Security Directory

M

Michal Diviš Architekti, s.r.o.

mda.sk

9

Michal Diviš Architekti, s.r.o. is a Slovakian architectural firm established in 2005, specializing in architectural design services including residential, commercial, and public projects. The company maintains a professional website showcasing a portfolio of projects and competition wins, targeting clients seeking architectural services primarily in Slovakia. The website is built using modern technologies such as React and Gatsby, providing a good user experience with clear navigation and mobile optimization. However, the site lacks published privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with no detected security headers or incident response contacts, and SSL configuration details are not provided. Contact information including emails, phone numbers, and physical addresses are clearly presented, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security compliance measures.

S

Shopline.sk

shopline.sk

40

Shopline.sk is a Slovak e-commerce retailer specializing in branded sports clothing and footwear from brands such as Nike, Adidas, Converse, and others. The website targets general consumers in Slovakia looking for sports apparel and shoes at competitive prices. The business operates primarily online using a WordPress WooCommerce platform with the Flatsome theme, indicating a standard but effective e-commerce infrastructure. The site includes modern performance optimizations and tracking tools such as Google Tag Manager and Facebook Pixel, supporting marketing and analytics efforts. Security posture is adequate with HTTPS and some security headers, but lacks explicit security policies and incident response information. Privacy compliance is partially addressed with a cookie consent mechanism, though no privacy policy or terms of service were detected in the provided content. Overall, the website presents a professional and trustworthy front for a small to medium-sized regional e-commerce business.

M

MaM multimedia, s.r.o.

mojmilacik.sk

39

MôjMiláčik.SK is a Slovak e-commerce website specializing in pet supplies including food, accessories, and veterinary products for dogs, cats, and other animals. Operated by MaM multimedia, s.r.o., the site offers a broad product catalog with detailed descriptions and a loyalty program to encourage repeat purchases. The business targets pet owners primarily in Slovakia and operates as a small retail e-commerce platform with a regional focus. Technically, the website uses a custom CMS platform (MaM SHOP system) with legacy technologies such as Flash and a non-UTF-8 charset, indicating some modernization opportunities. Security posture is solid with HTTPS, DNSSEC, and Google reCAPTCHA integration, but lacks advanced security headers and modern charset standards. Privacy and cookie policies are present and GDPR compliant, supporting regulatory adherence. Overall, the site is functional and trustworthy but could benefit from technical updates and enhanced security measures.

N

NAJ.SK

naj.sk

10

NAJ.SK is a Slovak-based e-commerce retailer specializing in fashion products including footwear, clothing, and accessories for men, women, and children. The website presents a well-structured online store with a broad product catalog and clear navigation, targeting general consumers interested in fashion retail. The business operates on the Shoptet platform, leveraging modern web technologies and integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Pricemania remarketing. The website is secured with HTTPS and employs standard security practices including CSRF protection on forms. However, some security headers are not explicitly detected, and there is no published security policy or incident response information. Privacy compliance is addressed with a comprehensive privacy policy and terms of service, though cookie policy presence is less explicit. Overall, the site demonstrates a good balance of business credibility, technical implementation, and security posture, suitable for a medium-sized regional e-commerce business.

S

SPAR Österreichische Warenhandels-AG

myhealthcoach.at

78

The website analyzed is a product page hosted on Apple's official App Store domain, presenting the SPAR Health Coach app developed by SPAR Österreichische Warenhandels-AG. The app targets health-conscious consumers in Austria, offering features such as nutrition tracking, exercise monitoring, mental health support, and blood pressure measurement. The page is professionally designed, mobile-optimized, and integrates seamlessly with Apple's ecosystem, reflecting a mature digital presence. The technical infrastructure leverages modern frameworks like Ember.js and Apple’s MediaKit, hosted on Apple's secure infrastructure, ensuring high performance and reliability. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is robust, referencing Apple's comprehensive privacy and cookie policies, and the business credibility is high given the reputable SPAR brand and Apple’s platform. Overall, the site presents a trustworthy and professional digital product offering.

B

BIO-TECH Betriebshygiene GmbH

biotech.at

47

BIO-TECH Betriebshygiene GmbH is a small Austrian company specializing in hygiene services and training primarily targeting industrial and gastronomy businesses as well as private customers. The website presents a professional and consistent brand image with clear navigation and relevant content in German. The business model focuses on providing hygiene solutions and educational offerings, positioning itself as a niche regional service provider. Technically, the website is built on WordPress with common optimization plugins such as Autoptimize and lazy loading for images, delivering moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit security policies. Privacy compliance is well addressed with a privacy policy and cookie banner, indicating GDPR awareness. Overall, the website is trustworthy and professionally maintained, with no signs of suspicious activity or content blocking.

S

Salzburg AG

salzburg-ag.at

75

Salzburg AG is a leading regional utility company in Austria providing energy, transportation, and telecommunications services. The company positions itself as a sustainable and customer-centric provider, operating 24/7 throughout the year. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive service information targeting residents and businesses in the Salzburg region. Technically, the site uses modern tools including Adobe Experience Manager CMS, Google Tag Manager, and Usercentrics for consent management, indicating a good level of digital maturity. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance, although a dedicated security policy and incident response contacts are not explicitly published. Overall, the website and domain WHOIS data align well, supporting the legitimacy and trustworthiness of the business.

