Security Directory

D

DZK and DZK GbR

tieraerzteatlas.de

52

Tierärzte Atlas Deutschland is a professional industry initiative providing comprehensive data, trends, and insights into the veterinary medicine sector in Germany. It serves as a key resource for veterinary professionals and industry stakeholders, offering both online and print versions of its data atlas. The website is built on a modern WordPress infrastructure using Elementor and Astra theme, hosted on hostpress.de, and implements a detailed cookie consent mechanism to comply with privacy regulations. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and explicit security policies are absent. Contact information is limited to email addresses associated with the publishing organization DZK. Overall, the website is professional, trustworthy, and well-positioned within its niche.

C

CoreTrustSeal

coretrustseal.org

46

CoreTrustSeal is a specialized certification organization focused on accrediting trustworthy data repositories to promote sustainable data infrastructures. The website positions the organization as a recognized authority in the data repository certification domain, offering clear information on certification requirements, application processes, and certified repositories. The target audience includes data repository managers, research communities, and data infrastructure stakeholders. Technically, the website is built on WordPress with modern web technologies such as jQuery, Font Awesome, and Swiper.js. It employs HTTPS with a valid SSL certificate and integrates Google reCAPTCHA for form security. The site includes a GDPR-compliant cookie consent mechanism powered by Complianz, indicating a mature approach to privacy compliance. Performance and mobile optimization are good, with accessible navigation and professional design. From a security perspective, the site demonstrates good practices including HTTPS enforcement and spam protection via reCAPTCHA. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. The overall security posture is strong but could be improved with additional transparency on security policies. Overall, CoreTrustSeal's website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its niche market with clear content and functional design. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

P

Polskie Stowarzyszenie Osób z Celiakią i na Diecie Bezglutenowej

celiakia.pl

37

Polskie Stowarzyszenie Osób z Celiakią i na Diecie Bezglutenowej is a well-established Polish non-profit organization dedicated to supporting individuals with celiac disease and promoting gluten-free diets. The organization operates certification programs such as Przekreślony Kłos for gluten-free products and MENU BEZ GLUTENU for gluten-free friendly dining establishments. Their website serves as an educational and community hub, offering resources, events, and collaboration opportunities for patients, healthcare professionals, and businesses. The site is professionally designed, well-structured, and optimized for SEO and mobile use, reflecting a mature digital presence. Technically, it is built on WordPress with modern libraries and integrates Google Analytics for user insights. Security posture is good with HTTPS enabled, though additional security headers and DNSSEC could enhance protection. Privacy compliance is adequate with visible privacy and cookie policies, though no explicit consent mechanism is detected. Overall, the website is trustworthy, content-rich, and serves its community effectively.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

infektionsschutz.de

60

Infektionsschutz.de is a German government-affiliated public health information platform operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). It provides authoritative, up-to-date, and professionally reviewed content on infectious diseases, vaccination recommendations, hygiene tips, and educational materials targeting the general public and healthcare professionals. The website is well-positioned as a trusted source for infection protection information in Germany. Technically, the site is built on TYPO3 CMS with modern frontend technologies and uses Matomo analytics configured for privacy compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforcement and privacy-conscious analytics, though some security headers and explicit incident response policies are missing. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable resource for its audience.

B

BAG Familienerholung

bag-familienerholung.de

65

BAG Familienerholung is a German non-profit organization dedicated to providing affordable and family-friendly vacation opportunities in certified holiday homes across Germany. Their services focus on supporting families with low to medium income, families with multiple children, and individuals with disabilities or care needs. The organization collaborates with major welfare providers such as Diakonie, Caritas, AWO, and the German Red Cross to ensure social accessibility and quality. The website reflects a solid market position as a trusted umbrella organization in the family recreation sector. Technically, the website is built on WordPress using the Divi theme and incorporates modern plugins like Yoast SEO and Borlabs Cookie for SEO and privacy compliance. The site is hosted on kasserver.com and uses HTTPS with a valid SSL certificate, ensuring secure communications. The site is mobile-optimized and accessible, with a clear navigation structure and good content quality. From a security perspective, the site employs HTTPS and cookie consent mechanisms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no visible privacy policy or terms of service pages, which could be improved to enhance user trust and regulatory adherence. Overall, BAG Familienerholung presents a trustworthy and professional online presence with good technical implementation and business credibility. Strategic improvements in privacy documentation and security headers would further strengthen their security posture and compliance standing.

