Security Directory

A

Atikon EDV & Marketing GmbH

atikon.at

67

Atikon EDV & Marketing GmbH is a specialized marketing and advertising company focused on serving tax consultants and accounting firms primarily in Austria. Established since 2000, the company offers a broad range of services including online marketing, SEO, social media advertising, graphic design, and consulting for firm founding and succession. Their market position is that of a trusted specialist in their niche, supported by a professional and well-structured website that clearly targets tax consultancy professionals. Technically, the website employs modern analytics and marketing tools such as Matomo, Hotjar, Google GTag, and Meta Pixel, indicating a mature digital infrastructure. The site is well optimized for mobile and accessibility, with good SEO practices and a comprehensive privacy and cookie consent mechanism, reflecting strong compliance with GDPR requirements. Security posture is generally good, though explicit security headers were not detected in the provided data, and no critical vulnerabilities were found. The WHOIS data for the domain www.atikon.com is unavailable, which raises some concerns about domain registration transparency; however, the website content and business information appear legitimate and consistent with the claimed business. Overall, the risk is moderate with recommendations to improve security headers and clarify domain registration details.

A

Atikon EDV & Marketing GmbH

atikon.com

66

Atikon EDV & Marketing GmbH is a specialized marketing and advertising company focused on serving tax consultants and accounting firms primarily in Austria. Established since 2000, the company offers a broad range of marketing services including online marketing, SEO, social media advertising, and consulting for firm founding and succession. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the site employs reputable analytics and marketing tools such as Matomo, Hotjar, Google GTag, and Meta Pixel, indicating a modern approach to data-driven marketing. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and registration status, which is inconsistent with the company's claimed history and professional image. Security posture is adequate with HTTPS and consent management but lacks visible security headers and incident response information. Overall, the website is professional and trustworthy in content and design but requires verification of domain registration and enhancement of security best practices.

P

Plan International Deutschland e.V.

plan.de

67

Plan International Deutschland e.V. is a well-established non-profit child rights organization operating globally with a focus on improving the lives of children, especially girls, through sponsorship and humanitarian aid. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to donors and supporters. Technically, the site uses TYPO3 CMS with modern JavaScript frameworks and includes privacy and cookie consent mechanisms, indicating compliance with GDPR and user privacy standards. Security posture is strong with HTTPS and secure forms, though some security headers could be improved. Overall, the domain registration and WHOIS data align well with the organization's claims, supporting legitimacy and trustworthiness.

R

Regionalwerke Baden

rwb-kundenportal.ch

59

Regionalwerke Baden operates as a regional energy utility provider in Switzerland, offering a secure customer portal for managing energy consumption, invoices, contracts, and meter readings. The website is professionally designed with clear navigation and is optimized for mobile devices. The technical infrastructure includes modern web technologies and analytics tools such as Matomo and Siteimprove, indicating a moderate to advanced digital maturity. Security measures include HTTPS enforcement and CSRF protection on login forms, with recommendations for multi-factor authentication to enhance account security. Privacy compliance is addressed with accessible privacy and cookie policies and a consent mechanism. Overall, the website demonstrates a strong security posture and business credibility appropriate for a utility provider.

The website www.oberwil.ch serves as the official digital portal for the municipality of Oberwil in Switzerland. It provides comprehensive information and services to residents, including news updates, event calendars, municipal services, and contact details. The site targets local citizens and stakeholders seeking access to government resources and community information. The business model is centered on public service delivery and community engagement, positioning the municipality as a transparent and accessible local government entity. Technically, the website is built on the iCMS platform, a Swiss municipal content management system, utilizing modern web technologies such as JavaScript, CSS, and HTML5. The site demonstrates good mobile optimization, accessibility, and SEO practices, with moderate performance and a clean, professional design. Hosting is provided by a Swiss provider, ensuring local data handling. From a security perspective, the site uses HTTPS and secure form submissions but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and appear GDPR compliant, with minimal user tracking via Swiss-based analytics. Overall, the website is trustworthy, professional, and well-maintained, suitable for its public service role. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen security posture and user trust.

S

Sportzentrum Herisau

sportzentrum-herisau.ch

61

Sportzentrum Herisau is a well-established local sports and wellness center in Switzerland offering a broad range of services including ice skating, swimming pools, sauna, massage, fitness courses, and event spaces. The website reflects a mature digital presence with clear navigation, comprehensive service descriptions, and multiple contact channels. The technical infrastructure is based on a Swiss CMS platform with modern web technologies and good mobile and accessibility support. Security posture is solid with HTTPS and basic security best practices, though there is room for improvement in explicit security headers and published security policies. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms. Overall, the site presents a trustworthy and professional image suitable for its community-focused business model.

