Security Directory

D

Designstudio Kock

designstudio-kock.com

58

Designstudio Kock is a small German design studio specializing in graphic design and print media services, including brand identity and logo design. The company targets businesses and individuals seeking professional design and print solutions. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework, and is hosted by Wix. The site demonstrates good design quality, mobile optimization, and basic SEO and accessibility features. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy policies. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and structured data align with the business identity. Overall, the site is professional but would benefit from enhanced security and compliance documentation.

F

Ferienpark Seehof

ferienpark-seehof.de

59

Ferienpark Seehof is a well-established camping and holiday park located in Schwerin, Germany, offering a broad range of services including camping pitches, rental accommodations, wellness and beauty services, and family-oriented activities. The business targets families, cyclists, and tourists seeking nature and city experiences, positioning itself as a climate-neutral and award-winning hospitality provider. Technically, the website is built on Drupal 9, with good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, with moderate user tracking and marketing integrations. The domain WHOIS data is limited but shows no suspicious indicators. Strategic improvements include publishing security policies and enhancing security headers.

D

Die Ministerpräsidentin des Landes Mecklenburg-Vorpommern

vorpommern-fonds.de

59

The website represents the Fonds für Vorpommern und das östliche Mecklenburg, a regional government fund managed under the auspices of the Ministerpräsidentin des Landes Mecklenburg-Vorpommern. It provides detailed information about funding opportunities aimed at supporting economic, social, and cultural development in the Vorpommern and eastern Mecklenburg regions. The site targets public bodies, private legal entities, and individuals involved in regional development projects. The business model is a government-funded grant program with a clear focus on regional development and cohesion. Technically, the site is built on a custom CMS platform (Gaia) commonly used by regional government entities in Mecklenburg-Vorpommern. It uses standard web technologies including JavaScript and CSS, with jQuery UI for interactive elements. The site is moderately performant, mobile-optimized, and accessible at a basic level. SEO and metadata are basic but sufficient for the target audience. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks explicit security headers and published security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing trust and credibility. Overall, the site is a trustworthy and professional government resource with good content quality and business credibility. Security posture and privacy compliance could be improved by implementing security headers, cookie consent, and publishing security policies. No critical vulnerabilities or blocking mechanisms were detected.

N

Neubrandenburger Stadtwerke GmbH

neu-sw.de

64

Neubrandenburger Stadtwerke GmbH operates the website neu-sw.de, serving as a regional utility provider in Neubrandenburg, Germany. The company offers a range of services including electricity, gas, district heating, water supply, and public bus transportation. The website targets both private and business customers, providing online services such as tariff calculation, customer portal access, and a dedicated mobile app. The business model focuses on utility provision and community engagement, positioning itself as a trusted local energy and transport provider. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as JavaScript and CSS with responsive design elements. The site demonstrates good performance and accessibility, with structured navigation and SEO-friendly metadata. Security practices include HTTPS enforcement and nonce usage for scripts, though some advanced security headers are missing. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service pages detected. The security posture is solid with no evident vulnerabilities or exposed sensitive data. WHOIS data confirms domain legitimacy and consistency with the business identity. No WAF or blocking mechanisms interfere with content access. Overall, the site is professional, trustworthy, and well-suited for its audience, though improvements in privacy disclosures and security headers are recommended. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing HTTP security headers, and providing explicit incident response contacts to strengthen trust and compliance.

V

Volny.cz

volny.cz

56

Volny.cz is a Czech internet portal providing email services, news, weather, and various online content primarily targeting Czech-speaking users. The site is professionally designed using modern web technologies such as Next.js and React, hosted on infrastructure likely related to Seznam.cz. The portal integrates multiple third-party analytics and social media SDKs, including Gemius, Facebook, Twitter, and YouTube. Despite the lack of WHOIS data from the CZ.NIC registry, the website appears legitimate and well-established in the Czech media landscape. However, the absence of explicit privacy and cookie policies and missing security headers indicate areas for improvement in compliance and security transparency.

R

remspace

stavebni-forum.cz

48

remspace.cz is a professional Czech online magazine and communication platform specializing in real estate, urban development, and architecture. It organizes conferences and discussion events, serving as a key information and networking hub for professionals in the real estate sector. The website is well-structured, content-rich, and regularly updated with news, articles, and event information, targeting industry stakeholders and professionals. Technically, the site is built on WordPress with modern performance optimizations including WP Rocket and uses Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the professional presentation, partner listings, and social media presence support legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant. No direct contact emails or phone numbers were found on the homepage, suggesting contact is managed via dedicated pages. Overall, remspace.cz presents a credible, professional platform with strong content and technical maturity, suitable for its target audience in the real estate industry.

R

Region Aachen

housing-emr.eu

46

Housing Monitor EMR is a regional government-backed project focused on providing transparent, cross-border housing market data for the Euregio Meuse-Rhine region. The website serves as a public resource aggregating demographic and housing industry statistics to support sustainable housing development. The project is led by Region Aachen and hosted by GeoDok GmbH, with partnerships across regional governments. Technically, the site uses standard web technologies with Matomo analytics for privacy-conscious user tracking. The site is accessible, mobile-optimized, and professionally designed, though it lacks some advanced SEO and accessibility features. Security posture is moderate with HTTPS implied but no explicit security headers or policies published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking usage. Overall, the site is trustworthy and legitimate, serving a niche government/non-profit role with good business credibility but room for improvement in security and privacy practices.

