Security Directory

L

Livesport s.r.o.

flashscore.com

62

Flashscore.com is a globally recognized live sports score platform operated by Livesport s.r.o., providing real-time football scores, results, and sports news from over 1000 leagues worldwide. The website targets football fans and sports enthusiasts, offering extensive coverage of major football leagues and tournaments. It monetizes primarily through advertising and affiliate partnerships with numerous bookmakers. Technically, the site employs a modern JavaScript-based framework with strong mobile optimization, fast performance, and good SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit privacy policies and incident response contacts are missing. The absence of WHOIS data introduces some uncertainty about domain registration legitimacy, but the overall brand presence and external verifications support trustworthiness. Strategic recommendations include publishing comprehensive privacy and terms policies, adding security.txt for vulnerability disclosures, and providing clear contact information for security incidents.

A

ALPINE PRO

alpinepro.sk

65

ALPINE PRO is an established Slovak e-commerce retailer specializing in outdoor clothing and accessories, operating since 2004. The website targets outdoor enthusiasts and general consumers within Slovakia, offering a range of products through an online platform. The business appears to be medium-sized with consistent branding and a professional online presence. Technically, the website employs modern web technologies including JavaScript modules, Google Fonts, and integrates third-party services such as Cookiebot for cookie consent, Google Tag Manager, and Facebook Pixel for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. No critical vulnerabilities or suspicious activities were detected. Overall, the domain registration is consistent with the business profile, indicating legitimacy and trustworthiness.

GiacoTour is a Slovak promotional website encouraging users to register and purchase Giacomini brand products to participate in contests and win prizes. The platform targets consumers interested in Giacomini products and aims to build customer engagement through promotional campaigns. The website is relatively new, consistent with its domain registration in 2021, and hosted on local Slovak infrastructure. Technically, the site uses modern CSS frameworks like Tailwind and includes basic security measures such as CSRF tokens in forms. However, it lacks visible security headers and formal privacy or cookie policies, which are important for GDPR compliance and user trust. No contact information or social media presence is provided, limiting transparency and business credibility. The site is accessible without WAF or blocking mechanisms, and no adult or explicit content is present, making it safe for general audiences.

T

twd SK, s.r.o.

twd.sk

59

twd SK, s.r.o. is a Slovakian company specializing in retail and manufacturing of furniture and construction hardware, large-format materials, and related services such as production of parts, terraces, and facades. Established since 1993, the company holds a strong regional market position with partnerships with renowned brands like Blum, Voga, Festool, Bosch, and Dewalt. Their website reflects a professional and consistent brand image targeting both domestic and professional craftsmen. The business model focuses on providing quality products and services through physical stores, an e-shop, and specialized services.

C

Centrum pre filantropiu n.o.

eprojekty.sk

61

The website eprojekty.sk is an online platform operated by Centrum pre filantropiu n.o., focused on managing foundations and their public benefit projects in Slovakia. It provides a streamlined process for submitting, managing, and evaluating grant applications, targeting organizations and individuals seeking financial support for public benefit activities. The platform collaborates with multiple well-known Slovak foundations, enhancing its credibility and market position within the non-profit sector. Technically, the site uses a modern React-based frontend with modular JavaScript and CSS, ensuring good mobile optimization and a professional user experience. The site is accessible without WAF or blocking mechanisms, though some standard security headers are not visibly present. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. However, no cookie consent mechanism was found despite GDPR applicability. From a security perspective, the platform enforces HTTPS and avoids exposing sensitive data. There is no published security policy or incident response information, and no vulnerability disclosure mechanism is evident. The domain registration uses privacy protection, which is justified for this non-profit entity. Overall, the security posture is moderate but could be improved with additional headers and transparency. The overall risk is low given the nature of the platform and its audience, but strategic improvements in security policies, cookie consent, and incident response transparency are recommended to enhance trust and compliance.

O

OHN Media GmbH

onlinehaendler-news.de

47

Onlinehaendler-News.de is Germany's largest e-commerce news portal, targeting small and medium-sized enterprises in the e-commerce sector. The site provides daily news, legal updates, marketing insights, logistics information, and Amazon marketplace news, supported by newsletters, podcasts, and webinars. The business model centers on delivering timely, relevant content to e-commerce professionals, establishing a strong market position in Germany's digital media landscape. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript and CSS technologies, with integrations such as Google Tag Manager, Contentpass for consent management, CleverPush for push notifications, and Visual Website Optimizer for A/B testing. Hosting is provided via kasserver.com, with good mobile optimization, accessibility, and SEO practices observed. From a security perspective, the site enforces HTTPS with strong SSL configuration and employs multiple security headers. Consent management is implemented to comply with GDPR, and no exposed sensitive data or vulnerabilities were detected. However, the site lacks a publicly available security policy or incident response contact details, which could enhance trust and preparedness. Overall, the website presents a professional, trustworthy, and well-maintained platform with a high-quality user experience and content. Strategic recommendations include publishing explicit security and incident response policies, enhancing direct contact information, and maintaining vigilance on third-party scripts to sustain security posture.

