Security Directory

Mastercard Norway's website serves as a corporate portal for Mastercard's payment and financial services in Norway. The site presents a professional brand image consistent with Mastercard's global identity, targeting consumers and businesses in the Norwegian market. The business model focuses on payment processing and digital payment solutions, positioning Mastercard as a leading player in the finance sector. Technically, the website employs modern web technologies such as StencilJS web components, ensuring a contemporary user experience with good mobile optimization. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are important for compliance and user trust. Security posture is moderate with HTTPS enforced but missing additional security headers. Overall, the site appears legitimate and safe but could improve transparency and compliance aspects.

M

mnemonic AS

mnemonic.io

81

mnemonic AS is a well-established cybersecurity company based in Norway, celebrating 25 years of operation in 2025. The company specializes in helping businesses manage security risks, protect data, and defend against cyber threats. Their market position is strong within Europe, offering a broad range of services including Managed Detection & Response, Threat Intelligence, Incident Response, Assessments & Testing, Consulting, and Security Products. The company targets businesses requiring advanced cybersecurity solutions and operates multiple offices across Europe and the US. Technically, the website is built on the EPiServer CMS platform with modern web technologies and demonstrates good mobile optimization, accessibility, and SEO practices. The site is performant with a professional design and clear navigation. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though it lacks some advanced security headers and a public vulnerability disclosure policy. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies. The WHOIS data is privacy protected, which is typical for cybersecurity firms, and the domain's legitimacy is supported by consistent contact information and trusted client references. Overall, mnemonic presents a professional, trustworthy, and technically mature online presence with a strong focus on cybersecurity services for enterprise clients.

T

Teknisk Ukeblad Media AS

digi.no

61

Digi.no is a leading Norwegian IT industry news website operated by Teknisk Ukeblad Media AS, providing comprehensive news, analysis, and commentary focused on technology and digitalization. The site targets IT professionals and business decision makers in Norway, offering subscription-based content alongside advertising revenue. The technical infrastructure is modern, leveraging Next.js and React frameworks, with integration of multiple analytics and marketing tools such as Facebook Pixel, LinkedIn Insight, and Hotjar. The website demonstrates strong GDPR compliance through an integrated consent management platform and clear privacy policies. Security posture is robust with HTTPS enforcement and standard security headers, though explicit security policies and vulnerability disclosure mechanisms are not publicly available. Overall, Digi.no presents a professional, trustworthy, and well-maintained digital media presence with a high level of content quality and user experience.

Č

Česká pošta

sipo.cz

51

The website sipo.cz represents the SIPO payment tool operated by Česká pošta, the Czech national postal service. It offers a consolidated payment solution for regular bills such as utilities, rent, and broadcasting fees, simplifying payment processes for the general public in the Czech Republic. The site is well-branded, consistent with the parent company, and provides clear information about the service and contact details. The domain is long-established, dating back to 2001, aligning with the service's history and legitimacy. From a technical perspective, the website uses standard web technologies including HTML5, CSS, and JavaScript. It is mobile-optimized and provides a good user experience with clear navigation and professional design. However, there is no explicit CMS or advanced frameworks detected, and some accessibility and SEO optimizations are basic. Security headers and explicit security policies are not visible in the provided content, though HTTPS usage is implied. No signs of tracking or advertising scripts were found, indicating a privacy-conscious approach. Security posture is moderate with no critical vulnerabilities detected in the content. The site links to comprehensive privacy and cookie policies hosted on the official Czech Post domains, indicating GDPR compliance. Contact information is clearly provided, but there is no visible incident response or vulnerability disclosure information. The domain WHOIS data is consistent with the business claims, enhancing trustworthiness. Overall, the website is a trustworthy, government-backed payment service platform with good content quality and business credibility. Strategic improvements could focus on enhancing security headers, adding explicit security and incident response policies, and implementing cookie consent mechanisms to further strengthen privacy compliance and security posture.

W

wbv Media

wbv-media.de

57

wbv Media is a well-established German family-owned media and logistics company with over 150 years of history. It operates through three main business units: Distribution, Communication, and Publication, serving public clients, scientific communities, and online shops. The company positions itself as a reliable partner with scalable logistics and communication services, emphasizing tradition and innovation. Technically, the website uses modern frameworks like UIkit and jQuery, is mobile-optimized, and implements a cookie consent mechanism with blocking access until consent is given. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

F

Formspree

formspree.io

65

Formspree, Inc is a US-based technology company founded in 2014 that provides a SaaS form backend, API, and email service tailored for developers and businesses seeking to embed custom forms without server code. The company enjoys a strong market position, trusted by over 500,000 users including freelancers, agencies, and Fortune 500 companies such as Amazon, OpenAI, and Adobe. Their key services include spam filtering, email notifications, third-party integrations, and easy-to-use popup forms, positioning them as a reliable form solution provider in the developer tools space. Technically, the website is built using the Hugo static site generator and leverages modern analytics platforms including Google Analytics, Amplitude, and PostHog. Hosting and DNS services are provided by Cloudflare, ensuring fast performance and robust infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security practices include HTTPS enforcement, machine learning spam filtering, reCaptcha integration, and custom spam rules, although DNSSEC is not enabled and some security headers may be missing. From a security standpoint, Formspree demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. Privacy and terms of service policies are comprehensive and GDPR compliant, though explicit incident response contacts and vulnerability disclosure policies are absent. The domain registration data aligns well with the website content, reinforcing legitimacy and trustworthiness. Overall, Formspree presents a professional, secure, and privacy-conscious service with excellent content quality and technical implementation. Strategic improvements could include enabling DNSSEC, publishing a security.txt file, and adding cookie consent mechanisms to enhance compliance and security transparency.