GeoDok Geoinformatik GmbH operates blis-online, a specialized business location information system designed to support municipalities, regions, and economic development agencies in managing and marketing commercial real estate. The platform integrates GIS technology with content management and offers modular features such as area monitoring, investor management, and integration with regional and international portals. With over 300 customers and recognition as a standard platform in NRW, Germany, blis-online holds a strong market position in its niche. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with external libraries like Font Awesome and Lightbox. The platform is cloud-based and mobile-optimized, though no major CMS or advanced frameworks are detected. Performance and SEO are adequate, but accessibility is basic. Security practices are moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Security posture is generally sound with no visible vulnerabilities or exposed sensitive data. However, the absence of published security policies, incident response contacts, and cookie consent mechanisms indicates room for improvement in compliance and transparency. The WHOIS data is consistent and transparent, registered via a reputable German registrar, supporting the legitimacy of the domain and business. Overall, the website is professional, trustworthy, and well-aligned with its business objectives. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance its security posture and regulatory adherence.

M

MEGGLE Slovakia s. r. o.

rajo.sk

66

MEGGLE Slovakia s. r. o., operating under the brand 'rajo', is a leading Slovak dairy producer with a strong market presence and over 25 years of history. The company offers a wide range of dairy products including lactose-free, probiotic, vegan, and flavored dairy items, targeting Slovak families and consumers. The website reflects a professional and consistent brand image with clear navigation and high-quality content. Technically, the site uses modern tools such as Google Tag Manager, Google Analytics, Hotjar, and Bootstrap, ensuring a good user experience and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are missing. Overall, the site is trustworthy, compliant with GDPR, and demonstrates good privacy practices.

W

Windindustrie in Deutschland

windindustrie-in-deutschland.de

48

Windindustrie in Deutschland is a leading German industry portal dedicated to the wind energy sector, operated as a project of the Bundesverband WindEnergie (BWE). The website provides comprehensive expert knowledge, company directories, job listings, event information, and industry news, targeting professionals and companies involved in wind energy. It holds a strong market position as a specialized platform within Germany's renewable energy landscape. Technically, the website employs a modern tech stack including Google Tag Manager, Piwik PRO analytics, and Revive Adserver for advertising. It is hosted on Hetzner servers, uses HTTPS, and incorporates responsive design principles for mobile optimization. The site demonstrates good SEO and accessibility practices, though some security headers could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the site could enhance its security posture by implementing additional HTTP security headers and ensuring robust form protections. Overall, the website presents a professional and trustworthy image with strong business credibility supported by its affiliation with BWE and active social media presence. The risk profile is low, with no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, continuous monitoring of third-party scripts, and expanding direct contact information for improved user trust.

GeoDok GmbH is a specialized German company operating in the geoinformatics sector for over 25 years, providing software products, consulting, and web platform solutions focused on spatial data visualization, analysis, and dissemination. The company serves a broad range of public sector clients including federal and state ministries, municipalities, chambers of commerce, and other institutions, positioning itself as a market leader in regional and cross-border location information systems. Technically, the website is built on TYPO3 CMS version 4.1, hosted on Hetzner infrastructure, with moderate performance and basic mobile optimization. Security posture is moderate with no visible security headers or explicit policies, and no cookie consent mechanism is implemented, indicating room for improvement in GDPR compliance. Overall, the website is professional, content-rich, and trustworthy, but would benefit from technical and security modernization.

J

JobRouter AG

jobrouter-workflow.com

77

JobRouter AG operates a sophisticated low-code digital process automation platform designed to help enterprises automate and optimize complex business workflows. With over 20 years of experience and a broad international customer base, JobRouter offers modular, scalable solutions including workflow automation, document management, and cloud services. The company maintains a strong partner network and integrates with major enterprise systems such as SAP and Microsoft Office. Technically, the website is built on TYPO3 CMS and employs Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies with user consent mechanisms. Security posture is solid with HTTPS and vulnerability disclosure policies, though explicit security headers are not evident in the provided data. The absence of WHOIS registration data is a notable gap, warranting further verification. Overall, JobRouter presents as a credible and professional technology provider with a mature digital presence.

S

SM-DATA a.s.

smdata.cz

54

SM-DATA a.s. is a Czech Republic-based company specializing in comprehensive accounting, payroll, tax advisory, and corporate finance services. Established since 1991, the company positions itself as a reliable partner for businesses seeking to outsource their financial and official agenda management. The website reflects a professional business service provider with clear service offerings and contact information, targeting primarily business clients in the finance sector. Technically, the website employs standard web technologies including XHTML, CSS, and JavaScript, with integration of Google Analytics and Google Tag Manager for user tracking and analytics. The site is mobile optimized and presents a clear navigation structure, although no CMS or advanced frameworks are detected. Performance is moderate with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. The absence of WHOIS data limits domain legitimacy verification, although the website content and business information appear consistent and professional. No signs of WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is a credible business portal with good content quality and user experience but would benefit from enhanced security practices, privacy compliance, and domain registration transparency to improve trust and compliance posture.

