Security Directory

C

CSC – Tieteen tietotekniikan keskus Oy

eduuni.fi

52

Eduuni is a Finnish service platform provided by CSC – Tieteen tietotekniikan keskus Oy, focused on enabling secure and flexible collaboration across educational and research organizations. The platform offers a suite of cloud-based services including Microsoft 365/Azure environments, SharePoint workspaces, Atlassian Confluence wiki, Jira project management, and identity management through Eduuni-ID. The website reflects a professional and consistent brand presence targeting educational institutions and their stakeholders in Finland. Technically, the website is built on WordPress hosted on WordPress.com infrastructure, leveraging modern web technologies and integrations with Microsoft and Atlassian products. The site demonstrates good performance, mobile optimization, and basic accessibility features. Analytics are implemented via Jetpack Stats with minimal user tracking. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks some advanced security headers and explicit incident response contacts. Privacy policies and terms of service are available on linked wiki pages, though no cookie consent mechanism is present on the main site. The domain registration is transparent and consistent with the business entity, indicating high legitimacy. Overall, Eduuni presents a trustworthy and well-maintained digital presence with room for improvement in privacy compliance and security header implementation.

F

Find Shooting Ranges Near You | Where To Shoot

wheretoshoot.org

57

Where To Shoot is a specialized online platform dedicated to helping firearm enthusiasts locate shooting ranges across various locations. The website offers a comprehensive searchable map with advanced filtering options for indoor and outdoor ranges, shooting disciplines, and available services. It also provides additional resources such as video galleries and the ability for users to list or edit shooting ranges. The platform targets shooting sports participants and hunters, positioning itself as a niche directory service within the recreational shooting industry. Technically, the website is built on WordPress and leverages modern web technologies including Google Maps API for geolocation services, jQuery for interactivity, and several plugins for SEO, advertising, and cookie compliance. The site is mobile-optimized and employs HTTPS to secure user interactions. Analytics and marketing tools such as Google Analytics, Pardot, and Google Tag Manager are integrated, indicating a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of a clear privacy policy and direct contact information slightly reduces the overall privacy compliance and business credibility scores. Overall, Where To Shoot presents as a legitimate, professionally maintained directory service with good content quality and user experience. Strategic improvements in privacy policy visibility, security header implementation, and contact transparency would enhance trust and compliance, supporting long-term growth and user confidence.

B

BrotHaus

brot-haus.de

49

BrotHaus is a German bakery business offering traditional and innovative baked goods through physical stores and an online shop. The website showcases their products, live events, and a customer loyalty program, positioning them as a regional retail bakery brand with a focus on quality and customer experience. Technically, the website is built on WordPress with WooCommerce and uses modern plugins and themes, providing a good user experience with multimedia content and mobile optimization. Security posture is adequate with HTTPS and some best practices, but lacks explicit security headers and privacy compliance documentation. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and contact transparency.

T

TC Buckenmaier

tc-buckenmaier.de

51

TC Buckenmaier is a leading fashion retail company based in the Hohenlohe/Franken region of Germany, offering a wide range of fashion products and services including women's, men's, children's fashion, wedding attire, and corporate fashion. The company emphasizes quality, style, and personalized service, positioning itself as a regional market leader with a strong brand presence. The website reflects this with professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities, enhanced by popular plugins for SEO, marketing, and performance optimization. The infrastructure supports modern web standards, mobile responsiveness, and accessibility. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a detailed privacy policy and cookie management aligned with GDPR requirements. Overall, the site is trustworthy and professionally managed, with no signs of blocking or malicious activity.

B

Bücher Pustet

pustet.de

67

Bücher Pustet is a well-established regional bookstore chain in Bavaria, Germany, with a nearly 200-year history. The company operates multiple physical stores and a comprehensive online shop offering books, eBooks, audiobooks, calendars, games, and related products. Their services include community events, gift vouchers, and specialized offerings for schools, libraries, and corporate clients. The website reflects a mature retail business with a focus on customer engagement and regional presence. Technically, the website uses modern web technologies including Bootstrap and FontAwesome, with a custom CMS managing rich content modules. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security is well-implemented with HTTPS and multiple security headers, but lacks visible privacy and cookie policies, which are important for GDPR compliance. The security posture is strong with no detected vulnerabilities or exposed sensitive data. However, the absence of public incident response information and vulnerability disclosure mechanisms suggests room for improvement in transparency and preparedness. Overall, the site is trustworthy and professional but should enhance privacy compliance and user consent mechanisms. Strategically, Bücher Pustet should prioritize publishing comprehensive privacy and cookie policies, implement consent banners, and provide clear security and incident response information to strengthen user trust and regulatory compliance. Enhancing accessibility and continuous security audits will further improve the site's quality and resilience.