The website centralni-adresa.net serves as an informational portal for a Czech government registry concerning declarations of activities, property, income, gifts, and liabilities under law 159/2006 Sb. The site is operated by Galileo Corporation s.r.o., a small company providing niche registry services to public officials and government entities. The content is primarily legal and regulatory in nature, targeting officials and citizens interested in conflict of interest declarations. The site is modest in design and content quality, with basic navigation and limited interactivity. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with resources hosted on the same domain. The site uses HTTPS, but lacks visible advanced security headers such as CSP or HSTS. There is no evidence of a CMS or modern frameworks, and the site appears to have been last updated in 2017, indicating potential technical debt and outdated content. Mobile optimization and accessibility are basic but present. From a security perspective, the site does not expose sensitive data or forms on the main page, which reduces risk. However, the absence of security headers and privacy/cookie policies indicates gaps in compliance and best practices. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency and legitimacy, although the site content and footer indicate a legitimate business operator. Overall, the site is functional and serves its informational purpose but requires improvements in security posture, privacy compliance, and domain registration transparency to enhance trustworthiness and regulatory compliance.

Č

Česká pošta

postaonline.cz

69

Česká pošta operates the PoštaOnline website as the official online portal for the Czech national postal service. The site provides a comprehensive suite of postal and logistics services including parcel tracking, branch location, online parcel sending, and business-oriented services. It also integrates eGovernment services and an eShop for postal goods, targeting both general public and business customers within the Czech Republic. The website is well-branded, consistent, and professionally designed, reflecting its position as a large enterprise and national postal operator. Technically, the site is built on the Liferay CMS platform, utilizing common JavaScript libraries such as jQuery and SlickNav for UI components. The site is mobile-optimized, accessible, and performs moderately well. Security is enforced through HTTPS and cookie consent mechanisms, though some advanced security headers are missing. The site integrates Google Analytics for user tracking with a GDPR-compliant cookie banner. From a security perspective, the site demonstrates good practices with encrypted connections and session management. However, the absence of WHOIS data limits domain registration trust analysis. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie information are clearly presented, supporting GDPR compliance. Overall, the site is trustworthy and safe for general users. Strategically, the site should improve domain registration transparency, add security headers, and publish explicit security policies and incident response contacts to enhance trust and compliance. These steps will strengthen the security posture and business credibility further.

T

Teknisk Ukeblad

tu.no

59

Teknisk Ukeblad is a leading Norwegian technology news media outlet providing comprehensive coverage of technology sectors including energy, maritime, construction, industry, health, electric vehicles, aviation, and transportation. The website targets Norwegian technology professionals and enthusiasts with subscription and advertising-based business model. The digital infrastructure is built on modern web technologies such as React and Next.js, with integration of video streaming and consent management platforms to ensure GDPR compliance. Security posture is moderate with HTTPS usage and consent management but lacks visible security headers and explicit incident response policies. The domain WHOIS data is unavailable, limiting trust assessment, but the professional content and consistent branding indicate a legitimate and established business. Overall, the website offers excellent content quality and user experience with room for security and transparency improvements.

CATIOAPPS is a newly established technology company (founded in 2023) specializing in AI-powered API services for photo shoot generation and image processing. Their platform offers developers and businesses easy integration of AI features through pre-set prompts and models, eliminating the need for complex prompt engineering or image storage management. The company positions itself as a niche provider in the AI API market with clear subscription-based pricing plans and a focus on rapid integration. Technically, the website is built using modern web technologies including JavaScript and CSS, with indications of Laravel framework usage on the backend. Hosting and DNS services are provided by IONOS SE and Cloudflare respectively. The site demonstrates good performance, mobile optimization, and basic SEO practices, though accessibility features are minimal. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and important security headers. There is no visible security policy or incident response contact information published, and no cookie consent mechanism is implemented, which may impact privacy compliance. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, CATIOAPPS presents a professional and functional online presence suitable for its business model, but should improve privacy compliance and security posture to enhance trust and regulatory adherence.

T

Teknisk Ukeblad Media AS

veier24.no

58

Teknisk Ukeblad Media AS operates the website tu.no, a leading Norwegian technology news platform focusing on sectors such as energy, transportation, maritime, and industrial technology. The site offers extensive news coverage, analysis, and commentary targeted at technology professionals and enthusiasts in Norway. The business model is primarily subscription and advertising-based, supported by a modern digital infrastructure. The company maintains a strong market position as a trusted source of technology news in Norway. The website is built on a modern tech stack including React and Next.js, with integration of advanced analytics and subscription management tools such as Piano and Cxense. The site demonstrates excellent performance, mobile optimization, and SEO practices, ensuring a high-quality user experience. The technical infrastructure supports extensive content delivery and user engagement features. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates a GDPR-compliant consent management platform. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing transparency around security policies, adding vulnerability disclosure mechanisms, and maintaining up-to-date domain registration information to further strengthen trust and compliance.

