Security Directory

C

Cheltenham Civic Society

cheltcivicsoc.org

38

Cheltenham Civic Society is a small non-profit organization dedicated to promoting civic pride, heritage conservation, and high standards in urban design within Cheltenham, UK. The society operates as a registered charity and engages the community through campaigns, events, and acting as a formal consultee to the local planning authority. Their website reflects a well-structured and content-rich platform that supports their mission and community engagement efforts. Technically, the website is built on WordPress using modern plugins and libraries, with good SEO and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be enhanced. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and serves its target audience effectively.

K

Kirchenweb.ch GmbH

kirchgemeinde.ch

61

Kirchenweb.ch GmbH is a Swiss-based company specializing in digital services tailored for church communities, including mail forwarding with @ref-kirche.ch addresses, information portals, and church management systems. The company targets church organizations primarily within Switzerland, offering a niche service model focused on digital communication and administration solutions. Their market position is that of a specialized provider with a clear focus on the non-profit religious sector. Technically, the website employs a custom CMS platform supplemented by common JavaScript libraries such as jQuery, Typed.js, and Owl Carousel. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The infrastructure appears stable and functional, though there is room for improvement in modern security headers and enhanced privacy mechanisms. From a security perspective, the site enforces HTTPS and uses form validation and captcha to protect user inputs. However, it lacks explicit security headers and a formal vulnerability disclosure policy. Privacy compliance is partially addressed with a privacy policy and security policy pages, but cookie consent mechanisms and incident response contacts are missing. Overall, the security posture is adequate but could be strengthened to meet higher compliance standards. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response contacts, and enhancing accessibility. These steps will improve trust, compliance, and resilience against potential threats.

K

Kirchenweb.ch GmbH

kirchenweb.ch

67

Kirchenweb.ch GmbH is a Swiss-based company specializing in digital tools and management systems tailored for church communities and religious organizations. Their offerings include modern website publication, communication tools such as newsletters and SMS, collaboration platforms, administrative management, and building automation solutions. The company serves a niche market within Switzerland, boasting a solid client base with hundreds of active systems and extensive references. Technically, the website employs a custom CMS with modern JavaScript libraries like jQuery, Typed.js, and Owl Carousel, delivering a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and obfuscated emails, though improvements in security headers and cookie consent are recommended. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

G

Groupement FLO

groupement-flo.com

56

Groupement FLO operates as a French transport and logistics network comprising 110 member companies distributed across France. Established since 1993, it offers diversified services in seven transport and logistics sectors, emphasizing productivity and innovation. The website presents a professional and consistent brand image with comprehensive content including member listings, news updates, and service descriptions. Technically, the site is built on CMS Made Simple with modern JavaScript libraries and Google services integration, providing good mobile optimization and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking some advanced security headers and explicit incident response policies. The absence of WHOIS registration data for the domain is a notable concern, impacting domain legitimacy verification. Overall, the site is credible and business-focused but would benefit from enhanced transparency on domain registration and security policies.

K

Komm.ONE

komm-one.net

70

Komm.ONE is a medium-sized IT service provider focused on delivering specialized solutions to municipal and state administrations in Baden-Württemberg, Germany. The company offers a range of services including consulting, cloud solutions, innovation management, and security services tailored for public sector clients. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeted at government entities. Technically, the site employs a modern technology stack with popular JavaScript libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, leveraging Matomo analytics for privacy-conscious tracking. Overall, the domain registration details align well with the business profile, indicating legitimacy and trustworthiness.

N

Neudeck

neudeck.de

49

Neudeck is a well-established German family-owned business specializing in the international import and distribution of semi-finished wood products. Founded in 1946, it operates with over 180 employees, multiple locations, and a significant logistics fleet, serving primarily B2B customers in the wood manufacturing and construction sectors. The company emphasizes sustainability through FSC and PEFC certifications and maintains a professional digital presence with a modern WordPress-based website featuring SEO optimizations and multimedia content. Technically, the website uses a mature tech stack including Bootstrap and Borlabs Cookie for GDPR compliance, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website reflects a credible and trustworthy business with a strong market position in the manufacturing sector.

M

MIDI Europe S.r.l.

isuzutrucks.ro

62

The website is the official Romanian portal for Isuzu Trucks operated by MIDI Europe S.r.l., established in 2022. It provides comprehensive information about Isuzu truck models, sales, after-sales services, and dealer networks targeting businesses and individuals interested in commercial vehicles in Romania. The site is professionally designed with consistent branding and good content quality, supporting a medium-sized transportation sector business. Technically, the site is built on Drupal CMS with modern JavaScript libraries and frameworks, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is strong with clear GDPR-aligned policies and user consent. Overall, the site is trustworthy and well-positioned in its market niche.

