Security Directory

Ö

Österreichisches Rotes Kreuz Landesverband Oberösterreich

missionhumanity.at

49

MissionHumanity is a social engagement platform operated by the Austrian Red Cross Upper Austria branch, focusing on youth and community-driven social projects since 2020. The website serves as an information hub, project submission portal, and news outlet to foster community participation and social responsibility. It maintains a strong regional presence with partnerships in education and corporate sectors. Technically, the site uses modern web technologies including responsive design, JavaScript libraries like Owl Carousel, and privacy-focused Matomo analytics. Security posture is solid with HTTPS and basic security practices, though some security headers could be enhanced. Privacy compliance is well addressed with clear cookie consent and a GDPR-aligned privacy policy. Contact information is transparent and professional, reinforcing trust. Overall, the site is well-positioned as a credible non-profit platform with good digital maturity and community impact.

M

museom service gmbh

museom.at

52

Museom service gmbh is a specialized Austrian company founded in 2012, offering consulting, exhibition construction, and art handling services primarily for museums and art institutions. The company leverages decades of industry experience and maintains strong references with notable museums such as the Wien Museum and Jüdisches Museum Wien. Their website reflects a professional and focused business presence with clear contact information and project showcases. Technically, the website is built on standard web technologies with a custom CMS, is mobile-optimized, and uses Matomo analytics for privacy-conscious tracking. Security posture is solid with HTTPS enforced, though improvements in security headers and published policies are recommended. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

W

Weinbau Mayer

weinbau-mayer.at

55

Weinbau Mayer is a small, family-owned winery and Heuriger located in Perchtoldsdorf, Austria, specializing in producing high-quality white and red wines, including rare varieties. The business combines traditional wine production with hospitality services and an online wine shop, targeting wine enthusiasts and local visitors. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content including downloadable price lists and menus. Technically, the site uses modern web technologies and privacy-conscious analytics (Matomo), with HTTPS enforced and secure form handling. However, it lacks explicit security policies and incident response information. Overall, the security posture is good but could be improved by adding security headers and vulnerability disclosure mechanisms. The site complies with GDPR, featuring privacy and cookie policies with consent mechanisms. No suspicious or malicious elements were detected, and the WHOIS data confirms the legitimacy and consistency of the domain registration. The site is suitable for mature audiences due to its alcohol-related content but contains no explicit adult material.

R

Rogy und Rogy Wirtschaftsprüfungs- und Steuerberatungs GmbH

rogyundrogy.at

48

Rogy und Rogy Wirtschaftsprüfungs- und Steuerberatungs GmbH is a well-established, family-run tax consulting and auditing firm based in Vienna, Austria, with over 40 years of experience. The company offers a broad range of financial services including tax declarations, social insurance consulting, business advisory, auditing, and specialized services for small and micro-entrepreneurs. Their market position is that of a trusted local expert catering primarily to small and medium-sized enterprises and self-employed individuals. The website is professionally designed, content-rich, and compliant with GDPR and cookie regulations, targeting German-speaking Austrian clients. Technically, the website uses a proprietary CMS (Internetkonzepte.at CMS) and incorporates modern JavaScript libraries such as jQuery and Owl Carousel for UI enhancements. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response policies are missing. Overall, the security posture is good with no detected vulnerabilities or exposed sensitive data. The WHOIS data aligns well with the business claims, showing consistent registration details and domain age appropriate for the business history. No WAF or blocking mechanisms interfere with content access. The strategic recommendation includes enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen trust and compliance. The website demonstrates a high level of professionalism and trustworthiness suitable for its business domain.

R

Reisebüro Pregesbauer e.U

sonderwunsch-reisen.at

49

Reisebüro Sonderwunsch, operated by Manuela Severing under Reisebüro Pregesbauer e.U, is a specialized travel agency based in Austria focusing on personalized travel experiences and special requests. The website offers detailed information about various thematic travel options including honeymoon trips, golf trips, cruises, and sustainable travel accommodations. The business targets private and business travelers seeking bespoke travel planning and consultation services. Technically, the website employs modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, with a responsive design optimized for mobile devices. Security posture is solid with HTTPS enforced, though improvements can be made by adding security headers and cookie consent mechanisms. Contact information is comprehensive and clearly presented, enhancing business credibility. No blocking or WAF challenges were detected, allowing full content accessibility.

T

Tierklinik Perchtoldsdorf Ost

tierklinik-perchtoldsdorf-ost.at

47

Tierklinik Perchtoldsdorf Ost is a veterinary clinic located in Perchtoldsdorf, Austria, serving the Vienna surrounding area with a comprehensive range of animal healthcare services. The clinic offers 24/7 emergency services, advanced diagnostic imaging such as CT and MRI, and specialized treatments including orthopedics, dermatology, cardiology, and physiotherapy. The website reflects a well-established regional veterinary provider with clear contact information and active engagement through social media and blog content. Technically, the site uses modern JavaScript libraries and analytics tools, is mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and secure forms, though it lacks explicit security policies or vulnerability disclosure mechanisms. Privacy compliance is well addressed with a GDPR-compliant privacy policy and cookie consent banner. Overall, the website and business present a trustworthy and professional image suitable for their target audience of pet owners in the region.