W

Wohnungsbaugesellschaft Ingelheim am Rhein GmbH

wbi-wohn.de

43

Wohnungsbaugesellschaft Ingelheim am Rhein GmbH (wbi) is a regional real estate company focused on providing affordable housing, sustainable building projects, and innovative mobility solutions such as E-Carsharing and Coworking spaces in Ingelheim, Germany. The website presents a professional and consistent brand image with detailed service offerings targeting local residents and businesses. Technically, the site uses modern web technologies and is mobile-optimized with good accessibility and SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

V

Verlagsgruppe Hof, Coburg, Suhl, Bayreuth

kurier.de

66

The Nordbayerischer Kurier is a regional news media company serving the Oberfranken region in Germany, operated by Verlagsgruppe Hof, Coburg, Suhl, Bayreuth. The website provides local news coverage with a digital presence that includes social media integration and modern advertising and analytics technologies. The company has a solid market position as a regional news provider with a history dating back to 1946. Technically, the website uses a custom CMS with integrations for consent management, paywall, and multiple advertising networks, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, consent mechanisms, and no visible vulnerabilities, although explicit security and incident response policies are not publicly found. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

T

Tobit.Labs

rdrn.app

63

The website rdrn.app presents a digital boat rental service located at Schlossgräfte in Ahaus, Germany. It offers a modern, self-service platform allowing users to book and pay for rowing boats via smartphone, reviving a traditional leisure activity with digital convenience. The business operates on the chayns platform, leveraging its ecosystem for app integration and site management. The target audience includes local visitors and tourists interested in unique outdoor experiences. The business model is focused on direct digital bookings with a simple fee and deposit system, positioning itself as a niche local service with a strong emphasis on user autonomy and ease of use. Technically, the site is built using React and chayns frameworks, hosted on Tobit.cloud infrastructure. It employs modern web technologies such as JSON-LD for structured data, Swiper.js for image galleries, and CSS modules for styling. The site is mobile-optimized and performs moderately well, though accessibility features are basic. SEO is supported by proper meta tags and Open Graph data, enhancing social sharing and search visibility. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks visible security headers and does not provide a cookie consent mechanism or a detailed privacy policy, which are important for GDPR compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency and user trust. No suspicious or malicious elements were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, rdrn.app is a well-structured, user-friendly site serving a specific local market with a digital-first approach. To enhance its security posture and compliance, the business should implement cookie consent, publish comprehensive privacy and security policies, and add security headers. These steps will improve user trust and regulatory adherence while maintaining the site's positive user experience.

K

Kultursommer Rheinland-Pfalz

kultursommer.de

63

Kultursommer Rheinland-Pfalz is a well-established non-profit cultural foundation affiliated with the Stiftung Rheinland-Pfalz für Kultur. Since 1992, it has been facilitating and promoting cultural projects across various art forms within the Rheinland-Pfalz region, targeting cultural practitioners, event organizers, and the general public interested in arts and culture. The website reflects a strong regional cultural focus with comprehensive information on events, funding, and community engagement. Technically, the site is built on WordPress with modern plugins and libraries, offering good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, trustworthy, and compliant with GDPR regulations, serving as a reliable resource for cultural stakeholders in the region.

A

Arbeitgeberverband Oldenburg e.V.

agv-oldenburg.de

57

Arbeitgeberverband Oldenburg e.V. is the largest employer association in northwest Lower Saxony, Germany, representing over 750 companies and approximately 85,000 employees. The association offers a broad range of services including legal advice, process representation, cost avoidance, interest representation, seminars, and networking opportunities. The website reflects a professional and well-established organization with a history dating back to 1919. The target audience primarily consists of employers across various industries in the region. Technically, the website employs modern web technologies such as Matomo for analytics, StimulusJS for frontend interactivity, and Swiper.js for sliders. The site is mobile-optimized, accessible, and SEO-friendly, though no explicit CMS was detected. Hosting appears to be managed via your-server.de and related nameservers. From a security perspective, the site uses HTTPS with good SSL configuration and respects DoNotTrack settings in analytics. However, it lacks visible security headers and does not provide explicit incident response or vulnerability disclosure information. Privacy compliance is strong with a comprehensive privacy policy and terms of service, but no cookie consent mechanism was found. Overall, the website is trustworthy, professional, and well-maintained, with minor areas for improvement in security headers and privacy consent mechanisms. There is no indication of blocking or WAF interference, and the content is safe for general audiences.

J

JCMM, z. s. p. o.

startid.cz

54

StartID is a Czech Republic-based educational platform operated by JCMM, z. s. p. o., focused on empowering students through digital e-portfolios, career counseling, and networking opportunities with companies. The platform offers a comprehensive suite of services including portfolio creation, PDF exports, job and internship listings, and interactive career support. It targets primarily students and educational institutions in the South Moravian region, positioning itself as a key regional educational support tool. Technically, the website employs modern JavaScript libraries such as Swiper.js and Plyr.js, integrates Google Analytics and Smartsupp live chat, and demonstrates good mobile responsiveness and user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no incident response contacts are published. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and active social presence support legitimacy. Overall, the platform is well-designed, content-rich, and serves an important educational niche.