A

AutoScout24

autoscout24.fr

65

AutoScout24 is a leading European online marketplace specializing in the sale and purchase of new and used vehicles. The platform offers a comprehensive range of automotive services including vehicle listings, price evaluations, financing options, and insurance advisory, targeting both private consumers and professional dealers across multiple European countries. The website demonstrates a high level of digital maturity with modern web technologies such as React, service workers, and integration of major analytics and advertising platforms. Privacy compliance is well addressed with GDPR-aligned policies and consent management mechanisms. Security posture is strong with HTTPS enforcement, security headers, and use of reCaptcha Enterprise, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site presents a professional, trustworthy, and user-friendly experience with extensive automotive content and clear navigation.

A

AutoScout24

autoscout24.be

55

AutoScout24 Belgium operates as a prominent online marketplace for buying and selling new and used vehicles. The platform targets consumers and businesses within Belgium, offering vehicle listings and search functionalities. The website is professionally designed with a consistent brand presence and provides legal and privacy information in Dutch and French, reflecting the bilingual nature of the region. The business model centers on facilitating vehicle transactions, positioning AutoScout24 as a leading player in the Belgian transportation sector. Technically, the website employs modern web standards including HTML5, CSS, and JavaScript, with responsive design elements ensuring good mobile optimization. However, no advanced frameworks or CMS platforms are explicitly detected in the provided content. Performance is moderate, and SEO and accessibility features are basic but adequate for the site's purpose. From a security perspective, the site uses HTTPS (implied by canonical URLs) but lacks visible security headers in the provided data. The WHOIS information is restricted by DNS Belgium policies, limiting transparency but common for commercial domains. No direct contact or incident response information is found, and cookie consent mechanisms are absent, indicating areas for compliance improvement. Overall, the website presents a trustworthy and professional front for its business, though enhancements in security headers, privacy compliance mechanisms, and public contact information would strengthen its security posture and regulatory adherence.

A

AutoScout24 GmbH

autoscout24.it

69

AutoScout24.it is a leading European online automotive marketplace specializing in the sale and purchase of used and new vehicles including cars, motorcycles, and campers. The platform targets consumers and dealers primarily in Italy, offering extensive vehicle listings, dealer searches, and valuation services. Owned by AutoScout24 GmbH, a subsidiary of Scout24 AG, the website reflects a mature and well-established business with a strong market position in the transportation sector. Technically, the site employs modern web technologies such as React, service workers, and integrates advanced identity management and bot protection services, ensuring a robust and user-friendly experience. Security-wise, the website enforces HTTPS, uses reCaptcha Enterprise, and implements GDPR-compliant consent mechanisms, although it lacks a dedicated security policy or incident response contact page. Overall, the site demonstrates high professionalism, good privacy compliance, and a secure environment suitable for its business model.

L

loopingo

loopingo.com

50

loopingo is a German-based company specializing in conversion rate optimization for online shops through their product 'loopingo Uplift'. Their solution focuses on increasing sales by strategically placing incentives during the checkout process and validating performance via continuous control groups. The company operates a performance-based business model charging a margin on additional revenue generated, minimizing risk for clients. Technically, the website is built using modern frameworks like SvelteKit, indicating a contemporary digital infrastructure with good mobile optimization and user experience. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. Overall, the website is professional and trustworthy with room for improvement in security and privacy transparency.

R

RAE Internet Inc.

matchmyemail.com

65

Match My Email, operated by RAE Internet Inc., is a specialized technology company providing email matching services that integrate emails with CRM systems to enhance sales and customer relationship management. The company targets business users, particularly sales teams and CRM users, offering a SaaS subscription model with integrations such as Salesforce and Google Apps. The website serves primarily as a login portal for existing users, with clear links to legal and privacy documentation, reflecting a professional and focused business approach. Technically, the website employs a custom-built platform using standard JavaScript libraries like jQuery and jQuery UI. The site demonstrates moderate performance and basic mobile optimization. While the infrastructure is stable, there is room for improvement in security configurations, such as enabling DNSSEC and implementing security headers. The absence of cookie consent mechanisms suggests partial privacy compliance, though privacy and terms policies are comprehensive and accessible. From a security perspective, the site uses HTTPS and secure form submission methods but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. No WAF or blocking mechanisms were detected, indicating open accessibility. The WHOIS data is consistent with the business identity, showing a long-standing domain registration with no privacy protection, which supports legitimacy. Overall, Match My Email presents a trustworthy and professional online presence with a solid business foundation. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance the security posture and user trust. The site’s content is safe for general audiences, with no adult or questionable material detected.

L

Livesport s.r.o.

evysledky.com

61

Livesport s.r.o. operates Flashscore.sk, a leading live sports score and news platform primarily focused on football but covering multiple sports. The website offers real-time match results, detailed statistics, and sports news, targeting sports fans and bettors in Slovakia and internationally. The business model relies heavily on advertising and affiliate partnerships with bookmakers. Technically, the site is well-implemented using modern JavaScript frameworks, SVG graphics, and cookie consent management via OneTrust, ensuring a fast, mobile-optimized, and accessible user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, the absence of explicit privacy and terms of service pages and lack of direct contact information for security or business inquiries represent areas for improvement. Overall, the website is professional, trustworthy, and safe for general audiences.

