jQuery, though some libraries are outdated, indicating moderate digital maturity. Security posture is adequate with HTTPS enforced and form validation implemented, but lacks modern security headers and cookie consent mechanisms, which are important for GDPR compliance. Overall, the site is trustworthy and legitimate but could benefit from enhanced security and privacy features to improve compliance and user trust.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

bundeswaldinventur.de

45

The Bundeswaldinventur website is an authoritative German government-affiliated portal providing detailed forest inventory data and modeling for sustainable forest management. It serves forestry professionals, policymakers, researchers, and the public with comprehensive reports, seminars, and multimedia content. The site is well-branded and professionally maintained, reflecting its role as a trusted source of forestry information. Technically, it is built on TYPO3 CMS with modern JavaScript libraries and integrates Matomo analytics with privacy-conscious settings. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site demonstrates a mature digital presence with high trustworthiness and compliance with GDPR, supporting its mission to inform and guide forest-related policy and research in Germany.

W

World Vision Schweiz und Liechtenstein

myworldvision.ch

47

World Vision Schweiz und Liechtenstein operates as a humanitarian non-profit organization focused on child welfare and development aid. The website myWorldVision.ch serves as a portal for donors and sponsors, providing login access, donation links, and contact information. The organization holds a reputable market position within Switzerland's NGO sector, targeting individuals and entities interested in supporting children and humanitarian causes. Technically, the site is built on TYPO3 CMS with modern web technologies including Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Visual Website Optimizer. Security measures include HTTPS enforcement and RSA encryption for login forms, though explicit security policies and headers are lacking. Privacy compliance is indicated by cookie consent mechanisms and links to comprehensive privacy policies on the main domain. Overall, the site is professional, trustworthy, and aligned with its non-profit mission.

S

Stadt. Land. Niederrhein

stadt-land-niederrhein.de

48

Stadt. Land. Niederrhein is a regional tourism and cultural information website focused on the Niederrhein area in Germany. It provides visitors with culinary offers, cultural events, and regional attractions, targeting a general audience interested in tourism and local culture. The website is multilingual, supporting German, English, and Dutch, enhancing accessibility for international visitors. The business model centers on promoting regional tourism and culture, positioning itself as a key information portal for the Niederrhein region. The site uses WordPress CMS with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, multilingual support, and social media integration. Hosting is provided by kasserver.com, a professional hosting provider.

D

Die Sanierungsoffensive

sanierungs-offensive.de

48

Die Sanierungsoffensive is a German-based energy sector company specializing in providing comprehensive home renovation services focused on energy efficiency and sustainability. The company offers a digital Sanierungsrechner (renovation calculator) to help customers plan and estimate costs for modernizing heating, ventilation, sanitation, electrical installations, photovoltaics, and e-mobility solutions. Backed by the House of Energy GmbH, a medium-sized enterprise with multiple locations and a strong market presence, the website reflects a professional and well-structured digital platform supporting customer engagement and project management. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is partial due to missing explicit privacy policy and terms of service pages. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

H

Henkel AG & Co. KGaA

henkel-renntag.de

41

Henkel AG & Co. KGaA operates the website www.henkel-renntag.de to promote and provide information about its sponsorship of horse racing events, specifically the Henkel-Stutenpreis and the Henkel-Preis der Diana at the Düsseldorf-Grafenberg racecourse. The site targets horse racing enthusiasts and the general public interested in these events. The business model focuses on brand visibility through sports sponsorship, positioning Henkel as a key player in this niche market segment. The website is well-branded, professionally designed, and provides relevant content about the events and related partners.

D

Debreceni Szakképzési Centrum

dszc.hu

48

Debreceni Szakképzési Centrum is a prominent vocational education institution based in Debrecen, Hungary, founded in 2015. It offers a wide range of vocational and professional training programs tailored to meet the needs of the local economy and various age groups. The institution operates multiple schools and collaborates with dual corporate partners to provide practical training opportunities. The website reflects a well-structured and modern digital presence, utilizing contemporary web technologies such as React, Next.js, and Chakra UI, ensuring good performance and accessibility. However, the absence of explicit privacy and cookie policies indicates a gap in compliance with data protection regulations. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the lack of security headers and incident response information suggests room for improvement. Overall, the website is professional, trustworthy, and serves its educational mission effectively.