S

SMINA GmbH

smina.de

43

SMINA GmbH operates a modern online Sanitätshaus (medical supply store) focused on providing mobility aids, care products, and health-related equipment primarily to the German market. With over 200 partner physical stores nationwide, SMINA combines e-commerce with local presence to serve customers effectively. The website is built on a modern tech stack including Next.js, Shopify, and Contentful, ensuring a responsive and user-friendly experience. Security is well implemented with HTTPS, security headers, and privacy compliance via Usercentrics. Contact information and social media presence enhance trust and customer engagement. Overall, SMINA presents a professional, trustworthy, and well-structured digital platform for healthcare products.

A

ASCA® GmbH & Co. KG

asca.com

48

ASCA® GmbH & Co. KG is a German-based company specializing in organic photovoltaic (OPV) solar films that enable flexible, lightweight, and transparent solar energy solutions. Positioned as a world market leader in OPV technology, ASCA® serves sectors including architecture, mobility, and smart products with custom solar solutions. The company operates under the HERING group umbrella and maintains a professional digital presence with a modern TYPO3 CMS-based website. The website is well-designed, mobile-optimized, and rich in relevant content, targeting architects, designers, and sustainability-focused businesses. Technically, the site uses modern frameworks and analytics tools but lacks some security headers and a cookie consent mechanism, which are recommended for compliance and security enhancement. WHOIS data is unavailable, which slightly reduces transparency but does not detract significantly from the company's credibility given the professional presentation and clear contact information.

L

Lichtwerber Deutschland e.V.

lwd24.de

42

Lichtwerber Deutschland e.V. is a German non-profit industry association representing companies in the illuminated advertising sector. The website provides comprehensive information about the association, including membership, events, industry news, and international partnerships. The organization targets professionals and companies within the illuminated advertising industry in Germany and abroad. The site is built on a modern WordPress platform using Elementor and related plugins, indicating a moderate level of digital maturity and technical infrastructure. Security posture is adequate with HTTPS enforced and updated software, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

Qvest is a technology and media consulting company focused on delivering future-forward solutions by leveraging technology, media expertise, and human factors to drive business value and accelerate digital transformation. The company positions itself as an established player in the technology and media sectors, targeting businesses seeking innovative transformation services. The website is powered by TYPO3 CMS and integrates modern web technologies including Google Tag Manager, Pardot, and Cookiebot for analytics and privacy compliance. The site demonstrates good digital maturity with a professional design, mobile optimization, and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not evident. Overall, the website is trustworthy and professional, but the absence of WHOIS data and explicit contact information slightly reduces business credibility.

G

G-Consult, spol. s r.o.

g-consult.cz

42

G-Consult, spol. s r.o. is a Czech Republic based medium-sized company specializing in engineering geology, geotechnics, hydrogeology, ecological consulting, risk analysis, and remediation work. Established in 2004, the company has a solid market presence with over 27 employees and more than 200 projects annually. Their services cater primarily to construction, environmental, and engineering sectors, offering comprehensive geological and ecological solutions. The website is professionally designed using WordPress and Elementor, featuring clear navigation and bilingual support (Czech and English).

H

HERING Gruppe

heringinternational.com

10

HERING Gruppe is a well-established German company specializing in innovative construction solutions and infrastructure products, particularly for public spaces and transportation sectors. With a history dating back to 1892 and a workforce of approximately 700 employees, the company offers a broad portfolio including architectural concrete facades, public sanitary facilities, railway construction, noise protection, and photovoltaic technologies. The website reflects a professional and comprehensive digital presence, leveraging TYPO3 CMS and modern frontend technologies to deliver a user-friendly experience. Security posture is generally good with HTTPS and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. The absence of WHOIS data for the domain is a notable anomaly that warrants further investigation to confirm domain legitimacy. Overall, HERING presents as a credible and mature business with strong market positioning in the transportation and construction industries.

F

floorING - Stavebná spoločnosť

flooring.sk

45

floorING is a Slovak construction company specializing in industrial flooring and parking area construction, with over 10 years of experience. The company positions itself as a professional and reliable partner offering comprehensive services from substrate preparation to final concrete layers. Their market presence is supported by a portfolio of significant projects and positive customer testimonials. Technically, the website is built on a modern WordPress platform using Elementor and related plugins, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and a published privacy policy, which are recommended for compliance and trust. Overall, the business appears legitimate and well-established with clear contact information and consistent branding.

P

PRUNIWERK a.s.

pruniwerk.cz

48

PRUNIWERK a.s. is a Czech manufacturing and trading company specializing in aluminum construction products including windows, doors, facades, skylights, and fire ventilation systems. Established in 2012 and with over 25 years of industry experience, the company serves construction professionals and investors primarily in the Czech Republic and Slovakia. It is a member of the Purposia group since 2023, enhancing its market position and collaboration capabilities. The website reflects a professional business with detailed product offerings, references, and a clear focus on quality and certifications. Technically, the site uses modern JavaScript libraries and frameworks, is hosted with a reputable Czech provider, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the website is well-designed, trustworthy, and compliant with privacy regulations.

