High-risk security reports

W

Wikinggruppen

wikinggruppen.nu

45

Wikinggruppen.nu is a Swedish e-commerce focused blog providing tips, inspiration, and insights primarily targeted at e-commerce businesses and professionals. The company behind the site, Wikinggruppen, has a history dating back to 2005 and positions itself as a significant player in the Swedish e-commerce platform market, serving a range of clients from startups to large enterprises. The website content is well-structured, professionally presented, and regularly updated with relevant articles on e-commerce, marketing, and related topics. Technically, the website runs on WordPress CMS with Yoast SEO and uses Google Analytics for visitor tracking. The site is hosted with a reputable registrar and DNS provider but lacks DNSSEC and some security headers, which could be improved. The site is mobile-optimized and SEO-friendly but has gaps in privacy compliance, notably the absence of privacy and cookie policies and consent mechanisms. From a security perspective, the site uses HTTPS and implements some best practices like Google Analytics opt-out functionality. However, the lack of DNSSEC and security headers reduces its security posture. No signs of malware, phishing, or blocking mechanisms were detected. Contact information is clearly provided, enhancing business credibility. Overall, the website is a trustworthy and professional resource for e-commerce insights but should address privacy compliance and security header implementation to improve its security and regulatory posture.

B

Bavaria Digital Technik GmbH

bdt-online.de

47

Bavaria Digital Technik GmbH is a medium-sized German company specializing in electronics manufacturing services with nearly five decades of experience. They serve industrial sectors including medical technology, energy, and automotive, offering comprehensive services from development to logistics. The company is part of the AdCapital group, enhancing its market position. The website is professionally designed, well-structured, and optimized for SEO and mobile devices. Technically, it runs on WordPress with modern plugins for SEO, cookie management, and social sharing, hosted via DomainControl.com. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism. Overall, the site reflects a trustworthy and credible business presence.

C

ClubGolf Online Shop

clubgolfshop.ch

49

ClubGolf Online Shop is a Swiss-based e-commerce retailer specializing in golf-related products including apparel, equipment, and accessories. The website targets golf enthusiasts primarily in German-speaking Switzerland and operates on the PrestaShop platform. The site features a clear product catalog, partner golf club links, and standard e-commerce functionalities. Technically, the site uses modern web technologies and modules for payment and legal compliance, with good mobile optimization and basic accessibility. Security posture is solid with HTTPS and cookie consent implemented, though security headers are not evident. Privacy compliance is adequate with a privacy policy and cookie banner present. Contact is provided via a contact form, but no direct emails or phone numbers are visible. Overall, the site is professional and trustworthy with a moderate to good AI score of 79.

F

Flusslandschaft Elbe

flusslandschaft-elbe.de

37

Flusslandschaft Elbe is a regional non-profit organization managing the largest inland UNESCO biosphere reserve in Germany, spanning five federal states along the Elbe river. The website serves as an informational and educational platform offering nature experiences, conservation projects, and sustainable regional development initiatives. The site targets local residents, visitors, educational groups, and partner organizations. Technically, the website is built on WordPress with Elementor and uses modern web technologies, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, anti-spam measures, and a comprehensive cookie consent mechanism. Privacy compliance is well addressed with a detailed privacy policy and user consent management. However, contact information and explicit security or incident response policies are not prominently available. Overall, the website is professional, trustworthy, and well-aligned with its mission, with minor recommendations to enhance transparency and security documentation.

The website www.lausitz-kultur.eu/en/erbe is currently inaccessible beyond a 404 error page indicating the requested resource is not found. The site is built on Joomla CMS but lacks any substantive content, metadata, or business information on the analyzed page. There are no visible contact details, privacy policies, or security disclosures, limiting the ability to assess the organization's digital maturity or compliance posture. The domain WHOIS data is unavailable due to EURid privacy restrictions and an invalid WHOIS query pattern, which is common for .eu domains but reduces transparency. Overall, the site appears to be either under maintenance or misconfigured, resulting in poor user experience and low trustworthiness.

S

Spreewaldverein e.V.

spreewaldverein.de

40

Spreewaldverein e.V. is a regional non-profit organization dedicated to the sustainable development and preservation of the natural and cultural heritage of the Spreewald region in Germany. The organization manages the regional brand 'Spreewald' and acts as the Local Action Group (LAG) for regional funding in the LEADER region 'Spreewald-PLUS'. Their services include project coordination, regional branding, and community engagement aimed at improving living conditions and supporting local economic and cultural initiatives. The website targets local residents, businesses, and visitors interested in regional development and cultural heritage. Technically, the website is built on WordPress 6.8.3, utilizing modern plugins such as Yoast SEO for search optimization, Leaflet.js for interactive maps, Contact Form 7 with Google reCAPTCHA for secure form submissions, and a cookie consent mechanism compliant with GDPR. Hosting is provided by kasserver.com, and the site employs HTTPS with a strong SSL configuration. The site demonstrates good mobile optimization and accessibility, though some improvements in security headers and accessibility could be made. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and implements cookie consent banners. No critical vulnerabilities or exposed sensitive data were detected in the provided content. However, the absence of explicit security policies or incident response contacts suggests room for improvement in security transparency and readiness. Overall, the website presents a trustworthy and professional digital presence for a small regional non-profit. It effectively communicates its mission and services while maintaining compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the site's security posture and user experience.

