Security Directory

Nagykovácsi Nagyközség Önkormányzat operates an official municipal website serving the local community of Nagykovácsi, Hungary. The site provides comprehensive information including news, events, municipal documents, and public service details, targeting residents and visitors. The business model is that of a local government authority, focusing on transparency and community engagement. The website is well-branded with consistent use of official logos and clear contact information. Technically, the website is built on the Yii Framework with modern front-end technologies such as Bootstrap and jQuery. It integrates Google Analytics and Facebook SDK for tracking and social media engagement. The site is mobile-optimized and features an event calendar and newsletter subscription with CAPTCHA protection, indicating a moderate level of digital maturity. From a security perspective, the website enforces HTTPS and uses CSRF tokens and CAPTCHA on forms, which are positive security practices. However, it lacks important security headers and does not publish an incident response or vulnerability disclosure policy. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy and professional, with a good security posture for a municipal site but with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing security headers, adding cookie consent, and publishing security policies to enhance trust and compliance.

M

mapAds

mapads.net

44

mapAds is a German-based technology company specializing in AI-driven advertising solutions that enable rapid creation, targeting, and deployment of ad campaigns across multiple platforms including Google, Facebook, Instagram, YouTube, and AddressableTV. The platform targets local businesses, agencies, and publishers, offering both white-label self-service and managed service options. The website is professionally designed using WordPress and Elementor, with good mobile optimization and clear navigation. Hosting is provided by Hetzner Online GmbH in Germany, aligning with the domain's registration country. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements are recommended in DNSSEC, security headers, and incident response transparency. No critical vulnerabilities or suspicious content were detected, and the site maintains a high level of trustworthiness and compliance with GDPR. Overall, mapAds presents a credible and modern digital presence suitable for its business model.

N

netcup GmbH

netcup.de

74

netcup GmbH is a reputable German web hosting provider specializing in web hosting, dedicated servers, VPS, and domain registration services. Established in 2008, the company serves a broad audience of businesses and private customers primarily in Germany and Europe. The website reflects a mature digital presence with modern technologies such as Vue.js and Nuxt.js, ensuring fast performance and excellent mobile optimization. Security is a key focus, evidenced by ISO 27001 certification, robust HTTPS implementation, and comprehensive security headers. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, netcup demonstrates a high level of professionalism, trustworthiness, and technical maturity.

U

uniten GmbH

uniten.io

67

uniten GmbH is a German-based company specializing in content performance analytics tailored for digital newsrooms of regional media houses. Their platform leverages AI to provide actionable insights that help optimize content, improve editorial efficiency, and enhance digital subscription retention. The company positions itself as a niche provider in the media analytics sector with a focus on data-driven audience development and content optimization. Technically, the website is built on the Webflow CMS platform, utilizing modern web fonts and hosted via a CDN for fast performance. The site is well-structured, mobile-optimized, and provides a professional user experience. However, some technical improvements could be made in security headers and cookie consent mechanisms to enhance compliance and security posture. From a security perspective, the site uses HTTPS and claims GDPR compliance with data stored on European servers and no personal data collection. There is no evidence of security incident response policies or vulnerability disclosure mechanisms, which could be areas for improvement. The WHOIS data is incomplete and malformed, limiting trust verification, but the website content and contact information appear legitimate and consistent with a small professional business. Overall, uniten.io presents a credible and professional digital presence with good technical implementation and privacy compliance, though improvements in security policy transparency and WHOIS data clarity would strengthen trust and security posture.

P

Pixelcowboys Werbeagentur

pixelcowboys.de

55

Pixelcowboys Werbeagentur is a well-established full-service advertising agency based in Alsdorf, Germany, operating since 1997. The company offers a broad range of services including web design, print media, layout and prepress, and video production, catering to a diverse clientele such as unions, social organizations, municipalities, cultural institutions, and commercial enterprises. Their emphasis on environmental responsibility, including CO2-neutral energy and hosting, positions them as a conscientious player in the media sector. Technically, the website employs modern frontend technologies like Bootstrap, AOS, and FontAwesome, with hosting provided by reputable German providers known for green IT practices. Security posture is adequate with HTTPS enabled, though improvements in security headers and explicit privacy mechanisms are recommended. Overall, the website is professional, user-friendly, and trustworthy, reflecting the company's credibility and market position.

A

Accredible

coursefinder.io

64

CourseFinder.io is an online platform operated by Accredible that enables users to find professional development courses and obtain digital credentials to advance their careers. The website targets professionals seeking to enhance their skills and gain marketable badges. The platform integrates modern web technologies including Angular and analytics tools such as PostHog and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and browser compatibility checks, though there is room for improvement in security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service in the provided content. Overall, the platform appears legitimate and professionally maintained, serving a niche in the education sector focused on credentialing and career advancement.