D

DuMont Mediengruppe GmbH

dumont.de

59

DuMont Mediengruppe GmbH is a well-established German media and technology company with a rich history spanning over 400 years. The company operates multiple subsidiaries and brands in the media sector, offering digital content, marketing technologies, and publishing services. Their website reflects a mature digital presence with professional design, multilingual support, and comprehensive privacy and cookie policies, targeting a general audience interested in media and technology. Technically, the site is built on WordPress with Elementor and optimized for performance and SEO, demonstrating modern web standards and mobile responsiveness. Security posture is strong with HTTPS enforcement and security best practices, though formal security policies and incident response information are not publicly disclosed. Overall, the website is trustworthy, professional, and compliant with GDPR requirements.

D

DbjE WEB EFFECTIVE Digitalagentur

dbje.de

44

DbjE WEB EFFECTIVE Digitalagentur is a small technology-focused digital agency based in Hannover, Germany. They specialize in web design, marketing, TYPO3 CMS development, digital strategy, and AI consulting services. The company targets businesses seeking comprehensive digital agency solutions with a regional focus. Their website is professionally designed, consistent in branding, and provides clear contact information and service descriptions. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes privacy-conscious analytics and cookie consent mechanisms. Security posture is adequate but could be improved with explicit security policies and headers. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy.

V

VYSPLAN s.r.o

vysplan.cz

41

VYSPLAN s.r.o is a Czech consulting and project company specializing in technical supervision of builders, safety coordination (BOZP), engineering activities, and comprehensive processing of all stages of construction project documentation. Established in 2006, the company serves primarily the construction and transportation sectors with a focus on technical oversight and engineering consulting. Their market position is that of a specialized small business with a stable presence in the Czech Republic. The website is professionally designed using WordPress and Elementor, with multilingual support and structured data for SEO. The technical infrastructure is modern and well-maintained, hosted likely by WEDOS, a Czech hosting provider. Security posture is adequate with HTTPS enforced, but lacks visible security headers and formal privacy or cookie policies, which are compliance gaps. Contact information is clearly provided, including physical addresses and a company email, but no phone numbers are explicitly listed. Overall, the website is trustworthy and business credible but would benefit from enhanced privacy compliance and security best practices.

C

CHVÁLEK ATELIÉR s.r.o.

chvalekatelier.cz

47

CHVÁLEK ATELIÉR s.r.o. is a Czech Republic based architectural and engineering firm specializing in 3D architecture, urbanism, engineering preparation, and interior design services. The company targets clients seeking comprehensive and individualized architectural solutions, positioning itself as a professional and reliable service provider in the regional real estate and construction sector. The website reflects a well-structured and professionally designed digital presence, leveraging modern web technologies and CMS platforms to deliver a good user experience across devices. From a technical perspective, the site uses a variety of contemporary JavaScript libraries and frameworks such as jQuery, Swiper.js, and Google Tag Manager, integrated with analytics and social media SDKs. The site is hosted securely with HTTPS and includes cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy policy documentation. Security posture is moderate with HTTPS enforced and no visible sensitive data exposure, but the absence of security headers and incident response information suggests room for improvement. The lack of WHOIS data is a notable gap, limiting the ability to fully verify domain legitimacy and ownership, which slightly reduces overall trustworthiness. Overall, the website is a credible and professional representation of the business with good content quality and user experience. Strategic improvements in security policies, privacy documentation, and domain registration transparency would enhance trust and compliance.

HeyLink.au is a technology-focused business offering Australian customers the ability to register .AU domains combined with a smart link-in-bio page platform. The service targets Australian businesses, creators, and professionals seeking a localized and credible digital presence. The website is well-designed, mobile-optimized, and leverages modern web technologies such as Next.js and React. It integrates Google Analytics for user tracking but lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is generally good with HTTPS enforced, but the absence of security headers and incident response policies suggests room for improvement. Overall, the domain registration data is limited but consistent with a legitimate Australian-based service. The risk profile is low, with recommendations to enhance privacy compliance and security headers to strengthen trust and regulatory adherence.

A

act legal

actlegal.com

54

act legal is a German-based legal services provider established in 2014, offering legal advice and consultancy primarily to German-speaking clients. The website presents a professional design with moderate content quality and good user experience, targeting individuals and businesses seeking legal support. The technical infrastructure includes modern web technologies such as Bootstrap, Google Tag Manager, and CookieHub for cookie consent management. Hosting and domain registration are managed via GoDaddy.com, LLC, with a domain age consistent with a mature business presence. Security posture is moderate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy or terms of service pages detected. Overall, the website is functional and trustworthy but would benefit from enhanced privacy disclosures and security practices.

