Security Directory

1

100% SPORT

100prozent-sport.at

57

100% SPORT is an Austrian non-profit organization dedicated to promoting gender competence and safe sport within the Austrian sports community. Established by the Austrian Ministry of Sport as an autonomous association, it serves as a national center for advancing gender equality and safe sport agendas. The organization offers training, advisory services, and networking opportunities to sports organizations, athletes, and stakeholders. The website reflects a professional and consistent brand presence, supported by government and partner logos, and targets sports organizations and individuals interested in gender and safety issues in sports.

L

Licht im Osten Schweiz

lio.ch

65

Licht im Osten Schweiz is a well-established non-profit organization founded in 1920, dedicated to providing humanitarian aid and missionary support in Eastern Europe and Central Asia. The organization focuses on alleviating material, medical, and spiritual needs through various projects including child sponsorship, aid distribution, and community development. Their market position is strong within the charitable sector, supported by a consistent brand and clear communication of their mission and services. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as jQuery, Google Tag Manager, and Adobe Typekit fonts. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure suitable for their audience. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with a comprehensive GDPR privacy policy, though cookie consent mechanisms are absent despite the use of tracking scripts. No incident response or vulnerability disclosure policies are evident. Overall, the website presents a low-risk profile with high trustworthiness and professionalism. Strategic improvements in security headers, cookie consent, and transparency policies would enhance their security posture and compliance standing.

H

HMK – Hilfe für Mensch und Kirche

hmk-aem.ch

50

HMK – Hilfe für Mensch und Kirche is a Swiss-based Christian non-profit organization dedicated to supporting persecuted Christians, churches, and humanitarian aid efforts in approximately 60 countries. The website presents a professional and well-structured digital presence, leveraging WordPress with Elementor and various plugins to deliver multilingual content and facilitate donations. The organization maintains active social media channels and integrates a reputable payment processor for donations, enhancing trust and user engagement. Technically, the site employs modern web technologies, SEO best practices, and performance optimizations such as lazy loading and caching. Security posture is solid with HTTPS enforcement and partial security header implementation, though improvements are recommended in header completeness and incident response transparency. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy or security policies found. Overall, the site is trustworthy, well-maintained, and effectively supports the organization's mission.

S

Sport Austria

sportaustria.at

68

Sport Austria is a prominent non-profit interest representation and service organization dedicated to organized sports in Austria. The website serves as a central hub for information, services, and communication targeted at sports organizations and stakeholders within Austria. It offers extensive resources including news, training, event information, and policy advocacy, positioning itself as a key player in the Austrian sports ecosystem. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies and Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility basics, and SEO practices, providing a user-friendly experience. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and detailed privacy policy. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit published security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the website's claims, indicating a trustworthy and legitimate domain. Overall, the website presents a professional and secure digital presence suitable for its audience, with recommendations to enhance security transparency and incident response readiness to further strengthen trust and compliance.

A

ARBÖ

arboe.at

47

ARBÖ is a well-established Austrian automobile club providing roadside assistance, vehicle inspections, legal advice, and various automotive-related services. The website targets vehicle owners and drivers in Austria, offering membership benefits and technical services. The digital infrastructure is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, and integrates Google Tag Manager for analytics and marketing. The site is mobile optimized and presents a professional user experience with clear navigation and relevant content. Security posture is good with HTTPS enforced and a comprehensive cookie consent mechanism, though it lacks explicit security policies and incident response contacts. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is trustworthy and professionally maintained, suitable for its audience and business model.

미

미디어펜

mediapen.com

56

미디어펜 is a Korean news media company providing comprehensive news coverage across multiple sectors including economy, industry, politics, global affairs, entertainment, sports, and real estate. The website is well-structured with a professional design and consistent branding, targeting a general Korean-speaking audience interested in current affairs. The business model is primarily advertising-driven, supported by partnerships and sponsored content. The company appears to be medium-sized with a founding date around 2008, operating from a physical office in Seoul, South Korea. Technically, the website employs modern web technologies such as Google Tag Manager, Swiper.js for UI components, and Google Publisher Tags for advertising. The site uses HTTPS and includes a consent management platform for cookie and privacy compliance, although mobile optimization and accessibility are basic. The site loads multiple external resources from trusted domains, indicating a mature digital infrastructure. From a security perspective, the site uses HTTPS but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is basic with visible cookie consent mechanisms and a privacy policy page, but GDPR compliance is uncertain. The absence of WHOIS registration data is a notable concern, reducing the domain's trustworthiness despite the professional appearance of the website. Overall, the site is a credible and professional news media platform with moderate technical maturity and basic privacy compliance. The main risk lies in the missing WHOIS data, which should be investigated further to confirm domain legitimacy and ownership. Strategic improvements in security headers, mobile optimization, and transparency around security policies would enhance trust and compliance.