Z

Združenie informatikov samospráv Slovenska

ziss.sk

53

Združenie informatikov samospráv Slovenska (ZISS) is a Slovak non-profit association dedicated to uniting IT professionals working in local government and public administration. Established in 2007, the organization focuses on fostering communication, knowledge exchange, and professional development through conferences and projects such as ZlatyErb.sk. The website serves as an information hub for members and interested parties, providing news, event details, and resources relevant to the public sector IT community in Slovakia. Technically, the website is built on WordPress and leverages common web technologies including jQuery, Google Analytics, and FontAwesome. It is hosted on WebSupport infrastructure with DNSSEC enabled and uses HTTPS, indicating a baseline of security best practices. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are present, which are important for GDPR compliance. The site also does not publish a security policy or incident response contacts, limiting transparency in security governance. From a security perspective, the site benefits from HTTPS and DNSSEC, and the presence of Wordfence scripts suggests some level of active security monitoring. Nonetheless, the absence of HTTP security headers and vulnerability disclosure policies represents areas for improvement. User tracking via Google Analytics is implemented without visible consent, which may pose privacy compliance risks. Overall, the security posture is moderate but could be enhanced with additional controls and transparency. The website content is professional and relevant to its target audience, with clear navigation and consistent branding. The domain registration data aligns well with the organization's history and purpose, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing incident response information to improve trust and compliance.

R

RIEGEL STREHL

riegel-strehl.de

68

RIEGEL STREHL is a specialized law firm based in Düsseldorf, Germany, focusing on construction law, real estate law, procurement law, and economic criminal law. The firm emphasizes reliable, dynamic, and result-oriented legal consulting with a personal and trustworthy client approach. Their market position is strengthened by extensive experience from international law firms and public administration, targeting clients needing expert legal services in selected fields. Technically, the website is built on the Jimdo Creator CMS platform, utilizing jQuery and bxSlider for interactive elements. The site is hosted on rzone.de servers and demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected, indicating a solid security posture for a small law firm. Overall, the website presents a professional and trustworthy digital presence with good privacy compliance and business credibility. Strategic improvements in security headers, incident response transparency, and terms of service documentation would enhance the site's security and compliance maturity.

J

Jspreadsheet

lemonadejs.com

61

LemonadeJS is a small technology company offering a lightweight, dependency-free reactive JavaScript library designed for modern frontend development. The company provides a suite of reusable components and plugins that integrate with popular frameworks such as React and VueJS. Their ecosystem includes commercial and open-source products, targeting JavaScript developers seeking efficient and flexible tools. The website is well-structured, professionally designed, and provides comprehensive technical documentation and examples. The technical infrastructure leverages modern web technologies and includes analytics via Google Tag Manager and Google Analytics. Security posture is moderate with HTTPS enforced but lacks published security policies, privacy policies, and security headers. The domain is well-established with consistent WHOIS data, supporting legitimacy. Overall, the website is trustworthy but could improve privacy compliance and security transparency.

J

Jspreadsheet

jspreadsheet.com

62

Jspreadsheet is a technology company specializing in a JavaScript plugin that provides advanced spreadsheet and data grid controls for web applications. The company targets developers and businesses seeking Excel-like spreadsheet functionality embedded in their software. It holds a strong market position with usage by leading global companies and offers a professional product with extensions and framework integrations. The website demonstrates a mature technical infrastructure leveraging modern JavaScript frameworks, CDNs, and multiple analytics and marketing tools. The site is well-designed, mobile-optimized, and SEO-friendly, providing a rich user experience. Security posture is good with HTTPS and domain transfer protections, but lacks some advanced headers and published security policies. Privacy compliance is basic with cookie consent but no visible privacy policy. Overall, the risk is moderate with recommendations to enhance security headers and publish privacy and security policies to improve trust and compliance.

W

Home -

wsh-hatten.de

41

The website www.wsh-hatten.de is a WordPress-based site using the Astra theme and Elementor page builder, optimized with WP Rocket and Yoast SEO. The site appears to be a small business or local entity with minimal content and lacks detailed business descriptions or contact information. The technical infrastructure is standard for WordPress sites, hosted on Alfahosting servers, with external resources loaded from common domains such as Google Fonts and Usercentrics for consent management. Security posture is weak due to the absence of security headers and explicit policies. No privacy, cookie, or terms of service policies are present, indicating low compliance with GDPR and related regulations. The site is accessible without WAF or security challenges, but lacks transparency and trust signals. Overall, the site scores low on business credibility and privacy compliance, with moderate technical implementation and basic content quality.

Meteocentrum.sk is a Slovak weather information website providing real-time meteorological data and weather station information primarily for Slovakia. The site features interactive maps powered by Google Maps API and displays current weather conditions from various stations. The business operates as a regional weather data provider with a focus on delivering accurate and timely weather updates to the general public. The website is built using modern web technologies including Bootstrap, jQuery, and integrates Google services for mapping and analytics. Hosting is provided by Exohosting, a regional hosting provider, consistent with the domain's Slovak origin. Security posture is moderate with HTTPS enabled but lacks important security headers and privacy compliance documentation. Advertising and tracking are implemented via Google Ads and Google Analytics, indicating moderate user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

A

Accredible

credential.net

66

Accredible operates a mature and professional digital credential platform, issuing over one million digital certificates and badges monthly. The platform targets both credential recipients and issuers, providing a SaaS model for managing digital credentials with blockchain verification capabilities. The website reflects a strong market position with consistent branding and a clear focus on education and technology sectors. Technically, the site is built on a modern Angular framework with integration of multiple analytics and marketing tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS enforcement and bot protection mechanisms, though explicit security headers and a dedicated security policy page are absent. Privacy compliance is well addressed with visible cookie consent and comprehensive privacy policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and incident response readiness.