M

Martin Argaláš

argalas.net

60

The website www.argalas.net/cz/ represents an independent Czech marketing and IT solutions provider led by Martin Argaláš. The business offers services including web design, IT network management and security, corporate design, and internet marketing. The site targets local businesses and individuals seeking professional marketing and IT services. The website content is well-structured and professionally presented, though it lacks advanced technical features and modern CMS integration. From a technical perspective, the site uses basic HTML, CSS, and JavaScript without detectable frameworks or CMS platforms. Mobile optimization and accessibility are basic but functional. No analytics or tracking scripts are present, indicating minimal user tracking. However, the absence of HTTPS and security headers is a significant technical and security shortfall. Security posture is weak due to missing HTTPS, lack of security headers, and no visible privacy or cookie policies. The WHOIS data is unavailable or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the website. No contact emails or phone numbers are provided, limiting direct communication and trust signals. Overall, the website is functional and content-rich for its business purpose but requires urgent improvements in security, privacy compliance, and domain registration transparency to enhance trust and protect users.

S

SILVINI

silvini.cz

64

SILVINI is a Czech-based company specializing in the design and manufacture of professional cycling and skiing apparel, targeting a broad range of sports enthusiasts including road cyclists, mountain bikers, and skiers. The company operates a well-structured e-commerce platform powered by Shopify, offering a wide product range including sportswear and nutritional supplements. The website demonstrates a mature digital presence with consistent branding and a focus on user experience. Technically, the site leverages modern web technologies and integrates standard analytics and marketing tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS enforcement, use of hCaptcha, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly available. Overall, SILVINI presents a trustworthy and professional online retail presence with room for improvement in transparency and accessibility.

S

SM-DATA, a.s.

eticka-linka.cz

59

Etická Linka is a Czech Republic based company providing a whistleblowing hotline software solution designed to help companies with more than 50 employees comply with new legislative requirements for whistleblower protection. The website clearly targets Czech businesses needing to implement secure and compliant reporting channels, offering software licenses and related services such as training and legal support. The company SM-DATA, a.s. appears to be the legal entity behind the service, with a domain registration consistent with the business timeline and ownership. Technically, the website uses basic HTML, CSS, and JavaScript with no advanced frameworks or CMS detected. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and security headers. Security posture is moderate with GDPR compliance claimed but no published privacy or cookie policies, and no incident response or vulnerability disclosure information available. Overall, the website is professional and trustworthy but could improve transparency and security practices.

A

Anklamer Wohnungsgenossenschaft eG

wg-anklam.de

47

The Anklamer Wohnungsgenossenschaft eG operates as a local housing cooperative based in Anklam, Germany, providing rental apartments and member services to the community. The website serves as a portal for housing offers, member services, and contact information, targeting residents seeking housing solutions in the region. The business model focuses on cooperative housing with a strong community orientation. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including FontAwesome and Google Tag Manager for analytics. The site is mobile-optimized and presents a professional design with clear navigation and content relevance. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policies and incident response contacts. Overall, the website is trustworthy and well-maintained, suitable for its target audience and business purpose.

P

proHolz Kärnten | proHolz Austria

proholz-kaernten.at

46

proHolz Kärnten is a regional organization dedicated to promoting the use of wood as a raw and construction material in the Kärnten region of Austria. The website serves as an information hub offering news, events, educational resources, consulting services, and career information related to the wood industry. It is part of the broader proHolz Austria network, indicating a strong regional and national presence in the sustainable wood sector. The site targets architects, builders, industry professionals, students, and the general public interested in wood construction and forestry. Technically, the website is built on the TYPO3 CMS platform, employs modern JavaScript and CSS, and integrates analytics tools such as Microsoft Clarity and Google Analytics via Google Tag Manager. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation structure. Security-wise, the website enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and obfuscates email addresses to prevent spam. However, explicit security headers and incident response information are not present, suggesting room for improvement in security posture documentation. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable resource for its target audience.

A

Archis

archis.org

44

Archis is a well-established architectural think tank and publisher operating since 1998. The organization focuses on publishing the VOLUME magazine, organizing events, and conducting international research projects related to architecture and design. Their target audience includes professionals, researchers, and enthusiasts in the architecture and design sectors. The website reflects a niche non-profit business model with a strong emphasis on content and community engagement. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Snipcart for e-commerce, indicating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and content-rich, but could benefit from improved security and privacy practices.