A

Alterszentrum Rubiswil

alterszentrum-schwyz.ch

57

Alterszentrum Rubiswil is a Swiss senior care center providing comprehensive residential, hospice, and support services for elderly residents and their families. The website reflects a well-established local institution with a clear focus on healthcare and community engagement. The site is professionally designed, accessible, and regularly updated with relevant news and events, targeting elderly individuals, their relatives, and healthcare professionals. Technically, the site uses a custom CMS (iCMS) with modern frontend technologies and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though it lacks explicit published security policies or incident response information. Privacy compliance is evident through a GDPR-compliant cookie consent mechanism and a clear privacy policy. Overall, the website presents a trustworthy and credible digital presence for a healthcare institution in Switzerland.

S

Stadt Rapperswil-Jona

rapperswil-jona.ch

54

Stadt Rapperswil-Jona operates as the official municipal government website for the city of Rapperswil-Jona, Switzerland. It provides a wide range of public services, information on city administration, events, and community engagement tools. The site targets residents, visitors, and local businesses, offering online services such as an online counter, event information, and contact options. The website holds a strong market position as the authoritative source for municipal information and services in the region. Technically, the website is built on a modern infrastructure using i-web CMS, Bootstrap framework, and JavaScript technologies. It employs Matomo for analytics, ensuring privacy-conscious data collection. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting is provided by a Swiss hosting provider, enhancing data sovereignty and reliability. From a security perspective, the website enforces HTTPS and uses secure forms for user login. While no critical vulnerabilities or exposed sensitive data were detected, the absence of security headers and a formal security policy or incident response contact suggests room for improvement. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and user-centric design. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, and adding a security.txt file to facilitate vulnerability disclosures. These steps would further enhance the site's security posture and trustworthiness.

S

Schule Uitikon

schule-uitikon.ch

61

Schule Uitikon is a local public educational institution serving the community of Uitikon, Switzerland. The website provides comprehensive information about the school, including educational offerings, administrative contacts, extracurricular activities, and community engagement. The site targets parents, students, staff, and local residents, offering services such as primary and secondary education, student care, adult education, and school administration. The institution positions itself as a trusted local school with a focus on community and educational quality. Technically, the website is built on the i-web.ch CMS platform, utilizing modern web technologies such as JavaScript, CSS, and HTML5. It incorporates accessibility features and responsive design, ensuring usability across devices. The site uses Owl Carousel for interactive content presentation and hosts images and scripts primarily on Swiss domains, indicating local hosting. Performance is moderate with good SEO and mobile optimization. From a security perspective, the website enforces HTTPS and includes secure login forms for user authentication. It employs a consent mechanism for anonymized web statistics, demonstrating privacy awareness. However, it lacks explicit published security policies, incident response contacts, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected. Security headers appear limited, suggesting room for improvement in hardening. Overall, the website is trustworthy, professional, and well-maintained, with strong alignment between WHOIS registration data and website content. The risk level is low, but strategic enhancements in security policy transparency and incident response readiness are recommended to strengthen the security posture and compliance further.

G

Gemeinde Fisibach

fisibach.ch

10

Gemeinde Fisibach operates as the official municipal government website for the community of Fisibach in Switzerland. It provides residents and visitors with comprehensive information and services including political updates, administrative details, educational resources, safety information, and local events. The site targets local citizens and stakeholders, offering an accessible online portal for municipal services such as the online counter and e-move registration. The business model is that of a public sector entity focused on community service and information dissemination. Technically, the website is built on a modern CMS platform (i-web.ch) with responsive design and accessibility considerations. It uses standard web technologies including HTML5, CSS3, JavaScript, and SVG icons, with Bootstrap framework elements evident. The site demonstrates good SEO and mobile optimization, though hosting provider details are not explicit. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating awareness of privacy compliance. However, explicit security headers are not detected in the HTML content, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the content. The WHOIS data aligns with the municipal nature of the site, confirming legitimacy. Overall, the website is a trustworthy, well-maintained municipal portal with good content quality and user experience. Strategic improvements could include enhanced security headers, explicit security policies, and publishing a vulnerability disclosure policy to strengthen security posture and trust.

G

Gemeindewerke Villmergen

gwv.ch

55

Gemeindewerke Villmergen is a Swiss municipal utility company providing essential services including electricity, water, and heat supply, along with complementary services such as electrical installations, e-mobility charging solutions, and photovoltaic system planning and installation. The company positions itself as a local energy provider focused on sustainable and future-oriented energy solutions, targeting private customers, businesses, and large clients within the Villmergen region. Their digital presence reflects a well-structured and professionally designed website with clear navigation and comprehensive service offerings. Technically, the website is built on a Swiss CMS platform (i-web.ch) utilizing modern frontend technologies such as JavaScript, CSS, and Swiper.js for interactive elements. The site is mobile-optimized, accessible, and performs moderately well. Privacy compliance is strong, with a clear privacy and cookie policy including a consent mechanism. Analytics are handled via a custom anonymized web statistics service hosted in Switzerland, ensuring user privacy. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, indicating a legitimate and trustworthy domain registration. Overall, the website demonstrates a solid digital maturity level with good business credibility and privacy compliance. Strategic improvements could include publishing a formal security policy, adding security headers, and providing a vulnerability disclosure channel to enhance trust and security posture further.

