Security Directory

V

vkm Bayern

vkm-bayern.de

76

The vkm-Bayern website represents a regional non-profit union dedicated to church and diaconal employees in Bavaria, Germany. It focuses on advocating for fair wages, employee rights, and fostering a strong service community. The organization positions itself as a strong regional player within its niche, targeting employees in religious and social service sectors. The website content is professionally presented, with clear branding and consistent messaging aligned with its mission. Technically, the website is built on WordPress using Elementor and WooCommerce, indicating a mature digital infrastructure capable of supporting content management and e-commerce functionalities. Hosting is via AWS DNS services, ensuring reliable availability. The site implements GDPR-compliant cookie consent mechanisms and privacy policies, reflecting good digital maturity and regulatory adherence. Performance and mobile optimization are adequate, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, it lacks publicly available security policies and incident response contacts, which are recommended for transparency and preparedness. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website is trustworthy and professionally managed, with room for improvement in security transparency and accessibility. Strategic recommendations include publishing a security policy, incident response contacts, and enhancing accessibility compliance to strengthen user trust and regulatory adherence.

C

Chorverband in der Evangelischen Kirche in Deutschland e.V. (CEK)

choere-evangelisch.de

54

The Chorverband in der Evangelischen Kirche in Deutschland e.V. (CEK) is a well-established non-profit umbrella organization representing over 15,000 evangelical church choirs and nearly 250,000 singers across Germany, including a significant number of children and youth. The organization focuses on promoting church singing through various activities such as sing weeks, training, publications, and community support initiatives. The website reflects a professional and consistent brand presence, targeting choir members, church musicians, and related stakeholders within Germany. The digital infrastructure is based on a modern WordPress CMS with relevant plugins for GDPR compliance and user engagement, hosted on netcup servers.

Wirkstatt evangelisch is a newly established institution within the Evangelical Lutheran Church in Bavaria, formed by merging three church departments to provide consolidated support, training, and consulting services to church employees and communities. The website presents a clear mission focused on collaboration, spirituality, and organizational efficiency within the church context. Technically, the site is built on WordPress with a modern theme, showing good mobile optimization and accessibility, though some SEO and security header improvements are possible. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks some advanced security headers and a cookie consent mechanism. Overall, the site is trustworthy, compliant with GDPR, and professionally presented, reflecting its non-profit church affiliation.

K

KKV Aktuell

kkv-aktuell.de

54

KKV Aktuell is a German non-profit association website providing current information about the KKV Bundesverband. The site targets members and potential members interested in the organization's activities and membership opportunities. The business model is focused on community engagement and information dissemination within a niche non-profit sector. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and jQuery, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but could improve in privacy and security transparency.

D

DIE.PROJEKTOREN – FARYS & RUSCH GBR

die-projektoren.de

44

DIE.PROJEKTOREN – FARYS & RUSCH GBR is a small creative agency based in Berlin, Germany, specializing in design and presentation services with a focus on socially and environmentally conscious sectors such as nature and climate protection, social issues, education, and culture. Their offerings include corporate design, illustration, photography, web development, and film production, serving non-profit and cultural clients. The agency has over 20 years of experience, positioning itself as a niche player with a strong commitment to its thematic focus. Technically, the website is built on WordPress 6.8.3 using the Kadence theme and several modern plugins including Toolset Blocks and Bootstrap 4. The site is mobile-optimized and performs moderately well, with good accessibility and basic SEO features. Hosting appears to be provided by a German hosting provider, consistent with the business location. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and a formal security or incident response policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; a privacy policy is present and GDPR compliant, but no cookie consent mechanism was found. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance its security posture and compliance standing.

P

Polsko-Niemiecka Współpraca Młodzieży

dpjw.org

53

The Deutsch-Polnisches Jugendwerk (DPJW) is a well-established non-profit organization dedicated to fostering German-Polish youth cooperation through funding, training, and cultural exchange projects. The website serves as a comprehensive portal for project applications, partner searches, publications, and educational resources targeting youth organizations, schools, and project leaders. The organization enjoys a strong market position with a domain age dating back to 1998, reflecting its longstanding presence and credibility in the bilateral youth cooperation sector. Technically, the website is built on a modern WordPress CMS with a robust tech stack including Yoast SEO, Matomo analytics, and accessibility features. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although improvements such as enabling DNSSEC and adding security headers could enhance protection. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent aligned with GDPR requirements. Contact information is primarily provided via physical addresses and contact forms, with social media channels actively linked. However, explicit security policies and incident response contacts are not present. Overall, the DPJW website reflects a professional, trustworthy, and user-friendly platform supporting its mission of youth cooperation. Strategic recommendations include enhancing DNS security, publishing security policies, and maintaining up-to-date software to sustain its secure and compliant posture.