F

Fachverband Biogas

biogas-liefert.de

36

Biogas liefert is an educational and advocacy website operated by Fachverband Biogas, focusing on promoting biogas as a sustainable and flexible energy source in Germany. The platform provides informative content aimed at a general audience interested in renewable energy and the energy transition. The site is positioned as a niche player within the energy sector, leveraging official biogas branding and social media channels to reach its audience. Technically, the website uses modern JavaScript modules and SVG graphics, hosted on servers associated with kasserver.com. The site is mobile-optimized with a good user experience but lacks advanced technical frameworks or CMS indications. Security posture is basic, with no evident security headers or published policies, and no forms or data collection mechanisms are present. Privacy and cookie policies are absent, which impacts compliance and trust. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

A

Amt der Stadt Dornbirn

dornbirn.at

60

The website www.dornbirn.at serves as the official digital portal for the city administration of Dornbirn, Austria. It provides a broad range of municipal services and information including citizen assistance, political information, economic development, environmental programs, and cultural activities. The site targets residents and visitors, offering clear navigation and comprehensive content relevant to local governance and community life. The business model is that of a government entity focused on public service delivery and community engagement. Technically, the site is built on TYPO3 CMS, a robust and widely used content management system for government and enterprise websites. The infrastructure supports modern web standards with responsive design and accessibility features, ensuring usability across devices. Performance is moderate, with no critical technical issues detected. SEO and metadata are well implemented, including JSON-LD structured data for enhanced search engine understanding. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security policies, which are recommended best practices. No vulnerability disclosures or incident response contacts are available, representing an area for improvement. Privacy compliance is partial, as no privacy or cookie policies were found, which may impact GDPR adherence. Overall, the website is trustworthy and professional, reflecting its role as a municipal government portal. The risk level is low, but strategic enhancements in privacy transparency and security policy publication would strengthen its compliance and security posture. Recommendations include adding privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure process.

The website i-pronajem.cz operates as a niche real estate rental listing platform primarily targeting the Czech market. It offers listings for apartments, cottages, and chalets, catering to both private owners and commercial real estate agencies. The business model revolves around providing a platform for rental advertisements, positioning itself as a local player in the real estate sector since 2008. The site content is basic but relevant to its audience, with moderate branding consistency and limited trust indicators. Technically, the website uses standard HTML, CSS, and JavaScript without modern frameworks or CMS detected. Hosting is provided by VAS Hosting, a Czech hosting provider, which aligns with the domain's geographic focus. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. No advanced analytics or marketing tools are evident, and tracking is limited to a visitor counter pixel. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, indicating compliance gaps with GDPR and other regulations. No contact information or incident response channels are provided, limiting transparency and user trust. The domain registration data is consistent and legitimate, supporting the site's credibility. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, the website presents a functional but basic platform with significant opportunities to enhance security posture, privacy compliance, and user engagement through improved technical implementation and transparency.

A

ARCHITEKTUR RAUMBURGENLAND

architekturraumburgenland.at

53

ARCHITEKTUR RAUMBURGENLAND is a small, regionally focused non-profit organization dedicated to promoting architectural culture and community development in Burgenland, Austria. The website serves as a platform for architectural documentation, workshops, events, and publications, targeting architects, local communities, and cultural enthusiasts. The site is built on the Plone CMS platform, utilizing modern JavaScript libraries and responsive design to provide a good user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit security headers and policies could be improved. The domain registration is consistent with the organization's regional focus and history, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

A

Architekturstiftung Österreich

architekturstiftung.at

51

Architekturstiftung Österreich is a small Austrian foundation focused on promoting architecture and building culture through events, publications, and awards. The website is professionally designed using the Plone CMS and integrates modern web technologies including Google Analytics and Leaflet.js. It demonstrates good privacy compliance with a clear privacy policy and cookie consent mechanism. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not published. The domain registration is consistent with the organization's Austrian identity and founding year, supporting legitimacy. Overall, the website serves its cultural and educational mission effectively with a trustworthy online presence.

Z

Zentralvereinigung der Architekt:innen Österreichs

zv-architekten.at

49

The Zentralvereinigung der Architekt:innen Österreichs is a well-established professional association representing architects in Austria. The website serves as a platform to promote architectural culture, organize awards such as the Bauherr:innenpreis, and provide information on events, exhibitions, and publications relevant to the Austrian architecture community. The organization targets architects, building owners, and architecture enthusiasts within Austria, operating primarily as a non-profit entity focused on cultural and professional development in architecture. Technically, the website is built on the Plone CMS platform, utilizing modern frontend technologies including JavaScript libraries like Slick Slider and Leaflet for interactive content. The site is mobile-optimized and presents a good user experience with clear navigation and professional design. However, some accessibility features could be improved. Performance is moderate, with asynchronous loading of scripts enhancing responsiveness. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not provide explicit privacy or cookie policies, nor does it offer vulnerability disclosure or incident response information. These gaps represent areas for improvement to enhance user trust and compliance with data protection regulations. Overall, the website is trustworthy and professional, reflecting the organization's reputable standing in the Austrian architectural sector. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, and publishing vulnerability disclosure and incident response contacts to strengthen security posture and regulatory compliance.