W

Weggis Schule

schule-weggis.ch

59

Weggis Schule is a public educational institution located in Weggis, Switzerland, providing comprehensive education services from kindergarten through secondary school. The website serves as an information hub for students, parents, and staff, detailing school cycles, leadership, social services, and community engagement. The school positions itself as a vibrant and diverse learning environment benefiting from the region's favorable climate and community support. Technically, the website is built on a modern CMS platform (i-web.ch), utilizing responsive design, JavaScript frameworks like Swiper.js for interactive elements, and standard web technologies. Privacy compliance is addressed with clear privacy and cookie policies, including user consent mechanisms for anonymized web statistics. Security posture is adequate with HTTPS usage and secure login forms, though additional security headers and incident response information could enhance trust. Overall, the domain registration aligns with the school's identity, indicating legitimacy and consistency. The site is safe for general audiences with no adult or questionable content.

V

Variety

variety.com

10

Variety is a well-established entertainment media company providing news, film reviews, awards coverage, and industry event information. The website demonstrates a mature digital presence with a professional design, mobile optimization, and integration of multiple advertising and analytics technologies. The domain is long-standing and consistent with the business's history and market position. Security posture is adequate with HTTPS and domain transfer protections, though improvements such as enabling DNSSEC and publishing explicit security policies are recommended. Privacy compliance is basic with a cookie consent mechanism but lacks visible privacy and terms of service pages. Overall, the site is trustworthy and professionally maintained, serving a broad audience interested in entertainment industry content.

werk.ARCHITEKTEN is a Swiss architecture cooperative specializing in architecture, urban planning, and sustainable building projects. The firm emphasizes responsible resource use and high architectural quality tailored to client needs. Their collaborative approach includes partnerships with experts in related fields and engagement in academic teaching and quality assurance processes. The website reflects a professional and regionally focused architecture practice with clear contact information and a cookie consent mechanism ensuring GDPR compliance. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Google Analytics, with responsive design and basic accessibility features. The site is served over HTTPS with no detected blocking or WAF interference, indicating good digital maturity. However, security headers are not explicitly present, and no formal security or incident response policies are published. From a security perspective, the site benefits from HTTPS and cookie consent but lacks advanced security headers and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the website content, supporting legitimacy and trustworthiness. Overall, the website presents a secure, professional, and compliant digital presence suitable for a small architecture cooperative. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance the security posture and user trust.

S

sayanythingstream.com

sayanythingstream.com

56

The website sayanythingstream.com appears to be a newly registered domain (April 2023) with minimal publicly accessible content. The site uses modern JavaScript frameworks such as Vue.js and Nuxt.js and is delivered via a fast CDN, indicating a contemporary technical infrastructure. However, the website lacks substantive business information, contact details, and any visible privacy or security policies, which limits its credibility and trustworthiness. Security posture is basic with HTTPS enabled but no advanced security headers or DNSSEC. Advertising and tracking scripts are present but without clear privacy compliance mechanisms. Overall, the site is accessible and safe but lacks maturity and transparency.

B

Bundesministerium für Umwelt, Klimaschutz, Naturschutz und nukleare Sicherheit

bmuv.de

75

The Bundesministerium für Umwelt, Klimaschutz, Naturschutz und nukleare Sicherheit (BMUKN) is the official German federal government ministry responsible for environment, climate protection, nature conservation, and nuclear safety. The website serves as a comprehensive information portal providing policy updates, public funding programs, event announcements, and opportunities for public participation. It targets citizens, environmental professionals, and policymakers. The ministry holds a strong market position as a key governmental authority in Germany with a large organizational size and a focus on sustainability and environmental governance. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies including HTML5, CSS, and JavaScript. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security-wise, the site enforces HTTPS and follows several best practices, though it lacks some advanced security headers and explicit security policy disclosures. Overall, the security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Contact is primarily via a contact form, with no direct emails or phone numbers publicly listed. The site maintains a professional and trustworthy appearance with consistent branding and official social media channels. The risk assessment is low, with recommendations to enhance security headers, publish a vulnerability disclosure policy, and provide incident response contact information to further strengthen trust and security culture.

T

Townsend Music

townsendmusic.blog

55

Townsend Music Blog is a niche media website focused on music news, interviews, articles, official artist stores, and album pre-orders related to Townsend Music. The site targets music enthusiasts and fans of Townsend Music artists, providing curated content and promotional material. The website is built on the Wix platform, leveraging Wix's CMS and hosting infrastructure, which provides a moderate level of technical maturity and mobile optimization. However, the site lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS likely enabled (inferred from Wix hosting), but no explicit security headers or policies are detected. Privacy and cookie policies are absent, which is a compliance gap. The absence of WHOIS data limits domain trust assessment, but the site content and platform suggest legitimate operation. Overall, Townsend Music Blog presents a professional and relevant music content platform but requires improvements in privacy compliance and security transparency.