S

Stadt Alsdorf

alsdorf.de

44

Stadt Alsdorf operates an official municipal website providing comprehensive information and services to residents and visitors of Alsdorf, Germany. The site offers access to city administration, cultural events, family services, economic information, and tourism. It is positioned as a local government portal with a focus on accessibility and user support. The website integrates a sophisticated accessibility tool (DigiAccess) supporting multiple languages and various user needs, demonstrating a commitment to inclusivity. Technically, the site uses an older CMS (Contenido 4.8) and includes legacy libraries such as jQuery 1.4.2, which may pose security risks. Hosting is managed via pixel-farm.de nameservers, indicating a stable and consistent hosting environment. The site is HTTPS enabled and includes multiple trusted external links to partner portals and services. Mobile optimization is basic but functional, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS but lacks explicit security headers and a public vulnerability disclosure policy. There are no visible signs of WAF or blocking mechanisms, and no exposed sensitive data was detected. Privacy and cookie policies are present and appear GDPR compliant, though incident response and security policies are not explicitly published. Overall, the website is professionally maintained with good content quality and accessibility features. Security posture is moderate with room for improvement in updating libraries and implementing security best practices. The site is safe for general audiences and serves as a trustworthy municipal resource.

M

Home - Mein AWB

meinawb.de

51

Mein AWB is a German government-related website focused on waste management services including collection schedules, disposal facilities, bins, fees, and commercial waste services. The site targets residents and businesses in Germany seeking local waste disposal information. Technically, the site is built on Craft CMS and uses modern web technologies such as Cookiebot for consent management and Google services for fonts and maps. The site demonstrates moderate digital maturity with basic mobile optimization and accessibility features. Security posture is adequate with HTTPS and cookie consent but lacks visible security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. The domain WHOIS data is minimal and shows an unusual status, which slightly reduces trust. Overall, the site is functional and safe but would benefit from enhanced transparency and security documentation.

E

EWORKS.sk

eworks.sk

43

EWORKS.sk is a Slovak technology company specializing in custom software development, including web and mobile applications, with over 20 years of market presence. They serve a diverse clientele including municipalities and businesses, offering tailored solutions such as the ModerneObce.sk platform for local governments. The website is built on WordPress with Elementor and optimized for SEO using Yoast. The technical infrastructure is modern and supports mobile responsiveness, though some performance optimizations and security enhancements could be implemented. Security posture is solid with HTTPS and DNSSEC enabled, but lacks advanced security headers and formal incident response policies. Privacy policies are present and GDPR compliant, but cookie consent mechanisms are missing. Overall, the company demonstrates strong business credibility and a professional online presence.

D

DGfPI

dgfpi.de

53

DGfPI is a German non-profit organization dedicated to child protection, focusing on prevention and intervention in cases of child abuse, neglect, and sexualized violence. The organization offers specialized training and resources for professionals working in this sensitive field, positioning itself as a key player in the child protection sector within Germany. The website reflects a professional and consistent brand image, targeting professionals and institutions involved in child welfare and protection. Technically, the website is built on a modern WordPress platform utilizing popular plugins such as Yoast SEO and Elementor for content management and design. It employs GDPR-compliant cookie consent mechanisms and integrates Google Fonts responsibly. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance characteristics. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response pages are found. There are no visible vulnerabilities or exposed sensitive data, indicating a generally sound security posture. Overall, DGfPI's website is trustworthy, compliant with privacy regulations, and professionally maintained. The absence of advertising and minimal tracking reflects a privacy-conscious approach suitable for a non-profit organization handling sensitive topics. Strategic improvements in security headers and incident response transparency could further enhance the site's security maturity.

A

Augenart

augenart-ettlingen.de

45

Augenart is a small, specialized retail optician business located in Ettlingen, Germany, combining traditional eyewear services with artistic elements. The company offers comprehensive eye refraction tests, custom eyewear manufacturing in their own workshop, VIP consultations, and contact lens fittings. Their market position is that of a local boutique optician with a unique blend of craftsmanship and art, targeting discerning customers seeking personalized eyewear solutions. Technically, the website employs modern front-end technologies such as Bootstrap, jQuery, Owl Carousel, and Swiper Slider, with Google Fonts and a cookie consent solution integrated. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Hosting appears to be via generic nameservers, likely from a European hosting provider. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed), implements a cookie consent banner, and does not expose sensitive data in the HTML. However, no HTTP security headers were detected, and there is no explicit security policy or incident response information. The WHOIS data is limited but consistent with the business profile, showing no suspicious patterns. Privacy compliance is addressed with a privacy policy and cookie consent, indicating GDPR awareness. Overall, Augenart's website is professional, trustworthy, and suitable for its business purpose. Security posture is adequate but could be improved with additional headers and policies. The business credibility is high given the clear contact information, certifications, and detailed service descriptions. No critical issues or content safety concerns were identified.