H

$HEEHEE | SOLANA

heehee.community

57

The website www.heehee.community represents a community-driven cryptocurrency project built on the Solana blockchain. It emphasizes a fair launch with no presales, locked liquidity, and a doxxed developer, aiming to build a strong community and token utility through marketing, influencer partnerships, and premium services for token holders. The site presents a clear roadmap and team information, targeting crypto investors and enthusiasts interested in Solana tokens. Technically, the site is built using modern web technologies including React and Next.js, offering good mobile optimization and a visually consistent design. However, the site lacks critical compliance documents such as privacy and cookie policies, and no contact information is provided, which impacts trust and regulatory compliance. Security posture is moderate with no visible vulnerabilities but missing security headers and SSL configuration details. WHOIS data is unavailable due to query failure or privacy protection, limiting domain legitimacy verification. Overall, the site is functional and informative but requires improvements in compliance, security, and transparency to enhance trustworthiness and user confidence.

O

Obec Chvojenec

chvojenec.cz

42

Obec Chvojenec is the official website of the municipality of Chvojenec in the Czech Republic, serving as a local government portal providing community information, public notices, and municipal services. The website targets residents and visitors seeking information about local governance, events, and services. The site is well-structured with clear navigation and consistent branding, reflecting a small government entity focused on community engagement. Technically, the website employs standard web technologies including jQuery, YouTube API integration, and Google Analytics for visitor tracking. It uses HTTPS to secure communications and implements a cookie consent mechanism, indicating some level of privacy awareness. However, the absence of a dedicated privacy policy and security headers suggests room for improvement in compliance and security hardening. From a security perspective, the site shows moderate maturity with HTTPS enabled and no visible vulnerabilities in the provided content. The lack of WHOIS data limits domain trust verification, but the website content and external references support its legitimacy. No signs of malicious or adult content were found, and the site appears safe for general audiences. Overall, the website is functional and professional for its purpose but would benefit from enhanced privacy disclosures, improved security headers, and better transparency in domain registration to strengthen trust and compliance.

O

Obec Týnišťko

tynistko.cz

56

Obec Týnišťko operates an official municipal website serving the local community with news, official announcements, and administrative information. The site is positioned as a trusted source for residents and stakeholders of the municipality, providing transparency and engagement opportunities such as public meetings and strategy updates. The website is built on Joomla CMS with a Helix Ultimate template, reflecting a moderate level of digital maturity suitable for a small government entity. Technically, the site is functional and mobile-optimized but lacks advanced security headers and cookie consent mechanisms. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but improvements are recommended to enhance compliance and protection. Overall, the website is credible and trustworthy, with clear contact information and consistent branding, though privacy compliance could be strengthened.

O

Obec Horní Ředice

horniredice.cz

42

Obec Horní Ředice operates an official municipal website serving the local community in the Czech Republic. The site provides comprehensive information about the municipality, including local government news, event calendars, public notices, educational institutions, and community services. It targets residents and visitors seeking official information about Horní Ředice. The business model is that of a government information portal, focusing on transparency and community engagement. The website is well-branded and consistent with its official purpose, reflecting a small-sized local government entity founded in 2003. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and integrates external resources such as YouTube for video content and Smart App Banner for mobile app promotion. The hosting is managed through a Czech registrar and name servers, indicating local infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site benefits from HTTPS encryption and avoids exposing sensitive data. However, it lacks explicit security headers and formal security policies such as vulnerability disclosure or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR applicability. No tracking or advertising scripts were detected, indicating minimal user tracking. Overall, the website is trustworthy and professional, serving its governmental function effectively. The main risks relate to privacy compliance and security policy transparency. Strategic improvements in these areas would enhance user trust and regulatory adherence.

S

Stormballet – Taneční škola

stormballet.com

43

Stormballet.com is the website of a Czech dance school established in 2004, offering dance education services primarily to a local audience. The website is built on WordPress using the Visual Composer plugin, indicating a moderate level of digital maturity. The site design and content are basic but functional, with no advanced SEO or accessibility features detected. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. No privacy or cookie policies are present, indicating compliance gaps with GDPR. Contact information and business certifications are not visible, which may affect user trust. Overall, the site represents a small local business with a basic online presence.

J

jakub cigler architekti, a.s.

unlimitedjca.com

59

unlimited Jakub Cigler Architekti is a pro-bono and experimental architectural practice operating as a department within the established Czech architectural studio jakub cigler architekti, a.s. The practice focuses on sustainable, regenerative, and socially conscious architecture, with projects primarily in Burkina Faso, Ethiopia, Mauritania, and the Czech Republic. Their work emphasizes low-tech methods and locally sourced materials, targeting architects, designers, and socio-cultural collaborators. The website is hosted on WordPress.com and leverages Jetpack plugins for functionality and social features. Contact information is clearly provided, supporting business credibility. However, the site lacks formal privacy and cookie policies, which impacts compliance.

