Security Directory

M

Magazin NordHandwerk

nord-handwerk.de

45

Magazin NordHandwerk is a regional media publication serving the craft chambers in northern Germany, providing editorial content, e-paper publications, and media services. The website is professionally designed using WordPress with Elementor, featuring a clean layout and good mobile optimization. Social media integration is present with active Facebook, Twitter, and Instagram accounts. The site enforces HTTPS and uses GDPR-compliant cookie and privacy policies, reflecting a commitment to privacy and legal compliance. However, explicit contact information and detailed security policies are not present on the main page, which could be improved for better user trust and transparency. Overall, the website presents a solid digital presence for a small regional media outlet.

K

Samlet guide til kultur, musik, teater og udstillinger - Find det hele på KultuNaut

kultunaut.dk

46

KultuNaut.dk is a Danish cultural event platform providing a comprehensive calendar for music, theater, exhibitions, and other cultural activities primarily in Denmark. The website offers multilingual support and allows users to search events by geography, genre, and date. It also supports event submissions and user ratings, positioning itself as a regional cultural aggregator. Technically, the site uses modern JavaScript libraries such as Leaflet for mapping and Pickaday for date selection, with a moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS data limits domain trust assessment, though the site content and structure suggest legitimacy. Overall, KultuNaut.dk serves its target audience effectively but would benefit from enhanced transparency and security practices.

T

Thingiverse

thingiverse.com

71

Thingiverse is a prominent online platform dedicated to sharing digital designs for physical objects, primarily targeting the 3D printing community. It offers millions of downloadable 3D models and files suitable for 3D printers, laser cutters, and CNC machines. The platform serves a broad audience of makers, designers, and hobbyists, positioning itself as a leading repository and community hub in the 3D printing ecosystem. The website's branding and content quality are good, reflecting a professional and consistent user experience.

M

Make: Community

makezine.com

60

Make: DIY Projects and Ideas for Makers is a well-established media platform and community dedicated to makers and DIY enthusiasts. Founded in 2004, it offers a rich collection of project guides, ideas, and community engagement opportunities, positioning itself as a leading brand in the maker media space. The website leverages WordPress CMS with modern plugins and integrates multiple social media channels to engage its audience effectively. Technically, the site uses a robust tech stack including Bootstrap, Google Fonts, and various advertising and analytics tools, hosted with GoDaddy and utilizing Cloudflare DNS services. Security posture is solid with HTTPS enabled and domain protections in place, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is currently limited, with no explicit privacy or cookie policies detected in the provided content. Overall, the site is professional, trustworthy, and safe for general audiences, with a moderate to good technical and security maturity level.

E

EuropeSpa

europespa.eu

46

EuropeSpa is an organization focused on setting international quality standards and certifying providers in the medical spa and wellness industry. Their website serves as a platform to promote their certification programs, provide information about medical spa and wellness services, and offer training and seminars. The site targets both providers seeking certification and customers looking for certified resorts. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as jQuery and Owl Carousel, and it includes standard SEO and accessibility features. The site is mobile optimized and includes a cookie consent mechanism compliant with GDPR. Security-wise, the site uses HTTPS and implements cookie consent but lacks explicit security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-positioned in its niche, though it could improve by publishing more explicit security and incident response information.

S

STURM Isotech GmbH & Co. KG

sturm-isotech.de

57

STURM Isotech GmbH & Co. KG is a specialized service provider in the energy sector, focusing on district heating pipeline planning and network monitoring. The company positions itself as a trusted partner for comprehensive support in the construction and operation of district heating infrastructure. Their website reflects a professional and consistent brand image, targeting businesses and professionals involved in energy infrastructure. Technically, the website is built on WordPress with a modern theme and integrates essential Google services such as Analytics, Maps, Fonts, and reCAPTCHA for spam protection. The site is GDPR compliant with a detailed cookie consent mechanism and a comprehensive privacy policy. Security posture is solid with HTTPS enforced and spam protection in place, though some security headers could be improved. Overall, the website is well-structured, performant, and trustworthy, supporting the company's market position as a niche energy service provider.

E

ERDWERK GmbH

erdwerk.com

52

ERDWERK GmbH is a German-based company specializing in geothermal energy solutions, including consulting, planning, execution, and project management services. The company has a solid market presence with numerous projects primarily in Germany and some international locations. Their website is professionally designed using Drupal 8 CMS, featuring integration with Google Maps and Piwik analytics, indicating a moderate level of digital maturity. Contact information and social media links are clearly provided, enhancing business credibility. From a security perspective, the website uses HTTPS and does not expose sensitive data in the HTML content. However, it lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and security best practices. The absence of WHOIS registration data is a concern, as it reduces trustworthiness despite the professional website presence. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website demonstrates a good business and technical foundation but requires improvements in privacy compliance, security headers, and WHOIS transparency to enhance trust and security posture. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and clarifying domain registration details.