Ö

Österreichische Bergbahnen GmbH

raxalpe.com

54

Österreichische Bergbahnen GmbH operates the Rax-Seilbahn, a cable car service providing access to hiking trails, snowshoe hiking, climbing tours, and mountain huts on the Raxalpe mountain in Austria. The company targets tourists, families, and outdoor enthusiasts, offering transportation, hospitality, and recreational services. The website is professionally designed with rich multimedia content and clear navigation, supporting a positive user experience and strong brand presence. Technically, the website employs modern analytics tools including Google Analytics, Matomo, and Facebook Pixel, alongside Google Tag Manager for marketing. The site is mobile optimized and accessible, with good SEO practices. However, some privacy compliance gaps exist, notably the absence of a cookie consent mechanism and terms of service page. Security posture is solid with HTTPS enforced, but security headers are missing, and no explicit incident response or vulnerability disclosure policies are published. The WHOIS data is unavailable, indicating possible recent registration or privacy protection, which slightly reduces trustworthiness. Nonetheless, the website's professional content, valid contact information, and certifications support its legitimacy. Overall, the site scores well in content quality, business credibility, and technical implementation, with room for improvement in privacy compliance and security best practices.

F

Forum Werteorientierung in der Weiterbildung e. V.

forumwerteorientierung.de

48

Forum Werteorientierung in der Weiterbildung e. V. is a German non-profit organization dedicated to promoting ethical and value-oriented practices in the continuing education sector. The organization provides a quality seal and a professional code of conduct to its member organizations, aiming to enhance transparency and integrity in the education market. The website serves as an informational platform showcasing members, partners, sponsors, and providing updates on seminars and news relevant to the sector. Technically, the website is built on WordPress with common plugins and libraries such as jQuery and Owl Carousel, hosted on rzone.de servers. It demonstrates moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with basic privacy regulations, though it could improve in security policy transparency and technical security hardening.

P

PrellballProjekt Berlin

prellballprojektberlin.de

48

PrellballProjekt Berlin is a small non-profit organization dedicated to promoting the sport of Prellball among youth in Berlin and northern Germany. The website serves as a community hub providing information about training, events, and tournaments, supported by local clubs and volunteers. The organization has a clear focus on youth engagement and sports development, with active social media channels and regular blog updates. Technically, the site is built on WordPress with common plugins for forms and GDPR compliance, hosted by netcup. Security posture is adequate with HTTPS and reCAPTCHA, but lacks advanced security headers and a vulnerability disclosure policy. Privacy compliance is addressed with a privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-maintained for its niche audience.

S

Students Go West

studentsgowest.com

65

Students Go West is an Austrian agency specializing in securing sports scholarships for athletes at US universities. Established in 2018, it holds a leading market position in Austria for this niche. The website is built on WordPress with Elementor and integrates modern technologies such as CookieYes for consent management and analytics tools like Google Analytics and Hotjar. The site is well-designed, mobile-optimized, and provides clear navigation and relevant content for its target audience of student-athletes. Security posture is good with HTTPS enabled and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the professional presentation and consistent branding support business credibility. Privacy policy and terms of service pages are not clearly found, indicating room for compliance improvement.

C

Computer-L.A.N. GmbH

lancloud.cloud

53

LANcloud is a cloud-based seminar and event management software developed by Computer-L.A.N. GmbH, targeting organizers of seminars, coachings, courses, and events primarily in Germany. The platform offers a comprehensive SaaS solution with automated administrative processes, integrated online booking, and compliance with GDPR and GoBD standards. The company positions itself as a reliable and modern solution with a growing customer base and strong trust indicators such as certifications and customer testimonials. Technically, the website is built on WordPress with a modern tech stack, hosted securely on Microsoft Azure, and employs best practices in privacy and security, including SSL encryption and cookie consent management. The security posture is strong, though improvements like enabling DNSSEC and additional security headers are recommended. Overall, the website is professional, secure, and compliant, reflecting a trustworthy business with a clear market niche.