A

ARPIK OSTRAVA s.r.o.

arpik.cz

42

ARPIK OSTRAVA s.r.o. is a Czech architectural and engineering firm established in 2008, specializing in comprehensive project documentation for civil, industrial, and residential buildings, including engineering activities and author supervision during construction. The company serves clients seeking professional architectural and engineering services primarily in the Czech Republic. The website is built on a modern WordPress platform using Elementor and related plugins, demonstrating a moderate to good level of technical maturity and mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and formal privacy or cookie policies indicates room for improvement. Overall, the website presents a professional image with clear contact information and related group companies, supporting business credibility.

Transport-Logistik Oberhessen GmbH (TLO) is a German logistics and transport company specializing in modern, flexible, and punctual transport solutions, including special transports such as oversized and heavy loads. With over 20 years of experience, TLO serves a growing customer base, including notable clients in the rail construction sector, offering comprehensive logistics and vehicle services supported by an in-house fleet and workshops. The website reflects a professional and consistent brand presence with clear service descriptions and contact channels. Technically, the site is built on WordPress with modern plugins for performance and cookie consent, hosted on Strato servers, and secured with HTTPS. Security posture is solid with room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates a mature digital presence aligned with business operations and regulatory requirements.

F

floorING - Stavebná spoločnosť

flooring.sk

45

floorING is a Slovak construction company specializing in industrial flooring and parking area construction, with over 10 years of experience. The company positions itself as a professional and reliable partner offering comprehensive services from substrate preparation to final concrete layers. Their market presence is supported by a portfolio of significant projects and positive customer testimonials. Technically, the website is built on a modern WordPress platform using Elementor and related plugins, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and a published privacy policy, which are recommended for compliance and trust. Overall, the business appears legitimate and well-established with clear contact information and consistent branding.

F

Fondation Hindemith

fondation-hindemith.org

47

Fondation Hindemith is a small, specialized cultural foundation dedicated to preserving and promoting the legacy of composer Paul Hindemith. The website provides rich content about the foundation's activities, including music promotion, research, publications, and cultural events. The foundation targets musicians, scholars, and classical music enthusiasts primarily in German-speaking regions, with multilingual support for English and French. The domain is recently registered but hosted by a reputable provider, consistent with a small non-profit organization. Technically, the website is built on WordPress with Elementor and SEO plugins, offering good design and navigation but lacking explicit privacy and cookie policies. Security posture is adequate with HTTPS but could be improved by enabling DNSSEC and security headers.

K

Kulturkurier

kulturkurier.info

44

Kulturkurier is a German-based company specializing in online marketing and public relations services tailored for the culture and media sectors. Established since 2001, it offers a secure, decentralized marketing cloud solution that facilitates collaboration among employees managing press contacts and materials. The company positions itself as a leading media service provider in the cultural domain with a strong emphasis on GDPR compliance and data hosting within Germany. Technically, the website is built on WordPress using Elementor and integrates Google Analytics for user tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response details are absent. Overall, the site is professional, accessible, and trustworthy, supporting a medium-sized business model focused on B2B SaaS for cultural marketing.

D

DuMont Mediengruppe GmbH

dumont.de

59

DuMont Mediengruppe GmbH is a well-established German media and technology company with a rich history spanning over 400 years. The company operates multiple subsidiaries and brands in the media sector, offering digital content, marketing technologies, and publishing services. Their website reflects a mature digital presence with professional design, multilingual support, and comprehensive privacy and cookie policies, targeting a general audience interested in media and technology. Technically, the site is built on WordPress with Elementor and optimized for performance and SEO, demonstrating modern web standards and mobile responsiveness. Security posture is strong with HTTPS enforcement and security best practices, though formal security policies and incident response information are not publicly disclosed. Overall, the website is trustworthy, professional, and compliant with GDPR requirements.

H

Hannover Airport

haj-azubi.de

52

The website haj-azubi.de serves as the official platform for apprenticeship and vocational training opportunities at Hannover Airport. It targets young individuals seeking career paths in various airport-related trades such as logistics, office management, and fire services. The site is well-branded with Hannover Airport's identity and provides detailed information on available programs, benefits, and contact persons. Technically, the site is built on WordPress with a modern theme and uses reputable plugins for cookie consent and analytics. Hosting is provided by Hetzner, a reliable German hosting provider. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

V

VYSPLAN s.r.o

vysplan.cz

41

VYSPLAN s.r.o is a Czech consulting and project company specializing in technical supervision of builders, safety coordination (BOZP), engineering activities, and comprehensive processing of all stages of construction project documentation. Established in 2006, the company serves primarily the construction and transportation sectors with a focus on technical oversight and engineering consulting. Their market position is that of a specialized small business with a stable presence in the Czech Republic. The website is professionally designed using WordPress and Elementor, with multilingual support and structured data for SEO. The technical infrastructure is modern and well-maintained, hosted likely by WEDOS, a Czech hosting provider. Security posture is adequate with HTTPS enforced, but lacks visible security headers and formal privacy or cookie policies, which are compliance gaps. Contact information is clearly provided, including physical addresses and a company email, but no phone numbers are explicitly listed. Overall, the website is trustworthy and business credible but would benefit from enhanced privacy compliance and security best practices.