Region Sjælland operates as a regional government entity providing healthcare, psychiatric, social services, and regional development functions within Denmark. The website serves as an information portal for hospitals, emergency services, social institutions, and regional infrastructure. It targets residents, patients, and partners within the region. The digital presence is built on modern web technologies including Next.js and React, hosted on Microsoft Azure, indicating a mature technical infrastructure. The site is mobile-optimized and accessible, with good SEO practices and performance. Security posture is strong with HTTPS enforced, appropriate security headers, and a comprehensive cookie consent mechanism ensuring GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies are clearly linked and detailed, supporting compliance with data protection regulations. However, WHOIS data is unavailable, limiting domain registration trust verification. Overall, the website demonstrates a professional and trustworthy digital presence suitable for a public healthcare authority. Recommendations include adding explicit contact information for security and privacy concerns, publishing a security.txt file for vulnerability disclosures, and maintaining regular security audits of third-party scripts.

E

Energierecht Verlag

verlag-energierecht.de

10

Energierecht Verlag is a specialized independent publishing house based in Leipzig, Germany, focusing on legal literature related to renewable energy law. Established in 2002, the publisher offers a range of specialist books, dissertations, and historical works primarily targeting legal professionals, academics, and researchers interested in energy law and the energy transition. The website provides detailed product listings and an online shop for ordering publications. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and HTTPS for secure communication. The design is professional and user-friendly, with good mobile optimization and clear navigation. However, the site lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS but could be improved by adding security headers and incident response information. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Ö

Ökoring GmbH

oekoring.com

52

Ökoring GmbH operates as a specialized consultant and wholesale supplier of organic food products, targeting natural food retailers, gastronomy, social and educational institutions in Germany. The company emphasizes sustainable and fair supply chains with a focus on regional and global organic products. The website is professionally designed using WordPress and Elementor, incorporating SEO best practices and a comprehensive cookie consent mechanism, reflecting a mature digital presence. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit incident response information. The absence of WHOIS data is a notable transparency gap but does not detract significantly from the overall legitimacy given the professional website and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and improving WHOIS transparency.

T

TechBehemoths

techbehemoths.com

63

TechBehemoths is a well-established platform founded in 2018 and based in Germany, offering a comprehensive directory and matchmaking service for IT companies worldwide. It serves both clients seeking IT services and companies seeking visibility and client leads. The platform is technically mature, built on modern frameworks like Nuxt.js and Vue.js, and hosted with Cloudflare DNS for performance and security. The website is well-structured, mobile-optimized, and SEO-friendly, with a professional design and clear navigation. Security posture is strong with HTTPS enforced and domain locking, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and credible, with room for improvement in privacy and security transparency.

S

South Pole

southpole.com

74

South Pole is a globally recognized company specializing in climate solutions aimed at helping businesses achieve net zero emissions. Their services include climate consulting, environmental certificates, project finance, and a marketplace for carbon credits. The company positions itself as a leader in the energy and sustainability sector, targeting organizations seeking to reduce their carbon footprint and comply with environmental regulations. The website is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, Hotjar, and OneTrust for cookie consent, indicating a robust analytics and compliance infrastructure. Security posture is generally strong with HTTPS enforced and asynchronous loading of scripts, though explicit security headers and a published security policy are absent. The WHOIS data is notably missing or unavailable, which slightly reduces trust but is offset by the professional branding and presence of verified social media channels. Overall, the site is safe, business-focused, and compliant with privacy regulations, making it a credible resource in the climate solutions market.

H

Početna - HEDONE

hedone.hr

43

The website 'hedone.hr' appears to be a Croatian business site titled 'Početna - HEDONE'. It is built on a WordPress platform using WooCommerce for e-commerce capabilities and Elementor for page building. The site uses Google Fonts and Font Awesome for styling and icons, and Google Tag Manager for analytics tracking. However, the site lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. No contact information or security policies are evident, which may impact user confidence and regulatory compliance. The technical infrastructure is modern but lacks visible security headers and explicit security best practices. Overall, the site is functional and moderately optimized for SEO and mobile use but requires improvements in privacy, security, and transparency to enhance trust and compliance.