Bergwelt Valtin is a small retail business based in Germany specializing in ski equipment fitting and customization services. Their offerings include ski boot widening, custom footbed fitting using advanced technologies, and specialized ski boot fitting systems. The website is built on WordPress and uses common plugins such as Contact Form 7 and WP-JQuery-Lightbox, indicating a standard small business digital infrastructure. The site is accessible, uses HTTPS with valid SSL, but lacks advanced security headers and privacy compliance mechanisms such as cookie consent banners. No explicit contact emails or phone numbers are provided on the main pages, which may impact user trust and communication. Overall, the website presents a professional and relevant experience for its target audience but could improve in privacy and security practices.

Müller Handels GmbH & Co. KG operates a large retail and e-commerce platform primarily serving the German market and neighboring German-speaking countries. The company offers a wide range of products including perfumes, cosmetics, toys, multimedia, and household goods, positioning itself as a comprehensive drugstore and lifestyle retailer. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency, targeting general consumers with a focus on convenience and variety. Technically, the website leverages modern web technologies such as Next.js and React, combined with Usercentrics for cookie consent management and Google Tag Manager and Facebook Pixel for analytics and marketing. The platform is mobile-optimized and performs moderately well, with good SEO and accessibility features. Hosting details are not explicitly disclosed, but the infrastructure supports a robust e-commerce experience. From a security perspective, the site enforces HTTPS and integrates consent mechanisms for privacy compliance. While explicit security headers and policies are not fully visible, no critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or vulnerability disclosure page suggests room for improvement in transparency and incident response readiness. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security header implementation, and providing clear incident response contacts to further strengthen trust and compliance.

F

FunRun 2025

funrunsuedwest.de

44

FunRun 2025 is a German event website dedicated to organizing and promoting the FunRun running events, targeting hobby and frequent runners as well as Nordic walkers. The site provides event information, race results, photo galleries, and news updates, positioning itself as a local/regional event organizer. Technically, the website is built on WordPress 6.0.1 using the Avada theme, with jQuery and Leaflet.js for interactive features, and integrates hCaptcha for form security. The site is served over HTTPS, indicating a good baseline for secure communications. However, it lacks advanced security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. No contact emails or phone numbers are explicitly provided, limiting direct communication channels.

The website dvintern.de presents an extremely minimal online presence with only a basic HTML page containing the title 'DV Intern' and no substantive content. There are no visible business descriptions, contact details, or user engagement features. The domain is registered under DENIC with DNSSEC enabled, but no registrant information is publicly available due to DENIC's privacy policies. The lack of HTTPS and security headers, combined with absent privacy and cookie policies, indicates a low level of digital maturity and security posture. Overall, the site appears to be either a placeholder or inactive, offering no meaningful business or security information.

F

Falck US

falck.us

68

Falck US operates in the transportation sector, specializing in emergency medical and ambulance services. The website presents a professional and consistent brand image, targeting a general audience seeking emergency transportation solutions. The technical infrastructure leverages modern technologies including Microsoft ASP.NET, Citrix for security, Azure Application Insights for telemetry, and Google Tag Manager for analytics, indicating a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit privacy policies and contact information suggests room for improvement in compliance and transparency. The lack of WHOIS data reduces trust slightly but is common for enterprises using privacy protection services. Overall, the website is functional, secure, and professionally maintained with moderate risk.

F

Falck

falck.fi

74

Falck is a well-established company providing travel assistance services primarily targeting travelers seeking safety and emergency support during their journeys. The website is professionally designed with good localization in Finnish and includes comprehensive cookie consent mechanisms compliant with GDPR. The technical infrastructure leverages modern analytics tools such as Microsoft Application Insights and Google Tag Manager, indicating a mature digital presence. Security posture is strong with HTTPS enforced and telemetry monitoring in place, though some security headers and explicit security policies are not visible in the analyzed content. Overall, the website is trustworthy and professionally maintained, serving a large audience in the transportation and healthcare sectors in Finland.

F

Falck Italia

falckitalia.it

70

Falck Italia operates as a medium-sized company in the emergency medical and healthcare services sector in Italy, providing ambulance and safety services. The website presents a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses modern technologies including Microsoft Application Insights and Google Tag Manager for analytics and tracking, with a compliant cookie consent mechanism ensuring GDPR adherence. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response information are not publicly available. Overall, the site is trustworthy and well-maintained, supporting the company's market position as a reputable service provider in transportation and healthcare. Strategic improvements could focus on enhancing contact transparency and publishing security-related policies.

F

Falck France

falck.fr

68

Falck France operates as a regional branch of the Falck Group, specializing in emergency and healthcare services. The website is professionally designed, primarily targeting French-speaking users, and integrates modern analytics and cookie consent mechanisms to comply with privacy regulations. The technical infrastructure includes Microsoft Application Insights and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is generally strong with HTTPS enforced and privacy compliance evident, although explicit security headers and detailed security policies are absent. The absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the presence of multiple related Falck domains and consistent branding supports the business's authenticity. Overall, the website is functional, compliant, and trustworthy with room for improvement in transparency and security documentation.