F

Fundacja Centrum im. prof. Bronisława Geremka

geremek.pl

48

Fundacja Centrum im. prof. Bronisława Geremka is a Polish non-profit foundation established in 2008 to preserve and promote the legacy and public values represented by Professor Bronisław Geremek. The foundation engages in educational programs, public debates, monitoring disinformation, and publishing relevant materials. The website reflects a professional and consistent brand image targeting a general audience interested in culture, education, and European values. Technically, the site is built on WordPress with modern frameworks and includes SEO and accessibility features, though some improvements in security headers and DNSSEC could enhance its posture. The security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, well-maintained, and aligned with the foundation's mission.

Vila48.cz is a professionally designed website representing a residential rental business located in Ostrava, Czech Republic. The company offers six modern, fully equipped apartments combining hotel comfort with private rental flexibility, targeting firms, managers, tourists, students, and individuals seeking transitional housing. The business has a credible market position supported by an award-winning renovation and a clear focus on premium residential services. Technically, the website is built on WordPress with Elementor, leveraging modern JavaScript libraries and Google services for analytics and marketing. The site is mobile-optimized and SEO-friendly with structured data implementation. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks security headers and formal privacy or cookie policies, indicating compliance gaps. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

M

Missionsprokur der Don Bosco Schwestern

fmamission.de

59

The Missionsprokur der Don Bosco Schwestern is a small German non-profit organization dedicated to supporting development aid projects worldwide, primarily through the efforts of the Don Bosco Sisters. The website clearly communicates its mission, provides donation options, and highlights key projects in various countries. The organization maintains a consistent brand presence and offers transparent contact and banking information to foster trust with donors. Technically, the site is built on the siteswift CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and implements a cookie consent mechanism compliant with GDPR. Security posture is adequate with HTTPS and CSRF protections, though some security headers are missing and no explicit security policies are published. Overall, the site is professional, accessible, and trustworthy, with moderate analytics tracking via Matomo and no signs of malicious content or blocking mechanisms.

V

VIDES Freiwilligendienst

vides-freiwilligendienst.net

63

VIDES Freiwilligendienst is a non-profit organization affiliated with the Don Bosco Sisters, providing international volunteer opportunities primarily in education and social services for young adults. The organization has a well-structured website offering detailed information about volunteer placements, preparation, and support, targeting socially engaged youth interested in global solidarity. The website is professionally designed, mobile-optimized, and uses modern web technologies including jQuery, Swiper.js, and a proprietary CMS (siteswift). Privacy and cookie consent mechanisms are implemented in compliance with GDPR standards. However, the WHOIS data for the domain is missing or inaccessible, which raises concerns about domain registration transparency despite the professional appearance of the site. Security posture is generally good with HTTPS and CSRF protections, but lacks explicit security policies or incident response contacts. Overall, the website is trustworthy and serves its non-profit mission effectively, though domain registration verification is recommended.

Č

České dráhy, a.s.

ceskedrahy.cz

53

České dráhy, a.s. is the largest Czech railway carrier with a nearly 200-year tradition, providing passenger and freight transport services along with related services such as certification, testing, repairs, education, and IT solutions. The company holds a strong market position in the Czech Republic and is expanding its presence internationally. The website reflects a mature digital infrastructure built on Drupal 10, with modern web technologies and good mobile optimization. Privacy and cookie policies are implemented with GDPR compliance, and user tracking is conducted responsibly with IP anonymization. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and well-aligned with the company's business profile.

B

Brot für die Welt

brot-fuer-die-welt.de

65

Brot für die Welt is a well-established German non-profit organization focused on global development aid, working with local partners in over 80 countries. The website reflects a mature digital presence built on TYPO3 CMS, featuring multilingual support, clear donation pathways, and educational resources. The organization demonstrates strong transparency and trust signals, including the DZI donation seal and detailed project information. Technically, the site uses modern frameworks and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers could be enhanced. Overall, the site is professional, trustworthy, and aligned with the organization's mission and audience.

G

Gessner & Jacobi GmbH & Co.KG

gessner-jacobi.de

56

Gessner & Jacobi GmbH & Co.KG is a medium-sized automotive dealership based in Hannover, Germany, specializing in new and used Volkswagen, Audi, Skoda, and Volkswagen Nutzfahrzeuge vehicles. The company offers a comprehensive range of services including vehicle sales, servicing, repairs, parts supply, financial services, and fleet solutions for large customers. Their website reflects a professional and modern digital presence, leveraging Next.js and React frameworks with a WordPress backend, hosted by Goneo. The site is well-optimized for mobile and SEO, providing clear navigation and rich content relevant to their target audience. Security posture is strong with HTTPS and security headers implemented, though some compliance aspects like cookie consent and terms of service could be improved. Overall, the website supports the company's market position as a trusted regional automotive service provider with strong brand partnerships and active social media engagement.