M

milk&honey GmbH

milk-honey.de

51

Milk & Honey GmbH is a small hospitality business specializing in wellness, sauna, and beauty services located in Ludwigsburg, Germany. Their website presents a professional and well-structured digital presence, offering a broad range of spa and beauty treatments including massages, permanent makeup, and private spa packages. The company targets local customers seeking relaxation and wellness experiences. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder and Contact Form 7, hosted on kasserver.com. The site is mobile optimized and includes GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the website is trustworthy and compliant with privacy regulations, supporting a positive user experience.

A

Anne Korn GmbH

annekorn.de

54

Anne Korn GmbH is a specialized retailer of engagement rings, wedding rings, and bridal jewelry based in Stuttgart, Germany. The company offers a broad selection of jewelry products both online and in their physical store, emphasizing quality craftsmanship and personalized service. Their market position is that of a trusted regional specialist with over 20 years of experience, offering both branded and in-house designed rings. The website supports online appointment booking and provides detailed product information, enhancing customer engagement and convenience. Technically, the website is built on the Shopware CMS platform, leveraging modern web technologies such as Google Fonts, Font Awesome, and integrates marketing and tracking tools like Google Tag Manager and Facebook Pixel. Hosting and DNS services are provided via Cloudflare, ensuring good performance and security. Security posture is strong with HTTPS enforced, proper security headers, and CSRF protection on forms, although the absence of a visible cookie consent banner and published security policies indicates minor compliance gaps. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

M

Modehaus Havekost Övelgönne

modehaus-havekost.de

53

Modehaus Havekost is a well-established retail clothing business based in Germany, specializing in bridal wear, men's fashion, evening wear, and wedding rings. The company has a long history dating back to 1952 and positions itself as one of the largest and most innovative specialty fashion stores in the country. The website provides comprehensive information about their services, professional consultation, and exclusive offers, targeting brides, grooms, and customers seeking formal and casual fashion. Technically, the website is built on WordPress with the Divi theme and integrates modern marketing and analytics tools such as Google Analytics 4, Facebook Pixel, and TikTok Pixel, all managed with a GDPR-compliant cookie consent mechanism. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

Z

ZnanyLekarz Sp. z o. o.

docplanner.tech

62

Docplanner.tech is a technology-focused website operated by ZnanyLekarz Sp. z o. o., a Polish company established in 2018. The site primarily serves as a platform for technology meetups and community events based in Warsaw, targeting technology professionals and enthusiasts. The business model revolves around fostering community engagement and knowledge sharing in the technology sector. The website demonstrates a moderate level of digital maturity, utilizing modern frameworks such as BootstrapVue and integrating analytics tools like Google Analytics and Hotjar. Hosting appears to be on AWS infrastructure, indicating a reliable technical foundation. However, the site lacks comprehensive privacy and cookie policies, and no explicit contact information is provided, which may impact user trust and compliance with data protection regulations. Security posture is moderate, with no evident security headers or advanced protections, and DNSSEC is not enabled, suggesting room for improvement in domain security. Overall, the website is functional and professionally designed but would benefit from enhanced privacy compliance and security measures to strengthen its trustworthiness and regulatory adherence.

S

So Much Stuff

somuchstuff.com.au

60

So Much Stuff is an Australian-owned retail business operating both an e-commerce platform and a physical store located in Smeaton Grange, Sydney. The company offers a wide range of products including collectibles, lawn mowers, trampolines, outdoor play equipment, BBQs, furniture, camping gear, and clothing. The website is built on the Squarespace platform, leveraging modern web technologies and standard marketing tools such as Google Analytics and Facebook Pixel. The business maintains clear contact information and comprehensive privacy and return policies, supporting customer trust and compliance. Technically, the website is well-structured with good mobile optimization and SEO practices, though some security headers could be enhanced. The domain WHOIS data is privacy protected but registered through a reputable Australian registrar, consistent with the business's Australian presence. Overall, the site demonstrates a solid digital presence with a good security posture and privacy compliance.

I

InsideTheSquare.co

insidethesquare.co

63

InsideTheSquare.co is a niche educational platform specializing in Squarespace customization and online business resources. It offers tutorials, podcasts, courses, and personalized support aimed at solopreneurs, creatives, and small business owners. The site leverages Squarespace CMS and integrates modern marketing and analytics tools such as Google Tag Manager and Flodesk, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS and HSTS enabled, complemented by GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance trust. Overall, the website presents a professional and trustworthy front with consistent branding and quality content.

L

Landesarbeitsgemeinschaft Autonomer Frauenhäuser NRW e.V.

lag-autonomefrauenhaeusernrw.de

65

The Landesarbeitsgemeinschaft Autonomer Frauenhäuser NRW e.V. is a non-profit association representing 25 autonomous women's shelters in North Rhine-Westphalia, Germany. The organization focuses on networking, advocacy, and improving conditions for women and children affected by violence. Their website serves as an information hub for stakeholders and the public, providing resources, news, and contact information. The site is hosted on the Jimdo platform and uses standard web technologies including jQuery and POWr.io widgets for enhanced functionality. The website is well-structured, mobile responsive, and includes a comprehensive cookie consent mechanism, reflecting good privacy compliance practices. However, no explicit security policies or incident response contacts are published, and no terms of service page is found.