F

Falck España

falck.es

73

Falck España operates as a regional branch of the Falck Group, specializing in healthcare, emergency, and safety services. The website reflects a professional presence with a focus on user experience and compliance with cookie consent regulations. The technical infrastructure leverages modern technologies such as Microsoft ASP.NET, Citrix, Azure Application Insights, and Google Tag Manager, indicating a mature digital environment. Security posture is adequate with HTTPS and monitoring tools in place, though improvements in security headers and explicit privacy policies are recommended. The absence of accessible WHOIS data limits full domain legitimacy assessment, but the website content and linked domains support a trustworthy business identity.

F

Falck Romania

falck.ro

75

Falck Romania operates as a regional branch of the Falck group, providing healthcare and emergency services within Romania. The website reflects a professional presence with consistent branding aligned with the Falck group. The business targets general public and corporate clients requiring emergency medical and safety services. The digital infrastructure leverages modern technologies including Microsoft ASP.NET, Citrix for security, Azure Application Insights for monitoring, and Google Tag Manager for analytics. The website is mobile optimized and implements a comprehensive cookie consent mechanism, indicating good privacy compliance. Security posture is solid with HTTPS enforced and use of secure third-party services, though security headers are not explicitly detected. No critical vulnerabilities or suspicious patterns were found. WHOIS data is privacy protected by ROTLD, which is standard for Romanian domains, and does not raise legitimacy concerns. Overall, the website is a credible and professional digital asset for Falck Romania.

F

Falck

falck.no

75

Falck is a well-established healthcare service provider focused on occupational health and career services in Norway, aiming to improve health, work ability, and quality of life for the Norwegian workforce. The website reflects a professional and consistent brand presence with a clear focus on healthcare services. Technically, the site uses modern technologies including Microsoft Application Insights and Google Tag Manager for monitoring and analytics, hosted likely on Microsoft Azure. The site is mobile optimized and accessible with good SEO practices. Security posture is strong with HTTPS and cookie consent mechanisms in place, though explicit security headers and incident response information are absent. The lack of WHOIS data suggests privacy protection, which is common for large enterprises. Overall, the site is trustworthy and compliant with GDPR, but could improve transparency around security policies and contact information.

F

Falck

falcksverige.se

71

Falck Sverige is a regional branch of the Falck group, providing services in healthcare, rehabilitation, rescue, and preparedness. The website presents a professional image with clear branding and a focus on helping people through various service areas. The technical infrastructure leverages modern telemetry and analytics tools such as Microsoft Application Insights and Google Tag Manager, indicating a mature digital presence. The website is well-optimized for mobile and includes a comprehensive cookie consent mechanism compliant with GDPR standards. However, the absence of WHOIS data for the domain www.falcksverige.se raises questions about domain registration legitimacy, although the presence of multiple related Falck domains suggests a broader corporate infrastructure. Security posture is strong with HTTPS and telemetry but lacks explicit security headers and published security policies. Contact information is not directly available on the site, which could impact user trust and compliance transparency.

F

Falck Deutschland

falck.de

10

Falck Deutschland is a prominent healthcare and emergency services provider operating in Germany, offering ambulance and rescue services. The website demonstrates a solid digital presence with compliance to GDPR through a comprehensive cookie consent mechanism and integration of advanced analytics tools such as Microsoft Application Insights and Google Tag Manager. The technical infrastructure is modern, leveraging reputable third-party services and hosted on EuroDNS-managed domains. Security posture is generally good with HTTPS enforced and telemetry in place, though there is room for improvement in security headers and explicit security policies. Contact and legal information such as terms of service and incident response contacts are not readily visible, which could be enhanced to improve trust and compliance. Overall, the website is professional, well-branded, and targets a general audience seeking healthcare and emergency services in Germany.

C

CompanyWall

companywall.co.uk

10

CompanyWall is a UK-based financial data platform specializing in providing credit rating information and comprehensive financial analysis of UK companies. Established in 2013, it offers various subscription and pay-per-report services tailored to business entities seeking reliable financial insights for business expansion and risk management. The platform is supported by a consistent brand presence and active social media channels, reinforcing its market position as a trusted financial data provider. Technically, the website employs a modern tech stack including Bootstrap, jQuery, FontAwesome, and Google reCAPTCHA, hosted by GoDaddy. The site is mobile-optimized with good SEO practices and uses HTTPS to secure user interactions. However, some security headers are missing, and cookie consent mechanisms could be improved to enhance privacy compliance. Security posture is solid with HTTPS and bot protection on forms, but lacks explicit security policies and incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a good balance of usability, security, and business credibility, suitable for its target audience. Strategically, CompanyWall should focus on enhancing privacy compliance by implementing cookie consent banners, adding security headers, and publishing a dedicated security policy to further build trust and meet regulatory requirements.