G

Gigerlas Lössel

gigerlas-loessel.de

47

Gigerlas Lössel is a traditional hospitality business based in Germany, specializing in Bavarian cuisine such as grilled chicken (Gigerla), Haxn, and homemade sausages. Established since 1927, the company has a strong local presence and participates in regional festivals like the Nürnberger Volksfest and Frühlingsfest. Their website reflects a well-maintained digital presence with clear branding and customer engagement features including online reservations and event information. The target audience is general public and festival attendees seeking authentic traditional food experiences. Technically, the website is built on WordPress using popular plugins and frameworks such as Bootstrap, Visual Composer, Slider Revolution, and Contact Form 7. The site is mobile optimized and includes GDPR-compliant cookie consent mechanisms via the Complianz plugin. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site uses HTTPS with IP anonymization for Google Analytics and includes a cookie consent banner. However, it lacks advanced security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the security posture is adequate but could be improved with additional headers and formal policies. The website is trustworthy with clear contact information, consistent branding, and no suspicious content. The domain WHOIS data is partially consistent with the business claims, showing stable name servers but limited registrant details. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

H

Hochschule der Bildenden Künste Saar (HBKsaar)

xmlab.org

55

The xm:lab website represents an academic and research institute affiliated with the University of Fine Arts Saar (HBKsaar) in Germany. It focuses on interdisciplinary projects combining art, design, and technology, supporting various study programs and collaborating with external research and cultural partners. The site is professionally designed, bilingual (German and English), and provides detailed information about its team, partners, and educational offerings. Technically, the website uses a modern but somewhat dated technology stack including Contao CMS, Bootstrap 3, and jQuery 1.11.2. The site is served over HTTPS with no visible blocking or WAF challenges, indicating good accessibility and security posture. However, some security best practices such as security headers and cookie consent mechanisms are missing or not detected. WHOIS data is unavailable due to query failure, but the domain's legitimacy is supported by its academic affiliation and professional content.

M

Medyum Şehrazat Hoca

medyum-sehrazat-hoca.de

63

Medyum Şehrazat Hoca operates as a small-scale spiritual and occult service provider primarily targeting Turkish-speaking individuals in Germany and Europe. The website presents a professional and consistent brand image, offering a range of services including love spells, tarot readings, horoscope analysis, and spiritual protection. The business leverages testimonials and direct contact channels to build trust with its audience. Technically, the website uses common frontend frameworks such as Bootstrap and jQuery, with Cookiebot integrated for cookie consent management. While the site is mobile-optimized and user-friendly, it lacks advanced security headers and explicit incident response policies. Overall, the security posture is moderate with room for improvement in formalizing security and privacy policies. The domain registration data aligns with the website's claims, indicating legitimacy. Strategic recommendations include enhancing security headers, publishing detailed privacy and security policies, and improving incident response readiness.

A

AECOM

aecom.com

74

AECOM is a global infrastructure consulting and engineering firm with a strong market position as a trusted leader in delivering engineering, design, construction, and management services. The company targets infrastructure clients including governments, investors, and job seekers, offering key services such as architecture, construction management, engineering, environmental services, and program management. The website reflects a mature enterprise with consistent branding and high-quality content. Technically, the site is built on WordPress with modern libraries and frameworks, optimized for mobile and SEO, and integrates analytics and marketing tools responsibly. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though DNSSEC is not enabled and no explicit incident response contacts or vulnerability disclosure policies are published. Overall, the domain registration data aligns well with the company's history and legitimacy, supporting a high trust score.

T

TENNIUM GERMANY GMBH

hamburgopenatp500.com

43

The Bitpanda Hamburg Open ATP 500 website serves as the official digital presence for a major professional tennis tournament scheduled for May 16-23, 2026 in Hamburg, Germany. The site provides comprehensive information about the event including tournament details, player profiles, ticket purchasing options, news updates, and sponsor information. The business is positioned as a medium-sized event organizer within the hospitality and sports sectors, leveraging partnerships with notable sponsors such as Bitpanda and Betway. The website demonstrates a good level of digital maturity, utilizing WordPress CMS with modern front-end libraries and integrations for social media and marketing tools. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Contact information is clearly presented, enhancing business credibility.

B

BTL Transports et Logistique

btl-i.fr

57

BTL Transports et Logistique is a well-established French transport and logistics company with a rich history dating back to 1852, formally created in its current form in 2008 through the merger of five regional companies. The company operates primarily in northern France with three main agencies and offers a range of services including transport, logistics, freight forwarding, parcel pickup points, and vehicle covering. Their market position is that of a trusted regional player with a commitment to environmental responsibility and customer satisfaction. Technically, the website employs modern frameworks such as Bootstrap and jQuery, with good mobile optimization and a professional design. Security-wise, the site uses HTTPS and has a cookie consent mechanism but lacks advanced security headers and explicit privacy or security policies. The absence of WHOIS data limits full trust verification, but the website content and business information appear consistent and professional. Overall, the site presents a solid digital presence with room for improvement in security and privacy transparency.

G

Groupement FLO

10palettespourlaplanete.com

53

The website '10palettespourlaplanete.com' represents the FLO Palettes initiative, a French transport network specializing in the distribution of small pallet shipments combined with a unique environmental reforestation program. The business operates under the Groupement FLO umbrella and engages 60 transport companies across France to plant one tree for every ten pallets transported, emphasizing sustainability and carbon footprint reduction. The site is well-structured, professionally designed, and targets environmentally conscious transport clients and partners within France. Technically, the site uses CMS Made Simple with modern JavaScript libraries and frameworks such as Foundation and Owl Carousel, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response information. WHOIS data is unavailable, which raises concerns about domain registration transparency, but the website content and external references support legitimacy. Overall, the site is a credible and professional platform for its niche market with room for security and compliance enhancements.