P

Pivní lázně Svijany

pivnilaznesvijany.cz

61

Pivní lázně Svijany is a specialized wellness business offering beer spa treatments and relaxation services integrated within a historic brewery and hotel complex in the Czech Republic. The website presents a professional and well-structured digital presence targeting adults interested in unique wellness experiences involving beer products. The business model focuses on hospitality and niche wellness services, supported by clear contact information and customer testimonials, enhancing trust and credibility. Technically, the website employs a modern tech stack including JavaScript, jQuery, and Google Tag Manager, running on the Public4u CMS platform. The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and lack of explicit security policies are areas for improvement. The WHOIS data is unavailable, which raises concerns about domain registration transparency and trustworthiness. Despite this, the website content and contact details appear legitimate and professional. Privacy and cookie policies are comprehensive and GDPR compliant, supporting good privacy practices. No incident response or vulnerability disclosure information is present, indicating potential gaps in security readiness. Overall, the website scores well in content quality, privacy compliance, and business credibility but should address WHOIS transparency and enhance security headers to improve trust and security posture.

Nikon Corporation operates a comprehensive corporate website showcasing its global business in imaging and precision technology solutions. The company emphasizes innovation and sustainability aligned with its corporate philosophy. The website targets both business and consumer audiences worldwide, offering detailed product, service, and corporate information. Technically, the site employs modern web standards, responsive design, and privacy-compliant cookie management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and incident response details are absent. The domain WHOIS data is unavailable, likely due to privacy or registry policies, but the website's professional presentation and trust signals affirm its legitimacy. Overall, the site scores highly on content quality, technical implementation, security, privacy compliance, and business credibility, making it a reliable and authoritative corporate web presence.

N

noz.de

noz.de

70

noz.de is a well-established regional news portal serving Osnabrück and surrounding areas in Germany. It provides current news in politics, economy, technology, and sports, targeting a general audience interested in local and regional news. The business model is primarily based on digital news publishing with subscription options and advertising revenue. The website demonstrates consistent branding and a professional digital presence with a strong social media footprint. Technically, the site employs modern web technologies including JavaScript, CSS, and HTML5, with integrations for paywall management (Piano), ad security (Confiant), and advertising delivery (Nativendo). The hosting is managed via basecom.de nameservers, indicating a stable infrastructure. Performance and mobile optimization are good, though accessibility features are basic. SEO is well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses a consent management platform for GDPR compliance. However, explicit security headers like CSP and X-Frame-Options are not clearly present, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is safe, professional, and trustworthy with no adult or questionable content. The main areas for improvement include publishing clear privacy and terms of service policies, enhancing security headers, and providing incident response contacts to strengthen compliance and user trust.

F

Fachverband Biogas e.V.

biogas.org

49

Fachverband Biogas e.V. is a prominent German industry association dedicated to the biogas sector, providing advocacy, information, and member services. The organization maintains a professional and content-rich website powered by TYPO3 CMS, featuring comprehensive resources including publications, events, and a members-only portal. Their market position is strong within the renewable energy sector in Germany, supported by partnerships and certifications such as the SURE scheme. Technically, the website employs modern frameworks like Bootstrap and FontAwesome, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain trust verification but the overall digital presence and content quality indicate a legitimate and professional entity.

B

Biosphärengebiet Schwäbische Alb e.V.

biosphaerengebiet-alb.de

50

The website www.biosphaerengebiet-alb.de serves as the official information portal for the UNESCO Biosphere Reserve Schwäbische Alb, operated by the non-profit organization Biosphärengebiet Schwäbische Alb e.V. It provides comprehensive regional information, educational content, event announcements, and promotes sustainable tourism and environmental conservation. The site targets a broad audience including tourists, local residents, and environmental enthusiasts. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and integrates privacy-compliant cookie consent mechanisms and Matomo analytics for user tracking. Security posture is good with HTTPS enforced and basic security best practices observed, though additional security headers and explicit security policies could enhance protection. The domain WHOIS data is limited but shows no suspicious patterns, supporting the site's legitimacy. Overall, the website is professional, trustworthy, and well-optimized for accessibility and SEO.

A

aut. architektur und tirol

aut.cc

52

aut. architektur und tirol is a non-profit cultural institution based in Innsbruck, Austria, dedicated to promoting architecture and building culture in the Tirol region. The organization offers exhibitions, events, publications, and architectural tours, targeting architecture enthusiasts, professionals, and the local community. The website reflects a well-structured and content-rich platform supporting these activities. Technically, the site is built on the Plone CMS platform, utilizing modern web technologies and frameworks such as Patternslib and Slick Slider, providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS enforced and appropriate security headers, though the absence of explicit privacy and cookie policies indicates room for improvement in compliance. Overall, the domain registration data aligns well with the organization's identity, supporting legitimacy and trustworthiness.

