Security Directory

SWISS KRONO Tec AG operates as a global manufacturer specializing in wood-based panel products, serving architects, builders, distributors, and end customers in the construction and interior design sectors. The company maintains a strong market position with a comprehensive product portfolio and digital tools such as product configurators and sample ordering. The website reflects a mature digital presence with a modern CMS (TYPO3), integrated analytics, and marketing technologies. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although no explicit security policy or incident response information is published. WHOIS data is unavailable, which limits domain trust verification, but the website content and structured data support legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations.

Sennheiser is a globally recognized leader in the audio technology industry, specializing in the design and manufacture of high-quality headphones, microphones, and wireless systems. With a legacy spanning over 75 years, the company serves a diverse audience including professional audio users, consumers, and businesses requiring advanced audio solutions. The website reflects a mature digital presence with comprehensive product information, support resources, and a global dealer network. Technically, the site leverages modern frameworks such as Next.js and React, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and vulnerability disclosure mechanisms are not publicly detailed. Overall, the site demonstrates high professionalism and trustworthiness, supporting Sennheiser's market position as a premium audio brand.

R

Riese & Müller GmbH

r-m.de

65

Riese & Müller GmbH operates a premium e-bike and cargo bike brand with a strong global presence and a network of over 1,400 dealers. The company focuses on high-quality, innovative electric bicycles designed for various use cases including trekking, city, and cargo transport. Their website reflects a mature digital infrastructure with modern technologies such as Google Analytics 4, CookieFirst consent management, and Mollie payment integration, hosted behind Cloudflare DNS services. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Security posture is solid with HTTPS enforcement and secure form handling, though explicit security headers and incident response information are absent. Overall, the website is professional, trustworthy, and user-friendly, targeting consumers and business customers interested in premium e-bikes.

H

HORNBACH Baumarkt AG

hornbach.de

69

HORNBACH Baumarkt AG operates a leading home improvement retail and e-commerce platform primarily serving the German market and other European countries. The website offers a comprehensive product catalog exceeding 500,000 items, project planning resources, and professional services, positioning itself as a top-tier DIY and construction materials provider. The company is well-established with a long history dating back to 1877 and operates under the HORNBACH Holding AG & Co. KGaA umbrella. Technically, the website employs modern web technologies including Stencil.js for web components, Usercentrics for consent management, and Dynatrace for real user monitoring, indicating a mature digital infrastructure. The site is optimized for performance, mobile responsiveness, and accessibility, with strong SEO practices and structured data enhancing discoverability. Security posture is robust with enforced HTTPS, comprehensive security headers, and GDPR-compliant consent mechanisms. However, the absence of a dedicated security policy or incident response contact page suggests room for improvement in transparency and readiness. No vulnerabilities or suspicious activities were detected. Overall, the website reflects a professional, trustworthy, and secure online presence suitable for an enterprise-level retail business. Strategic enhancements in security communication and incident response disclosures would further strengthen stakeholder confidence.

F

Fiera Bolzano Spa

fierabolzano.it

55

Fiera Bolzano Spa is a well-established exhibition center located in South Tyrol, Italy, with a history dating back to 1948. The company organizes 16 trade shows annually and offers extensive exhibition space along with coworking, studio, hotel, and gastronomy services. Positioned as a regional leader in the hospitality and events industry, Fiera Bolzano targets exhibitors, visitors, and event organizers, emphasizing sustainability and quality service. The website reflects a professional and consistent brand image with comprehensive content and multilingual support. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The presence of Cloudflare Turnstile captcha indicates proactive bot protection. The site is mobile-optimized, accessible, and SEO-friendly, though no explicit CMS was detected. Hosting appears to be behind Cloudflare, enhancing performance and security. Security posture is strong with HTTPS enforced, CSRF tokens in forms, and no exposed sensitive data. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly observed and should be implemented for enhanced protection. Privacy compliance is robust, with clear privacy and cookie policies, GDPR adherence, and consent mechanisms in place. Overall, the website demonstrates high business credibility, technical maturity, and security awareness. No critical vulnerabilities or suspicious activities were detected. Strategic recommendations include enhancing security headers, publishing a formal security policy, and continuous monitoring of third-party scripts to maintain security and compliance.