Z

Změna k lepšímu

klepsimu.cz

60

Změna k lepšímu is a Czech business platform focused on sustainability, connecting companies aiming for positive change. The platform emphasizes public affairs, community engagement, and education as its core strategic interests. The website is built on the Wix platform, leveraging modern web technologies and multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and LinkedIn Insight Tag. The technical infrastructure is moderate in performance and well-optimized for mobile devices. Security posture is adequate with HTTPS enforced and some security hardening scripts in place, but lacks explicit security headers and formal privacy or cookie policies. The absence of WHOIS data suggests privacy protection or domain registration issues, which slightly reduces trustworthiness. Overall, the site presents a professional and consistent brand image targeting Czech businesses interested in sustainability.

S

seamtex

seamtex.at

72

seamtex is a specialized manufacturer and service provider of professional protective clothing, focusing on firefighter and heat protection garments. The company targets professional emergency services and emphasizes quality and certification in its products. The website is built on WordPress using Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. The site includes multilingual support via TranslatePress and cookie consent management with Real Cookie Banner Pro, reflecting digital maturity and privacy awareness. Security posture is good with HTTPS enforced and some security best practices observed, though there is room for improvement in explicit security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's market position as a niche manufacturer in Austria.

C

cilu.com is available for purchase - Sedo.com

cilu.com

71

The website is a domain parking and sales landing page hosted by Sedo.com, a well-established domain marketplace founded in 1998. It offers the domain cilu.com for purchase, targeting domain investors and buyers. The technical infrastructure includes Cloudflare DNS and hosting by World4You Internet Services GmbH, with modern JavaScript and CSS technologies. The website is accessible without WAF or security challenges and uses HTTPS with a good SSL configuration. However, it lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy compliance is minimal, with no privacy policy or terms of service found, though a cookie consent banner is present. No contact or business information is provided on the page, limiting business credibility. Overall, the site is functional but basic, with room for improvement in privacy and security practices.

HugeDomains operates as a leading online marketplace specializing in the sale of brandable domain names. The website offers competitive pricing, flexible payment plans, and a 30-day money back guarantee, positioning itself as a trusted intermediary for domain buyers and entrepreneurs. The platform targets businesses and individuals seeking premium domain names with a straightforward purchasing process and secure payment options. Technically, the site employs modern web technologies including jQuery, Google Analytics, and Cloudflare services to ensure performance, security, and user tracking. The presence of cookie consent mechanisms and GDPR-compliant privacy policies reflects a mature approach to privacy and regulatory compliance. Security posture is strong with HTTPS enforced, bot management, and reCAPTCHA integration, although explicit security headers could be more visible. The absence of public WHOIS data is consistent with privacy protection practices common in domain reselling, and does not detract from the site's legitimacy. Overall, HugeDomains presents a professional, secure, and user-friendly platform for domain acquisition.

The website lusoinfo.com currently serves as a minimal placeholder with no substantive content beyond a meta refresh redirect tag. The domain is registered since 2004 with a reputable registrar, indicating a stable registration history, but the lack of active content or business information suggests the site is either inactive or under development. There are no visible contact details, privacy policies, or security disclosures, which limits the ability to assess the business or compliance posture. Technically, the site lacks modern SEO, accessibility, and security best practices, with no DNSSEC enabled and no security headers detected. The SSL configuration is basic but present, ensuring HTTPS availability. Overall, the security posture is minimal, with no evident vulnerabilities but also no advanced protections. The site does not employ any analytics, advertising, or tracking technologies, indicating minimal user data collection. The risk level is low due to the lack of content and interaction, but the absence of compliance and contact information reduces trust and credibility.

O

otris software AG

otris.software

62

otris software AG operates a professional customer portal at otris.software, providing access to software product documentation, update information, and product news primarily targeting their German-speaking customer base. The portal is built on a WordPress CMS with modern web technologies including jQuery, Google reCAPTCHA v3 for security, and WPBakery Page Builder for content management. The website demonstrates a good level of digital maturity with secure HTTPS implementation and user authentication mechanisms. Security posture is solid with no visible vulnerabilities or exposed sensitive data, although additional security headers and a formal vulnerability disclosure policy could enhance the security framework. Privacy compliance is generally good with a clear privacy policy and GDPR adherence, but the absence of a cookie consent mechanism is a minor compliance gap. Overall, the domain and website present a trustworthy and professional image consistent with a medium-sized technology company in Germany.

T

TodaysWeb

bloggproffs.se

47

Bloggproffs.se is a Swedish free blogging platform operated by TodaysWeb, offering users the ability to create personal blogs with custom subdomains. The platform targets general users interested in blogging, providing a simple and free service with a long operational history since 2007. The website is built on an older WordPress CMS version with standard plugins and uses Cloudflare for DNS services. While the site is functional and provides basic blogging services, it lacks modern security and privacy features such as cookie consent and security headers. The absence of updated software and security best practices poses potential risks. Overall, the site maintains moderate trustworthiness due to its domain age and consistent business model but requires technical and security improvements to enhance user safety and compliance.

