Security Directory

K

KLIMAK COMFORT

klimadodomu.sk

65

KLIMAK COMFORT operates a professional e-commerce platform specializing in HVAC and renewable energy products such as air conditioners, heat pumps, photovoltaic systems, and underfloor heating. Established in 1993, it holds a strong market position in Slovakia as a leader in technical building equipment. The website offers comprehensive product listings, consultation services, and after-sales support, targeting residential and commercial customers interested in energy-efficient solutions. Technically, the site uses a modern tech stack including jQuery, Slick Carousel, and Google Tag Manager, running on the Unisite CMS platform. It demonstrates good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, employs standard security headers, and integrates cookie consent mechanisms, reflecting a mature security posture. However, explicit security and incident response policies are not published, and no vulnerability disclosure information is available. Overall, the site is trustworthy, professionally designed, and compliant with GDPR requirements, making it a reliable platform for its target audience.

BMW Slovakia operates an official, professionally designed website offering premium automotive products including electric vehicles, financing, and after-sales services. The site is well-structured, mobile-optimized, and uses advanced Adobe Experience Manager CMS and marketing tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and consent management, though explicit security policies and incident response contacts are not publicly detailed. Overall, the website demonstrates high trustworthiness and compliance with GDPR, targeting Slovak customers interested in premium vehicles and services.

F

Froda AB

froda.se

10

Froda AB is a Swedish financial services company specializing in providing tailored business loans and savings accounts primarily targeting small and medium-sized enterprises. The company emphasizes transparency, customer-centric service, and digital ease of access, supported by strong trust indicators such as a high Trustpilot rating and BankID integration. Their business model focuses on democratizing access to financing with no hidden fees and a lowest price guarantee, positioning them as a competitive player in the Swedish SME finance market. Technically, the website is built on Webflow with modern tracking and marketing tools, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though the absence of security headers and a formal security policy page suggests room for improvement. The lack of WHOIS data is a notable anomaly, potentially indicating privacy protection or registration issues, but the professional website content and consistent branding mitigate immediate concerns. Overall, Froda presents a credible and professional online presence with minor technical and compliance gaps.

Q

Qred Bank AB

qred.se

64

Qred Bank AB is a specialized financial institution founded in 2015, focusing on providing financing solutions tailored for small and medium-sized enterprises across several European countries including Sweden, Finland, Denmark, Norway, Netherlands, Belgium, and Germany. Their core offerings include business loans, corporate credit cards with cashback benefits, and high-interest savings accounts. The company positions itself as a niche bank dedicated to supporting small business growth with fast and accessible financial products. The website reflects a mature digital presence with multi-language support and strong branding consistency. Technically, the website is built on the Webflow platform, integrated with HubSpot for marketing and customer engagement, and uses Google Tag Manager and Intellimize for analytics and optimization. The site is well-optimized for performance, mobile responsiveness, and SEO, with modern security headers and HTTPS enforced. Privacy compliance is robust, featuring cookie consent mechanisms and GDPR-aligned policies. From a security perspective, the site demonstrates good practices including secure transport, content security policies, and no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance trust and transparency. The absence of WHOIS data for the exact subdomain www.qred.se suggests it may be a subdomain or alias, but the main domain qred.se is presumably registered and used. Overall, Qred Bank's website presents a professional, trustworthy, and user-friendly platform for SME financing. Strategic recommendations include publishing detailed security and incident response policies, implementing a vulnerability disclosure program, and continuing to monitor third-party scripts for security risks to maintain a strong security posture.

B

Bodenseezentrum Innovation 4.0

bodensee-summit.com

23

Bodenseezentrum Innovation 4.0 operates a professional digital platform focused on the Bodensee Summit Digital 2025, a conference for digital innovation and resilience in the Bodensee region. The website targets entrepreneurs, leaders, innovators, and digital experts, providing detailed event information, speaker profiles, and interactive session descriptions. The business model centers on event organization and fostering digital transformation within a regional ecosystem. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices, including structured data and a cookie consent mechanism. Security posture is solid with HTTPS and no exposed sensitive data, though some security headers are missing and DNSSEC is not enabled. Privacy compliance is strong with GDPR-aligned policies and consent management. Overall, the site is professional, trustworthy, and well-optimized for its audience and purpose.

F

Fachstelle für Statistik Kanton St. Gallen

statistik-bodensee.org

10

The website statistik-bodensee.org serves as an official regional statistics platform for the Lake Constance Region, providing comprehensive data on land use, population, employment, economy, and tourism. It is supported by governmental institutions, notably the Fachstelle für Statistik Kanton St. Gallen, and targets researchers, policymakers, and the public interested in regional statistics. The platform is multilingual and uses a professional CMS (Contao) with modern frontend technologies to deliver a good user experience. Technically, the site employs a range of JavaScript libraries and frameworks including jQuery, Bootstrap, and others, ensuring moderate performance and good mobile optimization. However, some technical improvements are possible, such as enabling DNSSEC and adding security headers to enhance security posture. The site uses HTTPS but lacks advanced security policies and incident response information. From a security perspective, the website shows a moderate security maturity level with HTTPS enabled and domain transfer protection in place. However, the absence of DNSSEC, security headers, and comprehensive privacy and cookie policies indicates room for improvement. The newsletter form collects user emails but has minimal anti-spam protection. Overall, the site is trustworthy and professional but could benefit from enhanced security and privacy compliance measures. Strategically, the website is well-positioned as a niche governmental statistics resource with consistent branding and clear contact information. To improve, it should implement stronger privacy and security controls, publish security policies, and consider cookie consent mechanisms to align with GDPR requirements and enhance user trust.