S

Slovenská volejbalová federácia

svf.sk

40

Slovenská volejbalová federácia (SVF) is the official governing body for volleyball in Slovakia, providing comprehensive information about volleyball competitions, teams, news, and events. The website serves volleyball players, fans, and the sports community in Slovakia, offering services such as competition management, ticket sales, and a fan shop. The federation holds a significant position as the national authority for volleyball, supported by partnerships with major brands and sponsors. Technically, the website is built on modern web technologies including Next.js and React, hosted by Webglobe, and optimized for mobile devices with good design and navigation. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is weak due to missing explicit privacy and cookie policies, though a cookie consent mechanism is present. WHOIS data shows an anomalous future domain creation date, which slightly reduces trust but does not detract from the overall legitimacy of the site. The content is safe, sports-focused, and suitable for a general audience.

C

CannAbisZ

steammachine.eu

50

CannAbisZ operates as a specialized e-commerce retailer focusing on cannabis-derived products such as HHC, H4CBD, and CBD vape pens, alongside lifestyle and headshop accessories. The company positions itself as a leading German distributor in this niche market, emphasizing product quality through lab testing and customer satisfaction via support channels including a hotline and WhatsApp chat. The website is built on the Shopware platform, integrating modern tracking tools like Google Tag Manager and Trusted Shops widgets, reflecting a moderate level of digital maturity. Security practices include HTTPS enforcement and CSRF protection, though explicit security headers and policies are absent. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. Overall, the site presents a professional and trustworthy front for adult consumers interested in cannabis-related products.

S

Stavebné Centrum Ádám

adamcentrum.sk

42

Stavebné Centrum Ádám is a Slovakian small business specializing in construction materials and home improvement services, operating since 2009. The company positions itself as a reliable partner for construction and renovation projects, targeting both individual customers and businesses in the local region. The website reflects a professional and consistent brand image, with clear service offerings and a focus on customer support through social media and contact forms. Technically, the site is built on WordPress using modern tools like Elementor and Astra theme, with good SEO and mobile optimization. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms in place, though there is room for improvement in explicit security policies and incident response information. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

3

3b, s.r.o.

forfanshop.com

51

FORFANSHOP.com is an e-commerce platform operated by 3b, s.r.o., a Slovak company founded in 2014. The website specializes in retailing sportswear and fan merchandise, targeting sports enthusiasts primarily in Slovakia and Europe. The business model focuses on online sales of custom sports collections and fan articles, positioning itself as a niche regional leader in this market segment. The website content is well-structured, with clear navigation and a consistent brand presence. Technically, the website employs modern web technologies including JavaScript, CSS, and Vue.js components, with integration of Facebook SDK for social media and tracking purposes. Hosting appears to be provided by Websupport.sk, and the site is secured with HTTPS. Mobile optimization is good, though accessibility and SEO features are basic. Cookie consent is managed via CookieFirst, indicating some level of privacy compliance. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks advanced security headers and explicit security or privacy policies. No incident response or vulnerability disclosure information is present, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the business information, supporting legitimacy. Overall, the website presents a moderate risk profile with good business credibility but room for improvement in privacy and security practices. Strategic enhancements in security headers, privacy documentation, and incident response readiness are recommended to strengthen the security posture and regulatory compliance.

B

Barzzuz s.r.o.

kafe.sk

64

Barzzuz s.r.o. operates the website kafe.sk, a Slovak-based specialty coffee roastery and e-commerce platform focused on selling freshly roasted coffee beans, ground coffee, coffee machines, and barista accessories. The company targets coffee enthusiasts and consumers primarily in Slovakia, offering a wide range of single origin and espresso coffee products along with educational content about coffee preparation. The website demonstrates a good level of digital maturity with structured data, SEO optimization, and mobile responsiveness. It integrates modern analytics and advertising tools such as Google Analytics GA4 and Facebook Pixel with a consent management mechanism to comply with privacy regulations. Security posture is solid with HTTPS enforced and script blocking until user consent, though additional security headers could enhance protection. Contact information is clearly provided, enhancing business credibility. However, the absence of visible privacy policy and terms of service pages indicates room for improvement in compliance documentation.

D

DS KORP.

dskorp.eu

68

DS KORP. is a Slovak holding company specializing in manufacturing and gastronomy sectors, managing multiple brands such as Gastro Hangar, DS Machines, and KochPro. The company positions itself as a synergy-driven innovator in these industries, offering new and refurbished gastro equipment, universal robots, and German-inspired gastro devices. The website is professionally designed, mobile-optimized, and provides clear information about its subsidiaries and services, targeting businesses and professionals in related sectors. Technically, the site uses modern web technologies including service workers and cookie consent management, ensuring GDPR compliance and user privacy. Security posture is adequate with HTTPS and consent mechanisms, though security headers and explicit policies could be improved. Overall, the domain appears legitimate despite the absence of WHOIS registrant data due to EURid privacy policies. The site is safe, free of adult or questionable content, and demonstrates good business credibility and technical maturity.