N

Naturwald Akademie gGmbH

waldmonitor-deutschland.de

56

Waldmonitor Deutschland is a small, specialized organization providing free satellite-based forest monitoring services across Germany. The platform offers detailed maps on forest condition, tree species distribution, and forest fire occurrences, targeting forest owners, municipalities, and governmental bodies. The business operates in partnership with Remote Sensing Solutions and is managed by Naturwald Akademie gGmbH. The website is professionally designed with clear navigation and good content relevance, supporting its mission to provide accessible environmental data. Technically, the website employs modern frontend technologies such as Bootstrap and Font Awesome, ensuring good mobile responsiveness and user experience. The site uses HTTPS and implements a cookie consent mechanism with opt-in, reflecting a commitment to privacy compliance. However, no advanced security headers or incident response policies are published, indicating room for improvement in security posture. Security-wise, the site shows a good baseline with HTTPS and minimal tracking, but lacks explicit security policies and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious WHOIS patterns were detected, and the domain registration aligns well with the business purpose. Overall, the site is trustworthy and secure for its intended audience. The overall risk is low, but strategic improvements in security headers, incident response transparency, and terms of service publication would enhance trust and compliance. The site’s minimal tracking and clear contact information support a positive privacy stance.

Blickpunkt α is a German-language website focused on modern beauty and cosmetics products, targeting a general audience interested in skincare and innovative beauty trends. The site presents itself as a niche player in the retail cosmetics sector, offering high-quality products and content related to beauty. The technical infrastructure is based on WordPress with the Astra theme and Ultimate Addons for Gutenberg, hosted on servers associated with kasserver.com. The website is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Business credibility is moderate but would benefit from clearer contact information and trust signals. Overall, the site is safe for general audiences and does not contain adult or explicit content.

A

Antagus

antagus.de

47

Antagus is a German-based company specializing in domain reseller services, cloud and V-Server hosting, server rental, and server housing. Established since 1996, it operates multiple data centers and partners with companies like Vautron Rechenzentrum AG and NetBeat to provide infrastructure and end-customer services. The website targets business customers such as domain resellers and web hosting providers, offering competitive pricing and a range of hosting solutions. The company demonstrates trustworthiness through ISO/IEC 27001 certification and positive customer references. Technically, the website uses standard web technologies with Matomo analytics for privacy-conscious tracking. Security posture is moderate, with room for improvement in security headers and explicit security policies. Privacy compliance is strong, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional and trustworthy, though technical modernization and enhanced security practices are recommended.

N

Nasjonal sikkerhetsmyndighet

nsm.no

10

Nasjonal sikkerhetsmyndighet (NSM) is the Norwegian National Security Authority, a government agency established in 2016 responsible for national security and cybersecurity in Norway. The website serves as the official portal for disseminating security alerts, guidelines, and protective security information to the public sector, businesses, and citizens. It positions itself as the primary national authority in its domain, providing critical services related to cybersecurity and incident response coordination. Technically, the website is built on the Corepublish CMS platform, utilizing standard web technologies such as JavaScript, SVG, CSS, and HTML5. The site is accessible over HTTPS and includes Google site verification, indicating a legitimate and verified presence. The design is professional and mobile-optimized, though accessibility and SEO optimizations are basic. No advertising or tracking technologies were detected, reflecting a focus on information dissemination rather than commercial activity. From a security perspective, the site benefits from HTTPS and some best practices but lacks explicit security headers and formalized privacy or cookie policies. There is no visible vulnerability disclosure or security.txt file, and no direct contact information for incident response was found in the provided content. These gaps suggest room for improvement in transparency and security posture. Overall, the website is trustworthy and professional, consistent with a government entity. The domain registration data aligns well with the agency's profile, supporting legitimacy. However, the absence of privacy and cookie policies and limited contact information slightly reduce the privacy compliance score. Strategic enhancements in these areas would strengthen the site's security and compliance posture.

E

Evangelische Gemeindepresse GmbH

evangelisches-gemeindeblatt.de

47

The Evangelisches Gemeindeblatt für Württemberg is a regional church newspaper serving the Evangelical community in Württemberg, Germany. It provides news, articles, and multimedia content related to church life and community events. The website supports subscription services, ePaper access, and newsletters, targeting primarily church members and interested readers in the region. The business operates as a media entity with a focus on religious and community content, maintaining a consistent and professional online presence.

Seagate Technology is a global leader in mass data storage solutions, with a strong market position and a comprehensive portfolio of scalable storage products. The German website reflects a mature digital presence with professional design, clear navigation, and localized content targeting both consumers and enterprise customers. The technical infrastructure leverages Adobe Experience Manager and Adobe Analytics, indicating a modern and well-maintained platform. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms in place. However, the absence of WHOIS registration data is notable but likely due to registry policies rather than malicious intent. Overall, the website demonstrates high professionalism and trustworthiness.

The Schiffbautechnische Gesellschaft e.V. (STG) is a historic non-profit organization founded in 1899 in Berlin, serving professionals and organizations in the shipbuilding, marine technology, and shipping sectors. The website acts as a knowledge and networking platform offering event information, publications, and member services. The organization maintains a professional online presence with a member login area and detailed event archives, primarily targeting German-speaking maritime industry stakeholders. Technically, the website is built on the onTEAM CMS platform with standard HTML, CSS, and JavaScript. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. Security practices include HTTPS usage and a login form with session tokens; however, the absence of security headers and CSRF protections indicates room for improvement. The security posture is moderate with no detected blocking or WAF mechanisms. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. WHOIS data is unavailable, limiting domain trust verification, but the website content and professional presentation support legitimacy. Overall, the site is a credible and professional resource for the maritime community but would benefit from enhanced security controls, privacy compliance improvements, and WHOIS transparency to strengthen trust and resilience.