M

My Blog

world-of-leading-golf.com

47

The website 'Exploring Golf: Legends and Iconic Tournaments' is a small-scale WordPress blog dedicated to providing educational content about golf history, legendary players, major tournaments, and related cultural aspects. It targets golf enthusiasts and general sports fans seeking knowledge about the sport's heritage. The site offers well-structured, relevant content with good design and navigation, optimized for mobile devices. Technically, it uses a modern WordPress stack with popular libraries and frameworks such as Bootstrap and jQuery, ensuring a moderate performance and good SEO practices. Security-wise, the site enforces HTTPS and avoids exposing sensitive data but lacks important security headers and formal privacy or cookie policies, which impacts compliance and trust. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the site is functional and informative but would benefit from enhanced privacy compliance, security hardening, and clearer business contact information to improve trust and credibility.

Grand Resort Bad Ragaz AG operates a luxury five-star resort in Switzerland, combining hospitality with leading medical expertise and wellness services. The company holds a strong market position in the premium hospitality and healthcare sectors, offering accommodations, medical health centers, wellness packages, golf clubs, and casino entertainment. The website reflects a mature digital presence with integrated booking systems and comprehensive corporate information. Technically, the site employs modern web technologies, lazy loading, and secure HTTPS connections, ensuring good performance and user experience. Security posture is strong with appropriate headers and consent mechanisms, though a dedicated security policy and incident response information are absent. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility and market standing.

B

bgm business group munich GmbH und Co. KG

swiss-seniors-open.ch

48

The Swiss Seniors Open website represents a well-established professional golf tournament held annually in Bad Ragaz, Switzerland. The event targets professional golfers over 50, amateurs, and sponsors, positioning itself as the oldest and one of the most prestigious tournaments on the Legends Tour. The site is professionally designed, content-rich, and provides comprehensive information about the event, sponsorship opportunities, and media coverage. The business model revolves around event organization, sponsorship, and promotion within the hospitality and sports sectors. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery, Google Analytics, Google Tag Manager, and FuseDeck for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. External integrations include Vimeo for video content and multiple partner domains linked for sponsorship and event support. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Security headers are not explicitly detected, suggesting room for improvement in hardening. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website scores highly on content quality, technical implementation, privacy compliance, and business credibility, with minor recommendations to enhance security posture and transparency. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

H

Herzog & de Meuron Basel Ltd.

herzogdemeuron.com

46

Herzog & de Meuron Basel Ltd. is an internationally renowned architectural practice based in Basel, Switzerland. The company specializes in architectural design, project development, exhibitions, and publications, serving a global audience including cultural institutions and design professionals. Their website reflects a strong market position with a comprehensive portfolio and professional presentation. The technical infrastructure is built on WordPress with modern JavaScript frameworks such as Alpine.js and jQuery, supplemented by Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers are missing which could be improved. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of certain security headers and a cookie consent mechanism indicates room for enhancement in compliance and security best practices. Overall, the website is professional, trustworthy, and content-rich, but the lack of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy. Strategic verification of domain registration and implementation of additional security headers and privacy mechanisms are recommended.

P

PPG Private Partner Golf

ppg-schweiz.ch

47

PPG Private Partner Golf is a Swiss-based association focused on providing added value to its members by promoting golf and fostering collaboration among premium golf clubs in Switzerland. The website serves as a portal for members and interested parties, highlighting partner clubs, events, and membership benefits. The business model centers on a member-oriented network of golf clubs, aiming to enhance the attractiveness of golf for new players and strengthen traditional golf values. The market position is that of a niche premium golf club consortium within Switzerland.

L

Landesamt für Umwelt (LfU)

westhavelland-naturpark.de

44

The Natur- und Sternenpark Westhavelland website represents a regional government-affiliated nature park focused on conservation, sustainable tourism, and environmental education. It serves as an information hub for visitors and locals interested in the natural landscape, wildlife, and cultural heritage of the Westhavelland region in Brandenburg, Germany. The site emphasizes its unique status as Germany's first designated star park, highlighting its commitment to preserving dark skies and biodiversity. Technically, the website is built on TYPO3 CMS, hosted by agenturserver, and employs modern web technologies including responsive design and Matomo analytics for visitor tracking. The site is well-structured with clear navigation and multilingual support, though some accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No incident response or security policies are publicly disclosed. The domain registration data aligns well with the website content, indicating legitimacy and consistency with a government or non-profit entity. Overall, the website is professional, trustworthy, and serves its informational and educational purpose effectively. Strategic improvements in privacy compliance and security headers would further strengthen its posture.