M

MIDI Europe S.r.l.

isuzutrucks.sk

61

The website is the official Slovak regional site for Isuzu trucks, operated by MIDI Europe S.r.l. It provides detailed product information, dealer locator services, customer support links, and media updates tailored for the Slovak market. The site targets commercial vehicle buyers and users, positioning itself as a key regional distributor within the broader Isuzu European network. The business model focuses on sales, after-sales service, and brand promotion in the transportation sector. Technically, the site is built on Drupal CMS with a modern front-end stack including jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile optimized and provides a good user experience with clear navigation and localized content. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS and enforces domain transfer restrictions. It includes GDPR-compliant privacy and cookie policies with user consent mechanisms. However, no explicit security headers or incident response contacts are found, indicating areas for enhancement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the site presents a professional and trustworthy digital presence with a solid business foundation. Strategic improvements in security headers, contact transparency, and SEO could further strengthen its posture and user trust.

M

MIDI Europe S.r.l.

isuzutrucks.pl

65

The website is the official Polish portal for ISUZU trucks, operated by MIDI Europe S.r.l. It provides detailed information about various ISUZU truck models, after-sales services, dealer networks, and customer advisory services. The site targets commercial vehicle buyers and fleet operators in Poland, positioning itself as a regional distributor and service provider for ISUZU commercial vehicles. The business is well-established, with the domain registered since 2008, reflecting a mature presence in the transportation sector. Technically, the website is built on the Drupal CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized with a responsive design and includes accessibility features, though these could be enhanced. Performance is moderate, with no critical errors or broken elements detected. SEO and metadata are basic but sufficient for the site's scope. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no explicit security headers were detected, and there is no public security or incident response policy. No vulnerabilities or exposed sensitive data were found in the HTML content. The overall security posture is good but could be improved by adding security headers and publicly available security policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its business purpose with clear navigation and relevant content. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility compliance to further strengthen the site's security and user experience.

M

MIDI Europe S.r.l.

isuzutrucks.hu

62

The website is the official Hungarian portal for Isuzu Trucks, operated by MIDI Europe S.r.l. It serves as a regional distributor platform providing detailed information about Isuzu truck models, dealer locations, sales, after-sales services, and downloadable catalogs. The site targets commercial vehicle buyers and service customers in Hungary, positioning itself as a trusted regional representative of the Isuzu brand. The business model focuses on direct sales and support through a dealer network, emphasizing brand consistency and customer engagement. Technically, the website is built on the Drupal CMS platform, utilizing common front-end libraries such as jQuery, Bootstrap, and Font Awesome. Google Tag Manager is employed for analytics and marketing tracking, with a cookie consent mechanism in place to comply with GDPR requirements. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are present but could be enhanced. From a security perspective, the site uses HTTPS, but no explicit security headers were detected in the HTML content. The cookie consent banner indicates awareness of privacy regulations, and no sensitive data exposure or vulnerabilities were found in the analyzed content. However, there is room for improvement in implementing security headers and publishing explicit security policies or incident response contacts. Overall, the website presents a professional and trustworthy front for Isuzu Trucks in Hungary, with solid business credibility and compliance with privacy regulations. The technical and security posture is adequate but could benefit from enhancements to security best practices and accessibility. No critical issues or blocking mechanisms were detected, allowing full content analysis.

M

MIDI Europe S.r.l.

isuzutrucks.cz

63

The website is the official Czech Republic portal for Isuzu Trucks, operated by MIDI Europe S.r.l. It provides comprehensive information about Isuzu's commercial truck offerings, sales and service networks, and customer support. The site targets commercial vehicle buyers and operators within the Czech market, positioning itself as a regional distributor and service provider for Isuzu trucks. The business model focuses on vehicle sales, after-sales service, and customer engagement through digital content and brochures. Technically, the website is built on the Drupal CMS platform, leveraging modern web technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized with good navigation and a professional design. Performance is moderate, with room for improvement in SEO and accessibility. The hosting and domain registration are stable and consistent with the business's operational history. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. However, explicit security headers are not detected, and no public security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the HTML content. The privacy and cookie policies are comprehensive and clearly presented. Overall, the website presents a low-risk profile with a good level of professionalism and compliance. Strategic improvements in security headers, incident response transparency, and SEO could enhance the site's security posture and digital maturity.

D

Dinas Lingkungan Hidup Provinsi Sumatera Utara

dlhsumaterautara.id

51

The website dlhsumaterautara.id serves as the official online presence of the Environmental Agency of North Sumatra Province, Indonesia. It provides public information including news, announcements, documents, and contact details relevant to environmental management in the region. The site targets residents and stakeholders within North Sumatra and operates as a government public service platform. The domain registration aligns with the website's launch year, indicating a new but legitimate government initiative. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, Font Awesome, and Google Fonts, with Cloudflare DNS services. The site is mobile-optimized and presents a professional design with clear navigation. However, it lacks advanced SEO and accessibility features, and no CMS or backend platform is explicitly identified. From a security perspective, HTTPS is properly implemented, and the domain status clientTransferProhibited adds a layer of domain security. However, the absence of DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options represents areas for improvement. No privacy or cookie policies are present, which impacts compliance with data protection standards. Overall, the website is trustworthy and safe for general audiences, with no adult or explicit content detected. The lack of privacy and cookie policies and some security best practices lowers the overall security and compliance score. Strategic improvements in these areas would enhance the site's security posture and user trust.