P

psn media GmbH & Co. KG

psnmedia.de

10

psn media GmbH & Co. KG is a well-established digital agency based in Rostock, Germany, operating since 2003. The company offers a comprehensive portfolio of digital services including web design, web development, app development for iOS and Android, individual software solutions, corporate design, and cross-media marketing campaigns. Their client base spans from medium-sized enterprises to large corporations and public institutions, positioning them as a versatile and reliable partner in the digital transformation space. The website reflects a professional and consistent brand image with clear navigation and rich content tailored to business clients seeking digital innovation. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and slick carousel for UI components, alongside analytics and tracking tools including Google Analytics, Facebook Pixel, and Mouseflow. The site uses HTTPS with good SSL configuration and integrates a consent management platform to comply with GDPR requirements. While the site lacks explicit security headers and a public security policy, it demonstrates a solid baseline security posture with no visible vulnerabilities or exposed sensitive data. From a security perspective, the site benefits from encrypted communications and user consent mechanisms for tracking. However, it could improve by implementing additional HTTP security headers and publishing incident response contacts or security policies. The WHOIS data aligns well with the website's claims, showing consistent domain registration and no suspicious patterns, supporting the legitimacy of the business. Overall, psn media presents a trustworthy and professional digital presence with strong business credibility and good privacy compliance. The site is well-optimized for user experience and mobile devices, making it suitable for its target audience of businesses seeking digital agency services.

R

Regensburger Universitätsstiftungen

regensburger-universitaetsstiftung.de

45

The Regensburger Universitätsstiftungen website represents a non-profit foundation platform dedicated to supporting the University of Regensburg through funding and promotion of research, teaching, and international exchange. The foundation acts as a central hub for private and corporate donors aiming to enhance the university's profile and academic excellence. The website content is well-structured, professionally designed, and primarily targeted at university faculty and potential funders. Technically, the site is built on WordPress with the Foundation CSS framework and modern JavaScript libraries, ensuring good mobile responsiveness and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response disclosures. Privacy compliance is adequate with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and serves its educational and funding facilitation purpose effectively.

Brücken-Center Ansbach GmbH operates a regional shopping center located in Ansbach, Germany, offering a wide range of retail shops, gastronomy options, and services including parking and voucher sales. The website is built on the Contao CMS platform and integrates modern frontend technologies such as jQuery, Bootstrap 5, and Slick Carousel. It employs Google Tag Manager for analytics and Cookiefirst for cookie consent management, demonstrating a commitment to privacy compliance. The site is well-structured, mobile-optimized, and provides clear contact information and social media links, enhancing user trust and engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website reflects a professional and trustworthy digital presence for a medium-sized retail business.

S

Südwestpark Nürnberg

suedwestpark.de

10

Südwestpark Nürnberg operates a large business park offering flexible office and commercial rental spaces primarily targeting companies in the Nuremberg metropolitan area. The website presents a professional and consistent brand image with a focus on sustainability, mobility, and modern work culture. Technically, the site is built on TYPO3 CMS with modern frontend libraries, providing a good user experience and mobile optimization. Security posture is moderate with HTTPS usage but lacks explicit security headers and incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and well-positioned in the real estate market segment it serves.

J

JTRE a.s.

euroveatower.sk

10

Eurovea Tower is a premium real estate project by JTRE a.s., offering luxury residential apartments in Bratislava. The website presents a professional and well-branded digital presence with clear business information and contact details. The technical infrastructure is modern, leveraging Drupal 10 CMS, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile optimized and SEO friendly. Security posture is good with HTTPS and DNSSEC enabled, though some security headers could be improved. Privacy compliance is addressed with a cookie consent mechanism and a basic privacy policy. No critical vulnerabilities or suspicious content were detected, indicating a trustworthy and legitimate business website.

S

Slovan Bratislava

smebelasi.sk

9

The website smebelasi.sk represents the rebranding initiative of Slovan Bratislava sports clubs under the ownership of JTRE sports & entertainment. It focuses on showcasing a unified visual identity for multiple sports disciplines including hockey, basketball, and volleyball. The site targets sports fans and stakeholders interested in the club's new branding and identity. Technically, the site is built using modern web technologies such as React and Next.js, hosted on Webglobe infrastructure, and includes Google Tag Manager for analytics and a cookie consent mechanism for privacy compliance. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal privacy or terms of service documentation. The domain WHOIS data is mostly consistent but contains an anomalous future creation date that should be verified. Overall, the site is professional and safe, but improvements in privacy transparency and security hardening are recommended.