N

Naturpark Uckermärkische Seen

uckermaerkische-seen-naturpark.de

43

The website www.uckermaerkische-seen-naturpark.de serves as the official online presence for the Naturpark Uckermärkische Seen, a regional nature park located in Brandenburg, Germany. It provides comprehensive information about the park's natural landscapes, wildlife, tourism opportunities, and environmental education initiatives. The site is well-structured, featuring rich content including news, events, and detailed descriptions of flora and fauna, targeting nature enthusiasts, tourists, and educational groups. The business model aligns with a non-profit government or regional authority focused on conservation and sustainable regional development. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and is hosted on professional servers indicated by the agenturserver nameservers. The site demonstrates good mobile optimization, SEO practices, and user experience with interactive elements such as slideshows and maps. However, some technical improvements could enhance security and privacy compliance. From a security perspective, the site uses HTTPS, ensuring encrypted communication, but lacks visible security headers and formal security policies such as incident response or vulnerability disclosure. No privacy or cookie policies were found, which is a compliance gap especially under GDPR regulations. No contact emails or phone numbers were explicitly found, limiting direct user communication channels. Overall, the website is trustworthy and professional, serving its purpose effectively as an informational portal for the nature park. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, publishing incident response and vulnerability disclosure information, and providing clear contact details to enhance user trust and compliance.

N

Naturpark Stechlin-Ruppiner Land

stechlin-ruppiner-land-naturpark.de

43

Naturpark Stechlin-Ruppiner Land operates as a regional nature park authority and tourism promoter in Brandenburg, Germany. The website provides comprehensive information about the park's natural landscapes, flora, fauna, events, and regional specialties, targeting nature enthusiasts, tourists, and local residents. The site is powered by TYPO3 CMS and hosted on agenturserver infrastructure, reflecting a moderate level of digital maturity with responsive design and good navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. No direct contact or incident response information is provided, which limits user trust and compliance visibility. Overall, the website is professional and trustworthy for its purpose but could improve in privacy compliance and security best practices.

L

Landesamt für Umwelt (LfU)

schlaubetal-naturpark.de

44

The Naturpark Schlaubetal website serves as an official information portal for the Schlaubetal Nature Park in Brandenburg, Germany, managed by the Landesamt für Umwelt (LfU). It provides comprehensive details about the park's natural features, events, conservation efforts, and visitor information, targeting nature enthusiasts and tourists. The site is positioned as a regional government-affiliated resource with a focus on environmental education and sustainable tourism. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript and CSS, and employs Matomo for analytics, reflecting a commitment to privacy-conscious tracking. The hosting is managed via agenturserver, consistent with the domain's nameservers. The site demonstrates good mobile optimization, accessibility, and SEO practices, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS with excellent SSL configuration and shows no signs of exposed sensitive data or vulnerable libraries. However, the absence of explicit security headers and a formal security policy or incident response contact reduces the overall security posture. Privacy compliance is adequate with a clear privacy policy linked, but lacks a cookie consent mechanism. Overall, the website is trustworthy, professionally maintained, and serves its informational purpose well. Strategic enhancements in security headers, cookie consent, and direct contact information would further strengthen its security and compliance profile.

L

Landesamt für Umwelt (LfU)

nuthe-nieplitz-naturpark.de

44

Naturpark Nuthe-Nieplitz is a government-affiliated nature park located near Berlin, Germany, focused on nature conservation, environmental education, and regional tourism. The website provides comprehensive information about the park's landscapes, wildlife, events, and visitor services. It is positioned as a quality-certified nature park serving local residents, tourists, and educational groups. The digital infrastructure is based on TYPO3 CMS with a moderate performance profile and good mobile optimization. The site uses Matomo analytics, reflecting a privacy-conscious approach. Security posture is adequate with HTTPS enforced but lacks some advanced security headers and explicit incident response details. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional, serving its public and non-profit mission effectively.

L

Landesamt für Umwelt (LfU)

niederlausitzer-landruecken-naturpark.de

44

The Naturpark Niederlausitzer Landrücken website serves as an informative portal for a regional nature park in southern Brandenburg, Germany. It provides comprehensive information about the natural landscape, conservation efforts, events, and educational programs. The site is operated under the auspices of the Landesamt für Umwelt (LfU), a government environmental agency, and features partnerships with recognized organizations such as the Heinz Sielmann Stiftung and Naturwacht. The website targets nature enthusiasts, tourists, and local communities interested in environmental preservation and outdoor activities. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries like jQuery and SlidesJS for interactive elements, and uses Matomo for privacy-conscious analytics. The site is hosted on professional infrastructure with secure HTTPS configuration and moderate performance. It supports multiple languages and offers good mobile optimization and SEO practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks certain security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is strong with a comprehensive privacy policy, but no visible cookie consent mechanism was detected. Contact information is primarily via a web form, with no direct emails or phone numbers published. Overall, the website is a trustworthy, well-maintained resource for regional nature conservation and tourism, with minor areas for improvement in security headers, contact transparency, and cookie consent mechanisms.

L

Landesamt für Umwelt (LfU)

niederlausitzer-heidelandschaft-naturpark.de

43

Naturpark Niederlausitzer Heidelandschaft is a government-affiliated nature park entity in Brandenburg, Germany, focused on nature conservation, environmental education, and promoting regional tourism. The website provides detailed information about the park's landscapes, events, and activities, targeting nature enthusiasts and local communities. Technically, the site is built on TYPO3 CMS, hosted by a professional hosting provider, and uses Matomo for analytics, indicating moderate digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy, professional, and serves its informational purpose well.