S

Specialised Nutrition Europe

specialisednutritioneurope.eu

51

Specialised Nutrition Europe operates as an information and advocacy platform focused on specialised nutrition within the European region. The website serves professionals and stakeholders by providing relevant content and engagement opportunities. The business model centers on information dissemination and sector advocacy, positioning itself as a niche player in the specialised nutrition market. The website was first published in 2019 and maintains consistent branding and professional content quality. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a modern and flexible CMS infrastructure. It employs standard web technologies including jQuery and integrates Google Analytics for visitor tracking, with Cookiebot managing cookie consent to comply with privacy regulations. The site demonstrates good mobile optimization and moderate performance, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, which are positive indicators. However, it lacks visible security headers and does not provide explicit privacy policy or terms of service pages, which are important for compliance and trust. No WHOIS registrant data is available due to EURid privacy policies, but the domain appears legitimate and consistent with the business's stated purpose. Overall, the website presents a moderate risk profile with room for improvement in privacy compliance, security best practices, and transparency. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and providing clear contact information for incident response. These steps will enhance trustworthiness and regulatory compliance.

B

Bundesarbeitsgemeinschaft Katholische Jugendsozialarbeit (BAG KJS) e.V.

bagkjs.de

44

The Bundesarbeitsgemeinschaft Katholische Jugendsozialarbeit (BAG KJS) e.V. is a German non-profit organization advocating for youth social work, particularly focusing on young people facing individual impairments or social disadvantages. The organization operates as a national umbrella body, providing advocacy, information resources, and program management to support youth inclusion and social justice. The website reflects a professional and consistent brand presence, targeting youth social workers, policymakers, and church and societal stakeholders. Technically, the site is built on WordPress with Elementor and uses modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. The site is mobile-optimized and includes Google Analytics for visitor insights. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and explicit privacy and terms of service pages are absent. Overall, the site is trustworthy and well-maintained but could improve transparency and compliance by publishing detailed privacy and security policies and providing explicit contact details.

DPSG SG Nahost is a small non-profit organization focused on fostering connections and cultural exchange among scouts in the Middle East. The website serves as an informational and community hub, providing resources, tips, and updates about scouting adventures and partnerships in the region. The site is built on a WordPress platform with a modern but moderate technical infrastructure, leveraging common libraries such as Bootstrap and jQuery. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-targeted to its audience, though improvements in privacy compliance and security policies are recommended.

I

ILK Internet GmbH

ilk.de

60

ILK Internet GmbH is a specialized technology and internet service provider based in Karlsruhe, Germany, offering tailored solutions including internet access, network connectivity, hosting, private cloud, server housing, colocation, and professional IT services. The company targets business clients and tenants of the Karlsruhe Technology Park, positioning itself as a regional expert in connectivity and IT infrastructure services. The website content is professional and well-structured, reflecting a focused B2B business model with clear service offerings. Technically, the website is built on WordPress using the Avada theme and jQuery libraries, indicating a modern and maintainable platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant meta tags. Hosting details are not explicitly disclosed, but the site uses HTTPS with a good SSL configuration, contributing to secure communications. From a security perspective, the site enforces HTTPS but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. There is no explicit incident response or security policy published, and no cookie consent mechanism is detected, which may impact GDPR compliance. The WHOIS data for the domain is missing or indicates the domain is unregistered, which raises concerns about domain legitimacy and requires further verification. Overall, the website presents a trustworthy and professional front for ILK Internet GmbH, but improvements in security headers, privacy compliance mechanisms, and domain registration transparency are recommended to enhance trust and security posture.

C

Codevibrant

codevibrant.com

39

Codevibrant is a small technology company specializing in WordPress themes and plugins, offering customizable and user-friendly web solutions primarily targeting WordPress users and businesses seeking web development services. The company has been operational since 2017 and maintains a professional online presence with a focus on SEO and user experience. Technically, the website is built on WordPress with a modern tech stack including jQuery, Easy Digital Downloads, and various performance and UI libraries. The site is optimized for mobile and SEO, with fast loading times and clear navigation. Security posture is good with HTTPS enabled and standard domain protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website demonstrates a solid business credibility and technical maturity suitable for its market niche.

F

Frauen Vielfalt Politik

frauen-macht-politik.de

57

Frauen Vielfalt Politik is a specialized non-profit initiative focused on empowering women in local German politics through information, consulting, networking, and best practices. The website serves as a central hub for resources, events, and community engagement, supported by reputable partners including the Deutscher LandFrauenverband and the German Federal Ministry for Family, Seniors, Women and Youth. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates accessibility tools and privacy-compliant analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site presents a professional, trustworthy, and well-structured platform with a clear mission and target audience.