(

(주)비즈니스포스트

businesspost.co.kr

60

비즈니스포스트 is a well-established Korean economic media company founded in 2013, providing business news, corporate profiles, and economic insights primarily targeting Korean-speaking business professionals and investors. The website is professionally designed with a consistent brand presence and offers a broad range of content including articles, interviews, and forums. Technically, the site uses modern web technologies such as jQuery, Google Tag Manager, and Microsoft Clarity for analytics and user tracking, hosted likely on AWS infrastructure. The site is accessible, moderately performant, and has basic mobile optimization. Security posture is adequate with HTTPS enforced but lacks some security headers and cookie consent mechanisms, indicating room for improvement in compliance and security best practices. WHOIS data is transparent and consistent with the business identity, supporting high legitimacy and trustworthiness.

S

Scottish Funding Council

sfc.ac.uk

66

The Scottish Funding Council (SFC) is Scotland’s national authority responsible for funding and overseeing tertiary education and research. The organization supports colleges and universities across Scotland to sustain a world-leading education and research system that benefits students and society. The website reflects a mature, government-backed entity with a clear mission and comprehensive service offerings including funding, assurance, skills development, and research innovation. The target audience includes educational institutions, students, researchers, and policy makers within Scotland. Technically, the website is built on WordPress with modern plugins and SEO optimizations, delivering a responsive and accessible user experience. Security posture is strong with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, although explicit security headers could be enhanced. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and UK regulations.

T

The Quality Assurance Agency for Higher Education

step.ac.uk

68

STEP (Scotland’s Tertiary Enhancement Programme) is a nationally recognized programme designed to enhance the quality of tertiary education across Scotland by fostering collaboration between colleges and universities. Managed jointly by The Quality Assurance Agency for Higher Education (QAA) and the College Development Network (CDN), STEP operates on a four-year cycle focusing on discovery, implementation, and reflection phases to improve learning, teaching, and staff development. The programme is well-positioned within the Scottish educational landscape, supported by key partners including the Scottish Funding Council.

T

The Quality Assurance Agency for Higher Education

enhancementthemes.ac.uk

68

Enhancement Themes is a well-established educational program managed by The Quality Assurance Agency for Higher Education in Scotland, focusing on collaborative quality enhancement in higher education from 2003 to 2023. The website serves as an information hub for staff, students, and stakeholders, providing news, events, and resources related to educational improvement. The organization holds recognized certifications such as ISO 27001 and Cyber Essentials, reinforcing its commitment to security and quality standards. Technically, the site is built on the Sitefinity CMS platform, leveraging modern JavaScript libraries and Google Analytics for user insights. The design is professional, accessible, and mobile-optimized, ensuring a positive user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is robust with clear policies and cookie consent mechanisms. Overall, the website reflects a credible, trustworthy educational entity with a strong market position in the Scottish higher education sector.

B

baoo Technologies GmbH

yourhomie.ai

63

homie AI, operated by baoo Technologies GmbH, is a modern SaaS platform providing AI-powered chat assistants designed to enhance customer communication and sales conversion for online retailers and enterprises. The platform emphasizes quick integration, GDPR compliance, and enterprise readiness, positioning itself as a trusted solution for European retail businesses. The website content is professional and well-structured, targeting online shops seeking AI-driven customer support and upselling capabilities. Technically, the website is built on Webflow CMS with integrations including Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. From a security and compliance perspective, the site claims GDPR compliance and hosts data within the EU. However, it lacks a visible cookie consent mechanism and explicit security or incident response policies. No vulnerabilities or suspicious content were detected. WHOIS data shows privacy protection usage, consistent with a new tech startup founded in 2024, and domain registration aligns with the business timeline. Overall, homie AI presents a credible, professional online presence with room for improvement in security headers, cookie consent, and incident response transparency. The risk level is low, but addressing these gaps will strengthen trust and compliance.

D

Dedrone

dedrone.com

67

Dedrone is a leading provider of AI-driven counter-drone defense solutions, offering a comprehensive suite of products and services designed to protect airspace from unauthorized UAVs. As a part of Axon, Dedrone leverages advanced machine learning and multi-sensor integration to deliver highly accurate drone detection and mitigation capabilities. The company serves a broad range of sectors including government, military, airports, critical infrastructure, and enterprises, positioning itself as a global leader in airspace security technology. The website reflects a mature digital presence with professional design, clear navigation, and extensive content showcasing their technology and customer success stories. Technically, the site employs modern web frameworks, analytics, and marketing tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, privacy policies, and secure forms, although explicit security headers and incident response information could be improved. Overall, Dedrone demonstrates a high level of business credibility and digital maturity, though the lack of WHOIS transparency slightly impacts domain trustworthiness.