A

austria.com/plus

mocafirst.at

61

austria.com/plus is a leading premium digital advertising marketer in Austria, offering a wide range of services including programmatic advertising, premium storytelling, targeting, and native advertising. The company serves advertisers and media partners with a strong national and regional reach, boasting over 11 million unique clients as per recent Austrian Web Analysis data. The website demonstrates a mature digital infrastructure with modern technologies such as WordPress CMS, Yoast SEO, Cookiebot for consent management, and integration with Mailchimp for newsletters. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with comprehensive privacy and cookie policies and active consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

L

Landesbank Baden-Württemberg

lbbw.de

76

Landesbank Baden-Württemberg (LBBW) is a large German regional bank with a strong presence in corporate, institutional, and public sector banking. The website reflects a mature financial services provider offering a broad range of services including financing, cash management, advisory, asset management, and corporate finance. The content is well-structured, professionally presented, and targets corporate clients and institutional customers primarily in Germany and internationally. The site emphasizes sustainability and innovation, indicating a forward-looking business model. Technically, the website uses modern JavaScript libraries, lazy loading, and analytics tools such as Matomo, hosted on Telekom Domains infrastructure. The site is mobile-optimized and accessible with good SEO practices. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit incident response and vulnerability disclosure information are not publicly available. Overall, the domain registration data aligns with the website content, supporting legitimacy and trustworthiness.

A

Atikon EDV & Marketing GmbH

atikon.de

67

Atikon EDV & Marketing GmbH is a specialized marketing and advertising agency serving tax consultants primarily in Austria. Established since 2000, the company offers a comprehensive suite of marketing services including online marketing, SEO, social media advertising, and graphic design tailored to the needs of tax consultancy firms. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the site employs modern analytics tools such as Matomo, Hotjar, and Google GTag, alongside a GDPR-compliant cookie consent mechanism, indicating a good level of digital maturity and privacy awareness. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. The absence of WHOIS registration data is a notable concern, suggesting either privacy protection or a domain registration issue, which slightly impacts the trustworthiness assessment. Overall, the site is professional, secure, and compliant, serving a niche market effectively.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is inaccessible or blocked. No meaningful business or contact information is present, and the page serves as a placeholder or error notification within the browser. The technical infrastructure is limited to Chromium's embedded scripts and styles for error display, with no external hosting or CMS detected. Security posture cannot be fully assessed due to lack of accessible content and headers. Overall, the site lacks privacy, cookie, and terms policies, as well as contact or incident response information, resulting in a low trust and compliance profile.

N

NOLIS GmbH

nol-is.de

59

NOLIS GmbH is a well-established German company specializing in digital transformation solutions for public sector entities, particularly municipalities. With over 25 years of experience and more than 400 municipal clients, NOLIS offers a comprehensive E-Government software suite, including a proprietary CMS, online citizen services, childcare placement software, recruiting tools, and GIS-based cartography solutions. Their business model focuses on providing integrated software and consulting services to streamline administrative processes and enhance citizen engagement. Technically, the website demonstrates a mature digital infrastructure with modern web technologies, responsive design, and accessibility considerations. The proprietary CMS and integration of various specialized platforms indicate a robust technical ecosystem. The site is fast-loading, well-structured, and optimized for SEO and mobile devices. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks explicit published security policies, incident response contacts, and security.txt files, which are recommended for enhanced transparency and vulnerability management. No critical vulnerabilities or suspicious elements were detected. Overall, the website and business present a low-risk profile with strong credibility and professionalism. Strategic recommendations include formalizing security policies, enhancing HTTP security headers, and publishing vulnerability disclosure information to further strengthen trust and compliance.

R

Redcare Apotheke

redcare-apotheke.ch

73

Redcare Apotheke is a well-established online pharmacy serving the Swiss market, offering a wide range of health, beauty, and wellness products. It operates under the parent company Shop Apotheke Europe N.V., positioning itself as a trusted and certified provider with strong customer service and secure transaction processes. The website demonstrates a mature digital infrastructure using modern web technologies such as React and Next.js, ensuring good performance and mobile optimization. Security posture is robust, supported by ISO certifications and secure payment options, although explicit incident response contacts and vulnerability disclosure mechanisms could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations.

S

Shop-Apotheke Österreich

shop-apotheke.at

74

Shop-Apotheke Österreich is a leading online pharmacy serving the Austrian market since 2001. It offers a wide range of pharmaceutical and health products including medicines, baby and family care, beauty and wellness, and veterinary products. The company emphasizes customer service with free consultation, secure payment options, and express delivery services. It holds multiple certifications such as Trusted Shops and TÜV ISO 27001, reinforcing its market credibility and trustworthiness. Technically, the website is built on modern frameworks like Next.js and React, optimized for performance and mobile devices, with strong SEO and accessibility features. Security posture is robust with HTTPS, security headers, and no detected vulnerabilities. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site presents a professional, trustworthy, and user-friendly e-commerce platform for healthcare products.