Č

Český paralympijský výbor

paralympic.cz

48

The Czech Paralympic Committee operates a professional and comprehensive website serving the Czech parasport community. The site provides news, event information, athlete profiles, and resources related to paralympic sports. It targets athletes, sports fans, media, and partners within the Czech Republic. The organization is well-established, with a domain age dating back to 2000, reflecting a mature presence in the non-profit sports sector. Technically, the website is built on WordPress 6.8.3, utilizing a variety of plugins for social media integration, event management, and user engagement such as Mailchimp for newsletters. The site is hosted by a Czech registrar and uses modern web technologies including Google Fonts and JavaScript libraries. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, security headers are minimal, and no explicit security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected. The site uses tracking and analytics tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel, with moderate user tracking levels but good privacy compliance. Overall, the website is trustworthy, professionally maintained, and aligned with its business purpose. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving accessibility. These steps would further strengthen the site's security posture and user trust.

N

no strings attached

no-strings-attached.de

60

The website www.no-strings-attached.de represents a small cultural festival organizer based in Germany, specializing in puppet theater, object theater, and Nouveau Cirque performances. The festival is supported by regional cultural foundations and targets a general audience interested in performing arts. The site is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Borlabs Cookie for privacy compliance. The technical infrastructure is solid with HTTPS enforced and good SEO practices. Security posture is good but could be improved by adding security headers and explicit incident response policies. Privacy compliance is strong with a comprehensive privacy and cookie policy and a consent mechanism in place. No critical vulnerabilities or suspicious content were detected, and the site is fully accessible without WAF or blocking mechanisms.

U

Unternehmerverbände Niedersachsen e.V.

uvn-online.de

58

Unternehmerverbände Niedersachsen e.V. (UVN) is a prominent regional business association representing over 100 employer and economic associations in Niedersachsen, Germany, encompassing more than 200,000 companies and approximately 2.6 million employees. The organization acts as a key voice for the regional economy, engaging in policy advocacy, networking, and providing information services to its members. The website reflects a professional and well-maintained digital presence, leveraging WordPress CMS with modern plugins for SEO, event management, and privacy compliance. It is optimized for mobile devices and provides clear navigation and relevant content for its target audience of businesses and economic stakeholders in Niedersachsen.

P

pechschwarz®

pechschwarzmedia.de

51

pechschwarz® is a well-established digital agency specializing in strategy, design, and digital transformation with a strong focus on holistic brand consulting and creating impactful brand experiences. Founded in 2000 and based in Germany, the company serves a diverse clientele including B2B companies, e-commerce brands, tech startups, and medical practices. Their comprehensive service portfolio includes branding, web development, online marketing, content production, and CRM solutions, positioning them as a leading player in the digital marketing and branding sector. Technically, the website is built on WordPress with modern technologies such as jQuery, HubSpot integrations, Google reCAPTCHA, and performance optimizations via WP Rocket. The site demonstrates excellent mobile optimization, SEO practices, and fast performance. Hosting is provided by Hetzner Online GmbH, a reputable provider, and the domain is long-established, enhancing credibility. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms compliant with GDPR. While some security headers are not explicitly detected, the site employs anti-fraud tools like ClickCease and Google reCAPTCHA, indicating a proactive security posture. No critical vulnerabilities or WAF blocking were detected. Overall, pechschwarz® presents a professional, trustworthy, and technically mature online presence with strong compliance and security practices. Strategic recommendations include enabling DNSSEC, enhancing security headers, and publishing a formal security policy to further strengthen trust and security posture.

D

Deutscher Rollstuhl-Sportverband e.V.

drs.org

63

The Deutscher Rollstuhl-Sportverband e.V. is a well-established German non-profit organization dedicated to promoting wheelchair sports. The website serves as an information hub for athletes, clubs, partners, and supporters, providing news, event calendars, membership information, and mobility projects. It targets the German wheelchair sports community and related stakeholders. The organization has a strong market position as the national association for wheelchair sports in Germany. Technically, the website is built on WordPress with a modern theme and several plugins supporting events, polls, maps, and cookie consent. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, DNSSEC is not enabled, and some security headers like CSP are missing, indicating room for improvement in security hardening. Security posture is solid with HTTPS and domain transfer protections, but lacks explicit vulnerability disclosure and incident response information. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. The site maintains a minimal user tracking footprint and respects GDPR requirements to some extent. Overall, the website is professional, trustworthy, and serves its community well. Strategic improvements in security headers, DNSSEC, and privacy documentation would enhance its compliance and security posture.

D

Digitale Werke GmbH

digitale-werke.de

10

Digitale Werke GmbH is a well-established IT service provider based in the Munich and Ottobrunn region, with over 25 years of experience supporting businesses in IT infrastructure, managed services, and digital transformation. Their offerings include managed IT services, network administration, IT security, cloud services, and software development, targeting primarily medium-sized enterprises in Germany. The company demonstrates a solid market position with a professional online presence and clear communication channels. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses security measures like HTTPS and hCaptcha to protect user interactions. The site is well-optimized for SEO and mobile devices, though some improvements in accessibility and security headers could enhance the overall technical posture. From a security perspective, the site follows good practices with encrypted connections and form protection but lacks publicly available security policies or incident response contacts. No vulnerabilities or suspicious activities were detected, indicating a mature security posture suitable for their business scale. Overall, the website and business present a trustworthy and professional image with minor areas for enhancement in security transparency and technical hardening. The risk level is low, and the company appears credible and compliant with GDPR requirements.