F

Fairsicherungsladen Hannover GmbH & Co. KG

fair-sicherungsladen.de

43

Fairsicherungsladen Hannover GmbH & Co. KG is a small, established insurance agency based in Hannover, Germany, offering independent and fair insurance and financial consulting services to both private and corporate clients. The company emphasizes sustainable investment options and cyber insurance, positioning itself as a trusted local advisor with 24 years of experience and a strong customer base. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and Swiper.js, hosted likely on kasserver.com. It is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. The site employs HTTPS with an excellent SSL configuration and includes cookie consent mechanisms, but lacks explicit security headers and detailed security policies. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but could improve by implementing security headers and publishing incident response information. No vulnerabilities or suspicious content were detected. The WHOIS data is consistent with the website's claims, supporting the legitimacy of the domain and business. Overall, the website is professional, trustworthy, and compliant with GDPR, with minor areas for security and technical enhancement. The risk level is low, and the site effectively supports the business's market positioning and customer engagement.

K

KSG Hannover GmbH

ksg-hannover.de

45

KSG Hannover GmbH operates as a regional real estate company in Germany, specializing in rental, sales, and new construction of residential properties. The company emphasizes community engagement through its neighborhood association win e.V. The website is built on TYPO3 CMS and integrates modern JavaScript libraries and a consent management platform to ensure GDPR compliance. Matomo analytics is used for privacy-conscious user tracking. Security posture is moderate with room for improvement in HTTP security headers and published security policies. Contact information and customer service are clearly presented, enhancing business credibility.

S

Scala Z Media GmbH

scala-z.de

54

Scala Z Media GmbH is a small media company based in Munich and Berlin, specializing in the development and production of feature films, documentaries, and digital media content. Founded in 2018 by Angelika Hacker and Ulrich Krenkler, the company has established itself as an innovative player in the media sector, recognized by awards such as the 'Employer of the Future'. Their business model includes media production, educational learning platforms, and an online shop, targeting a general audience interested in quality storytelling and educational content. The company maintains partnerships with reputable organizations like UNICEF and Welthungerhilfe, enhancing its social responsibility profile. Technically, the website is built on a modern WordPress CMS with Elementor and WooCommerce, hosted by Alfahosting. The site demonstrates good SEO practices, mobile optimization, and moderate performance. Security posture is adequate with HTTPS enforced and secure forms, though explicit security headers and formal security policies are absent. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the security posture is solid but could benefit from enhanced security headers, published incident response contacts, and vulnerability disclosure policies. The website is fully accessible without WAF or blocking mechanisms, and content safety is rated safe for general audiences. Strategic recommendations include improving privacy transparency, adding security policies, and formalizing incident response procedures to strengthen trust and compliance.

M

MGGU - Museum Giersch der Goethe-Universität

museum-giersch.de

42

Museum Giersch der Goethe-Universität is a small, university-affiliated cultural institution based in Frankfurt am Main, Germany. The museum focuses on art exhibitions, educational workshops, and cultural events, serving a broad audience including students, researchers, and the general public. The website reflects a professional and consistent brand image, with clear navigation and multilingual support via a translation widget. The institution operates a museum shop and offers guided tours and lectures, positioning itself as a regional cultural hub with strong ties to Goethe University. Technically, the website is built on WordPress CMS, utilizing modern JavaScript libraries such as jQuery and Swiper.js for interactive elements. It employs Borlabs Cookie for GDPR-compliant cookie consent management and integrates Google reCAPTCHA to secure forms. Hosting is provided by kasserver.com, and the site uses HTTPS with good SSL configuration. While security headers are not explicitly detected, the site follows basic security best practices. The website is mobile-optimized and performs moderately well, with room for improvement in accessibility and security header implementation. From a security perspective, the site demonstrates a reasonable posture with encrypted connections, form protection, and cookie consent. However, it lacks a published security policy, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie management. Contact information is complete and transparent, enhancing trustworthiness. Overall, the website is a well-maintained, secure, and privacy-conscious platform for a university museum. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure policy to further strengthen security posture and trust. The site is safe for general audiences and does not contain any adult or questionable content.

B

British Chamber of Commerce in the Czech Republic

powertalks.cz

43

Powertalks.cz is a professionally designed website dedicated to a mentoring program aimed at empowering young women aged 18-29 in Czechia and Slovakia. The program is a partnership between Kérastase, a luxury haircare brand, and the British Chamber of Commerce in the Czech Republic. The website provides detailed information about the mentoring process, topics, timeline, mentors, and related events such as the Power Talks Conference. It also offers a contact form for email collection and mentor applications. The site is built on WordPress using Elementor and Yoast SEO, ensuring good technical infrastructure and SEO optimization. However, the absence of a visible privacy policy and cookie consent mechanism indicates compliance gaps. Security posture is generally good with HTTPS enabled, but lacks security headers and incident response information. WHOIS data is unavailable, limiting domain trust assessment, but the presence of reputable partners and media mentions supports legitimacy.