S

Springer Medizin

springermedizin.at

64

Springer Medizin operates a professional medical information portal primarily targeting healthcare professionals in Austria and German-speaking regions. The website offers scientific medical news, journals, podcasts, and continuing education resources, positioning itself as a trusted source affiliated with the reputable Springer Nature publishing group. The business model focuses on content delivery and professional education within the healthcare sector. Technically, the site employs modern web technologies including responsive design, SVG icons, and asynchronous script loading, hosted likely on Springer Nature's infrastructure. Privacy compliance is partially implemented with a cookie consent mechanism but lacks a clearly accessible privacy policy page and terms of service. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are not published. Overall, the site is professional, trustworthy, and safe for its target audience.

K

Karl Landsteiner Institute for Lung Research and Pulmonary Oncology

laluca.at

56

LALUCA is an Austrian research platform focused on the longitudinal analysis of lung cancer data, aiming to improve the quality of care through comprehensive data collection and collaboration among medical institutions. The platform emphasizes molecular biomarker testing and clinical treatment documentation to enhance lung cancer patient outcomes. Technically, the website is built on the Wix platform, utilizing Wix Thunderbolt and related libraries, providing a moderate performance and good mobile optimization. Security measures include HTTPS enforcement and cookie protection scripts, though explicit privacy and cookie policies are absent. Overall, the site presents a professional and trustworthy image aligned with its healthcare research mission.

M

Migros Group

migros-engagement.ch

75

The website engagement.migros.ch is a professionally designed platform representing the social engagement arm of the Migros Group, a leading Swiss enterprise. It focuses on promoting and funding cultural, community, health, education, climate, and technology initiatives. The site targets a broad audience interested in social projects and funding opportunities, positioning itself as a trusted non-profit resource under the Migros brand. Technically, the site uses modern JavaScript libraries, Google Analytics, Facebook Pixel, and OneTrust for cookie consent, indicating a mature digital infrastructure likely powered by Adobe Experience Manager. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. The site shows no signs of adult or unsafe content and is fully accessible without WAF or blocking mechanisms. Overall, the domain registration and website content align well, reflecting high legitimacy and trustworthiness.

M

medici.tv

medici.tv

68

medici.tv is a specialized media streaming platform offering the world's largest collection of classical music and jazz, including live event streaming. The platform targets music enthusiasts and general audiences interested in high-quality classical and jazz content. It operates on a subscription-based business model and holds a strong market position as a leading provider in its niche. Technically, the website employs modern web technologies such as Nuxt.js and JWPlayer, ensuring fast performance, mobile optimization, and good accessibility. The site is well-structured with comprehensive privacy and cookie policies, indicating a mature digital presence. Security-wise, the platform enforces HTTPS, uses security headers, and manages cookie consent effectively, although explicit security policies and incident response information are not publicly available. Overall, the website presents a professional and trustworthy front with no signs of blocking or WAF interference, but the absence of WHOIS data limits transparency regarding domain registration details.

F

filmfriend

filmfriend.ch

58

filmfriend.ch is a Swiss-based streaming platform offering feature films, documentaries, and kids movies accessible via library cards. The service targets a general audience including families, providing ad-free content on multiple devices. Technically, the website is built on Angular 18.2.8 and uses CDN hosting for content delivery, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS and secure forms, but lacks explicit privacy and cookie policies. No contact or incident response information is provided, which could impact user trust and compliance. Overall, the platform is professional and trustworthy with room for improvement in privacy compliance and transparency.

D

divibib GmbH

onleihe.com

10

divibib GmbH operates a professional digital platform focused on simplifying library lending services, notably through its Onleihe solution which supports e-books, e-audio, e-paper, and e-learning for libraries. The company positions itself as a leading provider in the digital library lending market in Germany, targeting libraries and their users with a suite of apps and services. The website reflects a professional and consistent brand image with clear contact information and social media presence, supporting trust and user engagement. Technically, the website employs modern web technologies including Matomo analytics for privacy-conscious tracking, Font Awesome for icons, and a CMS platform (PIM.RED) for content management. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, HTTPS is enforced and cookie consent is implemented, but the site lacks visible security headers and published security policies, which are recommended for enhanced protection. Overall, the security posture is solid but could be strengthened by adding explicit security policies, incident response contacts, and improved header configurations. The absence of privacy and terms of service pages is a compliance gap that should be addressed. The domain registration data aligns well with the website content, indicating legitimacy and trustworthiness. No adult or questionable content is present, making the site safe for general audiences.

Q

Qbet

qbets.de

54

Qbet is a German-focused online gambling platform offering casino games, live casino, and sports betting services. The website promotes a unique real-time cashback system without wagering requirements, targeting adult users interested in online gambling in Germany. The platform features a professional design with consistent branding and a good user experience, optimized for mobile devices. Technically, the site uses modern web technologies, including Cloudflare DNS and CDN services, custom fonts, and structured data for SEO. Security posture is moderate, with HTTPS implied and Cloudflare protection, but lacks visible security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Business credibility is supported by professional content and consistent domain usage, though contact information is missing. Overall, the site is functional and trustworthy for its niche but requires improvements in privacy and security transparency.