K

KLIMAK, s.r.o.

klimak.sk

40

KLIMAK, s.r.o. is a well-established Slovak company specializing in technical building services including HVAC, air conditioning, and energy management solutions. With a history dating back to 1993 and a domain registered since 2003, the company holds a strong market position supported by ISO certifications and a broad portfolio of services targeting both commercial and residential clients. Their website reflects a mature digital presence with multilingual support, comprehensive service descriptions, and active engagement through social media and news updates. Technically, the site is built on WordPress with modern performance optimizations and GDPR-compliant cookie management. Security posture is solid with HTTPS enforcement and security plugins, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site demonstrates high professionalism and trustworthiness suitable for its industry and audience.

B

BAVARIA Bratislava s.r.o.

bavariabratislava.sk

10

BAVARIA Bratislava s.r.o. operates as an authorized BMW dealership and service center located in Bratislava, Slovakia. The company offers a comprehensive range of BMW vehicles including new and used cars, alongside financial services, servicing, and original accessories. Positioned as the largest and most modern BMW showroom in Slovakia, it targets BMW customers seeking premium automotive products and services. The website reflects a professional and consistent brand image aligned with BMW standards. Technically, the website is built on the siteLAB CMS platform and incorporates modern JavaScript libraries such as Swiper.js and Owl Carousel for UI components, along with Google reCAPTCHA for form security and Facebook SDK for customer chat integration. The site is mobile-optimized and includes SEO best practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and integrates anti-bot measures via reCAPTCHA. However, it lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced trust and compliance. Privacy and cookie policies are well implemented with clear consent mechanisms, supporting GDPR compliance. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security headers and incident response transparency would further strengthen its posture.

J

JTRE a.s.

jtre.sk

53

JTRE a.s. is a leading real estate development company based in Slovakia with a strong presence in the Central and Eastern European market. The company specializes in a wide range of real estate projects including residential, office, multifunctional, hotel, retail, and industrial developments. Their website reflects a mature and professional business with a clear market position and extensive project portfolio. The content is well-structured, professionally designed, and targets investors, tenants, and clients interested in real estate development in the region. Technically, the website is built on Drupal 10 with modern JavaScript libraries and tracking tools, ensuring good mobile optimization and user experience. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers could be improved. Privacy compliance is strong with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website and business demonstrate high credibility and trustworthiness.

G

Glende.Consulting GmbH & Co. KG

glende-consulting.de

55

Glende.Consulting GmbH & Co. KG is a specialized consulting firm based in Germany focusing on data protection and information security services. Their offerings include external data protection officer services, audits, NIS-2 compliance consulting, cyber risk assessments, and executive training. The company positions itself as a trusted partner for businesses needing to comply with evolving EU regulations such as GDPR and NIS-2. The website reflects a professional and consistent brand image with clear contact information and membership in relevant industry associations, indicating a credible market presence. Technically, the website is built on Joomla! CMS with UIkit and Yootheme frameworks, ensuring a modern and responsive user experience. Accessibility features are implemented, and the site uses HTTPS with a good SSL configuration. However, some security headers are missing, and no cookie consent mechanism is present, which could be improved for better compliance and security posture. Security-wise, the site demonstrates good practices such as CSRF tokens and no exposed sensitive data. The absence of explicit incident response or vulnerability disclosure policies suggests room for enhancement in transparency and readiness. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. The risk assessment indicates a low threat level with no suspicious content or vulnerabilities detected. Strategic recommendations include implementing cookie consent, adding security headers, and publishing clear security and incident response policies to strengthen trust and compliance.

L

Liftago

liftago.sk

69

Liftago is a Czech Republic-based transportation company specializing in taxi rides and courier deliveries, operating across 15 cities. The company offers services via a mobile app and website, targeting both consumers and businesses seeking reliable on-demand transportation solutions. The website is professionally designed, mobile-optimized, and provides clear information about services, privacy, and terms. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and Cookiebot for consent management, hosted likely on Cloudflare infrastructure ensuring good performance and security. Security posture is strong with HTTPS enforcement, comprehensive cookie consent, and security headers, though no explicit security policy or incident response contacts are published. Overall, Liftago presents a trustworthy and professional digital presence with moderate to high maturity in technical and privacy compliance aspects.

The domain centotag.io is registered to Media Group Denmark ApS, a Danish company established in 2020. The website currently hosts only a placeholder page provided by Simply.com, indicating that the domain is parked or not actively used for business purposes. There is no business description, services, or contact information available on the site. The technical infrastructure is minimal, with basic HTML, CSS, and JavaScript, and DNS hosted via Cloudflare. No CMS or advanced frameworks are detected. Security posture is weak due to lack of visible HTTPS enforcement, security headers, and privacy policies. No analytics or tracking scripts are present, indicating minimal data collection or user tracking. Overall, the website lacks content, trust signals, and compliance documentation, resulting in a low trust and security score.