W

Würth Italia Srl

wuerth.it

70

Würth Italia Srl operates a professional B2B e-commerce platform specializing in the sale of fastening products, tools, and safety equipment primarily targeting professionals with VAT numbers in Italy. The company is a leader in its market segment with a broad product catalog exceeding 125,000 items. The website demonstrates a mature digital infrastructure leveraging modern technologies such as Intershop e-commerce platform, RequireJS, jQuery, and Bootstrap, complemented by extensive marketing and analytics integrations including Google Tag Manager, Piwik PRO, and OneSignal. Security measures are robust, featuring HTTPS and a comprehensive Content-Security-Policy header, although explicit privacy and cookie policies are not readily found on the main page. Overall, the site presents a professional and trustworthy digital presence aligned with the company's longstanding market position.

T

The International Association of Music Centres

iamic.net

9

The International Association of Music Centres (IAMIC) operates as a global network of music organizations dedicated to promoting and sharing information about the music of various countries and regions. The organization facilitates collaboration and networking among its 33 member organizations worldwide, hosting conferences and providing resources to enhance access and appreciation of music internationally. The website is professionally designed using Squarespace, featuring clear navigation and mobile optimization, though it lacks explicit privacy and cookie policies. Security posture is strong with HTTPS and HSTS enabled, but additional security headers and compliance documentation are absent. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and organizational information suggest a legitimate non-profit entity. Strategic recommendations include improving compliance with privacy regulations, enhancing security headers, and verifying domain registration to strengthen trust.

The website www.humanitas24.eu is currently inaccessible beyond a Cloudflare Turnstile security challenge page, which blocks automated access and requires human verification. Due to this, no actual website content, business information, or contact details are available for analysis. The domain WHOIS data is unavailable or protected, providing no insight into the registrar, registration dates, or registrant details. The site appears to rely on Cloudflare for security and performance, but the lack of accessible content and metadata limits any meaningful assessment of business operations or digital maturity. Security posture is difficult to evaluate fully, but the presence of a Cloudflare WAF challenge indicates some level of protection. However, the absence of visible security headers or policies reduces trust. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the blocked state and lack of information.

SOPHIA is a small social cooperative founded in 2013, focused on social innovation research and project development in South Tyrol, Italy. It operates as a non-profit entity and collaborates with academic institutions and international partners through Erasmus+ projects and conferences. The website presents a professional and consistent brand image with relevant content targeting stakeholders interested in social autonomy and innovation. Technically, the site is built on the Webnode CMS platform, hosted via Amazon Cloudfront CDN, and uses modern web technologies including HTTPS and Google Tag Manager for analytics. Security posture is adequate with HTTPS enforced but lacks visible security headers and formal privacy or cookie policies. No contact emails or phone numbers are explicitly provided on the homepage, which may impact user trust and compliance. WHOIS data is unavailable due to EURid privacy policies, but the domain and website content appear legitimate and consistent with the business claims. Overall, the site is functional and professional but could improve privacy compliance and security best practices.

L

lvh.apa

lvh.it

44

The website lvh.it represents lvh.apa, the largest economic association for craftsmen and service providers in South Tyrol, Italy, with over 8,000 members. It serves as an active interest representation body for the local craft industry. The site is built on TYPO3 CMS, indicating a mature and professional technical infrastructure. The design is consistent and mobile-optimized, providing a good user experience and clear navigation. However, the site lacks explicit privacy and cookie policies, as well as security and incident response disclosures, which are critical for compliance and trust in today's regulatory environment. Social media integration is present, enhancing outreach and engagement. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

H

Hoteliers- und Gastwirteverband Südtirol (HGV)

hgv.it

52

The Hoteliers- und Gastwirteverband Südtirol (HGV) is a regional association serving the hospitality and gastronomy sector in South Tyrol, Italy. The website presents itself as a professional partner offering consulting and services tailored to local hoteliers and restaurateurs. The digital presence is built on TYPO3 CMS, indicating a mature technical infrastructure with integrations such as Google Tag Manager and Usercentrics for consent management. The site is well-structured, mobile-optimized, and provides a good user experience, although explicit privacy and terms of service documents were not detected in the provided content. Security measures include HTTPS and email obfuscation, but additional security headers and policies could enhance the security posture. Overall, the website reflects a credible and established business with a moderate to good security and privacy compliance level.