D

DLH Provinsi Sumatera Selatan

dlhsumateraselatan.id

49

The website dlhsumateraselatan.id serves as the official online portal for the Dinas Lingkungan Hidup (Environmental Agency) of South Sumatra Province, Indonesia. It provides public information including news, announcements, documents, and contact details relevant to environmental management and policies. The site targets residents and stakeholders within the province, functioning as a government information dissemination platform. Technically, the site employs standard web technologies such as Bootstrap, jQuery, and Font Awesome, hosted behind Cloudflare DNS services. The design and content quality are basic but functional, with moderate mobile optimization and navigation clarity. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data shows inconsistencies with a future domain creation date and a private registrar, raising legitimacy concerns. Overall, the site is accessible and safe for general audiences but requires improvements in security and privacy compliance to enhance trust and resilience.

D

Dinas Lingkungan Hidup Provinsi Sumatera Barat

dlhsumaterabarat.id

51

The website dlhsumaterabarat.id serves as the official online presence of the Environmental Agency of West Sumatra Province, Indonesia. It provides public information including news, announcements, documents, and contact details relevant to environmental management in the region. The site targets residents and stakeholders within West Sumatra and operates as a government service platform. The domain registration and website content are consistent with a legitimate government entity, with a domain age and copyright year of 2025, indicating a relatively new but official site. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and Google Fonts, hosted behind Cloudflare DNS services. The site is mobile optimized with good navigation and content quality. However, it lacks some advanced SEO and accessibility features. Security-wise, HTTPS is properly implemented, but DNSSEC is not enabled and no security headers are detected in the HTML content. There is no visible privacy or cookie policy, which is a compliance gap, especially for GDPR and similar regulations. Overall, the security posture is moderate with room for improvement in DNS security and privacy compliance. The site does not use analytics or advertising scripts, which reduces privacy risks but also limits marketing insights. Contact information is clearly provided, enhancing business credibility. The content is safe for general audiences with no adult or explicit material detected. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies, adding security headers, and considering incident response contact details to improve trust and compliance.

D

Dinas Lingkungan Hidup Provinsi Sulawesi Utara

dlhsulawesiutara.id

50

The website dlhsulawesiutara.id serves as the official online portal for the Dinas Lingkungan Hidup (Environmental Agency) of the Sulawesi Utara province in Indonesia. It provides environmental news, public announcements, documents, and contact information aimed at residents and stakeholders interested in environmental governance. The site is positioned as a government information hub with a medium organizational size and a focus on public service. Technically, the site uses common web technologies such as Bootstrap, jQuery, and Font Awesome, hosted behind Cloudflare DNS services, and supports HTTPS for secure communications. However, it lacks advanced DNS security features like DNSSEC and does not implement security headers, which could be improved to enhance security posture. The WHOIS data presents inconsistencies, notably a future domain creation date and a registrant that is a registrar company rather than the government entity, which lowers trustworthiness but does not necessarily indicate malicious intent. No privacy or cookie policies are present, indicating a gap in compliance with modern privacy standards. Overall, the site is functional, professional, and safe for general audiences but would benefit from enhanced security and privacy compliance measures.

D

Dinas Lingkungan Hidup Provinsi Sulawesi Tenggara

dlhsulawesitenggara.id

49

The website dlhsulawesitenggara.id serves as the official online presence of the Environmental Agency of Southeast Sulawesi Province, Indonesia. It provides public information including news, announcements, documents, and contact details relevant to environmental management in the region. The site targets residents and stakeholders within the province and operates as a government service platform. Technically, the website employs common web technologies such as Bootstrap, jQuery, and Font Awesome, hosted behind Cloudflare DNS services. The site demonstrates basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security-wise, HTTPS is enabled, but the absence of DNSSEC and security headers reduces the overall security posture. The WHOIS data presents inconsistencies, including a future domain creation date and a registrant organization that does not align with the government entity, which raises questions about domain ownership authenticity. No privacy, cookie, or terms of service policies are present, indicating compliance gaps. Overall, the website is functional and safe for general audiences but requires improvements in security, privacy compliance, and domain legitimacy to enhance trust and professionalism.