S

Stadtmarketing Waltrop e.V.

stadtmarketingwaltrop.de

61

Stadtmarketing Waltrop e.V. is a small non-profit organization dedicated to promoting the city of Waltrop through cultural events, community engagement, and local business support. The website is professionally designed using Squarespace, featuring clear navigation and mobile optimization. It provides detailed information about upcoming events, membership opportunities, and contact methods, targeting residents and visitors of Waltrop. The organization has been active since 2006, indicating a stable presence in the community. Technically, the website leverages Squarespace's platform and CDN, uses modern web fonts, and implements HTTPS with a cookie consent banner, reflecting a moderate level of digital maturity. However, it lacks advanced security headers and explicit security or incident response policies, which could be improved to enhance trust and compliance. From a security perspective, the site is accessible without WAF or blocking mechanisms, uses SSL properly, and does not expose sensitive data or vulnerable libraries. Privacy compliance is basic but present, with a privacy policy and cookie consent. Contact information is comprehensive, supporting business credibility. Overall, the website presents a trustworthy and professional image suitable for its community-focused mission. Strategic improvements in security policies and transparency could further strengthen its posture and user trust.

R

RE/init e.V.

reinit.de

55

RE/init e.V. is a small non-profit organization based in Germany focused on employment promotion initiatives, as indicated by the website title and description. The organization targets the general public and stakeholders interested in workforce development in the Recklinghausen region. The website is built on WordPress using modern plugins such as Yoast SEO and OpenStreetMap integration, hosted on UI-DNS infrastructure. The site demonstrates good design quality, mobile optimization, and SEO readiness but lacks comprehensive privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enabled but missing advanced security headers and incident response information. Overall, the website is functional and professional but would benefit from enhanced compliance and security measures to improve trust and legal adherence.

D

Docplanner Group

docplanner.com

64

Docplanner Group operates a comprehensive healthcare platform connecting patients with doctors and clinics across multiple countries. Their services include online appointment booking, practice management software for doctors, and patient experience solutions for clinics. The company positions itself as a leader in 13 countries with a large user base and extensive network of active doctors. Technically, the website uses modern frameworks such as Nuxt.js and integrates marketing and analytics tools like HubSpot and Google Analytics. The site is well-designed, mobile-optimized, and provides a professional user experience. Security posture is good with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is unavailable, which slightly impacts trust verification. Overall, the platform is credible, safe, and well-positioned in the healthcare technology sector.

A

Asylkreis Haltern am See

asylkreis-haltern.de

61

Asylkreis Haltern am See is a small non-profit organization based in Germany focused on supporting refugees through community engagement, language courses, tutoring, and other assistance. The website is built on the Squarespace platform, featuring a professional and consistent design with good navigation and mobile optimization. Security posture is adequate with HTTPS and HSTS enabled, but lacks additional security headers and published security policies. Privacy compliance is limited due to absence of privacy and terms of service pages, though a cookie consent banner is present. Overall, the website is trustworthy and serves its community purpose effectively.

E

European Travel Commission

visiteurope.com

63

Visiteurope.com is the official travel portal of Europe, operated under the auspices of the European Travel Commission. It provides comprehensive travel inspiration, destination guides, experiences, events, and essential travel information to tourists interested in exploring Europe. The website targets a broad audience of travelers and tourists, offering multilingual support and rich content to facilitate trip planning. The business model appears to be informational and promotional, supported by EU co-funding and partnerships with tourism bodies. The site holds a strong market position as an authoritative source for European travel information. Technically, the website is built on WordPress with modern technologies including React, jQuery, and various SEO and multilingual plugins. It leverages Cloudflare for DNS and uses Google Fonts and Google Maps APIs. The site is well-optimized for SEO, mobile-friendly, and accessible, with good performance metrics. Structured data and Open Graph tags are properly implemented to enhance search engine visibility and social media sharing. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and implements cookie consent via Cookiebot. However, DNSSEC is not enabled, and there is no visible security policy or incident response information published. The site uses multiple third-party marketing and tracking tools, but with consent mechanisms in place. No critical vulnerabilities or exposed sensitive data were detected. Overall, visiteurope.com is a professional, trustworthy, and well-maintained website with strong content quality and business credibility. Minor improvements in DNS security and transparency around security policies could further enhance its security posture and user trust.

G

Google

google.dev

71

The Google Developer Program website is a professionally designed and well-structured platform aimed at developers and technology professionals. It provides comprehensive documentation, training resources, and visibility for developer achievements. The site is part of the Google Developers ecosystem, leveraging Google's strong brand and technological infrastructure. The website uses modern web technologies, including progressive web app features, Google Fonts, Material Icons, and Google Analytics for tracking. Hosting and content delivery are managed via Google Cloud Platform, ensuring fast performance and high availability. From a security perspective, the site enforces HTTPS and employs best practices such as secure forms and no exposed sensitive data. While explicit security headers like Content-Security-Policy are not visible in the HTML, the overall SSL configuration and security posture are strong. Privacy compliance is well addressed with accessible privacy and cookie policies, including consent mechanisms and GDPR compliance indicators. However, no direct contact or incident response information is found on the profile page. The domain is a subdomain of google.com, which is a highly trusted and established domain. WHOIS data for the subdomain is not available, which is typical for large organizations managing subdomains internally. The website content is safe for general audiences, with no adult or explicit content detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity.