O

O'zbekiston Savdo-sanoat palatasi

chamber.uz

55

The website represents the Chamber of Commerce and Industry of Uzbekistan, a key governmental institution supporting trade and industry sectors within Uzbekistan. It provides services such as trade facilitation, business registration, and information dissemination to businesses and government entities. The domain is well-established since 2007, reflecting a mature presence in the market. Technically, the site uses modern frontend frameworks like Bootstrap and Vue components, ensuring a responsive and professional user experience. However, there is a lack of explicit privacy and cookie policies, and no visible security headers, which are areas for improvement. The security posture is moderate, with no detected vulnerabilities but missing best practices. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security measures.

The website bpforum.net serves as the official platform for the 2025 Business Post Finance Forum held in Hanoi, Vietnam, focusing on expanding Korea-ASEAN financial cooperation. Hosted by the Korean media company 비즈니스포스트, the site targets financial professionals, policymakers, and investors interested in ASEAN and Vietnamese financial markets. The business model centers on organizing specialized finance forums to facilitate networking and knowledge sharing. The site content is primarily in Korean with professional event details, speaker introductions, and partner information, reflecting a focused niche audience. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, Owl Carousel, and Animate.css, hosted on AWS infrastructure. The site is mobile-optimized with good navigation and design quality, though SEO and accessibility features are basic. No CMS or advanced analytics tools are detected, indicating a relatively straightforward technical setup. From a security perspective, the domain uses clientTransferProhibited status but lacks DNSSEC and visible security headers, which are recommended for enhanced protection. The absence of privacy and cookie policies indicates compliance gaps, especially under GDPR. No incident response or vulnerability disclosure information is provided. WHOIS data is transparent and consistent with the business, supporting legitimacy. Overall, the site is professionally presented and credible for its business purpose but would benefit from improved security practices and privacy compliance to strengthen trust and regulatory adherence.

S

sports4everybody

kitz-extremechallenge.com

49

The website www.kitz-extremechallenge.com represents the World Extreme Run Challenge (WERC), an extreme sports event organized by the non-profit association sports4everybody. The event is held on the famous Kitzbühel Streif ski slope and aims to challenge participants with an up-and-down mountain run. The business model is non-profit, focusing on community engagement and supporting Austrian sports talents. The website content is professionally presented in German, with clear navigation and relevant event information. The site is supported by multiple reputable partners and sponsors, enhancing its credibility. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as jQuery and Owl Carousel. It employs Matomo analytics for user tracking with privacy considerations. The site is mobile-optimized and performs moderately well. However, no CMS or hosting provider details are explicitly detected. Security posture is good with HTTPS enforced and secure form handling, but lacks some security headers and incident response information. From a security and compliance perspective, the site includes a privacy policy and cookie consent mechanism compliant with GDPR. Contact information is clearly provided, but no terms of service or security policy documents are found. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional website presence. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is a credible and professional platform for the WERC event but should address WHOIS transparency and enhance security headers and policies to improve trust and compliance.

P

P3 DIGITAL / GROUP

p3digital.group

10

P3 DIGITAL / GROUP is a German media agency specializing in web development, video production, and recruiting services. The company offers a range of digital media solutions including multilingual web platforms, SEO-optimized websites, creative video content, and employer branding tools. Their market position is supported by a diverse client portfolio and professional online presence. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and includes SEO and GDPR compliance features. Security posture is solid with HTTPS enforced and cookie consent management implemented, though security headers could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a credible digital media service provider.

T

Thinwhite - Tim Hack & Phil Daniels

thinwhite.co.uk

52

Thinwhite, operated by Tim Hack and Phil Daniels, is a small, established graphic design and web development agency based in Gloucestershire, UK. With over 20 years of experience, the company offers creative solutions in print, branding, web design, and SEO, targeting artisan and niche businesses. The website reflects a professional and client-focused approach, emphasizing transparency and quality service without retainers. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO and user experience. The site is mobile-optimized and uses standard web technologies including jQuery and FontAwesome. Hosting is provided by 123-Reg Limited, consistent with the UK location. Security posture is solid with HTTPS enforced, CAPTCHA on contact forms, and a GDPR-compliant cookie consent mechanism. However, explicit security headers are not detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy policies are present and comprehensive enough for GDPR compliance. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic recommendations include enhancing security headers, conducting regular security audits, and publishing a formal security policy to further strengthen trust and compliance.