T

Telensa Tech

telensatech.com

63

Telensa Tech is a small technology company specializing in Telco ICT and cybersecurity services, offering tailored solutions such as cloud services, system integration, telco, colocation, and comprehensive IT support. The website is professionally designed on the Squarespace platform, with clear navigation and a focus on business clients seeking digital infrastructure and security solutions. Technically, the site uses modern web technologies, has good SSL configuration with HTTPS and HSTS, and integrates Google Tag Manager for analytics. However, the absence of privacy and cookie policies and lack of WHOIS registration data present compliance and legitimacy concerns. Security posture is strong in SSL but could be improved with additional security headers and incident response information. Overall, the site is functional and professional but requires enhancements in privacy compliance and domain registration transparency.

N

Nutricia

nutricia.lv

65

Nutricia is a healthcare nutrition company operating in Latvia, providing nutrition products and consumer information primarily in Latvian and Russian. The website is built on WordPress and integrates modern web technologies including Google Fonts, Google Maps API, Google Tag Manager, Hotjar, and OneTrust for cookie consent. The site is well-structured with SEO optimizations and mobile responsiveness, targeting consumers and healthcare professionals in Latvia. Security measures include HTTPS enforcement and cookie consent, though explicit security headers and policies are not evident. The absence of direct contact information and privacy policy pages suggests areas for improvement in transparency and compliance. Overall, the website presents a professional and trustworthy digital presence consistent with its business domain.

B

Ban Tours

bantours.hr

10

Ban Tours is a Croatian travel agency specializing in organizing various types of travel including group, individual, private, and corporate trips, seminars, congresses, incentive travels, and team building events. The company holds a strong market position as a leader in sports travel with over 15 years of experience and owns a fleet of 44 Dufour sailing yachts for Adriatic charters. Their target audience includes sports enthusiasts, corporate clients, and individual travelers. The website is professionally designed using Webflow, with good mobile optimization and clear navigation. Technical infrastructure includes modern web technologies and CDN hosting, providing moderate performance. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and dedicated security policies. Privacy and cookie policies are present, supporting basic GDPR compliance. Contact information is clearly provided, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with business claims, supporting a high trust score. Overall, the website is a reliable and professional digital presence for Ban Tours.

U

Ustanova Zoološki vrt Grada Zagreba

zoo.hr

51

Ustanova Zoološki vrt Grada Zagreba operates the Zagreb Zoo, a well-established public institution dedicated to animal care, conservation, and education. The website provides comprehensive information about the zoo's exhibits, educational programs, conservation projects, and visitor services. It targets a broad audience including families, schools, and tourists, positioning itself as a key cultural and educational entity in Croatia. The presence of ISO 9001 and ISO 14001 certifications underscores its commitment to quality and environmental management. Technically, the website is built on WordPress using the Divi theme, leveraging modern web technologies such as jQuery and Google Fonts. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and a cookie consent mechanism, which are recommended for compliance with EU regulations. The absence of a public vulnerability disclosure or incident response policy suggests room for improvement in security transparency. Overall, the website is professional, trustworthy, and aligned with the institution's public service mission. The lack of WHOIS data due to GDPR privacy is typical and justified. Strategic recommendations include implementing cookie consent, enhancing security headers, and publishing clear security policies to strengthen compliance and trust.

K

Kulturni centar Travno

kuctravno.hr

50

Kulturni centar Travno is a well-established cultural and educational center based in Zagreb, Croatia, founded in 2013. It organizes a variety of cultural events, workshops, exhibitions, and community inclusion projects, particularly focusing on youth and migrant integration through Erasmus+ funded initiatives. The website reflects a professional and community-focused organization with active event promotion and educational content. Technically, the site is built on WordPress with modern plugins and SEO tools, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS and some security best practices, though explicit security headers and policies could be improved. Privacy compliance is basic, with cookie consent implemented but no visible privacy policy or terms of service. Overall, the domain registration and website content are consistent and trustworthy, supporting the legitimacy of the organization.

Z

Zagrebačko gradsko Kazališta Komedija

komedija.hr

10

Zagrebačko gradsko Kazalište Komedija is a well-established cultural institution based in Croatia, specializing in theatrical performances including operettas, musicals, rock operas, and ballets. The website serves as a comprehensive platform for showcasing their repertoire, news, ticket sales, and organizational information. The theater targets a broad audience interested in performing arts and cultural events. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO and various plugins, ensuring good SEO and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The domain registration data aligns well with the business, indicating legitimacy and trustworthiness.

D

DEKOD d.o.o.

dekod.hr

52

DEKOD d.o.o. is a well-established Croatian ticketing organization with over two decades of experience and a leading market position in the region. The company offers a comprehensive suite of ticketing and event management services, including e-ticketing systems, payment solutions, and web shop capabilities. Their clientele includes cultural institutions, event organizers, and public venues, supported by a strong regional presence and trusted partnerships such as with ulaznice.hr. The website reflects a professional business focus with clear contact information and client testimonials, reinforcing their credibility. Technically, the site is built on WordPress with the Enfold theme and uses common web technologies, but it runs outdated software versions that pose security risks. Security posture is moderate with HTTPS enabled but lacks modern security headers and visible privacy or cookie policies, indicating room for compliance improvement. Overall, the website is functional and trustworthy but would benefit from technical and compliance updates to enhance security and user trust.