A

afo architekturforum oberösterreich

afo.at

48

afo architekturforum oberösterreich is a well-established non-profit organization dedicated to promoting architecture and building culture in Upper Austria. The website serves as a comprehensive platform for events, exhibitions, residencies, and publications related to architecture. It targets architects, planners, cultural institutions, and the general public interested in architectural discourse and urban development. The organization maintains strong partnerships with regional and national architecture networks, enhancing its market position as a key cultural player in the region. Technically, the website is built on the Plone CMS platform, utilizing modern JavaScript libraries such as Leaflet.js and Moment.js for interactive features. The site is served over HTTPS with appropriate security headers, indicating a good security posture. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured navigation. Security-wise, the site demonstrates good practices including HTTPS enforcement and security headers. However, it lacks a cookie consent mechanism and published security or incident response policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with a comprehensive privacy policy, but cookie consent and GDPR explicit mechanisms could be enhanced. Overall, the website is professional, trustworthy, and content-rich, supporting the organization's mission effectively. Strategic recommendations include implementing cookie consent, publishing security policies, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security and compliance.

H

HolidayCheck AG

holidaycheck.at

61

HolidayCheck AG operates a leading hotel review and travel booking portal primarily serving the German-speaking markets of Austria, Germany, and Switzerland. The website offers extensive hotel reviews, price comparisons from numerous travel providers, and additional services such as car rentals and travel forums. The company holds a strong market position with a large user base and recognized brand. Technically, the website is built on modern web technologies including React and employs performance optimizations and accessibility features, ensuring a fast and user-friendly experience across devices. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

O

Obertauern

obertauern.com

51

Obertauern is a well-established tourism and hospitality website promoting a leading winter sports and summer holiday destination in Austria's Salzburger Land. The site offers comprehensive information and booking services for accommodations and activities, targeting winter sports enthusiasts, families, and outdoor lovers. The website is built on TYPO3 CMS, indicating a mature technical infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit policies are recommended. The absence of WHOIS data reduces trust slightly but the professional presentation and contact information support legitimacy. Overall, the site is a credible and functional platform for tourism services.

The UFC Store is the official e-commerce platform for UFC merchandise, offering licensed apparel and accessories to fans worldwide. The website presents a professional and consistent brand image, targeting UFC enthusiasts and sports merchandise consumers. The business model focuses on retail sales of official UFC gear, positioning itself as a key player in the sports retail sector. Technically, the site employs modern web technologies including JavaScript, CSS, and optimized font formats, delivering a moderate performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled, but lacks visible security headers and comprehensive privacy compliance documentation. The absence of WHOIS registration data raises concerns about domain registration transparency, although the site itself appears legitimate and trustworthy. Overall, the site scores well in content quality and business credibility but should improve privacy compliance and security best practices to enhance trust and regulatory adherence.

I

iNDiGO multimedia s.r.o.

indigo.cz

41

iNDiGO multimedia s.r.o. is a small Czech Republic-based technology company specializing in bespoke mobile and web-based solutions tailored to client needs. The website presents a basic but clear business overview with contact information and social media links, targeting business clients seeking customized software solutions. The company has been established since 2005, indicating a stable market presence. Technically, the website is simple, built with basic HTML and CSS, hosted on Forpsi servers as inferred from the nameservers. There is no evidence of modern frameworks, CMS, or analytics tools. The site is accessible without WAF or security challenges but lacks advanced technical features such as security headers, HTTPS confirmation, or performance optimizations. From a security perspective, the site does not display privacy or cookie policies, security policies, or incident response information. No security headers or vulnerability disclosures are present, and no forms or scripts that could pose risks are detected. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the security posture is basic and could be improved significantly. The overall risk is moderate due to the lack of security and privacy compliance features, but no critical vulnerabilities or suspicious indicators were found. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding security headers, and establishing incident response contacts to enhance trust and compliance.

B

BARBORA ŠNÁBLOVÁ Attorneys

snablova.com

59

BARBORA ŠNÁBLOVÁ Attorneys is a specialized boutique law firm based in Prague, Czech Republic, focusing on international and domestic dispute resolution, particularly arbitration and litigation. Established in 2015, the firm offers expert legal services in commercial arbitration, investment disputes, sports-related cases, and arbitration-related litigation, serving clients both locally and internationally. Their website reflects a professional and client-focused approach, emphasizing strategic legal guidance throughout dispute processes. Technically, the website is built on the Webnode platform, hosted on AWS S3 with Cloudfront CDN, and employs modern web technologies including JavaScript and Google Tag Manager for analytics. The site is mobile-optimized and presents a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS with good SSL configuration but lacks important security headers and privacy compliance elements such as privacy and cookie policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, the site scores well on content quality and business credibility but needs improvements in privacy compliance and domain legitimacy verification.

Nikon is a globally recognized leader in imaging and optics technology, offering a wide range of digital cameras, lenses, and photography accessories. The website serves as a comprehensive retail and informational platform targeting photography enthusiasts and professionals, providing detailed product information, firmware updates, and support resources. The site demonstrates a high level of digital maturity with modern technologies such as React, Google Tag Manager, and Microsoft Application Insights integrated for analytics and performance monitoring. Privacy and cookie policies are well implemented with consent mechanisms, reflecting compliance with GDPR standards. Security posture is strong, with HTTPS enforced and appropriate security headers present, although dedicated security and incident response pages are not found. Overall, the website is professional, trustworthy, and well-optimized for user experience and mobile devices.