C

Codalex AB

n.nu

56

N.nu is a Swedish-based technology company operating a website builder platform that enables users to create professional websites quickly and easily. Established in 2009 and operated by Codalex AB, the platform boasts over 20,000 active sites and offers features such as SEO-friendly templates, mobile responsiveness, unlimited hosting space, and integrated tools like newsletters and blogs. The business model is subscription-based with a free trial period, targeting individuals and small businesses seeking simple yet powerful website creation tools. Technically, the site uses a combination of HTML5, Bootstrap, jQuery, and tracking services like Google Analytics and Redistats, hosted with Cloudflare DNS and registered via Loopia AB. The website is well designed, mobile optimized, and SEO friendly, providing a good user experience.

S

Spolkový dům a Muzeum Štěpánovska

spolkovydumtrhovystepanov.cz

45

Spolkový dům a Muzeum Štěpánovska is a small, local community cultural institution based in Trhový Štěpánov, Czech Republic. The organization operates a community house and museum that hosts cultural events, educational courses, exhibitions, and offers rental services. The website reflects a focus on local engagement and cultural preservation, targeting residents and visitors interested in regional history and community activities. The business model is non-profit and community-oriented, with a clear emphasis on cultural enrichment and education. Technically, the website is built on a CMS platform provided by Galileo Corporation, utilizing JavaScript libraries such as jQuery and MooTools, along with Highslide for image display. The site is moderately optimized for performance and accessibility, with basic mobile responsiveness and SEO features. Cookie consent is implemented, indicating some attention to privacy compliance, though no explicit privacy policy or terms of service pages are present. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism but lacks visible security headers and formal security policies. No vulnerabilities or malicious content were detected, but the absence of WHOIS data for the domain raises concerns about domain registration transparency. Overall, the security posture is moderate but could be improved with enhanced headers, documented policies, and vulnerability disclosure mechanisms. The overall risk assessment suggests the website is legitimate and safe for general audiences but would benefit from improved transparency and security practices. Strategic recommendations include adding privacy and terms policies, implementing security headers, verifying domain registration details, and enhancing technical and privacy compliance to strengthen trust and security.

M

MŠ Trhový Štěpánov

mstrhovystepanov.cz

46

MŠ Trhový Štěpánov is a local kindergarten serving the community of Trhový Štěpánov in the Czech Republic. The website provides comprehensive information for parents including staff details, school history, daily schedules, event calendars, photo galleries, and downloadable forms. It targets parents and guardians of preschool children, offering a community-focused educational service. The business model is that of a public educational institution with a small local footprint. Technically, the website is built using a combination of jQuery, Bootstrap, Swiper, and other JavaScript libraries, likely managed through the Galileo CMS platform. The site is mobile optimized, accessible, and well-structured, though performance is moderate. SEO and navigation are well implemented, providing a good user experience. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or terms of service documents. No WHOIS data is available, which reduces domain trustworthiness. No advanced security policies or incident response contacts are found, indicating room for improvement in security maturity. Overall, the website is safe, professional, and trustworthy for its intended audience, but would benefit from enhanced transparency regarding privacy, security policies, and domain registration details to improve compliance and trust.

B

BerlinerLuft. México S. De R.L. de C.V.

berlinerluft.mx

51

BerlinerLuft. México S. De R.L. de C.V. is a medium-sized manufacturing company specializing in HVAC equipment, components, and duct systems with a global footprint including production plants in Mexico and Brazil. The website presents a professional image with clear business descriptions, product portfolios, and case studies targeting B2B clients in the HVAC and industrial sectors. The digital infrastructure is built on WordPress with modern plugins and technologies, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS and Google reCAPTCHA implemented, though it lacks advanced security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is trustworthy and functional but could improve in compliance and security transparency.

B

BerlinerLuft do Brasil

berlinerluft.com.br

46

BerlinerLuft do Brasil is a medium-sized multinational manufacturing company specializing in ventilation, exhaust, air treatment, and acoustic systems. The company serves diverse industrial sectors including healthcare, pharmaceuticals, data centers, agribusiness, and construction. Their business model focuses on providing customized, high-technology products with technical support throughout the project lifecycle. The website reflects a consistent brand presence with detailed product and application information targeting industrial clients in Brazil. Technically, the website is built on TYPO3 CMS using Bootstrap 3.1.1 and jQuery 1.11.0, with integration of Google Analytics and Google Tag Manager for tracking. The site is mobile optimized with moderate performance and basic SEO and accessibility features. HTTPS is enforced, but security headers are missing, and the use of an outdated jQuery version presents a potential security risk. From a security perspective, the site lacks visible privacy and cookie policies, as well as incident response or security policy disclosures. No critical vulnerabilities or exposed sensitive data were detected, but improvements are needed in security headers and compliance documentation. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, the website is professional and trustworthy but requires enhancements in privacy compliance and security best practices to improve its security posture and regulatory adherence.