T

Tiszántúli Református Egyházkerület

ttre.hu

40

The Tiszántúli Református Egyházkerület website serves as the official online presence of a Hungarian regional Reformed Church district. It provides comprehensive information about church activities, news, tourism, and spiritual resources targeted primarily at Hungarian-speaking church members and the broader community interested in religious heritage. The site is well-branded and consistent with its organizational identity, featuring clear contact details and a GDPR-compliant cookie consent mechanism. Technically, the website employs a custom CMS with common JavaScript libraries such as jQuery and Alertify.js, and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It lacks advanced security documentation but does not exhibit any critical vulnerabilities or suspicious behavior. The domain WHOIS data aligns well with the organizational identity, supporting legitimacy and trustworthiness.

N

Netnyomda.hu

netnyomda.hu

45

Netnyomda.hu is a well-established Hungarian online printing service provider founded in 2009. The company offers a wide range of printing products including business cards, flyers, plastic cards, envelopes, paper bags, stickers, calendars, advertising technology products, and textile printing. With a large team and modern production technology, they serve both individual and business customers primarily in Hungary. The website demonstrates a mature digital presence with modern technologies such as Bootstrap 5, jQuery, and Yii2 framework, and integrates multiple marketing and analytics tools while maintaining GDPR compliance through cookie consent and privacy policies. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

D

Debrecen 2030

d2030.hu

41

Debrecen 2030 is a municipal urban and economic development program managed by the Municipality of Debrecen, Hungary. The website serves as an official communication platform to inform residents and stakeholders about ongoing and completed development projects, news, and media related to the program. The site targets local citizens and government stakeholders interested in city development and infrastructure improvements. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, and various UI libraries, with a custom or unknown CMS backend. It implements GDPR-compliant consent management via InMobi's CMP and uses Google Analytics for visitor tracking. However, explicit privacy policies and terms of service are not found, and no advanced security headers are detected, indicating room for improvement in security posture. The website is accessible without WAF or blocking mechanisms and presents a professional and trustworthy image consistent with an official government program.

D

DAB+

dabsy.ch

49

The website dabsy.ch/login is a minimal login page titled 'DAB+'. It appears to be a user authentication portal with no publicly available business description, contact information, or policies. The site uses modern JavaScript modules and the Quill rich text editor library, indicating some level of technical maturity. However, the lack of privacy, cookie, and terms of service policies, as well as absence of contact or security information, limits trust and compliance assessment. No WAF or blocking mechanisms were detected, and the content is accessible and safe for general audiences. The domain WHOIS is privacy protected, which restricts transparency about ownership and legitimacy. Overall, the site shows basic technical implementation but lacks critical security and compliance disclosures.

I

IDEA 2000

idea2000.hu

46

IDEA 2000 is a Hungarian small business established in 1996 specializing in web and print design services. Their offerings include website and webshop creation, graphic and brand identity design, print media preparation, SEO, and language teaching. The company targets Hungarian businesses and individuals seeking professional digital and print marketing solutions. The website is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Google Analytics is used for visitor tracking, but no cookie consent mechanism is present. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published security policies. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy image with room for improvement in privacy compliance and security transparency.