U

Uno Digital Media B.V.

portimaomotorsports.pt

10

The website portimaomotorsports.pt serves as a localized portal for the BetOnRed online casino brand targeting Portuguese players. Operated by Uno Digital Media B.V., the platform offers a comprehensive range of gambling services including casino games, live dealer experiences, and sports betting. The business is licensed under Curaçao eGaming, ensuring regulatory compliance for international operations. The site features a professional design, clear navigation, and extensive content covering bonuses, games, and responsible gaming policies. Technically, the site employs modern web standards with optimized mobile responsiveness and fast loading times. Security posture is solid with HTTPS enforced, though some security headers are missing and cookie consent mechanisms are not explicitly implemented. Contact information is primarily via email support, with no phone numbers provided. Overall, the platform presents a trustworthy and professional gambling service for the Portuguese market.

U

Uno Digital Media B.V.

cprating.pt

49

Nine Casino Portugal is an online gambling platform targeting Portuguese players, offering a wide range of casino games and sports betting options. Founded in 2020 by Uno Digital Media B.V., it operates under a Curaçao eGaming license, providing a trustworthy but not Portugal-licensed service. The platform features over 5000 casino games, including slots, table games, and live dealer options, alongside sports and e-sports betting. It supports multiple payment methods including traditional and cryptocurrency options. The website is well-designed, mobile-optimized, and provides detailed information about bonuses, games, and payment processes. However, it lacks explicit privacy and cookie consent mechanisms and does not provide phone support, relying on email and live chat for customer service.

A

Araxio Development N.V.

gransino-casino.de

60

Gransino Casino is a newly established online gambling platform founded in 2024, targeting primarily the German market. Operated by Araxio Development N.V. and licensed in Curaçao, it offers a broad range of casino games including slots, live dealer games, and sports betting. The platform emphasizes attractive bonuses, secure payment methods, and a user-friendly mobile experience. Its market position is that of an emerging competitor with a focus on quality gaming and customer engagement through social media and positive user reviews. Technically, the website employs modern web standards with HTML5, CSS3, and JavaScript, and leverages Cloudflare for DNS and CDN services, enhancing security and performance. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but could benefit from additional security headers and a visible cookie consent mechanism to improve privacy compliance. Overall, the security maturity is moderate with no critical vulnerabilities detected. The site maintains GDPR compliance through its privacy policy and offers multiple contact channels, though direct phone support is absent. The domain registration aligns with the business timeline and ownership claims, supporting legitimacy. Strategic improvements in security headers and privacy transparency would enhance trust and compliance. The risk profile is moderate, typical for online gambling platforms, with recommendations focusing on strengthening security policies, enhancing privacy mechanisms, and maintaining transparent communication with users to foster trust and regulatory adherence.

T

Techore Holding B. V.

magari-ristorante.pt

49

Fairspin Casino, operated by Techore Holding B.V., is an established online gambling platform launched in 2018, licensed in Curacao. It leverages blockchain technology to provide transparency and fairness in gaming, offering a wide range of casino games and sports betting options primarily targeting Portuguese-speaking players. The website is professionally designed with good content quality and mobile optimization, providing a user-friendly experience. Technically, it uses modern web standards and lazy loading for performance, though no major frameworks or CMS were detected. Security posture is solid with HTTPS and secure forms, but lacks some advanced security headers and published incident response policies. Contact information is comprehensive, including email, phone, and social media channels, enhancing business credibility. Overall, the site is trustworthy and well-positioned in the online gambling market, though improvements in privacy compliance and security transparency are recommended.

N

Nationale Dekade gegen Krebs

dekade-gegen-krebs.de

60

The website 'Die Nationale Dekade gegen Krebs' is a German government-backed initiative led by the Bundesministerium für Bildung und Forschung (BMBF) to advance cancer research and support affected individuals. It serves as a comprehensive platform providing information on research projects, patient involvement, partner organizations, and relevant events. The site is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, it uses the Government Site Builder CMS, modern JavaScript libraries like Slick Slider and MediaElement.js, and is hosted by ITZBund, ensuring reliable infrastructure and good performance. Security posture is solid with HTTPS enforced and a cookie consent mechanism that complies with GDPR, although some security headers could be improved. The site uses Matomo analytics with anonymized data collection and explicit user consent, reflecting good privacy practices. No contact emails or phone numbers are explicitly listed, and no terms of service page is found. Overall, the website is trustworthy, secure, and well-aligned with its mission as a national cancer research initiative.

The Literarisches Zentrum Göttingen is a regional non-profit cultural institution dedicated to promoting literature and literary events in Göttingen, Germany. It offers a variety of programs including evening readings, youth programs, workshops, and special projects supported by public and private sponsors. The website reflects a well-established cultural center with a clear focus on community engagement and literary education. Technically, the site is built on a Django-based platform with standard web technologies such as HTML5, CSS3, and jQuery. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security measures include CSRF protection on forms, but lack visible security headers and cookie consent mechanisms. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Overall, the site is trustworthy and professionally maintained, though improvements in security headers and privacy compliance could enhance its posture.