K

KI Bundesverband

ki-verband.de

10

KI Bundesverband is Germany's largest network for Artificial Intelligence and Deep Tech companies, connecting over 500 members from various sectors including business, politics, research, and investment. The organization acts as a facilitator, advocate, and community builder to promote AI innovation and collaboration in Germany. Their website is built on a modern WordPress platform with professional design and SEO optimization, reflecting a mature digital presence. The technical infrastructure includes popular plugins such as Yoast SEO, Elementor, and Slider Revolution, hosted on Raidboxes, a reputable WordPress hosting provider. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and formal security policies. Overall, the site is trustworthy, professional, and well-positioned in the AI ecosystem.

S

SteadyFilm

steadyfilm.de

53

SteadyFilm is a small digital content agency based in Germany specializing in professional film production, social media videos, recruiting, and image films. The company focuses on emotional storytelling to build trust and reach target audiences effectively. Their website demonstrates a strong market position within the media sector, leveraging modern WordPress technologies including Elementor and Yoast SEO for a professional online presence. The site integrates Vimeo for video content and Calendly for client scheduling, enhancing user engagement. Security posture is solid with HTTPS enforced and GDPR compliance evident through a comprehensive privacy policy and cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected, indicating a trustworthy and well-maintained digital infrastructure. Overall, SteadyFilm presents a credible and professional business with a high-quality website and good privacy and security practices.

W

WAM Montageservice GmbH

wam.biz

63

WAM Montageservice GmbH is a German-based company specializing in industrial assembly and technical installation services, including refrigeration, electrical engineering, fire protection, and drywall construction. Founded in 2022, the company targets industrial and commercial clients requiring specialized assembly and construction services. The website reflects a professional digital presence built on WordPress with modern plugins and technologies, offering good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and domain transfer protection, though DNSSEC is not enabled. Privacy compliance is well addressed with comprehensive cookie consent and privacy policies. Overall, the website and business information are consistent and trustworthy, with no critical security or compliance issues detected.

T

Tech-Solution

tech-solution.dk

43

Tech-Solution is a Danish machine manufacturer specializing in custom machine development and production, emphasizing close collaboration with customers. The company highlights 25 years of experience and innovation in sectors such as industry, agriculture, and asphalt machinery. Their website is built on WordPress with Elementor, showing a moderate level of digital maturity with good mobile optimization and basic SEO. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security best practices. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy image suitable for its niche market.

N

NCC

ncc.dk

70

NCC is a large Nordic construction and infrastructure company focused on delivering residential buildings, commercial premises, and infrastructure projects. The website presents a professional image with clear branding and a focus on collaboration and innovation in the construction sector. The company targets customers and partners in Denmark and the broader Nordic region. Technically, the website uses modern web technologies including JavaScript, Microsoft Application Insights for telemetry, and Cookiebot for cookie consent management. The site is mobile-optimized and includes SEO best practices, though some security headers are missing. Security posture is strong with HTTPS enforced and telemetry in place, but transparency could be improved by publishing explicit privacy policies, terms of service, and security policies. Overall, the site is trustworthy and well-maintained with extensive analytics and marketing tools used in compliance with GDPR via consent mechanisms.

V

Vyšší policejní škola a Střední policejní škola MV v Praze

skolamv.cz

60

Vyšší policejní škola a Střední policejní škola MV v Praze is a government-affiliated educational institution specializing in secondary and higher vocational police education, language training, and professional courses related to classified information, crisis management, and pedagogy. The institution serves students, police officers, and public sector employees, positioning itself as a key provider of police education in the Czech Republic. The website reflects a mature digital presence with structured data, social media integration, and comprehensive privacy and cookie policies. Technically, the site is built on Joomla CMS with modern frontend libraries and includes Google Analytics for user tracking. Security posture is strong with HTTPS enforced and cookie consent implemented, though additional security headers and incident response information could enhance trust. WHOIS data is unavailable, likely due to privacy protection, but the website's branding and content strongly support legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations, serving its educational mission effectively.