The website 'Unterstützung und Beratung für Väter in Krisen' is a non-profit platform focused on providing support and counseling services to fathers experiencing life crises, primarily in Vienna, Austria. It offers resources and contact options for acute crises, mental health risks, and social support, positioning itself as a specialized crisis intervention center for men and fathers. The site is well-structured with clear navigation and relevant content tailored to its target audience. Technically, the website is built on WordPress 4.9.28 with the Yoast SEO plugin, indicating a moderate level of digital maturity. The site uses HTTPS with an excellent SSL configuration, SVG graphics, and custom fonts. Mobile optimization and accessibility are good, though the WordPress version is outdated, which could pose security risks. No advanced analytics or tracking tools are detected, reflecting a privacy-conscious approach but also a lack of marketing sophistication. From a security perspective, the site enforces HTTPS and uses secure forms but lacks important security headers and a formal security or incident response policy. There is no cookie consent mechanism or explicit GDPR compliance indicators, which are notable compliance gaps. Contact information is clearly provided, but no email addresses are listed openly. The WHOIS data aligns well with the website's Austrian non-profit identity, supporting legitimacy. Overall, the website is a trustworthy and professional resource for its niche audience but would benefit from improved privacy compliance, updated software, and enhanced security practices to reduce risk and increase user trust.

P

power4me

power4me.at

46

Power4me.at is a small Austrian educational organization focused on prevention and self-defense programs primarily targeting children in kindergarten and primary school. The website presents a professional and consistent brand image with clear descriptions of its services, emphasizing empowerment and safety education. The technical infrastructure is based on standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Bootstrap, providing a responsive and user-friendly experience. Security posture is moderate with no evident vulnerabilities or exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is basic but present, with a privacy policy page accessible. Overall, the website is trustworthy and well-positioned within its niche educational market.

D

DEC112

dec112.at

45

DEC112 is a specialized Austrian initiative focused on developing modern, standardized, and accessible emergency call infrastructures based on NG112 standards. The organization operates core NG112 services and offers a text-based emergency call app, targeting telecommunications providers, emergency response organizations, and IoT developers. DEC112 holds a strong market position in Austria with government partnerships and international recognition through awards and participation in standards events. Technically, the website is built on WordPress with Elementor and optimized for accessibility and SEO, using modern technologies and open-source software. Security posture is good with HTTPS and no visible vulnerabilities, though it lacks explicit security policies and headers. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is professional, trustworthy, and well-positioned in its niche, but could improve transparency on privacy and security policies.

O

Opferberatung Zürich

onlineopferberatung.ch

47

The website www.onlineopferberatung.ch serves as an online platform for victim support and counseling services primarily in the canton of Zürich, Switzerland, with expanding cooperation across multiple Swiss cantons. It offers confidential, free, and anonymous chat and online counseling for victims of various forms of violence including domestic, sexual, and traffic-related incidents. The service is operated by Opferberatung Zürich, a non-profit organization under Stiftung Opferhilfe Zürich, and is supported by several cantonal and federal entities. The platform is designed to be accessible to adults, youth, children, and their relatives, emphasizing confidentiality and ease of access. Technically, the website employs a modern but straightforward technology stack including HTML5, CSS3, JavaScript with jQuery and Bootstrap 4 for responsive design. It includes a cookie consent mechanism compliant with EU cookie directives. The site is well-structured with clear navigation and good mobile optimization, although accessibility features are basic. No advanced CMS or analytics tools are detected, indicating a focus on privacy and minimal tracking. From a security perspective, the site uses HTTPS (assumed but not explicitly verified here) and implements cookie consent. However, no explicit security headers or incident response contacts are provided. The site does not expose sensitive data or vulnerable libraries. The WHOIS data is privacy protected, which is justified given the sensitive nature of the service. Overall, the security posture is moderate with room for improvement in headers and incident response transparency. Overall, the website is trustworthy, professional, and well-aligned with its mission to provide victim support. It scores well on content quality, business credibility, and privacy compliance, with minor technical and security enhancements recommended to further strengthen its posture.

R

Radics Zoltán EV.

radicsmezeskalacs.hu

40

Radics Mézeskalács is a small Hungarian artisanal e-commerce business specializing in handcrafted gingerbread products based on a 100-year-old family recipe. The company operates a WordPress WooCommerce webshop targeting general consumers interested in traditional and custom gingerbread items. The website is professionally designed with good SEO and structured data, providing clear contact information and basic legal pages such as privacy policy and terms of service. Technically, the site uses a modern WordPress stack with WooCommerce and integrates Google Analytics for tracking. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and legitimate, with consistent WHOIS data and no suspicious indicators.