E

Evangelische Kirche von Kurhessen-Waldeck

ekkw.de

56

The Evangelische Kirche von Kurhessen-Waldeck (EKKW) is a large, established religious organization in Germany, serving as one of the 20 member churches of the Evangelische Kirche in Deutschland. The website provides comprehensive information about the church's structure, activities, and community services, targeting a general audience interested in religious and community matters. The site is built on the TYPO3 CMS platform, indicating a mature and professional digital infrastructure. Social media integration with Facebook, Instagram, YouTube, and an RSS feed enhances outreach and engagement. From a technical perspective, the website demonstrates moderate performance and good mobile optimization, though accessibility features are basic. Security posture is moderate with HTTPS likely enabled but lacking explicit security headers and formal security policies. Privacy compliance is minimal, with no explicit privacy or cookie policies detected in the provided content. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

H

Digitaler Meldekanal Hinweisgeberschutz

hinweisgeberschutzsystem.de

42

The website www.hinweisgeberschutzsystem.de serves as a digital reporting channel for whistleblower protection in Germany. It is a password-protected portal designed to securely receive whistleblower reports, indicating a focus on compliance and secure communication. The site is built on WordPress and uses standard CSS and PHP technologies. However, the public content is minimal due to password protection, limiting visibility into detailed business information or policies. The target audience appears to be organizations or individuals in Germany seeking secure whistleblower reporting mechanisms. From a technical perspective, the site uses WordPress CMS with standard admin CSS files and no visible advanced frameworks or analytics. The performance and mobile optimization are basic, and SEO optimization is poor due to lack of metadata and structured data. Security posture shows some basic best practices such as password protection but lacks critical security headers and visible HTTPS enforcement details. No privacy or cookie policies are present, and no contact information is publicly available, which limits transparency and compliance indicators. Security evaluation reveals moderate security measures but also gaps such as missing security headers, no CSRF tokens on forms, and absence of incident response or vulnerability disclosure information. The domain WHOIS data is limited but does not show suspicious patterns. Overall, the site is functional for its purpose but lacks comprehensive security and privacy transparency. The overall risk is moderate due to limited public information and security best practices. Strategic improvements in security headers, privacy policies, and contact transparency are recommended to enhance trust and compliance.

L

Lebensfarben | Hilfen für Kinder und Jugendliche e.V.

lebensfarben-oberberg.de

45

Lebensfarben | Hilfen für Kinder und Jugendliche e.V. is a German non-profit organization dedicated to supporting children and youth whose parents suffer from psychological or addiction-related illnesses. The organization provides free counseling, accompaniment, and support services, including individual advice, parent assistance, and volunteer mentorship programs. Their market position is regional within the Oberbergischer Kreis area, focusing on vulnerable youth and families. The website reflects a professional and consistent brand with clear navigation and relevant content. Technically, the site uses standard web technologies such as jQuery and fancyBox, hosted under domaincontrol.com DNS services. While the site is functional and moderately optimized, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. Security posture is moderate with no visible vulnerabilities but could be improved with better HTTPS enforcement and security policies. Overall, the site is trustworthy and serves its non-profit mission effectively.

Technické služby Lanškroun, s.r.o. is a municipal service provider based in the Czech Republic, offering a range of public services including waste management, maintenance of green areas, public lighting, transport and construction works, sports facility management, and cemetery services. The company primarily serves the town of Lanškroun and its residents, positioning itself as a local essential service provider. The website content is well-structured and relevant to its audience, with clear navigation and consistent branding. However, the absence of WHOIS data and lack of explicit contact information on the site limits external verification of legitimacy. From a technical perspective, the website employs standard web technologies such as jQuery and custom JavaScript, with basic mobile optimization and accessibility features. The site includes a cookie consent mechanism indicating some level of privacy awareness, but lacks comprehensive privacy and security policies. No evidence of modern CMS or advanced frameworks was found, and performance is moderate. Security posture is weak due to missing HTTPS confirmation, absence of security headers, and no visible incident response or vulnerability disclosure information. The lack of WHOIS data further reduces trustworthiness. There are no signs of malicious content or adult material, and the site appears safe for general audiences. Overall, while the business appears legitimate and focused on municipal services, the website would benefit from improved security measures, transparency in privacy practices, and clearer contact information to enhance trust and compliance.

W

wbv Kommunikation

wbv-kommunikation.de

59

wbv Kommunikation is a specialized communications and media service provider focused on supporting public sector clients, associations, and church administrations in Germany. Their offerings include agency services, educational media production, and digital solutions for church administration. The company operates as a business unit under wbv Media, leveraging a strong reputation supported by testimonials from notable clients such as DAAD, OECD, and various government bodies. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site uses modern frameworks like UIkit and jQuery, hosted on Schlundtech infrastructure, and employs Matomo analytics with a privacy-conscious cookie consent mechanism.