T

Tulzer & Osterauer

to-do.at

54

Tulzer & Osterauer is a specialized interior architecture firm focusing on planning and executing renovation and new construction projects for banks, offices, commercial premises, and hotels primarily in Austria. The website presents a professional and well-structured digital presence built on WordPress with Elementor, featuring good design quality and mobile optimization. The technical infrastructure includes modern web technologies and SEO optimization tools such as Rank Math PRO. Security posture is solid with HTTPS and security headers implemented, though explicit privacy and terms of service policies are missing. No direct contact information is embedded in the HTML, which may affect user trust and compliance. Overall, the website is safe, professional, and trustworthy with room for improvement in privacy compliance and contact transparency.

P

PRISMA European Capacity Platform GmbH

prisma-capacity.eu

68

PRISMA European Capacity Platform GmbH operates a leading SaaS platform facilitating gas capacity trading across Europe. The platform serves Transmission System Operators, Storage System Operators, LNG Operators, Shippers, and AggregateEU participants, enabling efficient auctioning and trading of gas transmission and storage capacity. The company positions itself as a key enabler for Europe's energy security and the Green Transition through digital innovation. Technically, the website is built on HubSpot CMS, leveraging modern web technologies and analytics tools, delivering a professional and responsive user experience. Security-wise, PRISMA demonstrates a mature posture with ISO 27001 certification, HTTPS enforcement, and cookie consent mechanisms, though some security headers could be explicitly verified and incident response contacts published. Overall, the website is trustworthy, professional, and compliant with GDPR, with no signs of blocking or malicious content.

P

Proweby.cz

proweby.cz

65

Proweby.cz is a Czech-based small business specializing in creating custom websites, e-shops, and SEO services primarily for small and medium-sized enterprises, including real estate professionals. The company emphasizes personalized service, human-centric client relationships, and delivering quality digital marketing solutions tailored to client needs. Their market position is niche-focused with a strong presence in the Czech Republic and Slovak markets, supported by client testimonials and references from reputable partners such as RE/MAX Alfa. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by Yoast SEO for search engine optimization and Google reCAPTCHA for form security. The site demonstrates good mobile responsiveness, modern design, and SEO best practices, although some security headers are missing. Cookie consent mechanisms comply with GDPR, providing users granular control over cookie categories. Security posture is solid with HTTPS enforced and anti-bot measures in place, but lacks explicit published security policies or incident response contacts. The absence of WHOIS data is a minor concern but does not significantly detract from the site's legitimacy given the professional content and active social media presence. Overall, Proweby.cz presents a trustworthy, professional digital presence with strong business credibility and technical maturity. Strategic improvements in security headers and transparency around incident response would further enhance trust and compliance.

E

EDF

edf-renewables.tw

9

EDF power solutions Taiwan is a regional branch of the international energy company EDF, specializing in the development, construction, and operation of renewable energy power plants, particularly offshore wind projects in Taiwan. The website presents a professional image with detailed project descriptions and news updates, targeting stakeholders in the renewable energy sector and the general public interested in green energy solutions. The company is positioned as a responsible and innovative energy provider contributing to energy transition and decarbonization efforts. Technically, the website is built on WordPress with Elementor, employing modern web technologies and SEO best practices, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS and security headers implemented, though privacy and cookie policies are missing, representing a compliance gap. The absence of WHOIS domain registration data raises concerns about domain legitimacy, which should be addressed to improve trust. Overall, the site is credible and professional but would benefit from enhanced privacy compliance and clearer domain registration transparency.

E

EDF Renewables India Pvt. Ltd

edf-re.in

55

EDF Renewables India Pvt. Ltd operates as a leading Independent Power Producer in the renewable energy sector in India, focusing on grid-scale clean energy projects including wind, storage, and emerging technologies. The company is part of the global EDF Groupe, a recognized leader in CO2 neutral electricity generation. The website presents a professional and consistent brand image targeting business partners and stakeholders in the energy sector. Technically, the site is built on WordPress with modern libraries and frameworks, offering good mobile optimization and user experience. Security posture is solid with HTTPS enabled and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the website reflects a credible and established business with moderate tracking and analytics usage.

O

Outright Games

outrightgames.com

71

Outright Games is a family-run global video game publisher specializing in family-friendly interactive entertainment featuring some of the biggest licensed franchises worldwide. The company operates a professional and well-structured website that reflects its market position as a medium-sized player in the media industry focused on children and family audiences. The website is built on a modern WordPress CMS with advanced SEO and performance optimizations, including caching and lazy loading. It integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, Intercom, and Cookiebot for consent management. Security posture is solid with HTTPS enforced and domain transfer protections in place, although DNSSEC is not enabled and some security headers could be improved. No privacy policy or terms of service were detected in the provided content, which is a compliance gap. Contact information is not explicitly listed on the homepage, but social media presence is strong. Overall, the website is professional, trustworthy, and safe for general audiences.