W

Wirtschaftsvereinigung für den Kreis Steinfurt e.V.

wvs-steinfurt.de

48

Wirtschaftsvereinigung für den Kreis Steinfurt e.V. is a well-established regional business association founded in 1972, focused on representing and supporting the economic interests of companies in the Kreis Steinfurt region of Germany. The organization provides networking opportunities, events, and information dissemination to its members, positioning itself as a key regional business network with a strong local presence. The website reflects this with detailed event listings, news updates, and a professional presentation aligned with its mission. Technically, the website is built on WordPress using Elementor and Yoast SEO, leveraging modern web technologies including Google reCAPTCHA v3 for form security and Google Tag Manager for analytics. The site is hosted behind Cloudflare DNS, ensuring reliable performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses spam protection on forms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is limited as no privacy or cookie policies were found, which is a notable gap given GDPR requirements. Overall, the website is professional, trustworthy, and serves its business purpose well, but should improve privacy disclosures and security transparency to enhance compliance and user trust.

K

Kongregation der St. Franziskusschwestern Vierzehnheiligen

fs-vierzehnheiligen.de

47

The Kongregation der St. Franziskusschwestern Vierzehnheiligen is a small non-profit religious organization based in Germany, focused on spiritual programs, community engagement, and support services. Their website serves as an information portal for their congregation, offering multilingual content and promoting their events, spiritual guidance, and volunteer opportunities. The organization maintains a clear and consistent brand presence with accessible contact information and active social media channels. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Swiper.js for enhanced user experience. The site is hosted on servers associated with kasserver.com and employs HTTPS with Google Tag Manager for analytics. Mobile optimization and SEO practices are good, though accessibility features are basic. Cookie consent mechanisms are implemented in compliance with GDPR. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, indicating a legitimate and trustworthy domain. However, there is no explicit security policy or incident response information available. Overall, the website is professional, trustworthy, and compliant with privacy regulations, suitable for its target audience. Strategic improvements in security headers and explicit security policies could further enhance its posture.

S

SALESDOCk s.r.o.

salesdock.com

68

SALESDOCk s.r.o. is a professional B2B sales consulting company specializing in building and optimizing sales departments for tech startups, scaleups, and large tech companies. Their market position is strong, supported by over 400 clients and positive testimonials, with key services including sales academies focused on prospecting, go-to-market strategies, sales processes, and value-based selling. The company operates primarily in the technology sector and is based in the Czech Republic. Technically, the website is built on Webflow CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, Pardot, and ZoomInfo pixels, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced, cookie consent mechanisms, and use of reCAPTCHA, though explicit security headers and policies could be improved. The WHOIS data is unavailable, which slightly reduces trust but the professional content and business registration details support legitimacy. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, making it a credible and trustworthy online presence for the company.

D

Deutscher Landwirtschaftsverlag GmbH

dlv.de

67

Deutscher Landwirtschaftsverlag GmbH operates a comprehensive media platform focused on agriculture and forestry sectors in Germany. The website serves as a hub for their media brands, subscription services, events, and digital content. It targets professionals and enthusiasts in the agricultural and forestry industries, offering a broad portfolio of magazines, special issues, and digital media. Technically, the site is built on Drupal 10 with modern frontend technologies like Tailwind CSS and Swiper.js, ensuring good mobile optimization and user experience. Security posture is solid with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and consent management. Overall, the site reflects a professional, trustworthy media company with a strong digital presence and good business credibility.

E

Erzdiözese München und Freising

fachstelle-md.online

61

5.MD – Medien und Digitalität is a specialized office under the Archdiocese of Munich and Freising, focusing on media, digital transformation, and religious education. The website serves educators and religious professionals by providing media resources, educational publications, events, and digital tools. The organization operates as a non-profit entity within the religious and educational sectors in Germany. Technically, the website is built on Webflow CMS and employs modern JavaScript libraries for enhanced user experience, including Swiper and Splide for sliders, and Cookiebot for GDPR-compliant cookie management. Security is robust with HTTPS, security headers, and no visible vulnerabilities. Privacy policies and terms of service are clearly presented, reflecting good compliance with GDPR. The site links to reputable partners and maintains consistent branding and professional content quality.