L

Landesamt für Umwelt (LfU)

maerkische-schweiz-naturpark.de

44

The Naturpark Märkische Schweiz website is a well-established online presence managed by the Landesamt für Umwelt (LfU) in Brandenburg, Germany. It serves as an informational and educational platform promoting the nature park's diverse landscapes, conservation efforts, and visitor services. The site targets nature enthusiasts, tourists, and educational groups, providing rich content on events, routes, flora, fauna, and regional specialties. The business model is non-profit and government-supported, positioning the organization as a key regional nature conservation entity. Technically, the website is built on TYPO3 CMS, hosted by agenturserver, and employs Matomo for analytics. The site demonstrates good mobile optimization, clear navigation, and a professional design consistent with its branding. However, some modern security best practices like explicit security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. No WAF or blocking mechanisms are detected, and the WHOIS data aligns well with the website's public nature and hosting details, indicating legitimacy. Privacy policy is present and GDPR compliant, but cookie consent and incident response contacts are absent. Overall, the website is trustworthy, safe for general audiences, and professionally managed. Strategic improvements in security headers, cookie consent, and incident response transparency would further strengthen its security and compliance standing.

L

Landesamt für Umwelt (LfU)

hoher-flaeming-naturpark.de

44

The Naturpark Hoher Fläming website represents a regional nature park managed by the Landesamt für Umwelt (LfU) in Brandenburg, Germany. It provides comprehensive information about the park's natural and cultural attractions, events, educational programs, and visitor services. The site targets nature enthusiasts, tourists, families, and educational groups, positioning itself as a trusted regional nature conservation and tourism resource. The business model is non-profit and government-affiliated, focusing on environmental protection and regional development. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and SlidesJS for interactive content, and uses Matomo for analytics. The hosting is managed by a provider indicated by the nameservers (agenturserver). The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks security headers like Content-Security-Policy and does not provide a security policy or incident response contacts. Privacy compliance is partial; a privacy policy is linked externally and GDPR compliance is implied, but no cookie consent mechanism is present. No vulnerability disclosure or security.txt file is found. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious patterns. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements include implementing security headers, adding cookie consent, publishing security policies, and enhancing contact information transparency to strengthen security posture and compliance.

N

Naturpark Dahme-Heideseen

dahme-heideseen-naturpark.de

43

Naturpark Dahme-Heideseen is a regional nature park organization in Germany focused on nature conservation, education, and visitor engagement. The website provides comprehensive information about the park's natural features, events, educational programs, and partner networks. It is powered by TYPO3 CMS and hosted on agenturserver infrastructure, with a professional and user-friendly design optimized for mobile devices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies, indicating room for compliance improvements. The domain registration is consistent and trustworthy, supporting the legitimacy of the organization. Overall, the website serves as a reliable resource for nature enthusiasts and regional visitors.

The website nineapis.ch is currently inaccessible, returning an HTTP 403 Forbidden error indicating that anonymous users cannot access the root path. Due to this access restriction, no meaningful content, metadata, or business information could be extracted or analyzed. The lack of accessible content prevents assessment of the company's business model, services, or market positioning. Technically, the site appears to be either protected by a security mechanism or misconfigured, resulting in blocked access. No security headers, SSL configuration, or compliance policies are detectable, which raises concerns about the site's readiness for public interaction. Overall, the risk assessment is high due to the inability to verify any security or compliance posture, and strategic recommendations focus on resolving access issues and implementing standard security and privacy practices.

The website www.mjam.net is currently inaccessible due to a bot mitigation challenge page implemented via PerimeterX and Google reCAPTCHA Enterprise. This prevents any direct content analysis or extraction of business, contact, or policy information. The WHOIS query for the domain returned no match, indicating the domain may not be registered or WHOIS data is protected or unavailable. Consequently, the website's business profile, technical infrastructure, and security posture cannot be fully assessed. The presence of advanced bot mitigation suggests a focus on security but also limits transparency and accessibility. Overall, the site scores very low on content quality, business credibility, and privacy compliance due to lack of accessible information.

L

Landesamt für Umwelt (LfU)

natur-brandenburg.de

44

Natur Brandenburg is an official government-affiliated website managed by the Landesamt für Umwelt (LfU) focused on promoting and preserving the natural landscapes of Brandenburg, Germany. It serves as an informational portal highlighting nature parks, biosphere reserves, and national parks, targeting nature enthusiasts, tourists, and environmental educators. The site offers detailed content on natural habitats, events, and educational resources, positioning itself as a trusted regional authority in nature conservation and tourism. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo for privacy-conscious analytics. The hosting is managed by agenturserver, a professional hosting provider, ensuring stable performance and moderate loading speeds. The site is mobile-optimized with good navigation clarity and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers such as CSP or HSTS. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a privacy policy page present, but no cookie consent mechanism was found. Contact information is primarily via a contact form, with no direct emails or phone numbers exposed. Overall, the security posture is adequate but could be improved with enhanced headers and explicit cookie consent. The overall risk assessment is low, with no signs of malicious activity or suspicious registrations. Strategic recommendations include implementing cookie consent, adding security headers, and publishing incident response policies to strengthen compliance and trust. The website is professional, trustworthy, and well-aligned with its governmental and environmental mission.