E

Ekowatt

ekowatt.cz

46

Ekowatt is a Czech-based consulting company specializing in energy, economics, and environmental advisory services. Established since 1998, it offers a broad range of services including energy audits, building certifications (LEED, BREEAM, WELL, DGNB), energy performance certificates, economic optimization studies, and carbon footprint calculations. The company targets businesses and organizations seeking to improve energy efficiency and environmental compliance. The website is professionally designed using WordPress with Elementor and Astra theme, providing a good user experience and mobile optimization. Privacy and cookie compliance are well implemented with a visible consent mechanism and comprehensive privacy policy. Security posture is adequate with HTTPS enabled, though additional security headers and explicit security policies could enhance protection. No critical vulnerabilities or blocking mechanisms were detected, indicating stable and accessible infrastructure. Overall, Ekowatt presents a credible and professional online presence aligned with its business domain.

D

Domy Sobě - Pomáháme bytovým domům šetřit

domysobe.cz

66

Domy Sobě is a Czech Republic based service provider focused on helping apartment buildings save money, likely through consulting or operational services. The website is built on the Webflow platform and integrates modern web technologies including Google Tag Manager and Cookiebot for cookie consent management. The site is accessible without WAF or security challenges and employs HTTPS. However, the absence of publicly available WHOIS data and lack of visible privacy policy or terms of service pages reduce transparency and trust. The cookie consent mechanism is comprehensive, supporting GDPR compliance with granular user controls. The site uses multiple third-party analytics and advertising services such as Google Analytics, Facebook Pixel, and Hotjar, indicating extensive user tracking.

R

Red Hook Studios

darkestdungeon.com

55

Red Hook Studios operates the website www.darkestdungeon.com as the official platform for their game Darkest Dungeon and related content. The site targets gamers and enthusiasts of indie games, providing information about the studio and its products. The technical infrastructure leverages modern web technologies including Nuxt.js, Vue.js, GSAP for animations, and Tailwind CSS for styling, indicating a contemporary and responsive design approach. The presence of consent management via Osano CMP reflects some attention to privacy compliance, though explicit privacy and cookie policies were not detected in the provided content. Security posture appears moderate with HTTPS implied, but no explicit security headers were found in the data. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or recent registration, which impacts trustworthiness. Overall, the website is professionally designed and functional but would benefit from enhanced transparency in privacy, contact information, and security disclosures.

P

PratiMe

pratime.rs

44

PratiMe is a Serbian-based company specializing in GPS satellite vehicle tracking and fleet management solutions. Their platform offers real-time vehicle monitoring, fuel consumption control, driver behavior analytics, and comprehensive fleet management tools. The company targets businesses and fleet operators seeking to optimize operational efficiency and reduce costs through advanced telematics. The website is professionally designed, mobile-optimized, and provides clear navigation and contact channels, reflecting a mature digital presence for a company founded in 2020. Technically, the website employs modern web technologies including Bootstrap, jQuery, GSAP animations, and a 3D globe visualization library (Cobe). It integrates Google Fonts and uses a cookie consent mechanism to comply with privacy regulations. While the site is performant and accessible, there is room for improvement in security hardening, particularly in enabling DNSSEC and implementing security headers such as CSP and HSTS. From a security perspective, the site uses HTTPS and has a contact form with client-side validation, but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of a privacy policy and terms of service is a notable compliance gap. WHOIS data shows transparent and consistent domain registration aligned with the business location and sector, supporting legitimacy. Overall, PratiMe presents a trustworthy and professional online presence with strong business credibility and technical implementation. Enhancing security policies, privacy compliance documentation, and DNS security would further strengthen their posture and trustworthiness.

The website stepupforchildhoodcancer.com is currently a minimal placeholder page hosted on Squarespace, indicating it is under construction. There is no substantive business content, contact information, or policies published. The domain is registered since 2014 with Squarespace Domains II LLC, showing stable registration but no privacy protection or detailed registrant data. The technical infrastructure is basic, relying on Squarespace platform and Google Fonts, with no advanced frameworks or analytics detected. Security posture is minimal with no security headers or DNSSEC enabled, and no HTTPS enforcement details available. Privacy compliance is absent due to missing privacy and cookie policies. Overall, the website presents low business credibility and trustworthiness due to lack of content and transparency.

B

Blue Ocean Games

blueoceangames.com

47

Blue Ocean Games operates a niche platform focused on indie game developers, providing a venue for game validation, community feedback, and funding opportunities. The website highlights winners of their Rising Tide 2 challenge, showcasing games selected by public voting and judges. The company appears to have a small but focused market presence, targeting game developers and gaming enthusiasts. Technically, the site uses modern web technologies including React, Material UI, and Mux Player for video content, with Google Fonts and Plausible Analytics integrated. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite analytics usage. Overall, the domain is well aged and registered with a reputable registrar, supporting legitimacy. Strategic improvements in security policies, cookie consent, and accessibility would enhance trust and compliance.