D

DLH Provinsi Sulawesi Tengah

dlhsulawesitengah.id

41

DLH Provinsi Sulawesi Tengah operates as the official environmental agency for Central Sulawesi Province, Indonesia, providing public information, news, and services related to environmental management. The website serves residents, government officials, and environmental stakeholders with updates, documents, and contact channels. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Cloudflare DNS services, delivering a responsive and accessible user experience. Security posture is moderate with HTTPS enabled but lacks advanced DNS security and published policies. WHOIS data shows inconsistencies that warrant caution but do not directly undermine the site's legitimacy. Overall, the site is functional and trustworthy for its intended audience but requires improvements in privacy compliance and security best practices.

M

MIDI Europe Srl per Isuzu Svizzera

isuzu.ch

63

The website is the official Swiss portal for Isuzu vehicles, operated by MIDI Europe Srl for Isuzu Switzerland. It provides detailed information on Isuzu's D-Max models and trucks, dealer locations, customer support, and product catalogs. The site targets consumers and businesses interested in Isuzu vehicles within Switzerland and neighboring regions. The business model focuses on automotive sales and after-sales services, positioning itself as a regional distributor with a medium-sized market presence. Technically, the website is built on Drupal 7 CMS, utilizing common JavaScript libraries such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. SEO is basic but functional, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no explicit security headers were detected, and no published security or incident response policies are available. There are no visible vulnerabilities or exposed sensitive data in the provided content. The WHOIS data aligns well with the business entity, indicating legitimacy and consistency. Overall, the website presents a professional and trustworthy digital presence with good privacy compliance. Recommendations include enhancing security headers, publishing security policies, and improving accessibility and SEO for a more robust security posture and user experience.

K

Komm.ONE

komm.one

73

Komm.ONE is a public law institution and IT service provider dedicated to supporting municipalities across Baden-Württemberg, Germany. The organization develops and operates software and IT services tailored for local government administration, positioning itself as a key regional player in the public sector IT market. Their offerings include consulting, cloud services, security, innovation management, and training, targeting municipal administrations and public entities. The website reflects a professional and consistent brand image aligned with their mission. Technically, the website is built on a modern stack including jQuery, Bootstrap, and specialized CMS templates, with good mobile optimization and accessibility features. The presence of a cookie consent mechanism and Matomo analytics indicates a mature digital infrastructure with privacy considerations. Performance is moderate, and SEO practices are well implemented. From a security perspective, the site enforces HTTPS and uses cookie consent controls but lacks explicit published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, likely due to privacy protection, but the domain and website content strongly indicate legitimacy as a public institution. Overall, Komm.ONE presents a trustworthy and professional online presence with room for improvement in transparency around security policies and incident response. The risk level is low, and the site is suitable for its target audience of public sector entities.

Y

Yetkin Mercan-Çağlayansoy | Web Consulting

yc-webconsulting.de

64

Yetkin Mercan-Çağlayansoy | Web Consulting is a small, local German web consulting and social media advisory business based in Köln. The company offers modern, secure, and responsive website creation services alongside social media consulting and support, targeting small business owners and professionals. The website demonstrates a professional presence with clear contact information, client references, and a GDPR-compliant cookie consent mechanism powered by Cookiebot. Technically, the site uses modern frontend technologies such as Bootstrap and jQuery, hosted on DomainControl nameservers, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and cookie consent management, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and the site content is safe for general audiences.

WebThinker GmbH is a small German technology service provider specializing in web design, online marketing, web development, tracking, analysis, and consulting. The company holds reputable certifications such as Google Partner and Shopware Partneragentur, positioning it well in the digital services market. Their website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern frameworks and plugins, optimized for SEO and mobile use. Security posture is good with HTTPS and cookie consent mechanisms, though additional security headers and policies could enhance protection. Overall, the business demonstrates legitimacy and trustworthiness with clear contact information and positive customer testimonials.

M

MVB GmbH

vlb.de

46

MVB GmbH operates the VLB (Verzeichnis Lieferbarer Bücher), a central platform for automated exchange of product information in the German-speaking book industry. The website serves key stakeholders including bookstores, publishers, self-publishers, and service providers, offering services such as order clearing (IBU), reference databases, and subscription discounts. The platform holds a strong market position as an authoritative source in its sector. Technically, the website employs modern web technologies including Bootstrap, Owl Carousel, and Google Tag Manager, hosted on Anexia infrastructure. It features responsive design, good SEO, and accessibility standards, with a cookie consent mechanism ensuring privacy compliance. The site is well-structured and professionally designed, providing a positive user experience. From a security perspective, the site uses HTTPS with good SSL configuration and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR. The WHOIS data aligns with the business entity, reinforcing legitimacy. Strategic improvements in security transparency and incident response readiness would further strengthen the platform's reliability.