Musterring International Josef Höner GmbH & Co. KG is a well-established German furniture brand with a history dating back to 1938. The company specializes in high-quality, innovative furniture designs that combine aesthetics and functionality, targeting discerning furniture buyers and home design enthusiasts. Their business model includes licensed retail partners and a strong emphasis on sustainability and customer service. The website reflects a mature digital presence with multi-language support and interactive tools such as a sofa configurator and dealer locator. Technically, the site is built on TYPO3 CMS and integrates modern JavaScript libraries and consent management tools, ensuring good performance, accessibility, and SEO optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional website and business transparency. Strategic recommendations include publishing security policies, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

S

Set-One-by-Musterring

set-one-by-musterring.de

54

Set-One-by-Musterring operates a professional e-commerce website specializing in modern furniture and interior design products targeted at young adults and families in Germany. The site leverages the Shopware platform, integrating advanced marketing and analytics tools such as HubSpot and Google Analytics, reflecting a mature digital infrastructure. The business model focuses on online retail with product customization options and dealer locator services, positioning itself as a trusted furniture brand with a 5-year guarantee. Technically, the website is well-structured, mobile-optimized, and secure with HTTPS, though it lacks some security headers and explicit privacy documentation. Security posture is solid with no visible vulnerabilities, but improvements in transparency and compliance documentation are recommended. Overall, the site is safe, professional, and trustworthy, with moderate tracking and marketing practices.

H

HostGator | India

hostgator.in

75

HostGator India is a well-established web hosting provider offering a broad range of hosting services including shared, WordPress, cloud, VPS, dedicated servers, domain registration, and website security solutions. The company targets individuals and businesses in India seeking reliable and affordable hosting solutions. The website prominently announces an upcoming merger with BigRock, indicating strategic consolidation in the Indian hosting market. Technically, the website employs modern web technologies such as jQuery, Bootstrap, Google Analytics, and various marketing and tracking tools, reflecting a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security-wise, the site enforces HTTPS and uses reCAPTCHA and cookie consent mechanisms, but lacks explicit security policies or incident response contacts. Overall, the website is professional, trustworthy, and well-positioned in the Indian hosting sector, though it could improve transparency around privacy and security policies.

N

New Private Markets

newprivatemarkets.com

75

New Private Markets is a subscription-based intelligence service specializing in sustainable investment, ESG, and impact investing across private equity, real estate, infrastructure, and debt sectors. The website targets investors and financial professionals seeking in-depth research and insights in these niche markets. The company positions itself as a trusted source for ESG and impact investing intelligence, leveraging a professional digital presence and subscription model to monetize its content. Technically, the website is built on WordPress with a modern tech stack including WPBakery Page Builder, Slider Revolution, WooCommerce for e-commerce capabilities, Algolia for search, and multiple analytics and marketing integrations such as Google Tag Manager, Marketo, Sailthru, and Datadog. Cookie consent is managed via Cookiebot with compliance to IAB TCF v2.2 standards, indicating attention to privacy regulations. The site is mobile optimized and uses HTTPS, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and restricts copy-pasting of content to protect intellectual property. However, it lacks explicit privacy policy and terms of service pages, and no security.txt or incident response contacts are published. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website content. Overall, the site demonstrates a good security posture and technical maturity but would benefit from enhanced transparency in privacy and security policies. The absence of WHOIS data impacts trustworthiness and should be addressed. Strategic recommendations include publishing comprehensive privacy and terms policies, adding vulnerability disclosure information, and providing clear incident response contacts to improve compliance and trust.

D

Diversidays

diversidays.com

67

Diversidays is a French non-profit organization dedicated to promoting digital inclusion and accelerating diversity within the technology sector. The website presents a professional and consistent brand image, targeting a general audience interested in equality of opportunity and digital empowerment. Their key services revolve around community engagement, inclusion programs, and diversity advocacy in digital fields. Technically, the site is built on WordPress using the Divi theme, with integrations such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The website demonstrates good SEO practices and mobile optimization, although accessibility features are basic. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service in the provided content. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and transparency.

C

Clean my Calanques

cleanmycalanques.fr

56

Clean my Calanques is a Marseille-based non-profit association founded in 2017, dedicated to environmental preservation and raising awareness about ecological issues. The organization focuses on organizing regular clean-up events, educating youth, and fostering partnerships with local businesses and communities. Their website reflects a strong local presence with clear mission statements and community engagement metrics. Technically, the site is built using modern web technologies such as React and Gatsby, hosted via OVH, and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enabled and no critical vulnerabilities detected, although some security headers could be improved. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission.

F

France Invest

franceinvest.eu

63

France Invest is a prominent French association that federates actors in private equity, debt, and infrastructure investment to support the growth of startups, SMEs, and mid-sized companies in France. The organization focuses on fostering economic growth, job creation, and infrastructure development. The website reflects a mature digital presence with comprehensive content including studies, events, training, and member services, positioning France Invest as a key player in the French finance sector. Technically, the website is built on WordPress with modern integrations such as Algolia for search, Google Tag Manager for analytics, and a cookie consent framework (Tarteaucitron) ensuring GDPR compliance. The site is mobile-optimized and well-structured, providing a good user experience and SEO optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, though explicit security headers are not evident in the HTML. No vulnerabilities or suspicious elements were detected. WHOIS data is privacy protected by EURid, which is typical for .eu domains, and no suspicious registration patterns were found. Overall, France Invest’s website demonstrates a strong business credibility and digital maturity with good privacy compliance and a safe content profile. Strategic recommendations include enhancing security headers and publishing explicit security policies to further strengthen trust and compliance.