E

ERIMA

erima.de

53

ERIMA is a well-established German sportswear manufacturer and retailer specializing in team sports clothing and equipment. The company emphasizes premium quality products directly from the manufacturer, targeting athletes and sports enthusiasts in various disciplines such as football, handball, volleyball, tennis, athletics, and running. The website reflects a mature e-commerce platform with clear navigation and a comprehensive product catalog. Technically, the site employs modern web technologies including Google Tag Manager and Google Analytics, and is built likely on the Shopware CMS platform. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with GDPR-aligned privacy and cookie policies. Overall, the site presents a professional and trustworthy online presence with moderate tracking and marketing tools in use.

S

Stadtsparkasse Augsburg

sska.de

66

Stadtsparkasse Augsburg is a regional German savings bank offering a comprehensive range of financial services including online banking, private banking, loans, investments, insurance, and real estate services. The website targets both private and corporate customers primarily in Augsburg, Germany. It positions itself as a trusted local financial partner with a strong digital presence. The site is professionally designed, mobile-optimized, and provides clear navigation and extensive service information. Technically, the website uses modern web technologies and likely runs on a robust CMS platform such as Adobe Experience Manager. Security best practices are observed with HTTPS enforcement, session management, and cookie consent mechanisms. However, explicit security policies and incident response contacts are not published, and no vulnerability disclosure program is evident. Overall, the site demonstrates a mature digital infrastructure with good privacy compliance and strong business credibility.

SUZUKI PRO AUTO, s.r.o. operates as a local automotive dealer and service provider specializing in Suzuki vehicles, serving customers primarily in the Slovakian cities of Banská Bystrica and Zvolen. The website is minimalistic, focusing on basic navigation to local subdomains and the official Suzuki brand site, with limited content and no visible customer engagement features such as contact forms or detailed business information. The business model centers on retail sales and servicing of Suzuki automobiles, targeting local consumers seeking these services. From a technical perspective, the website employs basic HTML5 and CSS without advanced frameworks or CMS platforms. Mobile optimization is present but basic, and no advanced SEO or accessibility features are evident. The site lacks modern security headers and does not display privacy or cookie policies, indicating a low level of digital maturity and compliance readiness. Security posture is minimal, with no detected HTTPS enforcement or security best practices visible in the provided data. No incident response or vulnerability disclosure mechanisms are present, and no contact information is provided for security or general inquiries. The WHOIS data is consistent with the business claims, supporting legitimacy, but the absence of critical compliance and security features suggests room for significant improvement. Overall, the website presents a basic online presence suitable for a small local business but requires enhancements in security, privacy compliance, and user engagement to improve trustworthiness and digital maturity.

G

Grundschule Weichering

grundschule-weichering.de

64

Grundschule Weichering is a local primary school based in Weichering, Germany, providing educational services to children in the community. The website serves as an information portal for parents and stakeholders, offering details about the school, its organizational structure, and school life. The site is positioned as a trusted local educational institution with clear contact information and relevant resources. Technically, the website is built on the Pimcore CMS platform and integrates modern privacy tools such as Consentmanager for cookie consent and Piwik/Matomo for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and incident response information. Overall, the site demonstrates a solid security posture appropriate for its business type. The domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness. No suspicious or malicious content was detected, and the site is safe for general audiences.

4

4c media

cccc.de

59

4c media is a small digital agency based in Bayreuth, Germany, specializing in web design, graphic design, copywriting, corporate design, and crossmedia publishing. The website presents a professional image with a clear focus on digital agency services targeting businesses seeking creative and digital marketing solutions. The technical infrastructure includes modern web technologies such as SVG graphics, CSS, and JavaScript, with hosting provided by Schlund Technologies. The site implements HTTPS and a cookie consent mechanism, demonstrating basic compliance with privacy regulations. However, explicit privacy policies and terms of service are not found, indicating room for improvement in compliance documentation. Security posture is moderate with no critical vulnerabilities detected, but additional security headers and incident response information would enhance trust. Overall, the website is functional, professional, and suitable for its target audience, but could benefit from enhanced privacy and security disclosures.

S

Stadtwerke Augsburg Holding GmbH

sw-augsburg.de

66

Stadtwerke Augsburg Holding GmbH operates as a regional utility provider in Augsburg, Germany, offering a comprehensive range of services including electricity, gas, water supply, district heating, and mobility solutions such as public transport, carsharing, and bike sharing. The website reflects a mature business with a strong regional presence and multiple customer portals facilitating online service access. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and responsive design to ensure good user experience across devices. Security posture is adequate with HTTPS enforced and secure form handling, though improvements are recommended in security headers and privacy compliance. The absence of explicit privacy and cookie policies suggests a compliance gap that should be addressed. Overall, the domain registration data aligns well with the business, indicating legitimacy and trustworthiness.