I

IBK-Akademie

ibk-akademie.org

61

The IBK-Akademie website represents a specialized educational platform focused on cross-border cooperation and administrative training within the Bodensee region, targeting government and public sector professionals. The platform offers modular courses, networking opportunities, and knowledge exchange to enhance regional collaboration. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options, including a contact form with CAPTCHA for spam prevention. Technically, the site uses modern web technologies and a Sitejet CMS, with Matomo analytics for user tracking. Security posture is solid with HTTPS and basic protections, though security headers are not explicitly detected. WHOIS data is unavailable or malformed, limiting domain registration transparency, but the website content and partner affiliations suggest legitimacy. Privacy and cookie policies are present and GDPR compliant. Overall, the site scores well on content quality, business credibility, and technical implementation, with recommendations to improve WHOIS transparency and security headers.

B

Bodenseezentrum Innovation 4.0

bzi-netzwerk.com

10

Bodenseezentrum Innovation 4.0 operates a professional digital platform focused on digital transformation events and services in the Bodensee region. The website serves as a hub for event listings, expert connections, and regional innovation networking, targeting professionals and organizations interested in digital innovation. The business is newly founded in 2024, consistent with the domain registration date, and positions itself as a regional innovation facilitator. Technically, the website is built on WordPress with Elementor and uses modern plugins for SEO, GDPR compliance, and user experience enhancements. The site is mobile optimized and includes structured data for improved search visibility. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers are missing. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. Overall, the website is trustworthy, professional, and well-maintained, with room for improvement in security headers and incident response transparency.

I

Interreg Alpenrhein-Bodensee-Hochrhein

interreg.org

62

Interreg Alpenrhein-Bodensee-Hochrhein is a European Union regional cooperation program focused on promoting cross-border collaboration in the Alpenrhein, Bodensee, and Hochrhein regions. The website serves as an information and funding portal, providing resources, project submission options, and updates about the program. It is positioned as a key facilitator of innovative projects with significant EU and partner country funding. Technically, the site is built on the Plone CMS platform, uses Bootstrap for responsive design, and integrates Matomo for analytics alongside a robust cookie consent mechanism. Security posture is generally good with HTTPS enforced and privacy compliance evident, though some security headers and explicit policies could be improved. The WHOIS data is unavailable, likely due to privacy protection, but the website's content and structure indicate legitimacy and professionalism. Overall, the site is well-designed, accessible, and trustworthy, serving a specialized governmental and non-profit audience.

L

Land Vorarlberg

vorarlberg.at

20

Land Vorarlberg operates an official regional government website serving the Austrian state of Vorarlberg. The site provides public information, services, and resources to citizens and visitors. It holds a strong market position as the authoritative source for regional government content and services. The website leverages a mature technical infrastructure based on Liferay Portal CMS, enhanced with modern JavaScript frameworks such as React and Metal.js, and employs self-hosted Matomo analytics for privacy-conscious user tracking. Cookie consent is managed via Cookiebot, ensuring GDPR compliance. Security posture is robust with HTTPS enforcement, security headers, and no detected vulnerabilities. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

K

Kanton Appenzell Innerrhoden

ai.ch

58

The website ai.ch serves as the official digital presence for the canton of Appenzell Innerrhoden, Switzerland. It provides comprehensive information about the cantonal government, including politics, administration, courts, public services, events, and news. The site targets residents, government officials, visitors, and local businesses, positioning itself as a trusted source of official information and services. The business model is that of a government public service portal, focusing on transparency and accessibility. Technically, the website is built on the Plone CMS platform, utilizing modern JavaScript libraries such as jQuery, Handlebars, and OpenLayers for interactive maps. The site is mobile-optimized and demonstrates good performance and SEO practices. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. However, some accessibility features could be improved. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. While no critical vulnerabilities were detected, the absence of explicit security headers and a published privacy or cookie policy are areas for improvement. The WHOIS data confirms the domain's legitimacy as a government entity with consistent registration details. Overall, the website is professional, trustworthy, and well-maintained, though it would benefit from enhanced privacy compliance and security policy disclosures to align with best practices and regulatory requirements.

K

Kantonale Verwaltung Appenzell Ausserrhoden

ar.ch

41

The website ar.ch is the official online portal for the canton of Appenzell Ausserrhoden in Switzerland, providing comprehensive information and services related to the cantonal government. It serves citizens, businesses, and other stakeholders with access to government departments, news, legal resources, and public services. The site is well-structured, professionally designed, and consistent with government branding, reflecting a medium-sized government entity's digital presence. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including Matomo for analytics and Google reCAPTCHA for form security. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Security is robust with HTTPS enforced and appropriate security headers, but lacks some advanced security disclosures and cookie consent mechanisms. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, it could improve privacy compliance by implementing explicit cookie consent and publishing detailed security policies and incident response contacts. The WHOIS data aligns well with the official government identity, supporting the site's legitimacy. Overall, the site is a trustworthy, professional government portal with solid technical and security foundations but would benefit from enhanced privacy and security transparency to fully comply with modern regulations and best practices.