A

ARTAL-Reisen GmbH

artal-reisen.de

45

ARTAL-Reisen GmbH is a well-established German bus travel company founded in 1972, specializing in group travel, wheelchair accessible trips, and bus rentals primarily serving the Hannover and Bremen regions. The company operates a professional website built on WordPress with modern plugins and a clear focus on user experience and accessibility. The site includes comprehensive privacy and cookie policies with GDPR-compliant consent mechanisms, reflecting a mature approach to data protection. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website projects trustworthiness and professionalism suitable for its target audience.

F

Fondation Hindemith

hindemith.info

9

Fondation Hindemith is a small non-profit cultural foundation dedicated to preserving and promoting the music and legacy of composer Paul Hindemith. The foundation supports contemporary music, organizes concerts and events, and facilitates music research. The website is built on WordPress with modern plugins and themes, offering multilingual content in German, English, and French. The technical infrastructure is solid, hosted by Vautron Rechenzentrum AG, with HTTPS enabled and good SEO practices. However, the domain is very recently registered, which is inconsistent with the foundation's long history, possibly indicating a recent domain acquisition or migration. Security posture is good but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is weak due to missing privacy and cookie policies. No contact emails or phone numbers are explicitly provided, which may affect user trust and compliance. Overall, the website is professional, content-rich, and trustworthy but needs improvements in privacy compliance and contact transparency.

D

DFF – Deutsches Filminstitut & Filmmuseum

dff.film

63

DFF – Deutsches Filminstitut & Filmmuseum is a leading international film heritage institution based in Frankfurt, Germany. The organization focuses on preserving film heritage and promoting film culture through a combination of museum exhibitions, cinema programming, archives, festivals, digital platforms, research, and educational initiatives. The website reflects a well-established cultural institution with a clear mission and broad audience reach, including families, students, and professionals in the film and cultural sectors. Technically, the site is built on WordPress with modern plugins and SEO optimizations, providing a good user experience with mobile responsiveness and structured data for enhanced search visibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit privacy policies are missing. Overall, the site is professional, trustworthy, and content-rich, supporting the institution's reputation and outreach goals.

A

Amber Aero, SIA

amber.aero

39

Amber Aero, SIA is a Latvian-based technology company specializing in providing an NDC-based Passenger Service System (PSS) designed to enable digital transformation and enhance retailing capabilities for airlines, including network, low-cost, and hybrid carriers. Their offerings include bespoke distribution solutions such as NDC API, customizable IBE and mobile applications, agent B2B portals, and GDS EDIFACT links, positioning them as an innovative player in the airline technology sector. The company emphasizes cloud and AI-based technologies to modernize airline retailing and distribution. Technically, the website is built on WordPress 6.8.3 with jQuery and integrates Google Fonts, Google Tag Manager, Google Ads conversion tracking, and AmoCRM forms for lead capture. The site is mobile-optimized with a moderate performance profile and basic SEO and accessibility features. While HTTPS is enabled and domain registration is consistent and transparent, the site lacks DNSSEC and security headers, and does not publish explicit security or incident response policies. From a security perspective, Amber Aero demonstrates a moderate security posture with HTTPS and domain transfer protection but should improve by enabling DNSSEC, implementing security headers, and publishing security policies. Privacy compliance is partial, with a cookie consent mechanism present but no privacy policy or terms of service pages found. Contact information is available via corporate email and contact form, but no phone numbers or social media links are provided. Overall, Amber Aero presents as a legitimate, small-sized technology provider with a professional web presence and clear business focus. To enhance trust and compliance, the company should address privacy policy publication, security best practices, and incident response transparency. These improvements will strengthen their security posture and regulatory compliance, supporting their growth in the competitive airline technology market.

B

British Chamber of Commerce

bccequilibrium.cz

43

The website bccequilibrium.cz represents the Equilibrium Mentoring Programme operated by the British Chamber of Commerce in the Czech Republic. It focuses on empowering women in business and non-profit sectors through mentorship and community engagement. The programme has a well-established presence since 2011, boasting a large community of mentors and mentees. The website content is professionally presented, with detailed mentor profiles and programme statistics, targeting women seeking career development and leadership growth. Technically, the site is built on WordPress with the Avada theme and uses common plugins for e-commerce and event management. It is hosted via a Czech registrar and uses HTTPS, ensuring secure connections. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security headers are not detected, and no explicit contact emails or phone numbers are found, which could affect user trust and compliance. Overall, the site is functional, professional, and safe for general audiences, but could improve in privacy transparency and security best practices.