P

Pensionskasse der Bank J. Safra Sarasin

pkbjss.ch

46

The website www.pkbjss.ch represents the pension fund of Bank J. Safra Sarasin, providing information primarily to its members. The site is multilingual (German, English, French) and offers a secure member login portal hosted externally. The business is a niche financial entity focused on pension fund management for bank employees in Switzerland. The website content is basic but consistent with the business purpose, with limited direct contact information and no visible advanced security or privacy features beyond HTTPS. Technically, the site is built on WordPress with common libraries such as jQuery and Owl Carousel. It is moderately optimized for mobile and SEO but lacks advanced accessibility and security headers. No analytics or tracking scripts were detected, indicating a privacy-conscious approach but also a lack of marketing or user behavior insights. Security posture is adequate with HTTPS enforced and external secure login, but the absence of security headers and cookie consent mechanisms are notable gaps. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. WHOIS data confirms the domain's legitimacy and consistency with the business identity. Overall, the site is functional and trustworthy for its intended audience but would benefit from enhanced privacy compliance, security best practices, and clearer contact information to improve user trust and regulatory adherence.

P

Pflegezentrum Rotacher

pz-rotacher.ch

56

Pflegezentrum Rotacher is a Swiss healthcare provider specializing in elderly care services including long-term, short-term, dementia, psychiatric, and transitional care. The organization serves residents primarily in the Dietlikon, Wallisellen, and Wangen-Brüttisellen communities. Their website reflects a regional healthcare provider with a clear focus on quality care and community integration. The business model centers on providing comprehensive care services recognized by local health authorities and insurers. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as jQuery and Owl Carousel. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations including GDPR. No critical security issues or blocking mechanisms were detected. The domain WHOIS data aligns well with the business, supporting legitimacy. Recommendations include enhancing security headers, publishing security and incident response policies, and adding vulnerability disclosure information to improve trust and security maturity.

G

Göttingen Marketing GmbH

einkaufen-in-goettingen.de

65

The website 'Einkaufen in Göttingen' is a professionally developed local city marketing platform operated by Göttingen Marketing GmbH. It serves as a comprehensive shopping and event guide for residents and visitors of Göttingen, focusing on retail, gastronomy, cultural events, and city services. The platform leverages modern web technologies including WordPress and Elementor, with integrations for maps and user consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, although formal security policies and incident response information are absent. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements, making it a reliable resource for its target audience.

S

SWB Bus und Bahn

swb-busundbahn.de

61

SWB Bus und Bahn is a large regional public transportation provider based in Bonn, Germany, operating bus and tram services with a focus on sustainable mobility and customer service. The company is part of the SWB Konzern group and offers a variety of ticketing options, real-time traffic updates, and mobility apps. The website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager and Owl Carousel, providing a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

L

Landessportverband Schleswig-Holstein e.V.

lsv-sh.de

11

The Landessportverband Schleswig-Holstein e.V. is a regional non-profit sports association dedicated to supporting sports clubs and organizations in Schleswig-Holstein, Germany. The website provides comprehensive information about the association's services, including sports promotion, education, funding opportunities, and community projects. It targets sports clubs, volunteers, and sports enthusiasts within the region. The organization holds a strong market position as the leading sports association in Schleswig-Holstein, supported by reputable partners and sponsors. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Owl Carousel for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, with a well-structured navigation system. Privacy compliance is robust, featuring GDPR-compliant privacy and cookie policies with active consent mechanisms. From a security perspective, the site enforces HTTPS and employs cookie consent tools, with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies and incident response contacts, which could be improved to enhance trust and preparedness. Overall, the website is professional, trustworthy, and well-maintained, reflecting the organization's commitment to transparency and community engagement. Strategic recommendations include publishing a dedicated security policy, incident response information, and enhancing security headers to further strengthen the security posture.

D

Deutscher Schwimm-Verband e. V.

dsv.de

59

The Deutscher Schwimm-Verband e. V. (DSV) is a well-established non-profit sports federation founded in 1886, representing swimming sports across Germany. It unites regional swimming associations and supports approximately 600,000 members in around 2,500 clubs. The organization focuses on promoting swimming disciplines, organizing competitions, and enforcing anti-doping policies in cooperation with national agencies. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with its institutional stature. Technically, the website employs a modern CMS (AmphiCMS), uses JavaScript libraries such as jQuery and Owl Carousel, and implements lazy loading for performance optimization. Hosting is managed via DomainControl.com, and the site is secured with HTTPS and cookie consent mechanisms, indicating good digital maturity. Accessibility and SEO practices are well addressed, supporting a broad user base including mobile users. From a security perspective, the site enforces HTTPS and uses cookie consent management, but lacks explicit security headers like Content-Security-Policy and does not publish vulnerability disclosure or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence. Overall, the DSV website presents a low-risk profile with high trustworthiness and professionalism. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and maintaining regular security audits to sustain compliance and trust.