K

Kanton Schaffhausen

sh.ch

66

The website represents the official online presence of the Canton of Schaffhausen, Switzerland, providing a broad range of governmental information and e-services to residents, businesses, and visitors. It serves as a comprehensive portal for public administration, health, business, transport, and cultural services, positioning itself as a key digital interface for cantonal governance. The technical infrastructure is based on a custom CMS (KSD Backend) with integration of Piwik (Matomo) for analytics, indicating a moderate level of digital maturity with room for enhancement in security headers and privacy compliance. Security posture is solid with HTTPS enforced, but could benefit from additional HTTP security headers and clearer privacy policies. Overall, the site is professional, trustworthy, and well-branded, though it lacks explicit privacy and cookie policies which impacts compliance scoring. Strategic improvements in security and privacy transparency would enhance user trust and regulatory adherence.

The website dudik.net is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content and no visible business or security information. The domain is registered since 2012 with a reputable registrar, indicating a mature domain age, but the lack of accessible content prevents any meaningful analysis of the company's business operations or services. Technically, the site lacks detectable metadata, scripts, or security headers, and no HTTPS or DNSSEC status is provided. Security posture cannot be assessed due to the blocked content. Overall, the site appears inactive or restricted, resulting in a very low AI score and limited insights.

E

Evangelisch Luther

luth-kirche.li

58

The website www.luth-kirche.li represents a small, local religious organization affiliated with the Evangelisch Luther church in Liechtenstein. The site is built using the Wix platform and serves primarily as an informational portal for community members and visitors interested in the church's activities. The content is basic and primarily in German, with no advanced business or e-commerce features detected. Technically, the site uses standard Wix scripts and styles, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks important security headers and privacy policies. No contact information or incident response details are provided, limiting transparency and user trust. Overall, the site is legitimate and consistent with its stated purpose but would benefit from enhanced privacy compliance and security best practices.

The website kirchefl.li is currently inaccessible beyond a security verification challenge page employing Google reCAPTCHA v3. This indicates the presence of a Web Application Firewall or bot protection mechanism that blocks direct access to content. Due to this, no business information, contact details, or policy documents are available for analysis. The technical infrastructure shows usage of modern frontend frameworks such as Bootstrap and Google reCAPTCHA, suggesting some level of technical maintenance. However, the lack of visible security headers and privacy policies limits the assessment of security posture and compliance. Overall, the site appears to be in a protective mode, restricting access to legitimate users only, but this also prevents a full evaluation of its business and security maturity.

D

Start | Dompfarrei Vaduz

dompfarrei.li

60

The website www.dompfarrei.li appears to represent a religious parish entity based in Liechtenstein. The site is built using the Wix platform, leveraging standard Wix scripts and hosting. The content is minimal and primarily in German, with no clear business or organizational details provided in the accessible HTML content. There is no evidence of privacy, cookie, or terms of service policies, nor any contact information or social media presence. Technically, the site uses Wix's infrastructure but lacks advanced SEO, accessibility, and security features. Security posture is basic with no detected security headers or incident response information. Overall, the site appears to be a small-scale, low-traffic informational site with limited digital maturity.

A

Alpgenossenschaft Vaduz

pradamee.li

56

Alpgenossenschaft Vaduz operates as a local alpine cooperative in Liechtenstein, focusing on the preservation and maintenance of alpine properties and processing milk into various products. The website provides information about events, products, and cooperative activities, targeting local community members and cooperative participants. The business model is cooperative-based, relying on member engagement and product processing. Technically, the website is built on WordPress with Elementor, featuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

T

Tour de Suisse

tourdesuisse.ch

58

Tour de Suisse is a prominent Swiss cycling event organizer, offering a range of services including race event management, hospitality, and fan engagement through digital platforms like TdS Explorer and Fanzone. The website reflects a mature digital presence with multilingual support and rich content tailored to cycling enthusiasts and event visitors. Technically, the site is built on WordPress with modern JavaScript frameworks and plugins, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and consent management for third-party services, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, supporting a positive user experience and business credibility.

J

Jugendcafé Camäleon

camaleon.li

50

Jugendcafé Camäleon is a small non-profit youth center based in Vaduz, Liechtenstein, providing a community space for youth engagement, projects, and events. The website serves as an informational and promotional platform targeting local youth and community members, offering details about their services, events, and gallery. The organization appears well-established since 2018 with a clear local focus and active social media presence. Technically, the website is built on WordPress with standard plugins such as Yoast SEO and Contact Form 7, ensuring basic SEO and contact functionalities. The site is mobile-optimized and uses modern libraries like Swiper.js and FontAwesome for UI enhancements. Security posture is adequate with HTTPS enforced and Google reCAPTCHA protecting forms, though it lacks advanced security headers and explicit incident response policies. Privacy and cookie policies are present but lack an explicit consent mechanism. Overall, the site is trustworthy, professional, and safe for general audiences.