I

IT-Forum Nord Westfalen e.V.

it-forum.net

56

IT-Forum Nord Westfalen e.V. operates a regional IT community platform focused on fostering collaboration and exchange among IT companies and professionals in the Nord Westfalen region of Germany. The website serves as a hub for events, networking, and knowledge sharing, supported by local companies and the IHK. The business model is that of a non-profit association, emphasizing community building rather than commercial sales. The organization was founded in 2021, consistent with the domain registration date. Technically, the website is built on WordPress with standard plugins such as Yoast SEO and MonsterInsights for analytics. It uses Cloudflare for DNS and likely CDN services, and implements a cookie consent mechanism via Usercentrics, indicating awareness of privacy compliance requirements. The site is moderately optimized for performance and mobile devices, with good SEO practices in place. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy policy or terms of service documents were found, which are important for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided, representing an area for improvement. Overall, the website is professional, safe, and trustworthy for its intended audience, but could improve its privacy and security posture by publishing relevant policies, enabling DNSSEC, and adding security headers. Contact information visibility should also be enhanced to improve business credibility and user engagement.

U

Unsere Heimat Schwürbitz

schwuerbitz.de

53

Unsere Heimat Schwürbitz is a local community website serving the Schwürbitz area in Germany. It provides residents and visitors with news, event information, cultural content, and local business listings. The site is positioned as a community engagement platform encouraging participation and sharing of local information. The business model is primarily informational and community-driven without evident commercial sales or e-commerce components. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including jQuery, Google Maps API integration, and plugins for event management, weather display, anti-spam protection (CleanTalk), and GDPR cookie consent (Complianz). The site is hosted on DomainControl.com nameservers and uses HTTPS with a valid SSL certificate, ensuring secure communications. The design is responsive and accessible, with good SEO and navigation clarity. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, anti-spam measures, and cookie consent management. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No security headers were detected in the HTML content, which could be improved. No vulnerabilities or exposed sensitive data were found. Overall, the website is safe, trustworthy, and compliant with GDPR requirements. It serves its community purpose well but could enhance security posture by adding security policies and headers. There are no signs of adult or questionable content, and the site is fully accessible without WAF or blocking mechanisms.

Hilfe von Haus zu Haus e.V. is a well-established local non-profit organization based in Germany, focused on providing neighborhood assistance primarily to elderly, sick, and families with young children. Founded in 2003, the organization operates with a community-centric approach, offering services such as companionship, support for daily activities, and social engagement. Their market position is strong within the local community, supported by over 105 volunteers and a structured leadership team. The website reflects a clear mission and transparent communication with the public, including membership and donation options. Technically, the website is built on WordPress using the Divi theme, incorporating standard plugins like Contact Form 7 for communication and Borlabs Cookie for privacy compliance. The site is hosted on kasserver.com, with HTTPS enabled and basic security measures such as hCaptcha for spam prevention. Performance and mobile optimization are adequate, though some improvements in security headers and incident response documentation could enhance the security posture. From a security perspective, the site demonstrates good privacy compliance with visible privacy and cookie policies and consent mechanisms. However, explicit security policies and vulnerability disclosure mechanisms are absent. No critical vulnerabilities or suspicious activities were detected. The domain WHOIS data aligns with the organization's history, supporting legitimacy. Overall, the website is professional, trustworthy, and serves its community purpose effectively. Strategic recommendations include enhancing security headers, publishing a security policy or incident response plan, and considering a security.txt file to improve transparency and trust.

D

DCatalog

dcatalog.com

61

DCatalog is a mature, cloud-based digital catalog creation and publishing platform established in 2012. It offers a comprehensive suite of tools to convert static PDFs into interactive digital catalogs and automatically generate PDFs from product data, targeting manufacturers, wholesalers, and enterprises. The website demonstrates strong branding, professional design, and a clear business model focused on SaaS digital publishing solutions. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and documented policies. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the platform is credible and trustworthy with room for improvement in security and privacy transparency.

V

Verband der Restauratoren (VDR) e.V.

einsatz-kulturgut.de

53

The website www.einsatz-kulturgut.de is operated by the Verband der Restauratoren (VDR) e.V., a non-profit association focused on providing guidance and resources for the emergency rescue and first aid of cultural heritage assets. The site offers an eBook and detailed instructions aimed at archives, museums, church administrations, owners, restorers, and emergency responders. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and interactive flipbook functionality, and it implements GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers could be improved. Overall, the site is professional, trustworthy, and well-targeted to its niche audience.

V

Vetion.de

vetion.de

49

Vetion.de is a German veterinary-focused online platform providing news, educational resources, job listings, and a shop tailored to veterinary professionals. The website serves as a comprehensive information hub for veterinarians, offering specialized content and eLearning opportunities. It maintains a consistent brand presence and targets the German veterinary community effectively. Technically, the site is built on WordPress with a modern plugin ecosystem, including WooCommerce for e-commerce capabilities and various analytics and consent management tools. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a detailed privacy policy and cookie consent mechanism in place. Contact information is available primarily through forms and social media, though no explicit company emails or phone numbers were found in the HTML. Overall, Vetion.de presents as a trustworthy, professional, and well-maintained platform serving a niche healthcare market in Germany.