L

Landesamt für Umwelt (LfU)

spreewald-biosphaerenreservat.de

44

The Biosphärenreservat Spreewald website represents a governmental/non-profit organization dedicated to the conservation and sustainable development of the Spreewald biosphere reserve in Germany. It provides comprehensive information on the natural landscape, conservation efforts, educational projects, and tourism opportunities. The site is well-positioned within a network of regional and international partners, including UNESCO and various nature parks. The business model focuses on environmental stewardship, education, and regional promotion. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Hosting is managed by agenturserver, consistent with the domain's WHOIS data. The site lacks some advanced security headers and cookie consent mechanisms, which are areas for improvement. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it does not publish a security policy or incident response contacts, nor does it have a vulnerability disclosure policy. The use of Matomo analytics aligns with GDPR principles, but the absence of a cookie consent banner may be a compliance gap. Overall, the security posture is solid but could be enhanced with additional headers and policies. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing cookie consent, security headers, and publishing security-related policies to strengthen compliance and trust. The website serves its audience effectively with high-quality content and clear navigation, supporting its mission as a conservation and educational resource.

The website www.schorfheide-chorin-biosphaerenreservat.de represents the UNESCO Biosphere Reserve Schorfheide-Chorin, a government/non-profit entity focused on environmental conservation, sustainable regional development, and education. It serves as an informational and educational platform for visitors, local residents, and stakeholders interested in nature preservation and sustainable tourism. The site highlights various projects, partnerships, and initiatives aligned with UNESCO and EU environmental programs. Technically, the website is built on TYPO3 CMS, hosted on agency servers, and demonstrates good mobile optimization and SEO practices. However, it lacks explicit privacy and cookie policies, security headers, and direct contact information, which are areas for improvement. Security posture is adequate with HTTPS enabled but could be enhanced with additional headers and disclosure mechanisms. Overall, the site is trustworthy, professional, and well-positioned within its niche but would benefit from improved privacy compliance and security transparency.

E

Biosphärenreservat Flusslandschaft Elbe-Brandenburg - Biosphärenreservat Elbe Brandenburg

elbe-brandenburg-biosphaerenreservat.de

43

The website www.elbe-brandenburg-biosphaerenreservat.de represents the UNESCO Biosphere Reserve Flusslandschaft Elbe-Brandenburg, a regional non-profit entity focused on nature conservation, environmental education, and sustainable regional development in Germany. The site provides rich content including news, events, and educational resources targeting the general public, regional partners, and educational institutions. It holds a strong market position as a recognized UNESCO biosphere reserve with partnerships including the Brandenburg Ministry for Environment. Technically, the website is built on TYPO3 CMS, hosted by agenturserver, and demonstrates moderate performance with good mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced but lacks security headers and explicit privacy or cookie policies, indicating compliance gaps. No contact emails or phone numbers are explicitly provided, which may affect user trust and compliance. Overall, the site is professional and trustworthy but could improve in privacy compliance and security best practices.

R

Recordati S.p.A.

imidazyl.it

45

Imidazyl.it is the official website for the Imidazyl brand of eye drops, owned by Recordati S.p.A., a well-established pharmaceutical company in Italy. The site provides detailed product information, usage instructions, and advice related to eye irritation and allergic conditions. It targets Italian consumers seeking relief for eye allergies and redness. The website is built on WordPress with a modern tech stack including Bootstrap and jQuery, and integrates analytics tools such as Google Analytics, Matomo, and Facebook Pixel for user tracking and marketing purposes. The site is mobile optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks DNSSEC and explicit security headers. No direct contact information or security policies are published, which could be improved to enhance trust and compliance. Overall, the domain registration is consistent with the business, indicating legitimacy and a mature online presence.

G

Golf Club Bad Ragaz

golfclubragaz.ch

44

Golf Club Bad Ragaz is a prestigious golf club located in Switzerland, offering an 18-hole championship golf course embedded in a scenic mountain and park environment. It operates as part of the Grand Resort Bad Ragaz, a leading European wellbeing and medical health resort. The club is recognized as a member of Leading Golf Courses and World of Leading Golf, emphasizing a commitment to quality and perfection. The website provides comprehensive information about the club's services, tournaments, golf shop, and restaurant, targeting golf enthusiasts and resort guests. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies including jQuery, Matomo analytics, and Google Tag Manager. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Hosting appears to be managed by bgm-hosting.de, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site enforces HTTPS and uses standard analytics tools but lacks visible security headers and explicit cookie consent mechanisms, which are recommended for GDPR compliance. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business claims, showing a consistent and legitimate domain registration. Overall, the Golf Club Bad Ragaz website is professional, trustworthy, and well-maintained, with minor recommendations to enhance privacy compliance and security posture.

A

Avant-Gouz

avant-gouz.com

44

Avant-Gouz is a small hospitality business operating cafés in Basel and Münchenstein, Switzerland, specializing in fresh, Mediterranean-inspired cuisine with a focus on healthy, vegan, and gluten-free options. The website provides detailed menus, contact information, and local press mentions, positioning Avant-Gouz as a reputable local café with a loyal customer base. Technically, the site is built on Drupal CMS and uses Wix DNS hosting, with moderate performance and good mobile optimization. However, it lacks advanced security headers and DNSSEC, and does not provide privacy or cookie policies, which are important for GDPR compliance. The security posture is moderate with room for improvement, especially in implementing security best practices and compliance documentation. Overall, the site is professional and trustworthy but could enhance its privacy and security measures to improve user trust and regulatory compliance.