V

Vadozner Huus

vadoznerhuus.li

57

Vadozner Huus is a community-oriented facility operated under the auspices of the Gemeinde Vaduz in Liechtenstein. It provides accessible communal spaces for residents and non-commercial groups to hold events, workshops, and meetings. The website reflects a local government service with a focus on inclusivity, creativity, and social engagement. The business model centers on offering shared spaces with flexible booking options, targeting local citizens and community organizations. Technically, the website is built on the concrete5 CMS platform, utilizing Bootstrap for responsive design and jQuery for interactivity. It integrates Matomo analytics for user tracking, emphasizing privacy. The site is mobile-optimized and presents a professional, consistent brand image aligned with the municipality. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses email obfuscation to protect contact information. However, it lacks visible security headers and does not provide explicit security or incident response policies. There is no cookie consent mechanism, which may impact GDPR compliance. No vulnerabilities or exposed sensitive data were found. Overall, the security posture is adequate but could be improved with additional best practices. The overall risk assessment is low given the nature of the site and its community focus. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and enhancing privacy compliance to strengthen trust and regulatory adherence.

O

Operettenbühne Vaduz

operette.li

51

Operettenbühne Vaduz is a cultural organization based in Liechtenstein specializing in operetta theatrical productions. The website serves as a digital presence to promote their events, notably celebrating their 85th anniversary in 2025 with the production of 'Der Vogelhändler'. The site targets a general audience interested in cultural and performing arts within the region. Technically, the website is built on WordPress using Elementor and Astra theme, incorporating modern web technologies and a cookie consent mechanism via Cookiebot. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is solid with HTTPS enforced and ad personalization denied in consent settings, but lacks some security headers and formal security policies. Privacy compliance is partial due to missing privacy and terms of service pages. WHOIS data confirms the domain's legitimacy and consistency with the organization's history and location. Overall, the website is professional and trustworthy but could improve privacy transparency and contact availability.

V

Vaduz Classic Management Anstalt

vaduzclassic.li

57

Vaduz Classic Management Anstalt operates the Vaduz Classic festival, a well-established open-air classical music event held annually in Vaduz, Liechtenstein. The festival features renowned classical artists and offers a variety of concert formats aimed at classical music lovers and families. The website reflects a professional and consistent brand image, providing clear event information, ticketing links, and contact details. The business model centers on event management and ticket sales, positioning Vaduz Classic as a key cultural event in the region.

K

Kleintheater Schlösslekeller

schloesslekeller.li

59

Kleintheater Schlösslekeller is a small cultural theater venue located in Vaduz, Liechtenstein, offering a variety of cultural events including concerts, readings, and theater performances. The website serves as an information and ticketing portal for local audiences interested in cultural activities. The business operates likely as a community or non-profit entity supported by sponsors and ticket sales. Technically, the website is built on Drupal 10 with modern frontend frameworks and uses Matomo for privacy-conscious analytics. The site is mobile optimized and accessible, with clear navigation and good content quality. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though some security headers and vulnerability disclosures are missing. Privacy compliance is adequate with a privacy policy present but lacks a cookie consent mechanism. Overall, the domain registration details align well with the business claims, indicating legitimacy and trustworthiness.

G

Gemeinde Vaduz

lokalundfair.li

59

Lokal+Fair is a government-backed initiative by the Gemeinde Vaduz, the first Fair Trade Town in Liechtenstein, aimed at promoting fair trade and local commerce. The website serves as an informational and promotional platform, providing details about the campaign, criteria for local businesses to participate, news updates, and a newsletter subscription. The target audience includes local residents, businesses, and visitors interested in sustainable and fair trade products. The business model is community and label-driven, focusing on fostering sustainable consumption and supporting local enterprises. Technically, the website is built using modern web technologies including React and Next.js, with content managed via Storyblok CMS. It is well optimized for mobile devices, accessible, and performs well. The newsletter subscription is integrated with Mailchimp, indicating a professional approach to user engagement. SEO and accessibility best practices are observed, enhancing user experience and discoverability. From a security perspective, the site uses HTTPS with excellent SSL configuration and secure form handling. However, it lacks explicit security headers and does not provide a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with a privacy policy and cookie information present, though no explicit consent mechanism is implemented. Contact information is transparent and professional, enhancing trust. Overall, Lokal+Fair presents a trustworthy, professional, and well-maintained digital presence for a local government initiative. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and implementing a cookie consent mechanism to improve compliance and security posture further.