H

Handels- und Dienstleistungsverband Südtirol

hds-bz.it

62

The Handels- und Dienstleistungsverband Südtirol (hds) is a regional trade and service association based in South Tyrol, Italy, affiliated with the national Dachverband Confcommercio. The organization provides professional consulting, service offerings, training, and advocacy to businesses in the retail, hospitality, and service sectors. The website reflects a mature digital presence with a membership login area, news updates, and detailed information about member benefits and services. Technically, the site uses modern JavaScript libraries and tracking tools, including Usercentrics for GDPR-compliant cookie consent, Google Tag Manager, Hotjar, and Visual Website Optimizer, indicating a focus on user experience and analytics. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is supported by cookie consent mechanisms, but explicit privacy and terms of service pages were not found in the provided content. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

B

Börsenmedien AG

eurams.de

59

€uro am Sonntag is a well-established German financial weekly newspaper and digital media platform operated by Börsenmedien AG, founded in 1998. The website provides comprehensive financial news, stock market updates, investment advice, and subscription-based content targeting German-speaking investors and finance professionals. The platform maintains a consistent brand presence with professional design and relevant content focused on finance and economics. Technically, the site uses modern web technologies including responsive images and privacy management scripts to comply with GDPR. The security posture is solid with HTTPS enforced and consent mechanisms in place, although explicit security headers and incident response policies are not published. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving a medium-sized business in the finance and media sectors.

B

BÖRSE ONLINE

boerse-online.de

61

BÖRSE ONLINE is a well-established German financial media company providing weekly investment news, market analysis, and trading strategies since 1987. The website serves a broad audience of investors and financial enthusiasts with comprehensive market data, news articles, and subscription-based content. Technically, the site employs modern JavaScript libraries, ad networks, and privacy management tools, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS and privacy compliance mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting its position as a leading financial news source in Germany.

B

Börsenmedien AG

boersenmedien.com

62

Börsenmedien AG is a leading German media company specializing in financial and economic publishing. Established in 1989, it operates multiple well-known brands such as DER AKTIONÄR, BÖRSE ONLINE, €uro am Sonntag, and €uro, offering magazines, newsletters, reports, books, and a video channel targeting private investors in the German-speaking market. The company maintains a strong market position as one of the largest economic publishers in Germany with a comprehensive portfolio and a large team of financial editors and staff across multiple locations.

O

OSTSEEgutachter.de - Sachverständigenbüro Hartmut Häusler

ostseegutachter.de

60

OSTSEEgutachter.de, operated by Sachverständigenbüro Hartmut Häusler, is a specialized real estate appraisal and consulting firm based in Rostock, Germany. The company offers a broad range of services including property valuation, mold inspection, building biology, thermography, and measurement services. With multiple certifications such as DIN EN ISO/IEC 17024, DEKRA, and HypZert, the business positions itself as a trusted expert in the Mecklenburg-Vorpommern region and surrounding federal states. The website reflects a professional and well-structured digital presence, targeting private clients, banks, and courts requiring certified appraisal services.

Volksbank eG – Die Gestalterbank is a regional cooperative bank in Germany focused on providing local banking and financial services. The website presents a professional and consistent brand image targeting general customers seeking retail banking solutions. The technical infrastructure leverages modern JavaScript frameworks such as Angular Material, with integrated marketing and analytics tools including Adobe Launch and Dynatrace Ruxit. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is solid with HTTPS enforced and monitoring scripts in place, but lacks explicit security headers and published security policies. Privacy compliance is partially addressed with a cookie consent mechanism but no visible privacy policy or terms of service in the provided content. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

B

Bausparkasse Mainz AG

bkm.de

64

Bausparkasse Mainz AG operates as a financial services provider specializing in home savings contracts, loans, and real estate financing primarily targeting consumers in Germany. The company maintains a strong market position supported by high customer satisfaction ratings and multiple industry awards. The website is professionally designed, mobile-optimized, and built on Concrete CMS, reflecting a moderate to advanced digital maturity. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site demonstrates high business credibility and trustworthiness.

Schwäbisch Hall is a well-established German financial services company specializing in home savings contracts (Bausparvertrag) and real estate financing (Baufinanzierung). With a history dating back to 1921, it holds a leading market position in Germany, offering comprehensive services for buying, building, and modernizing homes. The website reflects a professional and user-friendly digital presence, targeting private individuals seeking reliable home financing solutions. Technically, the site leverages modern technologies including Adobe Experience Manager CMS, Google Tag Manager, and Microsoft Customer Journey Analytics, ensuring good performance and mobile optimization. Security measures are robust, with HTTPS enforced and multiple security headers present, although explicit security policy and incident response pages are not found. Overall, the site demonstrates strong privacy compliance with GDPR-aligned policies and consent mechanisms. The domain WHOIS data aligns with the company's identity and history, supporting legitimacy. Strategic recommendations include publishing a dedicated security policy and vulnerability disclosure to enhance transparency and trust.