C

Caritas Regio

caritas-regio.ch

65

Caritas Regio is a Swiss non-profit organization dedicated to supporting people affected by poverty and social disadvantage across Switzerland. The website presents a comprehensive range of social, legal, and integration services, alongside opportunities for donations and volunteer engagement. The organization holds the ZEWO certification, indicating recognized trustworthiness in the Swiss charitable sector. The website is professionally designed, multilingual (German and French), and provides clear navigation and relevant content tailored to its target audience.

C

Caritas

kulturlegi.ch

57

KulturLegi.ch is a Swiss non-profit initiative operated by Caritas that provides a discount card to individuals with limited financial means, enabling access to over 4,200 offers in culture, sports, education, and health sectors across Switzerland. The website is well-branded, consistent, and targets socially disadvantaged groups to promote inclusion. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and Tag Manager for analytics. The site is mobile-optimized and SEO-friendly with good navigation and content quality. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent and a comprehensive privacy policy. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the domain registration aligns well with the business claims, enhancing trust and legitimacy.

T

TVEpg.eu

tvepg.eu

64

TVEpg.eu is a specialized online media service providing comprehensive TV program guides primarily for Finland, with additional coverage of European and other countries' channels. The website offers multi-language support and detailed channel listings, targeting TV viewers seeking up-to-date program schedules. The business model appears to be advertising-supported, leveraging Google Adsense and social media presence to engage users. The site is hosted via GoDaddy.com, LLC and uses modern web technologies including Bootstrap, Google Fonts, and JavaScript libraries for enhanced user experience. The technical infrastructure supports mobile optimization and reasonable performance, although accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies or incident response information. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

O

OneLog AG

oneid.live

72

OneID is a digital advertising identity initiative focused on the Swiss market, enabling privacy-compliant targeting of over 3 million users across premium Swiss publishers. The platform is supported by major Swiss media and advertising companies, positioning it as a key player in Swiss digital advertising. The website is professionally designed, multilingual, and emphasizes user privacy and control through compliance with TCF 2.2 and integration of OneTrust cookie consent mechanisms. Technically, the site is built on Webflow, uses Google Tag Manager for analytics, and includes modern web fonts and scripts, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable due to privacy protection, but the website's professional presentation and partnerships suggest legitimacy. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

B

Bauspot.de

bauspot.de

60

Bauspot.de is a German online platform serving the construction industry by providing product information, training, webinars, and a partner portal for manufacturers. The site targets construction professionals and manufacturers within Germany, positioning itself as a niche resource and marketplace. Technically, the website employs modern technologies such as Vue.js, integrates third-party services like YouTube and Vimeo for video content, and uses Cookiebot for GDPR-compliant cookie consent management. Hosting is provided via German-based nameservers, consistent with the business location. Security posture is solid with HTTPS enabled, CSRF protection, and anonymized IP tracking in analytics, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. No direct contact emails or phone numbers are publicly listed, with contact likely via legal or contact pages. Overall, the website is professional, trustworthy, and well-structured, with moderate tracking and advertising practices primarily through Google services.

S

SFS Group

sfs.com

71

SFS Group is a globally recognized supplier specializing in application-critical precision components, mechanical fastening systems, quality tools, and procurement solutions. The company targets industrial and manufacturing sectors, providing mission-critical products embedded in customer processes. Their market position is strong, with a worldwide footprint and a large operational scale. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored for B2B audiences. Technically, the site employs modern JavaScript libraries, Google Tag Manager for analytics, and Cookiebot for privacy compliance, indicating a commitment to data protection and user consent. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers could be improved. The absence of WHOIS data limits domain registration trust verification, but the overall site professionalism and active social media presence support legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

L

Lichtblick Römisch-katholisches Pfarrblatt Nordwestschweiz

lichtblick-nw.ch

52

Lichtblick Römisch-katholisches Pfarrblatt Nordwestschweiz is a regional non-profit publication serving the Catholic parishes in the Swiss cantons of Aargau, Basel, and Solothurn. The website provides parish news, event agendas, job listings, and multimedia content such as videos and podcasts. It targets the Catholic community and interested readers in the region, positioning itself as a trusted source of religious and community information. The business model focuses on information dissemination and community engagement rather than commercial profit. Technically, the website is built on WordPress 6.8.3 with modern web technologies including jQuery, Google Tag Manager, and reCAPTCHA for form security. The site is mobile-optimized with good SEO practices and uses structured data (JSON-LD) for enhanced search engine understanding. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. Email addresses are obfuscated to reduce spam. However, some security headers are not explicitly detected and could be implemented to strengthen security posture. No critical vulnerabilities or exposed sensitive data were found. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations. It provides clear contact information and maintains a consistent brand presence. The risk level is low, with recommendations focusing on enhancing security headers and ongoing maintenance to ensure continued compliance and security.