P

PandaSuite

pandasuite.com

66

PandaSuite is a well-established no-code platform founded in 2012 that enables users to create engaging web, mobile, desktop, and touchscreen applications without coding. The platform targets creators, businesses, marketers, and educators seeking flexible and multimedia-rich interactive content solutions. It holds a strong market position supported by reputable client logos and positive user ratings. Technically, the website employs modern web technologies including Astro framework, PostHog analytics, and Cloudflare DNS, delivering fast performance and excellent mobile optimization. Security posture is good with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the website is professional, trustworthy, and technically mature, with room for enhanced privacy and security transparency.

Noembed.com is a specialized technology service providing a unified oEmbed proxy API that simplifies embedding content from a wide range of supported sites, including those without native oEmbed support. The service targets developers and web integrators who require consistent embeddable content responses. The business operates as a small entity with open source code hosted on GitHub and is supported by a community of users and contributors. The website is professionally designed with clear navigation and good content relevance, though it lacks formal privacy and cookie policies. Technically, the site uses standard web technologies including HTML5, CSS3, and JavaScript, and is hosted on the Fastly CDN platform, ensuring good performance and reliability. Google Analytics is used for visitor tracking, but no advanced frameworks or CMS are detected. Mobile optimization and accessibility are basic but adequate for the target audience. From a security perspective, the domain registration is consistent and legitimate, registered with Gandi SAS since 2011, with clientTransferProhibited status enabled. However, DNSSEC is not enabled, and the website lacks security headers and formal security policies. No forms or sensitive data collection mechanisms are present, reducing attack surface. Privacy compliance is weak due to missing policies and cookie consent mechanisms. Overall, the website presents a moderate risk profile with no critical vulnerabilities detected but would benefit from improved privacy compliance and security hardening. Strategic recommendations include enabling DNSSEC, adding privacy and cookie policies, implementing security headers, and publishing incident response and vulnerability disclosure information.

F

five9.net

five9.net

48

The website at five9.net currently presents minimal content, consisting primarily of a basic HTML skeleton with a centered logo image and no substantive textual or interactive elements. The domain is well-established, having been registered since 2008, and uses Google Cloud DNS for hosting infrastructure. However, the lack of HTTPS information, security headers, and privacy policies indicates a low maturity level in security and compliance. There are no visible contact details, social media links, or business descriptions, which limits the ability to assess the company's market position or services from this site alone. Overall, the site appears to be a placeholder or under construction rather than a fully operational business website.

T

Thomas Engbert

engbert.de

48

Thomas Engbert is a small German-based communications design business specializing in visual and digital solutions, including UI/UX design and Joomla CMS development. The company serves a European clientele across various sectors such as economy, shipping, healthcare, and sports. The website is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the site uses Joomla CMS with YOOtheme Pro and UIkit frameworks, ensuring modern and responsive design. Security posture is good with HTTPS enabled and CSRF tokens present, though the absence of explicit privacy and cookie policies and security headers indicates room for improvement. Overall, the domain registration is consistent and trustworthy, with no blocking or WAF detected, supporting a high legitimacy score.

D

DBRD Akademie GmbH

reanimation.de

54

DBRD Akademie GmbH operates the website reanimation.de, providing specialized ACLS and resuscitation training courses aligned with American Heart Association standards. The company targets healthcare professionals involved in acute patient care, offering practical workshops and certification courses. The website is professionally designed with clear navigation and accessibility features, reflecting a mature digital presence. Technically, it leverages Joomla CMS with modern UIkit framework and includes interactive elements such as course registration forms integrated via external APIs. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers and explicit policies could be improved. Contact information is transparent, and trust signals include recognized certifications and partnerships with reputable organizations. Overall, the site is a credible and well-maintained platform for healthcare education.

D

DBRD Akademie GmbH

12-leads.de

54

12-Leads.de is a specialized educational platform operated by DBRD Akademie GmbH, focused on providing structured EKG assessment courses for emergency medical professionals in Germany. The website offers detailed course schedules, pricing, and booking options, targeting paramedics and healthcare providers. The business is well-established with a domain age consistent with its founding year and maintains a professional online presence with clear contact information and partner affiliations. Technically, the site is built on Joomla CMS with modern UI frameworks and demonstrates good accessibility and mobile optimization. Security posture is solid with HTTPS and CSRF protections, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy, professional, and well-suited for its educational mission.

D

DBRD Akademie GmbH

tecc-germany.de

54

TECC Germany, operated by DBRD Akademie GmbH, is a specialized educational provider offering Tactical Emergency Casualty Care courses tailored for police, fire services, personal protection, and rescue personnel in Germany. The website presents detailed course offerings, schedules, and pricing, establishing a clear market position as a niche training provider in tactical emergency medical care. The business model focuses on in-person and scenario-based training with transparent pricing and no sponsorship conflicts. Technically, the website is built on Joomla CMS with Yootheme templates and UIkit framework, incorporating modern web technologies such as Typed.js and Google Fonts. The site is mobile-optimized and includes accessibility features, providing a good user experience. However, some improvements in security headers and cookie consent mechanisms could enhance compliance and security posture. Security-wise, the site enforces HTTPS and uses CSRF tokens, with no visible sensitive data exposure. The absence of explicit security policies and incident response contacts is noted. The domain registration data is consistent with the business claims, showing legitimacy and stability. Overall, the site demonstrates a solid security posture with room for improvement in privacy compliance. The overall risk assessment is low, with recommendations focusing on enhancing privacy compliance, adding security headers, and publishing security policies to strengthen trust and regulatory adherence.