Nikon is a globally recognized technology company specializing in imaging products such as cameras, lenses, and sport optics. The Ukrainian localized website serves as a comprehensive portal for product information, firmware updates, support services, and brand engagement. The site targets photographers ranging from hobbyists to professionals, offering detailed product showcases and support resources. The business model focuses on manufacturing and retail of high-quality imaging equipment, maintaining a strong market position as a leading brand in the technology sector. The website demonstrates excellent content quality, professional design, and consistent branding aligned with Nikon's global identity. Technically, the website employs modern web technologies including React, Google Tag Manager, Microsoft Application Insights for analytics, and OneTrust for cookie consent management. The site is built on the Optimizely CMS platform, optimized for mobile devices, and incorporates accessibility features. Performance is fast with proper SEO and metadata implementation. Security is robust with HTTPS enforced and standard security headers present, though explicit security policy and incident response information are not published. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR compliance indicators. Contact information is available via web forms, but no direct emails or phone numbers are published. Social media links are official and consistent with Nikon's brand presence. The domain WHOIS data aligns with Nikon's corporate identity, confirming legitimacy and trustworthiness. Overall, the website is a professional, secure, and user-friendly platform that effectively supports Nikon's business objectives in Ukraine. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to enhance transparency and trust.

Nikon is a globally recognized brand specializing in digital cameras, lenses, and photography accessories. The Spanish website serves as a comprehensive portal for product information, firmware updates, and customer support, targeting photography enthusiasts and professionals. The site demonstrates a strong market position with consistent branding and a broad product portfolio. Technically, the website employs modern web technologies including React, Google Tag Manager, and Microsoft Application Insights, ensuring a responsive and user-friendly experience across devices. Security measures such as HTTPS, nonce-based script loading, and cookie consent mechanisms are implemented, reflecting a mature security posture. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting Nikon's reputation in the photography retail sector.

Nikon Moldova's website serves as a comprehensive digital storefront and information portal for Nikon's photography products including digital cameras, lenses, and accessories. The site targets photography enthusiasts and professionals in Moldova, offering product details, firmware updates, and customer support resources. The brand is well-established globally, and this localized site reflects Nikon's commitment to regional markets with consistent branding and multilingual support. Technically, the website employs modern web technologies such as React, Google Tag Manager, Microsoft Application Insights, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Analytics and tracking are implemented with privacy considerations, including consent mechanisms. From a security perspective, the site uses HTTPS with strong SSL configuration and security headers, employs nonce attributes for scripts, and avoids exposing sensitive data. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No vulnerabilities or suspicious activities were detected in the content. Overall, Nikon Moldova's website demonstrates a high level of professionalism, security, and compliance, supporting Nikon's reputable market position. Strategic recommendations include publishing detailed security and incident response policies, enhancing transparency on data protection roles, and maintaining vigilance on third-party script security.

D

dieBeiden Internetagentur GmbH

diebeiden.at

45

dieBeiden Internetagentur GmbH is a small, regional full-service internet agency based in Salzburg, Austria, with approximately 19 years of industry experience. The company specializes in web design, custom web development, CMS solutions, mobile app development, e-commerce platforms, and newsletter systems. Their market position is supported by a solid client base of over 400 satisfied customers and a professional online presence that highlights their expertise and service breadth. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital infrastructure. Technically, the website is built on the XMS Content Management System, leveraging modern web standards including HTML5, CSS, and JavaScript. The site demonstrates good SEO practices and basic accessibility features, with moderate performance characteristics. Security posture is adequate with HTTPS enforced and a cookie consent mechanism in place, though there is room for improvement by adding security headers and explicit security policies. From a security and compliance perspective, the site complies with GDPR requirements, evidenced by a comprehensive privacy policy and cookie consent banner. However, no dedicated security policy or incident response contacts are provided, which could be enhanced to improve trust and readiness. No vulnerabilities or suspicious activities were detected in the provided content. Overall, dieBeiden presents a trustworthy and professional digital footprint suitable for its business scope. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen their security posture and compliance standing.

W

Wiedermayer & Friends

wf-creative.com

48

Wiedermayer & Friends is a small, local advertising agency based in Vienna, Austria, founded in 2017. The company offers creative advertising and marketing services targeting businesses in the Vienna region. The website is built on WordPress using the Elementor framework and includes modern web technologies and marketing tools such as Google Tag Manager and Sendinblue. The technical infrastructure is hosted by Hetzner Online GmbH, a reputable hosting provider. Security posture is adequate with HTTPS enabled and no evident vulnerabilities, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and functional but could improve in privacy and security transparency.

S

Stauss-Perlite GmbH

stauss-perlite.at

66

Stauss-Perlite GmbH is a well-established Austrian manufacturer and supplier specializing in mineral building materials, non-combustible insulation, plaster carriers, and facade systems. With over 100 years of history, the company serves a global customer base, offering a broad product portfolio including expanded perlite and related construction materials. The website reflects a mature business with clear branding, comprehensive product information, and a professional digital presence. Technically, the site uses modern web technologies, is mobile-optimized, and includes privacy-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security best practices like explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, compliant with GDPR, and provides multiple contact channels for customer engagement.