S

Sport- und Erlebnisdorf Hinsbeck des Landessportbundes Nordrhein-Westfalen e.V.

hinsbeck.nrw

60

Sport- und Erlebnisdorf Hinsbeck, operated by the Landessportbund Nordrhein-Westfalen e.V., provides sports, leisure, and accommodation services primarily targeting clubs, school classes, and families in the NRW region of Germany. The website is professionally designed with a strong emphasis on accessibility, user experience, and comprehensive content about their offerings including accommodations, sports activities, and event hosting. Technically, the site uses modern JavaScript libraries, a consent management platform, and multimedia content to engage users effectively. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site demonstrates strong compliance with GDPR and privacy regulations, providing clear contact and legal information. The domain registration details align well with the business entity, supporting high legitimacy and trustworthiness.

S

Sport- und Tagungszentrum Hachen

hachen.nrw

60

Sport- und Tagungszentrum Hachen is a well-established sports and conference center located in the Sauerland region of Germany, operated under the Landessportbund Nordrhein-Westfalen e.V. The website effectively communicates its offerings including accommodation, sports activities, seminars, and event hosting targeted at sports clubs, school groups, and families. The business holds a strong regional position with a clear focus on sports and educational hospitality services. Technically, the website is built on AmphiCMS with modern JavaScript libraries such as jQuery and Owl Carousel, and employs a professional consent management platform ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is user-friendly, accessible, and professionally maintained, reflecting a trustworthy and credible organization.

S

Spheriq

spheriq.ch

53

Spheriq is a Swiss-based digital platform dedicated to supporting the nonprofit and philanthropic sector by providing tools and insights for fundraising, networking, and grant management. The platform targets nonprofits, funders, experts, and corporates, offering a comprehensive suite of services including intelligent search, donation tools, AI assistance, and collaborative workspaces. The website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. Technically, it is built on WordPress with modern frameworks and plugins, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not published. Overall, the platform demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and transparent domain registration.

N

Nettvett.no

nettvett.no

54

Nettvett.no is a Norwegian internet safety information portal providing guidance, advice, and educational courses on safer internet usage. It is positioned as a trusted resource in Norway, supported by partnerships with recognized governmental and security organizations such as NorSIS, NSM, and NKOM. The website targets a general audience seeking to improve their digital security awareness. Technically, the site is built on WordPress with a modern tech stack including jQuery, Bootstrap, and SEO tools like Yoast. It integrates Google Analytics and Facebook SDK for analytics and tracking, and employs Google reCAPTCHA for form security. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks explicit security headers and published incident response policies. Privacy compliance is basic with a privacy policy and cookie consent mechanism present. WHOIS data shows an anomalous future creation date, which slightly impacts trust but does not detract from the site's legitimacy given its content and partnerships.

Kurztusch Gipsdesign AG is a small Swiss company specializing in plastering, drywall, stucco, facades, monument preservation, and decorative plastering services. The company emphasizes craftsmanship and quality with over 25 years of experience, targeting clients primarily in the Aargau region. Their website is built on TYPO3 CMS and uses a range of JavaScript libraries for UI enhancements. The site is professionally designed with clear navigation and content relevant to their business domain. However, the WHOIS data for the domain www.gipsdesign.com is missing, which raises questions about domain registration legitimacy despite the active and professional website presence. The company provides clear contact information including a Swiss phone number and uses email obfuscation to protect against scraping. Privacy and cookie policies are implemented with GDPR compliance in mind, including a consent mechanism.

D

DLH Provinsi Sulawesi Barat

dlhprovinsisulawesibarat.id

49

DLH Provinsi Sulawesi Barat operates as the official environmental agency for the West Sulawesi Province government in Indonesia, providing public information, news, announcements, and environmental documentation. The website serves residents and stakeholders with environmental management content and contact channels. Technically, the site uses standard web technologies including Bootstrap, jQuery, and Font Awesome, hosted behind Cloudflare DNS but lacks advanced CMS or modern frameworks. Security posture is moderate with HTTPS implied but no visible security headers or DNSSEC, and WHOIS data is inconsistent with suspicious domain registration dates. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is accessible and functional but requires improvements in security, privacy, and domain legitimacy to enhance trust and compliance.

D

Dinas Lingkungan Hidup Provinsi Papua Tengah

dlhpapuatengah.id

51

The website represents the Dinas Lingkungan Hidup Provinsi Papua Tengah, a government environmental agency in Papua Tengah, Indonesia. It provides public information on environmental management, waste management SOPs, announcements, and documents relevant to the province. The site targets residents and stakeholders interested in environmental issues within the region. The business model is typical of a government agency focused on service and information dissemination. Technically, the website uses a modern front-end stack including Bootstrap, jQuery, Font Awesome, and Google Fonts, hosted behind Cloudflare DNS. The site is mobile responsive with good navigation and design quality. However, it lacks a CMS indication and advanced SEO or accessibility features. Performance is moderate with no evident blocking or WAF interference. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. No privacy or cookie policies are published, and no incident response or vulnerability disclosure information is available. WHOIS data shows inconsistencies with a future creation date and a non-government registrant, which reduces trustworthiness despite legitimate content. Overall, the site is functional and professional but requires improvements in privacy compliance, security hardening, and WHOIS transparency to enhance trust and compliance.