B

BerlinerLuft. Tehnika d.o.o.

berlinerluft.hr

46

BerlinerLuft. Tehnika d.o.o. is a Croatian manufacturing company specializing in ventilation equipment and systems. As part of the BerlinerLuft corporate group, it offers a broad portfolio of products including smoke extraction ducts, fans, air distribution components, and fire protection systems. The company targets professional and industrial clients in the HVAC sector, positioning itself as a reliable regional player with a solid product range and certifications such as CE marking. The website reflects this business focus with professional content and clear navigation. Technically, the website is built on OctoberCMS with jQuery and jQuery UI libraries, and uses Google Analytics for tracking. The site is mobile-optimized and performs moderately well, though some technical debt is evident from the use of older JavaScript libraries. SEO and accessibility are basic but adequate. Security posture is good with HTTPS enforced and no visible sensitive data exposure, but lacks security headers and a vulnerability disclosure mechanism. From a security and compliance perspective, the site has a privacy policy and terms of service, but lacks a cookie consent mechanism and incident response contact details. WHOIS data is consistent with the business claims, showing a domain registered in Croatia since 2015, supporting legitimacy. No WAF or blocking mechanisms were detected, and no adult or questionable content is present. Overall, the website is professional and trustworthy with room for improvement in security headers, privacy compliance, and modernization of technical components. Strategic enhancements in these areas would strengthen the company’s digital maturity and compliance posture.

B

BerlinerLuft. Technik GmbH

berlinerluft.at

50

BerlinerLuft. Technik GmbH is a German-based manufacturer specializing in ventilation, climate technology, and related industrial systems. The company offers a broad portfolio of products including fans, ventilation components, climate control devices, sound insulation systems, and process air technology. Their website reflects a mature B2B business model targeting technical building equipment professionals and industrial clients. The company maintains a consistent brand presence with multilingual support and international partner sites. Technically, the website is built on TYPO3 CMS, integrates Google Analytics and Tag Manager, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Overall, the domain registration aligns with the business identity, supporting legitimacy and trustworthiness.

B

BerlinerLuft.

berlinerluft.pl

44

BerlinerLuft. is a manufacturing company specializing in the production and supply of components and systems for ventilation and air conditioning installations. Their product portfolio includes high-performance radial fans, ventilation components, noise reduction systems, welded ventilation systems, and wet painting services. The company targets industrial and construction sectors requiring comprehensive ventilation solutions. The website is professionally designed using TYPO3 CMS, supports multiple languages, and demonstrates a moderate to good level of digital maturity with integrated analytics and cookie consent mechanisms. Security posture is solid with HTTPS enforced and basic security best practices, though some security headers are missing and no explicit vulnerability disclosure or incident response information is provided. The absence of WHOIS data for the domain reduces trustworthiness slightly but the overall business presentation and certifications such as ISO 14001 and ISO 45001 support legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and improving transparency around domain registration.

B

BerlinerLuft.

berlinerluft.com

47

BerlinerLuft.com is a professional website representing a medium-sized manufacturing company specializing in ventilation and air conditioning technology. The company offers a broad portfolio of products including industrial fans, ventilation components, air handling units, noise protection solutions, and process air systems. The website is well-designed, mobile-optimized, and provides comprehensive product and company information targeted at industrial and technical building services clients. Technically, the site is built on TYPO3 CMS and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit incident response or vulnerability disclosure information is found. The WHOIS data for the domain is missing or indicates the domain is not registered, which is inconsistent with the active and professional website presence, suggesting a need for verification. Overall, the site scores well on content quality and technical implementation but has moderate business credibility due to the WHOIS inconsistency.

S

SZB Schulungszentrum Bietigheim GmbH

szb-schulung.de

50

SZB Schulungszentrum Bietigheim GmbH operates as a specialized training center in Germany, focusing on certified operator training for forklifts, aerial work platforms, cranes, and telehandlers. Their offerings comply with DGUV and IPAF standards, targeting companies and individuals requiring safety and operational certifications. The company maintains multiple physical locations and provides both in-person and online training options. Technically, the website is built on WordPress with modern plugins for SEO and GDPR compliance, hosted on GoDaddy infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, compliant, and trustworthy, serving a niche educational market effectively.

K

KORTS Immobilien GmbH

korts-immobilien.de

50

KORTS Immobilien GmbH is a Hamburg-based, owner-managed real estate consultancy specializing in commercial office properties with over 19 years of market experience. The company offers comprehensive brokerage and advisory services tailored to tenants and property owners in the Hamburg metropolitan area. Their business model focuses on personalized service, leveraging a broad network of market participants to provide exclusive access to properties and expert negotiation support. Technically, the website is built on WordPress with Elementor and Yoast SEO, hosted by Timme Hosting, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies could enhance protection. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable digital presence for the business.