L

Landessparkasse zu Oldenburg

lzo.com

10

Landessparkasse zu Oldenburg (LzO) is a well-established regional savings bank serving private and corporate customers primarily in the Oldenburg region of Germany. Founded in 1786, it offers a broad range of financial services including checking accounts, loans, insurance, savings and investment products, and digital banking solutions. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service information. Technically, the site is built on modern web technologies and likely uses Adobe Experience Manager as its CMS, supporting good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. The lack of WHOIS data for the domain is a notable anomaly for a financial institution, warranting further verification. Overall, the site demonstrates high professionalism and trustworthiness, supported by multiple industry awards and transparent contact channels.

Allianz Deutschland AG is a leading insurance and financial services provider in Germany with over 125 years of history and strong financial stability. The company offers a broad range of services including insurance, pension plans, and asset management targeting both private and corporate customers. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site leverages modern frameworks such as Adobe Experience Manager, integrates robust cookie consent management via OneTrust, and employs OAuth2 for secure user authentication. Security posture is strong with HTTPS enforcement, appropriate security headers, and no visible vulnerabilities. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and technical maturity.

W

Wüstenrot Bausparkasse

wuestenrot.de

67

Wüstenrot Bausparkasse is a well-established German financial institution specializing in home savings and financing products such as Wohnsparen and Wohndarlehen. The website targets individuals interested in purchasing, building, or modernizing real estate. The company positions itself as a trusted provider offering tailored financial solutions. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and a consent management platform (Usercentrics) to comply with GDPR requirements. The site is hosted on Ecotel nameservers and uses HTTPS with good SSL configuration. Security posture is solid but could be improved by adding explicit security headers and publishing security policies. No blocking or WAF challenges were detected, allowing full content access. However, no explicit privacy policy or terms of service were found in the provided content, which is a compliance gap. Contact information such as emails or phone numbers is not directly visible in the HTML content. Overall, the website is professional, secure, and trustworthy with room for improvement in transparency and security documentation.

F

Flazio

flazio.org

72

Flazio is a technology company providing an easy-to-use website builder platform targeting individuals and small businesses seeking to create websites without coding. The platform offers multilingual support and emphasizes fast, template-based website creation with SEO optimization features. The website is professionally designed with good content quality and consistent branding, positioning Flazio as a competitive player in the online website creation market. Technically, the site employs modern JavaScript libraries, multiple analytics and marketing tools, and push notification services, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though the absence of security headers and explicit privacy policies suggests room for improvement. The lack of WHOIS data reduces transparency and trust slightly but does not negate the professional appearance and functionality of the site. Overall, Flazio presents a moderate risk profile with recommendations to enhance privacy compliance and security best practices.

Provence en Scène is a cultural initiative managed by the Conseil Départemental des Bouches-du-Rhône, aimed at fostering collaboration between local communes and artists by providing a curated repertoire of performances and financial support. The website serves as an informational and operational platform for producers and municipalities, offering access to catalogs, agendas, and registration portals. Technically, the site employs a custom TAO framework with standard web technologies and maintains a moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced, but lacks visible advanced security headers and explicit incident response information. The absence of WHOIS data reduces domain trustworthiness, though the website content and structure indicate a legitimate governmental service. Overall, the site is professional, content-rich, and trustworthy for its intended audience.

Eventsworldwide.com is an informational website focused on providing schedules and news about major cultural, economic, and sports events worldwide, with a particular emphasis on events in 2025. The site has been online since 1998 according to its content, targeting a general audience interested in global events. The business model is primarily informational, relying on advertising revenue through Google Adsense and analytics via Statcounter. Technically, the site uses basic HTML5, CSS, and JavaScript with Google Custom Search integration. The design and content quality are basic, with moderate mobile optimization and accessibility. Security posture is weak, lacking HTTPS enforcement and security headers, and no privacy or cookie policies are present, which raises compliance concerns. WHOIS data is missing, indicating potential domain registration issues that affect trustworthiness. Overall, the site is functional but requires significant improvements in security, privacy compliance, and business transparency to enhance credibility and user trust.