M

Médiacentrum Debrecen Kft.

dehir.hu

47

Dehir.hu is a well-established regional news portal serving Debrecen and Hajdú-Bihar county in Hungary, operated by Médiacentrum Debrecen Kft. The website offers comprehensive local news coverage, including culture, sports, economy, and lifestyle, supported by multimedia content such as video and photo galleries and live TV streaming. It holds a strong market position as a trusted regional media source with a consistent brand presence and active social media engagement. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Font Awesome, and various JavaScript libraries for UI and media handling. The platform appears to be a custom CMS with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some improvements are possible. From a security perspective, the site uses HTTPS and secure login modals but lacks visible security headers and explicit cookie consent mechanisms, which are important for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. The domain's WHOIS data is consistent with the business history, supporting legitimacy. Overall, Dehir.hu presents a professional, content-rich, and trustworthy regional news platform with room for improvement in privacy compliance and security hardening to enhance user trust and regulatory adherence.

D

Debreceni Vagyonkezelő Zrt.

dvrt.hu

43

Debreceni Vagyonkezelő Zrt. is a municipal asset management holding company based in Debrecen, Hungary, actively contributing to the city's development as a regional center. The company manages multiple subsidiaries providing public services and urban development projects, focusing on financial stability and sustainable growth. The website reflects a professional digital presence built on WordPress with modern accessibility features and SEO optimizations. Security posture is strong with HTTPS and security headers properly configured, though cookie consent mechanisms and incident response contacts are absent. Overall, the site demonstrates a mature and trustworthy online representation of a government-affiliated entity.

D

DAB+

dabplus.ch

47

DAB+ is a Swiss digital radio information platform focused on educating and assisting the public and industry stakeholders in the transition from UKW to DAB+ broadcasting. The website offers comprehensive content including FAQs, tutorials, news, and a chatbot to support users. It holds a strong market position as a leading source for DAB+ information in Switzerland, targeting radio listeners, automotive users, media professionals, and garages. The platform is well-branded, professionally designed, and consistently maintained with a clear focus on user experience and accessibility. Technically, it is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools while maintaining GDPR compliance through a robust cookie consent mechanism. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Contact information is available via email, phone, and a validated contact form. No critical issues or suspicious elements were detected, supporting a high trustworthiness rating.

E

EHI Geprüfter Online-Shop

ehi-siegel.de

47

EHI Geprüfter Online-Shop operates as a certification provider specializing in e-commerce, offering seals, authentic customer reviews, and secure legal texts to promote safe and fair online shopping experiences. The website targets German online retailers and businesses seeking to enhance trust and compliance. Technically, the site is built on WordPress with the Divi theme, leveraging modern web technologies and privacy-conscious analytics via Matomo with disabled cookies. Security posture is solid with HTTPS and no evident vulnerabilities, though security headers and explicit privacy compliance measures are lacking. Overall, the site presents a professional and trustworthy front but would benefit from enhanced privacy disclosures and contact transparency.

M

Made In Paradis

madeinparadis.se

44

Made In Paradis is a Swedish-based e-commerce retailer specializing in women's fashion, sneakers, and accessories. The website offers a broad portfolio of over 300 brands, targeting female consumers interested in trendy and quality apparel and footwear. The business operates primarily online with customer service based in France, reflecting a cross-border operational model. The site features a professional design, clear navigation, and multiple language and country options, indicating a mature digital presence aimed at the European market. Technically, the website is built on the Magento platform (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito marketing automation. The site uses HTTPS with good SSL configuration and includes reCAPTCHA for bot protection. However, DNSSEC is not enabled, and some advanced security headers are missing, suggesting room for security enhancements. From a security and compliance perspective, the website includes a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Contact information, including phone and physical address, is clearly provided, enhancing business credibility. No critical vulnerabilities or suspicious patterns were detected, and the domain registration is consistent with the business age and operations. Overall, Made In Paradis presents a solid e-commerce platform with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and DNS security could further strengthen its posture. The site is safe for general audiences and maintains a trustworthy online retail environment.