L

LFK – Die Medienanstalt für Baden-Württemberg

lfk.de

58

LFK – Die Medienanstalt für Baden-Württemberg is a regional media regulatory authority focused on ensuring diversity and compliance in private broadcasting and internet offerings within Baden-Württemberg. The organization also promotes media competence, youth protection, media quality, and media pedagogy through research and educational initiatives. The website reflects a professional and comprehensive digital presence, built on TYPO3 CMS, with a clear structure and good accessibility. It uses privacy-conscious analytics (Matomo) and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and secure script loading, though explicit security policies and incident response contacts are not publicly detailed. Overall, the domain registration and hosting align with the institutional nature of the entity, supporting high legitimacy and trust.

D

DZ BANK AG

dzbank.de

64

DZ BANK AG is a major German cooperative central bank serving over 700 cooperative banks in Germany. It offers a broad range of financial services including corporate banking, institutional client services, capital markets, and sustainability consulting. The website is professionally designed, well-structured, and targets financial institutions and corporate clients. Technically, the site uses Adobe Experience Manager CMS, modern JavaScript libraries, and integrates Matomo and Google Tag Manager for analytics with user consent management via Usercentrics. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is robust with clear cookie and privacy policies. Overall, the domain and website present a trustworthy and professional digital presence for DZ BANK AG.

E

easyCredit

easycredit.de

66

easyCredit is a German financial services provider specializing in instant credit and loan products, serving over one million customers. The website is professionally designed using WordPress and optimized with Yoast SEO, targeting German-speaking consumers seeking simple and fast financing solutions. The technical infrastructure is standard with modern web technologies, but lacks visible advanced security headers and explicit privacy or cookie policies in the provided content. Security posture is moderate with room for improvement in policy transparency and incident response readiness. Overall, the website is trustworthy and well-positioned in the finance sector but should enhance privacy compliance and security practices to meet higher standards.

U

Union Investment Service Bank AG

fondssparen-mit-plan.de

53

The website fondssparen-mit-plan.de is associated with Union Investment Service Bank AG, a reputable financial institution in Germany specializing in investment products such as Fondssparpläne (fund savings plans). The site currently serves a 404 error page, indicating the requested content is not available. The business focus is on long-term wealth accumulation through personalized investment strategies. The branding is consistent with Union Investment, but the content is minimal and lacks essential pages such as privacy policy, cookie policy, terms of service, and contact information. From a technical perspective, the site uses Cloudflare DNS services and standard web technologies including CSS, JavaScript, and SVG graphics. However, there is no evidence of advanced frameworks or CMS usage. The site shows basic mobile optimization and accessibility but poor SEO due to the 404 status and meta robots directives preventing indexing. Security posture is limited based on the provided data. No explicit security headers or HTTPS details were found, and no incident response or security policies are disclosed. The absence of privacy and cookie policies indicates non-compliance with GDPR best practices. No forms or data collection mechanisms are present on the analyzed page, reducing immediate data protection risks but also limiting user engagement. Overall, the website appears legitimate and aligned with a known financial entity but is currently non-functional for end users due to the 404 error. Strategic improvements should focus on restoring content, implementing privacy and cookie policies, enhancing security headers, and providing clear contact and incident response information to improve trust and compliance.

The website comune-info.net currently serves a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is registered since 2012 with Server Plan Srl, suggesting a stable registration history, but the actual website content is minimal and outdated, referencing legacy CMS versions such as Joomla 1.5 and WordPress 2.5. There is no visible business information, contact details, or privacy and cookie policies, which limits the ability to assess the business operations or compliance posture. The technical infrastructure appears basic with no modern security headers or DNSSEC enabled, and the site relies on a security service from bitninja.io for protection.

The website liberopensiero.eu is currently inaccessible beyond a security challenge page that performs a browser integrity check and automatic redirect. The visible content is minimal, showing a loading spinner and a message indicating a redirect in 4 seconds. The site appears to be running outdated CMS versions (Joomla 1.5 and WordPress 2.5), which are known to have multiple security vulnerabilities. No privacy, cookie, or terms of service policies are present, nor is there any contact or business information visible. The only external link is to bitninja.io, a security service provider, indicating some level of security protection is in place. Overall, the site lacks professional content and trust indicators, and the security posture is weak due to outdated software and missing compliance elements.

Y

Young European Greens

fyeg.org

63

Young European Greens is a European non-profit youth political organization focused on green and progressive activism. The organization operates a well-structured website hosted on Squarespace, providing information about its campaigns, events, and member organizations. The technical infrastructure is modern and leverages standard web technologies and third-party services such as Google Tag Manager and social media integrations. Security posture is solid with HTTPS and HSTS enabled, though DNSSEC is not implemented. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. No contact emails or phone numbers are explicitly provided on the site, which may impact user trust and compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