Limecast is an emerging privacy-first, open-source podcasting platform aimed at podcasters and privacy-conscious users. The website serves as a coming soon landing page highlighting the platform's focus on privacy and distributed podcasting technology. The business is positioned as a startup founded in 2020, with a small team and a technology sector focus. The platform emphasizes open-source development and community involvement, as evidenced by links to their Codeberg repository and social media presence on Mastodon and Bluesky. Technically, the website is built with modern HTML5 and CSS3 standards, uses Google Fonts, and integrates an EmailOctopus subscription form for user engagement. Hosting appears to be managed via NameCheap, with domain registration consistent with the startup's timeline. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is currently poor due to the absence of privacy and cookie policies and consent mechanisms. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the website is professional and well-branded but requires enhancements in privacy compliance and security best practices to improve trust and user confidence.

W

Wemove

wemove.no

69

Wemove.no is a Norwegian e-commerce retailer specializing in sports, training, and leisure branded products such as Umbro, Scott, and Fibra. The website targets sports enthusiasts and offers a curated selection of well-known brands. The business appears to be a small-sized entity founded in 2016, with a consistent domain age and market presence. Technically, the website employs modern web technologies including ASP.NET, Cloudflare CDN, and integrates with Shopify and various third-party marketing and analytics tools. The site is mobile optimized and uses HTTPS with appropriate security headers, reflecting a good digital maturity level. Security posture is solid with no visible vulnerabilities or exposed sensitive data, although explicit security policies and incident response information are not published. Privacy compliance is strong, featuring a comprehensive cookie consent mechanism with granular user controls and links to detailed privacy policies. Overall, the website is professional, trustworthy, and safe for general audiences.

M

Mubs Inc

mubs.inc

64

Mubs Inc is a small digital product studio founded in 2021 and operated by Mubashar Iqbal, focusing on AI, web3, and blockchain product development. The website presents a professional and modern design built on Next.js and React, optimized for mobile and fast loading. However, it lacks critical compliance documents such as privacy and cookie policies, and does not provide contact information, which limits trust and transparency. The domain is privacy protected but registered with a reputable registrar, consistent with a small technology business. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the site is safe and suitable for a general audience with no adult content.

L

Leafworks

leafworks.de

49

Leafworks is a small consulting firm specializing in customer experience and CX management, targeting businesses seeking to improve their customer interactions. The website is built on a modern WordPress infrastructure using popular plugins and themes such as Yoast SEO, Astra, Elementor, and WP Rocket, indicating a moderate level of digital maturity. The site is well-designed, mobile-optimized, and provides relevant content aligned with its consulting services. However, the security posture is limited, with no visible security headers, privacy or cookie policies, or incident response information, which could expose the business to compliance and security risks. The absence of explicit contact information reduces transparency and trust. Overall, the website is functional and professional but requires improvements in privacy compliance and security practices to enhance trustworthiness and regulatory adherence.

The website 'Zeit für Mich' is a German health promotion initiative operated by BKV - Interessengemeinschaft Betriebliche Krankenversicherung e. V., focusing on strengthening personal resources and promoting a healthy work-life balance. It offers information, online self-assessment tests, and access to quality-approved prevention courses such as relaxation techniques and yoga. The target audience primarily includes working adults interested in health and stress management. The business model is non-profit, supported by statutory health insurance entities in Germany, aiming to provide accessible health resources and course subsidies. Technically, the site is built on WordPress using the Understrap child theme, incorporating jQuery and Google Fonts. The infrastructure appears standard for a small non-profit website, with moderate performance and good mobile optimization. SEO and accessibility are basic but functional. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS as indicated by resource URLs, but no explicit security headers were detected in the provided data. There is no evidence of vulnerability disclosure mechanisms or security policies. Contact information is clearly provided, but privacy and cookie policies are absent, which is a compliance gap. No forms or data collection points were found on the homepage, reducing immediate risk exposure. Overall, the website is professional, trustworthy, and safe for general audiences. However, improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-bettgefluester.de

42

Bettgeflüster is a German health campaign operated by the BKV association, focusing on promoting healthy sleep habits through educational content, multimedia resources, and downloadable materials. The campaign targets the general public interested in improving sleep quality and overall health. The website is built on WordPress, leveraging modern web technologies such as Breeze caching and Google Fonts, and is hosted with domain control services consistent with the domain registration. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content. Security posture is solid with HTTPS enforced, though it lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Contact information is clearly provided with official email and physical address, enhancing business credibility.