N

Nemzeti Sportfejlesztési és Módszertani Intézet

sportintezet.hu

43

The Nemzeti Sportfejlesztési és Módszertani Intézet (Sportintézet) is a Hungarian governmental institution focused on advancing elite sports through applied science, health, dietetics, analytics, and funding management. The website presents a professional and well-structured digital presence, targeting Hungarian elite athletes, sports professionals, and organizations. It leverages modern WordPress technologies including Elementor and Yoast SEO, ensuring good SEO and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though some security headers and policies are absent. The WHOIS data shows an anomalous future domain creation date, which raises concerns about registration legitimacy. Overall, the site is trustworthy and functional but would benefit from enhanced security disclosures and verification of domain registration data.

Z

ZSUZSI Erdei Vasút Nonprofit Limited company

zsuzsivasut.hu

41

Zsuzsi Erdei Vasút Nonprofit Limited company operates a heritage forest railway in Debrecen, Hungary, providing scheduled rides primarily from May to September and additional booking options year-round. The company targets families, educators, tourists, and local businesses, positioning itself as a niche nonprofit transportation and tourism service provider. The website reflects this focus with clear information, booking options, and educational content. Technically, the site is built on WordPress with modern plugins for SEO, accessibility, and cookie compliance, delivering a good user experience with mobile optimization and structured data for enhanced search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are absent. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR cookie requirements, supporting the nonprofit's mission and community engagement.

L

Logic Wizard Kft

logicwizard.hu

47

Logic Wizard Kft is a Hungarian IT company specializing in customized software development and comprehensive IT solutions, primarily serving transportation companies, automotive parts dealers, and industrial monitoring sectors. Established in 2012, the company offers tailored business systems including ticketing and sales management for public transport, web catalogs and e-commerce for auto parts, and remote industrial supervision solutions. They also provide Microsoft SPLA and Office 365 licensing services, reinforcing their position as a Microsoft Partner. The website reflects a professional and consistent brand image with clear service offerings targeted at B2B clients in Hungary. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, utilizing jQuery and Bootstrap for responsive design. The site is mobile-optimized and includes SEO best practices, though accessibility features are basic. Google Analytics is used for user tracking, but privacy and cookie policies are absent, indicating room for compliance improvements. Security-wise, the site enforces HTTPS and obfuscates email addresses to reduce spam. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business profile, indicating legitimacy. Overall, Logic Wizard Kft presents a credible and professional online presence with solid technical foundations but would benefit from enhanced privacy compliance and security policy disclosures to improve trust and regulatory adherence.

T

Training-Fit: Fitness og bodybuilding udstyr

training-fit.dk

48

Training-Fit.dk is a Danish e-commerce website specializing in fitness and bodybuilding equipment, offering a wide range of products including cardio machines, strength training gear, cross-training equipment, yoga accessories, martial arts supplies, clothing, and footwear. The site targets fitness enthusiasts and athletes primarily in Denmark, providing products from well-known brands such as Adidas, Nike, and Mizuno. The business model is focused on online retail with an emphasis on fast delivery and secure payment options. The website is newly launched in 2024, reflecting a modern and organized digital presence with clear navigation and product categorization. Technically, the website is built on Magento (OpenMage), utilizing modern web technologies including Google Analytics, Google Ads, reCAPTCHA for bot protection, and a consent management platform to comply with GDPR. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and technical optimizations. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms. It implements a GDPR consent mechanism but lacks explicit privacy policy and terms of service pages in the analyzed content. Security headers are partially present but could be strengthened with additional policies. The domain registration is transparent and consistent with the business, registered recently with GANDI SAS without privacy protection, which is appropriate for an e-commerce business. Overall, Training-Fit.dk presents a professional and trustworthy online store with a solid foundation but would benefit from enhanced privacy disclosures, improved security headers, and clearer contact information to strengthen compliance and user trust.