SAP SE is a global leader in enterprise software solutions, specializing in spend management and procurement software among other business applications. The website presents a comprehensive portfolio of spend management solutions designed to automate and optimize procurement processes for enterprises. The company targets large enterprises and businesses seeking to improve spend control, savings, and operational resilience. SAP's market position is strong, supported by its subsidiaries such as SAP Ariba, SAP Fieldglass, and SAP Concur, which complement its spend management offerings. Technically, the website is built on modern frameworks including SAP UI5 and Adobe Experience Manager, ensuring a fast, accessible, and mobile-optimized user experience. Security posture is robust with HTTPS enforcement, security headers, and privacy compliance mechanisms including GDPR-aligned privacy and cookie policies. No critical vulnerabilities or suspicious content were detected. Overall, the website reflects a mature digital presence consistent with SAP's enterprise stature, though WHOIS data is unavailable likely due to registry policies. Strategic recommendations include publishing explicit incident response contacts and vulnerability disclosure information to enhance transparency and trust.

U

Unis C - Picto Access

pictoaccess.dev

63

Pictoaccess.dev is a French-language website operated by the entity 'Unis C - Picto Access'. The site appears to serve an informational purpose, presenting what the website is about. The business is small-sized and operates in the technology sector, targeting a general audience. The website uses modern JavaScript frameworks such as Vue.js and Vuetify, indicating a moderate level of technical maturity. It incorporates Google Analytics and Google Tag Manager for user tracking and analytics. However, the site lacks critical privacy and cookie policies, and no contact information or security policies are provided, which limits its compliance and trustworthiness. Security headers and advanced security practices are not evident, suggesting room for improvement in security posture. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for general audiences.

Ä

Ärzte ohne Grenzen

aerzte-ohne-grenzen.at

69

Ärzte ohne Grenzen Österreich is a well-established humanitarian medical aid organization operating globally with a strong presence in Austria. The website reflects a professional, transparent, and donor-focused approach, emphasizing 100% private donation funding and extensive medical emergency services in over 70 countries. The technical infrastructure is modern, based on Drupal 10, with good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response details could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR and privacy standards.

The website www.onisep.fr is currently inaccessible due to a Cloudflare Turnstile security verification challenge, preventing access to its actual content. ONISEP is known as a French governmental educational portal, but the lack of accessible content limits detailed business and security analysis. The site uses Cloudflare for protection, indicating a focus on security, but no visible security headers or policies can be confirmed. The domain WHOIS data is not publicly available, consistent with privacy protection often used by government entities. Overall, the site appears legitimate but is currently blocked for analysis.

LeCambresien.tv is a local media outlet providing a television magazine focused on the city of Cambrai, France. The website primarily distributes video content through embedded YouTube videos and maintains a presence on Facebook. The business operates as a small media entity founded around 2012, delivering local news and information to residents and interested viewers. The content is basic but relevant to its target audience, with a straightforward web presence and moderate branding consistency. Technically, the website uses standard HTML, CSS, and JavaScript with integrations for Facebook SDK, Google Analytics, and AddThis social sharing tools. Hosting is provided by OVH sas, a reputable provider. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS usage. SEO and accessibility are basic, with legacy charset encoding and minimal meta tags. From a security perspective, the site uses HTTPS but lacks DNSSEC and important security headers, which reduces its security posture. No privacy or cookie policies are present, indicating non-compliance with GDPR and related regulations. No contact information or incident response channels are provided, limiting transparency and trust. The domain registration is consistent and stable, with protective domain status flags and an appropriate age for the business. Overall, the website is functional for its purpose but requires improvements in privacy compliance, security hardening, and user trust elements to enhance its digital maturity and reduce risk exposure.

D

Decitre

decitrepro.fr

54

Decitre Pro operates as a specialized professional platform for book and media acquisitions, serving libraries, educational institutions, and business clients primarily in France. The company leverages a large catalog and expert booksellers to provide tailored acquisition services. The website is built on the Magento platform, integrating standard marketing and analytics tools such as Google Analytics, Google Tag Manager, and Optimizely. The site demonstrates good content quality and professional presentation, with clear navigation and relevant business information. Security posture is moderate with HTTPS implied but lacking explicit security headers and incident response documentation. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. The absence of WHOIS data limits domain trust assessment, but the website's professional nature supports legitimacy.