E

Employer-Branding-Suite

employer-branding-suite.com

40

Employer-Branding-Suite.com is a German-based small business specializing in comprehensive employer branding solutions targeted at companies seeking to attract and engage talent, particularly SMEs. Their offerings include career websites, recruiting videos, photo impressions, video interviews, and social media packages. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins and frameworks, ensuring a stable and maintainable infrastructure. Security posture is good with HTTPS, cookie consent, and spam protection via Google reCAPTCHA, though some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie management. Overall, the site demonstrates high professionalism and trustworthiness with transparent business information and active customer engagement channels.

C

Caritas

carteculture.ch

54

CarteCulture.ch is a Swiss non-profit website operated under the auspices of Caritas, providing a free personal discount card to financially disadvantaged adults and children aged five and above. The card offers up to 70% discounts on over 4200 cultural, sports, educational, and health offers across Switzerland. The website is multilingual, with French as the primary language for this domain, and supports other Swiss national languages via related domains. The business model focuses on social inclusion and cultural participation, positioning CarteCulture as a trusted national social program supported by Caritas and certified by ZEWO. Technically, the site is built on TYPO3 CMS with a modern but stable technology stack including Bootstrap, jQuery, and Google services for analytics and tag management. The site is mobile-optimized and SEO-friendly, with good navigation and content quality. Security posture is solid with HTTPS enforced and privacy-conscious analytics configurations, though explicit security policies and incident response contacts are not published. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness.

A

ASKÖ Burgenland

wirbewegenburgenland.at

42

ASKÖ Burgenland is a regional non-profit sports association based in Austria, focused on promoting diverse sports activities and supporting local sports clubs. The organization offers a variety of services including training, event organization, funding facilitation, and health programs. It operates under the umbrella of the ASKÖ Bundesorganisation, indicating a structured and established presence in the Austrian sports sector. The website reflects a professional and consistent brand image, targeting sports clubs, athletes, and the general public interested in sports within the Burgenland region. Technically, the website is built on the Internetkonzepte.at CMS and utilizes modern JavaScript libraries such as jQuery, Font Awesome, and Owl Carousel to provide a responsive and user-friendly experience. The site is mobile optimized and includes SEO best practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses trusted external libraries but lacks explicit security headers and publicly available security policies or incident response information. Privacy compliance is strong, with a clear GDPR-compliant privacy policy and cookie consent mechanism. Contact information is transparent and professionally presented, enhancing trustworthiness. Overall, ASKÖ Burgenland's website is a well-maintained digital presence that supports its mission effectively. Strategic improvements in security headers and incident response transparency could further enhance its security posture and stakeholder confidence.

A

ASKÖ Sport GmbH

abc-ooe.at

45

ASKÖ Sport GmbH operates the ABC Bewegungscenter Oberösterreich, a regional sports and event center located in Linz, Austria. The company provides a range of services including sports activities, seminar facilities, accommodation, and restaurant services, targeting a general audience interested in sports and events. The website reflects a medium-sized regional business with consistent branding and clear contact information, supporting its market position as a trusted local service provider. Technically, the website is built on the Internetkonzepte.at CMS platform and utilizes modern JavaScript libraries such as jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile optimized with good navigation and SEO practices, although some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating basic privacy compliance. However, it lacks explicit security policies, incident response information, and security headers, which are recommended to enhance its security posture. No vulnerabilities or exposed sensitive data were detected, and the WHOIS data confirms the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy digital presence with moderate technical and security maturity. Strategic improvements in security policies, technical modernization, and enhanced privacy compliance would further strengthen the site's reliability and user trust.

I

Internetkonzepte.at GmbH

internetkonzepte.at

46

Internetkonzepte.at GmbH is a small Austrian technology company specializing in custom web and software development, content management systems, hosting, and related IT services. With over 20 years of experience and numerous client references, the company holds a solid market position in the Austrian and German-speaking business sectors. Their website reflects a professional and consistent brand image, targeting businesses seeking tailored internet solutions. The company emphasizes security and support, with a 24/7 support offering and a strong partnership with their hosting provider myNET.at. Technically, the website employs a modern tech stack including jQuery, Font Awesome, and Matomo analytics, running on a proprietary CMS developed by the company. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks some advanced security headers and formal policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the security posture is good, with no detected vulnerabilities or blocking mechanisms. The WHOIS data confirms the legitimacy and consistency of the business registration. Strategic improvements include implementing cookie consent, publishing security and incident response policies, and adding security headers to enhance protection and compliance.

Ö

ÖFT - Österr. Fachverband für Turnen

oeft.at

49

Turnsport Austria is the official Austrian federation representing approximately 450 gymnastics clubs with over 90,000 members across various disciplines including artistic gymnastics, rhythmic gymnastics, trampoline, sport aerobics, and more. The organization serves both grassroots and elite sports communities, providing event organization, training, and certification services. The website reflects a well-maintained digital presence with comprehensive event calendars, news updates, and social media integration, targeting athletes, coaches, clubs, and sports enthusiasts in Austria. Technically, the site uses a custom CMS by Internetkonzepte.at, leveraging modern JavaScript libraries such as jQuery and Owl Carousel, and is mobile responsive with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating stable and accessible infrastructure. Overall, the site demonstrates a mature digital footprint appropriate for a national sports federation.