V

Verein Standortmarketing Vaduz

erlebevaduz.li

62

Erlebe Vaduz is a non-profit association dedicated to promoting the capital city of Liechtenstein, Vaduz, by providing comprehensive information on local events, shopping, gastronomy, culture, and leisure activities. The website serves as a central marketing platform for local businesses and tourists, offering event calendars, member listings, and visitor guides. The target audience includes tourists, local residents, families, and couples seeking to explore Vaduz. The business model focuses on community engagement and local commerce promotion, positioning itself as a key player in Vaduz's tourism and retail sectors. Technically, the website is built on WordPress using a custom theme and integrates modern technologies such as Gravity Forms for data collection, Instagram Feed Pro for social media content, and Google Maps API for location services. The site demonstrates good digital maturity with responsive design, moderate performance, and SEO optimization. Security measures include HTTPS enforcement, strong SSL configuration, and appropriate security headers, although there is room for improvement in cookie consent mechanisms and published security policies. From a security perspective, the site maintains a solid posture with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through a comprehensive GDPR-compliant privacy policy, but lacks an explicit cookie consent banner. Contact information is clearly provided, enhancing business credibility and user trust. No signs of malicious content or WAF blocking were detected, allowing full content accessibility. Overall, Erlebe Vaduz presents a trustworthy, well-maintained, and user-friendly platform that effectively supports local tourism and commerce. Strategic recommendations include implementing explicit cookie consent, publishing terms of service and security policies, and enhancing accessibility features to further strengthen compliance and user experience.

L

Liechtensteinisches Handelsgewerbe

einkaufland.li

52

Einkaufland Liechtenstein is a retail association representing local shops in Liechtenstein, aiming to promote a pleasant shopping atmosphere with personal service and a diverse product range. The website serves as a platform for member directories, gift voucher sales, and local business promotion, targeting residents and visitors of Liechtenstein. The business model focuses on supporting regional retail through collective marketing and services. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern plugins like Slider Revolution and Cloudflare Turnstile for security. The site is well-structured, mobile-optimized, and uses HTTPS, reflecting a mature digital presence. Security posture is solid with HTTPS and captcha protections, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR, with clear contact information and social media presence. Strategic recommendations include enhancing security headers and publishing explicit security policies to further strengthen trust and compliance.

L

Liechtensteinische Kraftwerke

energieportal.li

60

The website energieportal.li is a digital portal operated by Liechtensteinische Kraftwerke, a regional energy provider in Liechtenstein. It primarily serves as a login gateway for users to access energy consumption and production data. The site currently displays a maintenance message indicating limited data availability due to technical issues. The business targets energy consumers and stakeholders within Liechtenstein, providing essential energy data services. The portal uses modern web technologies including Angular framework, Google Maps API, and Google reCAPTCHA for bot protection, hosted on Microsoft Azure Blob Storage for static assets. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is good with HTTPS enforced and basic security headers, though additional headers and explicit security policies are absent. Privacy compliance is weak due to missing privacy and terms of service pages, and no contact or incident response information is provided. Overall, the site is legitimate and trustworthy, but could improve transparency and compliance documentation.

The Liechtensteinisches Rotes Kreuz website represents the national Red Cross society of Liechtenstein, offering emergency medical services, first aid courses, and parental counseling. It serves residents of Liechtenstein and nearby areas, operating as a non-profit humanitarian organization funded by donations and memberships. The website is well-branded, professionally designed, and provides clear contact information and social media presence, reinforcing its trustworthiness and community engagement. Technically, the site is built on WordPress using the Astra theme and several plugins including Modern Events Calendar Lite and MonsterInsights for analytics. The infrastructure supports good mobile optimization, accessibility, and SEO practices. Performance is moderate, with modern technologies and standard web analytics integration. From a security perspective, the site enforces HTTPS, employs security headers, and includes privacy and cookie policies compliant with GDPR. However, it lacks a dedicated security policy or incident response page and does not publish a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a strong security posture and business credibility appropriate for a national humanitarian organization. Strategic improvements could include publishing explicit security policies and incident response contacts to enhance transparency and trust further.

L

Landesspital Liechtenstein

landesspital.li

49

Landesspital Liechtenstein is a central healthcare provider in Liechtenstein, offering a broad range of medical services including emergency care, internal medicine, surgery, orthopedics, and specialized competence areas such as anesthesia and radiology. The hospital has a long-standing history of over 125 years and positions itself as a trusted institution for the local population. The website reflects a professional and comprehensive digital presence, supporting patient and visitor information, career opportunities, and detailed department descriptions. Technically, the site is built on WordPress with modern themes and plugins, optimized for performance and mobile use, and integrates privacy-respecting analytics via Plausible. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some improvements in security headers and incident response transparency are recommended. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

E

easyfind.ch

easyfind.ch

65

easyfind.ch operates as a Swiss-based lost and found service platform connecting individuals who have lost or found items with over 2,500 participating lost property offices across Europe. The platform supports multiple languages and integrates with services like Swisspass and easyfind.com codes, positioning itself as the largest network in this niche. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. Social media presence and customer ratings indicate a trustworthy and established service. Technically, the site uses modern web technologies and maintains good security practices with HTTPS and no exposed sensitive data. However, it lacks explicit security policies, incident response information, and cookie consent mechanisms, which are areas for improvement. Overall, the site is reliable, accessible, and serves a clear public service function.