V

VI.BE

vi.be

66

VI.BE is a well-established Belgian support platform for artists and the music sector, serving a broad audience from beginners to professionals, locally and internationally. The website reflects a mature digital presence with comprehensive content including news, events, job listings, and project promotion. The organization is positioned as a key player in the Belgian music industry, supported by reputable partners and sponsors. Technically, the site uses modern web technologies including Bolt CMS, FontAwesome, and CookieFirst for consent management, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are absent. Privacy compliance is well addressed with clear cookie consent and a privacy policy in Dutch. Overall, the site demonstrates high professionalism and trustworthiness, suitable for its target audience and business model.

D

Dutch Music Export

dutchmusicexport.nl

52

Dutch Music Export is a Dutch organization dedicated to promoting Dutch music internationally by supporting artists and music professionals in expanding their global reach. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies such as JavaScript, CSS, and HTML5. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enforced and some script hardening, but lacks security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Business credibility is moderate with consistent branding but no explicit contact or trust indicators. Overall, the site is functional and professional but would benefit from enhanced privacy, security, and contact transparency.

O

obshtini.bg

obshtini.bg

52

The website obshtini.bg serves as a centralized portal providing access to municipal normative acts for various Bulgarian municipalities. It primarily functions as a gateway linking to municipality-specific subdomains such as Sofia, Varna, Plovdiv, and others. The site targets residents and officials seeking local government legal documents. Technically, the site is built using Angular 9 with PrimeNG components, indicating a modern frontend framework, though some legacy scripts like jQuery are commented out. The site demonstrates basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security posture is moderate; HTTPS is assumed but no security headers were detected in the provided data, and no privacy or cookie policies are present, which impacts compliance. The WHOIS data is privacy protected due to GDPR, typical for domains related to government or public services in the EU, and the domain appears legitimate and active. Overall, the site is functional and safe but would benefit from enhanced security headers, privacy compliance, and contact transparency to improve trust and compliance.

Mercedes-Benz Österreich GmbH operates the official Mercedes-Benz website for Austria, offering a comprehensive portfolio of luxury vehicles including sedans, SUVs, coupes, and electric models. The company also provides financing, leasing, insurance, and digital connectivity services under the Mercedes me brand. The website reflects a strong market position as a leading premium automotive brand with a clear focus on customer engagement and digital experience. Technically, the site leverages modern frameworks such as Vue.js and is built on Adobe Experience Manager, ensuring a performant and responsive user experience. Security posture is robust with HTTPS, consent management, and monitoring tools like Datadog RUM, although some security headers could be explicitly verified. Privacy compliance is thorough, with detailed GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with corporate standards.

Mercedes-Benz Portugal, S.A. operates as the official Portuguese website and digital presence for the premium automotive brand Mercedes-Benz. The company offers a comprehensive range of services including vehicle sales, Mercedes me connectivity, financial services, leasing, mobility, renting, and after-sales assistance. The website reflects a strong market position in Portugal as a premium automotive provider, supported by detailed legal, privacy, and compliance disclosures. The parent company is Mercedes-Benz AG, a globally recognized automotive manufacturer headquartered in Germany. The site targets a general audience interested in luxury and performance vehicles, with a business model focused on direct sales and digital customer engagement. Technically, the website employs modern web technologies such as Vue.js 3, Google Tag Manager, Datadog RUM for real user monitoring, and is built on the Adobe Experience Manager CMS platform. The site is well optimized for performance and mobile responsiveness, with good SEO and basic accessibility compliance. Security measures include HTTPS enforcement, content security policies, and cookie consent mechanisms, reflecting a mature security posture. However, there is room for improvement in accessibility and explicit incident response disclosures. Overall, the security posture is strong with no detected vulnerabilities or suspicious content. The website complies with GDPR and provides comprehensive privacy policies and data protection officer contact information. The domain registration details are consistent with the brand's global presence, enhancing trustworthiness. Strategic recommendations include enhancing accessibility compliance, publishing vulnerability disclosure policies, and maintaining continuous security audits. This website represents a professional, secure, and compliant digital asset for Mercedes-Benz Portugal, supporting its business objectives and customer engagement effectively.

Mercedes-Benz South Africa Limited operates a comprehensive and professionally maintained website offering luxury vehicles, financing, leasing, and after-sales services tailored to the South African market. The company is a subsidiary of Mercedes-Benz AG, with a strong brand presence and detailed legal and privacy disclosures. The website employs modern web technologies including Vue.js and Adobe Experience Manager, ensuring a responsive and accessible user experience. Security practices include HTTPS, consent management, and monitoring via Datadog RUM, though explicit security headers and incident response policies are not clearly published. WHOIS data is unavailable, which is a minor concern but does not detract from the overall legitimacy and professionalism of the site.