A

ASKÖ WAT Wien

askoewat.wien

42

ASKÖ WAT Wien is a well-established regional sports association based in Vienna, Austria, operating under the umbrella of the ASKÖ Bundesorganisation. The organization focuses on providing diverse sports programs, supporting sports clubs, and promoting health and fitness activities for a broad audience including athletes, clubs, and the general public. Their website reflects a professional and community-oriented approach with clear navigation and relevant content. Technically, the site uses a mix of established JavaScript libraries and a proprietary CMS, delivering moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in compliance and security best practices. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the professional presentation and active content. Overall, the site is trustworthy and serves its community well, though enhancements in privacy compliance and security hardening are recommended.

A

ASKÖ Oberösterreich

askoe-ooe.at

52

ASKÖ Oberösterreich is a regional non-profit sports association dedicated to promoting diverse sports activities and supporting sports clubs in Upper Austria. The organization provides a wide range of services including club support, sports education, fitness and health programs, and competitive sports event organization. It serves sports clubs, athletes, and community members, positioning itself as a key regional player in sports promotion. The website reflects a professional and consistent brand image aligned with its mission. Technically, the website uses a moderate technology stack including jQuery, FontAwesome, Owl Carousel, and a proprietary CMS by Internetkonzepte.at. The site is mobile optimized and performs moderately well, with basic SEO and accessibility features. Privacy and cookie policies are present and GDPR compliant, though explicit security policies and incident response contacts are not found. From a security perspective, the site enforces HTTPS and uses secure external scripts but lacks advanced security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, indicating a legitimate and established organization. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and accessibility could enhance its security posture and user trust.

A

ASKÖ Niederösterreich

askoenoe.at

48

ASKÖ Niederösterreich is a well-established regional non-profit sports association dedicated to promoting diverse sports activities and supporting sports clubs in Lower Austria. The organization offers a variety of projects, training programs, and community services aimed at athletes, sports clubs, and enthusiasts. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the website employs a modern technology stack including jQuery, Font Awesome, and several UI libraries, running on a custom CMS by Internetkonzepte.at. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Privacy and cookie policies are implemented with GDPR compliance, and social media integration is active, primarily via Facebook. From a security perspective, the site uses HTTPS and has basic security best practices in place, though it lacks advanced security headers and explicit incident response or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the website presents a low-risk profile with a solid foundation for business credibility and user trust. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure could further enhance the security posture and compliance maturity.

A

ASKÖ Kärnten

askoe-kaernten.at

47

ASKÖ Kärnten is a well-established regional sports association based in Kärnten, Austria, focused on promoting diverse sports activities, fitness programs, and supporting local sports clubs. The organization targets sports enthusiasts and community members, providing events, courses, and youth development initiatives. The website reflects a professional and consistent brand presence with clear navigation and relevant content in German. Technically, the site uses a custom CMS (Internetkonzepte.at CMS) with common JavaScript libraries and social media integration, delivering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and incident response disclosures. Overall, the domain registration aligns with the business claims, indicating legitimacy and trustworthiness.

A

ASKÖ Burgenland

askoe-burgenland.at

50

ASKÖ Burgenland is a regional non-profit sports association based in Austria, focused on promoting diverse sports activities, supporting local sports clubs, and organizing events and training programs. The organization serves athletes, trainers, and the general public within the Burgenland region, positioning itself as a key regional player in sports promotion and community engagement. The website reflects this mission with comprehensive content about services, events, and funding opportunities. Technically, the site uses a custom CMS (Internetkonzepte.at CMS) and incorporates modern JavaScript libraries such as jQuery, Owl Carousel, and Fancybox, indicating a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses trusted external libraries but lacks explicit security headers and published security policies. Privacy compliance is strong with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in security policy transparency and technical enhancements.

C

Caritas

kulturlegi.ch

57

KulturLegi.ch is a Swiss non-profit initiative operated by Caritas that provides a discount card to individuals with limited financial means, enabling access to over 4,200 offers in culture, sports, education, and health sectors across Switzerland. The website is well-branded, consistent, and targets socially disadvantaged groups to promote inclusion. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and Tag Manager for analytics. The site is mobile-optimized and SEO-friendly with good navigation and content quality. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent and a comprehensive privacy policy. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the domain registration aligns well with the business claims, enhancing trust and legitimacy.

X

XWiki SAS

xwiki.com

73

XWiki SAS is a well-established technology company specializing in open source knowledge management and collaboration software. With over 20 years of experience, it offers a range of standard and custom solutions including cloud hosting, support, and consulting services. The company serves a broad business audience, including large enterprises such as Amazon and Lenovo, positioning itself as a trusted provider in the enterprise wiki and collaboration market. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the site is built on the XWiki platform with modern JavaScript libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, domain protection, and use of CAPTCHA, though explicit security policies and vulnerability disclosures are absent. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site demonstrates high business credibility and technical maturity with moderate user tracking for analytics and marketing purposes.