L

La Chiesa

lachiesa.it

54

LaChiesa.it is a niche Italian-language religious website focused on providing daily liturgical readings, a liturgical calendar, biblical search tools, and links to related Catholic resources. The site targets Catholic faithful and those interested in liturgy, offering informational content supported by donations. Technically, the site employs a variety of JavaScript libraries and ad networks, including Google Tag Manager, TheMoneytizer, and Criteo, with moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and consent management via Iubenda, but lacks explicit security headers and published security policies. Privacy compliance is basic, with no dedicated privacy or terms of service pages found. Overall, the site is legitimate and consistent with its religious informational purpose, though improvements in security and privacy transparency are recommended.

I

Impulse

plumpopup.com

64

Impulse is a SaaS company offering an all-in-one no-code solution to boost sales for e-commerce stores by providing banners, timers, forms, and popups. The platform targets e-commerce marketers and store owners seeking easy-to-use tools to increase conversions and engagement. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Webflow CMS, Google Tag Manager, and Crisp Chat for customer support. Security posture is strong with HTTPS enforced and CAPTCHA protection on forms, though some security headers are missing and cookie consent mechanisms are absent. The domain is newly registered with privacy protection, consistent with a startup business. Overall, the website demonstrates a mature digital presence with good trust signals and user experience.

S

Schwabe

schwabe.ch

61

Schwabe is an established Swiss academic publisher specializing in humanities and social sciences, offering a broad range of scholarly books, e-books, journals, and databases. The website targets academics, researchers, libraries, and authors, providing a professional platform for content discovery and purchase. The business model centers on publishing and distributing academic content with a focus on quality and scholarly relevance. The company maintains a consistent brand presence and good content quality, positioning itself as a reputable player in its niche market. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and Algolia Search integrated within a Shopware CMS platform. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate, with room for improvement in accessibility and loading speed. Privacy considerations are evident through cookie consent mechanisms and IP anonymization in analytics. From a security perspective, the site enforces HTTPS and includes standard security headers, reflecting a good security posture. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, Schwabe's website is professional, secure, and compliant with GDPR principles, though it could benefit from publishing more comprehensive security and legal policies. The risk level is low, with strategic recommendations focusing on improving transparency and accessibility to further strengthen user trust and regulatory compliance.

K

Kloster Werthenstein

kloster-werthenstein.ch

46

Kloster Werthenstein is a Swiss cultural and spiritual site offering visitors a place to experience tradition, history, and spirituality. The website serves as an informational platform highlighting the monastery's history, events, pilgrimage services, and natural surroundings. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and tracking tools such as Google Analytics, Facebook Pixel, and Pinterest Tag. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is trustworthy and professionally presented but would benefit from enhanced privacy and security disclosures.

T

Tennisverband Pfalz e.V.

tvpfalz.de

56

The Tennisverband Pfalz e.V. is a regional tennis association based in Kaiserslautern, Germany, serving tennis players, clubs, and enthusiasts in the Pfalz region. The website provides news, tournament information, training opportunities, and organizational details, positioning itself as a key regional sports entity. The business model is non-profit and community-focused, emphasizing sports development and engagement. Technically, the site is built on TYPO3 CMS with Bootstrap for responsive design and includes accessibility enhancements via eyeAble scripts. The hosting is provided by kundenserver.de, indicating a professional hosting environment. Security posture is moderate; HTTPS is implied, and secure login forms are present, but security headers and explicit security policies are lacking. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-structured but could improve in security and privacy transparency. Strategic recommendations include implementing security headers, cookie consent, and publishing security policies to enhance trust and compliance.

T

Tennisverband Rheinland e.V.

tennisverband-rheinland.de

58

Tennisverband Rheinland e.V. is a regional tennis association serving the Rheinland-Pfalz region in Germany. The organization focuses on providing tennis-related news, organizing tournaments and league matches, offering trainer and referee education, and supporting sport development initiatives. The website serves as an information hub for tennis players, clubs, and enthusiasts in the region, featuring event calendars, training opportunities, and online booking for tennis halls. The association positions itself as a key regional governing body within the tennis community. Technically, the website is built on the TYPO3 CMS platform with Bootstrap for responsive design. It integrates Google Tag Manager for analytics and includes accessibility enhancements via eyeAble scripts. The site is hosted on servers managed by agenturserver, with multiple nameservers indicating a professional hosting environment. The website demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers and explicit cookie consent mechanisms are absent. From a security perspective, the site uses HTTPS and secure login forms but lacks visible security policies, incident response contacts, and security.txt files. No critical vulnerabilities or suspicious patterns were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Contact information is clearly provided, enhancing trustworthiness. Overall, the website is professional, trustworthy, and well-suited for its audience. Strategic improvements in security headers, cookie consent, and published security policies would enhance compliance and security posture, supporting the association's credibility and user trust.