P

Praxis für Logopädie Jennifer Groß

logo-gross.de

52

Praxis für Logopädie Jennifer Groß is a small healthcare provider specializing in speech therapy services located in Püttlingen, Germany. The website presents a professional image with clear information about their services, team, and contact details. Their market position is local and focused on patients requiring speech and language therapy, including both adults and children. The business model is service-oriented healthcare with a focus on personalized patient care. Technically, the website is built on the cm4all CMS platform hosted by Strato, using standard web technologies such as HTML5, CSS3, JavaScript, and jQuery. The site is moderately performant and mobile-optimized with basic accessibility features. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. Overall, the website is trustworthy and compliant with GDPR, providing sufficient contact and privacy information for users.

The domain faire-consult.com is registered with IONOS SE since January 2023 but currently hosts no active website content. The only accessible page is a generic 'Site not found' error message indicating the site is not published or the domain is not assigned. There is no metadata, structured data, or business information available to analyze the company's operations, services, or market position. The technical infrastructure appears minimal with no CMS or frameworks detected, and no security headers or HTTPS information visible from the provided HTML content. The domain registration is consistent and legitimate but the lack of published content and security features significantly limits the ability to assess the business or security posture. Overall, the site is non-operational at this time.

D

DRK-Kreisverband Ludwigsburg e. V.

drk-ludwigsburg.de

58

DRK-Kreisverband Ludwigsburg e. V. is a local branch of the German Red Cross, providing a broad range of humanitarian, social, and emergency services to the community in Ludwigsburg, Germany. The organization focuses on emergency call services, first aid training, rescue operations, social support, and voluntary engagement. The website reflects a professional and consistent brand presence aligned with the national DRK identity. The target audience includes the general public and local residents seeking social and emergency assistance. Technically, the website is built on TYPO3 CMS, a robust and widely used content management system, with additional JavaScript libraries for UI elements such as sliders. The site employs Matomo analytics with a clear cookie consent mechanism, demonstrating a commitment to privacy and GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. From a security perspective, the site uses HTTPS and implements a comprehensive cookie consent banner with opt-in for analytics and preference cookies. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a trustworthy and professional digital presence for a non-profit humanitarian organization. Strategic improvements could include enhancing HTTP security headers, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to further strengthen security posture and trust.

H

HostX

hostx.ro

63

HostX is a Romanian web hosting and domain registration provider offering a wide range of services including SSD web hosting, VPS servers, SSL certificates, and business email hosting. The company targets businesses and individuals in Romania seeking reliable and affordable hosting solutions. Their market position is that of a competitive local provider with a comprehensive service portfolio and attractive pricing. Technically, the website uses modern JavaScript libraries such as jQuery and OwlCarousel, integrates Google Tag Manager and Cookiebot for analytics and cookie compliance, and is optimized for mobile devices with good SEO practices. Security-wise, the site enforces HTTPS and provides a detailed cookie consent mechanism, but lacks visible advanced security headers and a published security policy or incident response contacts. The WHOIS data is privacy protected as per ROTLD policies, which is typical for Romanian domains, and no suspicious domain registration patterns were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

E

European School Education Platform Support

esep-support.eu

57

The European School Education Platform Support website serves as an official support portal for the European School Education Platform, targeting school teachers and education professionals across Europe. It offers a comprehensive set of guides, knowledgebase articles, and release announcements to assist users in navigating and utilizing the platform effectively. The site is multilingual, supporting a wide range of European languages, enhancing accessibility for its diverse audience. The business model focuses on providing informational and support services rather than direct commercial transactions. Technically, the website is built on the DeskPRO helpdesk platform, leveraging modern web technologies including FontAwesome, Google Fonts, and polyfills for broad browser compatibility. The hosting provider is OVH SAS, a reputable European hosting company. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The technical infrastructure is solid but could benefit from additional security headers and enhanced privacy compliance features. From a security perspective, the site enforces HTTPS and uses secure login forms, indicating a baseline security posture. However, it lacks explicit security headers such as Content Security Policy and HSTS, and does not provide publicly accessible security policies or vulnerability disclosure mechanisms. No direct contact emails or phone numbers are provided, limiting direct communication channels. There are no signs of tracking or advertising scripts, which supports user privacy but also indicates limited analytics usage. Overall, the website is trustworthy and professional, serving its educational support purpose well. The main risks relate to the absence of privacy and cookie policies, lack of explicit security headers, and missing incident response information. Addressing these gaps would enhance compliance and security posture, further strengthening user trust and regulatory alignment.

I

Intercontinental Exchange, Inc.

ice.com

66

Intercontinental Exchange, Inc. (ICE) operates as a global leader in financial exchanges, clearing houses, and data services. The company is recognized for pioneering digitization in exchanges and continues to innovate in price discovery, capital raising, indexing, clearing, and mortgage technology. ICE targets financial institutions, market participants, and mortgage industry professionals with a B2B business model. The website reflects a mature enterprise with consistent branding and comprehensive business information. Technically, the website leverages modern JavaScript frameworks such as React, along with libraries like Lodash, Moment.js, and Highcharts. It uses Brightcove for video content and Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses secure form submissions but lacks explicit security headers and visible incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with clear privacy and cookie policies, including GDPR adherence. Overall, the website presents a low risk with a high degree of professionalism and trustworthiness. The absence of WHOIS data is a limitation but does not significantly detract from the site's credibility given the strong business presence and external validations.