A

ASKÖ Bundesorganisation

askoe.at

50

ASKÖ Bundesorganisation is the largest Austrian sports umbrella organization dedicated to promoting sports and physical culture across Austria. It serves a broad audience including sports clubs, athletes, and community members, offering services such as sports promotion, health-oriented activities, youth sports, education, and events. The organization maintains a strong network of regional subsidiaries and partners, reinforcing its market position in the non-profit sports sector. Technically, the website is built on the Internetkonzepte.at CMS and employs modern web technologies including jQuery, Font Awesome, and various UI and carousel libraries. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. Performance is moderate, with asynchronous loading of scripts enhancing user experience. From a security perspective, the website enforces HTTPS and uses some best practices such as async script loading and no visible sensitive data exposure. However, it lacks explicit security headers and a published incident response policy. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for a large non-profit organization. It is safe for general audiences and demonstrates good privacy and security hygiene, though there is room for improvement in security headers and incident response transparency.

Ö

ÖFT - Österr. Fachverband für Turnen

turnsport.at

49

Turnsport Austria is the official Austrian gymnastics federation representing approximately 450 clubs and over 90,000 members across multiple gymnastics disciplines. The organization serves both grassroots and elite sports communities, providing event organization, trainer licensing, and promoting safe sport and anti-doping initiatives. The website is well-structured, professionally designed, and provides comprehensive information and news relevant to its audience. Technically, the site uses a modern tech stack including jQuery, Font Awesome, and Owl Carousel, and is built on the Internetkonzepte.at CMS platform. It is mobile optimized and SEO friendly. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are lacking. Privacy compliance is strong with a clear privacy and cookie policy and consent mechanism. Overall, the site is trustworthy and credible, reflecting a mature non-profit sports federation.

G

Gesellschaft für Energie- und Gebäudemanagement Bonn mbH (EGM)

egm-bonn.de

61

Gesellschaft für Energie- und Gebäudemanagement Bonn mbH (EGM) is a regional energy service provider and subsidiary of Stadtwerke Bonn, specializing in sustainable energy solutions and contracting services for buildings in the Bonn/Rhein-Sieg area. Their offerings include planning, financing, construction, and operation of energy systems for residential, commercial, and public sector clients such as hospitals and schools. The website is built on TYPO3 CMS, featuring modern web technologies and good SEO and accessibility practices. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response contacts are not published. Overall, the site reflects a professional and trustworthy business with clear contact channels and integration within a larger energy group.

S

Stadtwerke Bonn

swb-karriere.de

65

Stadtwerke Bonn operates as a regional public utility company in Germany, providing energy and transportation services. Their website, swb-karriere.de, serves as a comprehensive career portal targeting students, apprentices, professionals, and job seekers interested in joining the company. The portal offers detailed information on job openings, training programs, and employee testimonials, positioning the company as an attractive employer in the regional market. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and a cookie consent framework to ensure GDPR compliance. The site is mobile-optimized, accessible, and professionally designed, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms, though it lacks explicit security headers and a public security policy or incident response contact. Overall, the website demonstrates a strong security posture with room for improvement in transparency and security best practices. The domain registration data aligns well with the company's business claims, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and providing clear incident response contacts to further strengthen trust and compliance.

B

BenefitWorld

benefitworld.at

67

BenefitWorld is an Austrian cashback and discount platform offering users cashback and savings across approximately 800 partner webshops, with a strong focus on travel and shopping. The website is built on Drupal 9 and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook SDK, and Mailchimp. The platform demonstrates a good level of digital maturity with mobile optimization and a professional design. Security posture is solid with HTTPS enforced, reputable SSL certificates, and security headers, although there is room for improvement in cookie consent mechanisms and published security policies. Overall, the site is trustworthy and well-positioned in the Austrian e-commerce cashback market.

B

Bank Austria

cashbackonline.at

62

The website cashbackonline.at is a cashback and discount platform affiliated with Bank Austria, targeting primarily Austrian customers interested in online shopping and travel deals. It offers cashback incentives across a wide range of partner shops and travel services, positioning itself as a value-added service for Bank Austria customers. The platform is built on Drupal 9 and employs modern web technologies including Google Tag Manager and Owl Carousel for enhanced user experience. Security posture is strong with HTTPS enforced and multiple security headers present, though there is room for improvement in cookie consent mechanisms and incident response transparency. The absence of WHOIS data limits domain trust assessment, but the website's branding and certifications indicate a legitimate and professional operation.