Mubs.me is a personal and professional portfolio website for Mubashar Iqbal, a solo software developer and content creator based in Upstate New York. The site showcases his product studio, side projects, and blog articles, positioning him as a niche solo developer with a strong personal brand. The business model revolves around software development and content creation, targeting tech enthusiasts and potential clients. The website is well designed with good content quality and consistent branding, reflecting a small but professional operation. Technically, the site uses modern web technologies including Alpine.js and Splide.js for interactivity, along with web fonts from Google Fonts and Fontshare. The site is mobile optimized and performs moderately well, though no CMS or hosting provider details are evident. SEO and accessibility are basic but adequate for the site's scope. From a security perspective, the domain is registered with a reputable registrar and has clientTransferProhibited status, indicating some protection against unauthorized transfers. However, DNSSEC is not enabled, and no security headers or privacy policies are present on the site, representing compliance and security gaps. No forms or sensitive data collection points are detected, reducing immediate risk exposure. Cloudflare Web Analytics is used for traffic monitoring with minimal user tracking. Overall, the website is safe, professional, and trustworthy with moderate security posture. Key recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing clear contact information to enhance compliance and trust.

O

OneTicket.cz

oneticket.cz

67

OneTicket.cz is a Czech Republic-based transportation ticketing platform offering a unified railway ticketing system across multiple carriers. Operated by the state enterprise CENDIS under the Ministry of Transport, it provides various ticket types including single, route, and network passes, as well as family and corporate accounts. The platform targets railway passengers seeking convenient and flexible travel options within the Czech rail network. The website is professionally designed, mobile-optimized, and provides comprehensive service information and user support. Technically, it leverages modern web technologies such as React and Google Fonts, with a moderate performance profile and good SEO and accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies are absent. Privacy and cookie policies are present and GDPR compliant. Overall, the site demonstrates high business credibility and trustworthiness with official backing and transparent contact information.

E

Elektrotechnik Kerschbaumer GmbH

elektro-kerschbaumer.at

10

Elektrotechnik Kerschbaumer GmbH is a small Austrian company specializing in electrical engineering services, including project management, planning, and construction management, primarily serving the St. Veit an der Glan region. The company emphasizes customer satisfaction and sustainable solutions, targeting both private and business clients in the energy and construction sectors. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website is built on WordPress using the Enfold theme, leveraging modern web technologies such as lazy loading, Google Fonts, and structured data for SEO. Hosting is provided by netcup GmbH, a reputable provider. The site performs moderately well with good mobile optimization and basic accessibility features. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers, published security policies, and incident response information. No vulnerabilities or malicious content were detected, but improvements in security best practices are recommended. Overall, the website presents a trustworthy and professional digital presence with minor technical and security enhancements recommended to further strengthen compliance and resilience.

A

ACA - The Academic Cooperation Association

aca-secretariat.be

62

ACA - The Academic Cooperation Association is a well-established membership organization founded in 1999, focused on promoting and funding the internationalisation of higher education across Europe and beyond. It serves as a think tank, advocacy platform, and project coordinator for national-level international education organizations. The website reflects a professional and authoritative presence with comprehensive content, clear navigation, and strong branding consistency. The organization benefits from EU Erasmus+ co-funding and maintains active engagement through events, publications, and a monthly newsletter.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-like-dich-selbst.de

41

The website 'BKK-Kampagne: Like Dich selbst!' is a health promotion platform operated by the non-profit association BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V. It focuses on educating the German public about nutrition, exercise, stress management, and addiction prevention through webinars and podcasts. The site targets a general audience interested in improving personal health and wellness. Technically, the site is built on WordPress with modern web technologies such as jQuery and Google Fonts, hosted with domain control via GoDaddy DNS. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in security and privacy transparency.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-fokussiert.de

42

BKK fokussiert is a German health prevention campaign operated by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., focusing on promoting healthy work environments and stress prevention for employees. The website serves as an informational platform offering videos, podcasts, and educational content targeting employees and companies interested in workplace health. The campaign positions itself as a niche player within the healthcare and non-profit sectors in Germany. Technically, the website is built on WordPress 6.8.3 with standard plugins including WPML for multilingual support. It uses Google Fonts and embeds media from Mixcloud. The site is hosted with domain control via GoDaddy name servers and employs HTTPS with good SSL configuration. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. From a security perspective, the website enforces HTTPS but lacks visible security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No forms or data collection fields are present on the homepage, reducing attack surface. No vulnerability disclosure or incident response information is published. The WHOIS data is minimal but consistent with a legitimate domain registration. Overall, the website is professional, secure, and trustworthy with minor improvements recommended in privacy compliance and security headers to enhance protection and user trust.