Volkshochschule Landkreis Lichtenfels e.V. operates as a regional adult education provider in Germany, offering a broad range of courses including languages, arts, technology, health, and online learning. The website serves as a comprehensive portal for course information, registration, and community engagement, targeting general adult learners in the Lichtenfels region. The organization maintains a consistent brand presence and provides clear contact details and social media links, supporting trust and accessibility. Technically, the website is built on a proprietary or custom CMS platform (CMX), utilizing standard web technologies such as HTML5, CSS, and JavaScript. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. No major third-party analytics or tracking services are detected, indicating a privacy-conscious approach. Security posture is solid with HTTPS enforced and secure form handling, but lacks advanced security headers and formal incident response or vulnerability disclosure policies. Privacy compliance is supported by a comprehensive privacy policy and terms of service, though cookie consent mechanisms are absent. Overall, the site is trustworthy and professionally maintained, with room for improvement in security and privacy transparency. The risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include implementing security headers, adding cookie consent, and publishing incident response information to enhance compliance and user trust.

G

Galtür

galtuer.com

68

Galtür is a regional tourism website promoting the family-friendly holiday region in Paznaun, Tyrol, Austria. The site offers comprehensive information about accommodation, events, skiing, and summer outdoor activities, targeting families and tourists seeking alpine experiences. The website is professionally designed with excellent navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses modern web technologies including service workers and cookie consent management, with integration of popular analytics and marketing tools such as Google Analytics, Facebook, and Hotjar. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies are not evident. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and well-maintained but would benefit from improved transparency in domain registration and security disclosures.

S

Stadt Rain

rain.de

49

Stadt Rain operates an official municipal government website serving the community of Rain, Germany. The site provides comprehensive information on local administration, tourism, culture, economic development, and public services. It targets residents, tourists, and local businesses, positioning itself as a trusted local government portal. The website features a well-organized navigation structure and consistent branding aligned with official city identity. Technically, the website employs modern web technologies including Bootstrap for responsive design, JavaScript for interactivity, and integrates consent management and accessibility tools to enhance user experience and compliance. Hosting appears to be managed via allinone.de, consistent with the domain's WHOIS data. Performance and mobile optimization are good, with accessibility features implemented. From a security perspective, the site uses HTTPS and consent mechanisms for privacy compliance, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. The site maintains minimal user tracking and respects GDPR requirements. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements include adding security headers, publishing a security policy, and providing incident response contact information to enhance security posture and transparency.

G

Gemeinde Marxheim

gemeinde-marxheim.de

47

Gemeinde Marxheim operates as a local government website serving the community of Marxheim in Bavaria, Germany. The site provides residents and visitors with information on municipal services, local news, cultural activities, and administrative resources. It positions itself as an official and trusted source for community engagement and public service information. The website is well-structured with clear navigation and a professional design consistent with government standards. Contact details and a privacy policy are prominently available, enhancing transparency and trust. Technically, the website is built on the Pimcore CMS platform, utilizing modern web technologies such as JavaScript, CSS, and SVG graphics. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. HTTPS is enforced, ensuring secure communications. However, the absence of cookie consent mechanisms and security headers indicates partial compliance with privacy and security best practices. From a security perspective, the site demonstrates a solid baseline with no visible vulnerabilities or blocking mechanisms. The WHOIS data aligns with the website's municipal nature, showing consistent registration and no privacy protection that might obscure legitimacy. The lack of incident response information and vulnerability disclosure policies suggests an opportunity to strengthen security posture and transparency. Overall, Gemeinde Marxheim's website is a credible, safe, and functional municipal portal with good business credibility and content quality. Strategic enhancements in privacy compliance and security practices would further solidify its trustworthiness and regulatory adherence.

G

Gemeinde Oberhausen an der Donau

oberhausen-donau.de

53

Gemeinde Oberhausen an der Donau operates an official municipal website serving residents, businesses, and visitors with comprehensive local government information and services. The site provides news, citizen services, tourism information, and contact details, positioning itself as a trusted local government portal. The website is well-branded and consistent with its governmental role, featuring certifications and official contact information. Technically, it is built on the Pimcore CMS platform, uses modern JavaScript and CSS, and integrates Matomo analytics and a GDPR-compliant consent management platform. The site is mobile-optimized and offers a good user experience with clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies. Overall, the site is professional, trustworthy, and suitable for its audience.

H

HC MONACObet Banská Bystrica

hc05.sk

65

HC MONACObet Banská Bystrica is a Slovak ice hockey club with a well-maintained official website serving fans and stakeholders. The site provides comprehensive information about the team, match schedules, news, partners, and merchandise. The club holds a strong market position in Slovak ice hockey, supported by reputable partners and sponsors. The website targets sports enthusiasts and local community members, offering ticket sales and fan engagement features. Technically, the site uses modern web technologies including Vue.js, service workers, and cookie consent management, ensuring a good user experience across devices. Security posture is solid with HTTPS, CSRF protection, and cookie consent compliance, though explicit security policies and incident response contacts are absent. Overall, the website is professional, trustworthy, and compliant with GDPR, with moderate user tracking via analytics services. Strategic improvements could include publishing security policies and incident response details to enhance transparency and trust.