S

SWB Konzern - Stadtwerke-Bonn

swb-konzern.de

65

SWB Konzern - Stadtwerke-Bonn is a large regional utility and transportation company serving Bonn, Germany, providing essential services such as electricity, natural gas, water, district heating, and public transport. The company emphasizes sustainability and climate neutrality, reflected in its projects and communications. The website is built on TYPO3 CMS and integrates modern technologies like Google Tag Manager and reCAPTCHA, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

S

Stadtwerke Bonn

stadtwerke-bonn.de

67

Stadtwerke Bonn (SWB) is a large regional utility provider based in Germany, offering a comprehensive range of services including energy supply (electricity and gas), water, public transportation, waste management, and district heating. The company positions itself as a top local supplier with a strong commitment to sustainability and climate protection, targeting a broad audience including residential customers and families. Their business model integrates multiple utility and mobility services under the SWB brand, supported by several related domains and subsidiaries. Technically, the website is built on the TYPO3 CMS platform, employs modern web technologies such as JavaScript and Owl Carousel, and is hosted on reputable German infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a good user experience and professional design. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks publicly visible security policies and incident response contacts, which could be improved. Overall, the website demonstrates a mature digital presence with strong privacy compliance and trustworthy business credibility.

H

Hochschule der Bildenden Künste Saar

hbksaar.de

50

The Hochschule der Bildenden Künste Saar (HBKsaar) is a public higher education institution specializing in fine arts and design, located in Saarbrücken, Germany. The website serves as a comprehensive portal for prospective and current students, offering detailed information on academic programs, student services, events, and institutional news. The institution holds a solid regional position as an art university with a medium-sized footprint and a history dating back to 1970. Technically, the website is built on the Contao Open Source CMS platform, utilizing a range of front-end libraries including Bootstrap 3 and jQuery 1.11.2. While the site is generally well-structured, mobile-optimized, and accessible, some outdated libraries pose potential security risks. The hosting infrastructure appears to be university-affiliated, with nameservers linked to the German Research Network and Saarland University. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and uses an outdated jQuery version, which could expose it to vulnerabilities. No dedicated security or incident response policies are publicly available. Privacy compliance is strong, with a clear privacy policy and cookie management in place. Overall, the website is professional, trustworthy, and serves its educational mission effectively. Strategic improvements in updating third-party libraries and enhancing security headers would further strengthen its security posture and compliance.

yesforever.ch is a Swiss-based small business operated by Optimize AG, offering a niche SaaS platform for creating personalized wedding websites. The platform provides tailored features such as gift registries, photo galleries, guest registration forms, and password-protected pages, targeting couples planning weddings and their guests. The business model is subscription-based with free trials and flexible pricing plans. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, Owl Carousel, and integrates analytics tools like Google Analytics and Hotjar, indicating a moderate level of digital maturity. The site is mobile-optimized and presents a professional user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and password protection for certain pages but lacks explicit security headers and published security policies, which are areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

Hamburger Tennis-Verband e.V. is a regional non-profit sports association dedicated to promoting tennis activities in Hamburg, Germany. The website serves as an information hub for players, clubs, trainers, and tennis enthusiasts, offering event calendars, tournament details, training programs, youth development initiatives, and inclusion projects. The association maintains partnerships with recognized tennis organizations and sponsors, reinforcing its position as a key regional tennis authority. Technically, the website employs a mix of established JavaScript libraries such as jQuery, Bootstrap 3.3.5, Owl Carousel, and jQuery.mmenu for responsive and interactive UI elements. Google Tag Manager and Google Analytics are used for visitor tracking and analytics. The site is mobile-optimized with a clear navigation structure, though it lacks a known CMS and some modern security headers. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy regulations. However, no explicit security policies or incident response contacts are published, and security headers like CSP or HSTS are not detected. The WHOIS data shows a consistent and legitimate domain registration without privacy protection, aligning with the organization's transparency. Overall, the website is professional, trustworthy, and well-suited for its audience, with room for improvement in security best practices and formal policy disclosures.

E

Evangelisch-reformierte Kirche des Kantons Basel-Stadt

erk-bs.ch

69

The Evangelisch-reformierte Kirche des Kantons Basel-Stadt website serves as the official online presence for the regional Protestant church in Basel-Stadt, Switzerland. It provides comprehensive information about church services, events, community programs, and pension fund management. The site targets church members and the local community, offering timely updates and resources in German. The business model is non-profit and community-oriented, focusing on religious and social services within the canton. Technically, the website is built on the kirchenweb.ch CMS platform, utilizing common web technologies such as jQuery and Owl Carousel. The site is mobile-optimized and presents a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes some security headers, but lacks explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and legitimate, with domain registration details consistent with the organization's identity.

SoCal NOMA is a regional chapter of the National Organization of Minority Architects focused on advancing education and careers for historically underrepresented groups in architecture and allied design professions. The organization offers educational programs, professional development, advocacy, and community engagement primarily in Southern California. Their website reflects a small non-profit with a clear mission and active community involvement. Technically, the site is built on WordPress, using modern libraries such as jQuery, Bootstrap, and Smart Slider 3, hosted on Bluehost. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is consistent with the organization's history and supports legitimacy.