M

Mercedes-Benz Canada

mercedes-benz.ca

73

Mercedes-Benz Canada operates a comprehensive and professionally designed website focused on luxury automotive products including sedans, SUVs, coupes, and electric vehicles. The site targets Canadian luxury vehicle buyers and supports the brand's premium market position with extensive vehicle model information, dealer locator services, and owner support. The technical infrastructure leverages Adobe Experience Manager CMS and Adobe Experience Cloud analytics, indicating a mature digital presence. Security posture is strong with HTTPS enforcement, security headers, and consent management for cookies, though explicit security policies and incident response information are not publicly detailed. Overall, the website reflects a high level of professionalism and trustworthiness consistent with a global luxury automotive brand.

A

AH Lasereinsatztechnik GmbH

ah-laser.de

57

AH Lasereinsatztechnik GmbH is a German manufacturing company specializing in advanced laser processing technologies including 2D and 3D laser cutting, water jet cutting, CNC bending, and welding. Founded in 1991, the company operates from Hardthausen am Kocher and serves industrial clients requiring precision manufacturing and integrated logistics. The website reflects a mature business with a broad service portfolio and a strong partner network. Technically, the site is built on the Neos CMS platform using modern JavaScript libraries and frameworks, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

G

Graz Tourismus

graztourismus.at

72

Graz Tourismus operates as the official tourism board for the city of Graz, Austria, providing comprehensive information and booking services for accommodation, sightseeing, and events. The website targets tourists and visitors interested in exploring Graz, positioning itself as a trusted source for travel planning in the region. The business model focuses on tourism promotion and visitor engagement, leveraging digital channels to enhance the city's attractiveness. Technically, the website employs modern web technologies including Bootstrap 5 for responsive design, Google Tag Manager for analytics, and Cookiebot for GDPR-compliant cookie management. The presence of Pimcore personalization scripts suggests a mature digital infrastructure aimed at delivering tailored user experiences. The site demonstrates good performance, mobile optimization, and accessibility standards. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers. Cookie consent mechanisms are in place, and privacy policies are comprehensive and GDPR compliant. However, there is no explicit security policy or incident response contact published, which could be improved to enhance transparency and readiness. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. The risk profile is low, with no detected vulnerabilities or suspicious activities. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, and considering a security.txt file to facilitate vulnerability disclosures.

Gemdat OÖ is a well-established IT service provider specializing in software and solutions for municipalities and public sector organizations in Upper Austria. With over 40 years of experience, the company holds a leading market position regionally, offering a broad portfolio including financial management, document management, personnel accounting, and IT security services. The website reflects a mature digital presence with modern technologies and a clear focus on customer needs. Security posture is strong, with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities. Privacy compliance is well addressed, including GDPR-aligned policies and consent banners. Overall, Gemdat OÖ presents a trustworthy and professional image suitable for its target audience.

The website ecmaps.de is an interactive regional map platform developed by hubermedia GmbH, focusing on tourism and local points of interest in Germany. It provides users with interactive maps, routing options, and detailed information about various categories such as tours, gastronomy, events, and accommodations. The platform integrates recognized mapping technologies like Leaflet and Google Maps API and leverages external services such as TrustYou for ratings. The site is primarily targeted at general audiences interested in regional tourism and outdoor activities. Technically, the site uses a mix of older JavaScript libraries and custom frameworks, with moderate performance and basic mobile optimization. Security-wise, the site enforces HTTPS but lacks modern security headers and uses outdated libraries, which could pose risks. Privacy compliance is partially addressed with a privacy policy linked externally, but no cookie consent mechanism is present. Overall, the site is functional and moderately professional but could benefit from technical and security enhancements.

D

destination.one

destination.one

57

destination.one is a German-based digital platform specializing in destination management for the tourism and hospitality sectors. The platform offers an all-in-one solution for guest information, booking integration, and content management, targeting destination managers and tourism organizations. The website is built on TYPO3 CMS, indicating a mature and flexible technical infrastructure. The site is well-optimized for mobile devices and includes GDPR-compliant cookie consent mechanisms, reflecting a good level of digital maturity. Security posture is strong with HTTPS enforcement and standard security headers, though there is room for improvement in incident response transparency and vulnerability disclosure. Overall, the website presents a professional and trustworthy digital presence suitable for its niche market.