S

Studio Lukas Raeber

lukasraeber.ch

48

Studio Lukas Raeber is a small architectural studio based in Switzerland, presenting a portfolio of architectural projects primarily through video and image content. The website serves as a digital showcase for their work, targeting potential clients and collaborators interested in architectural design. The business model is service-oriented, focusing on architectural design and project presentation. The site is built on Drupal CMS and features modern web technologies with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled, but lacks security headers and formal privacy or cookie policies, which are recommended for compliance and trust. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the website is professional and safe, with no adult or questionable content detected.

C

CO₂ Bank – KLIMA – ZUKUNFT – HOLZ

co2-bank.de

39

The website co2-bank.de is a German-language platform focused on climate, sustainability, and wood-related environmental topics, likely offering CO2 banking or offsetting services. It targets environmentally conscious individuals and organizations within Germany, positioning itself in the niche energy and sustainability sector. The business model appears to revolve around environmental services and products related to CO2 and sustainable forestry. Technically, the site is built on WordPress using the Astra theme and WooCommerce for e-commerce capabilities. Hosting is provided by aditsystems.hosting, as indicated by the nameservers. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. There is no evidence of advanced analytics or marketing tools in use. From a security perspective, the site lacks visible security headers and publicly available security policies or incident response information. SSL/TLS status is unknown from the provided data but should be verified. The site includes a cookie consent mechanism via the Complianz GDPR plugin, indicating some level of privacy compliance, though no privacy policy or terms of service were found. No vulnerability disclosure or security.txt files are present. Overall, the site is functional and moderately professional but would benefit from enhanced security practices, clearer privacy and contact information, and improved transparency. The risk level is moderate with no critical vulnerabilities detected but some compliance and security gaps that should be addressed.

Landesbeirat Holz Nordrhein-Westfalen e.V. is a non-profit association representing key stakeholders in the forestry and wood industry in North Rhine-Westphalia, Germany. The organization focuses on promoting sustainable use of wood as a building material, raw material, and energy source through projects, advocacy, and collaboration with government and industry partners. The website serves as an information hub and communication platform for the sector. Technically, the site is built on WordPress using Elementor and Astra theme, hosted by aditsystems.hosting. The site is accessible, mobile-optimized, and professionally designed but lacks some advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but missing important security headers and no visible incident response or security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and serves its informational purpose well but could improve in security and privacy compliance.

P

PK-Media Consulting GmbH

proholz.nrw

39

proHolz.NRW is a regional cluster initiative focused on the forestry and wood industry in North Rhine-Westphalia, Germany. The website currently displays a maintenance mode page indicating ongoing updates. The business is operated by PK-Media Consulting GmbH, established in 2017, and serves stakeholders in the forestry and wood sectors by promoting collaboration and development within the region. The website's content is minimal but consistent with the business purpose. Technically, the website is built on WordPress using the SeedProd Coming Soon Pro plugin to display the maintenance page. It uses modern web technologies such as Tailwind CSS, FontAwesome, and Google Fonts. HTTPS is enabled, but DNSSEC is not configured, and no advanced security headers are present. The site lacks privacy and cookie policies, contact information, and analytics or tracking scripts, indicating a basic digital maturity level. From a security perspective, the site benefits from HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. No forms or data collection mechanisms are present, reducing immediate data protection risks. The absence of privacy and cookie policies is a compliance gap under GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is safe with no adult or questionable content, but it is limited in content and functionality due to maintenance mode. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear contact and incident response information to improve trust and compliance.

I

I.D.E.E. e.V.

idee-nrw.de

47

I.D.E.E. e.V. is a German non-profit association operating the largest information and demonstration center for renewable energy, specifically wood energy, in Germany. The organization serves as a central public contact point for questions about wood energy and other renewable energy sources, supporting consumers and businesses through education, public relations, and industry promotion. The website reflects a medium-sized organization with a strong regional presence in South Westphalia and a significant role in the national wood energy sector. Technically, the website is built on WordPress with modern plugins like Elementor and Yoast SEO, providing good performance, mobile optimization, and SEO readiness. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and active social media engagement.

I

Informations- und Demonstrationszentrum HOLZ e.V.

id-holz-nrw.de

47

The website represents the Informations- und Demonstrationszentrum HOLZ e.V., a German cluster platform focused on networking and collaboration within the wood industry, particularly in the NRW region. It serves as a hub for companies, educational institutions, research, and public administration to promote wood construction technologies and knowledge transfer. The site offers information about their services including seminar rooms, showrooms, and training facilities. Technically, the site is built on WordPress with Elementor and uses modern SEO and cookie consent plugins, indicating a moderate to high level of digital maturity. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, well-structured, and compliant with GDPR, targeting industry professionals and stakeholders in the wood construction sector.