The website giovanieuropeistiverdi.org currently serves a robot challenge screen that blocks direct access to its content. This challenge uses a JavaScript-based proof-of-work captcha mechanism, indicating the presence of a Web Application Firewall (WAF) or similar security control. Due to this blocking, no business-related content, contact information, or policies are accessible, limiting the ability to assess the company's operations or services. The domain is registered with Tucows Domains Inc. since 2019 and appears legitimate from a registration standpoint, but the lack of accessible content reduces trust and transparency. Technically, the site employs advanced client-side JavaScript for bot mitigation but lacks visible security headers or privacy compliance mechanisms. Hosting is via SiteGround name servers, and external resources are loaded from a CloudFront CDN. The site shows basic mobile optimization but poor SEO and accessibility features. No analytics or advertising scripts are detected. Security posture is moderate due to the presence of a bot challenge but lacks standard security headers and DNSSEC. Privacy compliance is absent, with no privacy or cookie policies found. Business credibility is low due to missing contact and company information. Overall, the site is inaccessible for meaningful analysis, and the AI score is capped low due to blocking. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing transparent contact information to improve trust and compliance.

Associazione Pensare Insieme operates as a non-profit think tank and cultural association based in Italy, focusing on political, social, economic, and cultural discourse. The organization publishes articles, organizes events, and distributes newsletters to engage a general audience interested in these topics. The website is professionally designed using WordPress, with good SEO and mobile optimization, reflecting a moderate level of digital maturity. Security measures include HTTPS enforcement, security headers, and a cookie consent mechanism, though explicit security policies and incident response contacts are absent. Overall, the site presents a trustworthy and professional image with room for enhancement in security transparency and accessibility.

M

My Live Chat

mylivechat.com

51

My Live Chat is a well-established provider of live chat software solutions, offering both free and premium services to businesses aiming to enhance customer engagement and support. The company has a strong market presence with over 746,000 accounts and notable clients including Sony, Intel, and Microsoft. Their product suite includes live chat, proactive chat, visitor monitoring, mobile chat apps, and extensive customization options, positioning them as a competitive SaaS provider in the customer communication technology sector. Technically, the website is built on a modern ASP.NET framework with integration of JavaScript libraries, Bootstrap icons, and Google Fonts, hosted on Amazon AWS infrastructure. The site demonstrates excellent mobile optimization, fast performance, and good SEO practices. However, some security best practices such as explicit security headers and published security policies are missing. From a security perspective, the site uses HTTPS with strong SSL encryption and asynchronous script loading to minimize performance impact. There are no visible vulnerabilities or exposed sensitive data. However, the absence of a cookie consent mechanism, security policy, and incident response information indicates room for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and technically sound, with a high legitimacy score based on domain age and WHOIS data. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security and incident response policies, and implementing additional security headers to strengthen the security posture.

The website embertone.com is currently inaccessible due to a security challenge page implementing a client-side proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism blocking direct access to the site content. As a result, no meaningful business, contact, or policy information is available from the page. The domain is registered since 2011 with GoDaddy.com, LLC and uses SiteGround nameservers, suggesting a legitimate registration and hosting setup. However, the lack of visible content and policies limits the ability to assess the company's business model or compliance posture. Technically, the site uses JavaScript with Web Workers for the CAPTCHA challenge and assets served via Cloudfront CDN. Security best practices such as DNSSEC and security headers are not enabled or visible. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the blocking mechanism and lack of accessible information.

V

Verband Region Rhein-Neckar

vrrn.de

59

The Verband Region Rhein-Neckar is a public law corporation based in Mannheim, Germany, responsible for cross-border regional planning and development in the tri-state area of Baden-Württemberg, Hessen, and Rheinland-Pfalz. Established in 2006, it serves as a key regional planning authority coordinating transportation, energy, and regional development projects. The organization maintains a strong market position as a government entity with a medium-sized operational structure and multiple related institutions. The website reflects a professional and comprehensive digital presence with clear content and user-friendly navigation targeting residents, planners, and stakeholders in the region. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, integrates privacy-respecting Matomo analytics, and includes accessibility features such as the Eye-Able widget. Hosting is provided by Hetzner Online GmbH, a reputable provider. The site is mobile-optimized and SEO-friendly, though no explicit CMS or frameworks were detected. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a clientTransferProhibited domain status, indicating domain transfer protection. However, DNSSEC is not enabled, and no HTTP security headers were detected in the provided data. There is no published security policy or incident response contact, which could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and suitable for its public service role. Strategic recommendations include enabling DNSSEC, publishing security policies, and enhancing HTTP security headers to strengthen the security posture further.

G

Gesundheitsregion Metropolregion Rhein-Neckar

mrn-gesundheit.de

55

Gesundheitsregion Metropolregion Rhein-Neckar is a cooperative regional health initiative focused on promoting health, prevention, and healthcare services within the Rhein-Neckar metropolitan area. The organization collaborates with over 80 experts and various partners to foster sustainable and innovative health solutions. The website reflects a strong regional presence with professional content and clear communication aimed at residents, healthcare professionals, and organizations in the region. Technically, the site uses modern web technologies including Matomo for privacy-respecting analytics and is built on the Kirby CMS platform. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie information, though no explicit consent mechanism is present. Overall, the site demonstrates high professionalism and trustworthiness, supporting its role as a regional health network.