D

DBRD Akademie GmbH

tccc-germany.de

56

DBRD Akademie GmbH operates the website tccc-germany.de, providing official Tactical Combat Casualty Care (TCCC) training courses licensed by the NAEMT. The company targets military medical personnel, infantry, special forces, and police officers preparing for foreign deployments. Their business model centers on delivering specialized medical training and certification services, positioning themselves as a trusted and official provider in Germany. The website content is professionally presented in German, with clear navigation and comprehensive course information.

P

PHTLS Deutschland

phtls.de

54

PHTLS Deutschland is a specialized educational provider focused on PreHospital Trauma Life Support training for emergency medical personnel in Germany. The website offers detailed course information, schedules, and booking options, positioning itself as a key player in trauma care education. The technical infrastructure is based on Joomla CMS with modern frontend libraries, providing a responsive and accessible user experience. Security posture is solid with HTTPS and CSRF protections, though some HTTP security headers could be improved. Privacy compliance is good with a comprehensive privacy policy and GDPR adherence, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-suited for its target audience.

D

DBRD Akademie GmbH

gems-deutschland.de

54

GEMS Germany, operated by DBRD Akademie GmbH, specializes in providing geriatric education for emergency medical services personnel in Germany. The website offers detailed information about their GEMS courses, including provider and instructor training, with clear pricing and scheduling. The business targets EMS professionals, nursing staff, and doctors, positioning itself as a niche educational provider in the healthcare sector. The website is built on Joomla CMS with modern UIkit framework and includes accessibility features, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS and CSRF protections, though improvements in security headers and incident response disclosures are recommended. Overall, the site is professional, trustworthy, and compliant with GDPR, though it lacks a cookie consent mechanism. The domain registration aligns well with the business identity, supporting legitimacy.

D

DBRD Akademie GmbH

epc-germany.de

53

EPC Deutschland, operated by DBRD Akademie GmbH, provides specialized Emergency Pediatric Care training courses in Germany targeting preclinical emergency responders. The website is professionally designed using Joomla CMS with modern UIkit framework, offering good mobile optimization and accessibility features. The business is well positioned in the healthcare education sector with clear contact details and partner affiliations. Security posture is solid with HTTPS and CSRF protections, though lacking some security headers and incident response disclosures. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and functional with room for security and compliance improvements.

D

DBRD Akademie GmbH

emfrt.de

56

The website emfrt.de represents the Emergency Medical Fire and Rescue Training (EMFRT) program operated by DBRD Akademie GmbH, a German educational organization specializing in emergency medical and rescue training. The site targets fire departments, authorities, and organizations with security tasks, offering practical and intensive courses that combine preclinical emergency medicine, technical rescue, and firefighting. The business is positioned as a specialized training provider with recognized certifications and strong partnerships, including Weber Rescue and Siegerland Airport. The courses are certified and include international certificates such as PHTLS for First Responders. Technically, the website is built on Joomla CMS with Yootheme templates and uses modern frontend technologies like jQuery, Leaflet.js, and UIkit. The site is mobile optimized, accessible, and performs moderately well. Structured data in JSON-LD format is implemented for SEO and organizational clarity. The hosting provider is not explicitly identified, but HTTPS is enforced with good SSL configuration. From a security perspective, the site uses HTTPS and includes CSRF tokens and email obfuscation techniques. However, it lacks explicit security headers and published security or incident response policies. There is no vulnerability disclosure or security.txt file. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, which could be a GDPR compliance gap. Overall, the website is professional, trustworthy, and well-aligned with its business goals. The domain WHOIS data is consistent and legitimate, supporting the business's credibility. Strategic improvements in privacy compliance and security transparency would enhance the site's security posture and regulatory adherence.

D

DBRD Akademie GmbH

amls.de

56

AMLS Deutschland is a specialized provider of Advanced Medical Life Support courses in Germany, operating under the DBRD Akademie GmbH and affiliated with the Deutscher Berufsverband Rettungsdienst e.V. The website offers detailed course information, schedules, and booking options targeting emergency medical personnel and healthcare providers. The business is well positioned in the healthcare education sector with a clear focus on acute medical training for internal and neurological emergencies. Technically, the website is built on Joomla CMS with modern UIkit frontend frameworks, providing good mobile optimization and accessibility features. Security posture is solid with HTTPS and CSRF protections, though some security headers and explicit policies could be improved. Privacy compliance is strong with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its niche audience effectively.