E

Evangelische Kirchengemeinde Ingersheim

kirchengemeinde-ingersheim.de

56

Evangelische Kirchengemeinde Ingersheim operates as a small non-profit Protestant church community in Germany, affiliated with the Evangelische Landeskirche in Württemberg. The website serves as an informational and community engagement platform, offering details on church services, events, youth and adult education, and pastoral care. It targets local community members and churchgoers, providing a trusted source for religious and community activities. Technically, the site is built on TYPO3 CMS, employs Matomo analytics configured for privacy, and includes accessibility features enhancing user experience. The site is mobile-optimized and well-structured, reflecting good digital maturity for a small non-profit entity. Security posture is solid with HTTPS enforced and privacy compliance evident through consent management, though improvements are recommended in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the church's mission effectively.

E

ebsygon GmbH

netzanschluss-digital.de

47

The website netzanschluss-digital.de serves as a digital network connection portal targeted at distribution network operators in Germany. It is operated by ebsygon GmbH, a small company specializing in providing flexible and cost-effective digital solutions for energy distribution networks. The site acts primarily as an informational landing page linking to the parent company's main website for more detailed information. Technically, the site uses modern frontend technologies such as SvelteKit and integrates Cloudflare Turnstile for bot protection, indicating a moderate level of digital maturity. However, the site lacks visible security headers and cookie consent mechanisms, which are important for compliance and security best practices. The security posture is adequate but could be improved by implementing additional security policies and transparency measures. Overall, the site is professional and trustworthy but minimalistic in content and features, reflecting a focused B2B service offering.

The website www.shop-lunaplant.de is currently inaccessible beyond a Cloudflare Turnstile security challenge page, preventing access to any substantive content. The domain is hosted on Jimdo platform as indicated by the name servers, but no business or contact information is visible. Due to the WAF challenge, no privacy, cookie, or terms of service policies are detectable, and no forms or data collection mechanisms are present. The technical infrastructure relies on Cloudflare for security and performance, but no further technical or security details are available. The security posture cannot be fully assessed due to the content block, but the lack of visible security headers or SSL details is noted. Overall, the website's digital maturity and business credibility cannot be established from the available data.

M

Městský úřad Lanškroun

lanskroun.eu

47

The website www.lanskroun.eu serves as the official municipal portal for the city of Lanškroun in the Czech Republic. It provides comprehensive information about the city administration, local news, cultural events, tourism, and public services. The site targets residents, visitors, and businesses in the Lanškroun region, offering multilingual support and various e-government services. The business model is focused on public service and community engagement, positioning itself as a trusted local government resource. Technically, the website is built on the Vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google Analytics and Google Tag Manager for visitor tracking and employs Google reCAPTCHA v2 to protect forms from spam. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers could be made. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. However, no explicit security policies or incident response contacts are published, and security headers appear to be missing or not detected in the provided content. The WHOIS data is not publicly available due to EURid privacy policies, which is typical for .eu domains and does not raise immediate concerns. Overall, the security posture is moderate with room for enhancement. The overall risk assessment indicates a well-maintained official government website with no signs of malicious activity or content safety issues. Strategic recommendations include implementing HTTP security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to enhance trust and security maturity.

K

Kreissparkasse Göppingen

ksk-gp.de

69

Kreissparkasse Göppingen is a regional bank serving private and corporate customers in the Göppingen district of Germany. The website offers a comprehensive range of financial services including online banking, accounts, loans, investments, insurance, and real estate services. The bank positions itself as a trusted local financial institution with a strong focus on customer service and sustainability. Technically, the website is built on Adobe Experience Manager, uses modern web technologies, and is optimized for mobile and accessibility. Security posture is strong with HTTPS enforced and secure login mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. Overall, the site is professional, trustworthy, and well-maintained.

S

SCM Bundes-Verlag

bundes-verlag.net

10

SCM Bundes-Verlag operates the bundes-verlag.net website, an established German-language e-commerce platform specializing in Christian magazines and media products targeting a broad audience including children, teenagers, adults, and church volunteers. Founded in 2004, the company holds a solid market position within the niche Christian media sector in German-speaking countries. The website offers subscription services, digital reading options, gift bundles, and evangelistic media, reflecting a focused business model with clear target demographics. Technically, the site employs modern web technologies including JavaScript and CSS, with Matomo analytics for user tracking and a cookie consent mechanism ensuring GDPR compliance. The platform is mobile-optimized and provides a good user experience with clear navigation and professional design.

E

Erzbistum Berlin

erzbistum-berlin.de

54

Erzbistum Berlin operates as the official Catholic Archdiocese for the Berlin, Brandenburg, and Vorpommern regions in Germany. The website serves as a comprehensive information and communication platform offering news, event calendars, religious education, pastoral services, and community support. It targets the Catholic community and related stakeholders, positioning itself as a key regional religious authority with a broad range of services including media, education, and social outreach. The business model is non-profit, focusing on community engagement and spiritual guidance. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery and JavaScript libraries for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, with a well-structured navigation system. The presence of a detailed cookie consent mechanism and integration with analytics tools like etracker reflects a mature digital infrastructure with attention to privacy compliance. From a security perspective, the site enforces HTTPS and employs a granular cookie consent system, minimizing unnecessary data exposure. However, it lacks explicit security policy documentation and incident response contact details, which are recommended for enhanced transparency and preparedness. No critical vulnerabilities or suspicious activities were detected. Overall, Erzbistum Berlin's website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR. It effectively supports its mission as a religious and community institution while maintaining a secure and user-friendly online presence.