E

Evangelische Akademie für Land und Jugend e.V.

kilr.de

52

The Evangelische Akademie für Land und Jugend e.V. is a small non-profit educational organization based in Germany, focusing on youth, rural communities, and church-related educational programs. Their website presents a professional and well-structured digital presence, offering tailored educational events, workshops, and an online library. The organization maintains active social media channels and provides clear contact information, enhancing trust and engagement with their target audience. Technically, the website is built on WordPress with modern plugins and themes, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement and a comprehensive cookie consent mechanism via Borlabs Cookie, supporting GDPR compliance. However, explicit security policies and incident response information are not publicly available, which could be improved. Overall, the site reflects a mature digital infrastructure suitable for its educational mission, with a strong emphasis on privacy and user experience.

F

For Future Bündnis

for-future-buendnis.de

59

For Future Bündnis is a German non-profit organization focused on climate protection activism, operating a network of over 50 local groups across Germany. The website serves as a hub for networking, event organization, and knowledge sharing, targeting individuals interested in climate activism. The organization holds a reputable position in the non-profit sector, evidenced by certifications such as the Phineo Wirkt-Siegel and support from the German Environment Agency (UBA). The business model centers on community engagement and empowerment rather than commercial activities. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins for event management, cookie consent, and analytics. The infrastructure is modern and well-maintained, with good mobile optimization and SEO practices. Hosting is managed via UI-DNS, and the site employs HTTPS with strong SSL configuration, ensuring secure communications. Security posture is solid, with appropriate security headers, privacy-respecting analytics via Matomo, and a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response contact, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It effectively supports the organization's mission while maintaining a secure and user-friendly online presence. Strategic recommendations include publishing explicit security policies, enhancing accessibility, and considering a vulnerability disclosure policy to further strengthen security culture.

M

Magazín pro ženy

magazinprozeny.cz

39

Magazín pro ženy is a Czech language online media publication focused on women's lifestyle topics including fashion, recipes, horoscopes, health, travel, and finance. The website targets women interested in modern trends and provides trend articles and general lifestyle content. The business operates as a small-scale media publisher with content dating back to 2020 and domain registration from 2019. The site uses WordPress CMS with popular plugins such as Yoast SEO and td-composer, indicating a moderate level of digital maturity and SEO optimization. Mobile responsiveness and structured data are implemented, enhancing user experience and search visibility. Security posture is moderate; HTTPS is implied but no explicit security headers or advanced protections on login forms are visible. Privacy and cookie policies are not found, indicating compliance gaps. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

S

Simply Finance

simplyfinance.cz

39

Simply Finance is a Czech online magazine focused on financial market analysis, banking sector trends, business advice, and new financial technologies. The website targets Czech-speaking individuals interested in finance and business, providing regularly updated content and guides. The business operates as a small media outlet with a niche focus in the finance sector. Technically, the site runs on WordPress with Elementor and uses modern web technologies including Google Fonts and several Penci plugins. The site is mobile optimized and has good SEO practices including structured data. Security posture is adequate with HTTPS and some security best practices, but lacks explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is legitimate and professionally presented but would benefit from enhanced compliance and security transparency.

D

Diakonie Baden-Württemberg

ran-ans-leben.de

42

Diakonie Baden-Württemberg operates as a large non-profit organization focused on social services, volunteer programs, and career entry support in the Baden-Württemberg region of Germany. The website provides comprehensive information about voluntary social and ecological services (FSJ, BFD, FÖJ), education, and opportunities for engagement. It targets young people and individuals interested in social work and volunteering. The organization maintains a strong regional presence and is affiliated with the parent entity Diakonisches Werk Württemberg. Technically, the website is built on WordPress with modern plugins such as Borlabs Cookie for GDPR compliance and Autoptimize for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be managed via your-server.de, consistent with the domain's nameservers. Security posture is good with HTTPS enforced and cookie consent mechanisms in place. However, some recommended security headers are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong, with clear privacy and cookie policies and consent management. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure mechanism to further strengthen security and trust.

C

captcha.eu

captcha.eu

58

Captcha.eu is a technology company specializing in GDPR-compliant bot protection solutions, positioning itself as a privacy-focused alternative to traditional services like reCAPTCHA. The website targets developers and website owners who require bot and spam protection while adhering to strict European data protection regulations. The business model is SaaS-based, offering bot protection technology emphasizing compliance and user privacy. The company maintains a consistent brand presence with good content quality and clear messaging about its services. Technically, the website is built on WordPress with a modern plugin ecosystem including Yoast SEO, TranslatePress for multilingual support, and Google Site Kit for analytics integration. The site demonstrates good mobile optimization and moderate performance. Security best practices are observed with HTTPS enforcement and multiple security headers, though there is room for improvement in publishing explicit security policies and incident response information. The security posture is strong with no visible vulnerabilities or exposed sensitive data. The site implements GDPR-compliant cookie consent mechanisms and respects user privacy. However, the lack of publicly available WHOIS data due to privacy protection limits domain registration transparency, though this aligns with the company's privacy emphasis. Overall, the site is trustworthy, professional, and compliant with relevant privacy regulations. Strategic recommendations include publishing a dedicated security policy and incident response page, implementing a vulnerability disclosure program, enhancing accessibility features, and conducting regular audits of third-party scripts to maintain security integrity.