S

SPORTUNION Österreich

sportunion.at

63

SPORTUNION Österreich is a major non-profit sports umbrella organization in Austria, representing a large membership base and numerous sports clubs nationwide. The website serves as an informational and service platform for sports enthusiasts and affiliated clubs, providing event information, member services, and organizational support. The organization holds a strong market position as one of the top three sports federations in Austria. Technically, the website is built on WordPress with a modern tech stack including popular plugins for event management, cookie consent, and SEO optimization. The infrastructure is hosted by netcup GmbH, a reputable hosting provider. The site demonstrates good mobile optimization and moderate performance, with comprehensive SEO and accessibility features. From a security perspective, the website enforces HTTPS, uses security plugins like Wordfence, and implements a robust cookie consent mechanism compliant with GDPR. Security headers are present, and no critical vulnerabilities or exposed sensitive data were detected. However, there is no publicly available security policy or incident response information, which could be improved. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic recommendations include publishing a dedicated security policy, establishing an incident response contact, and enhancing accessibility features to further strengthen the security posture and user experience.

K

Knepper Gruppe

knepper-recycling.de

51

Knepper Gruppe is a well-established German family-run company with over 70 years of experience, specializing in demolition, earthworks, recycling, scrap metal processing, logistics, and food recycling. The company operates nationally and across Europe, emphasizing sustainable and innovative solutions. Their website reflects a professional and comprehensive digital presence, built on TYPO3 CMS, with modern technologies and good mobile optimization. Security practices include HTTPS enforcement, cookie consent management, and use of Google Tag Manager with consent mechanisms. No critical vulnerabilities or privacy issues were detected. However, the site lacks explicit incident response contacts and a security.txt file. Overall, Knepper Gruppe presents a trustworthy and credible business with a strong focus on sustainability and customer service.

Weidmüller is a well-established German company specializing in connection technology, automation, and digitalization solutions for industrial customers. The website reflects a mature digital presence with comprehensive product and solution offerings targeting B2B industrial sectors. The company maintains a strong market position with a focus on innovation and customer support. Technically, the website uses modern technologies including Google Tag Manager and OneTrust for consent management, hosted likely on infrastructure provided by Deutsche Telekom. Security posture is strong with HTTPS enforced and security headers present, although explicit security policies and incident response contacts are not published. Privacy compliance is robust with GDPR-aligned cookie consent mechanisms and a detailed privacy policy. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

T

The Family Butchers Germany GmbH

the-family-butchers.com

66

The Family Butchers Germany GmbH is a large-scale manufacturer and retailer specializing in sausage, ham, and protein products, including plant-based alternatives. As Germany's second-largest producer in this sector and part of InFamily Foods Holding, the company emphasizes tradition, family values, and innovation. Their digital presence is built on TYPO3 CMS with modern web technologies, providing a well-structured, mobile-optimized, and content-rich website. The site integrates consent management and tracking tools responsibly, reflecting good privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website presents a professional and trustworthy image suitable for its target audience and market position.

Schröter Technologie GmbH & Co. KG is an internationally recognized manufacturer specializing in thermal equipment for the food industry, including solutions for smoking, cooking, steaming, and drying. The company positions itself as a leader in precision, quality, and innovation within its sector. The website is built on TYPO3 CMS, indicating a mature digital infrastructure with modern technologies such as Google reCAPTCHA and Google Tag Manager integrated for security and analytics purposes. However, the absence of explicit privacy policies and contact information on the visible HTML content suggests areas for improvement in transparency and compliance. Security posture is moderate, with HTTPS usage and bot protection in place, but lacking visible security headers and formal incident response details. Overall, the website is professional and trustworthy, serving a general audience in the manufacturing sector without any adult or questionable content.

P

Phoenix Contact

phoenixcontact.com

70

Phoenix Contact is a leading enterprise specializing in industrial connection technology, automation, interface systems, and surge protection. The company targets industrial customers, manufacturers, and distributors primarily in Finland but also globally through its parent company Phoenix Contact GmbH & Co. KG. The website reflects a mature B2B business model with a strong market position as an innovator and market leader in its sector. Key services include product configurators, sample services, and customer-specific solutions, supporting a comprehensive industrial product portfolio. Technically, the website employs modern web technologies including JavaScript frameworks like Vue.js, Google Tag Manager for analytics, Dynatrace for performance monitoring, and Usercentrics for consent management. The site is hosted on a robust platform with Akamai CDN inferred, ensuring fast performance and excellent mobile optimization. The site is well-structured with good SEO and accessibility features, supporting a professional user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements multiple security headers. Consent management is properly integrated, supporting GDPR compliance. However, explicit security policies, incident response details, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. The WHOIS data is not publicly accessible, which slightly reduces transparency but does not detract significantly from the site's legitimacy given the professional presentation and trust signals. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for an enterprise in the industrial manufacturing sector. Strategic recommendations include publishing detailed security policies, incident response contacts, and vulnerability disclosure information to enhance trust and compliance further.