I

Idego Group

idego.pl

11

Idego Group is a medium-sized technology company specializing in AI and data-driven business solutions. Founded in 2013, it serves multiple sectors including fintech, healthcare, e-commerce, and enterprise data management. The company offers consulting, software, platforms, and tailored AI solutions designed to improve operational efficiency and innovation for its clients. The website reflects a professional and consistent brand image with strong trust indicators such as client logos and testimonials. Technically, the site uses modern web technologies including Bootstrap and Cloudflare DNS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain protection flags, though DNSSEC is not enabled and security headers are not evident. Privacy compliance is supported by a comprehensive privacy policy and whistleblower policy, but lacks a cookie consent mechanism. Overall, the website is well-designed, user-friendly, and trustworthy, with no signs of blocking or WAF interference.

SRG SSR is the Swiss public broadcasting organization providing comprehensive media services including radio, television, and online streaming across multiple languages. It holds a leading market position in Switzerland's media landscape, supported by public funding through media license fees. The website reflects a professional and consistent brand identity with a focus on culture, sport, education, and democracy. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes consent management via Usercentrics, ensuring GDPR compliance. Security posture is strong with HTTPS and anonymized analytics, though explicit security policies and incident response details are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and serves a broad Swiss audience effectively.

S

Swiss Life

swisslife.ch

64

Swiss Life is a well-established financial services company based in Switzerland, with over 160 years of experience providing financial security, insurance, and pension solutions to individuals. The website targets individuals seeking self-determined financial security and offers a professional and consistent brand experience. The company operates in the finance sector and is positioned as a reputable enterprise with a strong market presence. The website is built on Adobe Experience Manager CMS and incorporates modern web technologies including Adobe Helix RUM for performance monitoring and OneTrust for cookie consent management. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Security posture is solid with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and published security policies. No privacy policy or terms of service were found in the provided content, which impacts privacy compliance scoring. The domain registration data aligns well with the business claims, indicating high legitimacy and trustworthiness. Overall, the website is professional, secure, and credible, but could improve transparency around privacy and security policies.

O

OBI Italia

obi-italia.it

68

OBI Italia is a prominent retail and e-commerce company specializing in DIY, home improvement, and gardening products targeted at the Italian market. The website offers a comprehensive product catalog, promotions, and services such as home delivery and equipment rental, positioning itself as a market leader in Italy. The digital infrastructure is modern, leveraging Vue.js and various analytics and marketing tools, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response details are not publicly disclosed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable platform for consumers.

A

Adler Historic Guesthouse

adlerbrixen.com

53

Adler Historic Guesthouse is a hospitality business located in Brixen, Italy, offering guesthouse accommodation services. The website is professionally designed using TYPO3 CMS and modern web technologies, providing a good user experience with mobile optimization and clear navigation. The business has a positive market position supported by strong customer ratings and active social media presence. However, the domain WHOIS data is missing or unavailable, which raises concerns about registration transparency. Security posture is generally good with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from improved compliance and transparency.

E

ELLECOSTA METALL GMBH

ellecosta.it

11

ELLECOSTA METALL GMBH is a family-owned metal construction company based in Brixen, South Tyrol, Italy, with a history dating back to 1957. The company specializes in industrial metalwork, artistic metal creations, and grave-related metal products, serving architects, planners, artists, and private customers. Their market position is that of a trusted regional manufacturer known for combining traditional craftsmanship with modern technology. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, the site uses modern web technologies including Google reCAPTCHA for form security and Iubenda for cookie compliance, running on a CMS likely to be Redaxo. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is compliant with GDPR and provides comprehensive contact and business information, enhancing trustworthiness.

Vertical-Life operates a specialized digital platform focused on delivering real-time competition results for climbing events. Their service supports multiple climbing disciplines and competition formats, offering features such as seamless registration, judging interfaces, participant messaging, and series rankings. The platform targets climbing event organizers, judges, and athletes, positioning itself as a niche leader in climbing competition technology. Technically, the website is built with modern JavaScript frameworks (likely Vue.js), integrates Google services for analytics and advertising, and employs cookie consent mechanisms indicating GDPR awareness. Security posture is strong with HTTPS, security headers, and bot protection via reCAPTCHA, though explicit security policies and incident response contacts are absent. Overall, the site is professional, well-designed, and trustworthy, with minor gaps in privacy documentation and incident response readiness.