Ably is a mature and established realtime platform company founded in 2002, specializing in scalable, reliable, and low-latency realtime data streaming and messaging services. Their platform supports a broad range of realtime applications including live messaging, chat, dashboards, notifications, and collaborative apps. The company positions itself as a leader in the realtime pub/sub market, serving over 2 billion connected devices monthly with a strong uptime record. Their business model is SaaS-based with usage-based pricing tiers including Free, Standard, Pro, and Enterprise plans, targeting developers and businesses requiring realtime infrastructure. Technically, the website is built on modern frameworks such as Gatsby and React, hosted with Cloudflare DNS and Amazon Registrar, and integrates marketing and analytics tools like HubSpot, Intercom, and Google Tag Manager. The site is fast, mobile-optimized, and accessible with good SEO practices. Security posture is strong with HTTPS, security headers, and enterprise-grade compliance such as SOC 2 and HIPAA BAA, although DNSSEC is not enabled and explicit security policies or incident response contacts are not published. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly linked privacy policy or terms of service on the homepage. Overall, Ably demonstrates a high level of professionalism, technical maturity, and business credibility with minor gaps in explicit privacy and security disclosures.

Ably is a well-established realtime platform specializing in streaming data instantly between services and end-user devices. It offers a suite of products including Pub/Sub messaging, chat APIs, live synchronization, and asset tracking, targeting developers and businesses requiring scalable, reliable realtime infrastructure. The company positions itself as a market leader with over 2 billion connected devices monthly and a strong uptime record. Technically, the website leverages modern frameworks like Gatsby and React, with robust hosting and DNS via Amazon and Cloudflare. The site is fast, mobile-optimized, and accessible, reflecting a mature digital presence. Security posture is strong with HTTPS, security headers, and compliance certifications such as SOC 2, though DNSSEC is not enabled and incident response contacts are not explicitly published. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and technical maturity, supporting Ably's credibility as a leading realtime platform.

B

Boxicons

boxicons.com

55

Boxicons is a technology-focused company providing a comprehensive icon library tailored for designers and developers. The website offers over 30,000 icons with customization options and a freemium business model including a Pro subscription for enhanced features. The company has a strong market presence evidenced by high weekly downloads and positive user ratings. Technically, the site is built on modern frameworks such as Next.js and uses Cloudflare for DNS and CDN services, ensuring fast performance and good mobile optimization. Security posture is solid with HTTPS enforced and domain status protections, though DNSSEC is not enabled and explicit security headers are not fully confirmed. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned in its niche, but could improve transparency and compliance aspects.

H

HeroShift

heroshift.app

71

HeroShift is a specialized software solution focused on automated shift planning, absence management, and time tracking for emergency services, nursing, and healthcare sectors in Germany. The platform offers cloud-based, GDPR-compliant tools designed to reduce administrative overhead and improve operational efficiency. The website is professionally designed using WordPress and Elementor, providing a clear and user-friendly experience with good mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security best practices like explicit security headers and incident response information are missing. Overall, the site reflects a trustworthy and professional business with room for improvement in privacy compliance and security transparency.

S

SERAPIS Medical GmbH

serapis-medical.de

61

SERAPIS Medical GmbH is a specialized healthcare transportation service provider based in Ludwigsburg, Germany. The company focuses on qualified patient transport, emergency medical support, and international patient repatriation. Their website reflects a professional and consistent brand image, targeting patients and healthcare providers who require reliable medical transport services. The business operates a small-scale model with a clear regional focus and offers key services such as ambulance service, regular patient transport, and medical repatriation with professional care. Technically, the website is built on a modern WordPress platform using Elementor and JupiterX theme, supported by plugins like Complianz for GDPR compliance. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. The technical infrastructure is sound, though some improvements in security headers and incident response documentation could enhance the security posture. Security-wise, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security maturity. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security policies and transparency would strengthen the company’s security and compliance posture further.

M

M&M Lifeline

mum-lifeline.de

64

M&M Lifeline is a specialized provider of certified seminars and training programs primarily targeting healthcare professionals and nursing staff in Germany. Established in 2003, the company offers a variety of in-house, online, and presence seminars focusing on emergency response, first aid, and nursing-related topics. Their market position is supported by over 20 years of experience and certification by recognized bodies such as the MDK. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website is built on WordPress using modern plugins and frameworks such as Avia Framework and WPForms. It employs HTTPS with excellent SSL configuration and includes GDPR-compliant cookie consent mechanisms. Performance is moderate with good mobile optimization and basic accessibility features. Analytics are implemented via Jetpack Statistics, with moderate user tracking and good privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a dedicated security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's history and no privacy protection, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic improvements could focus on enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the security and user experience.