M

Museo Africano

museoafricano.org

38

Museo Africano is a non-profit cultural institution based in Verona, Italy, dedicated to African culture and heritage. Operated by Fondazione Nigrizia Onlus, the museum offers permanent and temporary exhibitions, educational programs for schools and families, and cultural events. The website reflects a well-established organization with clear contact information, social media presence, and donation capabilities. The business model focuses on cultural education and community engagement supported by donations and public participation. Technically, the website is built on WordPress with a modern plugin stack including Yoast SEO, Revolution Slider, and GiveWP for donations. It is mobile-optimized and uses HTTPS with Google Analytics and Tag Manager for analytics. The site demonstrates good SEO practices and basic accessibility features, though some security headers are missing. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism. However, it lacks explicit security policies, incident response contacts, and security.txt files. The WHOIS data is unavailable, likely due to privacy protection, but the website content and contact details support legitimacy. No critical vulnerabilities or adult content were detected. Overall, Museo Africano presents a trustworthy and professional online presence suitable for its cultural and educational mission. Strategic improvements in security headers and incident response transparency would enhance its security posture and compliance.

F

Fondazione Nigrizia

piccolomissionario.it

36

Piccolo Missionario is a youth-focused monthly magazine and online media platform operated by Fondazione Nigrizia, an Italian non-profit organization. The website provides educational and entertaining content for children and teenagers, including news, environmental awareness, and book recommendations. The platform is positioned as a niche media outlet with a clear mission to engage young audiences with socially relevant topics. Technically, the website is built on WordPress with a modern theme and plugins, offering good SEO and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though explicit security policies and headers could be improved. Overall, the site is trustworthy and professionally maintained, with consistent WHOIS data supporting legitimacy.

W

Wikinggruppen

wikinggruppen.se

44

Wikinggruppen is a Swedish company specializing in e-commerce solutions and system development, targeting businesses looking to start or grow their online trade. Established in 2007, the company offers tailored e-commerce platforms, marketing services, and integrated logistics solutions, positioning itself as a significant player in the Swedish e-commerce technology sector. The website reflects a mature digital presence with structured data, customer case studies, and partner integrations, supporting its market position. Technically, the site is built on WordPress with modern plugins and tracking tools, optimized for SEO and mobile users. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and DNSSEC are recommended. Privacy compliance is basic, lacking explicit privacy and terms of service pages. Overall, the site is professional, trustworthy, and business-focused, with room for enhanced security and compliance transparency.

Selbsthilfebüro KORN e. V. is a small non-profit organization serving as a regional coordination and contact point for self-help groups and psychosocial support in the Ulm, Neu-Ulm, and Alb-Donau-Kreis areas of Germany. The organization cooperates with the Universitätsklinikum Ulm and is funded by regional health insurers and public bodies. Their website provides comprehensive information, event updates, and support resources for individuals seeking or forming self-help groups. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates accessibility tools and privacy-respecting analytics (Matomo). The site is well-optimized for SEO and mobile devices, with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and trustworthiness.

The website specialcraftbox.com currently contains no accessible content beyond an empty HTML skeleton, indicating either a placeholder or an unconfigured site. The domain WHOIS data is highly suspicious, showing a creation date set in the future (March 2025), which undermines trust and legitimacy. There is no evidence of business information, contact details, or any form of user engagement mechanisms such as forms or policies. Technically, the site lacks any metadata, scripts, or security headers, and no SSL/TLS configuration is detected, suggesting it is not served over HTTPS. This results in a very low digital maturity and security posture. Overall, the site appears inactive or improperly configured, with significant risks related to trust and compliance.

A

Allnewsterkini.com

allnewsterkini.com

36

Allnewsterkini.com is an Indonesian online news media platform established in 2023, focusing on delivering regional, national, political, sports, and automotive news to a general Indonesian audience. The website operates on a WordPress CMS with a custom Newkarma theme and leverages popular plugins such as Yoast SEO for search engine optimization and Google Analytics for visitor tracking. Hosting is provided by CV. Rumahweb Indonesia, a reputable Indonesian registrar and hosting provider. The site demonstrates consistent branding and regularly updated content, positioning itself as a regional news source with a small but active presence. From a technical perspective, the website uses modern web technologies including responsive design, Google Fonts, and JavaScript libraries for enhanced user experience such as Tiny Slider for carousels. The site is served over HTTPS, ensuring encrypted communication, and employs domain transfer protection. However, DNSSEC is not enabled, and some recommended security headers are not explicitly set, which could be improved to enhance security posture. The site lacks a cookie consent mechanism and terms of service, which are important for privacy compliance, especially under regulations like GDPR. Security-wise, the site shows a moderate security maturity level with HTTPS and domain transfer protection in place but misses advanced security headers and formal vulnerability disclosure mechanisms. No contact information for incident response or data protection officers is provided, limiting transparency in security and privacy management. The absence of cookie policy and consent mechanisms indicates partial compliance with privacy regulations. Overall, Allnewsterkini.com is a functional and professionally presented news website with room for improvement in privacy compliance and security best practices. Strategic enhancements in cookie consent, security headers, and vulnerability disclosure would strengthen trust and regulatory adherence.