B

Bakehouse

bakehouse.at

48

Bakehouse.at is a hospitality-focused website providing hotel booking services with integration to their own booking API. The site primarily serves travelers and hotel guests in Austria, offering session management and user-friendly cookie consent mechanisms. The website is built on TYPO3 CMS and uses Cloudflare for bot mitigation and Matomo for analytics, reflecting a moderate level of technical maturity. The cookie consent popup is comprehensive, supporting GDPR compliance with clear categories and user choice. However, the site lacks visible contact information, security policies, and incident response details, which limits transparency and trust. The technical implementation is basic with room for improvement in accessibility, mobile optimization, and security headers. Overall, the site is safe with no adult or questionable content detected, but it would benefit from enhanced security practices and clearer business information to improve credibility and compliance.

D

Deutsche Bahn AG

db.jobs

70

Deutsche Bahn AG operates a comprehensive career portal at db.jobs, targeting a wide range of job seekers including students, graduates, professionals, and career changers in Germany. The site offers detailed information on over 500 professions, training programs, and application guidance, reinforcing Deutsche Bahn's position as a leading transportation employer. The platform is well-branded, professionally designed, and optimized for mobile devices, providing an excellent user experience with clear navigation and relevant content.

A

Augsburg Marketing

augsburg-marketing.de

41

Augsburg Marketing is a local city marketing organization focused on supporting the development and promotion of Augsburg through strategic initiatives encompassing retail development, events, and cultural marketing. The organization targets local residents, businesses, event organizers, and tourists, positioning itself as a key promoter of Augsburg's attractiveness and economic vitality. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website uses modern web technologies including Matomo for privacy-conscious analytics, asynchronous JavaScript loading, and SVG graphics. Hosting is provided by Schlund Technologies, a reputable provider. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. SEO practices are good with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly observed in the HTML content and no dedicated security or incident response policies are published. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, Augsburg Marketing's website presents a low-risk profile with solid privacy and security practices appropriate for a government/non-profit entity. Strategic recommendations include enhancing security headers, publishing terms of service and security policies, and improving accessibility to further strengthen trust and compliance.

A

Augsburg Marketing GmbH

augsburger-stadtsommer.de

37

The Augsburger Stadtsommer website serves as a comprehensive event promotion platform for the city of Augsburg's summer cultural activities. It is managed by Augsburg Marketing GmbH, a local marketing entity focused on promoting city events and tourism. The site offers detailed program schedules, event descriptions, partner information, and ticketing links, targeting residents and visitors interested in cultural and leisure activities during the summer season. The content is well-organized, primarily in German, and includes social media integration and partner endorsements. Technically, the website employs modern web technologies including asynchronous JavaScript, CSS, SVG graphics, and Matomo analytics configured with cookie disabling by default to respect user privacy. Hosting is provided by Schlund Technologies, a professional hosting provider. The site is mobile-optimized with good navigation and user experience, though accessibility features could be enhanced. SEO is basic but sufficient for the target audience. From a security perspective, the site uses HTTPS with a good SSL configuration and implements a GDPR-compliant cookie consent mechanism. However, explicit security headers are not detected, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy policies are comprehensive and linked externally to the parent marketing company’s domain. Overall, the website presents a low-risk profile with a solid business credibility and privacy compliance posture. Strategic improvements could include adding security headers, enhancing accessibility, and publishing explicit security and incident response policies to further strengthen trust and compliance.

Kirschner Sport & Mode GmbH operates a local retail and hospitality business in Serfaus, Austria, focusing on sports equipment sales and tourist accommodation. The website serves as an informational portal linking to partner apartment rental sites and providing contact details for the business. The market position is local with a small business scale, targeting tourists and local customers interested in sports and lodging. Technically, the website is basic with static HTML, CSS, and JavaScript, lacking modern CMS or frameworks and showing poor mobile optimization and accessibility. Security posture is weak due to absence of HTTPS enforcement, security headers, and privacy policies, exposing the site to potential risks and compliance issues. Overall, the site is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

B

Cookie-Information

bachersport.com

43

The website www.bachersport.com currently serves primarily as a cookie consent information page with embedded cookie management for skirentalresorts.com widgets. The site lacks substantive business content, contact information, privacy policy, or terms of service pages, limiting its utility and trustworthiness. The WHOIS lookup failed to return any registration data, suggesting the domain may be unregistered, expired, or in a transitional state, which raises significant legitimacy concerns. Technically, the site uses basic HTML, CSS, and JavaScript with cookie consent mechanisms and tracking cookies from Google Analytics, Facebook, and Matomo. However, no advanced security headers or HTTPS status was provided, limiting the security posture assessment. Overall, the site exhibits minimal digital maturity and lacks critical compliance and business credibility elements.

S

Skischule Huber

skischule-huber.at

43

Skischule Huber is a small Austrian ski school business providing ski instruction services primarily targeting tourists and skiers in Austria. The website content analyzed is limited to a cookie information page, indicating compliance with GDPR through a detailed cookie consent mechanism. The business appears to operate locally with a focus on hospitality and tourism services. Technically, the website uses standard web technologies and likely runs on TYPO3 CMS, with tracking implemented via Matomo and Google Analytics, respecting user consent preferences. Security posture is moderate with room for improvement, particularly in implementing security headers and providing explicit security policies. No contact information or terms of service were found, which limits business credibility and user trust. Overall, the website is functional but basic in content and technical sophistication.