The Verein Familienchronik Liechtensteiner Gemeinden operates a specialized genealogical platform aggregating family history data from multiple Liechtenstein municipalities. The platform serves both the public and research communities, offering access to approximately 100,000 records. The organization is a non-profit association representing eight municipalities, positioning itself as the central genealogical resource in Liechtenstein. Technically, the website employs modern front-end technologies including Vue.js and Bootstrap, with privacy-conscious analytics via Matomo. The site is mobile-optimized and well-structured, providing a professional user experience. However, some security best practices such as explicit security headers and cookie consent mechanisms are missing. From a security perspective, the platform benefits from HTTPS and does not expose sensitive data or vulnerable libraries. The absence of a visible security policy or incident response contact reduces transparency. The WHOIS data aligns well with the website's claims, indicating a trustworthy domain registration consistent with the organization's local presence. Overall, the website is a well-executed, trustworthy platform with minor gaps in security and privacy compliance. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and user trust.

GMG GmbH is a medium-sized IT and media service provider operating primarily in Switzerland and Liechtenstein. Founded in 1991, the company offers a broad range of services including IT systems engineering, web development, media project management, and hardware sales and repair. They maintain data centers in Balzers and Zurich, supporting a regional customer base with SaaS contracts and 24/7 support. The website reflects a professional and established business with detailed team and contact information, targeting business clients in the region. Technically, the website is built on ASP.NET Web Forms, uses jQuery and fullPage.js for UI, and integrates Matomo for analytics, indicating a moderate level of digital maturity. The site is served over HTTPS with a custom CMS and hosted likely on Windows IIS servers. Mobile optimization and accessibility are basic but functional. No major performance issues were detected. From a security perspective, the site enforces HTTPS and uses secure form validation but lacks important security headers such as Content-Security-Policy and X-Frame-Options. No exposed sensitive data or vulnerable libraries were found. Privacy compliance is partial; a privacy policy is present but no cookie consent mechanism is implemented. WHOIS data is unavailable, which slightly reduces trust but the website content and contact details support legitimacy. Overall, GMG GmbH presents a trustworthy and professional online presence with room for improvement in security headers and privacy compliance. Strategic enhancements in these areas would strengthen their security posture and regulatory adherence.

L

Liechtensteinische Landesverwaltung

gesetze.li

54

The website gesetze.li is an official government legal database operated by the Liechtensteinische Landesverwaltung, providing up-to-date consolidated legal texts and state treaties for the Principality of Liechtenstein. It serves legal professionals, government officials, and the general public interested in Liechtenstein law. The site offers comprehensive search capabilities including full text, titles, abbreviations, and legal reference numbers, with a focus on accuracy and official information dissemination. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Matomo analytics integrated for user behavior tracking. The site is served over HTTPS with good SSL configuration, ensuring secure data transmission. The design is professional and consistent with government branding, optimized for mobile devices with basic accessibility features. From a security perspective, the site enforces HTTPS and secure form submissions but lacks advanced security headers and published security policies. There is no cookie consent mechanism despite the use of analytics, which may present minor privacy compliance gaps. No vulnerabilities or suspicious content were detected, and the domain registration aligns well with the official government entity, indicating high legitimacy. Overall, the website is a trustworthy and authoritative source for Liechtenstein legal information, with recommendations to enhance privacy compliance and security transparency to further strengthen user trust and regulatory adherence.

F

Familienportal

familienportal.li

49

Familienportal.li is a family support and information portal focused on families in Liechtenstein, especially young families balancing family and work life. The website offers categorized information on pregnancy, birth, childcare, early childhood education, health, and family activities, along with event and course listings. It serves as a community resource with contact options and social media presence. Technically, the site is built on WordPress with modern plugins and uses HTTPS with good security practices, though it lacks explicit privacy and cookie policies. The site is well designed, mobile optimized, and accessible, providing a professional user experience. Security posture is solid but could be improved by adding security headers and published policies. Overall, the site is trustworthy and legitimate, with domain registration consistent with its business purpose.

E

ELREC AG

entsorgi.li

48

Entsorgi Wertstoffsammelstelle operates as a public recycling and waste collection service primarily serving private individuals and businesses in Liechtenstein and adjacent Swiss regions. The company offers a variety of recycling collection points for materials such as metals, paper, plastics, electronics, and hazardous waste. It also provides container rental services and has formed strategic partnerships, notably with RecyPac for the national RecyBag recycling system, enhancing its logistics and quality assurance capabilities. The website reflects a regional leader position in waste management services with a focus on sustainability and circular economy principles. Technically, the website is built on WordPress 6.7.4, leveraging modern JavaScript libraries and Google Maps API for interactive location services. The site is mobile-optimized, accessible, and employs GDPR-compliant privacy and cookie policies. Performance is moderate with good SEO and user experience design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. The WHOIS data is notably absent, which raises concerns about domain registration legitimacy. Despite this, the website content and business information appear professional and trustworthy. No security incident response or vulnerability disclosure information is provided, indicating potential areas for improvement in transparency and security readiness. Overall, Entsorgi presents a credible and regionally important recycling service with a well-structured digital presence. Addressing domain registration transparency and enhancing security headers would strengthen trust and security posture further.