Rambøll Group A/S is a large international consultancy specializing in sustainable architectural, engineering, and consulting solutions across multiple sectors including buildings, transport, energy, environment, health, water, management consulting, and landscape. The company has a strong market position and a well-established brand dating back to 1945. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting a global audience. Technically, the site is built on modern frameworks such as Next.js and Chakra UI, with good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a public security policy or incident response contact, which are areas for improvement. The WHOIS data is unavailable or protected, which slightly reduces trust but does not detract significantly from the overall legitimacy given the strong corporate branding and social media presence. Overall, Ramboll's digital footprint is professional and trustworthy, with room to enhance security transparency and WHOIS data availability.

E

ELIA

elia-artschools.org

64

ELIA is a well-established European network focused on higher arts education and research, representing a broad membership base across multiple countries and disciplines. The organization provides a platform for collaboration, advocacy, and knowledge exchange through events, working groups, and member services. The website reflects a mature digital presence with a moderate to good technical infrastructure leveraging popular frameworks and analytics tools. Security posture is adequate with HTTPS and bot protection in place, though some security headers could be improved. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, but lacks explicit terms of service and security policies. Overall, the site is professional, trustworthy, and serves its target audience effectively.

C

Cumulus Association

cumulusassociation.org

56

Cumulus Association operates as a leading global non-profit organization dedicated to art and design education and research. With a membership base of 399 institutions across 71 countries, it facilitates knowledge exchange, conferences, competitions, and student programs to foster collaboration and innovation in the creative education sector. The website reflects a mature digital presence built on WordPress, leveraging SEO best practices and modern UI components to engage its diverse global audience effectively. Technically, the site employs standard web technologies including jQuery, Slick Carousel, and Yoast SEO, ensuring a responsive and user-friendly experience, though some components like jQuery are outdated. Security posture is adequate with HTTPS enforced and domain registration protections in place; however, enhancements such as DNSSEC and security headers are recommended to strengthen defenses. Privacy compliance is currently weak due to the absence of explicit privacy and cookie policies, which should be addressed to meet GDPR and global privacy standards. Overall, the site is professional, trustworthy, and well-positioned within its niche, but could improve in privacy transparency and security hardening.

M

Muthesius Kunsthochschule

muthesius-kunsthochschule.de

54

Muthesius Kunsthochschule is a medium-sized, specialized educational institution in Germany focused on art and design education. It offers a range of Bachelor and Master programs in fields such as Kommunikationsdesign, Industriedesign, Freie Kunst, and Raumstrategien. The institution maintains a strong market position as the only art university in Schleswig-Holstein with international reach and interdisciplinary offerings. The website is built on WordPress with a modern tech stack including jQuery, Events Manager, and accessibility plugins, hosted by planet-ocean-hosting. It features comprehensive content, good mobile optimization, and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The site demonstrates good privacy compliance with GDPR-aligned policies and active user consent management. Overall, the website is professional, trustworthy, and well-maintained, supporting the institution's educational mission effectively.

Incom GmbH operates a specialized communication and collaboration platform tailored for higher education institutions, particularly targeting design and art universities in Germany. The platform facilitates modern teaching concepts, enabling seamless interaction between educators and students, and extends the scope of academic courses both temporally and spatially. The business model is based on a cost-effective SaaS offering with included support and consulting services, positioning Incom as a niche player in the educational technology sector. The company has been established since 2005, reflecting a mature presence in its market segment. Technically, the website employs a modern yet straightforward technology stack including Bootstrap, jQuery, Font Awesome, and Matomo for privacy-conscious analytics. The platform is custom-built without reliance on common CMS solutions, hosted under a reputable registrar with stable DNS configurations. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. Performance is moderate, suitable for the target audience. From a security perspective, the website enforces HTTPS with AES 256-bit encryption, avoids third-party advertising and tracking services like Google Analytics, and respects user privacy by not profiling visitors. However, it lacks DNSSEC and important security headers such as Content-Security-Policy and HSTS, which are recommended to strengthen its security posture. No incident response or security policy information is published, which could be improved to enhance trust. Overall, the website is professional, trustworthy, and safe for general audiences, with no adult or questionable content. The domain registration data aligns well with the business claims, showing consistency and legitimacy. Strategic recommendations include implementing DNSSEC, adding security headers, publishing security policies, and introducing cookie consent mechanisms to improve GDPR compliance and security maturity.

W

WIN Nordwest

wirtschaft-innovation-nordwest.de

64

WIN Nordwest is a small regional marketing and consulting agency based in Wietmarschen, Germany, specializing in event organization, media design, and publishing for municipalities and local businesses. The company organizes regional trade fairs and produces print media such as brochures and business cards. Their market position is focused on regional clients with a comprehensive service offering in marketing, PR, and project support. Technically, the website is built on the Jimdo CMS platform, leveraging standard web technologies including jQuery, Google Analytics, and POWr widgets. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit incident response policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, but could benefit from enhanced security practices and more detailed policy disclosures.