D

Dokter Spesialis Anak

pasienanak.id

49

The website pasienanak.id represents a healthcare service specializing in pediatric care, offering professional and attentive medical services focused on child growth and development. The business targets parents and families in Indonesia seeking specialized pediatric healthcare. The website is built on WordPress with a modern tech stack including Bootstrap and jQuery, hosted behind Cloudflare DNS but without DNSSEC enabled. The site is well-structured, mobile-optimized, and SEO-friendly but lacks critical privacy and cookie policies, as well as explicit contact information. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. The domain is newly registered in mid-2025, which is somewhat inconsistent with the volume of content and apparent business maturity.

The website klosterkilbi.ch represents the traditional Swiss festival 'Klosterkilbi' organized by the Musikgesellschaft St. Urban. It serves as an informational platform for visitors and participants, providing event dates, program details, and links to social media. The site is built on the ClubDesk Vereinssoftware platform, utilizing modern JavaScript libraries such as jQuery, Featherlight, and Owl Carousel to enhance user experience. The design is consistent and mobile-optimized, offering clear navigation and relevant content for its regional audience. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though security headers and explicit policies are absent. Privacy compliance is basic with a privacy policy and cookie consent implemented, but GDPR compliance is not explicitly confirmed. Overall, the site is trustworthy and professionally maintained, reflecting a small community organization with a long-standing tradition.

G

Gemeinde Altbüron

altbueron.ch

50

The website altbueron.ch serves as the official digital presence of the municipality of Altbüron in Switzerland. It provides comprehensive information about local governance, community events, societal services, education, building and environmental matters, as well as leisure and mobility options. The site targets residents and visitors seeking municipal services and community engagement. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries such as jQuery, Modernizr, and Owl Carousel, and integrates Google Maps API for location services. The design is professional, mobile-optimized, and accessible, with clear navigation and structured content. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and formal policies such as privacy and cookie policies. No incident response or data protection officer contact information is provided, which are areas for improvement. Overall, the website is trustworthy and legitimate, consistent with its governmental role, but could enhance privacy compliance and security posture to better protect users and meet regulatory standards.

T

TC Cuadernos

tccuadernos.com

49

TC Cuadernos operates a professional e-commerce website specializing in architecture books and magazines, targeting architects, students, and enthusiasts primarily in Spain. The website is built on PrestaShop CMS with modern web technologies and includes features such as product carousels, search, user accounts, and secure checkout. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, though explicit privacy and cookie policies are not clearly linked. WHOIS data is unavailable, which raises some concerns about domain legitimacy, but the website content and functionality suggest a legitimate business. Overall, the site demonstrates good digital maturity with room for improvement in privacy transparency and incident response readiness.

P

PRÜM-Türenwerk GmbH

pruem-mtb.de

55

PRÜM-Türenwerk GmbH operates a professional B2B digital marketing and sales platform focused on door manufacturing and design, serving architects, planners, carpenters, and specialist dealers primarily in Germany. The website leverages TYPO3 CMS and modern web technologies to provide interactive tools such as brochures and visualization programs, positioning itself as a digital enabler within the Arbonia Group. The site demonstrates good content quality, consistent branding, and a clear target audience. Technically, the infrastructure is solid with HTTPS, cookie consent management, and integration of analytics tools like Google Analytics, Facebook Pixel, and eTracker, reflecting a mature digital presence. Security posture is good but could be improved by adding explicit security headers and incident response contacts. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-suited for its business purpose.

G

Gamba & Rota

gamba-rota.fr

52

Gamba & Rota is a French transport and logistics company specializing in comprehensive supply chain services including national and international transport, warehousing, and specialized logistics for the wine and spirits sector. The company emphasizes customized solutions, operational excellence, and secure storage facilities. Their website reflects a mature digital presence with detailed service descriptions, recent news updates, and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile responsiveness and SEO optimization. Security posture is solid with HTTPS and captcha protections, though lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy, but the professional content and business details support a credible operation. Overall, the website is well-structured and trustworthy for its business domain.

K

Kampus Tutor Indonesia

kampustutor.id

54

Kampus Tutor Indonesia operates as an educational platform connecting students and tutors with flexible, personalized learning services both online and offline. The website presents a professional and content-rich environment targeting Indonesian students and learners. Technically, the site is built on WordPress with modern libraries and plugins, hosted behind Cloudflare DNS, and optimized for mobile devices. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers. The WHOIS data shows inconsistencies, including a future domain creation date and a registrant organization unrelated to the brand, which raises some trust concerns. No privacy or cookie policies are present, indicating compliance gaps. Overall, the site is functional and trustworthy for educational purposes but requires improvements in security and privacy transparency.