Č

Český svaz chovatelů masného skotu

cschms.cz

43

ČSCHMS (Český svaz chovatelů masného skotu) is a Czech national association founded in 1990 that unites breeders of 25 beef cattle breeds. It manages breed registries, conducts performance and genetic controls, evaluates animal exterior, and organizes selection of young bulls. The website serves as an information hub for breeders and stakeholders, providing news, event calendars, breed-specific data, and access to specialized services like breed databases and performance control portals. The association holds recognized certifications such as ICAR, enhancing its credibility in the agricultural sector. Technically, the website uses legacy technologies like MooTools and Slimbox, with a basic design and limited mobile optimization. Security posture is moderate with HTTPS implied but lacking advanced security headers and privacy compliance mechanisms. WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective but does not detract from the association's established presence and external trust signals.

The International Floorball Federation (IFF) operates the website floorball.sport as the official global governing body for the sport of floorball. The site primarily serves as an informational hub for floorball events, news, and media channels, targeting players, fans, and sports organizations worldwide. The domain registration data aligns well with the organization's identity, confirming legitimacy and appropriate domain age. Technically, the website employs basic HTML and CSS with external resources such as Font Awesome and Azure DNS hosting. The site is currently under construction, resulting in limited content and slower page loads. Mobile optimization and accessibility are basic but functional. No advanced CMS or analytics tools are detected, indicating a simple technical infrastructure. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No contact or incident response information is provided, limiting transparency and user trust. Overall, the website is moderately trustworthy and functional but requires improvements in privacy compliance, security hardening, and content completeness to better serve its audience and meet modern standards.

D

Datlab Institut z.s.

datlabinstitut.cz

52

Datlab Institut is a Czech non-profit organization affiliated with Charles University, specializing in research and analysis to promote transparency and efficiency in public procurement and political finance. The organization operates several projects such as ZINDEX and Politickefinance.cz, targeting public sector stakeholders and the general public interested in governance and public spending. The website reflects a professional and consistent brand image with clear contact information and active external partnerships. Technically, the website employs modern tracking and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, alongside a Vue.js-based cookie consent mechanism. Hosting appears to be managed through WEDOS, consistent with the domain registrar data. The site is mobile-optimized with good navigation and content relevance, though some accessibility and SEO improvements are possible. From a security perspective, the site enforces HTTPS and employs cookie consent defaults denying ad and analytics storage until consent. However, explicit security headers are not detected in the HTML, and no privacy policy or terms of service pages are present, indicating compliance gaps. No vulnerabilities or exposed sensitive data were found. The WHOIS data is transparent and consistent with the organization's profile, supporting legitimacy. Overall, the website presents a low-risk profile with good business credibility and moderate technical maturity. Strategic improvements in privacy documentation, security headers, and accessibility would enhance compliance and trust.

D

Datlab s.r.o.

datlab.eu

59

Datlab s.r.o. is a Czech-based company specializing in data gathering, processing, and analytics with a focus on economic data and public procurement. Their website highlights multiple specialized products aimed at public authorities, businesses, and researchers, including sanctions verification, tender documentation, supplier risk detection, and procurement monitoring. The company serves a diverse client base including government agencies, municipalities, universities, and NGOs, positioning itself as a trusted regional player in the public procurement data sector. Technically, the website employs modern JavaScript frameworks such as Vue.js and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and professional design. Cookie consent is managed via a Vue.js component, indicating attention to privacy compliance, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, registered under a reputable Czech registrar, supporting legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include publishing a privacy policy and terms of service, adding security headers, and providing vulnerability disclosure information to enhance security posture and compliance.

O

Original Games

spotthedifference.com

55

SpotTheDifference.com is a niche casual gaming website offering over 70 'spot the difference' puzzles and games. The site targets general audiences interested in casual online puzzles and is funded primarily through advertising. The business appears small and focused on providing entertainment through browser-based games with some social media integration. Technically, the site uses a variety of third-party ad networks and tracking services, including Google Analytics, Criteo, and InMobi, indicating a moderate level of digital maturity but with potential privacy concerns. The site lacks visible privacy policies and contact information, which impacts trust and compliance. Security posture is weak due to missing HTTPS enforcement and security headers, and the absence of WHOIS registration data raises legitimacy concerns. Overall, the site functions as a basic casual gaming platform with room for improvement in security, privacy, and business transparency.

H

Helix Pflanzensysteme GmbH

helix-pflanzensysteme.de

58

Helix Pflanzensysteme GmbH is a specialized company focused on vertical greening systems and sustainable urban green solutions, serving architects, urban planners, and municipalities primarily in Germany. Their website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive content about their services including planning, construction, and maintenance of green facades and noise barriers. The technical infrastructure is based on TYPO3 CMS, with modern web technologies and integrations such as Google Tag Manager and reCAPTCHA for security. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. Privacy compliance is well addressed with detailed policies and user consent options. Overall, the website reflects a trustworthy and credible business with a strong market position in the real estate and urban ecology sector.