H

Hunde- & Katzenhotel Rathjen

hundeundkatzenhotel-rathjen.de

60

Hunde- & Katzenhotel Rathjen is a small local hospitality business specializing in dog and cat boarding services in Oyten, Germany. The website presents a professional and relevant description of their pet hotel services, targeting pet owners seeking safe and enjoyable boarding for their animals. The business operates on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial, with no privacy policy or terms of service found. Overall, the website is trustworthy and suitable for its business purpose but could improve in compliance and security transparency.

Hundeschule ALLERHUNDE is a professional dog training school established in 2005, serving the Landkreis Celle region in Germany. The business offers a range of services including individual and group training, puppy courses, behavioral consultations, and certification preparation such as the Sachkundenachweis and Hundeführerschein. The website reflects a small, regionally focused service provider with a consistent brand and clear communication channels including phone, email, and social media. Technically, the site uses standard web technologies like HTML5, CSS, JavaScript, jQuery, and Bootstrap, providing a moderate performance and basic mobile optimization. Security posture is moderate with no visible security headers or explicit HTTPS confirmation, and privacy compliance is partial due to the absence of cookie consent mechanisms. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

Budafok-Tétény Városfejlesztő Kft.

zold22.hu

45

The website zold22.hu serves as an official local government platform for Budapest's 22nd district, focusing on environmental initiatives and community engagement. It provides residents with news, events, and useful information related to green programs and local government activities. The site is positioned as a trusted community resource with clear contact information and consistent branding. Technically, the site is built on WordPress 6.8.1 with custom themes and scripts. It demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. The absence of advanced analytics or tracking scripts suggests a privacy-conscious approach, but the lack of a cookie consent mechanism is a compliance gap. From a security perspective, the site uses HTTPS and secure form inputs but lacks important security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's local government identity, supporting legitimacy. Overall, the site is safe, professional, and trustworthy with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing security headers, adding cookie consent, and publishing incident response information.

I

IT-Kommunal

hinweisportal.at

60

IT-Kommunal operates a Hinweisportal website tailored for the public administration sector in Austria, providing IT solutions to help organizations detect and address issues proactively. The website is built on the Wix platform, leveraging Wix Thunderbolt technology, and demonstrates a basic but consistent design and content quality suitable for a small business focused on government clients. The technical infrastructure is modern and mobile-optimized, though performance is moderate and accessibility features are basic. Security posture is adequate with HTTPS enabled and good SSL configuration, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Business credibility is moderate, supported by consistent WHOIS data and domain legitimacy, but contact information and trust signals are missing. Overall, the site is functional and safe but requires improvements in privacy, security policies, and contact transparency to enhance trust and compliance.

E

Einbock GmbH

einbock.com

51

Einbock GmbH is a German media company operating multiple specialized online portals focused on legal services, public relations, and expert directories. Their flagship sites include JuraForum.de, a legal portal with extensive lawyer search and forums; openPR.de, a press release distribution platform; and other niche portals serving professionals and businesses. The company has a solid market position with a history dating back to early 2000s and recognized awards, indicating a reputable presence in their sector. Technically, the website uses a straightforward stack with jQuery and Matomo analytics, emphasizing privacy-conscious tracking. The site is well-structured, mobile-optimized, and provides clear navigation and professional content. However, there is room for improvement in security headers and cookie consent mechanisms to enhance compliance and security posture. Security-wise, the site shows no immediate vulnerabilities or exposed sensitive data but lacks published security policies and incident response contacts. The missing WHOIS data for the domain is a notable concern, potentially impacting trust and domain legitimacy verification. Overall, the security posture is moderate but could benefit from enhanced transparency and technical controls. The overall risk is moderate with a recommendation to verify domain registration status, implement cookie consent for GDPR compliance, and strengthen HTTP security headers. These steps will improve trust, compliance, and resilience against potential threats.

D

de Jeugdbibliotheek

jeugdbibliotheek.nl

62

The website www.jeugdbibliotheek.nl serves as the official digital platform for the Dutch youth library service, targeting children and young adults aged 0-18 years. It offers a broad range of services including e-books, audiobooks, printed books, reading videos, magazines, and online learning resources. The site is well-branded, consistent, and provides clear navigation tailored to its audience. Technically, it is built on Adobe Experience Manager, uses modern web technologies, and integrates Matomo analytics for user tracking. The site is mobile optimized and accessible, with good SEO practices. Security-wise, the site enforces HTTPS and uses asynchronous script loading but lacks explicit security headers and published security policies. Privacy compliance is basic, with a cookie policy present but no active consent mechanism. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and privacy controls.

D

de online Bibliotheek

onlinebibliotheek.nl

67

The online Bibliotheek is a prominent Dutch digital library platform offering subscription-based access to e-books, audiobooks, and digital magazines. It targets a broad audience of readers and listeners in the Netherlands, providing 24/7 access through web and mobile applications. The platform is well-positioned as a leading national digital lending service with clear subscription models and a professional online presence. Technically, the website is built on a modern CMS likely Adobe Experience Manager, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site demonstrates high trustworthiness and professionalism.