D

digitaleheimat GmbH

digitaleheimat.de

60

digitaleheimat GmbH is a German digital agency specializing in comprehensive online marketing solutions including SEA, SEO, social media marketing, and programming services. Established in 2011, the company has a strong market presence supported by certifications such as Google Premium Partner and a portfolio of over 1000 campaigns. The website reflects a mature digital infrastructure built on WordPress with modern plugins and frameworks, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though lacking explicit security policies and headers. Overall, the business demonstrates credibility and professionalism with room for improvement in privacy and security transparency.

E

ERMARINE GmbH

ermarine.ch

48

ERMARINE GmbH operates as a specialized boat service provider and dealer located in Switzerland, serving the Boden- and Zürichsee regions. Their offerings include boat winter storage, repairs, rentals, sales, and motorhome rentals, targeting boat owners and leisure travelers. The company maintains a professional online presence with clear contact details and social media engagement, positioning itself as a trusted local partner in the transportation sector. Technically, the website is built on Joomla CMS using the Helix Ultimate framework, incorporating modern libraries such as jQuery and Bootstrap, and is mobile responsive with moderate performance. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and privacy/cookie policies indicates room for improvement. Overall, the site is professional and trustworthy but lacks some compliance and security best practices.

C

Collettivo A/I

noblogs.org

55

NoBlogs.org is a niche, non-commercial blogging platform focused on radical activism, privacy, and social justice. Operated by the Collettivo A/I, it provides a space for activists and like-minded individuals to communicate and publish content without commercial influence. The platform is multilingual and emphasizes privacy and antifascist, antisexist values. Technically, the site runs on WordPress with a modern but modest tech stack, hosted by autistici.org, a known activist collective. Security posture is adequate with HTTPS and domain transfer protections but lacks advanced DNS security and published security policies. Privacy compliance is good with a clear cookie banner and privacy policy, though no terms of service or incident response information is provided. Overall, the site is trustworthy and well-aligned with its mission but could improve in security transparency and technical hardening.

Studierendenwerk Thüringen is a public law institution dedicated to supporting students in Thuringia, Germany, by providing essential services such as student housing, university dining facilities, financial aid administration, counseling, and cultural programs. The organization serves multiple universities in the region and is a key player in the local education support ecosystem. The website reflects a well-structured and professional digital presence with clear navigation and comprehensive service information tailored to its student audience. Technically, the site employs modern web technologies including Bootstrap, jQuery, and ConsentFriend for cookie management, hosted on Robhost servers. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a detailed privacy policy and cookie consent banner adhering to GDPR requirements. Overall, the site is trustworthy, accessible, and professionally maintained, supporting the organization's mission effectively.

M

Markthallen AG Basel

altemarkthalle.ch

58

Markthallen AG Basel operates the Markthalle Basel, a vibrant marketplace and hospitality venue offering food stands, regional markets, fresh produce, bars, and event spaces. The website positions the business as a community hub in Basel, Switzerland, targeting a general audience interested in local food and events. The business model focuses on retail and hospitality services with additional offerings such as catering, room rentals, and guided tours. Technically, the website is built on WordPress with WooCommerce and integrates modern plugins for SEO, cookie consent, and analytics. The site demonstrates good digital maturity with responsive design and SEO optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained, supporting a medium-sized business in the hospitality sector.

TouristDataShop AG operates as a specialized provider of digital tourism data and booking solutions in Switzerland, primarily focusing on the Holidu Smart Destination platform. The company targets destinations, cities, and accommodation providers, offering services including sales, support, shared services, and helpdesk functions. Their market position is that of a niche player within the Swiss tourism technology sector, leveraging partnerships and integrations to enhance their offerings. Technically, the website is built on the Contao CMS platform, utilizing modern web technologies such as jQuery and Google Tag Manager for analytics and tracking. The site is mobile-optimized with good navigation and content quality, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website reflects a professional and trustworthy business presence with room for enhancements in security and privacy transparency.

P

proHolzBW GmbH

proholzbw.de

62

proHolzBW GmbH is a regional organization dedicated to promoting the use of wood in Baden-Württemberg, Germany. It serves a broad audience including forestry operators, construction clients, architects, and planners by providing information, consulting, and support services. The organization is well-positioned in its niche with strong backing from EU and regional funding bodies, as evidenced by displayed logos and certifications. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on sustainability and wood industry promotion. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with comprehensive policies and GDPR adherence. No direct contact emails or phone numbers are publicly listed, relying instead on contact forms and social media channels. Overall, the site is trustworthy, well-maintained, and serves its business purpose effectively.