G

Google

womentechmakers.com

73

The Women Techmakers program is an initiative by Google aimed at advancing women in technology by providing visibility, community support, and resources. The website serves as a hub for program information, ambassador and member engagement, and various initiatives such as Black Women in Tech and She Builds AI. It is positioned as part of Google's broader developer outreach and diversity efforts, targeting women in tech globally. The program has a significant reach with thousands of ambassadors and tens of thousands of members worldwide. Technically, the website is hosted on Google's infrastructure, leveraging modern web technologies including Google Fonts, Google Analytics, and YouTube embeds. It is optimized for mobile devices, accessible, and designed with a professional and consistent branding approach. The use of structured data and comprehensive metadata enhances SEO and content discoverability. From a security perspective, the site enforces HTTPS and likely employs standard security headers, although explicit header data is not visible in the HTML. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear links to Google's centralized privacy and cookie policies, including consent mechanisms. However, no direct contact information or dedicated security incident response details are provided on the site. Overall, the website demonstrates a mature digital presence with high trustworthiness and professionalism. It effectively supports Google's mission to empower women in technology while maintaining strong technical and security standards.

B

BEST AöR – Bottroper Entsorgung und Stadtreinigung Anstalt des öffentlichen Rechts

best-bottrop.de

62

BEST AöR is a municipal public service provider specializing in waste disposal and city cleaning services for the city of Bottrop, Germany. The organization offers a comprehensive range of services including waste collection, recycling yard management, street cleaning, winter services, container rental, and customer support. The website reflects a well-established entity celebrating 25 years of service, targeting local residents and businesses with a strong emphasis on sustainability and community engagement through workshops and digital tools such as a dedicated mobile app. Technically, the website employs modern web technologies including jQuery, Vue.js, Google Fonts, and Google Maps API, hosted on a CMS platform called FLYcms. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Privacy and cookie compliance are well implemented with a detailed cookie consent mechanism and a comprehensive privacy policy. Analytics are conducted via Matomo with anonymized data collection, aligning with GDPR requirements. From a security perspective, the site uses HTTPS and secure forms with CAPTCHA protections. However, explicit HTTP security headers are not detected, and no public security or incident response policies are published. No vulnerabilities or suspicious activities were identified in the content or WHOIS data. The domain and DNS setup are consistent with a legitimate municipal entity. Overall, BEST AöR demonstrates a strong digital presence with good security and privacy practices suitable for a public service organization. Strategic improvements could include enhancing HTTP security headers and publishing formal security policies to further strengthen trust and compliance.

S

SAS ICESI

woah.fr

60

WOAH.fr is a French technology website operated by SAS ICESI, offering a Google visibility administration solution aimed at businesses seeking to improve their search engine presence. The website presents a professional design with clear navigation and a login form for user access. The technical infrastructure includes modern web technologies such as Bootstrap, jQuery, and FontAwesome, hosted by IONOS SE. While the site is accessible and functional, it lacks visible privacy and cookie policies, and security features such as security headers and advanced form protections are not evident. Social media integration is present, enhancing business credibility. Overall, the website demonstrates a moderate security posture with room for improvement in compliance and security best practices.

SZM s.r.o. operates SZM.sk, the largest Slovak internet directory offering categorized listings of companies, news, culture, education, technology, and more. The website serves Slovak internet users seeking organized access to local and national web resources. The business model centers on providing directory services combined with advertising placements, supported by partner sites in related sectors such as TV programming, banking, and insurance. The domain has a long history since 2003, indicating established market presence. Technically, the website uses a custom-built platform with legacy charset windows-1250, multiple JavaScript libraries including Google Tag Manager, Google Analytics, Microsoft Clarity, and Facebook Pixel for analytics and marketing. Hosting is provided by Platon, with multiple ad networks integrated. The site shows moderate performance and basic mobile optimization. SEO and accessibility are basic but functional. Security posture is moderate with HTTPS enabled and consent management for GDPR compliance. However, legacy HTTP resource loading and lack of modern security headers reduce the security score. No explicit privacy policy or terms of service were found, which is a compliance gap. No direct contact information is provided on the main page, limiting user trust and support access. Overall, SZM.sk is a moderately mature online directory with a stable business presence but requires improvements in privacy transparency, security hardening, and modernization of technical infrastructure to enhance trust and compliance.

Team-SOFT s.r.o. is a Slovak technology company specializing in ERP solutions, mobile and web application development, and consulting services primarily targeting small and medium-sized enterprises. Established in 1995, the company has a long-standing presence in the Slovak market and offers a range of products including ERP systems and mobile apps tailored to business needs. The website reflects a professional business with clear service offerings and contact information. Technically, the website uses modern web technologies such as Bootstrap and jQuery, supports mobile platforms, and integrates Google Analytics for user tracking. However, it lacks visible privacy and cookie policies, security headers, and vulnerability disclosure mechanisms, which are important for compliance and security posture. The domain registration data aligns well with the company's claims, indicating legitimacy and stability. Overall, the website is functional and professional but could improve in privacy compliance and security best practices.