The website www.miteinander-im-quartier.de is an official German government platform supporting the cross-departmental strategy 'Soziale Stadt - Nachbarschaften stärken, Miteinander im Quartier' under the Federal Ministry for Housing, Urban Development and Building. It provides comprehensive information about model programs, community projects, events, and resources aimed at strengthening neighborhoods and social cohesion. The site targets government officials, urban planners, social workers, and the general public interested in urban development. Technically, the website is built on TYPO3 CMS, uses modern JavaScript libraries including Modernizr, and integrates Matomo analytics for privacy-conscious user tracking. It is hosted on agenturserver infrastructure, with HTTPS enforced and a cookie consent mechanism implemented. The site demonstrates good mobile optimization, accessibility, and SEO practices. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security headers like Content-Security-Policy and does not publish a security policy or incident response contacts. No vulnerabilities or suspicious elements were detected. The WHOIS data aligns with the hosting and website content, indicating legitimacy. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to improve security posture and transparency.

S

Stadtbücherei St. Pankratius

buecherei-gescher.de

49

The Stadtbücherei St. Pankratius is a public library serving the community of Gescher, Germany, operated under the Catholic parish and supported by local government and cultural institutions. It offers a broad range of physical and digital media, including books, CDs, DVDs, games, and eMedia via the bibload.de portal. The library also organizes educational and cultural events, supports reading promotion projects, and provides various services such as guided tours and media lending. The website is professionally designed using TYPO3 CMS, with good navigation and mobile optimization, reflecting a mature digital presence for a small public institution. Security measures include HTTPS and email obfuscation, with cookie consent managed by Usercentrics, though some security headers and policies are absent. Overall, the site is trustworthy, accessible, and compliant with GDPR requirements.

U

United Internet AG

united-internet.de

69

United Internet AG is a leading European internet specialist operating a broad portfolio of internet access, cloud applications, email services, domain registration, and media brands. The company serves both consumer and business markets with approximately 29 million customer contracts and 39 million free accounts. Their market position is strong, supported by multiple well-known subsidiaries such as 1&1, GMX, WEB.DE, and IONOS. The website reflects a mature enterprise with comprehensive investor relations and corporate governance disclosures. Technically, the website is built on TYPO3 CMS, leveraging modern web standards including HTML5 video and responsive design. The site is well-optimized for mobile and accessibility, with good SEO practices and a moderate performance profile. Hosting appears to be managed internally or through trusted infrastructure, with no signs of performance bottlenecks or outdated technology. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism with opt-in for analytics, demonstrating GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance transparency and trust. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The domain WHOIS data aligns with the business claims, reinforcing legitimacy. Strategic recommendations include publishing dedicated security and incident response policies and enhancing security headers to further strengthen the security posture.

K

Kliniken an der Paar

klipa.de

62

Kliniken an der Paar operates as a regional healthcare provider in Bavaria, Germany, managing two hospitals: Krankenhaus Friedberg and Krankenhaus Aichach. The website serves as an informational portal for patients, visitors, and healthcare professionals, offering updates on hospital news, visitor regulations, and career opportunities. The business model focuses on providing hospital and emergency medical services within the local community. Technically, the website is built on Joomla CMS with Smart Slider 3 for dynamic content presentation. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Privacy compliance is supported by a privacy policy and cookie banner with opt-out options. Overall, the website is professional, trustworthy, and well-aligned with its healthcare mission.

STRATO GmbH is a well-established technology company specializing in domain registration, web hosting, email services, website building, cloud storage, and online marketing tools primarily serving the Dutch market. The company is recognized for its strong market position, evidenced by awards such as the MT1000 Best Hosting Company 2024 and certifications including ISO 27001. STRATO operates under the parent company Cronon GmbH and emphasizes climate-friendly hosting with data centers located exclusively in the EU. Technically, the website leverages modern technologies including the Strapi CMS, JavaScript frameworks, and integrates analytics and marketing tools such as Google Tag Manager, Mouseflow, and Kameleoon. The site is fast, mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, STRATO demonstrates a robust posture with enforced HTTPS, ISO 27001 certification, GDPR compliance, and a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the site could improve transparency by publishing a vulnerability disclosure policy and incident response contacts. Overall, STRATO presents a low-risk profile with strong business credibility, technical maturity, and compliance adherence. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen trust and resilience.

W

Werbeagentur Falkner Clemens

werbeagentur-falkner.at

44

Werbeagentur Falkner Clemens is a small, regionally focused web agency based in Landeck, Austria, specializing in accessible and barrier-free web design compliant with WCAG and BFSG standards. The company offers a comprehensive suite of services including web design, hosting, content creation, graphic design, and print media, targeting hotels, apartments, and businesses primarily in the Tirol region. The website demonstrates a professional and consistent brand presence with a clear portfolio showcasing client references. Technically, the site is built on TYPO3 CMS with modern web technologies and emphasizes accessibility and responsive design. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some improvements such as security headers and incident response policies are recommended. Privacy compliance is partial due to the absence of a cookie consent mechanism. Overall, the website is trustworthy, well-structured, and serves its business purpose effectively.