K

Kunstsammlungen Coburg

kunstsammlungen-coburg.de

45

Kunstsammlungen Coburg operates as a cultural institution showcasing the art collections of the dukes of Coburg, primarily hosted at the Veste Coburg castle and the European Museum of Modern Glass. The website serves as an informational portal for visitors and art enthusiasts, providing access to exhibition details and museum information. Technically, the site is built on WordPress with the Enfold theme and uses modern web technologies including jQuery and Yoast SEO for optimization. The site is mobile responsive and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No direct contact information or detailed security policies are published, which could be enhanced for better transparency. Overall, the site is professional, trustworthy, and safe for general audiences.

B

Bydlení na míru

bydleninamiru.cz

41

Bydlení na míru is a Czech language website focused on providing content related to housing, interior design, gardening, and practical advice for home improvement. The site targets Czech-speaking individuals interested in these topics and offers regularly updated articles and inspiration. The business model appears to be content publishing, possibly monetized through advertising or affiliate partnerships. The website is built on WordPress and uses a modern tech stack including jQuery and Google Fonts, with plugins for RSS feeds and newsletters. The site is mobile optimized and has a professional design with clear navigation. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies. The domain is registered since 2013, consistent with the site's content and business history, indicating legitimacy. Overall, the site is a credible niche content provider with room for improvement in privacy compliance and security best practices.

@

@pressmedia.net

magazinpromuze.cz

35

Magazín pro muže is a Czech online magazine targeting male audiences with content spanning automotive, finance, housing, health, and leisure topics. The website operates on WordPress CMS with a professional theme and multiple plugins enhancing newsletter and subscription functionalities. The site demonstrates good content quality and user experience with clear navigation and mobile optimization. However, the domain is currently expired, which poses a risk to service continuity and trust. Security posture is moderate with HTTPS enabled but lacks security headers and explicit privacy or cookie policies. Contact information is limited to an email address in meta tags and login forms without visible phone numbers or physical addresses. Overall, the website is functional and relevant to its niche but requires improvements in compliance and security to enhance trust and resilience.

F

Fajn magazin

fajnmagazin.cz

37

Fajn magazin is a Czech online lifestyle magazine founded in 2016, offering content across categories such as weekend activities, health, finance, housing, and women's advice. The website targets a general adult Czech-speaking audience interested in lifestyle topics. Technically, the site is built on WordPress 6.8.3 using the Newspaper theme and tagDiv plugins, with standard web technologies like jQuery and Google Fonts. The site demonstrates good mobile optimization and SEO practices but lacks visible security headers and privacy compliance documentation. Security posture is moderate with room for improvement in headers and policies. Overall, the site is accessible without WAF or blocking mechanisms, but lacks explicit contact information and formal privacy or cookie policies, which impacts trust and compliance scores.

Z

Ženský magazín

zenskymag.cz

41

Ženský magazín is an online Czech women's magazine focusing on lifestyle, health, horoscopes, housing, and advice. The website targets Czech-speaking women and operates as a small media outlet founded in 2021. The business model centers on content publishing with advertising partnerships. Technically, the site runs on WordPress with the Newspaper theme and related plugins, hosted under the REG-WEDOS registrar. The site is mobile-optimized and moderately performant but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. No contact or incident response information is provided, limiting trust and compliance. Overall, the site is safe for general audiences and presents a professional appearance but would benefit from enhanced privacy, security, and contact transparency.

Z

Zentrale für Unterrichtsmedien im Internet e.V.

zum.de

54

Zentrale für Unterrichtsmedien im Internet e.V. (ZUM) is a German non-profit organization dedicated to promoting digital education and open teaching materials since 1997. The website serves as a portal offering various educational platforms and tools, targeting educators, students, and learners interested in digital and open educational resources. The organization operates on a volunteer basis and is funded through donations, emphasizing free and accessible teaching content. Technically, the website is built on WordPress with modern plugins and libraries, including interactive H5P content and privacy-focused Matomo analytics. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site reflects a mature, trustworthy educational platform with strong compliance to GDPR and privacy standards.

N

Nxtbook Media

nxtbookmedia.com

62

Nxtbook Media is a digital content experience platform provider specializing in responsive and replica digital publishing solutions. Their platforms, PageRaft and nxtbook, enable publishers and marketers to create engaging digital publications such as magazines, brochures, catalogs, and more. The company serves a diverse audience including enterprises, educational institutions, associations, and content creators, positioning itself as a trusted partner with a strong client portfolio featuring major brands like Disney and Marriott. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and multiple marketing and tracking tools, demonstrating a mature digital infrastructure with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The WHOIS data is unavailable, which limits domain trust verification, but the overall business credibility and website professionalism indicate a legitimate and established company.