CESK, s.r.o., operating under the brand Frigomat, is a Czech-based company specializing in the sale, rental, and servicing of Italian ice cream and confectionery machines. With a history spanning over 40 years, the company positions itself as a trusted provider for professional confectioners and ice cream makers, offering high-quality machinery and comprehensive support services. Their website reflects a professional and well-structured digital presence, targeting B2B customers in the manufacturing and food service sectors. Technically, the website employs modern web technologies including jQuery, Bootstrap, and integrates marketing and analytics tools such as Google Tag Manager and Facebook SDK. The site is mobile-optimized and provides clear navigation and content relevant to its audience. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks some security headers and explicit security policies, which could be improved. The absence of WHOIS data for the domain reduces trust from a domain registration perspective, though the website content and business information appear legitimate and professional. Overall, the site scores well in content quality, privacy compliance, and business credibility, with moderate technical and security posture scores.

G

Global Dialogue

global-dialogue.org

67

Global Dialogue is a non-profit organization focused on enabling independent funders to collaborate towards ambitious philanthropic goals and lasting social change. The website presents a professional and consistent brand image with good content quality tailored to its target audience of funders and philanthropic entities. Technically, the site is built on WordPress using the Divi theme, hosted by GoDaddy, and employs standard web technologies such as jQuery and Google Fonts. Performance and mobile optimization are adequate, though accessibility and SEO could be improved. Security posture is basic with HTTPS enabled but lacks security headers and DNSSEC, which are recommended for enhanced protection. Privacy compliance is limited, with no visible privacy or terms of service policies, though a cookie consent mechanism is present. Overall, the domain registration is privacy protected but consistent with a legitimate non-profit entity, and no suspicious patterns were detected. The site is safe for general audiences with no adult or explicit content.

C

CarbonAct | Nous accompagnons votre organisation dans l'action face aux enjeux climatiques

carbonact.fr

49

CarbonAct is a French consulting organization focused on assisting other organizations in addressing climate change challenges. The website presents a professional appearance with a clear focus on climate action and sustainability consulting services. The technical infrastructure is based on WordPress with the Divi theme, utilizing common web technologies such as jQuery and Google Fonts. The site is accessible without any WAF or security challenge blocking content. Security posture is moderate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website appears legitimate and professional but would benefit from enhanced privacy and security practices.

1

1artisan1site.fr

1artisan1site.fr

60

The website www.1artisan1site.fr appears to be a small business or artisan-focused site, likely offering services related to website creation or digital presence for artisans. The site uses modern web technologies such as Bootstrap 5.3.3 and Google Fonts, and implements a cookie consent mechanism via Cookiebot, indicating some attention to privacy compliance. However, critical business information such as company details, contact information, privacy policy, and terms of service are missing, which limits the site's credibility and trustworthiness. The WHOIS data for the domain is unavailable, which raises concerns about the domain's legitimacy and registration status. Technically, the site is moderately optimized for mobile and performance but lacks security headers and detailed privacy compliance documentation. Overall, the security posture is average with room for improvement in transparency and compliance.

Q

QUADRIM Conseils

quadrim.com

53

QUADRIM Conseils is a French consulting firm specializing in technical management optimization for real estate assets, with a focus on energy, maintenance, and engineering services. The company has been operating since 1998 and serves a diverse clientele including major institutions and corporations. The website is built on WordPress using common plugins and frameworks, providing a professional and responsive user experience. However, the absence of WHOIS registration data for the domain raises questions about domain legitimacy or recent registration status, which should be further investigated. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Overall, the website presents a credible business front but would benefit from enhanced security and compliance measures.

S

SPEDIDAM

myspedidam.fr

36

My SPEDIDAM is a French media rights management platform focused on providing artists with tools to manage their accounts and royalty declarations. The website serves as a secure login portal for artists and associated members, reflecting a specialized business model in the media sector. The company appears established with a domain age of over six years and consistent WHOIS data, indicating legitimacy and operational stability. Technically, the website employs a modern technology stack including jQuery, Kendo UI, Bootstrap, and ASP.NET MVC framework. While the site is mobile optimized and uses Google Analytics for tracking, there is room for improvement in accessibility and SEO optimization. The performance is moderate, and the design quality is good, providing a professional user experience. From a security perspective, the site enforces password complexity and includes CSRF tokens in forms, but lacks visible HTTP security headers such as CSP or HSTS in the provided content. No cookie consent mechanism is present, which is a GDPR compliance gap. The absence of explicit security policies and incident response contacts suggests an opportunity to enhance transparency and trust. Overall, the website is trustworthy and professional but would benefit from enhanced security headers, privacy compliance improvements, and clearer terms of service documentation to strengthen its security posture and regulatory adherence.

Z

Zahradnictví s tradicí

zahradnictvi-u-masku.cz

38

The website 'Zahradnictví s tradicí' represents a small gardening business based in the Czech Republic, offering gardening services and products. The site is built on WordPress and uses common plugins such as Slider Revolution and Booked for appointments, indicating a moderate level of digital maturity. The technical infrastructure is standard for small business websites, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data reduces domain trustworthiness and transparency. Overall, the site is functional and safe but would benefit from improved privacy compliance and security practices.