S

Stadt Kronach

kronach.de

53

Stadt Kronach operates an official municipal website serving as a comprehensive portal for residents, tourists, and stakeholders interested in the city of Kronach, Germany. The website provides detailed information on tourism, culture, city services, politics, and community events, positioning itself as a trusted source for local information and engagement. The business model is focused on public service and community outreach, with a medium-sized municipal scope. Technically, the site employs a modern technology stack including jQuery, Bootstrap 4, and accessibility tools like Eye-Able, ensuring good performance, mobile optimization, and accessibility compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

O

Ortodentik s.r.o.

ortodentik.sk

46

Ortodentik s.r.o. is a specialized orthodontic clinic based in Bratislava, Slovakia, operating since 2007. The company focuses on orthodontic diagnostics, treatment, and prevention for children and adults, offering services such as fixed, removable, and invisible braces, as well as dental hygiene. The website reflects a well-established local healthcare provider with a clear market position and a professional online presence. Technically, the site is built on WordPress with modern plugins and frameworks, including Yoast SEO and Nectar Blocks, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR cookie mechanisms. Overall, the website is trustworthy, professional, and user-friendly, supporting the business's credibility and customer engagement.

P

PressMedia.net

pressmedia.net

55

PressMedia.net is a small media business specializing in article writing and publication services targeted at the Czech and Slovak markets. The company offers various packages for SEO optimized lifestyle articles and publication in a network of partner magazines and websites. The website is professionally designed with good navigation and mobile optimization, supporting e-commerce transactions through a custom platform. Technically, the site uses modern tools such as Google Analytics, Google Tag Manager, and reCAPTCHA for security on login forms. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enforced but lacks security headers and explicit cookie consent mechanisms. Overall, the business appears operational and credible but would benefit from improved transparency and privacy compliance.

K

Katholische Erziehergemeinschaft Bayern e. V. (KEG)

keg-bayern.de

43

KEG Bayern is an independent, overconfessional professional association representing educators and pedagogues across all educational sectors in Bavaria, including kindergartens, schools, and universities. The organization advocates for the educational and professional interests of its members, emphasizing equitable education and upbringing based on Christian social ethics. Their services include tariff negotiations, training and further education, insurance offerings, and personalized advice throughout members' careers. The website reflects a well-structured, professional digital presence built on TYPO3 CMS, integrating modern frontend technologies and social media engagement. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit privacy and terms policies are not found in the provided content. Overall, KEG Bayern presents as a credible and established entity within the education sector in Germany.

B

home

bildungshaus-obertrubach.de

49

bildungshaus-obertrubach.de appears to be a small-scale website focused on gambling and casino legal topics, targeting a mature audience interested in gambling. The site content is minimal, with a single main service link labeled 'Casino Legal' and multiple gambling-related trust badges displayed prominently. The technical infrastructure leverages Cloudflare for DNS and CDN services and includes the Swiper.js library for UI elements. However, the site lacks comprehensive content, privacy and cookie policies, and contact information, which limits its professionalism and user trust. Security posture is moderate due to the use of Cloudflare and trust badges but lacks visible security headers and incident response contacts. Overall, the website is functional but basic, with room for significant improvements in content, compliance, and security.

R

Romina Mineralbrunnen GmbH

romina.de

48

Romina Mineralbrunnen GmbH is a well-established mineral water bottling company based in Reutlingen-Rommelsbach, Germany, with a strong regional presence primarily in Baden-Württemberg and neighboring regions. The company produces and distributes popular mineral water brands EiszeitQuell and SilberBrunnen, operating multiple production lines and employing around 130 staff. Their business model focuses on manufacturing and regional distribution through beverage and food retail channels, including bio markets and hospitals. The website reflects a professional and consistent brand image with clear navigation and relevant content for their target audience. Technically, the website is built on WordPress using standard JavaScript libraries such as jQuery and Swiper.js. It demonstrates good mobile optimization and SEO practices, though accessibility features are basic. The site uses HTTPS with no detected blocking or WAF challenges, and includes a cookie consent mechanism compliant with GDPR requirements. Analytics tracking via Google Analytics is implemented but disabled by default pending user consent. From a security perspective, the site employs HTTPS and cookie consent best practices but lacks explicit security headers and a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is consistent with the business claims, showing no suspicious patterns and supporting the legitimacy of the domain. Overall, Romina Mineralbrunnen GmbH presents a trustworthy and professional online presence with good compliance and security posture for its business size and sector. Recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and compliance.

D

Deutschsprachige Provinz der Don Bosco Schwestern

donboscoschwestern.net

63

The website represents the Deutschsprachige Provinz der Don Bosco Schwestern, a Catholic women's religious order active since 1922 in Germany and Austria. Their mission focuses on education, accompaniment, and housing for children and youth. The organization maintains a professional online presence with clear branding, comprehensive content, and active social media channels. Technically, the site uses a modern CMS (siteswift), jQuery, and various UI libraries, with a cookie consent manager ensuring GDPR compliance. Security posture is moderate with CSRF protections and consent mechanisms but lacks visible HTTP security headers and published security policies. WHOIS data is unavailable, which slightly reduces domain trust but does not detract from the site's professionalism. Overall, the site is a credible, well-maintained digital asset for a non-profit religious organization.