N

NTT DATA Business Solutions

nttdata-solutions.com

70

NTT DATA Business Solutions Finland is a leading global SAP consulting and full-service software solutions provider, operating in over 30 countries. The company focuses on delivering comprehensive SAP-related services including advisory, implementation, managed services, and cloud solutions, targeting midsize and large enterprises. Their market position is strong, supported by a consistent brand presence and a wide range of key services that address digital transformation challenges. The website reflects a mature digital infrastructure leveraging WordPress CMS, advanced SEO tools, and modern analytics platforms such as Matomo and Google Tag Manager. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website and domain registration data indicate a trustworthy and professional enterprise with a high level of business credibility.

N

nobilia Küchen

nobilia.de

59

nobilia Küchen is a leading German kitchen manufacturer with a strong market position in the manufacturing sector. The company offers a wide range of kitchen, bathroom, and living space products, supported by planning tools and customer services. The website reflects a mature digital presence with a professional design, clear navigation, and strong accessibility features, including integration of a comprehensive accessibility tool by digi·access GmbH. The technical infrastructure is based on TYPO3 CMS and includes modern marketing and analytics tools such as Google Tag Manager, HubSpot, and eTracker. Security posture is moderate with HTTPS enforced and consent management implemented, but lacks explicit security headers and published security policies. WHOIS data is minimal and uses generic name servers, which slightly reduces transparency but does not indicate malicious intent. Overall, the website is trustworthy, professional, and well-optimized for its target audience.

Musterring International, operated by Josef Höner GmbH & Co. KG, is a well-established German furniture brand with a history dating back to 1938. The company focuses on high-quality, sustainable furniture products with a strong emphasis on design, functionality, and customer service. Their digital presence reflects a mature retail business with comprehensive product offerings, dealer support, and configurator tools to enhance customer experience. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and third-party tools for analytics, consent management, and accessibility. Security posture is strong with HTTPS enforcement and security headers, though there is room for improvement in publishing explicit security policies and incident response contacts. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional website content and business information. Strategic recommendations include enhancing transparency on security and privacy policies and ensuring WHOIS data availability for trust enhancement.

G

Gebrüder Lödige Maschinenbau GmbH

loedige.de

42

Gebrüder Lödige Maschinenbau GmbH is a well-established German manufacturer specializing in industrial mixing and processing machinery, with a history dating back to 1938. The company positions itself as an international market leader offering tailored system solutions, engineering services, and customer support primarily targeting industrial clients across sectors such as pharmaceuticals, chemicals, food, and environmental technology. Their website reflects a professional and consistent brand image, leveraging TYPO3 CMS and modern web technologies to provide a user-friendly experience. The presence of a cookie consent mechanism and Google Tag Manager indicates a moderate level of digital maturity and compliance awareness. Security posture is solid with HTTPS enabled and no blocking mechanisms detected, though explicit security headers and incident response information are lacking. Overall, the site demonstrates good business credibility and technical implementation, though privacy policy and terms of service documentation could be improved to enhance compliance and user trust.

D

DFT – Dürkopp Fördertechnik

duerkopp.com

70

DFT – Dürkopp Fördertechnik is a German-based company specializing in intralogistics and conveyor technology solutions, targeting industries such as fashion, pharmaceutical wholesale, parcel logistics, and eCommerce fulfillment. The company offers a range of products including material handling systems, sorter systems, and software solutions for warehouse control and analytics. Their market position is that of an established medium-sized B2B provider with a global footprint and a focus on innovative, durable logistics solutions. The website content is professionally presented, with comprehensive product information and active news updates, reflecting a mature digital presence. Technically, the website is built on WordPress with modern SEO tools like Rank Math and uses Google Tag Manager for analytics and tracking, configured with privacy-conscious defaults. The site is mobile-optimized, accessible, and performs moderately well. Security best practices such as HTTPS and cookie consent mechanisms are implemented, though some security headers and explicit security policies are missing. From a security perspective, the site shows good baseline protections but lacks published incident response or vulnerability disclosure information. The absence of WHOIS registration data is a notable anomaly that reduces trustworthiness, although the website content and branding are consistent with a legitimate business. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front for a specialized industrial technology provider, but the domain registration opacity warrants further verification. Strategic improvements in security transparency and WHOIS data clarity would enhance trust and compliance posture.