V

VisionConnect GmbH

vision-connect.de

65

VisionConnect GmbH is a well-established digital agency based in Hannover, Germany, with over 25 years of experience since its founding in 1995. The company specializes in web development, design, SEO, and digital marketing services, leveraging platforms such as TYPO3 CMS and Wordpress. Their market position is strong, supported by long-term client relationships and a comprehensive service offering that includes strategy, design, technology, and communication solutions. The website reflects a professional and trustworthy digital presence with excellent content quality and user experience. Technically, the website is built on a modern stack with TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, although some security headers could be improved. The SSL configuration is excellent, ensuring secure communications. However, there is no publicly available security policy or incident response information, which could be enhanced to improve transparency and trust. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and privacy-respecting analytics settings. No vulnerabilities or suspicious content were detected. The WHOIS data aligns with the business claims, showing a domain age consistent with the company's history and no privacy protection that would obscure legitimacy. Overall, the security posture is solid but could benefit from additional security headers and published policies. The overall risk assessment is low, with the website presenting a professional, secure, and compliant digital presence. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure mechanism to further strengthen trust and security culture.

T

Kurz URLs mit Malware Schutz & Dereferrer Funktion

t1p.de

62

t1p.de is a German-based URL shortening service that emphasizes security and privacy by integrating malware and phishing protection, password protection for links, and dereferrer functionality. The service offers multiple domain options for short URLs, a browser extension, mobile app, and API access, targeting users who require safe and privacy-conscious link management. The website is well-structured, professionally designed, and provides comprehensive information about its services, including terms and privacy policies. Technically, the site uses modern JavaScript libraries such as jQuery and jQuery UI, with HTTPS enabled and CSRF protection in forms, indicating a solid technical foundation. However, some security best practices like security headers and cookie consent mechanisms are missing or not visible. The WHOIS data aligns with the website's German origin and service claims, supporting legitimacy. Overall, the site presents a trustworthy and professional service with room for improvement in privacy compliance and security hardening.

C

CopeCart

copecart.com

70

CopeCart is a technology company founded in 2017, providing an all-in-one online sales platform targeted at digital entrepreneurs primarily in Germany. The website is professionally designed using WordPress and the Divi theme, with good SEO and mobile optimization. The technical infrastructure includes modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Cookiebot for cookie consent management. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service found. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

W

wvnderlab

wvnderlab.com

52

wvnderlab is a Hamburg-based digital agency specializing in web design, SEO, online marketing, and e-commerce solutions. The company positions itself as a full-service provider offering tailored digital marketing strategies and professional website development to help businesses grow their online presence. Their website reflects a mature digital infrastructure with modern technologies such as WordPress, Yoast SEO, and cookie consent management, indicating a high level of digital maturity. Security measures include HTTPS enforcement and anti-spam protections, though there is room for improvement in HTTP security headers and formal security policies. Overall, the website is professional, well-structured, and GDPR compliant, supporting a trustworthy business image.

P

Planetary Networks GmbH

planetary-networks.net

49

Planetary Networks GmbH is a specialized hosting provider based in Berlin, Germany, with over 14 years of experience. The company offers a range of services including hosting, virtual and dedicated servers, groupware solutions based on Zimbra, backup services, and consulting. They operate their own infrastructure across two Berlin data centers with direct peering at BCIX, emphasizing high quality and reliability. The website reflects a professional and trustworthy business with ISO 9001 certification and TÜV quality management, targeting businesses and private customers seeking dependable hosting solutions. Technically, the website is built on WordPress 6.0.11 with common plugins such as Contact Form 7 and Borlabs Cookie for GDPR-compliant cookie management. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enabled and cookie consent implemented, but some security headers are not explicitly detected, and no incident response or vulnerability disclosure policies are published. Overall, the security posture is solid for a small hosting provider, with no visible vulnerabilities or suspicious elements. The domain WHOIS data aligns well with the business claims, showing consistent registration and no privacy protection, supporting legitimacy. The website content is safe for general audiences, professional, and well-structured, with clear navigation and trust indicators. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and improving accessibility compliance to further strengthen trust and security culture.

P

Planetary Networks GmbH

planetary-networks.com

49

Planetary Networks GmbH is a specialized hosting and server service provider based in Berlin, Germany, with over 14 years of industry experience. The company operates its own infrastructure in two Berlin data centers with direct peering at BCIX, offering reliable hosting, virtual and dedicated servers, and groupware solutions based on Zimbra. Their market position is that of a trusted niche provider known for quality and customer-centric service, supported by ISO 9001:2015 and TÜV certifications. Technically, the website is built on WordPress with modern plugins and demonstrates good mobile optimization and SEO practices. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and GDPR-aligned cookie management. Overall, the website and business present a professional and trustworthy image with no critical security or content safety concerns.