M

Město Lázně Bohdaneč

bohdanec.cz

45

Lázně Bohdaneč is the official municipal website for the town of Lázně Bohdaneč in the Czech Republic. It serves as a comprehensive portal providing residents and visitors with access to municipal services, news updates, event calendars, job vacancies, and contact information. The site targets local citizens and stakeholders interested in town governance and community activities. The business model is that of a local government authority focused on public service and information dissemination. Technically, the website employs modern web technologies including Blazor WebAssembly for interactive components, Google Translate for multilingual support, and a chatbot for user assistance. The site is built on the Vismo CMS platform, which is specialized for municipal websites. The design is responsive and accessible, with good SEO practices and clear navigation, although some performance optimizations could be considered. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and explicit cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, which should be investigated further. Overall, the website is professional, trustworthy, and well-suited for its purpose, but improvements in security headers, privacy compliance, and domain registration transparency are recommended to enhance trust and compliance.

S

SERO Sekundärrohstoffhandel und Industriedemontagen GmbH

serogmbh.de

46

SERO Sekundärrohstoffhandel und Industriedemontagen GmbH is a specialized industrial service provider based in Lutherstadt Wittenberg, Germany, focusing on demolition, dismantling, hazardous material remediation, and recycling services. Founded in 1990 and now part of the STORK Unternehmensgruppe since 2024, the company serves industrial and chemical sectors with a comprehensive service portfolio including container services and scrap trading. The website reflects a professional and consistent brand presence with clear business information and contact details. Technically, the site is built on TYPO3 CMS with modern web technologies and offers good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and incident response disclosures. Overall, the website is trustworthy, safe, and compliant with basic GDPR requirements, supporting the company's credibility in its niche market.

H

Haldenslebener Recycling- und Umweltdienst GmbH

umweltdienst-erxleben.de

42

Haldenslebener Recycling- und Umweltdienst GmbH is a medium-sized environmental services company based in Germany, specializing in recycling, container services, machinery rental, and related activities. As part of the STORK Unternehmensgruppe since 2016, it benefits from group synergies and holds ISO 14001 certification, underscoring its commitment to environmental management. The company targets construction firms, private builders, and industrial clients with a broad service portfolio including waste management and raw material supply. Technically, the website is built on TYPO3 CMS with modern frontend technologies, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and advanced security headers. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no signs of suspicious or adult content.

R

Recycling OWL GmbH

recycling-owl.de

44

Recycling OWL GmbH is a medium-sized company specializing in the recycling, treatment, and recovery of mineral materials with a focus on metal recovery. As part of the STORK Unternehmensgruppe since 2018, it operates a strategically located facility in Hille with trimodal transport connections (road, rail, and waterway), enabling efficient and environmentally friendly logistics. The website reflects a professional business presence with clear service offerings and a focus on sustainability and logistics efficiency. Technically, the site is built on TYPO3 CMS with modern frontend technologies and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies or incident response information. Overall, the domain registration aligns with the business claims, and no suspicious patterns were detected. The site is free from adult or questionable content and maintains a high trustworthiness level.

S

STORK Umwelt GmbH

stork-leipzig.de

46

STORK Umwelt GmbH is a medium-sized German company specializing in recycling, waste management, and resource recovery, primarily serving the Leipzig/Halle region. The company operates under the umbrella of the STORK Unternehmensgruppe and offers a range of services including container services, mobile processing technology, and civil engineering. The website reflects a professional and consistent brand image with clear communication of services and certifications such as ISO 14001:2015. Technically, the site is built on TYPO3 CMS with modern frontend technologies and includes a cookie consent mechanism, indicating a reasonable level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks explicit security policies and advanced security headers. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements.

S

STORK ALU Recycling GmbH

stork-alu.de

44

STORK ALU Recycling GmbH operates as a specialized industrial company focused on the efficient and innovative recovery of metals, particularly aluminum, copper, and stainless steel. Their core business revolves around advanced metal recycling technologies such as the Schwimm-Sink-Anlage (sink-float separation) to ensure high purity in metal recovery. The company is positioned as a competent player within the German manufacturing and recycling sector, serving industrial clients requiring sustainable raw material cycles. The website reflects a professional and consistent brand image aligned with its parent company, Stork Gruppe, and targets industry stakeholders and partners. From a technical perspective, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript and CSS, with good mobile optimization and SEO practices. The site is served over HTTPS with a cookie consent mechanism in place, indicating compliance with GDPR requirements. However, some security best practices such as comprehensive security headers and published security policies are absent, representing areas for improvement. Security posture is moderate with no critical vulnerabilities detected in the visible content. The absence of incident response contacts and vulnerability disclosure policies suggests limited transparency in security governance. WHOIS data is minimal but does not raise immediate concerns, though more detailed registrant information would enhance trust. Overall, the site is safe, professional, and compliant with privacy norms but could benefit from enhanced security documentation and technical hardening. Strategically, the company should focus on strengthening its security framework, publishing clear policies, and improving accessibility features to maintain trust and compliance. The digital infrastructure is solid but could be modernized further to improve performance and resilience against emerging threats.