D

D.I.SEVEN, a.s.

pult-centralizovane-ochrany.cz

42

D.I.SEVEN, a.s. operates a centralized security monitoring service (PCO) in the Czech Republic, providing professional security solutions for businesses and residential clients. The company boasts over 25 years of experience and monitors more than 1000 objects nationwide. Their services include integration of various security systems such as electronic security systems (EZS), video verification (Videofied), CCTV, and fire alarm systems (EPS), supported by a trained intervention team and modern monitoring infrastructure. Technically, the website is built on WordPress with common plugins like Yoast SEO and Slider Revolution, leveraging Google Fonts and Google Tag Manager for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security measures include HTTPS enforcement and Google reCAPTCHA for form protection, alongside a comprehensive cookie consent mechanism supporting GDPR compliance. However, the absence of WHOIS data raises concerns about domain registration transparency and legitimacy verification. The site lacks a dedicated privacy policy page and explicit security or incident response policies, which are important for compliance and trust. Security headers are not detected, indicating room for improvement in hardening the web server configuration. Overall, the website presents a professional and trustworthy front for a security services provider but should address transparency and security best practices to enhance trust and compliance. Strategic recommendations include publishing privacy and security policies, improving HTTP security headers, and clarifying domain registration details.

E

EDUSPORT

edusport.cz

55

EDUSPORT is a Czech-based company providing innovative digital solutions for physical education, targeting schools, teachers, and sports clubs. Their platform facilitates lesson planning, progress tracking, and motivation of students through digital tools and multimedia content. The website is built on WordPress with modern plugins like Elementor and WooCommerce, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit privacy policy documentation. The absence of WHOIS data limits domain trust verification, though the site content and design appear professional and trustworthy. Overall, the business shows promise in the edtech sector with a focus on digital transformation in physical education.

A

ANIMAL EYE, z.s.

animaleye.cz

54

ANIMAL EYE, z.s. is a Czech nationwide non-profit organization dedicated to the enforcement and advocacy of animal rights, primarily focusing on domestic animals. The organization provides legal advisory services, monitors advertisements related to animal breeding, conducts public affairs, and runs awareness campaigns. It positions itself as a credible expert partner for governmental and non-governmental entities in the Czech Republic. The website reflects a professional and consistent brand image with clear messaging and active social media presence. Technically, the site is built on WordPress with modern frameworks and libraries, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and use of Google reCAPTCHA, but lacks advanced security headers and published security policies. Privacy compliance is limited due to absence of explicit privacy and cookie policies. Overall, the website is trustworthy and well-maintained, supporting the organization's mission effectively.

F

FESH FESH Group v.o.s.

feshfesh.group

56

FESH FESH Group v.o.s. operates a professional racing team based in the Czech Republic, focusing on motorsport events, team activities, and news dissemination. The website serves as a hub for fans and stakeholders to access updates, event information, and team details. The business targets motorsport enthusiasts and operates a niche but professional presence within the transportation sector. Technically, the website is built on WordPress with Elementor and JetEngine plugins, hosted likely by Websupport, and incorporates modern web technologies including Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and standard security headers present, though DNSSEC is not enabled. Privacy compliance is well addressed with a comprehensive cookie policy and consent mechanism in Czech language, aligning with GDPR requirements. No explicit security or incident response policies are published, and no terms of service page was found. Overall, the domain registration details are consistent with the business claims, supporting legitimacy and trustworthiness.

C

CUBESPACE

cubespace.eu

40

CUBESPACE is a Czech company specializing in the design, manufacture, rental, and servicing of modular buildings for a wide range of uses. With over 17 years of market presence, the company offers comprehensive services including site selection, architectural studies, and turnkey modular construction solutions. Their market position is supported by a substantial client base and a portfolio of completed projects. Technically, the website is built on WordPress with Elementor and Jet plugins, featuring modern design and good mobile optimization. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response information are absent. Overall, the website reflects a professional and trustworthy business with room for improvement in privacy and security disclosures.

V

Vimec France Accessibilite sarl

vimecfrance.fr

50

Vimec France Accessibilite sarl is a well-established French company specializing in custom private home elevators and accessibility solutions. With over 40 years in the industry and more than 15,000 installations across France, Vimec holds a leading market position. Their product range includes private elevators, platform lifts, stairlifts, and mobility aids tailored for residential use. The website reflects a professional and consistent brand image targeting individuals and professionals seeking home mobility solutions. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and integrates analytics tools like Google Analytics and Facebook Pixel, indicating a mature digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Privacy compliance is well addressed with clear cookie and privacy policies aligned with GDPR. Overall, the site is trustworthy, user-friendly, and provides comprehensive business information.

A

Awesome Projects SRL

sahiavintage.ro

42

Sahia Vintage is a Romanian digital platform dedicated to preserving and showcasing documentary films produced by the Alexandru Sahia Studio between 1950 and 1990. Operated by Awesome Projects SRL since 2019, it serves a niche cultural audience interested in historical film archives. The website employs a standard WordPress CMS with common web technologies such as Bootstrap and jQuery, hosted on Romanian infrastructure. It features a bilingual interface (Romanian and English) and integrates Google Analytics for visitor tracking. Security posture is moderate with HTTPS usage and cookie consent mechanisms but lacks advanced security headers and DNSSEC. Privacy compliance is basic, relying on a PDF terms document rather than a dedicated privacy policy page. Contact information is not directly available on the homepage, limiting user engagement channels.