R

ROTTLER

rottler.de

69

ROTTLER is a German retail and service company specializing in optical and hearing products including eyeglasses, sunglasses, hearing aids, and contact lenses. The company operates both physical stores and an online shop, targeting end customers in Germany seeking vision and hearing solutions. The website is professionally designed, content-rich, and well-structured, providing comprehensive product information, offers, and appointment booking services. Technically, the site is built on the HubSpot CMS platform, leveraging modern JavaScript frameworks and marketing tools such as Google Tag Manager and Usercentrics for consent management. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

A

Axon Enterprise, Inc.

axon.com

70

Axon Enterprise, Inc. is a leading technology company specializing in public safety solutions, including TASER devices, police body cameras, cloud-based evidence management, AI-powered tools, and drone detection systems. The company targets law enforcement, federal agencies, enterprise, fire, EMS, corrections, and campus safety sectors, positioning itself as a market leader with a comprehensive ecosystem designed to protect life and enhance public safety operations. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on AWS with strong performance and mobile optimization. Security posture is robust with HTTPS, security headers, and privacy policies in place, though explicit vulnerability disclosure and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting Axon's reputation as a credible enterprise in the public safety technology market.

A

Aug. Winkhaus SE

winkhaus.com

71

Winkhaus is a well-established German manufacturer specializing in innovative window technology, door locking systems, and intelligent access control solutions. With a history spanning over 170 years, the company serves a global audience including architects, building owners, manufacturers, and security professionals. Their website reflects a mature digital presence with comprehensive product information, multilingual support, and active engagement through news and press releases. Technically, the site leverages modern web technologies including Google Tag Manager and Usercentrics for consent management, built on the SAP Commerce (Hybris) CMS platform. Security posture is strong with HTTPS enforcement and consent mechanisms, though explicit security headers should be verified. The WHOIS data is incomplete or unavailable, which slightly reduces trust but the overall business credibility remains high due to consistent branding, certifications, and transparent contact information.

T

TMC Live GmbH

tmc-live.de

40

TMC Live GmbH is a German full-service event agency specializing in the conception, planning, and execution of B2B events including hybrid and digital formats. The company positions itself as a creative and reliable partner focused on sustainable and emotionally engaging event experiences. Their market presence is supported by a professional website showcasing extensive services, client testimonials, and references, indicating a solid reputation in the event management sector. Technically, the website uses modern frameworks such as Alpine.js and Swiper.js, is built on October CMS, and is hosted on agenturserver infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not found. Overall, the website reflects a mature digital presence with strong business credibility and compliance with privacy regulations.

T

TMC GmbH

tmc-gmbh.de

38

TMC GmbH is a medium-sized marketing agency based in Germany, specializing in creating emotional brand experiences across digital and analog environments. The company operates multiple specialized agencies under its group, including Amplio®, TMC Brandwork, and TMC Live, offering services such as marketing consulting, brand development, event management, and video production. The website reflects a strong market position as the largest marketing agency in the Ostwestfalen-Lippe region, targeting businesses seeking comprehensive marketing solutions. Technically, the website is built on a modern stack including OctoberCMS, JavaScript libraries like jQuery and Vime.js for video playback, and integrates Google Tag Manager and CookieFirst for analytics and consent management. The site is mobile-optimized with good SEO practices and a professional design, providing a positive user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security headers and documented security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is consistent with a legitimate business domain, with no privacy protection or suspicious patterns. Overall, the website demonstrates a high level of professionalism, good security posture, and compliance with privacy regulations, making it a trustworthy digital presence for the company.

R

RBA Libros

rbalibros.com

66

RBA Libros is a prominent Spanish publishing house specializing in adult fiction and non-fiction literature, offering a diverse catalog through multiple well-known imprints such as Gredos, Serie Negra, and National Geographic. The company operates under the Grupo RBA umbrella, positioning itself as a key player in the Spanish media and publishing sector. Their website provides comprehensive access to their catalog, news, and social media engagement, targeting general adult readers interested in literary content. Technically, the website employs a modern JavaScript stack including RequireJS, jQuery, and LazySizes for optimized content delivery and lazy loading. It integrates GDPR-compliant consent management via the Didomi SDK and uses Google Tag Manager for analytics and marketing. Hosting of static content is done through Microsoft Azure Blob Storage, indicating a robust infrastructure. The site is mobile-optimized with good SEO and accessibility practices, although some improvements in security headers could be made. From a security perspective, the site enforces HTTPS and uses consent mechanisms aligned with GDPR. However, the absence of explicit security headers and a published security policy or incident response contact reduces the overall security posture. The missing WHOIS domain registration data is a notable concern, as it creates uncertainty about domain legitimacy despite the professional appearance and consistent branding of the website. Overall, RBA Libros presents a trustworthy and professional digital presence with strong content and compliance features. The primary risk lies in the lack of transparent domain registration information and some minor security best practice gaps. Addressing these would enhance trust and security assurance for users and partners.