P

Planetary Networks GmbH

planetary-networks.eu

49

Planetary Networks GmbH is a specialized hosting provider based in Berlin, Germany, with over 14 years of experience delivering high-quality hosting, server, and groupware solutions. The company operates its own infrastructure across two Berlin data centers with direct peering at BCIX, emphasizing reliability and customer-centric service. Their offerings include virtual and dedicated servers, web hosting, email groupware based on Zimbra, backup solutions, and consulting services. The website reflects a professional and consistent brand image with clear navigation and good content quality. Technically, the website is built on WordPress 6.0.11, utilizing modern plugins such as Slider Revolution and Borlabs Cookie for GDPR-compliant cookie management. The hosting infrastructure is self-managed, indicating a mature technical setup. Performance is moderate with good mobile optimization, though accessibility features could be improved. SEO practices are adequately implemented. From a security perspective, the site uses HTTPS with a good SSL configuration and employs cookie consent mechanisms. However, there is a lack of explicit security headers and no published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Certifications such as ISO 9001:2015 and TÜV attest to quality management and operational standards. Overall, the website and business demonstrate a solid security posture and compliance with GDPR, though improvements in security headers and incident response transparency are recommended. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Planetary Networks GmbH

planetary-networks.de

49

Planetary Networks GmbH is a specialized hosting provider based in Berlin, Germany, with over 14 years of experience. The company operates its own infrastructure across two Berlin data centers and offers a range of services including hosting, virtual and dedicated servers, groupware solutions based on Zimbra, and backup services. Their business model focuses on high-quality, reliable hosting solutions for both private and corporate clients, emphasizing customer trust and service quality. Technically, the website is built on WordPress with modern plugins such as Slider Revolution and Borlabs Cookie for GDPR compliance. The infrastructure is self-hosted, indicating a mature technical setup. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. The website is professional, well-branded, and provides clear navigation and content relevant to its audience. No critical vulnerabilities or blocking mechanisms were detected, and the domain WHOIS data aligns well with the company's claims, supporting legitimacy. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

H

Hanse Waagen

hanse-waagen.de

47

Hanse Waagen is a specialized German company providing industrial weighing solutions, calibration, repair, and accessories with certified quality and decades of experience. The website targets commercial customers and operates on a modern Shopware e-commerce platform, demonstrating a good level of digital maturity. The technical infrastructure includes standard analytics and tracking tools, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and privacy mechanisms in place, though explicit security policies and incident response information are absent. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

F

FIOR & GENTZ

fior-gentz.it

59

FIOR & GENTZ is a specialized orthopaedic technology company providing orthoses, therapy shoes, and related orthopaedic products primarily targeting healthcare professionals and patients. The company maintains a multilingual web presence with detailed product information, tutorials, and downloadable resources, supporting both B2B and B2C models. The website is built on TYPO3 CMS and incorporates modern web technologies with good mobile optimization and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response information are absent. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website reflects a professional and trustworthy healthcare business with moderate technical maturity and good compliance practices.

F

FIOR & GENTZ

fior-gentz.fr

63

FIOR & GENTZ is a specialized healthcare company focused on orthopaedic technology, offering orthoses, therapeutic shoes, and related products. The company supports multiple languages, indicating a European market presence, primarily in France, Germany, and Italy. Their website is built on TYPO3 CMS, featuring modern design elements and good mobile optimization. The site includes educational resources and product catalogs, targeting both healthcare professionals and patients. Technically, the website uses HTTPS with good SSL configuration and integrates Google Analytics for user tracking with GDPR-compliant cookie consent mechanisms. However, WHOIS data is unavailable, which raises some concerns about domain registration transparency. No explicit security or incident response policies are published, which could be improved to enhance trust. Overall, the website is professional, secure, and compliant with privacy regulations, but would benefit from enhanced transparency in domain registration and security disclosures.

H

Handwerkskammer für München und Oberbayern

hwk-muenchen.de

68

The Handwerkskammer für München und Oberbayern is a well-established regional chamber of crafts serving approximately 78,000 member businesses. It provides a broad range of services including self-administration, advocacy, training, and consulting to support the craft sector in Munich and Upper Bavaria. The website reflects a strong market position as a key governmental and non-profit entity dedicated to the craft industry. The digital infrastructure is modern, leveraging a specialized CMS (ODAV), popular JavaScript libraries, and comprehensive analytics tools, ensuring good performance, accessibility, and user experience. Security measures are robust with HTTPS, CAPTCHA, and cookie consent mechanisms, although explicit security headers and published security policies could enhance the posture further. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its target audience.

D

DSGVO Schutzteam

dsgvoschutzteam.com

63

DSGVO Schutzteam is a specialized German service provider focused on data protection, GDPR compliance, and whistleblowing solutions. The company offers tailored services including external data protection officer roles, GDPR-compliant website packages, whistleblowing reporting channels, and compliance with the EU AI regulation. Their market position is that of a niche expert catering to businesses seeking comprehensive data privacy and compliance support. The website is professionally designed using WordPress with modern SEO and cookie consent tools, indicating a mature digital infrastructure. The technical stack includes popular plugins and integrations such as Yoast SEO, WPBakery, HubSpot, Matomo, and Google Tag Manager, supporting marketing and analytics needs. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. The absence of WHOIS data is a concern for domain legitimacy but does not detract from the professional presentation and business focus. Overall, the website is trustworthy, well-structured, and compliant with GDPR principles, serving a general business audience.