L

LIECHTENSTEIN WÄRME

waerme.li

52

LIECHTENSTEIN WÄRME is the second largest energy provider in Liechtenstein, focusing on the transition to green energy and sustainable heating solutions. Their services include natural gas supply, local and district heating, and customer service tailored to regional needs. The company aligns with national energy strategies for 2030 and 2050, emphasizing sustainability and responsibility. The website is professionally designed using TYPO3 CMS, featuring modern frontend components and a clear navigation structure. While the site is accessible and secure with HTTPS, it lacks some advanced security headers and explicit privacy compliance mechanisms such as cookie consent banners. No incident response or security policies are publicly disclosed, which could be improved to enhance trust and compliance. Overall, the site presents a credible and professional image with good content quality and technical implementation.

L

Liechtensteinische Kraftwerke

lkw.li

11

Liechtensteinische Kraftwerke (LKW) is a well-established energy and telecommunications provider in Liechtenstein, operating since 1923. The company offers a broad range of services including electricity and heat supply, network provision, fiber optic communication, electrical installation, electromobility, and photovoltaic solutions. Their digital presence includes an energy portal and a physical EnergieLaden store, targeting both private and business customers within the region. The website reflects a professional and consistent brand image with active content updates and customer service information.

B

BMWeshop.sk

bmweshop.sk

53

BMWeshop.sk is an e-commerce website specializing in BMW lifestyle products such as clothing, accessories, toys, and collectibles targeted primarily at BMW enthusiasts in Slovakia. The website is built on the Shoptet platform and uses common web technologies including jQuery, Google Analytics, and Facebook SDK for tracking and marketing purposes. The site presents a professional design with consistent branding and clear navigation, offering a good user experience. However, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security-wise, the site enforces HTTPS and uses CSRF tokens but relies on an outdated jQuery version and lacks visible security headers, which could expose it to vulnerabilities. The WHOIS data is privacy protected, which is common for small e-commerce businesses but reduces transparency. Overall, the site is functional and trustworthy but would benefit from improved security practices and privacy compliance.

J

JTRE

spojenaba.sk

48

Spojená Bratislava is a Slovak language online magazine operated by JTRE, focusing on urbanism, architecture, and city development projects primarily in Bratislava. The website serves as a content platform to promote JTRE's real estate developments and engage a professional and general audience interested in urban planning and architecture. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager integration, indicating a moderate to good level of digital maturity. The site is mobile optimized and uses HTTPS with DNSSEC enabled, reflecting a good security baseline. However, explicit privacy policies and security incident response information are not present, which could be improved for better compliance and trust. Overall, the website is professional, content-rich, and trustworthy with room for enhanced security and privacy transparency.

M

Městys Vysoký Chlumec

vysoky-chlumec.cz

44

Městys Vysoký Chlumec operates as a local municipal government entity in the Czech Republic, providing residents and visitors with administrative services, community news, cultural and historical information, and tourism resources. The website serves as an official portal for local governance, public notices, and citizen engagement. The digital infrastructure is built on a modern tech stack including jQuery, Bootstrap, and Swiper.js, with a CMS platform likely tailored for municipal use. The site is mobile-friendly and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. GDPR compliance is evident with a dedicated Data Protection Officer contact and privacy policy. Overall, the site is trustworthy, professional, and well-suited for its public sector role.

T

Toulava o.p.s.

toulava.cz

48

Toulava o.p.s. operates a regional tourism website focused on promoting hiking, cycling, family activities, and accommodation in the southern and central Bohemia regions of the Czech Republic. The platform offers comprehensive tourist information, event calendars, and an e-shop for regional products, supported by local government entities. Technically, the website is built on Angular 7 with modern JavaScript libraries and integrates mapping APIs such as Mapy.cz and Leaflet, providing a rich interactive user experience. The site is mobile-optimized and demonstrates good SEO practices. Security posture is solid with HTTPS and no exposed sensitive data, though some security headers are missing. Privacy compliance is mostly addressed with a clear privacy policy and terms of service, but lacks a cookie consent mechanism. WHOIS data is unavailable, which slightly reduces trust but the overall business credibility remains high due to transparent contact information and government support. Recommendations include enhancing security headers, adding cookie consent, and publishing explicit security and incident response policies.

M

Město Sedlčany

mesto-sedlcany.cz

59

Město Sedlčany operates as the official municipal government website for the city of Sedlčany in the Czech Republic, providing residents and visitors with news, event information, public notices, and contact resources. The site targets local citizens and tourists, offering multilingual support and a range of municipal services. The business model is centered on public service and community engagement, positioning itself as a trusted local government authority. Technically, the website is built on the Public4u CMS platform, utilizing common web technologies such as jQuery and JavaScript. The site is moderately optimized for performance and mobile use, with basic accessibility features and good SEO practices. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, though the official nature of the content and domain suggests authenticity. Overall, the website is professional, trustworthy, and serves its intended audience effectively, with room for security and technical enhancements.

B

Bezpečné Čáslavsko – Společný informační kanál bezpečnostních složek

bezpecnecaslavsko.cz

41

Bezpečné Čáslavsko is a regional public safety information portal focused on the Čáslavsko microregion in the Czech Republic. It serves as a centralized channel providing updates and information about local police, municipal police, fire services, and other safety organizations. The website targets local residents and stakeholders interested in community safety and crime prevention. The business model is informational and community service-oriented, with a small regional footprint and a focus on public service rather than commercial activities. Technically, the site is built on WordPress with several plugins for maps, forms, and UI enhancements. While the site is mobile-optimized and well-structured, it uses outdated WordPress and jQuery versions, which pose security risks. Security posture is moderate with HTTPS enforced and Wordfence plugin active, but lacks modern security headers and up-to-date software. Privacy compliance is limited due to absence of a privacy policy and terms of service, though a cookie consent banner is present. Overall, the site is trustworthy and legitimate, supported by consistent WHOIS data and domain age. Strategic improvements in security updates, privacy documentation, and security headers are recommended to enhance trust and compliance.