H

Hogrefe TEA Ediciones

teaediciones.com

48

Hogrefe TEA Ediciones is a reputable Spanish publisher specializing in psychological tests, personality assessments, intelligence and aptitude tests, HR evaluations, and online psychology courses. Positioned as a leading entity in the psychology education sector in Spain, the company serves professionals, educators, and individuals seeking psychological evaluation tools and training. The website reflects a professional and consistent brand image aligned with its parent company, Hogrefe Publishing Group. Technically, the site leverages modern web technologies including Angular and FontAwesome, ensuring a responsive and user-friendly experience with good SEO and mobile optimization. Security-wise, the site employs HTTPS with strong SSL configuration and standard security headers, alongside a GDPR-compliant cookie consent mechanism. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is safe, trustworthy, and well-suited for its target audience, with no adult or questionable content detected.

The domain aapopuskala.fi is registered to User Point Oy, a Finnish company established in 2006. The website currently returns a 403 Forbidden error page, indicating that access is blocked or restricted. Due to this, no business description or services can be derived from the website content. The domain registration data is consistent with the company's Finnish location and shows no privacy protection, supporting legitimacy. However, the lack of accessible content and absence of privacy, cookie, or contact information on the website limits the ability to assess the company's digital maturity or market position. Technically, the site uses Google Fonts but no other detectable technologies or CMS. Security posture cannot be fully evaluated due to lack of accessible content and security headers. Overall, the website appears to be down or access restricted, resulting in a low AI score and limited insights.

Z

Zentrum HOLZ

zentrum-holz.de

47

Zentrum HOLZ is a regional platform and economic development center based in Olsberg, Germany, focused on supporting companies in the forestry and wood sectors. It offers knowledge transfer, expert consulting on wood construction and heating, and job listings within the wood industry. The website positions itself as a key regional player in NRW, providing services and networking opportunities for industry stakeholders. The business model revolves around fostering economic growth and innovation in the wood sector through collaboration and information dissemination. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Performance optimizations such as WP Rocket and lazy loading are implemented, contributing to fast load times and good mobile responsiveness. The site uses Borlabs Cookie for GDPR-compliant cookie consent management and integrates Google Tag Manager for analytics. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policy pages and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie management. However, improvements could be made by adding security headers and publishing vulnerability disclosure information. Overall, Zentrum HOLZ presents a professional and trustworthy online presence with a clear focus on its niche market. The site is well-structured, content-rich, and compliant with privacy regulations, making it a reliable resource for its target audience.

F

Fachagentur Nachwachsende Rohstoffe e. V. (FNR)

kiwuh.de

43

The website www.kiwuh.de serves as the Kompetenz- und Informationszentrum Wald und Holz, operated by the Fachagentur Nachwachsende Rohstoffe e. V. (FNR), a German non-profit agency. It provides comprehensive information, research support, and project funding related to sustainable forestry, wood utilization, and climate protection. The site targets forestry professionals, researchers, policymakers, and the general public interested in forest and wood topics. It holds an important position as a governmental/non-profit information hub in Germany's forestry sector. Technically, the website is built on TYPO3 CMS with modern frontend technologies including jQuery, Slick Carousel, and Lightbox2. It uses Matomo for privacy-respecting analytics. The site is mobile-optimized, accessible, and SEO-friendly, hosted likely by agenturserver. Performance is moderate with good user experience and professional design. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not publish explicit security or incident response policies. GDPR compliance is partially met with a privacy policy present but no cookie consent mechanism detected. The WHOIS data is minimal but consistent with professional hosting, and no suspicious patterns are found. Overall, the website is trustworthy, professional, and well-maintained, with minor recommendations to enhance security posture and privacy compliance for improved user trust and regulatory adherence.

B

Bloom Facilities Management

bfm.ae

38

Bloom Facilities Management is a UAE-based company specializing in providing comprehensive facilities management services to both corporate and residential clients. Their offerings include corporate services, residential services, project management, innovation initiatives, and business excellence programs. The company positions itself as a professional and customer-centric service provider within the UAE market. Technically, the website is built on Concrete CMS, uses modern JavaScript libraries such as jQuery and jQuery UI, and integrates Google Analytics and Google reCAPTCHA for analytics and security respectively. The site is hosted under Etisalat's registrar and nameservers, consistent with its UAE location. Security posture is solid with HTTPS enforced and spam protection on forms, though there is room for improvement in security headers and published security policies. Privacy and cookie policies are not found, indicating a compliance gap. Overall, the website is professional and functional with moderate tracking and good user experience.

E

Etihad International Hospitality LLC

etihadhospitality.ae

43

Etihad International Hospitality LLC is a UAE-based company specializing in hospitality and facility management services, including soft and hard services, catering, fresh produce supply, and operating a cafe & restaurant. Established in 2015, it serves a broad client base across various sectors in the UAE, emphasizing quality and customized solutions. The website reflects a professional business presence with clear service offerings and contact information. Technically, the site uses modern front-end technologies such as jQuery, Bootstrap, GSAP, and Owl Carousel, hosted likely by Etisalat, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and CSRF tokens but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and functional but could improve in privacy and security transparency.

S

ServeU

serveu.ae

47

ServeU is a prominent facilities management company based in the UAE, offering a comprehensive range of integrated FM services including hard and soft services, security, energy management, and specialized maintenance solutions. With a large workforce and extensive client base, ServeU positions itself as a leading FM provider in the region. The website is built on WordPress with modern plugins and technologies, providing a professional and responsive user experience. Security posture is adequate with HTTPS and some security best practices, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is credible and trustworthy but would benefit from enhanced compliance and security transparency.