S

STORK Umweltdienste GmbH

stork-mobil.de

44

STORK Umweltdienste GmbH operates as a specialized provider of mobile mineral waste processing technology, focusing on modular mobile solutions for the treatment of slag, ash, construction debris, and dredged material. The company is positioned within the energy and transportation sectors, serving industrial clients requiring on-site processing capabilities. Their business model centers on B2B services with a strong emphasis on modularity and customization. The website reflects a medium-sized enterprise with consistent branding and professional presentation, supported by a parent company, STORK Unternehmensgruppe. Technically, the site is built on TYPO3 CMS with modern web standards, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies or incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact channels.

The website 'Schulerzbistum' appears to be a minimal portal page primarily embedding another PHP page via an iframe. The content is very limited, with no visible business descriptions, contact information, or user interaction elements. The technical infrastructure relies on basic web technologies including jQuery and custom JavaScript, with no advanced frameworks or CMS detected. The site lacks modern SEO and accessibility features and shows minimal mobile optimization. Security posture is weak due to absence of HTTPS and security headers, and no privacy or cookie policies are present, indicating poor compliance with GDPR and related regulations. Overall, the site presents a low trust profile with limited business credibility and minimal content quality.

B

BBW Recycling Mittelelbe GmbH

bbw-recycling.de

46

BBW Recycling Mittelelbe GmbH is a medium-sized German company specializing in the recycling of construction waste and supply of recycled building materials. The company operates a large facility with advanced processing capabilities, serving construction and waste management sectors. Their website is professionally designed using TYPO3 CMS, featuring multilingual support and clear navigation. The technical infrastructure is modern with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though lacking some advanced security headers and explicit security policies. Overall, the website reflects a trustworthy and compliant business presence with room for security and legal documentation improvements.

S

STORK Unternehmensgruppe

stork-gruppe.de

44

STORK Unternehmensgruppe is a medium-sized, well-established European service company specializing in waste disposal and recycling, with over 30 years of operational history. The group comprises 23 companies across 13 locations, employing more than 460 staff. Their core competencies include mineral waste processing, mobile and stationary recycling technologies, and specialized services such as industrial cleaning, demolition, and hazardous material remediation. The company targets B2B clients across Europe, positioning itself as a leader in efficient metal recovery and sustainable environmental solutions. Technically, the website is built on TYPO3 CMS, featuring modern web technologies and a responsive design, though some performance and accessibility improvements are possible. Security posture is adequate with HTTPS and cookie consent implemented, but lacks explicit security headers and published incident response policies. Overall, the domain and website content align well, supporting legitimacy and trustworthiness.

UniCredit Foundation is a reputable non-profit organization dedicated to empowering Europe's next generation through education funding, research support, and social impact initiatives. The foundation operates under the UniCredit Group umbrella, focusing on reducing educational inequalities and fostering talent development. The website reflects a professional and consistent brand image, targeting students, researchers, non-profit organizations, and UniCredit employees. Technically, the site uses modern frameworks such as Next.js and Storyblok CMS, delivering a well-structured, mobile-optimized, and accessible user experience. Security posture is good with HTTPS enforced and asynchronous script loading, though explicit security headers and privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the overall digital presence and content quality indicate legitimacy. Tracking scripts are present without visible consent mechanisms, suggesting room for privacy compliance improvements.

W

WBV - Westfälischer Bibliographischer Verlag

kirchenrecht.shop

56

Kirchenrecht.shop is an e-commerce platform specializing in customized and preconfigured legal text collections related to the Evangelische Kirche von Westfalen. The business operates in a niche market serving church members and legal professionals interested in church law. The website is professionally designed with clear navigation and offers a Rechtstexte-Konfigurator tool for personalized document creation. The platform is built on a Shopware Saltation theme, leveraging modern web technologies and Google reCAPTCHA for form protection. Hosting and domain registration are consistent with the business location and operations, supporting legitimacy. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a comprehensive privacy policy linked externally, but no cookie consent mechanism is present. Overall, the website is safe, trustworthy, and well-positioned within its market niche.

Windy Scandinavia AB is a well-established Swedish manufacturer of premium sport boats and yacht tenders, with a heritage dating back to 1966. The company operates in the transportation sector, targeting boating enthusiasts and yacht owners with a range of high-quality, technically advanced vessels. Their market position is that of a niche premium brand with a strong Scandinavian craftsmanship identity. The website reflects a professional digital presence with good content quality, clear navigation, and mobile optimization. Technically, the site uses modern web technologies including Google Analytics and cookie consent mechanisms, and is likely powered by the Umbraco CMS. Security posture is solid with HTTPS and cookie consent, though some security headers and policies could be improved. The absence of WHOIS data raises questions about domain registration legitimacy, but the website content and contact information support business credibility. Overall, the site is trustworthy and professionally maintained.

S

SCHWING Stetter

schwing.de

49

SCHWING Stetter is a well-established German manufacturer specializing in concrete machinery and equipment, including truck-mounted concrete pumps, mixers, stationary pumps, and mixing plants. The company serves the construction industry globally with a broad product portfolio and after-sales services. Their website reflects a professional and consistent brand presence, targeting construction professionals and equipment buyers. The site is built on TYPO3 CMS and employs modern web technologies with a focus on privacy, as evidenced by the use of Matomo analytics and a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and domain registration consistent with the business history. However, there is room for improvement in security headers and published security policies. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.