T

ThemeFreesia

themefreesia.com

58

ThemeFreesia is a small technology company specializing in the development and distribution of free and premium responsive WordPress themes and plugins. Their market position is focused on providing accessible, stylish, and functional WordPress solutions primarily targeting business owners, designers, and bloggers. The company offers a business model combining free themes with paid 'Plus' plugins to enhance functionality and support. The website demonstrates a good level of digital maturity with a WordPress CMS infrastructure, integration of modern technologies such as Google Analytics, reCAPTCHA, WooCommerce, and SEO optimization via Yoast. Hosting is provided by Bluehost with Cloudflare DNS services, ensuring reliable uptime and performance. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy and cookie consent banner present, though GDPR compliance is not explicitly indicated. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security policies and technical hardening.

Č

Český rozhlas

irozhlas.cz

64

iROZHLAS is the official news portal of Český rozhlas, the Czech public radio broadcaster. It provides reliable and fast news coverage from the Czech Republic and worldwide, including audio content and live broadcasts. The website is professionally designed, mobile-optimized, and rich in content, targeting the general public interested in news and current affairs. Technically, it uses a modern tech stack including Google Tag Manager, Chartbeat, and Gemius for analytics, and implements cookie consent mechanisms to comply with privacy regulations. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. WHOIS data is unavailable, likely due to privacy protection, but the site’s branding and content quality indicate high legitimacy. Overall, the site is a trusted and authoritative media source in the Czech Republic.

P

PAQ Research

datapaq.cz

53

DataPAQ is a Czech Republic-based data visualization platform focused on regional educational and social data. It aggregates data from official Czech institutions and provides interactive tools for analysis, targeting researchers, policymakers, and educators. The platform is developed in collaboration with PAQ Research and other educational partners, positioning itself as a niche tool for regional data insights. Technically, the website is built using modern web technologies including React and Next.js, with analytics powered by Matomo and PostHog. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility features could be improved. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks important security headers and does not provide privacy or cookie policies, which impacts compliance and user trust. The absence of WHOIS data reduces domain trustworthiness, though the partnership with recognized organizations mitigates some concerns. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and transparent contact information to improve trust and regulatory adherence.

P

PAQ Research

mapavzdelavani.cz

38

Mapa vzdělávání is a Czech Republic-based educational research platform operated by PAQ Research, focusing on data analyses and research-backed solutions addressing educational inequalities in the country. The website offers analytical reports, data visualization tools, and a blog with research articles, targeting policymakers, educational institutions, and researchers. The platform positions itself as a specialized provider in the Czech educational sector with a small organizational size and consistent branding. Technically, the website is built using modern frameworks such as Next.js and React, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and well-structured, providing a good user experience and clear navigation. Security posture is adequate with HTTPS enforced, but lacks some security headers and formal security policies. Privacy compliance is incomplete due to missing privacy and cookie policies. Contact information is clearly presented with named individuals and direct emails, enhancing business credibility. Overall, the website is professional, trustworthy, and safe for general audiences.

P

PAQ Research

chytrejsidane.cz

40

Chytřejší daně is a Czech Republic based research and advocacy project focused on proposing comprehensive tax reforms to improve economic growth, fairness, and public finance sustainability. The website is professionally designed using modern web technologies such as Next.js and React, hosted on a Czech hosting provider, and integrates analytics tools like Google Tag Manager and Matomo for user tracking and performance monitoring. The project is supported by reputable research organizations including PAQ Research, Centrum veřejných financí, and IDEA CERGE-EI, lending credibility and trustworthiness to the content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are absent. Privacy and cookie policies are present and GDPR compliant, with a user consent mechanism implemented. Overall, the website demonstrates a high level of professionalism, technical maturity, and business credibility appropriate for a public policy research initiative.

I

ITX Norge

itx.no

10

ITX Norge is a Norwegian technology company specializing in cloud-based contact center solutions that unify multiple communication channels such as telephony, email, SMS, chat, and social media into a single platform. The company emphasizes local data storage and support within Norway, targeting businesses seeking efficient and integrated customer service tools. Their market position is that of a leading Norwegian provider in this niche, offering a SaaS model with a comprehensive suite of features including CRM and live shopping capabilities. Technically, the website is built on WordPress with modern plugins like Elementor and Yoast SEO, supported by various marketing and analytics tools such as Google Tag Manager, Google Analytics, and Adform. The site is well-optimized for SEO and mobile devices, with good design and user experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies and some security headers, suggesting room for improvement in security posture. Overall, the domain registration aligns well with the business history, indicating legitimacy. The website is professional and trustworthy, though it would benefit from publishing privacy and terms of service policies to enhance compliance and user trust.